Trek Error Nuker récalcitrant ! Fermé

Question

Bonjour,Malgré l'usage ancien et permanent de Adaware et SPybot, je suis victime depuis quelques jours de Trek Error Nuker et malgré différents conseils je ne parviens pas à m'en débarasser.Quelqu'un a-t-il une idée ? D'avance merci.PhilippeVoici mon rapport Hijackthis :Logfile of HijackThis v1.99.1Scan saved at 10:52 , on 09/08/2005Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\System32\Ati2evxx.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Ahead\InCD\InCDsrv.exeC:\Program Files\TGTSoft\StyleXP\StyleXPService.exeC:\Program Files\Intel\Wireless\Bin\EvtEng.exeC:\Program Files\Intel\Wireless\Bin\S24EvMon.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Computer Associates\InoculateIT\InoRpc.exeC:\Program Files\Computer Associates\InoculateIT\InoRT.exeC:\Program Files\Computer Associates\InoculateIT\InoTask.exeC:\WINDOWS\LogWatNT.exeC:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXEC:\Program Files\Intel\Wireless\Bin\OProtSvc.exeC:\Program Files\Intel\Wireless\Bin\RegSrvc.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exeC:\PROGRA~1\Intel\Wireless\Bin\1XConfig.exeC:\WINDOWS\Explorer.EXEC:\WINDOWS\system32\apizh.exeC:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exeC:\Program Files\ASUSTek\ASUSDVD\PDVDServ.exeC:\Program Files\Computer Associates\InoculateITealmon.exeC:\Program Files\Intel\Wireless\Bin\ifrmewrk.exeC:\Program Files\Intel\Wireless\Bin\EOUWiz.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Java\jre1.5.0_04\bin\jusched.exeC:\WINDOWS\system32\MSTMON_S.EXEC:\Program Files\HP\hpcoretech\hpcmpmgr.exeC:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exeC:\Program Files\Fichiers communs\Real\Update_OBealsched.exeC:\Program Files\QuickTime\qttask.exeC:\WINDOWS\system32\ctfmon.exeC:\Program Files\TGTSoft\StyleXP\StyleXP.exeC:\Program Files\Copernic Desktop Search\CopernicDesktopSearch.exeC:\Program Files\Ray Adams\ATI Tray Tools\atitray.exeC:\Program Files\Tracker Software\PDF-XChange 3\pdfSaver\pdfSaver3.exeC:\Program Files\MSN Messenger\msnmsgr.exeC:\Program Files\Fichiers communs\DataViz\DvzIncMsgr.exeC:\Program Files\palmOne\Hotsync.exeC:\Program Files\Adobe\Acrobat 7.0\Readereader_sl.exeC:\Program Files\Spybot - Search & Destroy\SpybotSD.exeC:\1 - Personnel\Applis\HijackThis.exeR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blankR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\1 - Personnel\Page démarrage\Page accueil large Philippe_fichiers\slide0001.htmR3 - Default URLSearchHook is missingO2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dllO2 - BHO: Class - {845485EF-BB02-F9D7-07F0-2941C9714616} - C:\WINDOWS\system32\apiwa.dllO2 - BHO: Class - {B6F3D006-AA23-425A-7BB3-6A0B8479653D} - C:\WINDOWS\system32\apizh.dllO2 - BHO: Class - {D05E8A26-E5B5-C8CB-936B-66F75C677088} - C:\WINDOWS\addxu.dllO4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exeO4 - HKLM\..\Run: [Synchronization Manager] %SystemRoot%\system32\mobsync.exe /logonO4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exeO4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\ASUSTek\ASUSDVD\PDVDServ.exe"O4 - HKLM\..\Run: [Realtime Monitor] "C:\Program Files\Computer Associates\InoculateITealmon.exe"O4 - HKLM\..\Run: [IntelWireless] C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe /tf Intel PROSet/WirelessO4 - HKLM\..\Run: [EOUApp] C:\Program Files\Intel\Wireless\Bin\EOUWiz.exeO4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_04\bin\jusched.exeO4 - HKLM\..\Run: [KONICA MINOLTA magicolor 2400W STD] C:\WINDOWS\system32\MSTMON_S.EXE STARTUPO4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exeO4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OBealsched.exe"  -osbootO4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottimeO4 - HKLM\..\Run: [netrx32.exe] C:\WINDOWS\system32
