Gro pb winifigter lancement application

Résolu
roqb19 -  
 roqb19 -
Bonjour,

depuis hier soir jai installer winifighter (grosse erreur) est depuis je ne pe plu ouvrir dapplication apar firefox parcekil ve ke jachete se logiciel de merde 49$ donc jai pu vou ecrire

merci de bien vouloir maider

ps: ni les setup.
Configuration: Windows Vista
Firefox 3.0.12

10 réponses

  1. gen-hackman
     
    salut :

    Désactive le contrôle des comptes utilisateurs (tu le réactiveras après ta désinfection):

    - Vas dans "Démarrer" puis Panneau de configuration.
    - Double Clique sur l'icône Comptes d'utilisateurs et sur Activer ou désactiver le contrôle des comptes d'utilisateurs.
    - Clique sur Continuer.
    - Décoche la case Utiliser le contrôle des comptes d'utilisateurs pour vous aider à protéger votre ordinateur.
    - Valide par OK et redémarre.

    Tuto

    ensuite :


    ♦ Télécharge DDS.scr de sUBs Sur le bureau.:

    ♦ L'outil ne nécessite pas d'installation.

    ♦ Lance-le en cliquant sur l'icône dds.scr

    ♦ Cette fenêtre DOS va apparaitre:

    ♦ Le scan ne doit pas dépasser trois minutes.
    ♦ Un premier rapport va s'ouvrir que tu enregistreras sous DDS.txt par défaut sur le bureau.
    ♦ Il te sera demandé si tu veux faire le scan optionnel.
    ♦ Accepte par Oui
    ♦ Un nouveau rapport s'ouvre que tu enregistres sous Attach.txt sur le bureau.
    ♦ Tu ne le fourniras que si nécessaire.
    ♦ Poste le rapport DDS.txt
    0
  2. roqb19
     
    le contrôle des comptes utilisateurs est desactiver depuis longtemps

    est il ne ve pa demarer dds.scr
    0
  3. gen-hackman
     
    clic droit en tant qu'administrateur et si negatif , en mode sans echec
    0
  4. roqb19
     
    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT

    DDS (Ver_09-06-26.01)

    Microsoft® Windows Vista™ Édition Familiale Premium
    Boot Device: \Device\HarddiskVolume2
    Install Date: 08/09/2008 21:34:24
    System Uptime: 27/07/2009 15:08:16 (0 hours ago)

    Motherboard: Acer, Inc. | | Mammoth
    Processor: Intel(R) Core(TM)2 Duo CPU T5800 @ 2.00GHz | U2E1 | 1995/200mhz

    ==== Disk Partitions =========================

    C: is FIXED (NTFS) - 111 GiB total, 45,445 GiB free.
    D: is FIXED (NTFS) - 111 GiB total, 99,935 GiB free.
    E: is CDROM ()

    ==== Disabled Device Manager Items =============

    Class GUID:
    Description:
    Device ID: ROOT\SCSIADAPTER\0000
    Manufacturer:
    Name:
    PNP Device ID: ROOT\SCSIADAPTER\0000
    Service:

    Class GUID: {4d36e97d-e325-11ce-bfc1-08002be10318}
    Description: Périphériques IR grand public
    Device ID: ROOT\SYSTEM\0001
    Manufacturer: Microsoft
    Name: Périphériques IR grand public
    PNP Device ID: ROOT\SYSTEM\0001
    Service: circlass

    ==== System Restore Points ===================

    RP243: 26/06/2009 21:02:45 - Point de contrôle planifié
    RP244: 28/06/2009 14:32:36 - Point de contrôle planifié
    RP245: 01/07/2009 12:02:44 - Point de contrôle planifié
    RP246: 03/07/2009 21:37:17 - Point de contrôle planifié
    RP248: 11/07/2009 17:54:36 - DirectX est installé
    RP249: 12/07/2009 21:15:30 - Point de contrôle planifié
    RP250: 13/07/2009 12:03:39 - Point de contrôle planifié
    RP251: 21/07/2009 14:23:04 - Point de contrôle planifié

