bonjour
voila j'ai fait un tour sur ce site qui est formidable et j'ai vue que pour mon probleme, qui est des ouverture permanente de win anti spyware, drivers cleaner... 
je evais cree un raport avec HIJACKTHIS donc le voila et je remercie d'avance la personne qui pourra m'aider a resoudre cela !!!
Logfile of HijackThis v1.99.1
Scan saved at 18:11:40, on 07/01/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Hijackthis Version Française\hijackthis vf.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.fr/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.fr/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.fr/keyword/%s
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [\\XPSP2-79D4A39F2\EPSON Stylus DX3800 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE /P44 "\\XPSP2-79D4A39F2\EPSON Stylus DX3800 Series" /O6 "USB002" /M "Stylus DX3800"
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.orange.fr (file missing) (HKCU)
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe
En esperant avoir une reponsse asser rapidement
juste une petite question la j'ai lancer le scan et il a fini la premiere etape que doi-je faire clicker sur next pour passer a la 2eme etape???? 
Code :
|
Répondre à Angeldark
voila c'est fait mais il ma fais passer sur la dexieme etape nonmé cleaning ensuite tjr aucun raport comme prevu donc j'ai clicker une derniere fois pour terminer et tjr aucun raport que ce passe t'il
voila les raport que tu ma demander :
AVG AS:
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 22:55:27 07/01/2007
+ Résultat de l'analyse:
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP130\A0008360.dll -> Adware.Companion : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP130\A0008362.dll -> Adware.Companion : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP149\A0026574.exe -> Adware.ErrorSafe : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP149\A0026577.dll -> Adware.ErrorSafe : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP149\A0026578.dll -> Adware.ErrorSafe : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP149\A0026583.dll -> Adware.ErrorSafe : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP142\A0020502.exe -> Adware.Lop : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP138\A0011698.cpl -> Adware.P2PNet : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP148\A0023000.exe -> Adware.SurfAcc : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP150\A0026804.exe -> Adware.SurfAcc : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP147\A0022936.exe -> Adware.SurfAccuracy : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP147\A0022937.exe -> Adware.SurfAccuracy : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP148\A0023352.exe -> Adware.SurfAccuracy : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP148\A0023353.exe -> Adware.SurfAccuracy : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP150\A0026801.exe -> Adware.SurfAccuracy : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP150\A0026802.exe -> Adware.SurfAccuracy : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP149\A0026579.dll -> Adware.SysProtect : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP149\A0026580.dll -> Adware.SysProtect : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP130\A0008357.exe -> Adware.SystemDoctor : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP130\A0008359.dll -> Adware.WinAntiVir : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP130\A0008365.dll -> Adware.WinAntiVir : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP130\A0008366.dll -> Adware.WinAntiVir : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP130\A0008346.exe -> Adware.WinAntiVirus : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP130\A0008354.exe -> Adware.WinAntiVirus : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP130\A0008355.exe -> Adware.WinAntiVirus : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP130\A0008358.exe -> Adware.WinAntiVirus : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP130\A0008361.cpl -> Adware.WinAntiVirus : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP132\A0008425.dll -> Adware.WinAntiVixer : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP149\A0026575.exe -> Adware.WinFixer : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP149\A0026581.exe -> Adware.WinFixer : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP124\A0006846.exe -> Downloader.Agent.aii : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP143\A0020515.exe -> Downloader.IstBar.no : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP147\A0022938.exe -> Downloader.IstBar.no : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP148\A0023354.exe -> Downloader.IstBar.no : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP142\A0020051.exe -> Not-A-Virus.Downloader.Win32.WinFixer.l : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP149\A0026573.exe -> Not-A-Virus.Downloader.Win32.WinFixer.t : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP130\A0008376.exe -> Proxy.Horst.or : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP142\A0016913.exe -> Proxy.Horst.pg : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP142\A0016924.exe -> Proxy.Horst.pp : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP142\A0016957.exe -> Proxy.Horst.pp : Nettoyé.
