zlob je debute aidez moi svp...RESOLU IL ME SEMBLE!Merci a tous

zeus78@IDN

5 Mai 2006 10:57:05

Bonjour a tous.voila j'ai unn petit probleme avec un virus et je ne sais pas du tout comment fair pour m'en debarasser.pouvez vous m'aidez.j'ai passer un coup de hijackthis et ca ma donné ca:

Logfile of HijackThis v1.99.1
Scan saved at 12:40:40, on 05/05/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe
C:\Program Files\Eset\nod32krn.exe
D:\Spyware Doctor\sdhelp.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\atmclk.exe
C:\Program Files\Eset\nod32kui.exe
C:\Program Files\Acronis\TrueImageEnterprise\TrueImageMonitor.exe
C:\Program Files\Fichiers communs\Acronis\Schedule2\schedhlp.exe
C:\Program Files\ASUS\Asus Probe\AsusProb.exe
C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
D:\logiciel\MsgPlus.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE
C:\Program Files\Ray Adams\ATI Tray Tools\atitray.exe
D:\Spyware Doctor\swdoctor.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
D:\logiciel\msn et un peu de tout!\radio plus des truc msn\SetPoint\SetPoint.exe
C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\PROGRA~1\FIREFOX\FIREFOX.EXE
C:\Documents and Settings\johan\Bureau\GrabIt.exe
C:\Documents and Settings\johan\Bureau\HijackThis.exe

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://resultsmaster.com/SmartOffers/Services/resultsma...
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Nothing - {b0398eca-0bcd-4645-8261-5e9dc70248d0} - C:\WINDOWS\system32\hp6F44.tmp
O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - D:\SPYWAR~1\tools\iesdpb.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (file missing)
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll (file missing)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (file missing)
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (file missing)
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImageEnterprise\TrueImageMonitor.exe
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Program Files\Fichiers communs\Acronis\Schedule2\schedhlp.exe"
O4 - HKLM\..\Run: [ASUS Probe] C:\Program Files\ASUS\Asus Probe\AsusProb.exe
O4 - HKLM\..\Run: [A64Tweaker] "C:\Program Files\a64-6\\a64tweaker.exe" C:\Program Files\a64-6\\startup.a64
O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [I downloaded pirated Software from P2P and now I post my Hijack log] C:\WINDOWS\system32\warez.exe
O4 - HKLM\..\Run: [MessengerPlus3] "D:\logiciel\MsgPlus.exe"
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [ImInstaller_IncrediMail] C:\DOCUME~1\johan\LOCALS~1\Temp\ImInstaller\IncrediMail\incredimail_install.exe -startup -product IncrediMail
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [EPSON Stylus DX4800 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE /P26 "EPSON Stylus DX4800 Series" /O6 "USB001" /M "Stylus DX4800"
O4 - HKCU\..\Run: [AtiTrayTools] "C:\Program Files\Ray Adams\ATI Tray Tools\atitray.exe"
O4 - HKCU\..\Run: [CursorXP] "C:\Program Files\CursorXP\CursorXP.exe" -s
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [MessengerPlus3] "D:\logiciel\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [LDM] D:\logiciel\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [Spyware Doctor] "D:\Spyware Doctor\swdoctor.exe" /Q
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: ATI CATALYST System Tray.lnk = C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = D:\logiciel\msn et un peu de tout!\radio plus des truc msn\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = D:\logiciel\msn et un peu de tout!\radio plus des truc msn\SetPoint\SetPoint.exe
O4 - Global Startup: TV Remote Control.lnk = C:\Program Files\ADS Tech\Instant TV Remote\ADSRMT.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll (file missing)
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll (file missing)
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - D:\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267....
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O16 - DPF: {2AF5BD25-90C5-4EEC-88C5-B44DC2905D8B} (DownloadManager Control) - http://dlmanager.akamaitools.com.edgesuite.net/dlmanage...
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {C4925E65-7A1E-11D2-8BB4-00A0C9CC72C3} (Virtools WebPlayer Class) - http://a532.g.akamai.net/f/532/6712/4h/player.virtools....
O18 - Protocol: bw+0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw+0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw-0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw-0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw00 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw00s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw10 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw10s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw20 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw20s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw30 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw30s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw40 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw40s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw50 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw50s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw60 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw60s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw70 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw70s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw80 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw80s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw90 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw90s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwa0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwa0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwb0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwb0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwc0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwc0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwd0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwd0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwe0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwe0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwf0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwf0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - D:\logiciel\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwg0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwg0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwh0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwh0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwi0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwi0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwj0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwj0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwk0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwk0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwl0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwl0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwm0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwm0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwn0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwn0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwo0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwo0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwp0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwp0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwq0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwq0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwr0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwr0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bws0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bws0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwt0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwt0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwu0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwu0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwv0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwv0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bww0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bww0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwx0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwx0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwy0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwy0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwz0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwz0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - D:\Spyware Doctor\sdhelp.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe

D'avance merci a tous ceux qui pourront m'aider! (info:je suis debutant en informatique)

Autres pages sur : zlob debute aidez svp resolu semble merci

| Etre averti des réponses
| Alerter

Répondre à zeus78@IDN

bob_

5 Mai 2006 11:19:34

Bonjour,

1/ Lance HijackThis
puis --> Do a system scan only
coche les lignes indiquées ci-dessous
puis --> Fix checked
puis oui à la question de confirmation

O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267....
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O16 - DPF: {2AF5BD25-90C5-4EEC-88C5-B44DC2905D8B} (DownloadManager Control) - http://dlmanager.akamaitools.com.edgesuite.net/dlmanage...
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {C4925E65-7A1E-11D2-8BB4-00A0C9CC72C3} (Virtools WebPlayer Class) - http://a532.g.akamai.net/f/532/6712/4h/player.virtools....
O18 - Protocol: bw+0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw+0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw-0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw-0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw00 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw00s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw10 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw10s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw20 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw20s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw30 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw30s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw40 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw40s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw50 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw50s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw60 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw60s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw70 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw70s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw80 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw80s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw90 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw90s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwa0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwa0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwb0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwb0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwc0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwc0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwd0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwd0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwe0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwe0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwf0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwf0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - D:\logiciel\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwg0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwg0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwh0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwh0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwi0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwi0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwj0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwj0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwk0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwk0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwl0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwl0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwm0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwm0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwn0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwn0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwo0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwo0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwp0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwp0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwq0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwq0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwr0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwr0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bws0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bws0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwt0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwt0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwu0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwu0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwv0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwv0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bww0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bww0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwx0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwx0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwy0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwy0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwz0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwz0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)

Ensuite fait sa :

1/ Télécharge SmitfraudFix de S!Ri :

http://siri.urz.free.fr/Fix/SmitfraudFix.php

Tu le dézippes sur le Bureau.

Télécharge Ewido

http://www.ewido.net/en/download/

Tu l'installes et tu le mets à jour.

Télécharge CCleaner.

http://www.filehippo.com/download_ccleaner.html

Installe le dans un répertoire dédié.

2/ Tu ouvres SmitfraudFix, tu double cliques sur SmitfraudFix.cmd et tu choisis l’option 1
Postes le rapport.

3/ Redémarre en mode sans échec. Attention, tu n'as pas accès à internet dans ce mode, note bien ce que tu as à faire.
Démarres l'ordinateur.
Une fois le chargement du BIOS terminé, il y a un écran noir. Appuyes sur la touche F8 ou F5 jusqu'à l'affichage du menu des options avancées de Windows.
En utilisant les touches du curseur, sélectionnes le mode sans échec approprié et appuyes sur Entrée.

4/ Relances SmitfraudFix et choisis cette fois l’option 2 et réponds oui à tout.

5/ Lance le nettoyage avec CCleaner.

6/ Lance Ewido. Fais un scan en mode complet.
Sauvegardes le rapport.