    ==== Installed Programs ======================

    123 Free Solitaire
    2007 Microsoft Office Suite Service Pack 1 (SP1)
    3Planesoft Screensaver Manager 1.2
    7-Zip 4.65
    Acer Arcade Deluxe
    Acer Bio Protection
    Acer Crystal Eye Webcam 2.0.8
    Acer eAudio Management
    Acer eDataSecurity Management
    Acer Empowering Technology
    Acer ePower Management
    Acer eRecovery Management
    Acer eSettings Management
    Acer GameZone Console 2.0.1.1
    Acer GridVista
    Acer Mobility Center Plug-In
    Acer ScreenSaver
    Activation Assistant for the 2007 Microsoft Office suites
    Adobe Acrobat 5.0
    Adobe Acrobat 8 Professional - English, Français, Deutsch
    Adobe Acrobat 8.1.3 Professional
    Adobe After Effects CS3
    Adobe After Effects CS3 Presets
    Adobe Anchor Service CS3
    Adobe Asset Services CS3
    Adobe Bridge CS3
    Adobe Bridge Start Meeting
    Adobe BridgeTalk Plugin CS3
    Adobe Camera Raw 4.0
    Adobe CMaps
    Adobe Color - Photoshop Specific
    Adobe Color Common Settings
    Adobe Color EU Recommended Settings
    Adobe Color JA Extra Settings
    Adobe Color NA Extra Settings
    Adobe Contribute CS3
    Adobe Creative Suite 3 Master Collection
    Adobe Default Language CS3
    Adobe Device Central CS3
    Adobe Dreamweaver CS3
    Adobe Encore CS3
    Adobe Encore CS3 Codecs
    Adobe ExtendScript Toolkit 2
    Adobe Extension Manager CS3
    Adobe Fireworks CS3
    Adobe Flash CS3
    Adobe Flash Player 10 ActiveX
    Adobe Flash Player 10 Plugin
    Adobe Flash Video Encoder
    Adobe Fonts All
    Adobe Help Viewer CS3
    Adobe Illustrator CS3
    Adobe InDesign CS3
    Adobe InDesign CS3 Icon Handler
    Adobe Linguistics CS3
    Adobe MotionPicture Color Files
    Adobe PDF Library Files
    Adobe Photoshop CS3
    Adobe Premiere Pro CS3
    Adobe Premiere Pro CS3 Functional Content
    Adobe Premiere Pro CS3 Third Party Content
    Adobe Reader 8.1.3
    Adobe Setup
    Adobe Shockwave Player
    Adobe SING CS3
    Adobe Soundbooth CS3
    Adobe Soundbooth CS3 Codecs
    Adobe Stock Photos CS3
    Adobe Type Support
    Adobe Update Manager CS3
    Adobe Version Cue CS3 Client
    Adobe Version Cue CS3 Server
    Adobe Video Profiles
    Adobe WAS CS3
    Adobe WinSoft Linguistics Plugin
    Adobe XMP DVA Panels CS3
    Adobe XMP Panels CS3
    Agatha Christie Death on the Nile
    Agere Systems HDA Modem
    AHV content for Acrobat and Flash
    Ajouter ou supprimer Adobe Creative Suite 3 Master Collection
    Alice Greenfingers
    Applian FLV Player
    Architecte 3D Silver Advanced
    ArcSoft PhotoStudio 5.5
    Army Hero Screensaver
    AuthenTec Fingerprint Sensor Minimum Install
    avast! Antivirus
    AVerMedia A310 (MiniCard, DVB-T) 1.1.0.27
    Azada
    Battlefield 2(TM)
    Battlefield Heroes
    BF2 Unlock Weapons Mods Final
    Big Kahuna Reef
    Bricks of Egypt
    Broadcom Gigabit Integrated Controller
    Cake Mania
    Canon ScanGear Starter
    CanoScan Toolbox Ver4.9
    CF SCR
    Chicken Invaders 3
    Code de la Route Pratic
    Contextual Tool Snappyads
    Cross Fire En
    Digsby
    Diner Dash Flo on the Go
    Discovery 3D Screensaver 1.1
    Disketch CD Label Software
    e-Carte Bleue Caisse d'Epargne
    eoEngine 8.0
    eSobi v2
    Far Cry 2
    Fight Screen saver
    Fireplace 3D Screensaver 1.0
    Fraps
    Google Desktop
    Google Toolbar for Internet Explorer
    Google Update Helper
    Google Earth
    Graffiti Studio 2.0
    Gutterball
    Heredis 8
    HyperCam 2
    Ice Clock 3D Screensaver 1.1
    IKEA Home Planner
    Intel® Matrix Storage Manager
    Java(TM) 6 Update 13
    Jewel Quest Solitaire
    JMicron JMB38X Flash Media Controller
    Kick N Rush
    Kwinzy 1.0 build 127
    La France à la loupe
    Launch Manager
    Lexmark Z500-Z600 Series
    LightScribe 1.4.142.1
    LimeWire 5.1.2
    Livre Album Fuji Photo
    Mahjong Escape Ancient China
    Mahjongg Artifacts
    MathmosScreensaver
    Mechanical Clock 3D Screensaver 1.0
    Messenger Plus! Live & Sponsor (CiD)
    Microsoft Office Excel MUI (French) 2007
    Microsoft Office Home and Student 2007
    Microsoft Office OneNote MUI (French) 2007
    Microsoft Office PowerPoint MUI (French) 2007
    Microsoft Office Proof (Arabic) 2007
    Microsoft Office Proof (Dutch) 2007
    Microsoft Office Proof (English) 2007
    Microsoft Office Proof (French) 2007
    Microsoft Office Proof (German) 2007
    Microsoft Office Proof (Spanish) 2007
    Microsoft Office Proofing (French) 2007
    Microsoft Office Shared MUI (French) 2007
    Microsoft Office Word MUI (French) 2007
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Works
    Mozilla Firefox (3.0.12)
    Mozilla Firefox (3.5b4)
    MSXML 4.0 SP2 (KB936181)
    MSXML 4.0 SP2 (KB941833)
    MSXML 4.0 SP2 (KB954430)
    myBabylon_English Toolbar
    Mystery Case Files - Huntsville
    Mystery Solitaire - Secret Island
    NCH Toolbox
    NTI Backup Now 5
    NTI Backup Now Standard
    NTI Media Maker 8
    NVIDIA Drivers
    Orion
    Outil de mise à jour Google
    Paintball
    PDF Settings
    Pen Tablet
    Performance Dashboard Snappyads
    PhotoNow!
    PowerDirector
    PremierOpinion
    Prison Tycoon 2
    PunkBuster Services
    Quick Zip 4.60.012
    Realtek High Definition Audio Driver
    Sandlot Games Client Services 1.2.2
    Search Assistant Mysidesearch
    Skype™ 3.8
    Snappyads Games Collection
    Synaptics Pointing Device Driver
    TeamSpeak 2 RC2
    TeamSpeak Client
    The One Ring 3D Screensaver 1.0
    The Three Missing Words - Puzzles
    TmNationsForever
    Tom Clancy's Rainbow Six: Lockdown
    totalvid
    TRACTION In-Game Radio Player 1.0 Beta
    TuneUp Utilities 2008
    Turbo Pizza
    Unlock&EuFor Weapon Test Mod
    Update for Office 2007 (KB946691)
    Versailles
    VirtualCloneDrive
    VisuIco® 3.12
    VLC media player 0.9.4
    War Rock
    WarRock
    Water Clock 3D Screensaver 1.0
    Watermill 3D Screensaver 2.0
    Winamp
    Winbond CIR Device Drivers
    Windows Live Messenger
    Windows Live OneCare safety scanner
    Windows Media Player Firefox Plugin
    WinRAR archiver
    Yahoo! Install Manager
    Zuma Deluxe
    0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. roqb19
     
