Besoin d'aide: encore ce virus Dialer et un autre ..

Salut
Il parait que mon ordinateur (win XP) a attrapé deux virus appelé ‘dialer’ et ‘Adware.BetterInternet’. A chaque fois que je les supprime et les met en quarantaines, ils apparaissent de nouveaux : Dialer dans le dossier Temp de Windows, l’autre sous un fichier à c:/windows/Nail.exe.
Celui de ‘Dialer’ intervint fréquemment et me coupe la connection Internet (que j’utilise pour travailler).

A chaque fois, ce message s’affiche : « Il software di connessione-navigazione. QUESTO SOFTWARE E' ESENTE DA VIRUS AL 100%. Attenzione! procedendo accetti le condizioni di utilizzo del software e dichiari di aver compiuto 18 anni. Il costo del collegamento e' di un euro e novanta centesimi (euro 1.99) al minuto IVA INCLUSA piu' zero euro (euro 00.31) di scatto alla risposta, la durata della connessione e' di venti minuti (20 min) consecutivi. Se accetti clicca sul: SI. BUON DIVERTIMENTO ! »

Je serai assez reconnaissant pour ceux qui peuvent m’aider à résoudre ce problème.
Voilà mon rapport HijackThis et merci de me signaler tout autre intrus :

Logfile of HijackThis v1.99.1
Scan saved at 15:36:40, on 21/07/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5450.0004)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\cisvc.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\Fichiers communs\Microsoft
Shared\VS7Debug\mdm.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\fxssvc.exe
C:\Program Files\Roxio\Easy CD Creator 5
\DirectCD\DirectCD.exe
C:\Program Files\Fichiers
communs\Real\Update_OB\realsched.exe
C:\Program Files\Fichiers communs\Logitech\QCDriver3
\LVCOMS.EXE
C:\Program Files\Nokia\Nokia PC Suite 6
\LaunchApplication.exe
C:\Program Files\Fichiers
communs\PCSuite\DataLayer\DataLayer.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\NCLAUNCH.EXe
C:\Program Files\Sony Corporation\Picture
Package\Picture Package Menu\SonyTray.exe
C:\Program Files\Sony Corporation\Picture
Package\Picture Package Applications\Residence.exe
C:\Program Files\Climate Change
Experiment\cpdnbbcmgr.exe
C:\PROGRA~1\FICHIE~1\PCSuite\Services\SERVIC~1.EXE
C:\PROGRA~1\Yahoo!\MESSEN~1\ymsgr_tray.exe
C:\Program Files\Climate Change Experiment\boinc.exe
C:\WINDOWS\Explorer.exe
C:\Program Files\Microsoft Office\Office10\WINWORD.EXE
C:\Documents and
Settings\Saadallah\Bureau\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet
Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkId=54729
R1 - HKLM\Software\Microsoft\Internet
Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet
Explorer\Main,Search Bar =
http://red.clientapps.yahoo.com/customize/ie/defaults/s
b/ymsgr6/*http://www.yahoo.com/ext/search/search.html
R1 - HKLM\Software\Microsoft\Internet
Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet
Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/?LinkId=55245&clcid=
{SUB_CLCID}
R1 - HKCU\Software\Microsoft\Internet
Explorer\SearchURL,(Default) =
http://red.clientapps.yahoo.com/customize/ie/defaults/s
u/ymsgr6/*http://www.yahoo.com
R1 -
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet
Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet
Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: CnfSearch Class - {D7CD08F0-D691-
11D8-9669-0800200C9A66} - c:\windows\system32
\ConfuSearch.dll (file missing)
R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6
-8A56-BBB695989046} - C:\Program
Files\ICQToolbar\toolbaru.dll
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-
11D2-892F-0090271D4F88} - (no file)
F2 - REG:system.ini: Shell=Explorer.exe
C:\WINDOWS\Nail.exe
O2 - BHO: DNSProxyObj Class - {06594350-D723-11D8-9669
-0800200C9A66} - c:\windows\system32\DNSProxy.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-
B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat
6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: UberButton Class - {5BAB4B5B-68BC-4B02-94D6-
2FC0DE4A7897} - C:\Program Files\Yahoo!
\Common\yiesrvc.dll
O2 - BHO: YahooTaggedBM Class - {65D886A2-7CA7-479B-
BB95-14D1EFB7946A} - C:\Program Files\Yahoo!
\Common\YIeTagBm.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02
-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers
communs\Microsoft Shared\Windows
Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-
8333-CF10577473F7} - c:\program
files\google\googletoolbar1.dll
O2 - BHO: Greenpeace - {CD292324-974F-4224-B424-
CEDF5D718B55} - C:\PROGRA~1\GREENP~1
\Toolbar\Toolbar.dll
O3 - Toolbar: Greenpeace - {CD292324-974F-4224-B424-
CEDF5D718B55} - C:\PROGRA~1\GREENP~1
\Toolbar\Toolbar.dll
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-
BBB695989046} - C:\Program
Files\ICQToolbar\toolbaru.dll
O3 - Toolbar: Greenpeace_International Toolbar -
{8106074c-55da-46b3-ad9d-25a90e641260} - C:\Program
Files\Greenpeace_International\tbGree.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-
009027A5CD4F} - c:\program
files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1
\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\System32
\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\System32
\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [POINTER] point32.exe
O4 - HKLM\..\Run: [AdaptecDirectCD] "C:\Program
Files\Roxio\Easy CD Creator 5\DirectCD\DirectCD.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE
C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [TkBellExe] "C:\Program
Files\Fichiers communs\Real\Update_OB\realsched.exe" -
osboot
O4 - HKLM\..\Run: [EasyMessage] "C:\Program Files\Zango
