antoiner

voila le raport hijackthis: Logfile of HijackThis v1.99.1 Scan saved at 14:34:16, on 24/07/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe c:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\System32\FTRTSVC.exe c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe C:\Program Files\Norton AntiVirus\navapsvc.exe C:\Program Files\VeriSign\NAVI\naviagent.exe C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Universal Shield 4.1\US30Service.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe C:\windows\system\hpsysdrv.exe C:\HP\KBD\KBD.EXE C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\iPod\bin\iPodService.exe C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\WINDOWS\ALCWZRD.EXE C:\WINDOWS\ALCMTR.EXE C:\hp\drivers\hplsbwatcher\lsburnwatcher.exe C:\Program Files\HP\HP Software Update\HPWuSchd2.exe C:\WINDOWS\AGRSMMSG.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\HbTools\Bin\4.7.2.1\HbtOEAddOn.exe C:\Program Files\ZTE Corporation\ZXDSL852\CnxDslTb.exe C:\Program Files\MessengerPlus! 3\MsgPlus.exe C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe C:\PROGRA~1\Wanadoo\TaskBarIcon.exe C:\Program Files\Fichiers communs\RTE\RTEGPRS.exe C:\PROGRA~1\HELPAN~1\HPQ\XPXWWPP5\plugin\bin\pchbutton.exe C:\Program Files\Messenger\msmsgs.exe C:\PROGRA~1\Wanadoo\EspaceWanadoo.exe C:\PROGRA~1\MSNMES~1\msnmsgr.exe c:\progra~1\intern~1\iexplore.exe C:\Program Files\Micro Application\Les 4 Dictionnaires Utiles\MediaDICO4Ut.EXE C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\Micro Application\Les 4 Dictionnaires Utiles\Rac4Ut.EXE C:\PROGRA~1\Wanadoo\ComComp.exe C:\PROGRA~1\Wanadoo\Toaster.exe C:\PROGRA~1\Wanadoo\Inactivity.exe C:\PROGRA~1\Wanadoo\PollingModule.exe C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE C:\PROGRA~1\Wanadoo\Watch.exe C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE C:\Program Files\HbTools\Bin\4.8.0.0\HbtWeatherOnTray.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Hbtools\HBTV\HBTV.exe C:\Program Files\HbTools\Bin\4.8.0.0\HbtSrv.exe C:\Documents and Settings\Victor\Bureau\hijackthis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/avcenter/fix_homepage R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.cernet.fr R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: i-Nav IDN SearchHook - {CE000994-A58C-4441-8938-744CD72AB27F} - C:\Program Files\VeriSign\i-Nav\i-nav_4_2_1.dll R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {19DA7B70-78D2-3BB7-850D-41A4E890A7CF} - C:\DOCUME~1\Etienne\APPLIC~1\32BUIL~1\Shim copy.exe (file missing) O2 - BHO: ShprRprts - {2A8A997F-BB9F-48F6-AA2B-2762D50F9289} - C:\Program Files\ShopperReports\Bin\2.0.0\ShprRprt.dll O2 - BHO: TVEngine Helper /fleok=1D8A83A5C2E6107C91A475760EA83FA5EF80752B94E3D67F5579472B3BC6 - {4B18DD50-C996-44fc-AC52-0FECFF82ED58} - c:\program files\hbtools\hbtv\hbtvhelper.dll O2 - BHO: H&otbar - {74CC49F7-EB32-4A08-B204-948962A6E3DB} - C:\Program Files\HbTools\Bin\4.8.0.0\HbtHostIE.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton AntiVirus\NavShExt.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: i-Nav IDN Resolver - {CE000992-A58C-4441-8938-744CD72AB27F} - C:\Program Files\VeriSign\i-Nav\i-nav_4_2_1.dll O2 - BHO: (no name) - {D80C4E21-C346-4E21-8E64-20746AA20AEB} - (no file) O3 - Toolbar: (no name) - {5AA06644-BC46-4220-A460-47A6EB47C96D} - (no file) O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: H&otbar - {74CC49F7-EB32-4A08-B204-948962A6E3DB} - C:\Program Files\HbTools\Bin\4.8.0.0\HbtHostIE.dll O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton AntiVirus\NavShExt.dll O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE O4 - HKLM\..\Run: [iSUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start O4 - HKLM\..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE O4 - HKLM\..\Run: [VTTimer] VTTimer.exe O4 - HKLM\..\Run: [siSPower] Rundll32.exe SiSPower.dll,ModeAgent O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe" O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [HbTools] C:\Program Files\HbTools\Bin\4.8.0.0\HbtOEAddOn.exe O4 - HKLM\..\Run: [yqdofuix] C:\WINDOWS\system32\yjicheop.exe O4 - HKLM\..\Run: [CnxDslTaskBar] "C:\Program Files\ZTE Corporation\ZXDSL852\CnxDslTb.exe" "ZTE Corporation\ZXDSL852" O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [Readme Glue Proc Dog] C:\Documents and Settings\All Users\Application Data\Idle Hold Readme Glue\PEAK VC.exe O4 - HKLM\..\Run: [WeatherOnTray] C:\Program Files\HbTools\Bin\4.8.0.0\HbtWeatherOnTray.exe O4 - HKCU\..\Run: [RTEGPRS] "C:\Program Files\Fichiers communs\RTE\RTEGPRS.exe" tray O4 - HKCU\..\Run: [MediaDICO4Ut] C:\Program Files\Micro Application\Les 4 Dictionnaires Utiles\LanceMediaDICO4Ut.exe Lancement O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\GestMaj.exe EspaceWanadoo.exe O4 - HKCU\..\Run: [Error Safe] "C:\Program Files\Error Safe Free\ers.exe" /min O4 - HKCU\..\Run: [Acme.PCHButton] C:\PROGRA~1\HELPAN~1\HPQ\XPXWWPP5\plugin\bin\pchbutton.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [spam dumb] C:\DOCUME~1\Victor\APPLIC~1\FLAGST~1\live multi safe.exe O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart O4 - HKCU\..\Run: [msnmsgr] "C:\PROGRA~1\MSNMES~1\msnmsgr.exe" /background O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_06\bin\npjpi142_06.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_06\bin\npjpi142_06.dll O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: ShopperReports - Compare product prices - {946B3E9E-E21A-49c8-9F63-900533FAFE14} - C:\Program Files\ShopperReports\Bin\2.0.0\ShprRprt.dll O9 - Extra button: ShopperReports - Compare travel rates - {946B3E9E-E21A-49c8-9F63-900533FAFE15} - C:\Program Files\ShopperReports\Bin\2.0.0\ShprRprt.dll O9 - Extra button: Aide i-Nav - {CE000992-A58C-4441-8938-744CD72AB27F} - http://idn.verisign-grs.com/plug-in/support/index.jsp (file missing) O9 - Extra 'Tools' menuitem: Aide i-Nav - {CE000992-A58C-4441-8938-744CD72AB27F} - http://idn.verisign-grs.com/plug-in/support/index.jsp (file missing) O9 - Extra button: (no name) - {CE000996-A58C-4441-8938-744CD72AB27F} - C:\Program Files\VeriSign\i-Nav\i-nav_4_2_1.dll O9 - Extra 'Tools' menuitem: Options i-Nav - {CE000996-A58C-4441-8938-744CD72AB27F} - C:\Program Files\VeriSign\i-Nav\i-nav_4_2_1.dll O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.wanadoo.fr (file missing) (HKCU) O14 - IERESET.INF: START_PAGE_URL=http://www.cernet.fr O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {3DC2E31C-371A-4BD3-9A27-CDF57CE604CF} - http://fr.moneycentral.msn.com/cabs/pmupd806.exe O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab31267.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{B1651FFB-D44F-4B82-A7A7-0967F218AC65}: NameServer = 80.10.246.130 80.10.246.3 O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll O20 - Winlogon Notify: PCANotify - C:\WINDOWS\SYSTEM32\PCANotify.dll O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: pcAnywhere Host Service (awhost32) - Symantec Corporation - C:\Program Files\Symantec\pcAnywhere\awhost32.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe O23 - Service: VeriSign Updater (navi) - VeriSign, Inc. - C:\Program Files\VeriSign\NAVI\naviagent.exe O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe O23 - Service: SPBBCSvc - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe O23 - Service: US30Service - Unknown owner - C:\Program Files\Universal Shield 4.1\US30Service.exe