    DDS (Ver_09-06-26.01) - NTFSx86 NETWORK
    Run by romain at 15:16:05,05 on 27/07/2009
    Internet Explorer: 7.0.6001.18000 BrowserJavaVersion: 1.6.0_13
    Microsoft® Windows Vista™ Édition Familiale Premium 6.0.6001.1.1252.33.1036.18.3066.2458 [GMT 2:00]

    AV: avast! antivirus 4.8.1229 [VPS 081114-0] *On-access scanning enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
    SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
    SP: avast! antivirus 4.8.1229 [VPS 081114-0] *enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}

    ============== Running Processes ===============

    C:\Windows\system32\wininit.exe
    C:\Windows\system32\lsm.exe
    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\Windows\system32\svchost.exe -k rpcss
    C:\Windows\System32\svchost.exe -k secsvcs
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Windows\system32\svchost.exe -k NetworkService
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
    C:\Windows\Explorer.EXE
    C:\Program Files\Windows Media Player\wmpnscfg.exe
    C:\Windows\System32\svchost.exe -k swprv
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Users\romain\Desktop\dds.scr
    C:\Windows\system32\conime.exe

    ============== Pseudo HJT Report ===============

    uStart Page = hxxp://search.babylon.com/home
    uDefault_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=040c&s=2&o=vp32&d=0908&m=aspire_7730g
    mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=040c&s=2&o=vp32&d=0908&m=aspire_7730g
    mDefault_Page_URL = hxxp://fr.fr.acer.yahoo.com
    uInternet Settings,ProxyOverride = *.local
    uURLSearchHooks: myBabylon English Toolbar: {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - c:\program files\mybabylon_english\tbmyB1.dll
    mURLSearchHooks: myBabylon English Toolbar: {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - c:\program files\mybabylon_english\tbmyB1.dll
    BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
    BHO: Aide pour le lien d'Adobe PDF Reader: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
    BHO: ContributeBHO Class: {074c1dc5-9320-4a9a-947d-c042949c6216} - d:\program files\adobe\/Adobe Contribute CS3/contributeieplugin.dll
    BHO: mysidesearch search enhancer: {1093d679-3a1e-e944-c095-fac4cbe8dad4} - c:\windows\system32\vjypvjbrieva.dll
    BHO: Skype add-on (mastermind): {22bf413b-c6d2-4d91-82a9-a0f997ba588c} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll
    BHO: snappyads browser enhancer: {299c01c6-667c-e454-5b0c-c4d75dd9c04a} - c:\windows\system32\nbnifprvmwznuby.dll
    BHO: snappyads: {3ae6b295-341b-6e7c-a4ac-76d8f5fb44d4} - c:\windows\system32\nsn7389.dll
    BHO: EoBHO Class: {64f56fc1-1272-44cd-ba6e-39723696e350} - c:\program files\eorezo\eoadv\EoRezoBHO.dll
    BHO: {7E853D72-626A-48EC-A868-BA8D5E23E045} - No File
    BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
    BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - d:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll
    BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.2.4204.1700\swg.dll
    BHO: myBabylon English Toolbar: {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - c:\program files\mybabylon_english\tbmyB1.dll
    BHO: Google Dictionary Compression sdch: {c84d72fe-e17d-4195-bb24-76c02e2e7c4e} - c:\program files\google\google toolbar\component\fastsearch_B7C5AC242193BB3E.dll
    BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
    TB: Acer eDataSecurity Management: {5cbe3b7c-1e47-477e-a7dd-396db0476e29} - c:\program files\acer\empowering technology\edatasecurity\x86\eDStoolbar.dll
    TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - d:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll
    TB: Contribute Toolbar: {517bdde4-e3a7-4570-b21e-2b52b6139fc7} - d:\program files\adobe\/Adobe Contribute CS3/contributeieplugin.dll
    TB: myBabylon English Toolbar: {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - c:\program files\mybabylon_english\tbmyB1.dll
    TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
    EB: Adobe PDF: {182ec0be-5110-49c8-a062-beb1d02a220b} - d:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll
    EB: Search panel: {54fef9a0-3eab-7bb5-471f-61b4b1af138e} - c:\windows\system32\vjypvjbrieva.dll
    uRun: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
