pc redémarre automatiquement

Mon pc juste redémarrer automatiquement, et voici mon log HijackThis:
Logfile de Trend Micro HijackThis v2.0.2
Scan sauvé à 20:20:37, le 2009-1-19
Plate-forme: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal

Running processes:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ csrss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ svchost. exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ system32 \ LEXBCES.EXE
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ WINDOWS \ system32 \ userinit.exe
C: \ WINDOWS \ explorer.exe
C: \ WINDOWS \ system32 \ conime.exe
C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe
C: \ Program Files \ Bonjour \ mDNSResponder.exe
C: \ Program Files \ StormII \ stormliv. exe
C: \ Program Files \ ewido anti-spyware 4.0 \ guard.exe
C: \ WINDOWS \ system32 \ ntfrs.exe
C: \ WINDOWS \ system32 \ nvsvc32.exe
C: \ WINDOWS \ system32 \ oodag.exe
C: \ WINDOWS \ system32 \ wscntfy.exe
C: \ WINDOWS \ System32 \ alg.exe
C: \ Program Files \ D-Tools \ daemon.exe
C: \ Program Files \ Google \ Google Pinyin \ GooglePinyinDaemon.exe
C: \ Program Files \ Thunder Network \ WebThunder \ WebThunder.exe
C: \ Zcom \ E-Space.exe
C: \ Program Files \ iTunes \ iTunesHelper.exe
C: \ Program Files \ Java \ jre1.6. 0_07 \ bin \ jusched.exe
C: \ WINDOWS \ system32 \ ctfmon.exe
C: \ Program Files \ Google \ GoogleToolbarNotifier \ GoogleToolbarNotifier.exe
C: \ Program Files \ PPStream \ ppsap.exe
C: \ Program Files \ WinZip \ WZQKPICK.EXE
C: \ Program Files \ iPod \ bin \ iPodService.exe
C: \ WINDOWS \ system32 \ Wuauclt.exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ Program Files \ Fichiers communs \ Microsoft Shared \ Windows Live \ WLLoginProxy.exe
C: \ WINDOWS \ system32 \ svteppsk. exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ Program Files \ Trend Micro \ HijackThis \ HijackThis.exe
C: \ WINDOWS \ system32 \ wbem \ wmiprvse.exe

