http://fr.errorsafe.com/pages/scanner_fr...

Salut,

Poste un log HijackThis.

Télécharge le, puis met le dans un dossier dédié (exemple : ..\Bureau\Hijackthis\Hijackthis.exe ).
Ensuite, lance le, appuie sur Do a system scan a save a logfile, et donne nous le résultat du scan

www.infos-du-net.com/telecharger/HijackThis.html

Logfile of HijackThis v1.99.1
Scan saved at 18:30:18, on 22/05/2006
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Google\Gmail Notifier\gnotify.exe
C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Save\Save.exe
C:\Program Files\eMule\emule.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\WINDOWS\System32\divxsm.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Ahead\Nero StartSmart\NeroStartSmart.exe
C:\Program Files\Ahead\nero\nero.exe
C:\Program Files\OpenOffice.org 2.0\program\soffice.exe
C:\Program Files\OpenOffice.org 2.0\program\soffice.BIN
C:\WINDOWS\System32\imapi.exe
C:\Documents and Settings\Pierre\Mes documents\programme d'installation\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.fr.msn.be/0SEFRBE/SAOS01
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://runonce.msn.com/?v=msgrv75
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {03733AEC-1A45-E742-4F5D-9544EFE63FE9} - (no file)
O2 - BHO: (no name) - {04A2CA19-69CB-6234-29E3-85CCFE6F5405} - (no file)
O2 - BHO: (no name) - {0654286F-861C-D256-AA45-D626029CD074} - (no file)
O2 - BHO: (no name) - {089ABD91-26C6-7AA0-2AB0-C46C5C3AF77F} - (no file)
O2 - BHO: (no name) - {0AC5D5FC-CDEA-D4D6-2A99-1B6A091210B5} - (no file)
O2 - BHO: (no name) - {0ADEDB63-B002-AD03-B35E-50A7032C9436} - (no file)
O2 - BHO: (no name) - {0E94A448-F010-22AC-4627-6BCC175C147B} - (no file)
O2 - BHO: (no name) - {0F97ADD7-AD8D-6BF8-1F9C-07FA16D0FFA3} - (no file)
O2 - BHO: (no name) - {10FEB7E7-4A2D-6D1F-3B9F-8F9FEE32D825} - (no file)
O2 - BHO: (no name) - {12899B2B-DA72-DAA3-33E7-18D55F24E119} - (no file)
O2 - BHO: (no name) - {137FBD76-C94E-29D8-CB88-FB29E07E3C8E} - (no file)
O2 - BHO: (no name) - {153AF5DA-EFD3-6F8C-0B4C-4FB02091E83D} - (no file)
O2 - BHO: (no name) - {16BD821E-5751-423E-4850-6CC5D07FECD8} - (no file)
O2 - BHO: (no name) - {197A8D26-DFA5-F761-1F4B-4A8703447597} - (no file)
O2 - BHO: (no name) - {1A478816-E063-0971-D763-1BABBFD87872} - (no file)
O2 - BHO: (no name) - {1BD58A3D-D84D-3006-CA07-81714822BEDB} - (no file)
O2 - BHO: (no name) - {1BF1DFBE-EFEE-094D-4B4A-A1B0633959B8} - (no file)
O2 - BHO: (no name) - {1EA1894C-86D6-8970-CC33-F7AD038B13C4} - (no file)
O2 - BHO: (no name) - {1EC115CF-1A9E-A037-A1A3-661E0F314632} - (no file)
O2 - BHO: (no name) - {229D2295-EABB-729C-CF01-0FEA1A13D1A2} - (no file)
O2 - BHO: (no name) - {2344D7E7-CE38-897A-FF8F-1D623F27EA1C} - (no file)
O2 - BHO: (no name) - {2536C943-1153-AD4C-300A-B4B7FF0DA8BA} - (no file)
O2 - BHO: (no name) - {29EF042A-706D-0056-6884-957B324286BA} - (no file)
O2 - BHO: (no name) - {2B2B2C0A-8F1B-89F0-6D9F-8F53718E5709} - (no file)
O2 - BHO: (no name) - {2C0AA1C9-EAD1-6D31-F171-F004D9CAEAF3} - (no file)
O2 - BHO: (no name) - {2C3AC6BD-184A-72AA-AA76-FD625963E408} - (no file)
O2 - BHO: (no name) - {2D9FBBF6-B32B-BF80-0139-69FF4513F4FE} - (no file)
O2 - BHO: (no name) - {2ECE8A5F-7B88-0E3A-7B26-178AA424B2CF} - (no file)
O2 - BHO: (no name) - {2FC63E7D-B1AD-A15E-08BB-3F44B89C3C38} - (no file)
O2 - BHO: (no name) - {30CF258B-877E-D68F-75DB-04254FA4477D} - (no file)
O2 - BHO: (no name) - {36FD485F-4C65-E8D5-204F-7B909FA681D2} - (no file)
O2 - BHO: (no name) - {3BAC722D-3B91-92A8-0FE9-3C20566A242D} - (no file)
O2 - BHO: (no name) - {3C690BC2-7682-8F6C-CC10-E64826571544} - (no file)
O2 - BHO: (no name) - {41DD2595-D499-DD4F-B411-6E2F986521EA} - (no file)
O2 - BHO: (no name) - {41F19720-1BDB-49B4-8199-77C3C47E4D01} - (no file)
O2 - BHO: (no name) - {44B14A5D-EF05-8A73-645F-321A1D3DA204} - (no file)
O2 - BHO: (no name) - {44E48825-9CDA-8A48-8D27-1A169942AC4E} - (no file)
O2 - BHO: (no name) - {450A0139-EE98-149B-D4CA-65522E7424A7} - (no file)
O2 - BHO: (no name) - {45BE5D9D-A13A-9FA6-68C3-7E04D9D89E5B} - (no file)
O2 - BHO: (no name) - {4855AACF-1F8F-710E-EFAF-19B0F8EE4D1C} - (no file)
O2 - BHO: (no name) - {4CF3F22B-5DA9-5DE0-5DEB-EE4100912572} - (no file)
O2 - BHO: (no name) - {4D0ED6BF-D64D-884B-351B-E924C175C0E1} - (no file)
O2 - BHO: (no name) - {4EC009E1-A0FC-D8EC-3236-F2F50D9D6FD3} - (no file)
O2 - BHO: (no name) - {4EDC72D6-1677-BA8E-A3E9-F6CD337060DB} - (no file)
O2 - BHO: (no name) - {4FD3C147-41DE-1F3D-33EC-2D9B34788A22} - (no file)
O2 - BHO: (no name) - {507C083A-E88D-27DA-C5FD-F626D1AF475A} - (no file)
O2 - BHO: (no name) - {57D786B2-F19C-B77F-7E6B-D102D52C94FD} - (no file)
O2 - BHO: (no name) - {58A38705-CB9F-7B61-F5FA-A70899B04378} - (no file)
O2 - BHO: (no name) - {5AE87369-A8F4-B1D6-ED81-BB42DB32D81B} - (no file)
O2 - BHO: (no name) - {610207BA-E8D7-9260-B756-291184C1BFB4} - (no file)
O2 - BHO: (no name) - {62ADEB62-FF97-1F48-A5D0-543177178FB0} - (no file)
O2 - BHO: (no name) - {68EDD3F4-E8AE-FD59-74FA-262316976262} - (no file)
O2 - BHO: (no name) - {6A3DED5F-EAD0-BCC5-FEE2-722A35C44A8C} - (no file)
O2 - BHO: (no name) - {6A71EC6C-B4CA-3F01-A0DA-FA3F7B759912} - (no file)
O2 - BHO: (no name) - {6E904118-91B8-3F31-2ED7-1F02C7E6CF6E} - (no file)
O2 - BHO: (no name) - {6FCBBEF2-5ADB-ECE5-F01E-7664EE3BE486} - (no file)
O2 - BHO: (no name) - {7115B539-BB04-24CC-2B23-6827E7FC740F} - (no file)
O2 - BHO: (no name) - {76558A55-90AE-81AD-3B53-B36989DABBC7} - (no file)
O2 - BHO: (no name) - {77D6A3EB-35E9-C062-5ADD-F1EC137D83E6} - (no file)
O2 - BHO: (no name) - {7970E706-D02D-A73A-7C76-6016BB2C1460} - (no file)
O2 - BHO: (no name) - {7D04D26C-C5D0-B880-1491-9D484DA65FEC} - (no file)
O2 - BHO: (no name) - {7E2B26C6-E6A8-572A-26C8-F00ACBFAF0DA} - (no file)
O2 - BHO: (no name) - {7E2E424C-CA3E-2380-8EDE-6E1143E54FD8} - (no file)
O2 - BHO: (no name) - {8431D630-BFFA-E427-E86A-AD42E33BE040} - (no file)
O2 - BHO: (no name) - {8674F6CD-EB6E-CD07-FBE1-506F82436CC8} - (no file)
O2 - BHO: (no name) - {89ADEF4E-3F32-427D-B343-75CD9B63CFF6} - (no file)
O2 - BHO: (no name) - {8F3008A1-7126-63E7-0B58-6CB6D22878A1} - (no file)
O2 - BHO: (no name) - {908769E2-4A81-1229-AF77-095E926EDFCB} - (no file)
O2 - BHO: (no name) - {9125713D-ABCD-6F47-1A15-550E5B5622AF} - (no file)
O2 - BHO: (no name) - {9283B90B-6824-9F8C-CDEE-A26195750B35} - (no file)
O2 - BHO: (no name) - {93587622-0E15-2933-A432-4FC8AFF51981} - (no file)
O2 - BHO: (no name) - {93708BF8-2057-AA22-138B-2C7F00B78D7B} - (no file)
O2 - BHO: (no name) - {943544B1-5A24-1DF9-55CE-89DC02154188} - (no file)
O2 - BHO: (no name) - {95B60120-83F3-6EE8-F150-763CFEC0137D} - (no file)
O2 - BHO: (no name) - {972C70DC-3F58-38DC-719C-265704EEF8A0} - (no file)
O2 - BHO: (no name) - {9AC37E11-63C7-D3E6-8EAE-1319DCCFBDC1} - (no file)
O2 - BHO: (no name) - {9DB2564C-B368-0DA1-BB00-6F46F0DD9CD2} - (no file)
O2 - BHO: (no name) - {9FDEC173-21F7-980A-124F-9D55C74F77FE} - (no file)
O2 - BHO: (no name) - {A39786E1-B3F2-5AA0-9792-D30FF78E0B7B} - (no file)
O2 - BHO: (no name) - {A3C660FF-DEAB-ECF0-02FE-C8DC9874C708} - (no file)
O2 - BHO: (no name) - {A493684E-9B4F-2C08-E3D3-1677B7786D2B} - (no file)
O2 - BHO: (no name) - {A5173620-80DD-1801-61F5-64E05A1BC94E} - (no file)
O2 - BHO: (no name) - {A5D041F1-3116-D1DA-4877-515DA73CA3B5} - (no file)
O2 - BHO: (no name) - {A5F02AA1-E33B-02E2-EE38-6C66F5363B53} - (no file)
O2 - BHO: (no name) - {A7463545-A0D8-73A1-95B5-1803A21D325B} - (no file)
O2 - BHO: (no name) - {A77FEE92-1430-913D-80DE-70C0D45457FE} - (no file)
O2 - BHO: (no name) - {A9C2FD6D-46F4-42AA-9928-C3DEE310A934} - (no file)
O2 - BHO: (no name) - {AA3DFBA3-794F-4010-B3F3-C48392777851} - (no file)
O2 - BHO: (no name) - {AAEAF0EF-4CCD-6801-830D-30AC3AB7C39B} - (no file)
O2 - BHO: (no name) - {AEF31B04-E4D2-E8D3-9366-37404CC10854} - (no file)
O2 - BHO: (no name) - {AF451484-05EA-655A-4EE7-4B4F9A677388} - (no file)
O2 - BHO: (no name) - {B04ECF18-A7FE-A8BD-02D3-D4A77E6732EF} - (no file)
O2 - BHO: (no name) - {B1C3A465-BE37-C89D-C0DE-5220C1228514} - (no file)
O2 - BHO: (no name) - {B4A89AC1-01DB-2590-AA18-58102CF0CE73} - (no file)
O2 - BHO: (no name) - {B6EFF8ED-FE91-D486-61D0-EF55DD5220AC} - (no file)
O2 - BHO: (no name) - {B86BEFD1-FD7B-BF76-1007-90B9084541C0} - (no file)
O2 - BHO: (no name) - {BD6D3515-13C8-89DB-38D3-4630B615B324} - (no file)
O2 - BHO: (no name) - {C0B6C5F3-C5FC-DCC2-FD6D-1F16A65205BA} - (no file)
O2 - BHO: (no name) - {C17630F0-44D4-91C7-ECCD-5C43EB80D769} - (no file)
O2 - BHO: (no name) - {C1A41FA6-75A9-208D-8DC5-1020AE6270B6} - (no file)
O2 - BHO: (no name) - {C69B1F3A-4663-8432-FEB2-965058C8B817} - (no file)
O2 - BHO: (no name) - {D40716D3-6A48-428B-C2E2-B255F3EB8167} - (no file)
O2 - BHO: (no name) - {D544B225-4B6F-E902-1009-572A992C0C2D} - (no file)
O2 - BHO: (no name) - {D82EE588-4BCA-D64F-594D-C86A9AAE64BF} - (no file)
O2 - BHO: (no name) - {D83E8454-F737-08C7-6BBB-9567C0B82257} - (no file)
O2 - BHO: (no name) - {DABFF8C3-DF48-F11C-290D-D7CD732B35CC} - (no file)
O2 - BHO: (no name) - {DD044C97-E237-CDA4-B4E1-F2933683BE38} - (no file)
O2 - BHO: (no name) - {E235E7F2-50B6-8BB5-7373-BEF349F0423C} - (no file)
O2 - BHO: (no name) - {E2EFAFF5-340E-A0DE-D25A-7AF4C9F82536} - (no file)
O2 - BHO: (no name) - {E3A394DC-5804-B13F-0871-B5BBEB258C5E} - (no file)
O2 - BHO: (no name) - {E4619879-B07F-005E-F203-9FEE8EA8D4A8} - (no file)
O2 - BHO: (no name) - {E5AEC6A2-E0DA-BCCF-46E8-C8D57F1BAB09} - (no file)
O2 - BHO: (no name) - {E744D294-2AA6-B5FC-A3C2-48601F4CDCDD} - (no file)
O2 - BHO: (no name) - {EAB92D78-0DD3-8A5E-CA0A-36AA7566EC41} - (no file)
O2 - BHO: (no name) - {EDA47566-FF22-C6CB-022E-9E5BA4649C49} - (no file)
O2 - BHO: (no name) - {EE2A819A-7B6D-3396-6030-52CEC509153A} - (no file)
O2 - BHO: (no name) - {EE5C5E5D-1391-F15D-C214-27CF50897C22} - (no file)
O2 - BHO: (no name) - {EE7D83AF-7B9D-6B09-3E59-713C735C30F9} - (no file)
O2 - BHO: (no name) - {EF575F1A-1A18-7B87-F4D8-13A1763ADD3C} - (no file)
O2 - BHO: (no name) - {EFF0DA76-9796-3B9F-3EC2-35A88D1F24F6} - (no file)
O2 - BHO: (no name) - {F1895589-F7BC-679C-6B28-F8543FF20375} - (no file)
O2 - BHO: (no name) - {F2AEE8C6-488F-FB83-41DC-7207FA4758DF} - (no file)
O2 - BHO: (no name) - {F30D52D3-63DC-8C5D-5F20-2855D0649A73} - (no file)
O2 - BHO: (no name) - {F9CE4E9E-3BBE-0D76-2070-5593678A3953} - (no file)
O2 - BHO: (no name) - {FA239BAA-E441-30B6-0ABB-3EAAF567B877} - (no file)
O2 - BHO: (no name) - {FBA75B83-8BB1-572B-E746-D7AA2D568491} - (no file)
O2 - BHO: (no name) - {FF455AC6-FB2E-6A66-8E0D-2CA0A8C97D68} - (no file)
O2 - BHO: (no name) - {FF56B561-EE03-788D-F628-1F9CD8262ABA} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Barre d'outils MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar\01.01.2607.0\msgr.fr.fr-be\msntb.dll
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] C:\Program Files\Google\Gmail Notifier\gnotify.exe
O4 - HKLM\..\Run: [CloseDNF] C:\WINDOWS\System32\Utility.exe \1008
O4 - HKLM\..\Run: [AME_CSA] rundll32 amecsa.cpl,RUN_DLL
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [Anti-Blaxx Manager] C:\Program Files\Anti-Blaxx\Anti-Blaxx.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [WhenUSave] "C:\Program Files\Save\Save.exe"
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - Startup: OpenOffice.org 2.0.lnk = C:\Program Files\OpenOffice.org 2.0\program\quickstart.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: &Traduire à partir de l'anglais - res://C:\Program Files\Google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Pages liées - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Recherche &Google - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html
O10 - Hijacked Internet access by New.Net
O12 - Plugin for .mpg: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin4.dll
O14 - IERESET.INF: START_PAGE_URL=http://www.google.fr
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls...
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst....
O17 - HKLM\System\CCS\Services\Tcpip\..\{8EE3D44D-46EA-4D63-9FEB-E6DD2EBFDE8F}: NameServer = 130.244.127.161 130.244.127.169
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe

Fix O10 - Hijacked Internet access by New.Net

Je sais qu'il y aurait d'autre chose à fixer dans ce log mais je ne sais pas quoi. Je sais que New.Net est un spyware qui vien avec Kazaa.

j ai pas kazaa j ai emule il viens peut etre de la

up

Vire :

C:\Program Files\Save\Save.exe
O4 - HKCU\..\Run: [WhenUSave] "C:\Program Files\Save\Save.exe"
O10 - Hijacked Internet access by New.Net

Ah, pour l'infection en O10
Télécharges LSPFix
Ouvre le, et dis moi si tu vois des trucs parlant de New.Net dans la liste, et ne touche encore a rien !

oui il y a un truc new.net

ps:merci pour ton aide

Alors dans LSPFIX, coche "I know what i'm doing", puis tu dois avec un jeu de fleches passer tout ce qui se trouve dans la liste Remove vers Keep, puis selectionnes New.net et passe le dans la liste remove
Une fois que tu es SUR que seul new.net se trouve dans la liste remove, clique sur Finish !
Dis moi ce que tu obtiens ?

Edit : attends, il faut que je sache 2s si tu as deja supprimé les lignes HJT !!

l operation c est bien deroulé et il la supprimé

Bon, puisque tu as toujours ta connexion j'en deduis que tout s'est bien déroulé ^^
J'ai oublié de signaler (ne me tappez pas !) que c'etait plus sur de le faire avant de virer sur HJT, mais bon ^_^ tout va bien

Edit : Tu as toujours des problèmes de Spyware ?
Ta connexion devrait deja etre beaucoup plus rapide sans New.net

pour l instant rien a signaler je vai pas te frapper lol^^ pas envie de me déplacer ta de la chance  

refaire un hijack
cocher puis fix checked
toutes les lignes 02

télécharger
ccleaner
http://www.01net.com/telecharger/windows/Utilitaire/net...

Cleanup :
http://www.stevengould.org/software/cleanup/download.ht...
ou
http://www.graphiquenalie.com/cleanup/1-Cleanup.exe

les lancer tous les 2

Télécharger
Ewido ( gratuit 14 j) à :
http://www.infos-du-net.com/telecharger/Ewido-Security-...
le mettre à jour

Scanner ( scan complet) ( assez long)
copier le rapport


puis refaire un hijack et le poster ici avec celui de Ewido

salut

redémarre ton pc en mode sans échec; fais un scan hijackthis et coche ces lignes et supprime les:



ensuite:

1] Téléchargement de Ccleaner

http://telechargement.zebulon.fr/239-ccleaner.html

Retourne dans la section Nettoyeur, et clique sur Analyse puis une fois l'analyse achevée, clique sur Lancer le Nettoyage.

2] Téléchargement de Ewido

http://download.ewido.net/ewido-setup.exe

L'installer (important: pendant l'installation, sur la page "Additional Options" puis décoche les deux options "Install background guard" et "Install scan via context menu"). Démarre Ewido. Clique sur mise à jour, attends la fin de cette mise à jour puis, ferme le programme. Passe en mode sans échec ( en tapotant sur F8 au démarrage du pc ) puis fais un scan et sauve le rapport Ewido sur le bureau.

3] Téléchargement d'Hijackthis

http://www.bleepingcomputer.com/files/Merijn/HijackThis...

fais un scan en mode sans échec et sauve le rapport sur le bureau

4] Colle les 2 rapports ( Ewido et Hijackthis )

desoler mais pourrais tu raccourcir ton titre de sujet , car ca agrandi trop et on voit pas bien sur les forum merci

ptit probleme:quand je veux fixer les lignes O2 il di que je dois fermer toutes le fenetres de mes navigateurs or que toutes les fenetres sont fermes.Sinon le scan ewido est en cours et ccleaner a ete effectue

tu l'as bien fait en mode sans échec??

sinon c'est pas grave, elles devront bien s'enlever à un moment

j ai fai f8 puis j ai ete sur mon disque dur puis la il y avait plusieurs proposition j ai commencé avec le mode sans echec mais la il c rien passé juste un ecran noir avec une petite ligne blanche qui clignotait en haut a gauche pour ecrire mais je pouvais rien ecrire ,donc j ai choisi la derniere configuration windows connu .est ce bon ou j airaté une manip.

ps:en fait ca fai qlq mois que j ai ces lignes et que j arrive pas a les enlevé

ok, alors continue cette procédure:

1] Téléchargement de Ccleaner

http://telechargement.zebulon.fr/239-ccleaner.html

Retourne dans la section Nettoyeur, et clique sur Analyse puis une fois l'analyse achevée, clique sur Lancer le Nettoyage.

2] Téléchargement de Ewido

http://download.ewido.net/ewido-setup.exe

L'installer (important: pendant l'installation, sur la page "Additional Options" puis décoche les deux options "Install background guard" et "Install scan via context menu"). Démarre Ewido. Clique sur mise à jour, attends la fin de cette mise à jour puis, ferme le programme. Passe en mode sans échec ( en tapotant sur F8 au démarrage du pc ) puis fais un scan et sauve le rapport Ewido sur le bureau.