    uRun: [AdobeUpdater] "c:\program files\common files\adobe\updater5\AdobeUpdater.exe"
    uRun: [swg] c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe
    uRun: [msnmsgr] "c:\program files\msn messenger\msnmsgr.exe" /background
    uRun: [scvhost] c:\tar\scvhost.exe
    uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe
    uRun: [setup2.exe] c:\windows\system32\setup2.exe
    mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
    mRun: [RtHDVCpl] RtHDVCpl.exe
    mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
    mRun: [ePower_DMC] c:\program files\acer\empowering technology\epower\ePower_DMC.exe
    mRun: [eDataSecurity Loader] c:\program files\acer\empowering technology\edatasecurity\x86\eDSloader.exe
    mRun: [eAudio] "c:\program files\acer\empowering technology\eaudio\eAudio.exe"
    mRun: [BkupTray] "c:\program files\newtech infosystems\nti backup now 5\BkupTray.exe"
    mRun: [IAAnotif] c:\program files\intel\intel matrix storage manager\iaanotif.exe
    mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
    mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
    mRun: [LManager] c:\progra~1\launch~1\QtZgAcer.EXE
    mRun: [PLFSetI] c:\windows\PLFSetI.exe
    mRun: [ZPdtWzdVitaKey MC3000] "c:\program files\acer\acer bio protection\PdtWzd.exe" show
    mRun: [ArcadeDeluxeAgent] "c:\program files\acer arcade deluxe\acer arcade deluxe\ArcadeDeluxeAgent.exe"
    mRun: [WarReg_PopUp] c:\program files\acer\wr_popup\WarReg_PopUp.exe
    mRun: [VirtualCloneDrive] "c:\program files\elaborate bytes\virtualclonedrive\VCDDaemon.exe" /s
    mRun: [avast!] c:\progra~1\alwils~1\avast4\ashDisp.exe
    mRun: [Acrobat Assistant 8.0] "d:\program files\adobe\acrobat 8.0\acrobat\Acrotray.exe"
    mRun: [<NO NAME>]
    mRun: [Adobe_ID0EYTHM] c:\progra~1\common~1\adobe\adobev~1\server\bin\VERSIO~2.EXE
    mRun: [WinampAgent] "d:\program files\winamp\winampa.exe"
    mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe"
    mRun: [sumnbroifzwhs] c:\windows\system32\regsvr32.exe /s "c:\windows\system32\nbnifprvmwznuby.dll"
    mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
    mRun: [WiniFighter] c:\program files\winifighter software\winifighter\WiniFighter.exe -min -noclose
    mPolicies-system: EnableLUA = 0 (0x0)
    mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
    IE: Ajouter au fichier PDF existant - d:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
    IE: Convertir en Adobe PDF - d:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
    IE: Convertir la cible du lien en Adobe PDF - d:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
    IE: Convertir la cible du lien en un fichier PDF existant - d:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
    IE: Convertir la sélection en Adobe PDF - d:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
    IE: Convertir la sélection en un fichier PDF existant - d:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
    IE: Convertir les liens sélectionnés en fichier Adobe PDF - d:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
    IE: Convertir les liens sélectionnés en un fichier PDF existant - d:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
    IE: E&xporter vers Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
    IE: {10954C80-4F0F-11d3-B17C-00C0DFE39736} - c:\program files\acer\acer bio protection\PwdBank.exe
    IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll
    IE: {77BF5300-1474-4EC7-9980-D32B190E9B07} - {77BF5300-1474-4EC7-9980-D32B190E9B07} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll
    IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
    DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - c:\program files\yahoo!\common\Yinsthelper.dll
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
    DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
    TCP: NameServer = 85.255.116.147,85.255.112.211
    TCP: {9A0BE692-9CB6-4545-B107-06816C9B04AE} = 85.255.116.147,85.255.112.211
    TCP: {C7500266-E0AF-4F88-928A-E00E2DAF0334} = 85.255.116.147,85.255.112.211
    Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
    Notify: AWinNotifyVitaKey MC3000 - c:\program files\acer\acer bio protection\WinNotify.dll
    AppInit_DLLs: c:\progra~1\google\google~1\GOEC62~1.DLL
    LSA: Notification Packages = scecli c:\program files\acer\acer bio protection\PwdFilter