R3 - URLSearchHook: (no name) - (DB8B2393-7A6C-4C76-88CE-6B1F6FF6FFE9) - (no file)
O1 - Hosts: 127.0.0.2 ymsdasdw1.cn
O1 - Hosts: 127.0.0.3 h96b.info
O1 - Hosts: 127.0.0.0 *peach*.zttwp.cn
O1 - Hosts: 127.0.0.0 http://www. hackerbf.cn
O1 - Hosts: 127.0.0.0 ww.popdm.cn
O1 - Hosts: 127.1.1.1 bbt.etimes888.com
O1 - Hosts: 127.1.1.1 219.147.13.53
O1 - Hosts: 127.1.1.1 20068080.cn
O1 - Hosts: 127.1.1.1 l.neter888.cn
O1 - Hosts: 127.1.1.1 stat.untang.com
O1 - Hosts: 127.1.1.1 http://www. ikdy.cn
O1 - Hosts: 127.0.0.0 geekbyfeng.cn
O1 - Hosts: 127.0.0.0 121.14.101.68
O1 - Hosts: 127.0.0.0 ppp.etimes888.com
O1 - Hosts: 127.0.0.0 http://www.bypk.com
O1 - Hosts: 127.0.0.0 CSC3-2004-crl.verisign.com
O1 - Hosts: 127.0.0.0 udp.hjob123.com
O1 - Hosts: 127.1.1.1 999.hfdy2828.com
O1 - Hosts: 127.1.1. 1 http://www.hfdy2929.com
O1 - Hosts: 127.1.1.1 http://www.xiazaide1.cn
O1 - Hosts: 127.1.1.1 http://www.vuf51579.cn
O1 - Hosts: 127.1.1.1 wm.eo2q.cn
O1 - Hosts: 127.1.1.1 d.www-263.com
O1 - Hosts: 127.1.1. 1 http://www.ssy1688.cn
O1 - Hosts: 127.1.1.1 121.12.173.218
O1 - Hosts: 127.1.1.1 qq.18i16.net
O1 - Hosts: 127.1.1.1 a.baidu-6661.com
O1 - Hosts: 127.1.1.1 http://www.vuf51579.cn
O1 - Hosts: 127.1.1.1 http://www. 1079223105.cn
O1 - Hosts: 127.1.1.1 home.xzx6.cn
O1 - Hosts: 127.1.1.1 top.fgc3.cn
O1 - Hosts: 127.1.1.1 165.246.44.228
O1 - Hosts: 127.1.1.1 wwww.ttfafa.com
O1 - Hosts: 127.1.1.1 pa.tt-09.com
O1 - Hosts: 127.0.0.2 bnasnd83nd.cn
O1 - Hosts: 127.0.0.0 http://www.gamehacker.com.cn
O1 - Hosts: 127.0.0.0 gamehacker.com.cn
O1 - Hosts: 127.1.1. 1 http://www.cctv-100008.cn
O1 - Hosts: 127.1.1.1 222.73.208.141
O1 - Hosts: 127.0.0.3 adlaji.cn
O1 - Hosts: 127.1.1.1 aiyyw.com
O1 - Hosts: 127.1.1.1 bnasnd83nd.cn
O1 - Hosts: 127.0.0.0 user1.12-27.net
O1 - Hosts: 127.0.0.0 fengent.cn
O1 - Hosts: 127.0.0.0 http://www. sony888.cn
O1 - Hosts: 127.0.0.0 user1.asp-33.cn
O1 - Hosts: 127.0.0.0 http://www.netkwek.cn
O1 - Hosts: 127.0.0.0 ymsdkad6.cn
O1 - Hosts: 127.0.0.0 http://www.lkwueir.cn
O1 - Hosts: 127.0.1.1 user1.23-17.net
O1 - Hosts: 127.0.0.0 upa.luzhiai.net
O1 - Hosts: 127.0.0. 0 http://www.guccia.net
O1 - Hosts: 127.0.0.0 4m9mnlmi.cn
O1 - Hosts: 127.0.0.0 mm119mkssd.cn
O1 - Hosts: 127.0.0.0 61.128.171.115:8080
O1 - Hosts: 127.0.0.0 http://www.1119111.com
O1 - Hosts: 127.0.0.0 win.nihao69.cn
O1 - Hosts: 127.0.0.0 puc.lianxiac.net
O1 - Hosts: 127.0.0.0 pud.lianxiac.net
O1 - Hosts: 127.0.0.0 210,76. 0,133
O1 - Hosts: 127.0.0.0 61.166.32.2
O1 - Hosts: 127.0.0.0 218.92.186.27
O1 - Hosts: 127.0.0.0 http://www.fsfsfag.cn
O1 - Hosts: 127.0.0.0 ovo.ovovov.cn
O1 - Hosts: 127.0.0.0 dw.com.com
O1 - Hosts: 127.0.0.0 t.myblank.cn
O1 - Hosts: 127.0.0.0 x.myblank.cn
O1 - Hosts: 127.0.0.0 qq-xing.com.cn
O1 - Hosts: 127.0.0.0 59.125.231. 177:17777
O2 - BHO: WebThunderBHO - (00000AAA-A363-466E-BEF5-9BB68697AA7F) - C: \ Program Files \ Thunder Network \ WebThunder \ WebThunderBHO_Now.dll
O2 - BHO: Adobe PDF Reader Link Helper - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Fichiers communs \ Adobe \ Acrobat \ ActiveX \ AcroIEHelper.dll
O2 - BHO: (no name) - (140BD8E3-C167-11D4-B4A3-080000180323) - (no file)
O2 - BHO: Info cache - (295AB8C6-FB22-4D17-8834-064E2BA0A6F0) - C: \ WINDOWS \ Intel \ baiduc. dll
O2 - BHO: RealPlayer Téléchargez et Record Plugin for Internet Explorer - (3049C3E9-B461-4BC5-8870-4C09146192CA) - C: \ Program Files \ Real \ RealPlayer \ rpbrowserrecordplugin.dll
O2 - BHO: MS Video Control 1.0 - (463F66BC-3B6F-4FDE-969C-94F594FECE07) - (no file)
O2 - BHO: Need2Find Bar BHO - (4D1C4E81-A32A-416B-BCDB-33B3EF3617D3) - C: \ Program Files \ Need2Find \ bar \ 1.bin \ ND2FNBAR.DLL
O2 - BHO: SSVHelper Class - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files \ Java \ jre1.6. 0_07 \ bin \ ssv.dll
O2 - BHO: Windows Live Sign-in Helper - (9030D464-4C02-4ABF-8ECC-5164760863C6) - C: \ Program Files \ Fichiers communs \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - (AA58ED58-01DD-4d91-8333-CF10577473F7) - c: \ program files \ google \ googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - (AF69DE43-7D58-4638-B6FA-CE66B5AD205D) - C: \ Program Files \ Google \ GoogleToolbarNotifier \ 3.1.807.1746 \ swg. dll
O2 - BHO: FlashGetBHO - (b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0) - C: \ Documents and Settings \ All Users \ Application Data \ FlashGetBHO \ FlashGetBHO.dll
O2 - BHO: Windows Live Toolbar Helper - (BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0) - C: \ Program Files \ Windows Live Toolbar \ msntb.dll
O2 - BHO: QQHelper Class - (BF182DBF-1283-4BD3-86EE-D3239228770C) - C: \ Program Files \ Internet Explorer \ Connection Wizard \ QQZoneHelper. dll
O3 - Toolbar: Windows Live Toolbar - (BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0) - C: \ Program Files \ Windows Live Toolbar \ msntb.dll
O3 - Toolbar: & Google - (2318C2B1-4965-11D4-9B18-009027A5CD4F) - c: \ program files \ google \ googletoolbar1.dll
O4 - HKLM \ .. \ Run: [IMJPMIG8.1] "C: \ WINDOWS \ IME \ imjp8_1 \ IMJPMIG.EXE" / Spoil / RemAdvDef / Migration32
O4 - HKLM \ .. \ Run: [PHIME2002ASync] C: \ WINDOWS \ system32 \ IME \ TINTLGNT \ TINTSETP.EXE / SYNC