etrx32.exeO4 - HKLM\..\Run: [apizh.exe] C:\WINDOWS\system32\apizh.exeO4 - HKLM\..\RunOnce: [javajt32.exe] C:\WINDOWS\javajt32.exeO4 - HKLM\..\RunOnce: [d3fy32.exe] C:\WINDOWS\system32\d3fy32.exeO4 - HKLM\..\RunOnce: [SpybotSnD] "C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe" /autocheckO4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exeO4 - HKCU\..\Run: [STYLEXP] C:\Program Files\TGTSoft\StyleXP\StyleXP.exe -HideO4 - HKCU\..\Run: [Copernic Desktop Search] "C:\Program Files\Copernic Desktop Search\CopernicDesktopSearch.exe" /trayO4 - HKCU\..\Run: [AtiTrayTools] "C:\Program Files\Ray Adams\ATI Tray Tools\atitray.exe"O4 - HKCU\..\Run: [pdfSaver3] "C:\Program Files\Tracker Software\PDF-XChange 3\pdfSaver\pdfSaver3.exe"O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /backgroundO4 - Startup: palmOne Registration.lnk = C:\Program Files\palmOneegister.exeO4 - Global Startup: DataViz Inc Messenger.lnk = C:\Program Files\Fichiers communs\DataViz\DvzIncMsgr.exeO4 - Global Startup: HotSync Manager.lnk = C:\Program Files\palmOne\Hotsync.exeO4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Readereader_sl.exeO8 - Extra context menu item: Chercher avec Copernic Agent - res://C:\Program Files\Copernic Agent\CopernicAgentExt.rdl/INTEGRATION_MENU_SEARCHEXTO8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin
pjpi150_04.dllO9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin
pjpi150_04.dllO9 - Extra button: (no name) - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\PROGRA~1\COPERN~1\COPERN~1.EXEO9 - Extra 'Tools' menuitem: Démarrer Copernic Agent - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\PROGRA~1\COPERN~1\COPERN~1.EXEO9 - Extra button: Copernic Agent - {688DC797-DC11-46A7-9F1B-445F4F58CE6E} - C:\PROGRA~1\COPERN~1\COPERN~1.EXEO9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLLO9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO15 - Trusted Zone: *.registration.sonystyle-europe.com (HKLM)O16 - DPF: {14A3221B-1678-1982-A355-7263B1281987} - ms-its:mhtml:file://C:\foo.mht!http://82.179.166.130/e9xr2.chm::/file.exeO16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cabO16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} - http://software-dl.real.com/1057b5d131e7627ce317/netzip/RdxIE601_fr.cabO16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1109581723317O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cabO16 - DPF: {826287F8-454E-11D9-ADFE-00062919A34C} (ActiveXUploadFotoCom.UserCtrlFotoCom) - http://fr-express.foto.com/activeX/newUploadFotoCom.CABO16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/msnmessengersetupdownloader.cabO16 - DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} (ASquaredScanForm Element) - http://www.windowsecurity.com/trojanscan/axscan.cabO16 - DPF: {D28C3640-A6D7-4668-A53C-07A9CF67D157} (CFnacComposantCtrl Object) - http://www.fnacmusic.com/telechargementFnacmusic/FnacComposant.cabO17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = cia.lanO17 - HKLM\Software\..