voila: REGEDIT4 ; Registry Search by Bobbi Flekman © 2005 ; Version: 1.0.2.4 ; Results at 04/07/2006 11:52:16 for strings: ; 'sidesearch' ; Strings excluded from search: ; (None) ; Search in: ; Registry Keys Registry Values Registry Data ; HKEY_LOCAL_MACHINE HKEY_USERS ; End Of The Log... et encore: Symantec Spyware.WebHancer Removal Tool 1.0.2 Spyware.WebHancer has not been found on your computer.

bonjour!!! dsl d avoir mis tant de temps : REGEDIT4 ; Registry Search by Bobbi Flekman © 2005 ; Version: 1.0.2.4 ; Results at 04/07/2006 09:44:21 for strings: ; 'dyfuca' ; Strings excluded from search: ; (None) ; Search in: ; Registry Keys Registry Values Registry Data ; HKEY_LOCAL_MACHINE HKEY_USERS ; End Of The Log...

bonjour je suis chez une copine et son pc rame a font voici le rapport hijckthis: que pui je faire? Logfile of HijackThis v1.99.1 Scan saved at 17:23:19, on 03/07/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe C:\WINDOWS\System32\keyhook.exe C:\WINDOWS\SOUNDMAN.EXE C:\WINDOWS\CNYHKey.exe C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe C:\Program Files\Iomega HotBurn Pro\Autolaunch.exe C:\PROGRA~1\ACDSYS~1\DEVDET~1\DEVDET~1.EXE C:\PROGRA~1\NORTON~1\navapw32.exe C:\WINDOWS\System32\P2P Networking\P2P Networking.exe C:\Documents and Settings\Administrateur\Bureau\Antoine\MSN\MsgPlus.exe C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mmtask.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Sony\CONNECTAutoUpdate\CONNECTScheduler.exe C:\Program Files\Internet Explorer\iexplore.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe c:\progra~1\intern~1\iexplore.exe C:\Program Files\Sony\CONNECTAutoUpdate\CONNECTAUTrayApp.exe C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe C:\Program Files\Fichiers communs\Sonic Shared\cinetray.exe C:\Program Files\Fichiers communs\Sony Shared\GMR\GMRMan.exe C:\PROGRA~1\Iomega\System32\AppServices.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe C:\Program Files\Norton AntiVirus\navapsvc.exe C:\Program Files\VeriSign\NAVI\naviagent.exe C:\Program Files\Sony\CONNECTAutoUpdate\CONNECTAutoUpdate.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Canon\CAL\CALMAIN.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\WINDOWS\system32\svchost.exe C:\Documents and Settings\Administrateur\Bureau\Antoine\LimeWire\LimeWire.exe C:\Documents and Settings\Administrateur\Bureau\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://www.gophersearch.com/ R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.gophersearch.com/ R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.gophersearch.com/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.gophersearch.com/ R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.gophersearch.com/ R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.gophersearch.com/ R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: i-Nav IDN SearchHook - {CE000994-A58C-4441-8938-744CD72AB27F} - C:\Program Files\VeriSign\i-Nav\i-nav_4_2_1.dll O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: (no name) - {348202DA-1A11-C37A-35AE-05C6464B4EF1} - C:\DOCUME~1\ADMINI~1\APPLIC~1\MOVEMA~1\StoreBalm.exe O2 - BHO: Need2Find Bar BHO - {4D1C4E81-A32A-416b-BCDB-33B3EF3617D3} - C:\Program Files\Need2Find\bar\1.bin\ND2FNBAR.DLL O2 - BHO: RXResultTracker Class - {59879FA4-4790-461c-A1CC-4EC4DE4CA483} - C:\Program Files\RXToolBar\sfcont.dll (file missing) O2 - BHO: (no name) - {6F41F77C-87CF-C722-6397-1E20829ED63D} - C:\DOCUME~1\ADMINI~1\APPLIC~1\MOVEMA~1\StoreBalm.exe O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O2 - BHO: CNavExtBho Class - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll O2 - BHO: i-Nav IDN Resolver - {CE000992-A58C-4441-8938-744CD72AB27F} - C:\Program Files\VeriSign\i-Nav\i-nav_4_2_1.dll O2 - BHO: ohb Class - {E8888041-B24A-4B0B-911B-12B018E43F21} - C:\WINDOWS\System32\rlmtcs.dll O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe O4 - HKLM\..\Run: [siS Windows KeyHook] C:\WINDOWS\System32\keyhook.exe O4 - HKLM\..\Run: [siSUSBRG] C:\WINDOWS\SiSUSBrg.exe O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [CHotkey] mHotkey.exe O4 - HKLM\..\Run: [ledpointer] CNYHKey.exe O4 - HKLM\..\Run: [share-to-Web Namespace Daemon] C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe O4 - HKLM\..\Run: [MMTray] "C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe" O4 - HKLM\..\Run: [Drag'n'Drop_Autolaunch] "C:\Program Files\Iomega HotBurn Pro\Autolaunch.exe" O4 - HKLM\..\Run: [Camera Detector] C:\PROGRA~1\ACDSYS~1\DEVDET~1\DEVDET~1.EXE -autorun O4 - HKLM\..\Run: [NAV Agent] C:\PROGRA~1\NORTON~1\navapw32.exe O4 - HKLM\..\Run: [P2P Networking] C:\WINDOWS\System32\P2P Networking\P2P Networking.exe /AUTOSTART O4 - HKLM\..\Run: [MessengerPlus3] "C:\Documents and Settings\Administrateur\Bureau\Antoine\MSN\MsgPlus.exe" O4 - HKLM\..\Run: [mmtask] "C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mmtask.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Grid tick nurb ford] C:\Documents and Settings\All Users\Application Data\RuleCityGridTick\RectMags.exe O4 - HKLM\..\Run: [CONNECTScheduler] "C:\Program Files\Sony\CONNECTAutoUpdate\CONNECTScheduler.exe" /RUN_SCHEDULER O4 - HKLM\..\Run: [fragmemosoftkind] C:\Documents and Settings\All Users\Application Data\Site Drive Frag Memo\EXIT CITY.exe O4 - HKLM\..\Run: [symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [bird Flap] C:\DOCUME~1\ADMINI~1\APPLIC~1\BROWSE~1\Multi Setup Cast.exe O4 - Global Startup: CONNECTAUTrayApp.lnk = C:\Program Files\Sony\CONNECTAutoUpdate\CONNECTAUTrayApp.exe O4 - Global Startup: Kodak software updater.lnk = C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe O4 - Global Startup: Logiciel Kodak EasyShare.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O4 - Global Startup: Sonic CinePlayer Quick Launch.lnk = ? O8 - Extra context menu item: &Search - http://ko.bar.need2find.com/KO/menusearch.html?p=KO O8 - Extra context menu item: &Traduire à partir de l'anglais - res://C:\Program Files\Google\GoogleToolbar2.dll/cmwordtrans.html O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Pages liées - res://C:\Program Files\Google\GoogleToolbar2.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://C:\Program Files\Google\GoogleToolbar2.dll/cmsimilar.html O8 - Extra context menu item: Recherche &Google - res://C:\Program Files\Google\GoogleToolbar2.dll/cmsearch.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://C:\Program Files\Google\GoogleToolbar2.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll O9 - Extra button: Aide i-Nav - {CE000992-A58C-4441-8938-744CD72AB27F} - http://idn.verisign-grs.com/plug-in/support/index.jsp (file missing) O9 - Extra 'Tools' menuitem: Aide i-Nav - {CE000992-A58C-4441-8938-744CD72AB27F} - http://idn.verisign-grs.com/plug-in/support/index.jsp (file missing) O9 - Extra button: (no name) - {CE000996-A58C-4441-8938-744CD72AB27F} - C:\Program Files\VeriSign\i-Nav\i-nav_4_2_1.dll O9 - Extra 'Tools' menuitem: Options i-Nav - {CE000996-A58C-4441-8938-744CD72AB27F} - C:\Program Files\VeriSign\i-Nav\i-nav_4_2_1.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {1D6711C8-7154-40BB-8380-3DEA45B69CBF} (Web P2P Installer) - O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/...nst20040510.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab31267.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{06957844-D77C-456C-AED3-04AACA35F361}: NameServer = 193.252.19.3,193.252.19.4 O17 - HKLM\System\CS1\Services\Tcpip\..\{06957844-D77C-456C-AED3-04AACA35F361}: NameServer = 193.252.19.3,193.252.19.4 O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Filter: text/html - {2AB289AE-4B90-4281-B2AE-1F4BB034B647} - C:\Program Files\RXToolBar\sfcont.dll O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe O23 - Service: Iomega App Services - Iomega Corporation - C:\PROGRA~1\Iomega\System32\AppServices.exe O23 - Service: Kodak Camera Connection Software (KodakCCS) - Eastman Kodak Company - C:\WINDOWS\system32\drivers\KodakCCS.exe O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe O23 - Service: VeriSign Updater (navi) - VeriSign, Inc. - C:\Program Files\VeriSign\NAVI\naviagent.exe O23 - Service: NoiseCtl - Fujitsu Siemens Computers - C:\Program Files\Fujitsu Siemens\Xontrol\NoiseCtl.exe O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe O23 - Service: Sony SCSI Helper Service - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\Fsk\SonySCSIHelperService.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe

dsl il n y a rien ici !!!! c:\Program Files\ DyFuCA<== tout le dossier

je n' ai pas pu suprimer cela car il n y avais rien!! HKEY_USERS\S-1-5-18\Software\ New.net REGEDIT4 ; Registry Search by Bobbi Flekman © 2005 ; Version: 1.0.2.4 ; Results at 03/07/2006 12:04:54 for strings: ; 'new.net' ; Strings excluded from search: ; (None) ; Search in: ; Registry Keys Registry Values Registry Data ; HKEY_LOCAL_MACHINE HKEY_USERS ; End Of The Log...

en faite c bon merci. Et sa tient tj : c'est quoi un proxy???? lol

euh.......... en faite c marqué junior member alors expliquez ce qu' est un proxy.... et sinon j' ai norton mais je pense pas que se soit un probleme de par feu

et voila!! REGEDIT4 ; Registry Search by Bobbi Flekman © 2005 ; Version: 1.0.2.4 ; Results at 03/07/2006 10:47:42 for strings: ; 'new.net' ; Strings excluded from search: ; (None) ; Search in: ; Registry Keys Registry Values Registry Data ; HKEY_LOCAL_MACHINE HKEY_USERS [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\New.net] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\New.net] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\New.net] "DisplayName"="New.net Domains 7.22" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\New.net] "Publisher"="New.net, Inc." [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\New.net] "URLInfoAbout"="http://www.new.net/" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\New.net] "HelpLink"="http://www.new.net/help_faq.tp" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\New.net] "URLUpdateInfo"="http://www.new.net/index.tp" [HKEY_LOCAL_MACHINE\SOFTWARE\New.net] [HKEY_USERS\.DEFAULT\Software\New.net] [HKEY_USERS\S-1-5-21-2750245646-3870813415-3996515622-1007\Software\New.net] [HKEY_USERS\S-1-5-18\Software\New.net] ; End Of The Log...

SmitFraudFix v2.66 Rapport fait à 10:18:31,98, 03/07/2006 Executé à partir de C:\Documents and Settings\antoine\Bureau\SmitfraudFix\SmitfraudFix OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT Fix executé en mode normal »»»»»»»»»»»»»»»»»»»»»»»» C:\ »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS C:\WINDOWS\keyboard1.dat PRESENT ! »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32 »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\antoine\Application Data »»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer »»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\antoine\Favoris »»»»»»»»»»»»»»»»»»»»»»»» Bureau »»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files »»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues »»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0] "Source"="About:Home" "SubscribedURL"="About:Home" "FriendlyName"="Ma page d'accueil" »»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! SrchSTS.exe by S!Ri Search SharedTaskScheduler's .dll »»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll »»»»»»»»»»»»»»»»»»»»»»»» Fin

hi! je n arive po a me conecter a msn messenger. on me dit que c' est du a des parametres incorects de proxy ou de par feu. Que faire????