    ================= FIREFOX ===================

    FF - ProfilePath - c:\users\romain\appdata\roaming\mozilla\firefox\profiles\gbno8pmq.default\
    FF - prefs.js: browser.search.defaulturl - hxxp://www15.yoog.com/search.php?q=
    FF - prefs.js: browser.search.selectedEngine - Yoog Search
    FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
    FF - prefs.js: keyword.URL - hxxp://www15.yoog.com/search.php?q=
    FF - component: c:\program files\mozilla firefox\components\3bd26101-6c00-28ba-5830-325c3384226e.dll
    FF - component: c:\program files\mozilla firefox\components\vjypvjbrieva.dll
    FF - component: c:\program files\premieropinion\components\pmxg.dll
    FF - plugin: c:\program files\google\google updater\2.4.1536.6592\npCIDetect13.dll
    FF - plugin: c:\program files\google\update\1.2.183.7\npGoogleOneClick8.dll
    FF - plugin: c:\program files\mozilla firefox\plugins\npyaxmpb.dll
    FF - plugin: c:\users\romain\appdata\roaming\mozilla\firefox\profiles\gbno8pmq.default\extensions\battlefieldheroespatcher@ea.com\platform\winnt_x86-msvc\plugins\npBFHUpdater.dll
    FF - plugin: c:\users\romain\appdata\roaming\mozilla\firefox\profiles\gbno8pmq.default\extensions\oberongamehost@oberongames.com\platform\winnt_x86-msvc\plugins\npOberonGameHost.dll
    FF - HiddenExtension: *xg.dll: {6E19037A-12E3-4295-8915-ED48BC341614} - c:\program files\PremierOpinion
    FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}
    FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}
    FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}

    ---- FIREFOX POLICIES ----
    FF - user.js: yahoo.homepage.dontask - true
    FF - user.js: browser.search.defaultenginename - Yoog Search
    FF - user.js: browser.search.defaulturl - hxxp://www15.yoog.com/search.php?q=
    FF - user.js: browser.search.selectedEngine - Yoog Search
    FF - user.js: keyword.URL - hxxp://www15.yoog.com/search.php?q=
    FF - user.js: keyword.enabled - true
    FF - user.js: google.toolbar.linkdoctor.enabled - false

    ============= SERVICES / DRIVERS ===============

    R0 AlfaFF;AlfaFF File System mini-filter;c:\windows\system32\drivers\AlfaFF.sys [2008-9-8 43184]
    R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2008-3-28 210432]
    R3 NETw5v32;Pilote de carte Intel(R) Wireless WiFi Link pour Windows Vista 32 bits ;c:\windows\system32\drivers\NETw5v32.sys [2008-4-18 3658752]
    R3 winbondcir;Winbond IR Transceiver;c:\windows\system32\drivers\winbondcir.sys [2007-3-28 43008]
    S1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2008-11-9 114768]
    S2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796};{49DE1C67-83F8-4102-99E0-C16DCC7EEC796};c:\program files\acer arcade deluxe\playmovie\000.fcl [2008-9-8 61424]
    S2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2008-11-9 20560]
    S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2008-11-9 51792]
    S2 BUNAgentSvc;NTI Backup Now 5 Agent Service;c:\program files\newtech infosystems\nti backup now 5\client\Agentsvc.exe [2008-3-3 16384]
    S2 CLHNService;CLHNService;c:\program files\acer arcade deluxe\homemedia\kernel\dmp\CLHNService.exe [2008-9-8 81504]
    S2 ETService;Empowering Technology Service;c:\program files\acer\empowering technology\service\ETService.exe [2008-4-18 24576]
    S2 gupdate1c9ba411925e60;Service Google Update (gupdate1c9ba411925e60);c:\program files\google\update\GoogleUpdate.exe [2009-4-11 133104]
    S2 IGBASVC;iGroupTec Service;c:\program files\acer\acer bio protection\BASVC.exe [2008-9-8 3471360]
    S2 KwinzySrch Service;KwinzySrch Service;c:\programdata\kwinzysrch\kwinzy127.exe [2009-7-15 54760]
    S2 lxbc_device;lxbc_device;c:\windows\system32\lxbccoms.exe -service --> c:\windows\system32\lxbccoms.exe -service [?]
    S2 NTIBackupSvc;NTI Backup Now 5 Backup Service;c:\program files\newtech infosystems\nti backup now 5\BackupSvc.exe [2008-4-6 50424]
    S2 NTIPPKernel;NTIPPKernel;c:\program files\acer arcade deluxe\homemedia\kernel\dmp\NTIPPKernel.sys [2008-9-8 122368]
    S2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;c:\program files\newtech infosystems\nti backup now 5\SchedulerSvc.exe [2008-4-4 131072]
    S2 PremierOpinion;PremierOpinion;c:\program files\premieropinion\pmservice.exe [2009-2-13 45056]
    S2 TabletServicePen;TabletServicePen;c:\windows\system32\Pen_Tablet.exe [2009-2-19 1373480]
    S2 Windows Service Manager;Windows Service Manager;\\?\globalroot\systemroot\system32\wsmanager.exe [2009-7-27 66560]
    S2 WiniFighterSvc;WiniFighter Security Service;c:\program files\winifighter software\winifighter\winifightersvc.exe --> c:\program files\winifighter software\winifighter\WiniFighterSvc.exe [?]
    S3 A310;AVerMedia A310 DVB-T;c:\windows\system32\drivers\AVerA310USB.sys [2008-4-18 25856]
    S3 BDASwCap;AVerMedia A310 BDA DVBT Capture Device;c:\windows\system32\drivers\AVerA310Cap.sys [2008-4-18 42880]
    S3 GoogleDesktopManager-080708-050100;Google Desktop Manager 5.7.808.7150;c:\program files\google\google desktop search\GoogleDesktop.exe [2008-11-7 24064]
    S3 JMCR;JMCR;c:\windows\system32\drivers\jmcr.sys [2008-4-18 81296]
    S3 npggsvc;nProtect GameGuard Service;c:\windows\system32\gamemon.des -service --> c:\windows\system32\GameMon.des -service [?]
    S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda32v.sys [2008-4-21 43552]

