FightDante

ok merci donc : rapport hijackthis Logfile of HijackThis v1.99.1 Scan saved at 12:53:32, on 09/10/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe C:\WINDOWS\system32\RunDLL32.exe C:\Program Files\DAEMON Tools\daemon.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe C:\Program Files\Hercules\WiFi Station\WifiStation.exe C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe C:\WINDOWS\BricoPacks\Crystal Clear\UberIcon\UberIcon Manager.exe C:\WINDOWS\BricoPacks\Crystal Clear\YzShadow\YzShadow.exe C:\WINDOWS\BricoPacks\Crystal Clear\YzToolbar\YzToolBar.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [kav] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe" O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe O4 - Startup: UberIcon.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\UberIcon\UberIcon Manager.exe O4 - Startup: Y'z Shadow.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\YzShadow\YzShadow.exe O4 - Startup: Y'z Toolbar.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\YzToolbar\YzToolBar.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: WiFi Station.lnk = ? O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_01\bin\npjpi150_01.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_01\bin\npjpi150_01.dll O9 - Extra button: Antivirus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab47946.cab O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: klogon - C:\WINDOWS\system32\klogon.dll O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Unknown owner - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe" -r (file missing) O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe rapport avg anti spyware : --------------------------------------------------------- AVG Anti-Spyware - Rapport d'analyse --------------------------------------------------------- + Créé à: 12:41:47 09/10/2006 + Résultat de l'analyse: C:\System Volume Information\_restore{1CA9FF0A-B497-4AE9-B2A6-11B176FABF2A}\RP19\A0004905.exe -> Adware.180Solutions : Nettoyé. HKLM\SOFTWARE\Classes\CLSID\{CCFB2B33-F4DB-B63D-ABDC-C7384ED93B34} -> Adware.Generic : Nettoyé. HKU\S-1-5-21-790525478-1844823847-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{479FD0CF-5BE9-4C63-8CDA-B6D371C67BD5} -> Adware.Generic : Nettoyé. HKU\S-1-5-21-790525478-1844823847-839522115-1004\Software\Internet Security -> Adware.IntCodec : Nettoyé. C:\Program Files\Fichiers communs\Synacast\SynaLive\EvID4226Patch.exe -> Backdoor.Virkel.A : Nettoyé. :mozilla.9:C:\Documents and Settings\Nico\Application Data\Mozilla\Firefox\Profiles\1podznze.default\cookies.txt -> TrackingCookie.Admarketplace : Nettoyé. :mozilla.14:C:\Documents and Settings\Nico\Application Data\Mozilla\Firefox\Profiles\1podznze.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé. :mozilla.15:C:\Documents and Settings\Nico\Application Data\Mozilla\Firefox\Profiles\1podznze.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé. :mozilla.67:C:\Documents and Settings\Nico\Application Data\Mozilla\Firefox\Profiles\1podznze.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé. :mozilla.70:C:\Documents and Settings\Nico\Application Data\Mozilla\Firefox\Profiles\1podznze.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé. :mozilla.71:C:\Documents and Settings\Nico\Application Data\Mozilla\Firefox\Profiles\1podznze.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé. :mozilla.72:C:\Documents and Settings\Nico\Application Data\Mozilla\Firefox\Profiles\1podznze.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé. :mozilla.38:C:\Documents and Settings\Nico\Application Data\Mozilla\Firefox\Profiles\1podznze.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé. :mozilla.39:C:\Documents and Settings\Nico\Application Data\Mozilla\Firefox\Profiles\1podznze.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé. :mozilla.41:C:\Documents and Settings\Nico\Application Data\Mozilla\Firefox\Profiles\1podznze.default\cookies.txt -> TrackingCookie.Tribalfusion : Nettoyé. :mozilla.44:C:\Documents and Settings\Nico\Application Data\Mozilla\Firefox\Profiles\1podznze.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé. :mozilla.52:C:\Documents and Settings\Nico\Application Data\Mozilla\Firefox\Profiles\1podznze.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé. :mozilla.53:C:\Documents and Settings\Nico\Application Data\Mozilla\Firefox\Profiles\1podznze.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé. :mozilla.54:C:\Documents and Settings\Nico\Application Data\Mozilla\Firefox\Profiles\1podznze.