je ne pensait pas avoir tout sa!!!! Incident Statut Analyse Adware:adware/swimsuitnetwork No Désinfecté c:\windows\system32\MYDLL.dll Adware:adware/dollarrevenue No Désinfecté c:\windows\keyboard1.dat Adware:adware/whenusearch No Désinfecté c:\program files\fichiers communs\WhenU Spyware:spyware/new.net No Désinfecté Registre Windows Outil indésirable:application/winantivirus2006 No Désinfecté hkey_local_machine\software\WinAntiVirus Pro 2006 Adware:adware/dyfuca No Désinfecté Registre Windows Adware:adware/ist.istbar No Désinfecté Registre Windows Adware:adware/webhancer No Désinfecté Registre Windows Adware:adware/sidesearch No Désinfecté Registre Windows Dialer:dialer.fgw No Désinfecté hkey_classes_root\phoneaccessexe.phoneaccessexe Outil indésirable:application/regfreeze No Désinfecté hkey_current_user\software\actualresearch\RegistryFreeze Adware:adware/searchexe No Désinfecté Registre Windows Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt[.xiti.com/] Spyware:Cookie/Tradedoubler No Désinfecté C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt[.tradedoubler.com/] Spyware:Cookie/Bluestreak No Désinfecté C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt[.bluestreak.com/] Spyware:Cookie/RealMedia No Désinfecté C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt[.247realmedia.com/] Spyware:Cookie/Mediaplex No Désinfecté C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt[.mediaplex.com/] Spyware:Cookie/Com.com No Désinfecté C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt[.com.com/] Spyware:Cookie/Doubleclick No Désinfecté C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt[.doubleclick.net/] Spyware:Cookie/Hbmediapro No Désinfecté C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt[.adopt.hbmediapro.com/] Spyware:Cookie/Belnk No Désinfecté C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt[.belnk.com/] Spyware:Cookie/bravenetA No Désinfecté C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt[.bravenet.com/] Spyware:Cookie/fe.lea.lycos No Désinfecté C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt[.fe.lea.lycos.fr/] Spyware:Cookie/GoStats No Désinfecté C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt[.gostats.com/] Spyware:Cookie/DomainSponsor No Désinfecté C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt[.landing.domainsponsor.com/] Spyware:Cookie/MetriWeb No Désinfecté C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt[.metriweb.be/] Spyware:Cookie/AspinallsOnlineCasino No Désinfecté C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt[.pacificpoker.com/] Spyware:Cookie/RealMedia No Désinfecté C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt[.realmedia.com/] Spyware:Cookie/Searchportal No Désinfecté C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt[.searchportal.information.com/] Spyware:Cookie/RealMedia No Désinfecté C:\Documents and Settings\antoine\Cookies\antoine@247realmedia[2].txt Spyware:Cookie/Hbmediapro No Désinfecté C:\Documents and Settings\antoine\Cookies\antoine@adopt.hbmediapro[2].txt Spyware:Cookie/Apmebf No Désinfecté C:\Documents and Settings\antoine\Cookies\antoine@apmebf[2].txt Spyware:Cookie/Falkag No Désinfecté C:\Documents and Settings\antoine\Cookies\antoine@as1.falkag[2].txt Spyware:Cookie/Bluestreak No Désinfecté C:\Documents and Settings\antoine\Cookies\antoine@bluestreak[2].txt Spyware:Cookie/fe.lea.lycos No Désinfecté C:\Documents and Settings\antoine\Cookies\antoine@fe.lea.lycos[1].txt Spyware:Cookie/Comclick No Désinfecté C:\Documents and Settings\antoine\Cookies\antoine@fl01.ct2.comclick[2].txt Spyware:Cookie/TargetSaver No Désinfecté C:\Documents and Settings\antoine\Cookies\antoine@targetsaver[2].txt Spyware:Cookie/Tradedoubler No Désinfecté C:\Documents and Settings\antoine\Cookies\antoine@tradedoubler[2].txt Spyware:Cookie/Weborama No Désinfecté C:\Documents and Settings\antoine\Cookies\antoine@weborama[2].txt Spyware:Cookie/Advnt No Désinfecté C:\Documents and Settings\antoine\Cookies\antoine@www.advnt01[1].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\antoine\Cookies\antoine@xiti[1].txt Adware:Adware/YazzleSudoku No Désinfecté C:\Documents and Settings\antoine\Local Settings\Temporary Internet Files\Content.IE5\GA1R8O9Z\116[1].avi Adware:Adware/Maxifiles No Désinfecté C:\Documents and Settings\antoine\Local Settings\Temporary Internet Files\Content.IE5\MSGSN3N0\117[1].avi Virus:Trj/Downloader.JDK Désinfecté C:\Documents and Settings\antoine\Local Settings\Temporary Internet Files\Content.IE5\MSGSN3N0\i[1].exe Adware:Adware/NewAds No Désinfecté C:\Documents and Settings\antoine\Local Settings\Temporary Internet Files\Content.IE5\MSGSN3N0\maxidr[1].avi

Il n ya plus le dossier dans program file mais je n' arive pas a lancer le scan pourtant j' ai fais exactement comme vous l' avez dit!!!!!

voila: Pocket Killbox version 2.0.0.648 Running on Windows XP as antoine(Administrator) was started @ dimanche, juillet 02, 2006, 2:25 PM # 1 [Delete on Reboot] Path = C:\Program Files\ToolBar888 PendingFileRenameOperations Registry Data has been Removed by External Process! @ 2:25:53 PM # 2 [Delete on Reboot] Path = C:\Program Files\ToolBar888 Killbox Closed(Exit) @ 2:26:39 PM __________________________________________________

bonjour, mon frere ma preter son pc et je trouve qu' il rame un peu!!!! pouriez vous me dire quoi faire? je vous poste un rapport hijackthis dans le cas ou sa vous srviré, sinon des petites astuces sraient les bien venus afin de le faire avancer plus vite. Logfile of HijackThis v1.99.1 Scan saved at 10:26:14, on 02/07/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe C:\Program Files\Norton Internet Security\ISSVC.exe C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe C:\WINDOWS\system32\brsvc01a.exe C:\WINDOWS\system32\brss01a.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\hkcmd.exe C:\Program Files\Toshiba\Windows Utilities\Hotkey.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe C:\WINDOWS\system32\igfxext.exe C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe C:\WINDOWS\system32\dla\tfswctrl.exe C:\Program Files\MessengerPlus! 3\MsgPlus.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe C:\Program Files\Shareaza\Shareaza.exe C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Inventel\Gateway\wlancfg.exe C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\AntiVir PersonalEdition Classic\sched.exe C:\Documents and Settings\etiennebouleig\Bureau\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll O2 - BHO: Norton Internet Security - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll O3 - Toolbar: Norton Internet Security - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [Toshiba Hotkey Utility] "C:\Program Files\Toshiba\Windows Utilities\Hotkey.exe" /lang FR O4 - HKLM\..\Run: [synTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [PadTouch] C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe O4 - HKLM\..\Run: [smoothView] C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe O4 - HKLM\..\Run: [symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [shareaza] "C:\Program Files\Shareaza\Shareaza.exe" -tray O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe O23 - Service: ISSvc (ISSVC) - Symantec Corporation - C:\Program Files\Norton Internet Security\ISSVC.exe O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Inventel - C:\Program Files\Inventel\Gateway\wlancfg.exe

bonjour, mon frere ma preter son pc et je trouve qu' il rame un peu!!!! pouriez vous me dire quoi faire? je vous poste un rapport hijackthis dans le cas ou sa vous srviré, sinon des petites astuces sraient les bien venus afin de le faire avancer plus vite. Logfile of HijackThis v1.99.1 Scan saved at 10:26:14, on 02/07/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe C:\Program Files\Norton Internet Security\ISSVC.exe C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe C:\WINDOWS\system32\brsvc01a.exe C:\WINDOWS\system32\brss01a.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\hkcmd.exe C:\Program Files\Toshiba\Windows Utilities\Hotkey.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe C:\WINDOWS\system32\igfxext.exe C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe C:\WINDOWS\system32\dla\tfswctrl.exe C:\Program Files\MessengerPlus! 3\MsgPlus.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe C:\Program Files\Shareaza\Shareaza.exe C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Inventel\Gateway\wlancfg.exe C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\AntiVir PersonalEdition Classic\sched.exe C:\Documents and Settings\etiennebouleig\Bureau\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll O2 - BHO: Norton Internet Security - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll O3 - Toolbar: Norton Internet Security - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [Toshiba Hotkey Utility] "C:\Program Files\Toshiba\Windows Utilities\Hotkey.exe" /lang FR O4 - HKLM\..\Run: [synTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [PadTouch] C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe O4 - HKLM\..\Run: [smoothView] C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe O4 - HKLM\..\Run: [symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [shareaza] "C:\Program Files\Shareaza\Shareaza.exe" -tray O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe O23 - Service: ISSvc (ISSVC) - Symantec Corporation - C:\Program Files\Norton Internet Security\ISSVC.exe O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Inventel - C:\Program Files\Inventel\Gateway\wlancfg.exe

Je crois que tu devrer poster un rapport hijackthis et ensuite il y ora bien des personnes qualifié qui te diron quoi faire!!