O4 - HKLM \ .. \ Run: [PHIME2002A] C: \ WINDOWS \ system32 \ IME \ TINTLGNT \ TINTSETP.EXE / IMEName
O4 - HKLM \ .. \ Run: [DAEMON Tools-1033] "C: \ Program Files \ D-Tools \ daemon.exe"-lang 1033
O4 - HKLM \ .. \ Run: [NvCplDaemon] RUNDLL32.EXE C: \ WINDOWS \ system32 \ NvCpl.dll, NvStartup
O4 - HKLM \ .. \ Run: [nwiz] nwiz.exe / install
O4 - HKLM \ .. \ Run: [Adobe Photo Downloader] "C: \ Program Files \ Adobe \ Photoshop Album Starter Edition \ 3.2 \ Apps \ apdproxy.exe"
O4 - HKLM \ .. \ Run: [NvMediaCenter] Rundll32. EXE C: \ WINDOWS \ system32 \ NvMcTray.dll, NvTaskbarInit
O4 - HKLM \ .. \ Run: [Google IME Autoupdater] "C: \ Program Files \ Google \ Google Pinyin \ GooglePinyinDaemon.exe"
O4 - HKLM \ .. \ Run: [TkBellExe] "C: \ Program Files \ Fichiers communs \ Real \ Update_OB \ realsched.exe"-osboot
O4 - HKLM \ .. \ Run: [WebThunder] C: \ Program Files \ Thunder Network \ WebThunder \ WebThunder.exe
O4 - HKLM \ .. \ Run: [搜狐彩电网页版] C: \ Program Files \ sohutv_web \ SysTrayIcon. exe "C: \ Program Files \ sohutv_web" "ed97e15f310ea2fc77821c67e8b13cd0" "1.0.0.4" ""
O4 - HKLM \ .. \ Run: [MagSubscribe] "C: \ Zcom \ E-Space.exe" / h
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files \ QuickTime \ qttask.exe"-atboottime
O4 - HKLM \ .. \ Run: [iTunesHelper] "C: \ Program Files \ iTunes \ iTunesHelper.exe"
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] "C: \ Program Files \ Java \ jre1.6.0_07 \ bin \ jusched.exe"
O4 - HKLM \. . \ Run: [Adobe Reader Speed Launcher] "C: \ Program Files \ Adobe \ Reader 8.0 \ Reader \ Reader_sl.exe"
O4 - HKLM \ .. \ Run: [! Ewido] "C: \ Program Files \ ewido anti-spyware 4.0 \ ewido.exe" / minimiser
O4 - HKCU \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - HKCU \ .. \ Run: [swg] C: \ Program Files \ Google \ GoogleToolbarNotifier \ GoogleToolbarNotifier.exe
O4 - HKCU \ .. \ Run: [msnmsgr] "C: \ Program Files \ MSN Messenger \ msnmsgr.exe" / background
O4 - HKCU \ .. \ Run: [DriverUpdaterPro] C: \ Program Files \ XPC Tools \ Driver Updater Pro \ DriverUpdaterPro.exe-t
O4 - HKCU \ .. \ Run: [PPS Accelerator] C: \ Program Files \ PPStream \ ppsap.exe
O4 - HKCU \ .. \ Run: [QuickTime Task] "C: \ Program Files \ QuickTime \ qttask.exe"-atboottime
O4 - HKLM \ .. \ Policies \ Explorer \ Run: [dlmcjjcdfc] C: \ WINDOWS \ system \ jjxzwzjy090118.exe
O4 - HKLM \ .. \ Policies \ Explorer \ Run: [Alcmtr] anymie360.exe
O4 - HKCU \ .. \ Policies \ Explorer \ Run: [Realtek. exe] C: \ WINDOWS \ system32 \ realtek.exe
O4 - HKUS \ S-1-5-18 \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon.exe (User "SYSTEM")
O4 - HKUS \. DEFAULT \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon.exe (User utilisateur par défaut)
O4 - Global Startup: WinZip Quick Pick.lnk = C: \ Program Files \ WinZip \ WZQKPICK.EXE
O8 - Extra du menu contextuel: & Recherche -- http://kn.bar.need2find.com/KN/menusearch.html?p=KN
O8 - Extra du menu contextuel: & Windows Live Search -- res://C : \ Program Files \ Windows Live Toolbar \ msntb. dll / search.htm
O8 - Extra du menu contextuel: Add to Windows & Live Favorites -- http://favorites.live.com/quickadd.aspx
O8 - Extra du menu contextuel: Ouvrir dans un nouvel onglet -- res://C : \ Program Files \ Windows Live Toolbar \ Components \ fr-fr \ msntabres.dll.mui/229? C976dce0b0c64e6e86672e4b847ab66d
O8 - Extra du menu contextuel: Ouvrir dans un nouvel onglet de premier -- res://C : \ Program Files \ Windows Live Toolbar \ Components \ fr-fr \ msntabres.dll.mui/230? c976dce0b0c64e6e86672e4b847ab66d
O8 - Extra du menu contextuel:使用WEB迅雷下载- C: \ Program Files \ Thunder Network \ WebThunder \ GetUrl.htm
O8 - Extra du menu contextuel:使用WEB迅雷下载全部链接- C: \ Program Files \ Thunder Network \ WebThunder \ GetAllUrl.htm
O8 - Extra du menu contextuel:添加到QQ表情- C: \ Program Files \ Tencent \ QQ \ AddEmotion.htm
O9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_07 \ bin \ ssv. dll
O9 - Extra "Outils" menuitem: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_07 \ bin \ ssv.dll
O9 - Extra button: Zcom杂志- (4045D313-1D5E-4fe4-93A0-A34630B6A00B) - C: \ Zcom \ E-Space.exe
O9 - Extra "Outils" menuitem: Zcom杂志(E-Space) - (4045D313-1D5E-4fe4-93A0-A34630B6A00B) - C: \ Zcom \ E-Space. exe
O9 - Extra button:启动迅雷WEB - (962EFB8E-2683-42d4-AC74-AAA4C759B9C6) -- http://my.xunlei.com (fichier manquant)
O9 - Extra "Outils" menuitem:启动迅雷WEB - (962EFB8E-2683-42d4-AC74-AAA4C759B9C6) -- http://my.xunlei.com (fichier manquant)
O9 - Extra button: PartyPoker.com - (B7FE5D70-9AA2-40F1-9C6B-12A255F085E1) - C: \ Program Files \ PartyGaming \ PartyPoker \ RunApp.exe (file missing)
O9 - Extra "Outils" menuitem: PartyPoker. com - (B7FE5D70-9AA2-40F1-9C6B-12A255F085E1) - C: \ Program Files \ PartyGaming \ PartyPoker \ RunApp.exe (file missing)
O9 - Extra button: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag.exe
O9 - Extra "Outils" menuitem: @ xpsp3res.dll, -20001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag.exe
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs. exe
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs. exe