Messenger\em2.exe" -wait
O4 - HKLM\..\Run: [requester] "C:\WINDOWS\System32
\requester.11.exe"
O4 - HKLM\..\Run: [SotCq8] C:\WINDOWS\ykfbr.exe
O4 - HKLM\..\Run: [BullsEye Network] C:\Program
Files\BullsEye Network\bin\bargains.exe
O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Fichiers
communs\Logitech\QCDriver3\LVCOMS.EXE
O4 - HKLM\..\Run: [œË±Ë {O¼êá›d„šVnrÖ ¦C:\Program
Files\ISTsvc\istsvc.exe] C:\WINDOWS\ykfbr.exe
O4 - HKLM\..\Run: [œË±€V÷h$v ùõš/‚²Æ ßC:\Program
Files\ISTsvc\istsvc.exe] C:\WINDOWS\ykfbr.exe
O4 - HKLM\..\Run: [œË±Ë {O¼êá›d„š/‚²Æ C:\Program
Files\ISTsvc\istsvc.exe] C:\WINDOWS\ykfbr.exe
O4 - HKLM\..\Run: [voinou] C:\WINDOWS\System32
\wlroly.exe r
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program
Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -
onlytray
O4 - HKLM\..\Run: [DataLayer] C:\Program Files\Fichiers
communs\PCSuite\DataLayer\DataLayer.exe
O4 - HKLM\..\Run: [anti_troj] C:\WINDOWS\System32
\anti_troj.exe
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido
anti-spyware 4.0\ewido.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32
\ctfmon.exe
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!
\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKCU\..\Run: [WeatherCast] C:\Program
Files\WeatherCast\Weather.exe /q
O4 - HKCU\..\Run: [anti_troj] C:\WINDOWS\System32
\anti_troj.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program
Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [NCLaunch] C:\WINDOWS\NCLAUNCH.EXe
O4 - Startup: Climate Change Experiment Manager.lnk =
C:\Program Files\Climate Change
Experiment\cpdnbbcmgr.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program
Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Picture Package Menu.lnk = ?
O4 - Global Startup: Picture Package VCD Maker.lnk = ?
O8 - Extra context menu item: &ICQ Toolbar Search -
res://C:\Program
Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O8 - Extra context menu item: &Search the Web -
C:\WINDOWS\Web\Ers_src.htm
O8 - Extra context menu item: &Traduire à partir de
l'anglais - res://C:\Program
Files\Google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: &Yahoo! Search -
file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
O8 - Extra context menu item: Download using Download
&Express - file://C:\WINDOWS\System32
\MetaProducts\Add_Url.htm
O8 - Extra context menu item: E&xporter vers Microsoft
Excel - res://C:\PROGRA~1\MICROS~4\Office10
\EXCEL.EXE/3000
O8 - Extra context menu item: Pages liées -
res://C:\Program
Files\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires -
res://C:\Program
Files\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Recherche &Google -
res://C:\Program
Files\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Search for Selected Text
- file://C:\PROGRA~1\GREENP~1
\Toolbar\Cache\SelectedContextSearch.htm
O8 - Extra context menu item: Version de la page
actuelle disponible dans le cache Google -
res://C:\Program
Files\Google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: Yahoo! &Dictionary -
file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O8 - Extra context menu item: Yahoo! &Maps -
file:///C:\Program Files\Yahoo!\Common/ycmap.htm
O8 - Extra context menu item: Yahoo! &SMS -
file:///C:\Program Files\Yahoo!\Common/ycsms.htm
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-
4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!
\Common\yiesrvc.dll
O9 - Extra button: Organise-notes - {9455301C-CF6B-
11D3-A266-00C04F689C50} - C:\Program Files\Fichiers
communs\Microsoft Shared\Encarta Researcher\EROPROJ.DLL
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-
818B-899DBBB3388C} - C:\Program Files\Fichiers
communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D
-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3
-4e1f-A54D-A2CD196348E9} - C:\Program
Files\ICQLite\ICQLite.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-
BB9E-00C04F795683} - C:\Program
Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger -
{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program
Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {00000000-0000-0000-0000-100005000004} -
http://code.trasferimento.biz/l/aa5c7b6cb02b45f62c45495
77f308e1b_35.exe
O16 - DPF: {1754A1BA-A1DF-4F10-B199-AA55AA1A120F}
(InstallerBehaviorFactory Class) -
https://signup.msn.com/pages/MsnInstC.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab}
(YInstStarter Class) - C:\Program Files\Yahoo!
\Common\yinsthelper.dll
O16 - DPF: {42F2C9BA-614F-47C0-B3E3-ECFD34EED658}
(Installer Class) -
http://www.ysbweb.com/ist/softwares/v4.0/ysb_pictures.c
ab
O16 - DPF: {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B}
(GSDACtl Class) -
http://launch.gamespyarcade.com/software/launch/alaunch
.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-
8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-
8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: winjjq32 - C:\WINDOWS\SYSTEM32
\winjjq32.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-
95D7-94D524869DB5} - C:\WINDOWS\system32
\WPDShServiceObj.dll
O23 - Service: ewido anti-spyware 4.0 guard - Anti-
Malware Development a.s. - C:\Program Files\ewido anti
-spyware 4.0\guard.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R)
Corporation - C:\Program
Files\Intel\NCS\Sync\NetSvc.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) -
NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe


-------
Merci d’avance.
SB