Petit souci peut etre a cause de spy axe

Salut,

Télécharge HijackThis:
Téléchargement de HijackThis

Installe le dans son propre dossier:
-clic droit sur le bureau, choisis "nouveau dossier" puis installe le dedans.
Lance le, clic sur "do a system scan and save logfile"
Puis copie et colle le rapport ici stp

Salut,

Relance HijackThis, choisis "do a scan only" coche la case devant les lignes ci-dessous et clic en bas sur "fix checked"


O3 - Toolbar: Protection Bar - {479fd0cf-5be9-4c63-8cda-b6d371c67bd5} - D:\Program Files\Media-Codec\iesplugin.dll (file missing)
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE D:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NeroFilterCheck] D:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [DAEMON Tools] "D:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE D:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKCU\..\Run: [CTFMON.EXE] D:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "D:\Program Files\Messenger\msmsgs.exe" /background
O4 - Startup: Xfire.lnk = D:\Program Files\Xfire\Xfire.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = D:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = D:\Program Files\Microsoft Office\Office10\OSA.EXE
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - D:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - D:\WINDOWS\web\related.htm


Telecharge, installe puis mets à jour ce logiciel(Ewido), une fois que c'est fait, fais un scan complet de ton système et colle le rapport ici avec un nouveau rapport hijackthis
Ewido: (reste gratuit après la période d'essai)
Télécharger Ewido Security Suite

A++

salut,
merci boulepate62 pour l'aide
voila le résultat pour le scan de ewido:

---------------------------------------------------------
ewido anti-spyware - Scan Report
---------------------------------------------------------

+ Created at: 00:25:14 11/09/2006

+ Scan result:



D:\Documents and Settings\darkokuto\Cookies\darkokuto@247realmedia[1].txt -> TrackingCookie.247realmedia : No action taken.
D:\Documents and Settings\darkokuto\Cookies\darkokuto@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : No action taken.
D:\Documents and Settings\darkokuto\Cookies\darkokuto@adbrite[2].txt -> TrackingCookie.Adbrite : No action taken.
D:\Documents and Settings\darkokuto\Cookies\darkokuto@adtech[2].txt -> TrackingCookie.Adtech : No action taken.
D:\Documents and Settings\darkokuto\Cookies\darkokuto@atdmt[2].txt -> TrackingCookie.Atdmt : No action taken.
D:\Documents and Settings\darkokuto\Cookies\darkokuto@bfast[1].txt -> TrackingCookie.Bfast : No action taken.
D:\Documents and Settings\darkokuto\Cookies\darkokuto@bluestreak[1].txt -> TrackingCookie.Bluestreak : No action taken.
D:\Documents and Settings\darkokuto\Cookies\darkokuto@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : No action taken.
D:\Documents and Settings\darkokuto\Cookies\darkokuto@doubleclick[1].txt -> TrackingCookie.Doubleclick : No action taken.
D:\Documents and Settings\darkokuto\Cookies\darkokuto@estat[1].txt -> TrackingCookie.Estat : No action taken.
D:\Documents and Settings\darkokuto\Cookies\darkokuto@as1.falkag[2].txt -> TrackingCookie.Falkag : No action taken.
D:\Documents and Settings\darkokuto\Cookies\darkokuto@fastclick[2].txt -> TrackingCookie.Fastclick : No action taken.
D:\Documents and Settings\darkokuto\Cookies\darkokuto@mediaplex[1].txt -> TrackingCookie.Mediaplex : No action taken.
D:\Documents and Settings\darkokuto\Cookies\darkokuto@ads.pointroll[2].txt -> TrackingCookie.Pointroll : No action taken.
D:\Documents and Settings\darkokuto\Cookies\darkokuto@serving-sys[1].txt -> TrackingCookie.Serving-sys : No action taken.
D:\Documents and Settings\darkokuto\Cookies\darkokuto@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : No action taken.
D:\Documents and Settings\darkokuto\Cookies\darkokuto@statcounter[1].txt -> TrackingCookie.Statcounter : No action taken.
D:\Documents and Settings\darkokuto\Cookies\darkokuto@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : No action taken.
D:\Documents and Settings\darkokuto\Cookies\darkokuto@tribalfusion[1].txt -> TrackingCookie.Tribalfusion : No action taken.
D:\Documents and Settings\darkokuto\Cookies\darkokuto@valueclick[1].txt -> TrackingCookie.Valueclick : No action taken.
D:\Documents and Settings\darkokuto\Cookies\darkokuto@weborama[1].txt -> TrackingCookie.Weborama : No action taken.
D:\Documents and Settings\darkokuto\Cookies\darkokuto@statse.webtrendslive[2].txt -> TrackingCookie.Webtrendslive : No action taken.
D:\Documents and Settings\darkokuto\Cookies\darkokuto@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : No action taken.
D:\Documents and Settings\darkokuto\Cookies\darkokuto@zedo[2].txt -> TrackingCookie.Zedo : No action taken.


::Report end

et voila le rapport de hijackthis:

Logfile of HijackThis v1.99.1
Scan saved at 00:26:58, on 11/09/2006
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\spoolsv.exe
D:\WINDOWS\Explorer.EXE
D:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
D:\WINDOWS\System32\nvsvc32.exe
D:\Program Files\Wireless 802.11g Monitor\WLService.exe
D:\Program Files\Wireless 802.11g Monitor\WLanCfgG.exe
D:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
D:\WINDOWS\system32\ZoneLabs\vsmon.exe
D:\WINDOWS\System32\wuauclt.exe
D:\Program Files\Internet Explorer\iexplore.exe
D:\Program Files\ewido anti-spyware 4.0\guard.exe
D:\Program Files\ewido anti-spyware 4.0\ewido.exe
D:\Documents and Settings\darkokuto\Bureau\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - D:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [SoundMAXPnP] D:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
O4 - HKLM\..\Run: [SoundMAX] "D:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
O4 - HKLM\..\Run: [Zone Labs Client] D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [!ewido] "D:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKCU\..\Run: [MsnMsgr] "D:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Steam] D:\Program Files\Valve\Steam\\Steam.exe -silent
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://D:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "D:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: CA ISafe (CAISafe) - Computer Associates International, Inc. - D:\WINDOWS\System32\ZoneLabs\isafe.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - D:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - D:\WINDOWS\System32\nvsvc32.exe
O23 - Service: R54G Wireless Service - Unknown owner - D:\Program Files\Wireless 802.11g Monitor\WLService.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing)
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - D:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - D:\WINDOWS\system32\ZoneLabs\vsmon.exe

voila, par contre ewido me demander lors du scan de delete des fichiers ou programmes , à faire ou pas dans le doute je ne l'ait pas fais

Tiens! Cath coucou :P