Pc qui s eteind seul [Résolu]

Salut ;;

Télécharge de AD-Remover de Cyrildu17 / C_XX) sur ton Bureau.

http://sd-1.archive-host.com/membres/up/16506160323759868/AD­-R.exe

/!\ Déconnecte-toi et ferme toutes applications en cours /!\

- Double-clique sur le programme d'installation, installe-le dans son emplacement par défaut (C:\Program files).
- Double-clique sur l'icône Ad-remover située sur ton Bureau.
- Au menu principal, choisis l'option "A".
- Poste le rapport qui apparaît à la fin.

(Le rapport est sauvegardé aussi sous C:\Ad-report(date).log)

(CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller)

desolé je croit que ton lien ne marche pas

ZZzzZz http://sd-1.archive-host.com/membres/up/16506160323759868/AD-R.exe

je l ai trouver dans google c est ad removed c celui la ?

Non Ad-remover . Bonne continuation Swann .

oui

------- LOGFILE OF AD-REMOVER 1.0.9.3 | ONLY XP/VISTA -------

Updated by C_XX on 17/01/2009 at 12:00

Start at: 18:26:44 | Lun 19/01/2009 | Microsoft® Windows XP™ SP3 (V5.1.2600)
Boot mode: Normal
Option: SCAN | Executed from: C:\Program Files\Ad-remover\Ad-remover.bat
Pc: NOM-EB85C523610 | User: HP_Propri‚taire ( Current user is an administrator)
Drive(s):
- C:\ (File System: NTFS)
- D:\ (File System: FAT32)
System Drive: C:\
Windows Directory: C:\WINDOWS\
System Directory: C:\WINDOWS\System32\

--- Running Processes: 34

+--------------------| Boonty/Boonty Games Elements Found :

.
.
C:\Program Files\Fichiers communs\BOONTY Shared
C:\Program Files\Fichiers communs\BOONTY Shared\Service
C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
C:\Documents and Settings\All Users\Application Data\BOONTY
C:\Documents and Settings\All Users\Application Data\BOONTY\Licenses
C:\Documents and Settings\All Users\Application Data\BOONTY\Licenses\B39E0000.dat
C:\Documents and Settings\All Users\Application Data\BOONTY\Licenses\B3AEF000.dat

+--------------------| Eorezo Elements Found :

.
HKCR\EoRezoBHO.EoBho
HKCR\EoRezoBHO.EoBho.1
HKCR\Interface\{B0D071A1-36B3-4757-A126-14C89C56013A}
HKCU\SOFTWARE\EoRezo
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{64F56FC1-1272-44CD-BA6E-39723696E350}
HKLM\SOFTWARE\EoRezo
HKLM\SOFTWARE\Classes\CLSID\{64F56FC1-1272-44CD-BA6E-39723696E350}
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64F56FC1-1272-44CD-BA6E-39723696E350}
.
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\cmhost.cyp
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\ConfMedia.cyp
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\db
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\eoDesktop
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather.cfg
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\host.cyp
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\towns.cfg
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\user.cyp
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\db\cat.cyp
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\eoDesktop\config.xml
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\eoDesktop\eoDesktop.html
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\eoDesktop\userConfig.xml
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\EoWeather.cfg
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\EoWeatherVal_02EC282.cfg
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\67_day.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\67_night.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\69_day.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\69_night.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\70_day.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\70_night.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\78_day.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\78_night.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\82_day.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\82_night.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\83_day.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\83_night.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\84_day.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\84_night.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\85_day.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\85_night.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\89_day.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\89_night.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\back.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\background.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\background_1.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\background_1days.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\background_2days.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\background_7days.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\backPressed.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\band.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\band_small.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\close.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\closePressed.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\dayPrevisionBackground.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\dayPrevisionClose.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\earth.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\fonds_‚cran.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\help.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\helpPressed.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\minimise.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\minimisePressed.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\next.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\nextPressed.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\option.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\optionPressed.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\reflet_ecran.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\small_background.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_classic\Thumbs.db
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\67_day.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\67_night.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\69_day.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\69_night.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\70_day.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\70_night.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\78_day.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\78_night.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\82_day.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\82_night.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\83_day.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\83_night.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\84_day.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\84_night.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\85_day.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\85_night.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\89_day.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\89_night.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\about.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\back.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\background.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\background_1.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\background_1days.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\background_2days.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\background_7days.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\backPressed.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\close.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\closePressed.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\dayPrevisionBackground.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\dayPrevisionClose.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\earth.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\fonds_‚cran.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\help.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\helpPressed.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\minimise.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\minimisePressed.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\next.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\nextPressed.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\option.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\optionPressed.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\reflet_ecran.png
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\Thumbs.db
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo\EoWeather\images_station_meteo\txt_14x13.png

+--------------------| Everest Casino/Everest Poker Elements Found :

.
.