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O16 - DPF: Tornado 21 -- http://origin.games.yahoo.net/games/cli ... 21t0_x.cab
O16 - DPF: (05C1004E-2596-48E5-8E26-39362985EEB9) (MMCPlayer Class) -- http://p3p.sogou.com/MMCShell.cab
O16 - DPF: (05D96F71-87C6-11D3-9BE4-00902742D6E0) (QuickPlace Class) -- http://crystal.atkinson.yorku.ca/qp2.cab
O16 - DPF: (17492023-C23A-453E-A040-C7C580BBF700) (Windows Genuine Advantage Validation Tool) -- http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: (238F6F83-B8B4-11CF-8771-00A024541EE3) (Citrix ICA Client) -- http://a516.g.akamai.net/f/516/25175/7d ... o-eula.cab
O16 - DPF: (67A5F8DC-1A4B-4D66 -9F24-A704AD929EEE) (System Requirements Lab) -- http://www.nvidia.com/content/DriverDow ... eqlab2.cab
O18 - Protocol: about - (3050F406-98b5-11cf-bb82-00aa00bdce0b) - C: \ WINDOWS \ system32 \ mshtml.dll
O18 - Protocol: cdl - (3DD53D40-7B8B-11D0-B013-00AA0059CE02) - C: \ WINDOWS \ system32 \ urlmon.dll
O18 - Protocol: dvd - (12D51199-0DB5-46FE-A120-47A3D7D937CC) - C: \ WINDOWS \ system32 \ msvidctl.dll
O18 - Protocol: file - (79EAC9E7-baf9-11ce-8c82-00aa004ba90b) - C: \ WINDOWS \ system32 \ URLMON. dll
O18 - Protocol: ftp - (79EAC9E3-baf9-11ce-8c82-00aa004ba90b) - C: \ WINDOWS \ system32 \ urlmon.dll
O18 - Protocol: gopher - (79EAC9E4-baf9-11ce-8c82-00aa004ba90b) - C: \ WINDOWS \ system32 \ urlmon.dll
O18 - Protocol: http - (79EAC9E2-baf9-11ce-8c82-00aa004ba90b) - C: \ WINDOWS \ system32 \ urlmon.dll
O18 - Protocol: https - (79EAC9E5-baf9-11ce-8c82-00aa004ba90b) - C: \ WINDOWS \ system32 \ URLMON. dll
O18 - Protocol: ipp - (no CLSID) - (no file)
O18 - Protocol: sa - (9D148291-B9C8-11D0-A4CC-0000F80149F6) - C: \ WINDOWS \ system32 \ Itss.dll
O18 - Protocol: javascript - (3050F3B2-98b5-11cf-bb82-00aa00bdce0b) - C: \ WINDOWS \ system32 \ mshtml.dll
O18 - Protocol: livecall - (828030A1-22C1-4009-854F-8E305202313F) - C: \ PROGRA ~ 1 \ MSNMES ~ 1 \ MSGRAP ~ 1.DLL
O18 - Protocol: local - (79EAC9E7-baf9-11ce-8c82-00aa004ba90b) - C: \ WINDOWS \ system32 \ URLMON. dll
O18 - Protocol: mailto - (3050F3DA-98b5-11cf-bb82-00aa00bdce0b) - C: \ WINDOWS \ system32 \ mshtml.dll
O18 - Protocol: mhtml - (05300401-BCBC-11D0-85E3-00C04FD85AB4) - C: \ WINDOWS \ system32 \ Inetcomm.dll
O18 - Protocol: mk - (79EAC9E6-baf9-11ce-8c82-00aa004ba90b) - C: \ WINDOWS \ system32 \ urlmon.dll
O18 - Protocol: ms-its - (9D148291-B9C8-11D0-A4CC-0000F80149F6) - C: \ WINDOWS \ system32 \ SPI. dll
O18 - Protocol: MSDAIPP - (no CLSID) - (no file)
O18 - Protocol: msnim - (828030A1-22C1-4009-854F-8E305202313F) - C: \ PROGRA ~ 1 \ MSNMES ~ 1 \ MSGRAP ~ 1.DLL
O18 - Protocol: res - (3050F3BC-98b5-11cf-bb82-00aa00bdce0b) - C: \ WINDOWS \ system32 \ mshtml.dll
O18 - Protocol: sysimage - (76E67A63-06E9-11D2-A840-006008059382) - C: \ WINDOWS \ system32 \ mshtml.dll
O18 - Protocol: tv - (CBD30858-AF45-11D2-B6D6-00C04FBBDE6E) - C: \ WINDOWS \ system32 \ msvidctl. dll
O18 - Protocol: vbscript - (3050F3B2-98b5-11cf-bb82-00aa00bdce0b) - C: \ WINDOWS \ system32 \ mshtml.dll
O18 - Protocol: wia - (13F3EA8B-4F0A-91D7-AD76-D2853AC8BECE) - C: \ WINDOWS \ system32 \ wiascr.dll
O20 - AppInit_DLLs: svtepps.dll
O21 - SSODL: 4C464AA6 - (4C464AA6-9A8A-4300-ADC7-FFF388B1BE44) - C: \ WINDOWS \ system32 \ kckmkaam.dll
O21 - SSODL: 38BBDC5C - (38BBDC5C-2847-4D07-B7D5-5B9B821DD24B) - C: \ WINDOWS \ system32 \ jobbdclc. dll
O21 - SSODL: 025AC373 - (025AC373-2DA3-4EBE-9807-E0FAB19E2656) - C: \ WINDOWS \ system32 \ gilacjnj.dll
O21 - SSODL: FCB3707C - (FCB3707C-776D-42FB-96C5-FBC02FC4C88C) - C: \ WINDOWS \ system32 \ fcbjngnc.dll
O21 - SSODL: 30C79E60 - (30C79E60-7409-403A-86A4-DBC841C5A9DA) - C: \ WINDOWS \ system32 \ jgcnpemg.dll
O21 - SSODL: C1FB5628 - (C1FB5628-BF11-4F44-934C-94A74EC66F8F) - C: \ WINDOWS \ system32 \ chfblmio. dll
O21 - SSODL: 099F0D12 - (099F0D12-AF29-4824-B33E-A4C790603F12) - C: \ WINDOWS \ system32 \ gppfgdhi.dll
O21 - SSODL: B5D7435B - (B5D7435B-6D08-46B0-87E0-BEE18339596B) - C: \ WINDOWS \ system32 \ bldnkjlb.dll
O21 - SSODL: 51676472 - (51676472-AA6F-4C2C-9A09-254BD6CCD26B) - C: \ WINDOWS \ system32 \ lhmnmkni.dll
O21 - SSODL: 5891AC0F - (5891AC0F-C228-4FD1-A7F5-44BDC5C78A7D) - C: \ WINDOWS \ system32 \ lophacgf.dll
O23 - Service: Apple Mobile Device - Apple Inc - C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe
O23 - Service:服务Bonjour (Bonjour Service) - Apple Inc - C: \ Program Files \ Bonjour \ mDNSResponder.exe
O23 - Service: Centre de CONTRL Storm Media (ccosm) -北京暴风网际科技有限公司- C: \ Program Files \ StormII \ stormliv.exe
O23 - Service: ewido anti-spyware 4.0 Guard - Anti-Malware Development as - C: \ Program Files \ ewido anti-spyware 4.0 \ garde. exe
O23 - Service: Google Updater Service (gusvc) - Google - C: \ Program Files \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe
O23 - Service: iPod服务(iPod Service) - Apple Inc - C: \ Program Files \ iPod \ bin \ iPodService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc - C: \ WINDOWS \ system32 \ LEXBCES.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C: \ WINDOWS \ system32 \ nvsvc32. exe
O23 - Service: Remote Packet Capture V.0 Protocole (experimental) (rpcapd) - CACE Technologies - C: \ Program Files \ WinPCap \ rpcapd.exe