3] Téléchargement d'Hijackthis

http://www.bleepingcomputer.com/files/Merijn/HijackThis...

fais un scan en mode sans échec et sauve le rapport sur le bureau

4] Colle les 2 rapports ( Ewido et Hijackthis )

---------------------------------------------------------
ewido anti-malware - Rapport de scan
---------------------------------------------------------

+ Créé le: 22:56:57, 22/05/2006
+ Somme de contrôle: E447164B

+ Résultats du scan:

HKLM\SOFTWARE\Classes\WUSN.1 -> Adware.SaveNow : Nettoyer et sauvegarder
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SaveNow -> Adware.SaveNow : Nettoyer et sauvegarder
HKLM\SOFTWARE\WhenUSave -> Adware.SaveNow : Nettoyer et sauvegarder
HKLM\SOFTWARE\WhenUSave\Partners -> Adware.SaveNow : Nettoyer et sauvegarder
HKLM\SOFTWARE\WhenUSave\Partners\WUSV -> Adware.SaveNow : Nettoyer et sauvegarder
[840] C:\Program Files\NewDotNet\newdotnet6_38.dll -> Adware.NewDotNet : Nettoyer et sauvegarder
[1048] C:\Program Files\NewDotNet\newdotnet6_38.dll -> Adware.NewDotNet : Erreur durant le nettoyage
[1204] C:\Program Files\NewDotNet\newdotnet6_38.dll -> Adware.NewDotNet : Erreur durant le nettoyage
[380] C:\Program Files\NewDotNet\newdotnet6_38.dll -> Adware.NewDotNet : Erreur durant le nettoyage
[976] C:\Program Files\NewDotNet\newdotnet6_38.dll -> Adware.NewDotNet : Erreur durant le nettoyage
[632] C:\Program Files\NewDotNet\newdotnet6_38.dll -> Adware.NewDotNet : Erreur durant le nettoyage
[2108] C:\Program Files\NewDotNet\newdotnet6_38.dll -> Adware.NewDotNet : Erreur durant le nettoyage
:mozilla.31:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
:mozilla.32:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
:mozilla.33:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
:mozilla.35:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
:mozilla.36:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
:mozilla.37:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
:mozilla.38:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
:mozilla.68:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
:mozilla.69:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
:mozilla.70:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
:mozilla.71:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
:mozilla.72:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
:mozilla.114:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Estat : Nettoyer et sauvegarder
:mozilla.138:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyer et sauvegarder
:mozilla.244:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyer et sauvegarder
:mozilla.279:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyer et sauvegarder
:mozilla.280:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyer et sauvegarder
:mozilla.287:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
:mozilla.288:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
:mozilla.289:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
:mozilla.316:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyer et sauvegarder
:mozilla.317:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Clickzs : Nettoyer et sauvegarder
:mozilla.318:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Cqcounter : Nettoyer et sauvegarder
:mozilla.319:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Clickzs : Nettoyer et sauvegarder
:mozilla.381:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder
:mozilla.382:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder
:mozilla.401:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyer et sauvegarder
:mozilla.402:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyer et sauvegarder
:mozilla.403:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Tacoda : Nettoyer et sauvegarder
:mozilla.415:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder
:mozilla.416:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder
:mozilla.417:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder
:mozilla.418:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder
:mozilla.419:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder
:mozilla.420:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Sexcounter : Nettoyer et sauvegarder
:mozilla.423:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Burstnet : Nettoyer et sauvegarder
:mozilla.424:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Burstnet : Nettoyer et sauvegarder
:mozilla.509:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyer et sauvegarder
:mozilla.510:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyer et sauvegarder
:mozilla.520:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Masterstats : Nettoyer et sauvegarder
:mozilla.521:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Casinotropez : Nettoyer et sauvegarder
:mozilla.525:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder
:mozilla.537:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyer et sauvegarder
:mozilla.543:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyer et sauvegarder
:mozilla.554:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Esomniture : Nettoyer et sauvegarder
:mozilla.558:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyer et sauvegarder
:mozilla.560:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Revenue : Nettoyer et sauvegarder
:mozilla.590:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyer et sauvegarder
:mozilla.610:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Yadro : Nettoyer et sauvegarder
:mozilla.648:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyer et sauvegarder
:mozilla.687:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Com : Nettoyer et sauvegarder
:mozilla.693:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Ivwbox : Nettoyer et sauvegarder
:mozilla.700:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Adition : Nettoyer et sauvegarder
:mozilla.701:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Adition : Nettoyer et sauvegarder
:mozilla.707:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyer et sauvegarder
C:\Documents and Settings\Pierre\Cookies\pierre@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder
C:\Documents and Settings\Pierre\Cookies\pierre@weborama[2].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
C:\Program Files\DAEMON Tools\SetupDTSB.exe -> Adware.SaveNow : Nettoyer et sauvegarder
C:\Program Files\filesubmit\boxof1000babes.exe\Ezthemes_WhenUSaveNowCrunch_InstallerInst.exe -> Adware.SaveNow : Nettoyer et sauvegarder
C:\Program Files\filesubmit\boxof1000babes.exe\Ezthemes_WhenUSaveNow_InstallerInst.exe -> Adware.SaveNow : Nettoyer et sauvegarder
C:\Program Files\filesubmit\boxof1000babes.exe\NNWDAC638.EXE -> Adware.NewDotNet : Nettoyer et sauvegarder
C:\Program Files\NewDotNet -> Adware.NewDotNet : Nettoyer et sauvegarder
C:\Program Files\NewDotNet\newdotnet6_38.dll -> Adware.NewDotNet : Nettoyer et sauvegarder
C:\Program Files\NewDotNet\readme.html -> Adware.NewDotNet : Nettoyer et sauvegarder
C:\Program Files\NewDotNet\uninstall6_38.exe -> Adware.NewDotNet : Nettoyer et sauvegarder
C:\WINDOWS\NDNuninstall6_38.exe -> Adware.NewDotNet : Nettoyer et sauvegarder