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé. :mozilla.55:C:\Documents and Settings\Nico\Application Data\Mozilla\Firefox\Profiles\1podznze.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé. :mozilla.56:C:\Documents and Settings\Nico\Application Data\Mozilla\Firefox\Profiles\1podznze.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé. :mozilla.57:C:\Documents and Settings\Nico\Application Data\Mozilla\Firefox\Profiles\1podznze.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé. :mozilla.58:C:\Documents and Settings\Nico\Application Data\Mozilla\Firefox\Profiles\1podznze.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé. :mozilla.18:C:\Documents and Settings\Nico\Application Data\Mozilla\Firefox\Profiles\1podznze.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé. :mozilla.47:C:\Documents and Settings\Nico\Application Data\Mozilla\Firefox\Profiles\1podznze.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé. :mozilla.48:C:\Documents and Settings\Nico\Application Data\Mozilla\Firefox\Profiles\1podznze.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé. :mozilla.49:C:\Documents and Settings\Nico\Application Data\Mozilla\Firefox\Profiles\1podznze.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé. :mozilla.50:C:\Documents and Settings\Nico\Application Data\Mozilla\Firefox\Profiles\1podznze.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé. :mozilla.51:C:\Documents and Settings\Nico\Application Data\Mozilla\Firefox\Profiles\1podznze.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé. :mozilla.62:C:\Documents and Settings\Nico\Application Data\Mozilla\Firefox\Profiles\1podznze.default\cookies.txt -> TrackingCookie.Zedo : Nettoyé. Fin du rapport j'ai juste une derniere question : quand j'ai fait l'analyse antiVir en mode sans échec la derniere fois j'ai oublié de montrer les fichiers masqués ! cela à-til une importance ? merci bien

up...

svp !!

alors voici mon rapport antivir AntiVir PersonalEdition Classic Report file date: samedi 7 octobre 2006 22:52 Scanning for 522603 virus strains and unwanted programs. Licensed to: Avira AntiVir PersonalEdition Classic Serial number: 0000149996-WURGE-0001 Platform: Windows XP Windows version: (Service Pack 2) [5.1.2600] Username: Nico Computer name: MAISON Version information: AVSCAN.EXE : 7.0.0.47 200744 21/08/2006 10:06:56 AVSCAN.DLL : 7.0.0.45 41000 07/09/2006 10:56:33 LUKE.DLL : 7.0.0.47 118824 07/09/2006 10:32:33 LUKERES.DLL : 7.0.0.47 9256 07/09/2006 10:56:33 ANTIVIR0.VDF : 6.35.0.1 7371264 31/05/2006 10:35:27 ANTIVIR1.VDF : 6.36.0.89 1745920 02/10/2006 20:50:20 ANTIVIR2.VDF : 6.36.0.90 2048 02/10/2006 20:50:20 ANTIVIR3.VDF : 6.36.0.96 62976 06/10/2006 20:50:20 AVEWIN32.DLL : 7.2.0.25 1860096 07/10/2006 20:50:21 AVPREF.DLL : 7.0.0.2 23592 24/07/2006 12:36:04 AVREP.DLL : 6.36.0.79 843816 07/10/2006 20:50:20 AVRPBASE.DLL : 7.0.0.0 2162728 30/03/2006 08:43:31 AVPACK32.DLL : 7.2.0.0 368680 21/07/2006 06:00:28 AVREG.DLL : 6.31.0.90 27688 28/07/2005 10:06:36 NETNT.DLL : 6.32.0.0 6696 27/09/2005 07:56:49 NETNW.DLL : 7.0.0.0 9768 24/07/2006 12:35:55 RCIMAGE.DLL : 7.0.0.74 1642536 01/08/2006 11:22:57 RCTEXT.DLL : 7.0.1.4 77864 07/10/2006 20:50:19 Configuration settings for the scan: Jobname.......................: Local Drives Configuration file............: C:\Program Files\AntiVir PersonalEdition Classic\alldrives.avp Boot sectors..................: C,A,D,E,F Scan memory...................: 1 Process scan..................: 1 Scan all files................: 2 Scan archives.................: 1 Recursion depth...............: 20 Smart extensions..............: 1 Macro heuristic...............: 1 File heuristic................: 0 Primary action................: 1 Secondary action..............: 0 Start of the scan: samedi 7 octobre 2006 22:53 The scan of running processes will be started 4 Processes were scanned Start scanning boot sectors: Boot sector 'C:\' [NOTE] No virus was found! Boot sector 'A:\' [NOTE] In the drive 'A:\' no data medium is inserted! Starting to scan the registry. The registry was scanned ( 25 files ). Starting the file scan: C:\pagefile.sys [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\010f7729985c987b725bba90adc32a32_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\07fc20490e61b22717664d85b96c53ee_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\0a54b66e217e2a7975c146980fde50f1_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\0ab89c384d0fd9cb4ec64373898dbb92_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\0b46cf53430182c3654d07695c7cf94b_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\0f83fc1a1ffd8a75f2276c923e8c51d7_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\123d19223aafdb2bc1cdc7c068e39fc7_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\128e881635fd16ac38fa13cc5a43b49a_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\14f16fc38c2187030890cb1dafa3a22e_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\18b5562f051083fa76397f50df6667ac_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\1a873d8c0bd224e1d99517b3814b48ef_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\1ee75f6a41f97986592ddfaa42533ce9_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\22a1b65a65adb6420c3f37f6fbf0c942_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\24f73270ed30630258b747bd49933cf9_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\26c912dec1700b8a42bb8112672197f4_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\2811c9e9f0a326a01e2de32794fdbaec_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\2bdadaa0722916285cc5dee79738d836_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\2d9e3a20d44c4c11f00f6a94872dc853_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\2e007eca2fae56d877c61e96103f62d0_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\34c35c00b7b51de668849435e995c42a_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\3794c1685367e6a6cb2c671921f2f00c_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\3921ff3bbecf1ba717ded9c95af1e034_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\3b7d68e6457f2bdaa6c76719db574b8c_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\3c06d478f8d24b9787e1e2581e8b32bd_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\3c55d071a38be540c1f31e3eae734aaa_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\3d95c56e9bbe3ee0e1f8542f136fc972_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\417f6ee622d3ca9b5cb3b1aea2e8eb9f_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\44c08670c57c84c6da9398cabad2e131_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\45812ee0f53e8addca06ef5e0efda425_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\49d05f6fcc3a01a7f1c195cdca4b94a7_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\4e7af1acb9a454b31397fb9bb933f9e1_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\4e8c656badab5655ab83c631c1a83284_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\51d90b3b41d47c11765949cb45ac7811_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\5216c1389bed9ea45b1e90140fce4a99_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\535f633a4d975109dfabe642513c739c_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\5756b361886f4c79d244d7d7d7b8b728_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\5b22412285d64d053ecdcb8b0ac51e7e_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\671fa4b400ed3fd233fa1979ba612a4f_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\693f9698a790c504415d2868f00a9390_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\6c422b8818403f872d8602c0b83e9c87_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\6ce0850cd498ab9359bdce02de1fab5f_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\6dc542bb43c8eb45c3ebb517f21891ea_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\6f08b2cc97138c83fe0cf5267eae3d3c_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\716250fdac6487395cd424cefa5188ca_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\726c4fc40579168dd0c7115bb56904dd_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\77c72cefb8bee2f43126992f5df6328d_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\79ca2ffedfe61b426cdfda05331226f3_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\7c3bcf96e4a15cb19c15366f8fc4e00c_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\7da81946c5019db814a33c26610b3f20_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\85998b1346b24a1284cbe875de18a40b_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\8b57b072c284ed3eb438b274d23ae046_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\90692d4bed4f9ad1466238d1ae6bc081_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\93f07364d93b23f1270775b37b00f92f_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\9651bb92f106ec2f9856bfe4d775f804_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\98f9f5eaa314e6a4dfc5165b5595e9ee_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\9cafe12d0f5640a7f785c2187f6e83ca_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