???????????????????????????????????????????????????????????????????????????????????

ok merci

je n'ai pas de mauvaise intention mais je voudrais savoir ce qu' est un cheval de troie? Et comment sa s'atrape et tout et tout.... merci de rep car je suis debutant et jvoudrais savoir!!!

pour C:\Program Files\ ToolBar888<== tout le dossier je ne peut pas le suprimer et je n'avias pas trouvé O8 - Extra context menu item: &MyToolBar Search - res://C:\Program Files\ToolBar888\MyToolBar.dll/MENUSEARCH.HTM dans le rapport hijackthis. Et pour les autres je ne les trouve pas!!! Mon pc est donc clean maintenant? Merci bcp de votre aide efficace.

j' ai fait a peu pres tous mais j'ai eu quelque probleme et je n' ai pas pu suprimer tous ce que vous me demander. --------------------------------------------------------- ewido anti-spyware - Scan Report --------------------------------------------------------- + Created at: 22:40:00 30/06/2006 + Scan result: C:\Program Files\180SearchAssistant -> Adware.180Solutions : Cleaned with backup (quarantined). C:\Program Files\180SearchAssistant\180SA -> Adware.180Solutions : Cleaned with backup (quarantined). C:\Program Files\180SearchAssistant\180SA\saap.log -> Adware.180Solutions : Cleaned with backup (quarantined). HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\saap -> Adware.180Solutions : Cleaned with backup (quarantined). HKLM\SOFTWARE\saap -> Adware.180Solutions : Cleaned with backup (quarantined). HKU\S-1-5-21-2750245646-3870813415-3996515622-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{56F1D444-11BF-4879-A12B-79CF0177F038} -> Adware.180Solutions : Cleaned with backup (quarantined). HKU\S-1-5-21-2750245646-3870813415-3996515622-1007\Software\saap -> Adware.180Solutions : Cleaned with backup (quarantined). C:\Documents and Settings\antoine\Local Settings\Temporary Internet Files\Content.IE5\GA1R8O9Z\AppWrap[1].exe -> Adware.AdURL : Cleaned with backup (quarantined). C:\Documents and Settings\antoine\Local Settings\Temporary Internet Files\Content.IE5\WNXEWZC7\AppWrap[1].exe -> Adware.AdURL : Cleaned with backup (quarantined). C:\WINDOWS\icont.exe -> Adware.AdURL : Cleaned with backup (quarantined). C:\Documents and Settings\antoine\Local Settings\Temporary Internet Files\Content.IE5\MSGSN3N0\119[1].avi -> Adware.Agent : Cleaned with backup (quarantined). C:\RECYCLER\S-1-5-21-2750245646-3870813415-3996515622-1007\Dc3\asappsrv.dll -> Adware.CommAd : Cleaned with backup (quarantined). C:\WINDOWS\system32\MLSTDFMT.DLL -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\MVIMUSIC.DLL -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\cwnfmsp.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\dLtaclen.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\dawsockx.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\fpnu0359e.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\guard.tmp -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\hr8q05l5e.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\hrjq0515e.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\igign32.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\jtlq0735e.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\k2pm0c71ef.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\koddiv1.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\kvdmaori.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\l0p20a7oed.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\moiavi32.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\mol_qic.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\mqjetoledb40.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\mvltus40.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\mwxclu.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\ngrsfr.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\nhwdev.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\o2lu0c39ef.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\okbccp32.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\okethk32.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\p68q0gl5e6q.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\pyustab.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\rNsctrs.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\ryvpsp.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\sanscfg.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\shsinv.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\sincui.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\sodpsrv.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\soobject.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\svscrap.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\uenpui.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\WINDOWS\system32\xQctsrv.dll -> Adware.Look2Me : Cleaned with backup (quarantined). C:\Documents and Settings\antoine\Mes documents\backups\backup-20060630-214131-452.dll -> Adware.Maxifiles : Cleaned with backup (quarantined). C:\Program Files\DNS\cwebpage.dll -> Adware.Maxifiles : Cleaned with backup (quarantined). C:\Program Files\Fichiers communs\services.exe -> Adware.Maxifiles : Cleaned with backup (quarantined). C:\Program Files\NewDotNet -> Adware.NewDotNet : Cleaned with backup (quarantined). C:\Program Files\NewDotNet\newdotnet7_22.dll -> Adware.NewDotNet : Cleaned with backup (quarantined). C:\Program Files\NewDotNet\readme.html -> Adware.NewDotNet : Cleaned with backup (quarantined). C:\Program Files\NewDotNet\uninstall7_22.exe -> Adware.NewDotNet : Cleaned with backup (quarantined). C:\WINDOWS\NDNuninstall7_22.exe -> Adware.NewDotNet : Cleaned with backup (quarantined). HKU\S-1-5-21-2750245646-3870813415-3996515622-1007\Software\DNS -> Adware.Shorty : Cleaned with backup (quarantined). HKU\S-1-5-21-2750245646-3870813415-3996515622-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FFF4E223-7019-4CE7-BE03-D7D3C8CCE884} -> Adware.Shorty : Cleaned with backup (quarantined). C:\Program Files\whInstall -> Adware.Webhancer : Cleaned with backup (quarantined). C:\Program Files\whInstall\whAgent.inf -> Adware.Webhancer : Cleaned with backup (quarantined). C:\Program Files\whInstall\whInstaller.ini -> Adware.Webhancer : Cleaned with backup (quarantined). C:\RECYCLER\S-1-5-21-2750245646-3870813415-3996515622-1007\Dc2\Programs\webhdll.dll -> Adware.WebHancer : Cleaned with backup (quarantined). C:\RECYCLER\S-1-5-21-2750245646-3870813415-3996515622-1007\Dc2\Programs\whinstaller.exe -> Adware.WebHancer : Cleaned with backup (quarantined). HKLM\SOFTWARE\webHancer -> Adware.WebHancer : Cleaned with backup (quarantined). HKLM\SOFTWARE\webHancer\CC -> Adware.WebHancer : Cleaned with backup (quarantined). C:\Documents and Settings\antoine\Local Settings\Temporary Internet Files\Content.IE5\XO93WJHF\AppWrap[1].exe -> Adware.Zestyfind : Cleaned with backup (quarantined). C:\Documents and Settings\parent\dr.0xe -> Downloader.Adload.bo : Cleaned with backup (quarantined). C:\Documents and Settings\parent\Local Settings\Temporary Internet Files\Content.IE5\QROZAFYH\drsmartload[1].0xe -> Downloader.Adload.bv : Cleaned with backup (quarantined). C:\Documents and Settings\parent\Local Settings\Temporary Internet Files\Content.IE5\IJCL690F\newname25[1].0xe -> Downloader.VB.abm : Cleaned with backup (quarantined). C:\Documents and Settings\parent\Local Settings\Temporary Internet Files\Content.IE5\QROZAFYH\keyboard25[1].0xe -> Hijacker.StartPage.aju : Cleaned with backup (quarantined). :mozilla.36:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned. :mozilla.37:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned. :mozilla.38:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned. :mozilla.39:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned. :mozilla.40:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned. :mozilla.271:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.41:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.42:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.43:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.64:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Adtech : Cleaned. :mozilla.65:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Adtech : Cleaned. C:\Documents and Settings\parent\Cookies\parent@adtech[2].txt -> TrackingCookie.Adtech : Cleaned. C:\Documents and Settings\antoine\Cookies\antoine@atdmt[1].txt -> TrackingCookie.Atdmt : Cleaned. C:\Documents and Settings\parent\Cookies\parent@atdmt[2].txt -> TrackingCookie.Atdmt : Cleaned. C:\Documents and Settings\parent\Local Settings\Temp\Cookies\parent@atdmt[2].txt -> TrackingCookie.Atdmt : Cleaned. C:\Documents and Settings\antoine\Cookies\antoine@bluestreak[2].txt -> TrackingCookie.Bluestreak : Cleaned. C:\Documents and Settings\parent\Cookies\parent@bluestreak[1].txt -> TrackingCookie.Bluestreak : Cleaned. C:\Documents and Settings\parent\Local Settings\Temp\Cookies\parent@bluestreak[2].txt -> TrackingCookie.Bluestreak : Cleaned. :mozilla.295:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Casinotropez : Cleaned. :mozilla.125:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Clickbank : Cleaned. :mozilla.48:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Clickhype : Cleaned. :mozilla.131:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Com : Cleaned. :mozilla.132:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Com : Cleaned. :mozilla.173:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Comclick : Cleaned. :mozilla.174:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Comclick : Cleaned. :mozilla.175:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Comclick : Cleaned. C:\Documents and Settings\antoine\Cookies\antoine@cpvfeed[1].txt -> TrackingCookie.Cpvfeed : Cleaned. C:\Documents and Settings\parent\Cookies\parent@cpvfeed[1].txt -> TrackingCookie.Cpvfeed : Cleaned. :mozilla.18:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned. C:\Documents and Settings\antoine\Cookies\antoine@doubleclick[1].txt -> TrackingCookie.Doubleclick : Cleaned. C:\Documents and Settings\parent\Cookies\parent@doubleclick[2].txt -> TrackingCookie.Doubleclick : Cleaned. C:\Documents and Settings\parent\Local Settings\Temp\Cookies\parent@doubleclick[1].txt -> TrackingCookie.Doubleclick : Cleaned. :mozilla.165:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Estat : Cleaned. C:\Documents and Settings\antoine\Cookies\antoine@estat[1].txt -> TrackingCookie.Estat : Cleaned. :mozilla.50:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned. C:\Documents and Settings\antoine\Cookies\antoine@as1.falkag[1].txt -> TrackingCookie.Falkag : Cleaned. C:\Documents and Settings\parent\Cookies\parent@fastclick[2].txt -> TrackingCookie.Fastclick : Cleaned. :mozilla.170:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Findwhat : Cleaned. C:\Documents and Settings\parent\Cookies\parent@ivwbox[2].txt -> TrackingCookie.Ivwbox : Cleaned. :mozilla.316:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned. :mozilla.317:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned. :mozilla.318:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned. :mozilla.319:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned. C:\Documents and Settings\parent\Cookies\parent@mediaplex[1].txt -> TrackingCookie.Mediaplex : Cleaned. :mozilla.341:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Onestat : Cleaned. :mozilla.342:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Onestat : Cleaned. :mozilla.290:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Overture : Cleaned. :mozilla.30:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Overture : Cleaned. :mozilla.31:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Overture : Cleaned. :mozilla.57:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned. :mozilla.58:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned. :mozilla.59:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned. :mozilla.60:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned. C:\Documents and Settings\antoine\Cookies\antoine@ads.pointroll[1].txt -> TrackingCookie.Pointroll : Cleaned. C:\Documents and Settings\parent\Cookies\parent@ads.pointroll[1].txt -> TrackingCookie.Pointroll : Cleaned. C:\Documents and Settings\parent\Local Settings\Temp\Cookies\parent@ads.pointroll[1].txt -> TrackingCookie.Pointroll : Cleaned. C:\Documents and Settings\parent\Cookies\parent@stats1.reliablestats[2].txt -> TrackingCookie.Reliablestats : Cleaned. C:\Documents and Settings\parent\Local Settings\Temp\Cookies\parent@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : Cleaned. :mozilla.306:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Revenue : Cleaned. :mozilla.22:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned. :mozilla.23:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned. :mozilla.24:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned. :mozilla.25:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned. :mozilla.26:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned. C:\Documents and Settings\antoine\Cookies\antoine@serving-sys[2].txt -> TrackingCookie.Serving-sys : Cleaned. C:\Documents and Settings\parent\Cookies\parent@serving-sys[2].txt -> TrackingCookie.Serving-sys : Cleaned. C:\Documents and Settings\parent\Cookies\parent@www.sidefind[2].txt -> TrackingCookie.Sidefind : Cleaned. :mozilla.103:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Sitestat : Cleaned. :mozilla.197:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Sitestat : Cleaned. :mozilla.198:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Sitestat : Cleaned. :mozilla.234:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Sitestat : Cleaned. :mozilla.235:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Sitestat : Cleaned. :mozilla.11:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned. :mozilla.12:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned. :mozilla.13:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned. :mozilla.14:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned. C:\Documents and Settings\antoine\Cookies\antoine@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Cleaned. C:\Documents and Settings\parent\Cookies\parent@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Cleaned. C:\Documents and Settings\parent\Local Settings\Temp\Cookies\parent@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Cleaned. :mozilla.343:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.344:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.345:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. C:\Documents and Settings\antoine\Cookies\antoine@tacoda[1].txt -> TrackingCookie.Tacoda : Cleaned. :mozilla.360:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned. :mozilla.361:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned. :mozilla.362:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned. :mozilla.363:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned. C:\Documents and Settings\antoine\Cookies\antoine@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Cleaned. C:\Documents and Settings\parent\Local