    =============== Created Last 30 ================

    2009-07-27 12:33 <DIR> --d----- c:\programdata\WindowsSearch
    2009-07-27 00:55 379,399,320 a------- c:\windows\MEMORY.DMP
    2009-07-26 09:52 17,223 a------- c:\windows\24835virusz19.ocx
    2009-07-26 08:40 5,777 a------- c:\windows\6276wo5m9z3.dll
    2009-07-26 01:07 4,920 a------- c:\windows\5d0ezhre5t8992.ocx
    2009-07-25 20:48 794,624 a------- c:\windows\system32\spr32d35.dll
    2009-07-25 20:48 753,808 a------- c:\windows\system32\temp.001
    2009-07-25 20:48 140,224 a------- c:\windows\system32\temp.000
    2009-07-25 20:33 <DIR> --d----- c:\program files\Architecte_3D_Silver_Advanced
    2009-07-25 19:49 <DIR> --d----- c:\program files\Anuman Interactive
    2009-07-23 08:47 10,323 a------- c:\windows\system32\5593sp5ware2005z.ocx
    2009-07-22 20:44 268 a---h--- C:\sqmdata07.sqm
    2009-07-22 20:44 172 a---h--- C:\sqmnoopt07.sqm
    2009-07-22 17:06 0 a---h--- c:\windows\system32\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
    2009-07-22 16:48 10,124 a------- c:\windows\1zd5v9r444.cpl
    2009-07-22 02:13 268 a---h--- C:\sqmdata06.sqm
    2009-07-22 02:13 244 a---h--- C:\sqmnoopt06.sqm
    2009-07-21 20:12 12,511 a------- c:\windows\system32\4z99threa52122.exe
    2009-07-20 10:31 11,288 a------- c:\windows\17e1z5ief2960.bin
    2009-07-18 19:10 4,750 a------- c:\windows\9408sz97b5.cpl
    2009-07-17 18:45 14,742 a------- c:\windows\system32\z550backdo5r3099.exe
    2009-07-17 16:50 528,384 a------- c:\windows\system32\vjypvjbrieva.dll
    2009-07-15 07:49 <DIR> --d----- c:\programdata\KwinzySrch
    2009-07-15 07:49 <DIR> --d----- c:\program files\KwinzySrch
    2009-07-15 07:49 <DIR> --d----- c:\progra~2\KwinzySrch
    2009-07-14 16:30 6,485 a------- c:\windows\74159hreat2z00.cpl
    2009-07-11 17:55 <DIR> --d----- c:\programdata\TrackMania
    2009-07-11 17:52 <DIR> --d----- c:\program files\TmNationsForever
    2009-07-10 11:47 <DIR> --d----- c:\program files\common files\Windows Live
    2009-07-10 03:40 3,128 a------- c:\windows\system32\23383v59zs4a5.dll
    2009-07-09 02:04 9,875 a------- c:\windows\91aathrzat224395.bin
    2009-07-08 21:19 11,828 a------- c:\windows\138z1worm5c59.ocx
    2009-07-08 02:01 292 a---h--- C:\sqmdata05.sqm
    2009-07-08 02:01 172 a---h--- C:\sqmnoopt05.sqm
    2009-07-07 13:48 17,982 a------- c:\windows\system32\98c1az5ware2481.bin
    2009-07-07 08:13 16,748 a------- c:\windows\system32\fb0th5eat29z6.bin
    2009-07-06 16:44 5,907 a------- c:\windows\539fzpyware5975.exe
    2009-07-06 12:47 189,488 a------- c:\windows\system32\PnkBstrB.xtr
    2009-07-05 21:30 2,985 a------- c:\windows\15z52hacktool29c.cpl
    2009-07-05 13:54 18,377 a------- c:\windows\9cz5thief1582.bin
    2009-07-03 23:45 7,981 a------- c:\windows\system32\5723troz559.exe
    2009-07-03 19:12 17,024 a------- c:\windows\system32\50f0threaz95445.ocx
    2009-07-03 17:13 4,184 a------- c:\windows\system32\30a9zac9do5r2762.ocx
    2009-07-02 09:10 8,642 a------- c:\windows\5d91sparse1955z.bin
    2009-07-02 03:32 1,342,976 a------- c:\windows\system32\nsn7389.dll
    2009-07-01 23:28 12,569 a------- c:\windows\e69add5arz813.dll
    2009-07-01 19:53 5,691 a------- c:\windows\6620s5yware9z5.exe
    2009-06-29 01:59 14,622 a------- c:\windows\system32\51559irus43z.bin
    2009-06-27 18:02 3,535 a------- c:\windows\system32\za159parse2223.dll