::Fin du rapport

et voila leLogfile of HijackThis v1.99.1
Scan saved at 23:01:02, on 22/05/2006
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Google\Gmail Notifier\gnotify.exe
C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\eMule\emule.exe
C:\WINDOWS\System32\svchost.exe
C:\Documents and Settings\Pierre\Mes documents\programme d'installation\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.fr.msn.be/0SEFRBE/SAOS01
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://runonce.msn.com/?v=msgrv75
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {03733AEC-1A45-E742-4F5D-9544EFE63FE9} - (no file)
O2 - BHO: (no name) - {04A2CA19-69CB-6234-29E3-85CCFE6F5405} - (no file)
O2 - BHO: (no name) - {0654286F-861C-D256-AA45-D626029CD074} - (no file)
O2 - BHO: (no name) - {089ABD91-26C6-7AA0-2AB0-C46C5C3AF77F} - (no file)
O2 - BHO: (no name) - {0AC5D5FC-CDEA-D4D6-2A99-1B6A091210B5} - (no file)
O2 - BHO: (no name) - {0ADEDB63-B002-AD03-B35E-50A7032C9436} - (no file)
O2 - BHO: (no name) - {0E94A448-F010-22AC-4627-6BCC175C147B} - (no file)
O2 - BHO: (no name) - {0F97ADD7-AD8D-6BF8-1F9C-07FA16D0FFA3} - (no file)
O2 - BHO: (no name) - {10FEB7E7-4A2D-6D1F-3B9F-8F9FEE32D825} - (no file)
O2 - BHO: (no name) - {12899B2B-DA72-DAA3-33E7-18D55F24E119} - (no file)
O2 - BHO: (no name) - {137FBD76-C94E-29D8-CB88-FB29E07E3C8E} - (no file)
O2 - BHO: (no name) - {153AF5DA-EFD3-6F8C-0B4C-4FB02091E83D} - (no file)
O2 - BHO: (no name) - {16BD821E-5751-423E-4850-6CC5D07FECD8} - (no file)
O2 - BHO: (no name) - {197A8D26-DFA5-F761-1F4B-4A8703447597} - (no file)
O2 - BHO: (no name) - {1A478816-E063-0971-D763-1BABBFD87872} - (no file)
O2 - BHO: (no name) - {1BD58A3D-D84D-3006-CA07-81714822BEDB} - (no file)
O2 - BHO: (no name) - {1BF1DFBE-EFEE-094D-4B4A-A1B0633959B8} - (no file)
O2 - BHO: (no name) - {1EA1894C-86D6-8970-CC33-F7AD038B13C4} - (no file)
O2 - BHO: (no name) - {1EC115CF-1A9E-A037-A1A3-661E0F314632} - (no file)
O2 - BHO: (no name) - {229D2295-EABB-729C-CF01-0FEA1A13D1A2} - (no file)
O2 - BHO: (no name) - {2344D7E7-CE38-897A-FF8F-1D623F27EA1C} - (no file)
O2 - BHO: (no name) - {2536C943-1153-AD4C-300A-B4B7FF0DA8BA} - (no file)
O2 - BHO: (no name) - {29EF042A-706D-0056-6884-957B324286BA} - (no file)
O2 - BHO: (no name) - {2B2B2C0A-8F1B-89F0-6D9F-8F53718E5709} - (no file)
O2 - BHO: (no name) - {2C0AA1C9-EAD1-6D31-F171-F004D9CAEAF3} - (no file)
O2 - BHO: (no name) - {2C3AC6BD-184A-72AA-AA76-FD625963E408} - (no file)
O2 - BHO: (no name) - {2D9FBBF6-B32B-BF80-0139-69FF4513F4FE} - (no file)
O2 - BHO: (no name) - {2ECE8A5F-7B88-0E3A-7B26-178AA424B2CF} - (no file)
O2 - BHO: (no name) - {2FC63E7D-B1AD-A15E-08BB-3F44B89C3C38} - (no file)
O2 - BHO: (no name) - {30CF258B-877E-D68F-75DB-04254FA4477D} - (no file)
O2 - BHO: (no name) - {36FD485F-4C65-E8D5-204F-7B909FA681D2} - (no file)
O2 - BHO: (no name) - {3BAC722D-3B91-92A8-0FE9-3C20566A242D} - (no file)
O2 - BHO: (no name) - {3C690BC2-7682-8F6C-CC10-E64826571544} - (no file)
O2 - BHO: (no name) - {41DD2595-D499-DD4F-B411-6E2F986521EA} - (no file)
O2 - BHO: (no name) - {41F19720-1BDB-49B4-8199-77C3C47E4D01} - (no file)
O2 - BHO: (no name) - {44B14A5D-EF05-8A73-645F-321A1D3DA204} - (no file)
O2 - BHO: (no name) - {44E48825-9CDA-8A48-8D27-1A169942AC4E} - (no file)
O2 - BHO: (no name) - {450A0139-EE98-149B-D4CA-65522E7424A7} - (no file)
O2 - BHO: (no name) - {45BE5D9D-A13A-9FA6-68C3-7E04D9D89E5B} - (no file)
O2 - BHO: (no name) - {4855AACF-1F8F-710E-EFAF-19B0F8EE4D1C} - (no file)
O2 - BHO: (no name) - {4CF3F22B-5DA9-5DE0-5DEB-EE4100912572} - (no file)
O2 - BHO: (no name) - {4D0ED6BF-D64D-884B-351B-E924C175C0E1} - (no file)
O2 - BHO: (no name) - {4EC009E1-A0FC-D8EC-3236-F2F50D9D6FD3} - (no file)
O2 - BHO: (no name) - {4EDC72D6-1677-BA8E-A3E9-F6CD337060DB} - (no file)
O2 - BHO: (no name) - {4FD3C147-41DE-1F3D-33EC-2D9B34788A22} - (no file)
O2 - BHO: (no name) - {507C083A-E88D-27DA-C5FD-F626D1AF475A} - (no file)
O2 - BHO: (no name) - {57D786B2-F19C-B77F-7E6B-D102D52C94FD} - (no file)
O2 - BHO: (no name) - {58A38705-CB9F-7B61-F5FA-A70899B04378} - (no file)
O2 - BHO: (no name) - {5AE87369-A8F4-B1D6-ED81-BB42DB32D81B} - (no file)
O2 - BHO: (no name) - {610207BA-E8D7-9260-B756-291184C1BFB4} - (no file)
O2 - BHO: (no name) - {62ADEB62-FF97-1F48-A5D0-543177178FB0} - (no file)
O2 - BHO: (no name) - {68EDD3F4-E8AE-FD59-74FA-262316976262} - (no file)
O2 - BHO: (no name) - {6A3DED5F-EAD0-BCC5-FEE2-722A35C44A8C} - (no file)
O2 - BHO: (no name) - {6A71EC6C-B4CA-3F01-A0DA-FA3F7B759912} - (no file)
O2 - BHO: (no name) - {6E904118-91B8-3F31-2ED7-1F02C7E6CF6E} - (no file)
O2 - BHO: (no name) - {6FCBBEF2-5ADB-ECE5-F01E-7664EE3BE486} - (no file)
O2 - BHO: (no name) - {7115B539-BB04-24CC-2B23-6827E7FC740F} - (no file)
O2 - BHO: (no name) - {76558A55-90AE-81AD-3B53-B36989DABBC7} - (no file)
O2 - BHO: (no name) - {77D6A3EB-35E9-C062-5ADD-F1EC137D83E6} - (no file)
O2 - BHO: (no name) - {7970E706-D02D-A73A-7C76-6016BB2C1460} - (no file)
O2 - BHO: (no name) - {7D04D26C-C5D0-B880-1491-9D484DA65FEC} - (no file)
O2 - BHO: (no name) - {7E2B26C6-E6A8-572A-26C8-F00ACBFAF0DA} - (no file)
O2 - BHO: (no name) - {7E2E424C-CA3E-2380-8EDE-6E1143E54FD8} - (no file)
O2 - BHO: (no name) - {8431D630-BFFA-E427-E86A-AD42E33BE040} - (no file)
O2 - BHO: (no name) - {8674F6CD-EB6E-CD07-FBE1-506F82436CC8} - (no file)
O2 - BHO: (no name) - {89ADEF4E-3F32-427D-B343-75CD9B63CFF6} - (no file)
O2 - BHO: (no name) - {8F3008A1-7126-63E7-0B58-6CB6D22878A1} - (no file)
O2 - BHO: (no name) - {908769E2-4A81-1229-AF77-095E926EDFCB} - (no file)
O2 - BHO: (no name) - {9125713D-ABCD-6F47-1A15-550E5B5622AF} - (no file)
O2 - BHO: (no name) - {9283B90B-6824-9F8C-CDEE-A26195750B35} - (no file)
O2 - BHO: (no name) - {93587622-0E15-2933-A432-4FC8AFF51981} - (no file)
O2 - BHO: (no name) - {93708BF8-2057-AA22-138B-2C7F00B78D7B} - (no file)
O2 - BHO: (no name) - {943544B1-5A24-1DF9-55CE-89DC02154188} - (no file)
O2 - BHO: (no name) - {95B60120-83F3-6EE8-F150-763CFEC0137D} - (no file)
O2 - BHO: (no name) - {972C70DC-3F58-38DC-719C-265704EEF8A0} - (no file)
O2 - BHO: (no name) - {9AC37E11-63C7-D3E6-8EAE-1319DCCFBDC1} - (no file)
O2 - BHO: (no name) - {9DB2564C-B368-0DA1-BB00-6F46F0DD9CD2} - (no file)
O2 - BHO: (no name) - {9FDEC173-21F7-980A-124F-9D55C74F77FE} - (no file)
O2 - BHO: (no name) - {A39786E1-B3F2-5AA0-9792-D30FF78E0B7B} - (no file)
O2 - BHO: (no name) - {A3C660FF-DEAB-ECF0-02FE-C8DC9874C708} - (no file)
O2 - BHO: (no name) - {A493684E-9B4F-2C08-E3D3-1677B7786D2B} - (no file)
O2 - BHO: (no name) - {A5173620-80DD-1801-61F5-64E05A1BC94E} - (no file)
O2 - BHO: (no name) - {A5D041F1-3116-D1DA-4877-515DA73CA3B5} - (no file)
O2 - BHO: (no name) - {A5F02AA1-E33B-02E2-EE38-6C66F5363B53} - (no file)
O2 - BHO: (no name) - {A7463545-A0D8-73A1-95B5-1803A21D325B} - (no file)
O2 - BHO: (no name) - {A77FEE92-1430-913D-80DE-70C0D45457FE} - (no file)
O2 - BHO: (no name) - {A9C2FD6D-46F4-42AA-9928-C3DEE310A934} - (no file)
O2 - BHO: (no name) - {AA3DFBA3-794F-4010-B3F3-C48392777851} - (no file)
O2 - BHO: (no name) - {AAEAF0EF-4CCD-6801-830D-30AC3AB7C39B} - (no file)
O2 - BHO: (no name) - {AEF31B04-E4D2-E8D3-9366-37404CC10854} - (no file)
O2 - BHO: (no name) - {AF451484-05EA-655A-4EE7-4B4F9A677388} - (no file)
O2 - BHO: (no name) - {B04ECF18-A7FE-A8BD-02D3-D4A77E6732EF} - (no file)
O2 - BHO: (no name) - {B1C3A465-BE37-C89D-C0DE-5220C1228514} - (no file)
O2 - BHO: (no name) - {B4A89AC1-01DB-2590-AA18-58102CF0CE73} - (no file)
O2 - BHO: (no name) - {B6EFF8ED-FE91-D486-61D0-EF55DD5220AC} - (no file)
O2 - BHO: (no name) - {B86BEFD1-FD7B-BF76-1007-90B9084541C0} - (no file)
O2 - BHO: (no name) - {BD6D3515-13C8-89DB-38D3-4630B615B324} - (no file)
O2 - BHO: (no name) - {C0B6C5F3-C5FC-DCC2-FD6D-1F16A65205BA} - (no file)
O2 - BHO: (no name) - {C17630F0-44D4-91C7-ECCD-5C43EB80D769} - (no file)
O2 - BHO: (no name) - {C1A41FA6-75A9-208D-8DC5-1020AE6270B6} - (no file)
O2 - BHO: (no name) - {C69B1F3A-4663-8432-FEB2-965058C8B817} - (no file)
O2 - BHO: (no name) - {D40716D3-6A48-428B-C2E2-B255F3EB8167} - (no file)
O2 - BHO: (no name) - {D544B225-4B6F-E902-1009-572A992C0C2D} - (no file)
O2 - BHO: (no name) - {D82EE588-4BCA-D64F-594D-C86A9AAE64BF} - (no file)
O2 - BHO: (no name) - {D83E8454-F737-08C7-6BBB-9567C0B82257} - (no file)
O2 - BHO: (no name) - {DABFF8C3-DF48-F11C-290D-D7CD732B35CC} - (no file)
O2 - BHO: (no name) - {DD044C97-E237-CDA4-B4E1-F2933683BE38} - (no file)
O2 - BHO: (no name) - {E235E7F2-50B6-8BB5-7373-BEF349F0423C} - (no file)
O2 - BHO: (no name) - {E2EFAFF5-340E-A0DE-D25A-7AF4C9F82536} - (no file)
O2 - BHO: (no name) - {E3A394DC-5804-B13F-0871-B5BBEB258C5E} - (no file)
O2 - BHO: (no name) - {E4619879-B07F-005E-F203-9FEE8EA8D4A8} - (no file)
O2 - BHO: (no name) - {E5AEC6A2-E0DA-BCCF-46E8-C8D57F1BAB09} - (no file)
O2 - BHO: (no name) - {E744D294-2AA6-B5FC-A3C2-48601F4CDCDD} - (no file)
O2 - BHO: (no name) - {EAB92D78-0DD3-8A5E-CA0A-36AA7566EC41} - (no file)
O2 - BHO: (no name) - {EDA47566-FF22-C6CB-022E-9E5BA4649C49} - (no file)
O2 - BHO: (no name) - {EE2A819A-7B6D-3396-6030-52CEC509153A} - (no file)
O2 - BHO: (no name) - {EE5C5E5D-1391-F15D-C214-27CF50897C22} - (no file)
O2 - BHO: (no name) - {EE7D83AF-7B9D-6B09-3E59-713C735C30F9} - (no file)
O2 - BHO: (no name) - {EF575F1A-1A18-7B87-F4D8-13A1763ADD3C} - (no file)
O2 - BHO: (no name) - {EFF0DA76-9796-3B9F-3EC2-35A88D1F24F6} - (no file)
O2 - BHO: (no name) - {F1895589-F7BC-679C-6B28-F8543FF20375} - (no file)
O2 - BHO: (no name) - {F2AEE8C6-488F-FB83-41DC-7207FA4758DF} - (no file)
O2 - BHO: (no name) - {F30D52D3-63DC-8C5D-5F20-2855D0649A73} - (no file)
O2 - BHO: (no name) - {F9CE4E9E-3BBE-0D76-2070-5593678A3953} - (no file)
O2 - BHO: (no name) - {FA239BAA-E441-30B6-0ABB-3EAAF567B877} - (no file)
O2 - BHO: (no name) - {FBA75B83-8BB1-572B-E746-D7AA2D568491} - (no file)
O2 - BHO: (no name) - {FF455AC6-FB2E-6A66-8E0D-2CA0A8C97D68} - (no file)
O2 - BHO: (no name) - {FF56B561-EE03-788D-F628-1F9CD8262ABA} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Barre d'outils MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar\01.01.2607.0\msgr.fr.fr-be\msntb.dll
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] C:\Program Files\Google\Gmail Notifier\gnotify.exe
O4 - HKLM\..\Run: [CloseDNF] C:\WINDOWS\System32\Utility.exe \1008
O4 - HKLM\..\Run: [AME_CSA] rundll32 amecsa.cpl,RUN_DLL
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [Anti-Blaxx Manager] C:\Program Files\Anti-Blaxx\Anti-Blaxx.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - Startup: OpenOffice.org 2.0.lnk = C:\Program Files\OpenOffice.org 2.0\program\quickstart.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: &Traduire à partir de l'anglais - res://C:\Program Files\Google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Pages liées - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Recherche &Google - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html
O10 - Broken Internet access because of LSP provider 'c:\program files\newdotnet\newdotnet6_38.dll' missing
O12 - Plugin for .mpg: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin4.dll
O14 - IERESET.INF: START_PAGE_URL=http://www.google.fr
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls...
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst....
O17 - HKLM\System\CCS\Services\Tcpip\..\{8EE3D44D-46EA-4D63-9FEB-E6DD2EBFDE8F}: NameServer = 130.244.127.161 130.244.127.169
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe

Bonsoir

1 Télécharge
CCleaner.
http://www.filehippo.com/download_ccleaner.html
Installe le dans un répertoire dédié.

Ewido
http://www.ewido.net/en/download/
Tu l'installes et tu le mets à jour.

LSPfix si tu en l'as plus.
http://www.cexx.org/lspfix.htm
Installes le sur le Bureau

2 Redémarre en mode sans echec. Attention, tu n'as pas accès à internet dans ce mode, note bien ce que tu as à faire.
Démarre l'ordinateur.
Une fois le chargement du BIOS terminé, il y a un écran noir. Appuye sur la touche F8 jusqu'à l'affichage du menu des options avancées de Windows.
En utilisant les touches du curseur, sélectionne Mode sans échec et appuye sur Entrée.