Settings\Temp\Cookies\parent@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Cleaned. :mozilla.364:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned. :mozilla.365:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned. :mozilla.366:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned. :mozilla.370:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned. :mozilla.397:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Web-stat : Cleaned. :mozilla.398:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Web-stat : Cleaned. :mozilla.399:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Web-stat : Cleaned. :mozilla.10:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Weborama : Cleaned. :mozilla.15:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Weborama : Cleaned. :mozilla.16:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Weborama : Cleaned. :mozilla.9:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Weborama : Cleaned. C:\Documents and Settings\antoine\Cookies\antoine@weborama[2].txt -> TrackingCookie.Weborama : Cleaned. C:\Documents and Settings\parent\Cookies\parent@weborama[1].txt -> TrackingCookie.Weborama : Cleaned. C:\Documents and Settings\parent\Local Settings\Temp\Cookies\parent@weborama[2].txt -> TrackingCookie.Weborama : Cleaned. :mozilla.19:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned. :mozilla.20:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned. :mozilla.21:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned. C:\Documents and Settings\parent\Cookies\parent@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Cleaned. C:\Documents and Settings\parent\Local Settings\Temp\Cookies\parent@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Cleaned. :mozilla.490:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Zedo : Cleaned. :mozilla.491:C:\Documents and Settings\antoine\Application Data\Mozilla\Firefox\Profiles\vvl9y64f.default\cookies.txt -> TrackingCookie.Zedo : Cleaned. C:\Documents and Settings\antoine\Cookies\antoine@zedo[1].txt -> TrackingCookie.Zedo : Cleaned. ::Report end voila le fixwebhancer: Symantec Spyware.WebHancer Removal Tool 1.0.2 Spyware.WebHancer has not been found on your computer. et le hijackthis: Logfile of HijackThis v1.99.1 Scan saved at 22:50:16, on 30/06/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\brsvc01a.exe C:\WINDOWS\system32\brss01a.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\acer\Acer eConsole\MediaServerService.exe C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe C:\Program Files\Acer\eRecovery\Monitor.exe C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe C:\Program Files\Acer\Acer eMode Management\AspireService.exe C:\Program Files\Acer\Acer eConsole\MediaSync.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe C:\Program Files\MessengerPlus! 3\MsgPlus.exe C:\Program Files\Scansoft\PaperPort\pptd40nt.exe C:\Program Files\Securitoo\Av_Fw\Common\FSM32.EXE C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\ewido anti-spyware 4.0\ewido.exe C:\Program Files\AntiVir PersonalEdition Classic\sched.exe C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Messenger\msmsgs.exe C:\PROGRA~1\SECURI~1\Av_Fw\backweb\8520111\Program\SERVIC~1.EXE C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe C:\WINDOWS\system32\Brmfrmps.exe C:\Program Files\Securitoo\Av_Fw\backweb\8520111\Program\fspex.exe C:\WINDOWS\system32\CTsvcCDA.EXE C:\Program Files\MSN Messenger\msnmsgr.exe C:\Program Files\ewido anti-spyware 4.0\guard.exe C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe C:\Program Files\Securitoo\Av_Fw\Anti-Virus\fsgk32st.exe C:\Program Files\Securitoo\Av_Fw\Anti-Virus\FSGK32.EXE C:\Program Files\Securitoo\Av_Fw\backweb\8520111\program\fsbwsys.exe C:\Program Files\Securitoo\Av_Fw\Common\FSMA32.EXE C:\Program Files\Securitoo\Av_Fw\Common\FSMB32.EXE C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\Scansoft\PaperPort\SmartUI\SmartUI.exe C:\Program Files\Securitoo\Av_Fw\Anti-Virus\fssm32.exe C:\Program Files\Securitoo\Av_Fw\Common\FCH32.EXE C:\Program Files\Securitoo\Av_Fw\Common\FAMEH32.EXE C:\WINDOWS\system32\svchost.exe C:\Program Files\Inventel\Gateway\wlancfg.exe C:\PROGRA~1\INCRED~1\bin\IMApp.exe C:\WINDOWS\system32\BRMFRSMG.EXE C:\Program Files\Securitoo\Av_Fw\FWES\Program\fsdfwd.exe C:\Program Files\Securitoo\Av_Fw\Anti-Virus\fsav32.exe C:\Program Files\Securitoo\Av_Fw\FSGUI\fsguiexe.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Microsoft Office\Office\WINWORD.EXE C:\Documents and Settings\antoine\Mes documents\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O4 - HKLM\..\Run: [LaunchApp] Alaunch O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe" O4 - HKLM\..\Run: [eRecoveryService] C:\Program Files\Acer\eRecovery\Monitor.exe O4 - HKLM\..\Run: [ntiMUI] C:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" O4 - HKLM\..\Run: [iMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName O4 - HKLM\..\Run: [AspireService] C:\Program Files\Acer\Acer eMode Management\AspireService.exe O4 - HKLM\..\Run: [MediaSync] C:\Program Files\Acer\Acer eConsole\MediaSync.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" O4 - HKLM\..\Run: [PaperPort PTD] C:\Program Files\Scansoft\PaperPort\pptd40nt.exe O4 - HKLM\..\Run: [indexSearch] C:\Program Files\Scansoft\PaperPort\IndexSearch.exe O4 - HKLM\..\Run: [setDefPrt] C:\Program Files\Brother\Brmfl03a\BrStDvPt.exe O4 - HKLM\..\Run: [outlook] C:\Program Files\outlook\outlook.exe /auto O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Securitoo\Av_Fw\Common\FSM32.EXE" /splash O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Securitoo\Av_Fw\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW O4 - HKLM\..\Run: [F-Secure Startup Wizard] "C:\Program Files\Securitoo\Av_Fw\FSGUI\FSSW.EXE" /reboot O4 - HKLM\..\Run: [News Service] "C:\Program Files\Securitoo\Av_Fw\FSGUI\ispnews.exe" O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [Creative Detector] "C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe" /R O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart O4 - HKCU\..\Run: [WINSOS VERIFY] "C:\Program Files\WINSOS\WINSOS.EXE" MINI O4 - HKCU\..\Run: [incrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_0 O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - Startup: Anti-Pub.lnk = C:\Program Files\Antipub\antipub.exe O4 - Startup: RegFreeze.lnk = C:\Program Files\RegFreeze\regfreeze.exe O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE O4 - Global Startup: SmartUI.lnk = ? O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/controls/msnchat45.cab O18 - Protocol: marge - {4FEC9AA5-E7A9-42BB-B715-B26161FEEE39} - C:\Isamgwp\IsaMgwIE.ocx O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\acer\Acer eConsole\MediaServerService.exe O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Securitoo Antivirus Firewall (BackWeb Plug-in - 8520111) - Unknown owner - C:\PROGRA~1\SECURI~1\Av_Fw\backweb\8520111\Program\SERVIC~1.EXE O23 - Service: Brother Popup Suspend service for Resource manager (brmfrmps) - Unknown owner - C:\WINDOWS\system32\Brmfrmps.exe" -service (file missing) O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe O23 - Service: F-Secure Gatekeeper Handler Starter - F-Secure Corp. - C:\Program Files\Securitoo\Av_Fw\Anti-Virus\fsgk32st.exe O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\Securitoo\Av_Fw\backweb\8520111\program\fsbwsys.exe O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\Securitoo\Av_Fw\FWES\Program\fsdfwd.exe O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Securitoo\Av_Fw\Common\FSMA32.EXE O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Inventel - C:\Program Files\Inventel\Gateway\wlancfg.exe voila merci de me dire quoi faire sachant que je n' ai pas pu suprimer C:\WINDOWS\system32\ fservice.exe<== le fichier C:\Program Files\ ToolBar888<== tout le dossier winlog.exe p2pnetworking.exe