+--------------------| Funwebproducts/Myway/Mywebsearch/Myglobalsearch Elements Found :

.
.

+--------------------| It's TV Elements Found :

HKCU\SOFTWARE\ItsLabel
.
C:\Documents and Settings\HP_Propri‚taire\Application Data\ItsLabel
C:\Documents and Settings\HP_Propri‚taire\Application Data\ItsLabel\ItsTV
C:\Documents and Settings\HP_Propri‚taire\Application Data\ItsLabel\ItsTV\itsTV.xml

+--------------------| Sweetim Elements Found :

.
HKCR\CLSID\{BC4FFE41-DE9F-46fa-B455-AAD49B9F9938}
HKCR\SWEETIE.IEToolbar
HKCR\SWEETIE.IEToolbar.1
HKCR\SWEETIE.SWEETIE
HKCR\SWEETIE.SWEETIE.1
HKCU\SOFTWARE\SWEETIE
HKCU\SOFTWARE\Microsoft\Installer\Upgradecodes\A97CEC23332751B47BA4B95BAA50C9D0
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1A0AADCD-3A72-4B5F-900F-E3BB5A838E2A}
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{BC4FFE41-DE9F-46fa-B455-AAD49B9F9938}
HKLM\SOFTWARE\Macrogaming
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0
HKLM\~\USERDATA\S-1-5-18\COMPONENTS\980289C22F80A7C4BB9323DC61255E4E
HKLM\~\USERDATA\S-1-5-18\COMPONENTS\FA96423FE2B98E248A3B23548D1E22D9
HKLM\~\USERDATA\S-1-5-21-328066220-2942245072-1766180261-1008\COMPONENTS\96D82BE152767B245B7D948EF9126F46
HKLM\~\USERDATA\S-1-5-21-328066220-2942245072-1766180261-1008\COMPONENTS\C34CFCB49C8F0814C88A64469E1A2B9E
HKLM\~\USERDATA\S-1-5-21-328066220-2942245072-1766180261-1008\COMPONENTS\DF75D238060B32E42A452FB5F328222E
.
C:\WINDOWS\INSTALLER\1126da87.msi
C:\WINDOWS\INSTALLER\48789f5.msi
C:\WINDOWS\INSTALLER\e93869a.msi
C:\Program Files\Macrogaming
C:\Program Files\Macrogaming\SweetIM
C:\Program Files\Macrogaming\SweetIMBarForIE
C:\Program Files\Macrogaming\SweetIM\conf
C:\Program Files\Macrogaming\SweetIM\data
C:\Program Files\Macrogaming\SweetIM\conf\users
C:\Program Files\Macrogaming\SweetIM\conf\users\chounoune83@hotmail.fr
C:\Program Files\Macrogaming\SweetIM\conf\users\corb83@hotmail.fr
C:\Program Files\Macrogaming\SweetIM\conf\users\main_user_config.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\pouchou83@hotmail.fr
C:\Program Files\Macrogaming\SweetIM\conf\users\pouny83@hotmail.fr
C:\Program Files\Macrogaming\SweetIM\conf\users\chounoune83@hotmail.fr\emoticons_shortcut.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\chounoune83@hotmail.fr\user_config.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\corb83@hotmail.fr\emoticons_shortcut.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\corb83@hotmail.fr\lastuse_SpecialFX.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\corb83@hotmail.fr\user_config.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\pouchou83@hotmail.fr\emoticons_shortcut.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\pouchou83@hotmail.fr\user_config.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\pouny83@hotmail.fr\emoticons_shortcut.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\pouny83@hotmail.fr\user_config.xml
C:\Program Files\Macrogaming\SweetIM\data\contentdb
C:\Program Files\Macrogaming\SweetIM\data\contentdb\00010859.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\000108C0.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\000108C4.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\000108CD.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\00050004.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\00050005.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\01050001.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\01050002.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\01050007.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\cache_indx.dat
C:\Program Files\Macrogaming\SweetIMBarForIE\affid.dat
C:\Program Files\Macrogaming\SweetIMBarForIE\basis.xml
C:\Program Files\Macrogaming\SweetIMBarForIE\Bookmarks_23x18.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\Cache
C:\Program Files\Macrogaming\SweetIMBarForIE\Email_23x18.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\Games_23x18.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\Greetingcards_23x18.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\Mobile_23x18.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\Music_23x18.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\News_23x18.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\Shoping_23x18.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\SmileySmile.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\SmileyWink.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\sweetimicons.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.crc
C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.xml
C:\Program Files\Macrogaming\SweetIMBarForIE\version.txt
C:\Program Files\Macrogaming\SweetIMBarForIE\Cache\cd2005c66fba47ff715ecc444d3bc1fb.xml