--
Fin de fichier - 16,925 octets
je vous remercie pour le concrn

Wow, quelle est votre machine, même course? Avez-vous de cliquer sur tout ce que vous voyez? Jai vu beaucoup de logs HJT mais le vôtre est un gagnant. Supprimer tout ci-dessous. Im sûr que j'ai raté quelque chose, mais commencer par cela. Désinstaller toutes les barres d'outils en premier.


R3 - URLSearchHook: (no name) - (DB8B2393-7A6C-4C76-88CE-6B1F6FF6FFE9) - (no file)

O1 - Hosts: 127.0.0.2 ymsdasdw1.cn
O1 - Hosts: 127.0.0.3 h96b.info
O1 - Hosts: 127.0.0.0 * zttwp.cn pêche *.
O1 - Hosts: 127.0.0. 0 http://www.hackerbf.cn
O1 - Hosts: 127.0.0.0 ww.popdm.cn
O1 - Hosts: 127.1.1.1 bbt.etimes888.com
O1 - Hosts: 127.1.1.1 219.147.13.53
O1 - Hosts: 127.1.1.1 20068080.cn
O1 - Hosts: 127.1.1.1 l.neter888.cn
O1 - Hosts: 127.1.1.1 stat.untang.com
O1 - Hosts: 127.1.1.1 http://www.ikdy.cn
O1 - Hosts: 127.0.0.0 geekbyfeng.cn
O1 - Hosts: 127.0.0.0 121.14.101.68
O1 - Hosts: 127.0.0.0 ppp.etimes888.com
O1 - Hosts: 127.0.0.0 http://www.bypk.com
O1 - Hosts: 127.0.0.0 CSC3-2004-crl. verisign.com
O1 - Hosts: 127.0.0.0 udp.hjob123.com
O1 - Hosts: 127.1.1.1 999.hfdy2828.com
O1 - Hosts: 127.1.1.1 http://www.hfdy2929.com
O1 - Hosts: 127.1.1.1 http://www.xiazaide1.cn
O1 - Hosts: 127.1.1.1 http://www.vuf51579.cn
O1 - Hosts: 127.1.1.1 wm.eo2q.cn
O1 - Hosts: 127.1.1.1 d.www-263.com
O1 - Hosts: 127.1.1.1 http://www.ssy1688.cn
O1 - Hosts: 127.1.1.1 121.12.173.218
O1 - Hosts: 127.1.1.1 qq.18i16.net
O1 - Hosts: 127.1.1.1 a.baidu-6661.com
O1 - Hosts: 127.1.1. 1 http://www.vuf51579.cn
O1 - Hosts: 127.1.1.1 http://www.1079223105.cn
O1 - Hosts: 127.1.1.1 home.xzx6.cn
O1 - Hosts: 127.1.1.1 top.fgc3.cn
O1 - Hosts: 127.1.1.1 165.246.44.228
O1 - Hosts: 127.1.1.1 wwww.ttfafa.com
O1 - Hosts: 127.1.1.1 pa.tt-09.com
O1 - Hosts: 127.0.0.2 bnasnd83nd.cn
O1 - Hosts: 127.0.0.0 http://www.gamehacker.com.cn
O1 - Hosts: 127.0.0.0 gamehacker.com.cn
O1 - Hosts: 127.1.1.1 http://www.cctv-100008.cn
O1 - Hosts: 127.1.1.1 222.73.208.141
O1 - Hosts: 127.0.0.3 adlaji. cn
O1 - Hosts: 127.1.1.1 aiyyw.com
O1 - Hosts: 127.1.1.1 bnasnd83nd.cn
O1 - Hosts: 127.0.0.0 user1.12-27.net
O1 - Hosts: 127.0.0.0 fengent.cn
O1 - Hosts: 127.0.0.0 http://www.sony888.cn
O1 - Hosts: 127.0.0.0 user1.asp-33.cn
O1 - Hosts: 127.0.0.0 http://www.netkwek.cn
O1 - Hosts: 127.0.0.0 ymsdkad6.cn
O1 - Hosts: 127.0.0.0 http://www.lkwueir.cn
O1 - Hosts: 127.0.1.1 user1.23-17.net
O1 - Hosts: 127.0.0.0 upa.luzhiai.net
O1 - Hosts: 127.0.0.0 http://www.guccia.net
O1 - Hosts: 127.0.0. 0 4m9mnlmi.cn
O1 - Hosts: 127.0.0.0 mm119mkssd.cn
O1 - Hosts: 127.0.0.0 61.128.171.115:8080
O1 - Hosts: 127.0.0.0 http://www.1119111.com
O1 - Hosts: 127.0.0.0 win.nihao69.cn
O1 - Hosts: 127.0.0.0 puc.lianxiac.net
O1 - Hosts: 127.0.0.0 pud.lianxiac.net
O1 - Hosts: 127.0.0.0 210.76.0.133
O1 - Hosts: 127.0.0.0 61.166.32.2
O1 - Hosts: 127.0.0.0 218.92.186.27
O1 - Hosts: 127.0.0.0 http://www.fsfsfag.cn
O1 - Hosts: 127.0.0.0 ovo.ovovov.cn
O1 - Hosts: 127.0.0.0 dw.com. com
O1 - Hosts: 127.0.0.0 t.myblank.cn
O1 - Hosts: 127.0.0.0 x.myblank.cn
O1 - Hosts: 127.0.0.0 qq-xing.com.cn
O1 - Hosts: 127.0.0.0 59.125.231.177:17777
O2 - BHO: WebThunderBHO - (00000AAA-A363-466E-BEF5-9BB68697AA7F) - C: \ Program Files \ Thunder Network \ WebThunder \ WebThunderBHO_Now.dll