C:\System Volume Information\_restore{B1EE5BFA-74C2-4804-B4C1-D79A52DB0A63}\RP142\A0016971.exe -> Proxy.Horst.pp : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@247realmedia[1].txt -> TrackingCookie.247realmedia : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@cnn.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@g2clubnokia.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@metacafe.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@microsoftwga.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@sfr.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-F0854BF60\Cookies\admin@2o7[2].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@adbrite[2].txt -> TrackingCookie.Adbrite : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@adtech[2].txt -> TrackingCookie.Adtech : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-F0854BF60\Cookies\admin@adtech[2].txt -> TrackingCookie.Adtech : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@advertising[1].txt -> TrackingCookie.Advertising : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-F0854BF60\Cookies\admin@advertising[2].txt -> TrackingCookie.Advertising : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-F0854BF60\Cookies\admin@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-F0854BF60\Cookies\admin@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\NetworkService\Cookies\admin@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@casalemedia[1].txt -> TrackingCookie.Casalemedia : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@crbanner.casinopays[2].txt -> TrackingCookie.Casinopays : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@casinotropez[2].txt -> TrackingCookie.Casinotropez : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@promo.casinotropez[1].txt -> TrackingCookie.Casinotropez : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@centrport[1].txt -> TrackingCookie.Centrport : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-F0854BF60\Cookies\admin@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-F0854BF60\Cookies\admin@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\NetworkService\Cookies\admin@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@estat[1].txt -> TrackingCookie.Estat : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@as1.falkag[1].txt -> TrackingCookie.Falkag : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-F0854BF60\Cookies\admin@as1.falkag[1].txt -> TrackingCookie.Falkag : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@fastclick[2].txt -> TrackingCookie.Fastclick : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@ehg-digg.hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@ehg-nokiafin.hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@server.iad.liveperson[2].txt -> TrackingCookie.Liveperson : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@mediaplex[2].txt -> TrackingCookie.Mediaplex : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-F0854BF60\Cookies\admin@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@questionmarket[1].txt -> TrackingCookie.Questionmarket : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@stats1.reliablestats[2].txt -> TrackingCookie.Reliablestats : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@bs.serving-sys[1].txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@cs.sexcounter[2].txt -> TrackingCookie.Sexcounter : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-F0854BF60\Cookies\admin@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\NetworkService\Cookies\admin@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@statcounter[1].txt -> TrackingCookie.Statcounter : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-F0854BF60\Cookies\admin@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Nettoyé.
C:\Documents and Settings\NetworkService\Cookies\admin@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@valueclick[1].txt -> TrackingCookie.Valueclick : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@weborama[2].txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-F0854BF60\Cookies\admin@weborama[1].txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@statse.webtrendslive[2].txt -> TrackingCookie.Webtrendslive : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@count.xhit[2].txt -> TrackingCookie.Xhit : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@yadro[1].txt -> TrackingCookie.Yadro : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Nettoyé.
C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@zedo[1].txt -> TrackingCookie.Zedo : Nettoyé.
Fin du rapport
ensuite voila HIJACKTHIS:
Logfile of HijackThis v1.99.1
Scan saved at 23:08:06, on 07/01/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Hijackthis Version Française\hijackthis vf.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.fr/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.fr/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.fr/keyword/%s
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [\\XPSP2-79D4A39F2\EPSON Stylus DX3800 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE /P44 "\\XPSP2-79D4A39F2\EPSON Stylus DX3800 Series" /O6 "USB002" /M "Stylus DX3800"
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.orange.fr (file missing) (HKCU)
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe
Voila je ne c'est si ce fini mais en tout cas je n'ai plus ces fenetre intenpestive et j'ai deja l'impression que mon ordinateur respire deja mieu je passerai demain voir ce que tu ma dit mais sache que je te remercie enormement de m'avoir fait part de ton aide ce site et vraiment fantastique vous etes capable de tout ici (lol)!! Encore une fois merci et a demain !
Re,
Dernière vérification.
- Fais un scan en ligne Kaspersky avec Internet Explorer :
- Clique sur
- Clique maintenant sur J'accepte.
- Valide l'installation d'un ou de plusieurs ActiveX si c'est nécessaire.
- Patiente pendant l'installation des Mises à jour.