+--------------------| Added Scan :


+---------- SCANNING PREFS.JS ... ( # Mozilla user preferences )

..\mx4pmwzv.default\prefs.js :

~~~~ MOZILLA FIREFOX VERSION 3.0.5 ~~~~

* BROWSER SEARCH DEFAULT ENGINE: "Web Search"
* BROWSER SEARCH SELECTED ENGINE: "Web Search"
* BROWSER SEARCH DEFAULT URL: "http://search.conduit.com/ResultsExt.aspx?ctid=CT1529850&SearchSource=3&q="
* BROWSER STARTUP HOMEPAGE: "http://www.google.fr"

.

+---------------------------------------------------------------------------+


~~~~ INTERNET EXPLORER VERSION 7.0.5730.13 ~~~~

+--[HKEY_CURRENT_USER\..\INTERNET EXPLORER\MAIN]

Start page : hxxp://www.msn.com/

+--[HKEY_LOCAL_MACHINE\..\INTERNET EXPLORER\MAIN]

Start page : hxxp://www.msn.com/

+---------------------------------------------------------------------------+

[~18408 BYTES] - "C:\AD-REPORT-SCAN-19.01.2009.LOG"

End at: 18:28:16 | 19/01/2009 - Time elapsed: 92.7 seconds

+---------------------------------------------------------------------------+
+------------------------------- [ E.O.F - 239 Lines ]
+---------------------------------------------------------------------------+

Merci . Ferme tous t'es programme relance Ad-remover et fait l'option B et choisit A s'il te plaît puis poste le nouveau rapport .

ca me dit de supprimer les elements coches .je les supprime ? je pense que oui mais je veut pas faire de conneri

------- LOGFILE OF AD-REMOVER 1.0.9.3 | ONLY XP/VISTA -------

Updated by C_XX on 17/01/2009 at 12:00

*** LIMITED TO ***

Boonty/Boontygames
Eorezo
Everest casino/Everest poker
Funwebproduct/Myway/Mywebsearch
It's TV
Sweetim

******************

Start at: 18:49:13 | Lun 19/01/2009 | Microsoft® Windows XP™ SP3 (V5.1.2600)
Boot mode: Normal
Option: CLEAN | Executed from: C:\Program Files\Ad-remover\Ad-remover.bat
Pc: NOM-EB85C523610 | User: HP_Propri‚taire ( Current user is an administrator)
Drive(s):
- C:\ (File System: NTFS)
- D:\ (File System: FAT32)
System Drive: C:\
Windows Directory: C:\WINDOWS\
System Directory: C:\WINDOWS\System32\

--- Running Processes: 31

(!) ---- IE start pages reset

+--------------------| Boonty/Boonty Games Elements Deleted :

.
.
C:\Program Files\Fichiers communs\BOONTY Shared
C:\Documents and Settings\All Users\Application Data\BOONTY

+--------------------| Eorezo Elements Deleted :

.
HKCR\EoRezoBHO.EoBho
HKCR\EoRezoBHO.EoBho.1
HKCR\Interface\{B0D071A1-36B3-4757-A126-14C89C56013A}
HKCU\SOFTWARE\EoRezo
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{64F56FC1-1272-44CD-BA6E-39723696E350}
HKLM\SOFTWARE\EoRezo
HKLM\SOFTWARE\Classes\CLSID\{64F56FC1-1272-44CD-BA6E-39723696E350}
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64F56FC1-1272-44CD-BA6E-39723696E350}
.
C:\Documents and Settings\HP_Propri‚taire\Application Data\EoRezo

+--------------------| Everest Casino/Everest Poker Elements Deleted :

.
.

+--------------------| Funwebproducts/Myway/Mywebsearch/Myglobalsearch Elements Deleted :

.
.