\Telephony: DomainName = cia.lanO17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = cia.lanO20 - Winlogon Notify: IntelWireless - C:\Program Files\Intel\Wireless\Bin\LgNotify.dllO23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exeO23 - Service: EvtEng - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exeO23 - Service: InCD Helper (InCDsrv) - Ahead Software AG - C:\Program Files\Ahead\InCD\InCDsrv.exeO23 - Service: InCD Helper (read only) (InCDsrvR) - Ahead Software AG - C:\Program Files\Ahead\InCD\InCDsrv.exeO23 - Service: InoculateIT RPC Server (InoRPC) - Computer Associates International, Inc. - C:\Program Files\Computer Associates\InoculateIT\InoRpc.exeO23 - Service: InoculateIT Realtime Server (InoRT) - Computer Associates International, Inc. - C:\Program Files\Computer Associates\InoculateIT\InoRT.exeO23 - Service: InoculateIT Job Server (InoTask) - Computer Associates International, Inc. - C:\Program Files\Computer Associates\InoculateIT\InoTask.exeO23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exeO23 - Service: Event Log Watch (LogWatch) - Unknown owner - C:\WINDOWS\LogWatNT.exeO23 - Service: OwnershipProtocol - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\OProtSvc.exeO23 - Service: RegSrvc - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exeO23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation  - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exeO23 - Service: StyleXPService - Unknown owner - C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe

PhilP · Answer

Après plusieurs tentatives d'éradication, de multiples télécharments d'anti-virus ou trojans.... je me retrouve avec presque les mêmes symptomes...Un expert pourrait-il m'éclairer de ses lumières ?PhilippeVoici le dernier log de HijackThis :Logfile of HijackThis v1.99.1Scan saved at 23:45 , on 09/08/2005Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\System32\Ati2evxx.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Ahead\InCD\InCDsrv.exeC:\Program Files\TGTSoft\StyleXP\StyleXPService.exeC:\Program Files\Intel\Wireless\Bin\EvtEng.exeC:\Program Files\Intel\Wireless\Bin\S24EvMon.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Alwil Software\Avast4\aswUpdSv.exeC:\Program Files\Alwil Software\Avast4\ashServ.exeC:\Program Files\Computer Associates\InoculateIT\InoRpc.exeC:\Program Files\Computer Associates\InoculateIT\InoRT.exeC:\Program Files\Computer Associates\InoculateIT\InoTask.exeC:\WINDOWS\LogWatNT.exeC:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXEC:\Program Files\Intel\Wireless\Bin\OProtSvc.exeC:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exeC:\Program Files\Intel\Wireless\Bin\RegSrvc.exeC:\WINDOWS\System32\svchost.exeC:\PROGRA~1\Intel\Wireless\Bin\1XConfig.exeC:\WINDOWS\Explorer.EXEC:\Program Files\Alwil Software\Avast4\ashMaiSv.exeC:\Program Files\Alwil Software\Avast4\ashWebSv.exeC:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exeC:\Program Files\ASUSTek\ASUSDVD\PDVDServ.exeC:\Program Files\Computer Associates\InoculateITealmon.exeC:\Program Files\Intel\Wireless\Bin\ifrmewrk.exeC:\Program Files\Intel\Wireless\Bin\EOUWiz.exeC:\Program Files\Java\jre1.5.0_04\bin\jusched.exeC:\WINDOWS\system32\MSTMON_S.EXEC:\Program Files\HP\hpcoretech\hpcmpmgr.exeC:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exeC:\Program Files\Fichiers communs\Real\Update_OBealsched.exeC:\Program Files\QuickTime\qttask.exeC:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeC:\WINDOWS\system32\sdkhr.exeC:\WINDOWS\system32\ctfmon.exeC:\Program Files\Copernic Desktop Search\CopernicDesktopSearch.exeC:\Program Files\Ray Adams\ATI Tray Tools\atitray.exeC:\Program Files\Tracker Software\PDF-XChange 3\pdfSaver\pdfSaver3.exeC:\Program Files\MSN Messenger\msnmsgr.exeC:\Program Files\Fichiers communs\DataViz\DvzIncMsgr.exeC:\Program Files\palmOne\Hotsync.exeC:\Program Files\Internet Explorer\IEXPLORE.EXEC:\WINDOWS\System32\svchost.exeC:\1 - Personnel\Applis\HijackThis.exeR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\WINDOWS	dprc.dll/sp.html#44768R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = res://C:\WINDOWS	