- Choisis par la suite l'analyse du Poste de travail
- Sauvegarde puis colle le rapport généré en fin d'analyse.
AIDE : Configurer le contrôle des ActiveX
NOTE : Si tu reçois le message "La licence de Kaspersky On-line Scanner est périmée", va dans Ajout/Suppression de programmes puis désinstalle On-Line Scanner, reconnecte toi sur le site de Kaspersky pour retenter le scan en ligne.
Répondre à Angeldark
On va laisser tomber le scan Kaspersky
Avec Internet Explorer
Fais un scan en ligne Panda
- Clique sur " Scan your PC "
- Ensuite sur " Check Now "
- /!\ Clique en bas sur " I don't Accept "
Entre ton adresse e-mail puis commence le scan
- Poste le rapport en fin d'analyse
Si tu as Avast! désactive-le lors du scan
Répondre à Angeldark
Tu as raté mon message 
Répondre à Angeldark
voila j'espere que la c'est bon parceque sa m'enbete de t'ennuyer pendat 15 jours avec la meme chose...
Incident Status Location
Spyware:Cookie/2o7 Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@2o7[1].txt
Spyware:Cookie/Hbmediapro Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@adopt.hbmediapro[2].txt
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@adrevolver[2].txt
Spyware:Cookie/PointRoll Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@ads.pointroll[2].txt
Spyware:Cookie/Adtech Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@adtech[2].txt
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@advertising[2].txt
Spyware:Cookie/Falkag Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@as-us.falkag[1].txt
Spyware:Cookie/Falkag Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@as1.falkag[1].txt
Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@atdmt[2].txt
Spyware:Cookie/Bluestreak Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@bluestreak[1].txt
Spyware:Cookie/Casalemedia Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@casalemedia[2].txt
Spyware:Cookie/CentrPort Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@centrport[1].txt
Spyware:Cookie/Cgi-bin Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@cgi-bin[1].txt
Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@doubleclick[1].txt
Spyware:Cookie/DriveCleaner Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@drivecleaner[1].txt
Spyware:Cookie/ErrorSafe Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@errorsafe[2].txt
Spyware:Cookie/FastClick Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@fastclick[2].txt
Spyware:Cookie/Comclick Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@fl01.ct2.comclick[1].txt
Spyware:Cookie/Hitbox Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@hitbox[2].txt
Spyware:Cookie/Maxserving Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@maxserving[1].txt
Spyware:Cookie/FastClick Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@media.fastclick[1].txt
Spyware:Cookie/Mediaplex Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@mediaplex[2].txt
Spyware:Cookie/MetriWeb Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@metriweb[1].txt
Spyware:Cookie/2o7 Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@microsoftwga.112.2o7[1].txt
Spyware:Cookie/Overture Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@overture[2].txt
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@statcounter[2].txt
Spyware:Cookie/DriveCleaner Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@stats.drivecleaner[2].txt
Spyware:Cookie/Systemdoctor Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@systemdoctor[1].txt
Spyware:Cookie/Tradedoubler Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@tradedoubler[2].txt
Spyware:Cookie/Tribalfusion Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@tribalfusion[2].txt
Spyware:Cookie/Weborama Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@weborama[1].txt
Spyware:Cookie/Winantivirus Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@winantivirus[1].txt
Spyware:Cookie/DriveCleaner Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@www.drivecleaner[1].txt
Spyware:Cookie/ErrorSafe Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@www.errorsafe[1].txt
Spyware:Cookie/Xiti Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@xiti[1].txt
Spyware:Cookie/Yadro Not disinfected C:\Documents and Settings\Admin.XPSP2-60D915994\Cookies\admin@yadro[1].txt
Spyware:Cookie/Xiti Not disinfected C:\Documents and Settings\Admin.XPSP2-F0854BF60\Cookies\admin@xiti[1].txt
Possible Virus. Not disinfected C:\Documents and Settings\All Users\Documents\setup.exe
Spyware:Cookie/Xiti Not disinfected C:\Documents and Settings\NetworkService\Cookies\admin@xiti[1].txt
Potentially unwanted tool:Application/HideWindow.S Not disinfected C:\WINDOWS\system32\cmdow.exe