7/ Redémarres normalement et communiques le deuxième rapport de SmitfraudFix, celui d'Ewido avec un nouveau rapport Hijackthis.

| Alerter

Répondre à bob_

zeus78@IDN

5 Mai 2006 11:21:12

ok merci j'y vais de suite

| Alerter

Répondre à zeus78@IDN

rocket_270@IDN

5 Mai 2006 11:23:13

Commence par fermer manuellement et supprime ce fichier:
C:\WINDOWS\system32\atmclk.exe

Puis supprime ces lignes a moin que tu connaisse ces fichiers:
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Nothing - {b0398eca-0bcd-4645-8261-5e9dc70248d0} - C:\WINDOWS\system32\hp6F44.tmp
O4 - HKLM\..\Run: [A64Tweaker] "C:\Program Files\a64-6\\a64tweaker.exe" C:\Program Files\a64-6\\startup.a64
O4 - HKLM\..\Run: [I downloaded pirated Software from P2P and now I post my Hijack log] C:\WINDOWS\system32\warez.exe
O4 - HKLM\..\Run: [ImInstaller_IncrediMail] C:\DOCUME~1\johan\LOCALS~1\Temp\ImInstaller\IncrediMail\incredimail_install.exe -startup -product IncrediMail
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll (file missing)
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll (file missing)
O16 - DPF: {2AF5BD25-90C5-4EEC-88C5-B44DC2905D8B} (DownloadManager Control) - http://dlmanager.akamaitools.com.edgesuite.net/dlmanage... tivex-2.0.3.3.cab
O16 - DPF: {C4925E65-7A1E-11D2-8BB4-00A0C9CC72C3} (Virtools WebPlayer Class) - http://a532.g.akamai.net/f/532/6712/4h/player.virtools.... all3.0/Installer.exe
O18 - Protocol: bw+0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw+0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw-0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw-0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw00 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw00s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw10 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw10s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw20 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw20s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw30 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw30s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw40 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw40s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw50 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw50s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw60 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw60s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw70 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw70s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw80 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw80s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw90 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw90s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwa0 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
Toute les lignes bw jusqua cette ligne O18 - Protocol: bwz0s - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
Et aussi O18 - Protocol: offline-8876480 - {2356A591-2382-49E9-BC5C-2FB6260A86C6} - D:\logiciel\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)

Telecharge ad-aware et/ou spybot S&D:
Fais les mises a jour puis scan :
www.infos-du-net.com/telecharger/Ad-aware-SE-Personal.h...
www.infos-du-net.com/telecharger/Spybot-Search-Destroy....
Ensuite telecharge ewido a cette adresse:

http://www.infos-du-net.com/telecharger/Ewido-Anti-Malw...

Mets le programme a jour , fais un scan et envoie le log.
Et repost le nouveau log hijackthis

| Alerter

Répondre à rocket_270@IDN

zeus78@IDN

5 Mai 2006 11:38:56

pour bob:
SmitFraudFix v2.39

Rapport fait à 13:37:48,96, 05/05/2006
Executé à partir de C:\Documents and Settings\johan\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600]

»»»»»»»»»»»»»»»»»»»»»»»» C:\

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32

C:\WINDOWS\system32\atmclk.exe PRESENT !
C:\WINDOWS\system32\hp????.tmp PRESENT !
C:\WINDOWS\system32\ld????.tmp PRESENT !
C:\WINDOWS\system32\ot.ico PRESENT !
C:\WINDOWS\system32\stdole3.tlb PRESENT !
C:\WINDOWS\system32\ts.ico PRESENT !
C:\WINDOWS\system32\1024\ PRESENT !

»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\johan\Application Data

»»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer

»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\johan\Favoris

C:\DOCUME~1\johan\Favoris\Antivirus Test Online.url PRESENT !

»»»»»»»»»»»»»»»»»»»»»»»» Bureau

»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files

»»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues

»»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="Ma page d'accueil"

»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll

»»»»»»»»»»»»»»»»»»»»»»»» Fin

;-)

| Alerter

Répondre à zeus78@IDN

zeus78@IDN

5 Mai 2006 12:38:46

---------------------------------------------------------
ewido anti-malware - Rapport de scan
---------------------------------------------------------

+ Créé le: 14:26:40, 05/05/2006
+ Somme de contrôle: 9AC44C83

+ Résultats du scan:

HKLM\SOFTWARE\Classes\CLSID\{944864A5-3916-46E2-96A9-A2E84F3F1208} -> Adware.Accoona : Nettoyer et sauvegarder
HKU\S-1-5-21-1229272821-1960408961-839522115-1003\Software\Microsoft\Internet Explorer\URLSearchHooks\{944864A5-3916-46E2-96A9-A2E84F3F1208} -> Adware.Accoona : Nettoyer et sauvegarder
HKU\S-1-5-21-1229272821-1960408961-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{364B6276-C6C1-40B6-A6D7-6C48871FD707} -> Adware.Accoona : Nettoyer et sauvegarder
HKU\S-1-5-21-1229272821-1960408961-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{944864A5-3916-46E2-96A9-A2E84F3F1208} -> Adware.Accoona : Nettoyer et sauvegarder
C:\Documents and Settings\johan\Bureau\email.exe/email.exe -> Not-A-Virus.BadJoke.Win32.Enfin.a : Nettoyer et sauvegarder
C:\Documents and Settings\johan\Bureau\followme.exe/followme.exe -> Not-A-Virus.BadJoke.Win32.Krepper.b : Nettoyer et sauvegarder
C:\FAUXVIRUS\email.exe -> Not-A-Virus.BadJoke.Win32.Enfin.a : Nettoyer et sauvegarder
C:\FAUXVIRUS\followme.exe -> Not-A-Virus.BadJoke.Win32.Krepper.b : Nettoyer et sauvegarder
C:\Program Files\ESET\infected\MEMQS4AA.NQF -> Adware.NewDotNet : Nettoyer et sauvegarder

::Fin du rapport

| Alerter

Répondre à zeus78@IDN

zeus78@IDN

5 Mai 2006 12:45:08

mais je n'arrivais plus a resortir du mode sans echec et donc j'ai fait une restauration de mon pc a hier donc le virus sont ils toujours present? :-?

| Alerter

Répondre à zeus78@IDN

mogadon

5 Mai 2006 13:18:53

A priori oui.
désintaller: MessengerPlus3
démarrer => panneau de configuration => ajout/suppression de programmes

Vous pourrez le réinstaller plus tard sans le sponsor, source d'ennuis +++

refaire la procédure de Bob et poster les rapports

| Alerter

Répondre à mogadon

zeus78@IDN

5 Mai 2006 16:01:06

ok mais comment fait on pour ressortir du mode sans echec?

| Alerter

Répondre à zeus78@IDN

zeus78@IDN

5 Mai 2006 16:18:00

bob:"2/ Tu ouvres SmitfraudFix, tu double cliques sur SmitfraudFix.cmd et tu choisis l’option 1
Postes le rapport."
SmitFraudFix v2.39

Rapport fait à 18:15:44,96, 05/05/2006
Executé à partir de C:\Documents and Settings\johan\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600]

»»»»»»»»»»»»»»»»»»»»»»»» C:\

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32

C:\WINDOWS\system32\atmclk.exe PRESENT !
C:\WINDOWS\system32\dcomcfg.exe PRESENT !
C:\WINDOWS\system32\ot.ico PRESENT !
C:\WINDOWS\system32\simpole.tlb PRESENT !
C:\WINDOWS\system32\stdole3.tlb PRESENT !
C:\WINDOWS\system32\ts.ico PRESENT !
C:\WINDOWS\system32\1024\ PRESENT !

»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\johan\Application Data

»»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer

»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\johan\Favoris

»»»»»»»»»»»»»»»»»»»»»»»» Bureau

je donne donc le premier rapport et je m'en vais de suite continuer la manip

| Alerter

Répondre à zeus78@IDN

zeus78@IDN

5 Mai 2006 16:51:52

voila les 3 rapport:
SmitFraudFix v2.39

Rapport fait à 18:49:53,23, 05/05/2006
Executé à partir de C:\Documents and Settings\johan\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600]

»»»»»»»»»»»»»»»»»»»»»»»» C:\

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32

»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\johan\Application Data

»»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer

»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\johan\Favoris

»»»»»»»»»»»»»»»»»»»»»»»» Bureau

»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files

»»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues

»»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau

»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll

»»»»»»»»»»»»»»»»»»»»»»»» Fin

---------------------------------------------------------
ewido anti-malware - Rapport de scan
---------------------------------------------------------