O2 - BHO: Info cache - (295AB8C6-FB22-4D17-8834-064E2BA0A6F0) - C: \ WINDOWS \ Intel \ baiduc.dll

O2 - BHO: MS Video Control 1. 0 - (463F66BC-3B6F-4FDE-969C-94F594FECE07) - (no file)

O2 - BHO: Need2Find Bar BHO - (4D1C4E81-A32A-416B-BCDB-33B3EF3617D3) - C: \ Program Files \ Need2Find \ bar \ 1.bin \ ND2FNBAR.DLL


O4 - HKLM \ .. \ Run: [WebThunder] C: \ Program Files \ Thunder Network \ WebThunder \ WebThunder.exe

O4 - HKLM \ .. \ Run: [搜狐彩电网页版] C: \ Program Files \ sohutv_web \ SysTrayIcon.exe "C: \ Program Files \ sohutv_web" "ed97e15f310ea2fc77821c67e8b13cd0" "1.0.0. 4 "" "

O4 - HKLM \ .. \ Run: [MagSubscribe] "C: \ Zcom \ E-Space.exe" / h

O4 - HKLM \ .. \ Policies \ Explorer \ Run: [dlmcjjcdfc] C: \ WINDOWS \ system \ jjxzwzjy090118.exe

O8 - Extra du menu contextuel: & Recherche -- http://kn.bar.need2find.com/KN/menusearch.html?p=KN

O8 - Extra du menu contextuel: & Windows Live Search -- res://C : \ Program Files \ Windows Live Toolbar \ msntb.dll / recherche. htm

O8 - Extra du menu contextuel: Add to Windows & Live Favorites -- http://favorites.live.com/quickadd.aspx

O8 - Extra du menu contextuel: Ouvrir dans un nouvel onglet -- res://C : \ Program Files \ Windows Live Toolbar \ Components \ fr-fr \ msntabres.dll.mui/229? C976dce0b0c64e6e86672e4b847ab66d

O8 - Extra du menu contextuel: Ouvrir dans un nouvel onglet de premier -- res://C : \ Program Files \ Windows Live Toolbar \ Components \ fr-fr \ msntabres.dll.mui/230? c976dce0b0c64e6e86672e4b847ab66d

O8 - Extra du menu contextuel:使用WEB迅雷下载- C: \ Program Files \ Thunder Network \ WebThunder \ GetUrl.htm

O8 - Extra du menu contextuel:使用WEB迅雷下载全部链接- C: \ Program Files \ Thunder Network \ WebThunder \ GetAllUrl.htm

O8 - Extra du menu contextuel:添加到QQ表情- C: \ Program Files \ Tencent \ QQ \ AddEmotion.htm

O9 - Extra button: Zcom杂志- (4045D313-1D5E-4fe4-93A0-A34630B6A00B) - C: \ Zcom \ E-Space. exe

O9 - Extra "Outils" menuitem: Zcom杂志(E-Space) - (4045D313-1D5E-4fe4-93A0-A34630B6A00B) - C: \ Zcom \ E-Space.exe

O9 - Extra button:启动迅雷WEB - (962EFB8E-2683-42d4-AC74-AAA4C759B9C6) -- http://my.xunlei.com (fichier manquant)

O9 - Extra "Outils" menuitem:启动迅雷WEB - (962EFB8E-2683-42d4-AC74-AAA4C759B9C6) -- http://my.xunlei.com (fichier manquant)

O9 - Extra button: PartyPoker.com - (B7FE5D70-9AA2-40F1-9C6B-12A255F085E1) - C: \ Program Files \ PartyGaming \ PartyPoker \ RunApp. exe (file missing)