\a0406b5c7416d1a2f85ef85187d88449_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\a489d70bc92c964e08863dd223960228_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\ab974edbf619331df0e27615f0c94d7e_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\b00bae78f177a3106080413fed4a487a_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\b59da83d533541b6c5b2a878552b691b_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\b8d91a3751b02696d307ca47760d812a_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\ba993ec0a401665655420407184dbb16_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\c4b35335b026d89b5590e62318f1effd_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\ca6d8b0a55ba78f1eb135d7ee36ec986_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\cbfcbb32221e9c22db5eea60d5424eda_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\ccdf8ca28c2272ebf197206e5e66a079_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\cf128d9318c6827c41f41c9e30d67e7b_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\dc2359f3896531584e060a5ba9da3b6d_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\df0226568bdf075394232d1977f96d07_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\e32dd6f3135151a133c8b1ba25273774_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\e67a1cf7632a87635ed533325c0d2554_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\eabbfac41236ed617308e0135807aa2d_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\f01fe04ffa35e549501a5e373ba2d1b7_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\f11f466863db6ea19f7b79a30f8e5d90_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\f5f737ce30d730cdfa4f51220715518c_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\f60399813111a312f6a16bade50f6f8f_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\f7000f5b2c481e90a93c07c464fb535f_6e1a806a-4e42-457d-adf8-bb9c62aa40ba [WARNING] The file could not be opened! C:\Documents and Settings\NetworkService\NTUSER.DAT [WARNING] The file could not be opened! C:\Documents and Settings\NetworkService\ntuser.dat.LOG [WARNING] The file could not be opened! C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat [WARNING] The file could not be opened! C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG [WARNING] The file could not be opened! C:\Documents and Settings\Nico\NTUSER.DAT [WARNING] The file could not be opened! C:\Documents and Settings\Nico\ntuser.dat.LOG [WARNING] The file could not be opened! C:\Documents and Settings\Nico\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat [WARNING] The file could not be opened! C:\Documents and Settings\Nico\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG [WARNING] The file could not be opened! C:\WINDOWS\system32\config\default [WARNING] The file could not be opened! C:\WINDOWS\system32\config\default.LOG [WARNING] The file could not be opened! C:\WINDOWS\system32\config\SAM [WARNING] The file could not be opened! C:\WINDOWS\system32\config\SAM.LOG [WARNING] The file could not be opened! C:\WINDOWS\system32\config\SECURITY [WARNING] The file could not be opened! C:\WINDOWS\system32\config\SECURITY.LOG [WARNING] The file could not be opened! C:\WINDOWS\system32\config\software [WARNING] The file could not be opened! C:\WINDOWS\system32\config\software.LOG [WARNING] The file could not be opened! C:\WINDOWS\system32\config\system [WARNING] The file could not be opened! C:\WINDOWS\system32\config\system.LOG [WARNING] The file could not be opened! C:\WINDOWS\system32\drivers\dtscsi.sys [WARNING] The file could not be opened! C:\WINDOWS\system32\drivers\sptd.sys [WARNING] The file could not be opened! C:\WINDOWS\system32\drivers\sptd9725.sys [WARNING] The file could not be opened! The path A:\ could not be found! Le périphérique n'est pas prêt. The path D:\ could not be found! Le périphérique n'est pas prêt. The path E:\ could not be found! Le fichier ou le répertoire est endommagé et illisible. The path F:\ could not be found! Le périphérique n'est pas prêt. End of the scan: samedi 7 octobre 2006 23:10 Used time: 17:46 min The scan has been done completely. 3895 Scanning directories 170382 Files were scanned 0 viruses and/or unwanted programs were found 0 files were deleted 0 files were repaired 0 files were moved to quarantine 0 files were renamed 1914 Archives were scanned 100 Warnings 1 Notes donc pas de virus trouvés le rapport hijackthis Logfile of HijackThis v1.99.1 Scan saved at 23:23:42, on 07/10/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe C:\WINDOWS\system32\RunDLL32.exe C:\Program Files\DAEMON Tools\daemon.