+ Créé le: 18:46:00, 05/05/2006
+ Somme de contrôle: 1411709E

+ Résultats du scan:

HKLM\SOFTWARE\Classes\CLSID\{944864A5-3916-46E2-96A9-A2E84F3F1208} -> Adware.Accoona : Nettoyer et sauvegarder
HKU\S-1-5-21-1229272821-1960408961-839522115-1003\Software\Microsoft\Internet Explorer\URLSearchHooks\{944864A5-3916-46E2-96A9-A2E84F3F1208} -> Adware.Accoona : Nettoyer et sauvegarder
HKU\S-1-5-21-1229272821-1960408961-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{364B6276-C6C1-40B6-A6D7-6C48871FD707} -> Adware.Accoona : Nettoyer et sauvegarder
HKU\S-1-5-21-1229272821-1960408961-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{944864A5-3916-46E2-96A9-A2E84F3F1208} -> Adware.Accoona : Nettoyer et sauvegarder
C:\WINDOWS\system32\regperf.exe -> Downloader.Zlob.nf : Nettoyer et sauvegarder

::Fin du rapport

SmitFraudFix v2.39

Rapport fait à 18:26:25,59, 05/05/2006
Executé à partir de C:\Documents and Settings\johan\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600]

»»»»»»»»»»»»»»»»»»»»»»»» Arret des processus

»»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés

C:\WINDOWS\system32\atmclk.exe supprimé
C:\WINDOWS\system32\dcomcfg.exe supprimé
C:\WINDOWS\system32\ot.ico supprimé
C:\WINDOWS\system32\simpole.tlb supprimé
C:\WINDOWS\system32\stdole3.tlb supprimé
C:\WINDOWS\system32\ts.ico supprimé
C:\WINDOWS\system32\1024\ supprimé

»»»»»»»»»»»»»»»»»»»»»»»» Suppression Fichiers Temporaires

»»»»»»»»»»»»»»»»»»»»»»»» Nettoyage du registre

Nettoyage terminé.

»»»»»»»»»»»»»»»»»»»»»»»» Fin

| Alerter

Répondre à zeus78@IDN

zeus78@IDN

5 Mai 2006 18:27:30

qu'est ce que vous en pensez? quel antivirus me conseiller vous? ou quel est le mieu?la j'ai eset nod32 avec ewido en meme temps!est ce compatible?

| Alerter

Répondre à zeus78@IDN

bob_

5 Mai 2006 18:42:04

Salut,

Repost un nouveau log HJT

- Protection minimale :

- système parfaitement tenu à jour pour les éléments de catégorie critique, Service Packs et Service Releases
http://update.microsoft.com

- 1 (et 1 seul) pare-feu bien paramétré, gratuit
par exemple ZoneAlarm
http://www.zonelabs.com/
et son tutorial
http://speedweb1.free.fr/frames2.php?page=tuto1

- 1 (et 1 seul) antivirus résident bien paramétré et mis à jour régulièrement (quotidiennement s'il le faut) avec un scan complet régulier (journalier s'il le faut), gratuit
par exemple AVAST Home Edition FREE
http://www.avast.com/eng/down_home.html
avec inscription obligatoire
http://www.avast.com/i_kat_207.php?lang=ENG
et son tutorial
http://www.pcentraide.com/index.php?showtopic=120

- antitroyen gratuit passé périodiquement, par exemple A2
http://www.emsisoft.net/fr/
en le téléchargeant
Il est nécessaire de s'enregistrer pour bénéficier des mises à jour

- antispywares/antiadwares gratuits passés périodiquement, par exemple Ad-Aware SE Personnal
http://www.lavasoftusa.com/default.shtml.fr
tutorial
http://home.tiscali.be/schouppeguy/adawarese/adawase.ht...
et Spybot Search and Destroy
http://www.safer-networking.org/fr/home/index.html
tutorial
http://assiste.free.fr/p/frameset/07_spybot_search_dest...

- Se protèger des ActiveX nuisibles avec SpywareBlaster
http://www.javacoolsoftware.com/downloads.html
tutorial
http://www.ordi-netfr.org/tutorialspywareblaster.php

- comportement prudent vis à vis de la navigation (pas de sites douteux : cracks, warez, sexe...) et vis à vis de la messagerie (fichiers joints aux messages scannés avant d'être ouverts)

- attitude vigilante quant aux dysfonctionnements de ton système.