    ==================== Find3M ====================

    2009-07-27 15:13 668,580 a------- c:\windows\system32\perfh00C.dat
    2009-07-27 15:13 122,972 a------- c:\windows\system32\perfc00C.dat
    2009-07-27 13:36 56,926 a------- c:\programdata\nvModes.dat
    2009-07-27 13:36 56,926 a------- c:\progra~2\nvModes.dat
    2009-07-26 19:24 58,738 a------- c:\windows\system32\vjypvjbrieva.dll-uninst.exe
    2009-07-24 15:55 86,032 a------- c:\windows\system32\GDIPFONTCACHEV1.DAT
    2009-07-18 02:17 66,560 a------- c:\windows\system32\wsmanager.exe
    2009-07-07 15:26 189,488 a------- c:\windows\system32\PnkBstrB.exe
    2009-07-07 14:39 139,016 a------- c:\windows\system32\drivers\PnkBstrK.sys
    2009-07-06 00:35 139,152 a------- c:\users\romain\appdata\roaming\PnkBstrK.sys
    2009-07-06 00:35 794,408 a------- c:\windows\system32\pbsvc.exe
    2009-07-06 00:35 75,064 a------- c:\windows\system32\PnkBstrA.exe
    2009-07-03 20:46 86,672 a------- c:\windows\system32\60d97db8-d21b-6e44-5b61-18c5011f49de.exe
    2009-06-27 06:35 3,960 a------- c:\windows\system32\31896zack5ool295.bin
    2009-06-27 05:36 14,886 a------- c:\windows\system32\52a4tzi5f493.exe
    2009-06-26 19:29 16,554 a------- c:\windows\214069r5j1z4.exe
    2009-06-26 17:57 2,890 a------- c:\windows\15674vzr5s98f.exe
    2009-06-26 14:35 5,255 a------- c:\windows\2z58spyware5739.bin
    2009-06-25 04:11 4,579 a------- c:\windows\1405thi95260z.exe
    2009-06-24 16:35 7,426 a------- c:\windows\system32\11z47h9c5tool52e.exe
    2009-06-24 01:58 11,710 a------- c:\windows\system32\7z95spyware3169.exe
    2009-06-19 02:34 5,316 a------- c:\windows\system32\280d5i9144z.exe
    2009-06-16 16:33 9,541 a------- c:\windows\7b55spywarz2899.dll
    2009-06-16 03:07 13,808 a------- c:\windows\system32\9c7az9ware1594.dll
    2009-06-15 19:51 9,591 a------- c:\windows\system32\3715sze9l1105.exe
    2009-06-15 02:00 10,129 a------- c:\windows\system32\38f9vzr5943.bin
    2009-06-14 10:08 2,762 a------- c:\windows\system32\50195vi9zs6d5.exe
    2009-06-14 03:53 15,498 a------- c:\windows\5494spambotz49.exe
    2009-06-13 10:53 10,025 a------- c:\windows\system32\299149py65dz.exe
    2009-06-11 18:33 8,296 a------- c:\windows\9c95thiefz09.bin
    2009-06-09 12:08 9,905 a------- c:\windows\435azpyware5973.dll
    2009-06-08 22:50 3,760 a------- c:\windows\305cvi5z789.bin
    2009-06-08 04:27 16,819 a------- c:\windows\21543worm1z9.dll
    2009-06-02 11:53 14,053 a------- c:\windows\system32\50zbspyware985.exe
    2009-06-01 15:27 4,789 a------- c:\windows\703ct5ief96z9.dll
    2009-05-27 14:58 1,536,782 a------- c:\users\romain\Bf2_Ussni_m82a1_Fixed.zip
    2009-05-19 20:00 16,680 a------- c:\windows\system32\61bebackd5oz10689.bin
    2009-05-19 02:37 15,438 a------- c:\windows\4z9fdo5nloader2781.exe
    2009-05-18 17:46 2,726 a------- c:\windows\system32\aezspa5se3942.bin
    2009-05-17 22:14 14,000 a------- c:\windows\system32\4953threat970z4.bin
    2009-05-16 14:04 520,192 a------- c:\windows\system32\MathmosScreensaver.scr
    2009-05-16 03:05 12,822 a------- c:\windows\system32\6c51add9aze512.bin
    2009-05-12 11:51 3,874 a------- c:\windows\7b98spars5199z.exe
    2009-05-10 18:23 48,281 a------- c:\windows\system32\uxavspelfypycv.exe
    2009-05-09 21:54 3,592 a------- c:\windows\system32\33995parse907z.bin
    2009-05-09 16:41 5,095 a------- c:\windows\z335addwa9e1196.exe
    2009-05-09 04:36 3,439 a------- c:\windows\system32\6e19spywarz5395.dll
    2009-05-09 01:23 105,984 a------- c:\windows\system32\c_dll.dll
    2009-05-08 12:37 7,175 a------- c:\windows\15249spy57z.dll
    2009-05-08 04:09 9,623 a------- c:\windows\2z495not9a5virus29c.dll
    2009-05-07 12:20 2,935 a------- c:\windows\system32\7edazownloader5279.exe
    2009-05-07 07:58 7,576 a------- c:\windows\system32\19925wzrm30d.bin
    2009-05-06 03:46 8,735 a------- c:\windows\8f95teal2z55.exe
    2009-05-05 07:27 15,509 a------- c:\windows\z05a5ac9door1745.dll
    2009-05-04 14:45 7,334 a------- c:\windows\79149aczt5olaf.exe
    2009-05-02 02:30 2,630 a------- c:\windows\3d6fth5efz95.exe
    2009-04-28 21:37 15,879 a------- c:\windows\265es9ezl608.exe
    2009-02-19 22:56 143,360 a------- c:\windows\inf\infstrng.dat
    2009-02-19 22:56 51,200 a------- c:\windows\inf\infpub.dat
    2009-02-19 22:33 86,016 a------- c:\windows\inf\infstor.dat
    2008-11-08 22:21 56 a---h--- c:\programdata\ezsidmv.dat
    2008-11-08 22:21 56 a---h--- c:\progra~2\ezsidmv.dat
    2008-11-07 21:52 665,600 a------- c:\windows\inf\drvindex.dat
    2008-01-21 10:37 340,236 a------- c:\windows\inf\perflib\040c\perfi.dat
    2008-01-21 10:37 340,236 a------- c:\windows\inf\perflib\040c\perfh.dat
    2008-01-21 10:37 37,390 a------- c:\windows\inf\perflib\040c\perfd.dat
    2008-01-21 10:37 37,390 a------- c:\windows\inf\perflib\040c\perfc.dat
    2008-01-21 04:43 174 a--sh--- c:\program files\desktop.ini
    2006-11-02 11:20 287,440 a------- c:\windows\inf\perflib\0000\perfi.dat
    2006-11-02 11:20 287,440 a------- c:\windows\inf\perflib\0000\perfh.dat
    2006-11-02 11:20 30,674 a------- c:\windows\inf\perflib\0000\perfd.dat
    2006-11-02 11:20 30,674 a------- c:\windows\inf\perflib\0000\perfc.dat
    2009-02-14 15:25 1,546 a--sh--- c:\windows\system32\GroupPolicy000.dat