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe C:\Program Files\Hercules\WiFi Station\WifiStation.exe C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe C:\WINDOWS\system32\svcost\svcost.exe C:\WINDOWS\BricoPacks\Crystal Clear\UberIcon\UberIcon Manager.exe C:\WINDOWS\BricoPacks\Crystal Clear\YzShadow\YzShadow.exe C:\WINDOWS\BricoPacks\Crystal Clear\YzToolbar\YzToolBar.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Opera\Opera.exe C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\system32\NOTEPAD.EXE C:\Program Files\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [kav] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe" O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe O4 - Startup: start.lnk = C:\WINDOWS\system32\svcost\svcost.exe O4 - Startup: UberIcon.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\UberIcon\UberIcon Manager.exe O4 - Startup: Y'z Shadow.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\YzShadow\YzShadow.exe O4 - Startup: Y'z Toolbar.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\YzToolbar\YzToolBar.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: WiFi Station.lnk = ? O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_01\bin\npjpi150_01.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_01\bin\npjpi150_01.dll O9 - Extra button: Antivirus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab47946.cab O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: klogon - C:\WINDOWS\system32\klogon.dll O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Unknown owner - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe" -r (file missing) O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe voila sinon toujours meme probleme ouverture de popups + erreur de script quand je suis sur msn...

oki dacord je remet le scan hijackthis taleur alors merci bien

euh oui mais alors antivir n'aura pas les dernieres signatures ! non?

j'ai fait tout cela mais je n'ai pas installé antivir, j'ai juste fait un scan avec kaspersky. Faut-il que j'installe antivir an ayant kaspersky ou faut-il que je desinstalle kaspersky, installe antivir, et réinstalle kaspersky ? merci

Bonjour, j'ai fait un scan sur bittorent et il me met : fichiers suspects : 1 Fichier analysé Statut C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP6\Backup\70ddaefbec810822.klq Suspecté de: Trojan.Zlob.BY C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP6\Backup\70ddaefbec810822.klq Echec de la désinfection C:\Documents and Settings\All Users\Application Data\Kaspersky Lab\AVP6\Backup\70ddaefbec810822.klq Echec de la suppression le rapport hijackthis est le suivant : Logfile of HijackThis v1.99.1 Scan saved at 00:16:39, on 07/10/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe C:\WINDOWS\system32\svcost\svcost.exe C:\WINDOWS\BricoPacks\Crystal Clear\YzShadow\YzShadow.exe C:\WINDOWS\BricoPacks\Crystal Clear\YzToolbar\YzToolBar.exe C:\Program Files\iPod\bin\iPodService.exe C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [kav] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe" O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\RocketDock\RocketDock.exe O4 - Startup: start.lnk = C:\WINDOWS\system32\svcost\svcost.exe O4 - Startup: UberIcon.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\UberIcon\UberIcon Manager.exe O4 - Startup: Y'z Shadow.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\YzShadow\YzShadow.exe O4 - Startup: Y'z Toolbar.lnk = C:\WINDOWS\BricoPacks\Crystal Clear\YzToolbar\YzToolBar.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: WiFi Station.lnk = ? O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_01\bin\npjpi150_01.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_01\bin\npjpi150_01.dll O9 - Extra button: Antivirus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab47946.cab O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: klogon - C:\WINDOWS\system32\klogon.dll O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Unknown owner - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe" -r (file missing) O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe voila, alors depuis cet apres midi une pop-up saffiche de temps, en temps et si on la referme une autre apparait immédiatement, et tres souvent s'affiche : erreur de script, une erreur est survenue sur le script de cette page. ( principalement quand je suis sur msn ) Que faire ? Merci bien