+--------------------| It's TV Elements Deleted :

HKCU\SOFTWARE\ItsLabel
.
C:\Documents and Settings\HP_Propri‚taire\Application Data\ItsLabel

+--------------------| Sweetim Elements Deleted :

.
HKLM\~\USERDATA\S-1-5-18\COMPONENTS\980289C22F80A7C4BB9323DC61255E4E
HKLM\~\USERDATA\S-1-5-18\COMPONENTS\FA96423FE2B98E248A3B23548D1E22D9
HKLM\~\USERDATA\S-1-5-21-328066220-2942245072-1766180261-1008\COMPONENTS\96D82BE152767B245B7D948EF9126F46
HKLM\~\USERDATA\S-1-5-21-328066220-2942245072-1766180261-1008\COMPONENTS\C34CFCB49C8F0814C88A64469E1A2B9E
HKLM\~\USERDATA\S-1-5-21-328066220-2942245072-1766180261-1008\COMPONENTS\DF75D238060B32E42A452FB5F328222E
HKCR\CLSID\{BC4FFE41-DE9F-46fa-B455-AAD49B9F9938}
HKCR\SWEETIE.IEToolbar
HKCR\SWEETIE.IEToolbar.1
HKCR\SWEETIE.SWEETIE
HKCR\SWEETIE.SWEETIE.1
HKCU\SOFTWARE\SWEETIE
HKCU\SOFTWARE\Microsoft\Installer\Upgradecodes\A97CEC23332751B47BA4B95BAA50C9D0
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1A0AADCD-3A72-4B5F-900F-E3BB5A838E2A}
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{BC4FFE41-DE9F-46fa-B455-AAD49B9F9938}
HKLM\SOFTWARE\Macrogaming
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0
.
C:\WINDOWS\INSTALLER\1126da87.msi
C:\WINDOWS\INSTALLER\48789f5.msi
C:\WINDOWS\INSTALLER\e93869a.msi
C:\Program Files\Macrogaming

(!) ---- Temp files deleted.
(!) ---- Recycle bin emptied in all drives.


+--------------------| Added Scan :


+---------- SCANNING PREFS.JS ... ( # MOZILLA USER PREFERENCES )

..\mx4pmwzv.default\prefs.js :

~~~~ MOZILLA FIREFOX VERSION 3.0.5 ~~~~

* BROWSER SEARCH DEFAULT ENGINE: "Web Search"
* BROWSER SEARCH SELECTED ENGINE: "Web Search"
* BROWSER SEARCH DEFAULT URL: "http://search.conduit.com/ResultsExt.aspx?ctid=CT1529850&SearchSource=3&q="
* BROWSER STARTUP HOMEPAGE: "http://www.google.fr"

.

+---------------------------------------------------------------------------+


~~~~ INTERNET EXPLORER VERSION 7.0.5730.13 ~~~~

+--[HKEY_CURRENT_USER\..\INTERNET EXPLORER\MAIN]

Start page : hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome

+--[HKEY_LOCAL_MACHINE\..\INTERNET EXPLORER\MAIN]

Start page : hxxp://fr.msn.com/

+---------------------------------------------------------------------------+

[~4014 BYTES] - "C:\AD-REPORT-CLEAN-19.01.2009.LOG"

End at: 18:53:24 | 19/01/2009 - Time elapsed: 4 minutes, 11 seconds

+---------------------------------------------------------------------------+
+------------------------------- [ E.O.F - 90 Lines ]
+---------------------------------------------------------------------------+

Oui . Merci pour le rapport . Maintenant fait ceci ensuite ceci (voir ci dessous ) ::::

Ccleaner

*Télécharge et installe CCleaner http://www.01net.com/... ( à l'installation, pense à DÉCOCHER l'installation de Yahoo toolbar !!!).

*Lance CCleaner
Option --> avancé --> décoche « effacer uniquement les fichiers plus vieux que 48h »
Puis nettoyeur --> Analyse > Lancer le nettoyage, puis sur OK dans la fenêtre qui s' affiche.
Relance le nettoyage une deuxième fois.(pense à cocher toutes les cases décochées !!!!)

*Enfin, registre --> corrige toutes les erreurs, et recommence jusqu'à ce qu'il ne trouve plus d'erreurs.

*(garde ce logiciel et utilise le régulièrement).