    ============= FINISH: 15:16:17,73 ===============
    0
  7. gen-hackman
     

    /!\ ATTENTION SUIVRE SCRUPULEUSEMENT A LA LETTRE CES INDICATIONS/!\

    ♦ Surtout , penses à l'enregistrement à renommer Combofix en "ton prenom.exe"


    _________________________________________________________________
    >Ce logiciel n'est à utiliser que prescrit par un helper qualifié et formé à l'outil.<
    >>>>>>>Ne pas utiliser en dehors de ce cas de figure : dangereux!<<<<<<<<
    =====================================================</gras>

    ♦ On va utiliser ComboFix.exe. Rends toi sur cette page web pour obtenir les liens de téléchargement, ainsi que des instructions pour exécuter l'outil:

    https://www.bleepingcomputer.com/combofix/fr/comment-utiliser-combofix

    Avant d'utiliser ComboFix :
    ______________________________________________________________________
    >> referme les fenêtres de tous les programmes en cours.
    >> Désactive provisoirement et seulement le temps de l'utilisation de ComboFix,
    >>la protection en temps réel de ton Antivirus et de tes Antispywares,
    >>qui peuvent gêner fortement la procédure de recherche et de nettoyage de l'outil.

    °°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°


    ♦ !!!!!NE TOUCHE A RIEN PENDANT LE TRAVAIL DE COMBOFIX (SOURIS/CLAVIER.....)!!!!!

    ♦ n'oublie pas de reactiver la garde de ton Antivirus et de tes Antispywares, avant de te reconnecter à internet.

    >> Reviens sur le forum, et

    ♦ copie et colle la totalité du contenu de C:\Combofix.txt dans ton prochain message.

    0
  8. roqb19
     
    il est bloker je ne pe pa le demarer

    (process romain.exe terminated
    harmful memory infection was detected)
    0