3 Relance un scan HijackThis et coche les lignes ci-dessous :

O2 - BHO: (no name) - {03733AEC-1A45-E742-4F5D-9544EFE63FE9} - (no file)
O2 - BHO: (no name) - {04A2CA19-69CB-6234-29E3-85CCFE6F5405} - (no file)
O2 - BHO: (no name) - {0654286F-861C-D256-AA45-D626029CD074} - (no file)
O2 - BHO: (no name) - {089ABD91-26C6-7AA0-2AB0-C46C5C3AF77F} - (no file)
O2 - BHO: (no name) - {0AC5D5FC-CDEA-D4D6-2A99-1B6A091210B5} - (no file)
O2 - BHO: (no name) - {0ADEDB63-B002-AD03-B35E-50A7032C9436} - (no file)
O2 - BHO: (no name) - {0E94A448-F010-22AC-4627-6BCC175C147B} - (no file)
O2 - BHO: (no name) - {0F97ADD7-AD8D-6BF8-1F9C-07FA16D0FFA3} - (no file)
O2 - BHO: (no name) - {10FEB7E7-4A2D-6D1F-3B9F-8F9FEE32D825} - (no file)
O2 - BHO: (no name) - {12899B2B-DA72-DAA3-33E7-18D55F24E119} - (no file)
O2 - BHO: (no name) - {137FBD76-C94E-29D8-CB88-FB29E07E3C8E} - (no file)
O2 - BHO: (no name) - {153AF5DA-EFD3-6F8C-0B4C-4FB02091E83D} - (no file)
O2 - BHO: (no name) - {16BD821E-5751-423E-4850-6CC5D07FECD8} - (no file)
O2 - BHO: (no name) - {197A8D26-DFA5-F761-1F4B-4A8703447597} - (no file)
O2 - BHO: (no name) - {1A478816-E063-0971-D763-1BABBFD87872} - (no file)
O2 - BHO: (no name) - {1BD58A3D-D84D-3006-CA07-81714822BEDB} - (no file)
O2 - BHO: (no name) - {1BF1DFBE-EFEE-094D-4B4A-A1B0633959B8} - (no file)
O2 - BHO: (no name) - {1EA1894C-86D6-8970-CC33-F7AD038B13C4} - (no file)
O2 - BHO: (no name) - {1EC115CF-1A9E-A037-A1A3-661E0F314632} - (no file)
O2 - BHO: (no name) - {229D2295-EABB-729C-CF01-0FEA1A13D1A2} - (no file)
O2 - BHO: (no name) - {2344D7E7-CE38-897A-FF8F-1D623F27EA1C} - (no file)
O2 - BHO: (no name) - {2536C943-1153-AD4C-300A-B4B7FF0DA8BA} - (no file)
O2 - BHO: (no name) - {29EF042A-706D-0056-6884-957B324286BA} - (no file)
O2 - BHO: (no name) - {2B2B2C0A-8F1B-89F0-6D9F-8F53718E5709} - (no file)
O2 - BHO: (no name) - {2C0AA1C9-EAD1-6D31-F171-F004D9CAEAF3} - (no file)
O2 - BHO: (no name) - {2C3AC6BD-184A-72AA-AA76-FD625963E408} - (no file)
O2 - BHO: (no name) - {2D9FBBF6-B32B-BF80-0139-69FF4513F4FE} - (no file)
O2 - BHO: (no name) - {2ECE8A5F-7B88-0E3A-7B26-178AA424B2CF} - (no file)
O2 - BHO: (no name) - {2FC63E7D-B1AD-A15E-08BB-3F44B89C3C38} - (no file)
O2 - BHO: (no name) - {30CF258B-877E-D68F-75DB-04254FA4477D} - (no file)
O2 - BHO: (no name) - {36FD485F-4C65-E8D5-204F-7B909FA681D2} - (no file)
O2 - BHO: (no name) - {3BAC722D-3B91-92A8-0FE9-3C20566A242D} - (no file)
O2 - BHO: (no name) - {3C690BC2-7682-8F6C-CC10-E64826571544} - (no file)
O2 - BHO: (no name) - {41DD2595-D499-DD4F-B411-6E2F986521EA} - (no file)
O2 - BHO: (no name) - {41F19720-1BDB-49B4-8199-77C3C47E4D01} - (no file)
O2 - BHO: (no name) - {44B14A5D-EF05-8A73-645F-321A1D3DA204} - (no file)
O2 - BHO: (no name) - {44E48825-9CDA-8A48-8D27-1A169942AC4E} - (no file)
O2 - BHO: (no name) - {450A0139-EE98-149B-D4CA-65522E7424A7} - (no file)
O2 - BHO: (no name) - {45BE5D9D-A13A-9FA6-68C3-7E04D9D89E5B} - (no file)
O2 - BHO: (no name) - {4855AACF-1F8F-710E-EFAF-19B0F8EE4D1C} - (no file)
O2 - BHO: (no name) - {4CF3F22B-5DA9-5DE0-5DEB-EE4100912572} - (no file)
O2 - BHO: (no name) - {4D0ED6BF-D64D-884B-351B-E924C175C0E1} - (no file)
O2 - BHO: (no name) - {4EC009E1-A0FC-D8EC-3236-F2F50D9D6FD3} - (no file)
O2 - BHO: (no name) - {4EDC72D6-1677-BA8E-A3E9-F6CD337060DB} - (no file)
O2 - BHO: (no name) - {4FD3C147-41DE-1F3D-33EC-2D9B34788A22} - (no file)
O2 - BHO: (no name) - {507C083A-E88D-27DA-C5FD-F626D1AF475A} - (no file)
O2 - BHO: (no name) - {57D786B2-F19C-B77F-7E6B-D102D52C94FD} - (no file)
O2 - BHO: (no name) - {58A38705-CB9F-7B61-F5FA-A70899B04378} - (no file)
O2 - BHO: (no name) - {5AE87369-A8F4-B1D6-ED81-BB42DB32D81B} - (no file)
O2 - BHO: (no name) - {610207BA-E8D7-9260-B756-291184C1BFB4} - (no file)
O2 - BHO: (no name) - {62ADEB62-FF97-1F48-A5D0-543177178FB0} - (no file)
O2 - BHO: (no name) - {68EDD3F4-E8AE-FD59-74FA-262316976262} - (no file)
O2 - BHO: (no name) - {6A3DED5F-EAD0-BCC5-FEE2-722A35C44A8C} - (no file)
O2 - BHO: (no name) - {6A71EC6C-B4CA-3F01-A0DA-FA3F7B759912} - (no file)
O2 - BHO: (no name) - {6E904118-91B8-3F31-2ED7-1F02C7E6CF6E} - (no file)
O2 - BHO: (no name) - {6FCBBEF2-5ADB-ECE5-F01E-7664EE3BE486} - (no file)
O2 - BHO: (no name) - {7115B539-BB04-24CC-2B23-6827E7FC740F} - (no file)
O2 - BHO: (no name) - {76558A55-90AE-81AD-3B53-B36989DABBC7} - (no file)
O2 - BHO: (no name) - {77D6A3EB-35E9-C062-5ADD-F1EC137D83E6} - (no file)
O2 - BHO: (no name) - {7970E706-D02D-A73A-7C76-6016BB2C1460} - (no file)
O2 - BHO: (no name) - {7D04D26C-C5D0-B880-1491-9D484DA65FEC} - (no file)
O2 - BHO: (no name) - {7E2B26C6-E6A8-572A-26C8-F00ACBFAF0DA} - (no file)
O2 - BHO: (no name) - {7E2E424C-CA3E-2380-8EDE-6E1143E54FD8} - (no file)
O2 - BHO: (no name) - {8431D630-BFFA-E427-E86A-AD42E33BE040} - (no file)
O2 - BHO: (no name) - {8674F6CD-EB6E-CD07-FBE1-506F82436CC8} - (no file)
O2 - BHO: (no name) - {89ADEF4E-3F32-427D-B343-75CD9B63CFF6} - (no file)
O2 - BHO: (no name) - {8F3008A1-7126-63E7-0B58-6CB6D22878A1} - (no file)
O2 - BHO: (no name) - {908769E2-4A81-1229-AF77-095E926EDFCB} - (no file)
O2 - BHO: (no name) - {9125713D-ABCD-6F47-1A15-550E5B5622AF} - (no file)
O2 - BHO: (no name) - {9283B90B-6824-9F8C-CDEE-A26195750B35} - (no file)
O2 - BHO: (no name) - {93587622-0E15-2933-A432-4FC8AFF51981} - (no file)
O2 - BHO: (no name) - {93708BF8-2057-AA22-138B-2C7F00B78D7B} - (no file)
O2 - BHO: (no name) - {943544B1-5A24-1DF9-55CE-89DC02154188} - (no file)
O2 - BHO: (no name) - {95B60120-83F3-6EE8-F150-763CFEC0137D} - (no file)
O2 - BHO: (no name) - {972C70DC-3F58-38DC-719C-265704EEF8A0} - (no file)
O2 - BHO: (no name) - {9AC37E11-63C7-D3E6-8EAE-1319DCCFBDC1} - (no file)
O2 - BHO: (no name) - {9DB2564C-B368-0DA1-BB00-6F46F0DD9CD2} - (no file)
O2 - BHO: (no name) - {9FDEC173-21F7-980A-124F-9D55C74F77FE} - (no file)
O2 - BHO: (no name) - {A39786E1-B3F2-5AA0-9792-D30FF78E0B7B} - (no file)
O2 - BHO: (no name) - {A3C660FF-DEAB-ECF0-02FE-C8DC9874C708} - (no file)
O2 - BHO: (no name) - {A493684E-9B4F-2C08-E3D3-1677B7786D2B} - (no file)
O2 - BHO: (no name) - {A5173620-80DD-1801-61F5-64E05A1BC94E} - (no file)
O2 - BHO: (no name) - {A5D041F1-3116-D1DA-4877-515DA73CA3B5} - (no file)
O2 - BHO: (no name) - {A5F02AA1-E33B-02E2-EE38-6C66F5363B53} - (no file)
O2 - BHO: (no name) - {A7463545-A0D8-73A1-95B5-1803A21D325B} - (no file)
O2 - BHO: (no name) - {A77FEE92-1430-913D-80DE-70C0D45457FE} - (no file)
O2 - BHO: (no name) - {A9C2FD6D-46F4-42AA-9928-C3DEE310A934} - (no file)
O2 - BHO: (no name) - {AA3DFBA3-794F-4010-B3F3-C48392777851} - (no file)
O2 - BHO: (no name) - {AAEAF0EF-4CCD-6801-830D-30AC3AB7C39B} - (no file)
O2 - BHO: (no name) - {AEF31B04-E4D2-E8D3-9366-37404CC10854} - (no file)
O2 - BHO: (no name) - {AF451484-05EA-655A-4EE7-4B4F9A677388} - (no file)
O2 - BHO: (no name) - {B04ECF18-A7FE-A8BD-02D3-D4A77E6732EF} - (no file)
O2 - BHO: (no name) - {B1C3A465-BE37-C89D-C0DE-5220C1228514} - (no file)
O2 - BHO: (no name) - {B4A89AC1-01DB-2590-AA18-58102CF0CE73} - (no file)
O2 - BHO: (no name) - {B6EFF8ED-FE91-D486-61D0-EF55DD5220AC} - (no file)
O2 - BHO: (no name) - {B86BEFD1-FD7B-BF76-1007-90B9084541C0} - (no file)
O2 - BHO: (no name) - {BD6D3515-13C8-89DB-38D3-4630B615B324} - (no file)
O2 - BHO: (no name) - {C0B6C5F3-C5FC-DCC2-FD6D-1F16A65205BA} - (no file)
O2 - BHO: (no name) - {C17630F0-44D4-91C7-ECCD-5C43EB80D769} - (no file)
O2 - BHO: (no name) - {C1A41FA6-75A9-208D-8DC5-1020AE6270B6} - (no file)
O2 - BHO: (no name) - {C69B1F3A-4663-8432-FEB2-965058C8B817} - (no file)
O2 - BHO: (no name) - {D40716D3-6A48-428B-C2E2-B255F3EB8167} - (no file)
O2 - BHO: (no name) - {D544B225-4B6F-E902-1009-572A992C0C2D} - (no file)
O2 - BHO: (no name) - {D82EE588-4BCA-D64F-594D-C86A9AAE64BF} - (no file)
O2 - BHO: (no name) - {D83E8454-F737-08C7-6BBB-9567C0B82257} - (no file)
O2 - BHO: (no name) - {DABFF8C3-DF48-F11C-290D-D7CD732B35CC} - (no file)
O2 - BHO: (no name) - {DD044C97-E237-CDA4-B4E1-F2933683BE38} - (no file)
O2 - BHO: (no name) - {E235E7F2-50B6-8BB5-7373-BEF349F0423C} - (no file)
O2 - BHO: (no name) - {E2EFAFF5-340E-A0DE-D25A-7AF4C9F82536} - (no file)
O2 - BHO: (no name) - {E3A394DC-5804-B13F-0871-B5BBEB258C5E} - (no file)
O2 - BHO: (no name) - {E4619879-B07F-005E-F203-9FEE8EA8D4A8} - (no file)
O2 - BHO: (no name) - {E5AEC6A2-E0DA-BCCF-46E8-C8D57F1BAB09} - (no file)
O2 - BHO: (no name) - {E744D294-2AA6-B5FC-A3C2-48601F4CDCDD} - (no file)
O2 - BHO: (no name) - {EAB92D78-0DD3-8A5E-CA0A-36AA7566EC41} - (no file)
O2 - BHO: (no name) - {EDA47566-FF22-C6CB-022E-9E5BA4649C49} - (no file)
O2 - BHO: (no name) - {EE2A819A-7B6D-3396-6030-52CEC509153A} - (no file)
O2 - BHO: (no name) - {EE5C5E5D-1391-F15D-C214-27CF50897C22} - (no file)
O2 - BHO: (no name) - {EE7D83AF-7B9D-6B09-3E59-713C735C30F9} - (no file)
O2 - BHO: (no name) - {EF575F1A-1A18-7B87-F4D8-13A1763ADD3C} - (no file)
O2 - BHO: (no name) - {EFF0DA76-9796-3B9F-3EC2-35A88D1F24F6} - (no file)
O2 - BHO: (no name) - {F1895589-F7BC-679C-6B28-F8543FF20375} - (no file)
O2 - BHO: (no name) - {F2AEE8C6-488F-FB83-41DC-7207FA4758DF} - (no file)
O2 - BHO: (no name) - {F30D52D3-63DC-8C5D-5F20-2855D0649A73} - (no file)
O2 - BHO: (no name) - {F9CE4E9E-3BBE-0D76-2070-5593678A3953} - (no file)
O2 - BHO: (no name) - {FA239BAA-E441-30B6-0ABB-3EAAF567B877} - (no file)
O2 - BHO: (no name) - {FBA75B83-8BB1-572B-E746-D7AA2D568491} - (no file)
O2 - BHO: (no name) - {FF455AC6-FB2E-6A66-8E0D-2CA0A8C97D68} - (no file)
O2 - BHO: (no name) - {FF56B561-EE03-788D-F628-1F9CD8262ABA} - (no file)