O20 - AppInit_DLLs: svtepps.dll

O21 - SSODL: 4C464AA6 - (4C464AA6-9A8A-4300-ADC7-FFF388B1BE44) - C: \ WINDOWS \ system32 \ kckmkaam.dll

O21 - SSODL: 38BBDC5C - (38BBDC5C-2847-4D07-B7D5-5B9B821DD24B) - C: \ WINDOWS \ system32 \ jobbdclc.dll

O21 - SSODL: 025AC373 - (025AC373-2DA3-4EBE-9807-E0FAB19E2656) - C: \ WINDOWS \ system32 \ gilacjnj.dll

O21 - SSODL: FCB3707C - (FCB3707C-776D-42FB-96C5-FBC02FC4C88C) - C: \ WINDOWS \ system32 \ fcbjngnc. dll

O21 - SSODL: 30C79E60 - (30C79E60-7409-403A-86A4-DBC841C5A9DA) - C: \ WINDOWS \ system32 \ jgcnpemg.dll

O21 - SSODL: C1FB5628 - (C1FB5628-BF11-4F44-934C-94A74EC66F8F) - C: \ WINDOWS \ system32 \ chfblmio.dll

O21 - SSODL: 099F0D12 - (099F0D12-AF29-4824-B33E-A4C790603F12) - C: \ WINDOWS \ system32 \ gppfgdhi.dll

O21 - SSODL: B5D7435B - (B5D7435B-6D08-46B0-87E0-BEE18339596B) - C: \ WINDOWS \ system32 \ bldnkjlb. dll

O21 - SSODL: 51676472 - (51676472-AA6F-4C2C-9A09-254BD6CCD26B) - C: \ WINDOWS \ system32 \ lhmnmkni.dll

O21 - SSODL: 5891AC0F - (5891AC0F-C228-4FD1-A7F5-44BDC5C78A7D) - C: \ WINDOWS \ system32 \ lophacgf.dll

je vous remercie pour la réponse, et de recherche en ligne yess i beaucoup n'avaient tout simplement pas l'intention de protéger mon pc de l'annonce awares. En tout cas c'est le log après ur recomandation:
Logfile de Trend Micro HijackThis v2.0.2
Scan sauvé à 2:00:53, le 2009-1-20
Plate-forme: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal

Running processes:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ CSRSS. exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ system32 \ LEXBCES.EXE
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ WINDOWS \ system32 \ userinit.exe
C: \ WINDOWS \ explorer.exe
C: \ WINDOWS \ system32 \ conime. exe
C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe
C: \ Program Files \ Bonjour \ mDNSResponder.exe
C: \ Program Files \ StormII \ stormliv.exe
C: \ Program Files \ ewido anti-spyware 4.0 \ guard.exe
C: \ WINDOWS \ system32 \ ntfrs.exe
C: \ WINDOWS \ system32 \ nvsvc32.exe
C: \ WINDOWS \ system32 \ oodag.exe
C: \ Program Files \ D-Tools \ daemon.exe
C: \ Program Files \ Google \ Google Pinyin \ GooglePinyinDaemon.exe
C: \ Program Files \ iTunes \ iTunesHelper. exe
C: \ Program Files \ Java \ jre1.6.0_07 \ bin \ jusched.exe
C: \ Program Files \ Adobe \ Reader 8.0 \ Reader \ Reader_sl.exe
C: \ WINDOWS \ system32 \ ctfmon.exe
C: \ Program Files \ Google \ GoogleToolbarNotifier \ GoogleToolbarNotifier.exe
C: \ Program Files \ PPStream \ ppsap.exe
C: \ Program Files \ WinZip \ WZQKPICK.EXE
C: \ WINDOWS \ System32 \ alg.exe
C: \ WINDOWS \ system32 \ wscntfy.exe
C: \ Program Files \ iPod \ bin \ iPodService.exe
C: \ Program Files \ Trend Micro \ HijackThis \ HijackThis. exe
C: \ WINDOWS \ system32 \ Wuauclt.exe
C: \ WINDOWS \ system32 \ Wuauclt.exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ Program Files \ Fichiers communs \ Microsoft Shared \ Windows Live \ WLLoginProxy.exe
C: \ WINDOWS \ system32 \ wbem \ wmiprvse.exe
C: \ DOCUME ~ 1 \ ken \ LOCALS ~ 1 \ Temp \ 242093
C: \ DOCUME ~ 1 \ ken \ LOCALS ~ 1 \ Temp \ 266517
C: \ WINDOWS \ system32 \ svteppsk. exe