Mbam


Télécharge et installe Malwarebyte's Anti-Malware ::::

http://www.malwarebytes.org/mbam/program/mbam-setup.exe
*met le a jours !!
*ouvre malwaresbyte's ! et scan avec (execute un scan complet !)
*a la fin tout ce qui trouvera tu supprimera :)
*a la fin un rapport sera généré(bloc note s'ouvre) garde le et poste le ici


Hijackthis

Ensuite après avoir fait tout ça refait un scan hjt puis poste son rapport . Merci ;)

Malwarebytes' Anti-Malware 1.33
Version de la base de données: 1668
Windows 5.1.2600 Service Pack 3

19/01/2009 20:39:09
mbam-log-2009-01-19 (20-39-09).txt

Type de recherche: Examen complet (C:\|D:\|)
Eléments examinés: 161717
Temps écoulé: 1 hour(s), 21 minute(s), 49 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:39:35, on 19/01/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Microsoft LifeCam\MSCamSvc.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZIPM12.EXE
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Documents and Settings\HP_Propriétaire\Bureau\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Windows Live Call HoverToCall class - {7E853D72-626A-48EC-A868-BA8D5E23E045} - C:\Program Files\Windows Live\Messenger\HTC.DLL
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - .DEFAULT User Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'Default user')
O4 - Startup: StartupFaster
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: Titan Poker - {49783ED4-258D-4f9f-BE11-137C18D3E543} - C:\Poker\Titan Poker\casino.exe
O9 - Extra 'Tools' menuitem: Titan Poker - {49783ED4-258D-4f9f-BE11-137C18D3E543} - C:\Poker\Titan Poker\casino.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w3/pr01/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {78ABDC59-D8E7-44D3-9A76-9A0918C52B4A} (DLoader Class) - http://dl.uc.sina.com/cab/downloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab57213.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{CD9B6D4E-7AAE-4D83-84F3-13C50E573CFD}: NameServer = 192.168.30.1
O20 - Winlogon Notify: tuvutqn - tuvutqn.dll (file missing)
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZIPM12.EXE
O23 - Service: DiRT Drivers Auto Removal (pr2ah4nc) (pr2ah4nc) - CODEMASTERS - C:\WINDOWS\system32\pr2ah4nc.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe

voila j fait quoi maintenant

Merci . Maintenant réouvre hijackthis puis fix ces lignes là :::::

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll


O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O20 - Winlogon Notify: tuvutqn - tuvutqn.dll (file missing)

Puis refait encore un scan hijackthis et poste son rapport .


Pense à mettre bien à jour tous t'es programmes c'est important pour la sécurité de ton pc et évite d"installer des toolbar (barre d'outil ) l'or de l'installation de logiciels .

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:16:14, on 19/01/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Microsoft LifeCam\MSCamSvc.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZIPM12.EXE
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Documents and Settings\HP_Propriétaire\Bureau\HiJackThis.exe

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Windows Live Call HoverToCall class - {7E853D72-626A-48EC-A868-BA8D5E23E045} - C:\Program Files\Windows Live\Messenger\HTC.DLL
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - .DEFAULT User Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'Default user')
O4 - Startup: StartupFaster
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: Titan Poker - {49783ED4-258D-4f9f-BE11-137C18D3E543} - C:\Poker\Titan Poker\casino.exe
O9 - Extra 'Tools' menuitem: Titan Poker - {49783ED4-258D-4f9f-BE11-137C18D3E543} - C:\Poker\Titan Poker\casino.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w3/pr01/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {78ABDC59-D8E7-44D3-9A76-9A0918C52B4A} (DLoader Class) - http://dl.uc.sina.com/cab/downloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab57213.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{CD9B6D4E-7AAE-4D83-84F3-13C50E573CFD}: NameServer = 192.168.30.1
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZIPM12.EXE
O23 - Service: DiRT Drivers Auto Removal (pr2ah4nc) (pr2ah4nc) - CODEMASTERS - C:\WINDOWS\system32\pr2ah4nc.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe

Merci maintenant met bien à jour tout t'es programmes c'est très important pour la sécurité de ton pc . Et fait ceci et tu est libre ;) [ pense à bien utilisé "Ccleaner" chaque jour ] ::::

Télécharge ToolsCleaner sur ton bureau pour nettoyer l'ordi de tous les outils qu'on a utilisé : http://www.commentcamarche.net/telecharger/telecharger 34055291 toolscleaner

Lance le, clique sur Recherche et laisse le scan se finir, puis clique sur Suppression pour nettoyer.
Tu peux aussi supprimer les fichiers temporaires.
Ensuite, supprime manuellement ToolsCleaner (mets le à la corbeille).

merci a toi

De rien corb83 :) (à tien t'es du var :D) Puis bonne soirée et bon surf .