Service load: 0% 100% File: IsaMgwIE.ocx Status: OK MD5 039daf085d00659afc80336601243e48 Packers detected: - Scanner results AntiVir Found nothing ArcaVir Found nothing Avast Found nothing AVG Antivirus Found nothing BitDefender Found nothing ClamAV Found nothing Dr.Web Found nothing F-Prot Antivirus Found nothing Fortinet Found nothing Kaspersky Anti-Virus Found nothing NOD32 Found nothing Norman Virus Control Found nothing UNA Found nothing VirusBuster Found nothing VBA32 Found nothing je ne sais pa si vous avez besoin de tous sa mais bon dans le doute.... quel est l' etape suivante afinde ramner mon pc dans le droit chemin?

NoN pour linstan je n' ai rien a declaré! merci encore de votre aide! Et pui je re utiliser des logiciel de P2P?

j'ai fais tout ce que vous m' avez indiquer. mes pages webs ne s'affiche plus. merci bcp. voici le raport Logfile of HijackThis v1.99.1 Scan saved at 13:55:07, on 30/06/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\brsvc01a.exe C:\WINDOWS\system32\brss01a.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.exe C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe C:\Program Files\Acer\eRecovery\Monitor.exe C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe C:\Program Files\acer\Acer eConsole\MediaServerService.exe C:\Program Files\Acer\Acer eMode Management\AspireService.exe C:\Program Files\Acer\Acer eConsole\MediaSync.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe C:\Program Files\MessengerPlus! 3\MsgPlus.exe C:\Program Files\Scansoft\PaperPort\pptd40nt.exe C:\Program Files\Securitoo\Av_Fw\Common\FSM32.EXE C:\Program Files\webHancer\Programs\whAgent.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Messenger\msmsgs.exe C:\PROGRA~1\SECURI~1\Av_Fw\backweb\8520111\Program\SERVIC~1.EXE C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\WINDOWS\system32\Brmfrmps.exe C:\Program Files\Securitoo\Av_Fw\backweb\8520111\Program\fspex.exe C:\WINDOWS\system32\CTsvcCDA.EXE C:\Program Files\Securitoo\Av_Fw\Anti-Virus\fsgk32st.exe C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe C:\Program Files\Securitoo\Av_Fw\backweb\8520111\program\fsbwsys.exe C:\Program Files\Securitoo\Av_Fw\Anti-Virus\FSGK32.EXE C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe C:\Program Files\Scansoft\PaperPort\SmartUI\SmartUI.exe C:\Program Files\Securitoo\Av_Fw\Common\FSMA32.EXE C:\Program Files\Securitoo\Av_Fw\Common\FSMB32.EXE C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\Securitoo\Av_Fw\Anti-Virus\fssm32.exe C:\Program Files\Securitoo\Av_Fw\Common\FCH32.EXE C:\WINDOWS\system32\svchost.exe C:\Program Files\Inventel\Gateway\wlancfg.exe C:\Program Files\Securitoo\Av_Fw\Common\FAMEH32.EXE C:\PROGRA~1\INCRED~1\bin\IMApp.exe C:\WINDOWS\system32\BRMFRSMG.EXE C:\Program Files\Securitoo\Av_Fw\FWES\Program\fsdfwd.exe C:\Program Files\Securitoo\Av_Fw\Anti-Virus\fsav32.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Securitoo\Av_Fw\FSGUI\fsguiexe.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\AntiVir PersonalEdition Classic\sched.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Documents and Settings\antoine\Mes documents\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens F2 - REG:system.ini: Shell=Explorer.exe C:\WINDOWS\system32\fservice.exe O2 - BHO: WhIeHelperObj Class - {c900b400-cdfe-11d3-976a-00e02913a9e0} - C:\Program Files\webHancer\programs\whiehlpr.dll O2 - BHO: Internet Explorer Web Content Catcher - {FFF4E223-7019-4ce7-BE03-D7D3C8CCE884} - C:\Program Files\DNS\Catcher.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O4 - HKLM\..\Run: [LaunchApp] Alaunch O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe" O4 - HKLM\..\Run: [eRecoveryService] C:\Program Files\Acer\eRecovery\Monitor.exe O4 - HKLM\..\Run: [ntiMUI] C:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" O4 - HKLM\..\Run: [iMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName O4 - HKLM\..\Run: [AspireService] C:\Program Files\Acer\Acer eMode Management\AspireService.exe O4 - HKLM\..\Run: [MediaSync] C:\Program Files\Acer\Acer eConsole\MediaSync.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" O4 - HKLM\..\Run: [PaperPort PTD] C:\Program Files\Scansoft\PaperPort\pptd40nt.exe O4 - HKLM\..\Run: [indexSearch] C:\Program Files\Scansoft\PaperPort\IndexSearch.exe O4 - HKLM\..\Run: [setDefPrt] C:\Program Files\Brother\Brmfl03a\BrStDvPt.exe O4 - HKLM\..\Run: [outlook] C:\Program Files\outlook\outlook.exe /auto O4 - HKLM\..\Run: [winlog] winlog.exe O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Securitoo\Av_Fw\Common\FSM32.EXE" /splash O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Securitoo\Av_Fw\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW O4 - HKLM\..\Run: [F-Secure Startup Wizard] "C:\Program Files\Securitoo\Av_Fw\FSGUI\FSSW.EXE" /reboot O4 - HKLM\..\Run: [News Service] "C:\Program Files\Securitoo\Av_Fw\FSGUI\ispnews.exe" O4 - HKLM\..\Run: [p2p networking] p2pnetworking.exe O4 - HKLM\..\Run: [webHancer Agent] "C:\Program Files\webHancer\Programs\whAgent.exe" O4 - HKLM\..\Run: [New.net Startup] rundll32 C:\PROGRA~1\NEWDOT~1\NEWDOT~2.DLL,ClientStartup -s O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\RunServices: [winlog] winlog.exe O4 - HKLM\..\RunServices: [p2p networking] p2pnetworking.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [Creative Detector] "C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe" /R O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart O4 - HKCU\..\Run: [WINSOS VERIFY] "C:\Program Files\WINSOS\WINSOS.EXE" MINI O4 - HKCU\..\Run: [incrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c O4 - HKCU\..\Run: [DNS] C:\Program Files\Fichiers communs\mc-110-12-0000137.exe O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_0 O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - Startup: Anti-Pub.lnk = C:\Program Files\Antipub\antipub.exe O4 - Startup: RegFreeze.lnk = C:\Program Files\RegFreeze\regfreeze.exe O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE O4 - Global Startup: SmartUI.lnk = ? O8 - Extra context menu item: &MyToolBar Search - res://C:\Program Files\ToolBar888\MyToolBar.dll/MENUSEARCH.HTM O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O10 - Hijacked Internet access by New.Net O10 - Hijacked Internet access by WebHancer O10 - Hijacked Internet access by WebHancer O10 - Hijacked Internet access by WebHancer O10 - Hijacked Internet access by WebHancer O10 - Hijacked Internet access by New.Net O10 - Hijacked Internet access by New.Net O10 - Hijacked Internet access by New.Net O10 - Hijacked Internet access by New.Net O10 - Hijacked Internet access by WebHancer O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/controls/msnchat45.cab O18 - Protocol: marge - {4FEC9AA5-E7A9-42BB-B715-B26161FEEE39} - C:\Isamgwp\IsaMgwIE.ocx O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\acer\Acer eConsole\MediaServerService.exe O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Securitoo Antivirus Firewall (BackWeb Plug-in - 8520111) - Unknown owner - C:\PROGRA~1\SECURI~1\Av_Fw\backweb\8520111\Program\SERVIC~1.EXE O23 - Service: Brother Popup Suspend service for Resource manager (brmfrmps) - Unknown owner - C:\WINDOWS\system32\Brmfrmps.exe" -service (file missing) O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe O23 - Service: Command Service (cmdService) - Unknown owner - C:\WINDOWS\cGFyZW50\command.exe (file missing) O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE O23 - Service: F-Secure Gatekeeper Handler Starter - F-Secure Corp. - C:\Program Files\Securitoo\Av_Fw\Anti-Virus\fsgk32st.exe O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\Securitoo\Av_Fw\backweb\8520111\program\fsbwsys.exe O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\Securitoo\Av_Fw\FWES\Program\fsdfwd.exe O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Securitoo\Av_Fw\Common\FSMA32.EXE O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Inventel - C:\Program Files\Inventel\Gateway\wlancfg.exe