dprc.dll/sp.html#44768R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blankR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blankR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = res://C:\WINDOWS	dprc.dll/sp.html#44768R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\WINDOWS	dprc.dll/sp.html#44768R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = res://C:\WINDOWS	dprc.dll/sp.html#44768R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blankR1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = res://C:\WINDOWS	dprc.dll/sp.html#44768R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = res://C:\WINDOWS	dprc.dll/sp.html#44768R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = C:\1 - Personnel\Page démarrage\Page accueil large Philippe_fichiers\slide0001.htmR0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\1 - Personnel\Page démarrage\Page accueil large Philippe_fichiers\slide0001.htmR3 - Default URLSearchHook is missingO2 - BHO: Class - {D0120366-6D16-1396-60F6-A7427AF4E10E} - C:\WINDOWS\system32\mfcwu.dllO4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exeO4 - HKLM\..\Run: [Synchronization Manager] %SystemRoot%\system32\mobsync.exe /logonO4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exeO4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\ASUSTek\ASUSDVD\PDVDServ.exe"O4 - HKLM\..\Run: [Realtime Monitor] "C:\Program Files\Computer Associates\InoculateITealmon.exe"O4 - HKLM\..\Run: [IntelWireless] C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe /tf Intel PROSet/WirelessO4 - HKLM\..\Run: [EOUApp] C:\Program Files\Intel\Wireless\Bin\EOUWiz.exeO4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_04\bin\jusched.exeO4 - HKLM\..\Run: [KONICA MINOLTA magicolor 2400W STD] C:\WINDOWS\system32\MSTMON_S.EXE STARTUPO4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exeO4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OBealsched.exe"  -osbootO4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottimeO4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeO4 - HKLM\..\Run: [sdkhr.exe] C:\WINDOWS\system32\sdkhr.exeO4 - HKLM\..\RunOnce: [d3yw32.exe] C:\WINDOWS\d3yw32.exeO4 - HKLM\..\RunOnce: [netqp.exe] C:\WINDOWS
etqp.exeO4 - HKLM\..\RunOnce: [apirk32.exe] C:\WINDOWS\system32\apirk32.exeO4 - HKLM\..\RunOnce: [appvb.exe] C:\WINDOWS\appvb.exeO4 - HKLM\..\RunOnce: [sdkec.exe] C:\WINDOWS\system32\sdkec.exeO4 - HKLM\..\RunOnce: [msig.exe] C:\WINDOWS\msig.exeO4 - HKLM\..\RunOnce: [sdkqh32.exe] C:\WINDOWS\sdkqh32.exeO4 - HKLM\..\RunOnce: [msgp.exe] C:\WINDOWS\msgp.exeO4 - HKLM\..\RunOnce: [crpn.exe] C:\WINDOWS\system32\crpn.exeO4 - HKLM\..\RunOnce: [netod32.exe] C:\WINDOWS
etod32.exeO4 - HKLM\..\RunOnce: [appms32.exe] C:\WINDOWS\system32\appms32.exeO4 - HKLM\..\RunOnce: [atlma.exe] C:\WINDOWS\system32\atlma.exeO4 - HKLM\..\RunOnce: [sdkqs32.exe] C:\WINDOWS\system32\sdkqs32.exeO4 - HKLM\..\RunOnce: [javaqa.exe] C:\WINDOWS\javaqa.exeO4 - HKLM\..\RunOnce: [sdkya.exe] C:\WINDOWS\system32\sdkya.exeO4 - HKLM\..\RunOnce: [ieop32.exe] C:\WINDOWS\ieop32.exeO4 - HKLM\..\RunOnce: [d3jz.exe] C:\WINDOWS\system32\d3jz.exeO4 - HKLM\..\RunOnce: [addja.exe] C:\WINDOWS\addja.exeO4 - HKLM\..\RunOnce: [mfctt32.exe] C:\WINDOWS\system32\mfctt32.exeO4 - HKLM\..\RunOnce: [syshv.exe] C:\WINDOWS\syshv.exeO4 - HKLM\..\RunOnce: [syswp32.exe] C:\WINDOWS\system32\syswp32.exeO4 - HKLM\..\RunOnce: [sdkbk32.exe] C:\WINDOWS\system32\sdkbk32.exeO4 - HKLM\..\RunOnce: [sdkwb32.exe] C:\WINDOWS\system32\sdkwb32.exeO4 - HKLM\..\RunOnce: [mfcjd.exe] C:\WINDOWS\system32\mfcjd.exeO4 - HKLM\..\RunOnce: [sysuu32.exe] C:\WINDOWS\sysuu32.exeO4 - HKLM\..\RunOnce: [netxg32.exe] C:\WINDOWS\system32