- maintenance hebdomadaire du système (suppression des fichiers inutiles, nettoyage de la base de registre, scandisk, defrag)

Tous ces programmes parfaitement mis à jour avant chaque utilisation.

Pour plus de précisions, je te conseille de lire la page Web "Lutte AntiMalware -prévention"
http://gerard.melone.free.fr/IT/IT-AM0.html

Fais passer le message sur la prévention autour de toi !!

| Alerter

Répondre à bob_

zeus78@IDN

5 Mai 2006 19:06:17

Logfile of HijackThis v1.99.1
Scan saved at 21:05:49, on 05/05/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Program Files\ewido anti-malware\ewidoguard.exe
C:\Program Files\Eset\nod32krn.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Eset\nod32kui.exe
C:\Program Files\Acronis\TrueImageEnterprise\TrueImageMonitor.exe
C:\Program Files\Fichiers communs\Acronis\Schedule2\schedhlp.exe
C:\Program Files\ASUS\Asus Probe\AsusProb.exe
C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
D:\logiciel\MsgPlus.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE
C:\Program Files\Ray Adams\ATI Tray Tools\atitray.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
D:\logiciel\msn et un peu de tout!\radio plus des truc msn\SetPoint\SetPoint.exe
C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\PROGRA~1\FIREFOX\FIREFOX.EXE
D:\logiciel\eMule\emul2\eMule\emule.exe
C:\WINDOWS\System32\msiexec.exe
C:\Program Files\Alcohol Soft\Alcohol 120\Alcohol.exe
C:\Program Files\Alcohol Soft\Alcohol 120\Alcohol.exe
C:\WINDOWS\explorer.exe
D:\logiciel\BSplayer\bsplayer.exe
C:\Documents and Settings\johan\Bureau\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (file missing)
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll (file missing)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (file missing)
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImageEnterprise\TrueImageMonitor.exe
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Program Files\Fichiers communs\Acronis\Schedule2\schedhlp.exe"
O4 - HKLM\..\Run: [ASUS Probe] C:\Program Files\ASUS\Asus Probe\AsusProb.exe
O4 - HKLM\..\Run: [A64Tweaker] "C:\Program Files\a64-6\\a64tweaker.exe" C:\Program Files\a64-6\\startup.a64
O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [I downloaded pirated Software from P2P and now I post my Hijack log] C:\WINDOWS\system32\warez.exe
O4 - HKLM\..\Run: [MessengerPlus3] "D:\logiciel\MsgPlus.exe"
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [ImInstaller_IncrediMail] C:\DOCUME~1\johan\LOCALS~1\Temp\ImInstaller\IncrediMail\incredimail_install.exe -startup -product IncrediMail
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [EPSON Stylus DX4800 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.EXE /P26 "EPSON Stylus DX4800 Series" /O6 "USB001" /M "Stylus DX4800"
O4 - HKCU\..\Run: [AtiTrayTools] "C:\Program Files\Ray Adams\ATI Tray Tools\atitray.exe"
O4 - HKCU\..\Run: [CursorXP] "C:\Program Files\CursorXP\CursorXP.exe" -s
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [MessengerPlus3] "D:\logiciel\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [LDM] D:\logiciel\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: ATI CATALYST System Tray.lnk = C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = D:\logiciel\msn et un peu de tout!\radio plus des truc msn\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = D:\logiciel\msn et un peu de tout!\radio plus des truc msn\SetPoint\SetPoint.exe
O4 - Global Startup: TV Remote Control.lnk = C:\Program Files\ADS Tech\Instant TV Remote\ADSRMT.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll (file missing)
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll (file missing)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido anti-malware\ewidoguard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe

| Alerter

Répondre à zeus78@IDN

zeus78@IDN

5 Mai 2006 19:10:33

en tout cas merci a tous pour le temps passer a nous aider!!!encore mille merccccccccci

| Alerter

Répondre à zeus78@IDN

Tom's guide dans le monde