Ferme toutes les fenêtres Windows, Internet explorer, Outlook, sauf le logiciel Hijackthis et clique sur « Fix checked »

4 Lances LSPfix et agrandis la fenêtre qui, par défaut, est trop petite et fait apparaître les ascenseurs horizontaux et verticaux, masquant un bouton.
Déconnecte toi d'Internet et ferme toutes les instances (fenêtres) Internet Explorer.
Coche la case "I know what I'm doing" ("Je sais ce que je fais").

Sélectionne toutes les instances des dll suivantes

newdotnet6_38.dll

et fais les glisser du panneau de gauche, appelé "keep" au panneau de droite, appelé "Remove".
Clique sur le bouton "Finish".

5 Lance le nettoyage avec CCleaner.

6 Lance Ewido.
Fais un scan en mode complet.
Sauvegardes le rapport.

7 Redémarre normalement et poste un nouveau log HijackThis avec le rapport d'Ewido.

Haaa... je me suis documenté et j'ai pas trouvé grand chose sur New.net... c'est parce que le nom était tout simplement NewDotNet (Dot = .) !!!
http://www.pchell.com/support/savenow.shtml
Si on regarde cette page internet, et bien on remarque que le processus save.exe que je t'ai fait supprimer est couplé avec New.net, ils ont donc été installés ensemble

Certains fichiers n'ont pas pu etre effacés avec ton scan, aussi essaie cette methode que j'ai traduit de la page que j'ai envoyé :

1. Ouvre Poste de travail.
2. Ouvre le lecteur C:.
3. Entre dans le dossier Program Files.
4. Cherche et ouvre le dossier NewDotNet.
5. Trouve et lance le programme de désinstallation; il se nommera sous la forme uninstallX_XX.exe. (“X” represente la version de ton desinstalleur)
6. Après desinstallation du programme, tu pourras recevoir une demande de redemarrage. Il faut redemarrer en général après la desinstallation.
7. Fais un autre scan Ewido, si tu trouves des fichiers en rapport avec New.net ou NewDotNet, postes ton log ici ;-)

Edit : Kahouna a déja viré les New.net de LSPFix ;-)

fais ce qu'a écrit chercheurPCA, dis le nous si tu as toujours des problèmes pour fixer les lignes

pas vraiment, regarde cette ligne

Avant : O10 - Hijacked Internet access by New.Net
Maintenant : O10 - Broken Internet access because of LSP provider 'c:\program files\newdotnet\newdotnet6_38.dll' missing
Missing = manquant, ca a bien été supprimé normalement (reste a supprimer la ligne en mod sans echec, on va bien trouver pourquoi il est inaccessible)

je ferais tout ca se soir en rentrant de l ecole merci pour votre aide

ok

---------------------------------------------------------
ewido anti-malware - Rapport de scan
---------------------------------------------------------

+ Créé le: 21:24:42, 23/05/2006
+ Somme de contrôle: D6A1113B

+ Résultats du scan:

:mozilla.6:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
:mozilla.7:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
:mozilla.51:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Estat : Nettoyer et sauvegarder
:mozilla.71:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
:mozilla.72:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
:mozilla.73:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
:mozilla.74:C:\Documents and Settings\Pierre\Application Data\Mozilla\Firefox\Profiles\owrdx5hq.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder
C:\Documents and Settings\Pierre\Cookies\pierre@atdmt[1].txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder
C:\Documents and Settings\Pierre\Cookies\pierre@weborama[2].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
C:\Program Files\NewDotNet -> Adware.NewDotNet : Nettoyer et sauvegarder