etxg32.exeO4 - HKLM\..\RunOnce: [winca.exe] C:\WINDOWS\winca.exeO4 - HKLM\..\RunOnce: [appqk32.exe] C:\WINDOWS\appqk32.exeO4 - HKLM\..\RunOnce: [d3we32.exe] C:\WINDOWS\d3we32.exeO4 - HKLM\..\RunOnce: [addff32.exe] C:\WINDOWS\system32\addff32.exeO4 - HKLM\..\RunOnce: [d3lz.exe] C:\WINDOWS\system32\d3lz.exeO4 - HKLM\..\RunOnce: [sysxd32.exe] C:\WINDOWS\system32\sysxd32.exeO4 - HKLM\..\RunOnce: [sdkdg.exe] C:\WINDOWS\system32\sdkdg.exeO4 - HKLM\..\RunOnce: [ntdg32.exe] C:\WINDOWS
tdg32.exeO4 - HKLM\..\RunOnce: [atlra.exe] C:\WINDOWS\atlra.exeO4 - HKLM\..\RunOnce: [sysnm.exe] C:\WINDOWS\sysnm.exeO4 - HKLM\..\RunOnce: [apikb32.exe] C:\WINDOWS\system32\apikb32.exeO4 - HKLM\..\RunOnce: [ntaj.exe] C:\WINDOWS\system32
taj.exeO4 - HKLM\..\RunOnce: [mfczw.exe] C:\WINDOWS\mfczw.exeO4 - HKLM\..\RunOnce: [sdkva32.exe] C:\WINDOWS\sdkva32.exeO4 - HKLM\..\RunOnce: [netfb.exe] C:\WINDOWS
etfb.exeO4 - HKLM\..\RunOnce: [ipsx32.exe] C:\WINDOWS\ipsx32.exeO4 - HKLM\..\RunOnce: [netzu32.exe] C:\WINDOWS\system32
etzu32.exeO4 - HKLM\..\RunOnce: [adddq32.exe] C:\WINDOWS\adddq32.exeO4 - HKLM\..\RunOnce: [iphc32.exe] C:\WINDOWS\system32\iphc32.exeO4 - HKLM\..\RunOnce: [javalg.exe] C:\WINDOWS\javalg.exeO4 - HKLM\..\RunOnce: [ntmh32.exe] C:\WINDOWS\system32
tmh32.exeO4 - HKLM\..\RunOnce: [ntbd32.exe] C:\WINDOWS
tbd32.exeO4 - HKLM\..\RunOnce: [appfa32.exe] C:\WINDOWS\system32\appfa32.exeO4 - HKLM\..\RunOnce: [adddv.exe] C:\WINDOWS\system32\adddv.exeO4 - HKLM\..\RunOnce: [javacd32.exe] C:\WINDOWS\system32\javacd32.exeO4 - HKLM\..\RunOnce: [addjr32.exe] C:\WINDOWS\system32\addjr32.exeO4 - HKLM\..\RunOnce: [javajz32.exe] C:\WINDOWS\javajz32.exeO4 - HKLM\..\RunOnce: [winml32.exe] C:\WINDOWS\system32\winml32.exeO4 - HKLM\..\RunOnce: [atlqp.exe] C:\WINDOWS\system32\atlqp.exeO4 - HKLM\..\RunOnce: [apprq32.exe] C:\WINDOWS\apprq32.exeO4 - HKLM\..\RunOnce: [addgn32.exe] C:\WINDOWS\system32\addgn32.exeO4 - HKLM\..\RunOnce: [crlj.exe] C:\WINDOWS\system32\crlj.exeO4 - HKLM\..\RunOnce: [ntov.exe] C:\WINDOWS
tov.exeO4 - HKLM\..\RunOnce: [ieek32.exe] C:\WINDOWS\ieek32.exeO4 - HKLM\..\RunOnce: [addcr32.exe] C:\WINDOWS\addcr32.exeO4 - HKLM\..\RunOnce: [sysxd.exe] C:\WINDOWS\sysxd.exeO4 - HKLM\..\RunOnce: [javawl32.exe] C:\WINDOWS\javawl32.exeO4 - HKLM\..\RunOnce: [netma32.exe] C:\WINDOWS\system32
etma32.exeO4 - HKLM\..\RunOnce: [netuq.exe] C:\WINDOWS\system32
etuq.exeO4 - HKLM\..\RunOnce: [msqa.exe] C:\WINDOWS\msqa.exeO4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exeO4 - HKCU\..\Run: [STYLEXP] C:\Program Files\TGTSoft\StyleXP\StyleXP.exe -HideO4 - HKCU\..\Run: [Copernic Desktop Search] "C:\Program Files\Copernic Desktop Search\CopernicDesktopSearch.exe" /trayO4 - HKCU\..\Run: [AtiTrayTools] "C:\Program Files\Ray Adams\ATI Tray Tools\atitray.exe"O4 - HKCU\..\Run: [pdfSaver3] "C:\Program Files\Tracker Software\PDF-XChange 3\pdfSaver\pdfSaver3.exe"O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /backgroundO4 - Startup: palmOne Registration.lnk = C:\Program Files\palmOneegister.exeO4 - Global Startup: DataViz Inc Messenger.lnk = C:\Program Files\Fichiers communs\DataViz\DvzIncMsgr.exeO4 - Global Startup: HotSync Manager.lnk = C:\Program Files\palmOne\Hotsync.exeO4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Readereader_sl.exeO8 - Extra context menu item: Chercher avec Copernic Agent - res://C:\Program Files\Copernic Agent\CopernicAgentExt.rdl/INTEGRATION_MENU_SEARCHEXTO8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000O9 - Extra button: (no name) - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\PROGRA~1\COPERN~1\COPERN~1.EXEO9 - Extra 'Tools' menuitem: Démarrer Copernic Agent - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\PROGRA~1\COPERN~1\COPERN~1.EXEO9 - Extra button: Copernic Agent - {688DC797-DC11-46A7-9F1B-445F4F58CE6E} - C:\PROGRA~1\COPERN~1\COPERN~1.EXEO9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLLO9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO15 - Trusted Zone: *.registration.sonystyle-europe.com (HKLM)O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cabO16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} - http://software-dl.real.com/1057b5d131e7627ce317/netzip/RdxIE601_fr.cabO16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1109581723317O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cabO16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2004061001/housecall.trendmicro.com/housecall/xscan53.cabO16 - DPF: {826287F8-454E-11D9-ADFE-00062919A34C} (ActiveXUploadFotoCom.UserCtrlFotoCom) - http://fr-express.foto.com/activeX/newUploadFotoCom.CABO16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/msnmessengersetupdownloader.cabO16 - DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} (ASquaredScanForm Element) - http://www.windowsecurity.com/trojanscan/axscan.cabO16 - DPF: {D28C3640-A6D7-4668-A53C-07A9CF67D157} (CFnacComposantCtrl Object) - http://www.fnacmusic.com/telechargementFnacmusic/FnacComposant.cabO17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = cia.lanO17 - HKLM\Software\..\Telephony: DomainName = cia.lanO17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = cia.lanO20 - Winlogon Notify: IntelWireless - C:\Program Files\Intel\Wireless\Bin\LgNotify.dllO23 - Service: Network Security Service (NSS) ( 11Fßä#·ºÄÖ`I) - Unknown owner - C:\WINDOWS\d3yw32.exe"  /s (file missing)O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exeO23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exeO23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exeO23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)O23 - Service: EvtEng - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exeO23 - Service: InCD Helper (InCDsrv) - Ahead Software AG - C:\Program Files\Ahead\InCD\InCDsrv.exeO23 - Service: InCD Helper (read only) (InCDsrvR) - Ahead Software AG - C:\Program Files\Ahead\InCD\InCDsrv.exeO23 - Service: InoculateIT RPC Server (InoRPC) - Computer Associates International, Inc. - C:\Program Files\Computer Associates\InoculateIT\InoRpc.exeO23 - Service: InoculateIT Realtime Server (InoRT) - Computer Associates International, Inc. - C:\Program Files\Computer Associates\InoculateIT\InoRT.exeO23 - Service: InoculateIT Job Server (InoTask) - Computer Associates International, Inc. - C:\Program Files\Computer Associates\InoculateIT\InoTask.exeO23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exeO23 - Service: Event Log Watch (LogWatch) - Unknown owner - C:\WINDOWS\LogWatNT.exeO23 - Service: OwnershipProtocol - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\OProtSvc.exeO23 - Service: RegSrvc - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exeO23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation  - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exeO23 - Service: StyleXPService - Unknown owner - C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe

balltrap34 · Answer

salut&#9658; imprime ceci pour ne rien oublier et tous fairetous faire dans l ordre imperativement-------------------------&#9658; tous da bord telecharge ces programmes si tu ne les a pas et met les a jour mais ne les utilise pas encore et verifie que tu as les bonnes version c est imperatif&#9834;  ad-aware (1)version 1.06 (ici)               http://www.florensac-chasse-trap.com/   section virusvoir demo http://pageperso.aol.fr/balltrap34/adwseflash.zip

Trek Error Nuker récalcitrant !

2 réponses

Discussions similaires