::Fin du rapport


Logfile of HijackThis v1.99.1
Scan saved at 21:25:21, on 23/05/2006
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\OpenOffice.org 2.0\program\soffice.exe
C:\Program Files\OpenOffice.org 2.0\program\soffice.BIN
C:\Documents and Settings\Pierre\Mes documents\programme d'installation\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.fr.msn.be/0SEFRBE/SAOS01
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://runonce.msn.com/?v=msgrv75
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {03733AEC-1A45-E742-4F5D-9544EFE63FE9} - (no file)
O2 - BHO: (no name) - {04A2CA19-69CB-6234-29E3-85CCFE6F5405} - (no file)
O2 - BHO: (no name) - {0654286F-861C-D256-AA45-D626029CD074} - (no file)
O2 - BHO: (no name) - {089ABD91-26C6-7AA0-2AB0-C46C5C3AF77F} - (no file)
O2 - BHO: (no name) - {0AC5D5FC-CDEA-D4D6-2A99-1B6A091210B5} - (no file)
O2 - BHO: (no name) - {0ADEDB63-B002-AD03-B35E-50A7032C9436} - (no file)
O2 - BHO: (no name) - {0E94A448-F010-22AC-4627-6BCC175C147B} - (no file)
O2 - BHO: (no name) - {0F97ADD7-AD8D-6BF8-1F9C-07FA16D0FFA3} - (no file)
O2 - BHO: (no name) - {10FEB7E7-4A2D-6D1F-3B9F-8F9FEE32D825} - (no file)
O2 - BHO: (no name) - {12899B2B-DA72-DAA3-33E7-18D55F24E119} - (no file)
O2 - BHO: (no name) - {137FBD76-C94E-29D8-CB88-FB29E07E3C8E} - (no file)
O2 - BHO: (no name) - {153AF5DA-EFD3-6F8C-0B4C-4FB02091E83D} - (no file)
O2 - BHO: (no name) - {16BD821E-5751-423E-4850-6CC5D07FECD8} - (no file)
O2 - BHO: (no name) - {197A8D26-DFA5-F761-1F4B-4A8703447597} - (no file)
O2 - BHO: (no name) - {1A478816-E063-0971-D763-1BABBFD87872} - (no file)
O2 - BHO: (no name) - {1BD58A3D-D84D-3006-CA07-81714822BEDB} - (no file)
O2 - BHO: (no name) - {1BF1DFBE-EFEE-094D-4B4A-A1B0633959B8} - (no file)
O2 - BHO: (no name) - {1EA1894C-86D6-8970-CC33-F7AD038B13C4} - (no file)
O2 - BHO: (no name) - {1EC115CF-1A9E-A037-A1A3-661E0F314632} - (no file)
O2 - BHO: (no name) - {229D2295-EABB-729C-CF01-0FEA1A13D1A2} - (no file)
O2 - BHO: (no name) - {2344D7E7-CE38-897A-FF8F-1D623F27EA1C} - (no file)
O2 - BHO: (no name) - {2536C943-1153-AD4C-300A-B4B7FF0DA8BA} - (no file)
O2 - BHO: (no name) - {29EF042A-706D-0056-6884-957B324286BA} - (no file)
O2 - BHO: (no name) - {2B2B2C0A-8F1B-89F0-6D9F-8F53718E5709} - (no file)
O2 - BHO: (no name) - {2C0AA1C9-EAD1-6D31-F171-F004D9CAEAF3} - (no file)
O2 - BHO: (no name) - {2C3AC6BD-184A-72AA-AA76-FD625963E408} - (no file)
O2 - BHO: (no name) - {2D9FBBF6-B32B-BF80-0139-69FF4513F4FE} - (no file)
O2 - BHO: (no name) - {2ECE8A5F-7B88-0E3A-7B26-178AA424B2CF} - (no file)
O2 - BHO: (no name) - {2FC63E7D-B1AD-A15E-08BB-3F44B89C3C38} - (no file)
O2 - BHO: (no name) - {30CF258B-877E-D68F-75DB-04254FA4477D} - (no file)
O2 - BHO: (no name) - {36FD485F-4C65-E8D5-204F-7B909FA681D2} - (no file)
O2 - BHO: (no name) - {3BAC722D-3B91-92A8-0FE9-3C20566A242D} - (no file)
O2 - BHO: (no name) - {3C690BC2-7682-8F6C-CC10-E64826571544} - (no file)
O2 - BHO: (no name) - {41DD2595-D499-DD4F-B411-6E2F986521EA} - (no file)
O2 - BHO: (no name) - {41F19720-1BDB-49B4-8199-77C3C47E4D01} - (no file)
O2 - BHO: (no name) - {44B14A5D-EF05-8A73-645F-321A1D3DA204} - (no file)
O2 - BHO: (no name) - {44E48825-9CDA-8A48-8D27-1A169942AC4E} - (no file)
O2 - BHO: (no name) - {450A0139-EE98-149B-D4CA-65522E7424A7} - (no file)
O2 - BHO: (no name) - {45BE5D9D-A13A-9FA6-68C3-7E04D9D89E5B} - (no file)
O2 - BHO: (no name) - {4855AACF-1F8F-710E-EFAF-19B0F8EE4D1C} - (no file)
O2 - BHO: (no name) - {4CF3F22B-5DA9-5DE0-5DEB-EE4100912572} - (no file)
O2 - BHO: (no name) - {4D0ED6BF-D64D-884B-351B-E924C175C0E1} - (no file)
O2 - BHO: (no name) - {4EC009E1-A0FC-D8EC-3236-F2F50D9D6FD3} - (no file)
O2 - BHO: (no name) - {4EDC72D6-1677-BA8E-A3E9-F6CD337060DB} - (no file)
O2 - BHO: (no name) - {4FD3C147-41DE-1F3D-33EC-2D9B34788A22} - (no file)
O2 - BHO: (no name) - {507C083A-E88D-27DA-C5FD-F626D1AF475A} - (no file)
O2 - BHO: (no name) - {57D786B2-F19C-B77F-7E6B-D102D52C94FD} - (no file)
O2 - BHO: (no name) - {58A38705-CB9F-7B61-F5FA-A70899B04378} - (no file)
O2 - BHO: (no name) - {5AE87369-A8F4-B1D6-ED81-BB42DB32D81B} - (no file)
O2 - BHO: (no name) - {610207BA-E8D7-9260-B756-291184C1BFB4} - (no file)
O2 - BHO: (no name) - {62ADEB62-FF97-1F48-A5D0-543177178FB0} - (no file)
O2 - BHO: (no name) - {68EDD3F4-E8AE-FD59-74FA-262316976262} - (no file)
O2 - BHO: (no name) - {6A3DED5F-EAD0-BCC5-FEE2-722A35C44A8C} - (no file)
O2 - BHO: (no name) - {6A71EC6C-B4CA-3F01-A0DA-FA3F7B759912} - (no file)
O2 - BHO: (no name) - {6E904118-91B8-3F31-2ED7-1F02C7E6CF6E} - (no file)
O2 - BHO: (no name) - {6FCBBEF2-5ADB-ECE5-F01E-7664EE3BE486} - (no file)
O2 - BHO: (no name) - {7115B539-BB04-24CC-2B23-6827E7FC740F} - (no file)
O2 - BHO: (no name) - {76558A55-90AE-81AD-3B53-B36989DABBC7} - (no file)
O2 - BHO: (no name) - {77D6A3EB-35E9-C062-5ADD-F1EC137D83E6} - (no file)
O2 - BHO: (no name) - {7970E706-D02D-A73A-7C76-6016BB2C1460} - (no file)
O2 - BHO: (no name) - {7D04D26C-C5D0-B880-1491-9D484DA65FEC} - (no file)
O2 - BHO: (no name) - {7E2B26C6-E6A8-572A-26C8-F00ACBFAF0DA} - (no file)
O2 - BHO: (no name) - {7E2E424C-CA3E-2380-8EDE-6E1143E54FD8} - (no file)
O2 - BHO: (no name) - {8431D630-BFFA-E427-E86A-AD42E33BE040} - (no file)
O2 - BHO: (no name) - {8674F6CD-EB6E-CD07-FBE1-506F82436CC8} - (no file)
O2 - BHO: (no name) - {89ADEF4E-3F32-427D-B343-75CD9B63CFF6} - (no file)
O2 - BHO: (no name) - {8F3008A1-7126-63E7-0B58-6CB6D22878A1} - (no file)
O2 - BHO: (no name) - {908769E2-4A81-1229-AF77-095E926EDFCB} - (no file)
O2 - BHO: (no name) - {9125713D-ABCD-6F47-1A15-550E5B5622AF} - (no file)
O2 - BHO: (no name) - {9283B90B-6824-9F8C-CDEE-A26195750B35} - (no file)
O2 - BHO: (no name) - {93587622-0E15-2933-A432-4FC8AFF51981} - (no file)
O2 - BHO: (no name) - {93708BF8-2057-AA22-138B-2C7F00B78D7B} - (no file)
O2 - BHO: (no name) - {943544B1-5A24-1DF9-55CE-89DC02154188} - (no file)
O2 - BHO: (no name) - {95B60120-83F3-6EE8-F150-763CFEC0137D} - (no file)
O2 - BHO: (no name) - {972C70DC-3F58-38DC-719C-265704EEF8A0} - (no file)
O2 - BHO: (no name) - {9AC37E11-63C7-D3E6-8EAE-1319DCCFBDC1} - (no file)
O2 - BHO: (no name) - {9DB2564C-B368-0DA1-BB00-6F46F0DD9CD2} - (no file)
O2 - BHO: (no name) - {9FDEC173-21F7-980A-124F-9D55C74F77FE} - (no file)
O2 - BHO: (no name) - {A39786E1-B3F2-5AA0-9792-D30FF78E0B7B} - (no file)
O2 - BHO: (no name) - {A3C660FF-DEAB-ECF0-02FE-C8DC9874C708} - (no file)
O2 - BHO: (no name) - {A493684E-9B4F-2C08-E3D3-1677B7786D2B} - (no file)
O2 - BHO: (no name) - {A5173620-80DD-1801-61F5-64E05A1BC94E} - (no file)
O2 - BHO: (no name) - {A5D041F1-3116-D1DA-4877-515DA73CA3B5} - (no file)
O2 - BHO: (no name) - {A5F02AA1-E33B-02E2-EE38-6C66F5363B53} - (no file)
O2 - BHO: (no name) - {A7463545-A0D8-73A1-95B5-1803A21D325B} - (no file)
O2 - BHO: (no name) - {A77FEE92-1430-913D-80DE-70C0D45457FE} - (no file)
O2 - BHO: (no name) - {A9C2FD6D-46F4-42AA-9928-C3DEE310A934} - (no file)
O2 - BHO: (no name) - {AA3DFBA3-794F-4010-B3F3-C48392777851} - (no file)
O2 - BHO: (no name) - {AAEAF0EF-4CCD-6801-830D-30AC3AB7C39B} - (no file)
O2 - BHO: (no name) - {AEF31B04-E4D2-E8D3-9366-37404CC10854} - (no file)
O2 - BHO: (no name) - {AF451484-05EA-655A-4EE7-4B4F9A677388} - (no file)
O2 - BHO: (no name) - {B04ECF18-A7FE-A8BD-02D3-D4A77E6732EF} - (no file)
O2 - BHO: (no name) - {B1C3A465-BE37-C89D-C0DE-5220C1228514} - (no file)
O2 - BHO: (no name) - {B4A89AC1-01DB-2590-AA18-58102CF0CE73} - (no file)
O2 - BHO: (no name) - {B6EFF8ED-FE91-D486-61D0-EF55DD5220AC} - (no file)
O2 - BHO: (no name) - {B86BEFD1-FD7B-BF76-1007-90B9084541C0} - (no file)
O2 - BHO: (no name) - {BD6D3515-13C8-89DB-38D3-4630B615B324} - (no file)
O2 - BHO: (no name) - {C0B6C5F3-C5FC-DCC2-FD6D-1F16A65205BA} - (no file)
O2 - BHO: (no name) - {C17630F0-44D4-91C7-ECCD-5C43EB80D769} - (no file)
O2 - BHO: (no name) - {C1A41FA6-75A9-208D-8DC5-1020AE6270B6} - (no file)
O2 - BHO: (no name) - {C69B1F3A-4663-8432-FEB2-965058C8B817} - (no file)
O2 - BHO: (no name) - {D40716D3-6A48-428B-C2E2-B255F3EB8167} - (no file)
O2 - BHO: (no name) - {D544B225-4B6F-E902-1009-572A992C0C2D} - (no file)
O2 - BHO: (no name) - {D82EE588-4BCA-D64F-594D-C86A9AAE64BF} - (no file)
O2 - BHO: (no name) - {D83E8454-F737-08C7-6BBB-9567C0B82257} - (no file)
O2 - BHO: (no name) - {DABFF8C3-DF48-F11C-290D-D7CD732B35CC} - (no file)
O2 - BHO: (no name) - {DD044C97-E237-CDA4-B4E1-F2933683BE38} - (no file)
O2 - BHO: (no name) - {E235E7F2-50B6-8BB5-7373-BEF349F0423C} - (no file)
O2 - BHO: (no name) - {E2EFAFF5-340E-A0DE-D25A-7AF4C9F82536} - (no file)
O2 - BHO: (no name) - {E3A394DC-5804-B13F-0871-B5BBEB258C5E} - (no file)
O2 - BHO: (no name) - {E4619879-B07F-005E-F203-9FEE8EA8D4A8} - (no file)
O2 - BHO: (no name) - {E5AEC6A2-E0DA-BCCF-46E8-C8D57F1BAB09} - (no file)
O2 - BHO: (no name) - {E744D294-2AA6-B5FC-A3C2-48601F4CDCDD} - (no file)
O2 - BHO: (no name) - {EAB92D78-0DD3-8A5E-CA0A-36AA7566EC41} - (no file)
O2 - BHO: (no name) - {EDA47566-FF22-C6CB-022E-9E5BA4649C49} - (no file)
O2 - BHO: (no name) - {EE2A819A-7B6D-3396-6030-52CEC509153A} - (no file)
O2 - BHO: (no name) - {EE5C5E5D-1391-F15D-C214-27CF50897C22} - (no file)
O2 - BHO: (no name) - {EE7D83AF-7B9D-6B09-3E59-713C735C30F9} - (no file)
O2 - BHO: (no name) - {EF575F1A-1A18-7B87-F4D8-13A1763ADD3C} - (no file)
O2 - BHO: (no name) - {EFF0DA76-9796-3B9F-3EC2-35A88D1F24F6} - (no file)
O2 - BHO: (no name) - {F1895589-F7BC-679C-6B28-F8543FF20375} - (no file)
O2 - BHO: (no name) - {F2AEE8C6-488F-FB83-41DC-7207FA4758DF} - (no file)
O2 - BHO: (no name) - {F30D52D3-63DC-8C5D-5F20-2855D0649A73} - (no file)
O2 - BHO: (no name) - {F9CE4E9E-3BBE-0D76-2070-5593678A3953} - (no file)
O2 - BHO: (no name) - {FA239BAA-E441-30B6-0ABB-3EAAF567B877} - (no file)
O2 - BHO: (no name) - {FBA75B83-8BB1-572B-E746-D7AA2D568491} - (no file)
O2 - BHO: (no name) - {FF455AC6-FB2E-6A66-8E0D-2CA0A8C97D68} - (no file)
O2 - BHO: (no name) - {FF56B561-EE03-788D-F628-1F9CD8262ABA} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Barre d'outils MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar\01.01.2607.0\msgr.fr.fr-be\msntb.dll
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] C:\Program Files\Google\Gmail Notifier\gnotify.exe
O4 - HKLM\..\Run: [CloseDNF] C:\WINDOWS\System32\Utility.exe \1008
O4 - HKLM\..\Run: [AME_CSA] rundll32 amecsa.cpl,RUN_DLL
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [Anti-Blaxx Manager] C:\Program Files\Anti-Blaxx\Anti-Blaxx.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - Startup: OpenOffice.org 2.0.lnk = C:\Program Files\OpenOffice.org 2.0\program\quickstart.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: &Traduire à partir de l'anglais - res://C:\Program Files\Google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Pages liées - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Recherche &Google - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html
O10 - Broken Internet access because of LSP provider 'c:\program files\newdotnet\newdotnet6_38.dll' missing
O12 - Plugin for .mpg: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin4.dll
O14 - IERESET.INF: START_PAGE_URL=http://www.google.fr
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls...
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst....
O17 - HKLM\System\CCS\Services\Tcpip\..\{8EE3D44D-46EA-4D63-9FEB-E6DD2EBFDE8F}: NameServer = 130.244.127.161 130.244.127.169
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe

Il m indique toujours le meme message d erreur quand je veu fixé les lignes O2 pourtant tout est fermé comprend pas

C'est parce qu'il faut le faire en mode sans echec ;-)
Mais j'ai cru comprendre qu'il marchait pas pour toi :-?

j ai reussi finalement ja i ete voir des topics mais meme dans le mode sans echec veu pas fixer ces lignes bizarre

je comprend pas franchement j ai tout fai j ai fermer tout les programmes msn emule etc mais non plus de fenetre .rien que hijackthis mais non lol veu pas etre supprimé

http://www.forospyware.com/t17624.html
http://forums.techguy.org/security/467435-hijackthis-lo...
ptit lien que j ai trouvé mais comprend rien lol

Toutes ces lignes appartiennent a CoolWebSearch après recherche
J'editerai ce message dans 2-3 minutes pour te dire comment virer ca

Telecharge ca : CWShredder
Ouvre CWSInstall.exe, appuies sur I AGREE, puis fais Scan only
Copie/colle le contenu de la fenetre qui apparait et postes le ici :-)

CWShredder v2.0. scan only report
Please understand that a CWShredder 'Scan only' report
might not be sufficient to troubleshoot an infected system.

System Information:
Windows XP (5.01.2600 SP1)
Windows dir: C:\WINDOWS
Windows system dir: C:\WINDOWS\System32
AppData folder: C:\Documents and Settings\Pierre\Application Data
Username: Pierre

Hosts file not present
Shell Registry value: HKLM\..\WinLogon [Shell] Explorer.exe
UserInit Registry value: HKLM\..\WinLogon [UserInit] C:\WINDOWS\system32\userinit.exe,
Found Win.ini file: C:\WINDOWS\win.ini (459 bytes, A)
Found System.ini file: C:\WINDOWS\system.ini (231 bytes, A)

- END OF REPORT -

Attends, j'ai une version de CWShredder qui m'a l'air beaucoup beaucoup mieux
CWShredder
Refais pareil avec I AGREE et Scan only
Après le scan, fais Next
Dis moi ce qu'il y a marqué

Click Scan to scan your system.

When scanning is complete, you can send this information to Trend
Micro’s Anti-spyware Research Center by clicking Send Report.
Sending report results to Trend Micro helps us identify threat
patterns to help better protect your system from spyware. No
personally identifiable information will be sent.

ben apparement c est pas ca

Tu as cliqué sur Create Report, fais Scan only !
Ah, et verifie que c'est bien la version avec une barre rouge en haut :-)

Normalement, il devrait te chercher des infections commencant par CWS.

scan is complete!
coolwebsearch was not found on this system et il y a une barre rouge au dessus.dure a avoir celui la nespo ;-) je susi sur qu on va y arriver .

merci pour le temps que tu me consacre

Bon bin c'est qu'il a bien été éradiqué auparavant
Il y a deja la balise (no file) daprès toutes tes lignes dans le rapport Hijackthis, ce qui signifie que le fichier auquel se rapporte la ligne a ete supprimé
Malgré cela, je me demande pourquoi tu ne peux pas supprimer les lignes meme en mode sans echec

Rencontres tu encore des problèmes (pubs, etc...) ?

non et bien merci beaucoup alors bisou bisou :-P

au cas où, télécharge A²: http://download6.emsisoft.com/a2freesetup.exe

il est gratuit, il te demandera juste de t'inscrire mais ça ne prend qu'une minute et il est très efficace

pareil, mets le à jour, scan et poste le rapport

-squared Report
Scan Started: 24/05/2006 19:23:01
Scan Finished: 24/05/2006 19:41:38
Scanning Time: 0h 18min 37sec
Scanned Files: 120710
Infected Files: 63

Nom du fichier Diagnostic
C:\Documents and Settings\Pierre\Favoris\sites about Trace.Directory.ABetterInternet
C:\WINDOWS\appqi.dll Trace.File.Agent
C:\WINDOWS\atlyu32.dll Trace.File.Agent
C:\WINDOWS\javayv.dll Trace.File.Agent
C:\WINDOWS\netam32.dll Trace.File.Agent
C:\WINDOWS\netji32.dll Trace.File.Agent
C:\WINDOWS\netok.dll Trace.File.Agent
C:\WINDOWS\sdkrz32.dll Trace.File.Agent
C:\WINDOWS\system32\appez32.dll Trace.File.Agent
C:\WINDOWS\system32\apppq32.dll Trace.File.Agent
C:\WINDOWS\system32\iphn32.dll Trace.File.Agent
C:\WINDOWS\system32\javaot32.dll Trace.File.Agent
C:\WINDOWS\system32\wincc.dll Trace.File.Agent
C:\WINDOWS\system32\mssz32.dll Trace.File.CWS.Feads
C:\WINDOWS\system32\crys.dll Trace.File.ShowSearch
C:\Documents and Settings\Pierre\Favoris\sites about\ab scissor.url Trace.File.SmartFinder
C:\Documents and Settings\Pierre\Favoris\sites about\broadband comparison.url Trace.File.SmartFinder
C:\Documents and Settings\Pierre\Favoris\sites about\credit counseling.url Trace.File.SmartFinder
C:\Documents and Settings\Pierre\Favoris\sites about\credit report.url Trace.File.SmartFinder
C:\Documents and Settings\Pierre\Favoris\sites about\crm software.url Trace.File.SmartFinder
C:\Documents and Settings\Pierre\Favoris\sites about\debt credit card.url Trace.File.SmartFinder
C:\Documents and Settings\Pierre\Favoris\sites about\escorts.url Trace.File.SmartFinder
C:\Documents and Settings\Pierre\Favoris\sites about\fha.url Trace.File.SmartFinder
C:\Documents and Settings\Pierre\Favoris\sites about\health insurance.url Trace.File.SmartFinder
C:\Documents and Settings\Pierre\Favoris\sites about\help desk software.url Trace.File.SmartFinder
C:\Documents and Settings\Pierre\Favoris\sites about\insurance home.url Trace.File.SmartFinder
C:\Documents and Settings\Pierre\Favoris\sites about\loan for debt consolidation.url Trace.File.SmartFinder
C:\Documents and Settings\Pierre\Favoris\sites about\loan for people with bad credit.url Trace.File.SmartFinder
C:\Documents and Settings\Pierre\Favoris\sites about\marketing email.url Trace.File.SmartFinder
C:\Documents and Settings\Pierre\Favoris\sites about\mortgage insurance.url Trace.File.SmartFinder
C:\Documents and Settings\Pierre\Favoris\sites about\mortgage life insurance.url Trace.File.SmartFinder
C:\Documents and Settings\Pierre\Favoris\sites about\nevada corporations.url Trace.File.SmartFinder
C:\Documents and Settings\Pierre\Favoris\sites about\online betting site.url Trace.File.SmartFinder
C:\Documents and Settings\Pierre\Favoris\sites about\online gambling casino.url Trace.File.SmartFinder
C:\Documents and Settings\Pierre\Favoris\sites about\online instant loan.url Trace.File.SmartFinder
C:\Documents and Settings\Pierre\Favoris\sites about\order phentermine.url Trace.File.SmartFinder
C:\Documents and Settings\Pierre\Favoris\sites about\payroll advance.url Trace.File.SmartFinder
C:\Documents and Settings\Pierre\Favoris\sites about\personal loans online.url Trace.File.SmartFinder
C:\Documents and Settings\Pierre\Favoris\sites about\personal loans with bad credit.url Trace.File.SmartFinder
C:\Documents and Settings\Pierre\Favoris\sites about\prescription drugs rx online.url Trace.File.SmartFinder
C:\Documents and Settings\Pierre\Favoris\sites about\refinancing my mortgage.url Trace.File.SmartFinder
C:\Documents and Settings\Pierre\Favoris\sites about\tahoe vacation rental.url Trace.File.SmartFinder
C:\Documents and Settings\Pierre\Favoris\sites about\unsecured bad credit loans.url Trace.File.SmartFinder
C:\Documents and Settings\Pierre\Favoris\sites about\videos.url Trace.File.SmartFinder
C:\Documents and Settings\Pierre\Favoris\sites about\what is hydrocodone.url Trace.File.SmartFinder
C:\WINDOWS\iems.dll Trace.File.Suspicious
Key: HKEY_LOCAL_MACHINE\system\currentcontrolset\enum\root\legacy__11f*00df*00e4*0006#*00b7*00ba*00c4*00d6`i Trace.Registry.CWS.HomeSearch
Key: HKEY_CLASSES_ROOT\clsid\{4a2aacf3-adf6-11d5-98a9-00e018981b9e} Trace.Registry.New.Net.Domain.Plugin
Key: HKEY_CLASSES_ROOT\tldctl2.urllink.1 Trace.Registry.New.Net.Domain.Plugin
Key: HKEY_CLASSES_ROOT\tldctl2.urllink Trace.Registry.New.Net.Domain.Plugin
Key: HKEY_LOCAL_MACHINE\software\new.net Trace.Registry.New.Net.Domain.Plugin
Key: HKEY_CLASSES_ROOT\acm.acmfactory.1 Trace.Registry.WhenU.SaveNow
Key: HKEY_CLASSES_ROOT\acm.acmfactory Trace.Registry.WhenU.SaveNow
Key: HKEY_CLASSES_ROOT\appid\{127df9b4-d75d-44a6-af78-8c3a8ceb03db} Trace.Registry.WhenU.SaveNow
Key: HKEY_CLASSES_ROOT\appid\acm.dll Trace.Registry.WhenU.SaveNow
Key: HKEY_CLASSES_ROOT\clsid\{a9aae1ab-9688-42c5-86f5-c12f6b9015ad} Trace.Registry.WhenU.SaveNow
Key: HKEY_CLASSES_ROOT\interface\{43382522-a846-46f4-ac57-1f71ae6e1086} Trace.Registry.WhenU.SaveNow
Key: HKEY_CLASSES_ROOT\interface\{572fb162-c0ba-4edf-8cff-e3846153b9b0} Trace.Registry.WhenU.SaveNow
Key: HKEY_CLASSES_ROOT\interface\{72a836d1-bc00-43c0-a941-17960e4fb842} Trace.Registry.WhenU.SaveNow
Key: HKEY_CLASSES_ROOT\typelib\{df901432-1b9f-4f5b-9e56-301c553f9095} Trace.Registry.WhenUSearch
C:\Documents and Settings\Pierre\Cookies\pierre@atdmt[2].txt Trace.TrackingCookie
C:\Documents and Settings\Pierre\Cookies\pierre@weborama[2].txt Trace.TrackingCookie
C:\WINDOWS\system32\Process.exe Riskware.RiskTool.Win32.Processor.20


j espere que c est que des cookies sinon

Bonjour,

Fais ce qui a ecrit ici.

Poste un nouveau log Hijackthis.

comme quoi ton pc était bien infecté de Cool Web Search, on est jamais assez prudent

donc en mode sans echec ca donne rien

AboutBuster 6.02
Scan started on [24/05/2006] at [21:51:10]
-------------------------------------------------------------
Internet Explorer Instances Terminated!
HomeSearch Service stopped if present
-------------------------------------------------------------
No Ads Found!
-------------------------------------------------------------
No Files Found!
-------------------------------------------------------------
Scan was COMPLETED SUCCESSFULLY at 21:53:38


et pour mon rapport a2 je dois supprimé tout ses trucs?

Supprime tout avec A².

...en mode sans échec