O2 - BHO: Adobe PDF Reader Link Helper - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Fichiers communs \ Adobe \ Acrobat \ ActiveX \ AcroIEHelper.dll
O2 - BHO: (no name) - (140BD8E3-C167-11D4-B4A3-080000180323) - (no file)
O2 - BHO: Info cache - (295AB8C6-FB22-4D17-8834-064E2BA0A6F0) - C: \ WINDOWS \ Intel \ baiduc. dll
O2 - BHO: RealPlayer Téléchargez et Record Plugin for Internet Explorer - (3049C3E9-B461-4BC5-8870-4C09146192CA) - C: \ Program Files \ Real \ RealPlayer \ rpbrowserrecordplugin.dll
O2 - BHO: MS Video Control 1.0 - (463F66BC-3B6F-4FDE-969C-94F594FECE07) - (no file)
O2 - BHO: Need2Find Bar BHO - (4D1C4E81-A32A-416B-BCDB-33B3EF3617D3) - C: \ Program Files \ Need2Find \ bar \ 1.bin \ ND2FNBAR.DLL
O2 - BHO: SSVHelper Class - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files \ Java \ jre1.6. 0_07 \ bin \ ssv.dll
O2 - BHO: (no name) - (7E853D72-626A-48EC-A868-BA8D5E23E045) - (no file)
O2 - BHO: Windows Live Sign-in Helper - (9030D464-4C02-4ABF-8ECC-5164760863C6) - C: \ Program Files \ Fichiers communs \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - (AA58ED58-01DD-4d91-8333-CF10577473F7) - c: \ program files \ google \ googletoolbar1. dll
O2 - BHO: Google Toolbar Notifier BHO - (AF69DE43-7D58-4638-B6FA-CE66B5AD205D) - C: \ Program Files \ Google \ GoogleToolbarNotifier \ 3.1.807.1746 \ swg.dll
O2 - BHO: FlashGetBHO - (b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0) - C: \ Documents and Settings \ All Users \ Application Data \ FlashGetBHO \ FlashGetBHO.dll
O2 - BHO: Windows Live Toolbar Helper - (BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0) - C: \ Program Files \ Windows Live Toolbar \ msntb. dll
O2 - BHO: QQHelper Class - (BF182DBF-1283-4BD3-86EE-D3239228770C) - C: \ Program Files \ Internet Explorer \ Connection Wizard \ QQZoneHelper.dll
O3 - Toolbar: Windows Live Toolbar - (BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0) - C: \ Program Files \ Windows Live Toolbar \ msntb.dll
O3 - Toolbar: & Google - (2318C2B1-4965-11D4-9B18-009027A5CD4F) - c: \ program files \ google \ googletoolbar1.dll
O4 - HKLM \ .. \ Run: [IMJPMIG8.1] "C: \ WINDOWS \ IME \ imjp8_1 \ IMJPMIG. EXE "/ Spoil / RemAdvDef / Migration32
O4 - HKLM \ .. \ Run: [PHIME2002ASync] C: \ WINDOWS \ system32 \ IME \ TINTLGNT \ TINTSETP.EXE / SYNC
O4 - HKLM \ .. \ Run: [PHIME2002A] C: \ WINDOWS \ system32 \ IME \ TINTLGNT \ TINTSETP.EXE / IMEName
O4 - HKLM \ .. \ Run: [DAEMON Tools-1033] "C: \ Program Files \ D-Tools \ daemon.exe"-lang 1033
O4 - HKLM \ .. \ Run: [NvCplDaemon] RUNDLL32.EXE C: \ WINDOWS \ system32 \ NvCpl.dll, NvStartup
O4 - HKLM \ .. \ Run: [nwiz] nwiz.exe / install
O4 - HKLM \ .. \ Run: [Adobe Photo Downloader] "C: \ Program Files \ Adobe \ Photoshop Album Starter Edition \ 3.2 \ Apps \ apdproxy.exe"
O4 - HKLM \ .. \ Run: [NvMediaCenter] RUNDLL32.EXE C: \ WINDOWS \ system32 \ NvMcTray.dll, NvTaskbarInit
O4 - HKLM \ .. \ Run: [Google IME Autoupdater] "C: \ Program Files \ Google \ Google Pinyin \ GooglePinyinDaemon.exe"
O4 - HKLM \ .. \ Run: [TkBellExe] "C: \ Program Files \ Fichiers communs \ Real \ Update_OB \ realsched.exe"-osboot
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files \ QuickTime \ qttask.exe"-atboottime
O4 - HKLM \ .. \ Run: [iTunesHelper] "C: \ Program Files \ iTunes \ iTunesHelper.exe"
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] "C: \ Program Files \ Java \ jre1.6.0_07 \ bin \ jusched.exe"
O4 - HKLM \ .. \ Run: [Adobe Reader Speed Launcher] "C: \ Program Files \ Adobe \ Reader 8.0 \ Reader \ Reader_sl.exe"
O4 - HKLM \ .. \ Run: [! Ewido] "C: \ Program Files \ ewido anti-spyware 4.0 \ ewido. exe "/ minimiser
O4 - HKLM \ .. \ Run: [KernelFaultCheck]% systemroot% \ system32 \ dumprep 0-k
O4 - HKCU \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - HKCU \ .. \ Run: [swg] C: \ Program Files \ Google \ GoogleToolbarNotifier \ GoogleToolbarNotifier.exe
O4 - HKCU \ .. \ Run: [msnmsgr] "C: \ Program Files \ MSN Messenger \ msnmsgr.exe" / background
O4 - HKCU \ .. \ Run: [DriverUpdaterPro] C: \ Program Files \ XPC Tools \ Driver Updater Pro \ DriverUpdaterPro.exe-t
O4 - HKCU \ .. \ Run: [PPS Accelerator] C: \ Program Files \ PPStream \ ppsap.exe
O4 - HKCU \ .. \ Run: [QuickTime Task] "C: \ Program Files \ QuickTime \ qttask.exe"-atboottime
O4 - HKLM \ .. \ Policies \ Explorer \ Run: [Alcmtr] anymie360.exe
O4 - HKCU \ .. \ Policies \ Explorer \ Run: [realtek.exe] C: \ WINDOWS \ system32 \ realtek.exe
O4 - HKUS \ S-1-5-18 \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon.exe (User "SYSTEM")
O4 - HKUS \. DEFAULT \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon. exe (l'utilisateur par défaut de l'utilisateur)
O4 - Global Startup: WinZip Quick Pick.lnk = C: \ Program Files \ WinZip \ WZQKPICK.EXE
O9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_07 \ bin \ ssv.dll
O9 - Extra "Outils" menuitem: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_07 \ bin \ ssv.dll
O9 - Extra button: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag. exe
O9 - Extra "Outils" menuitem: @ xpsp3res.dll, -20001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag.exe
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs. exe
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O16 - DPF: Tornado 21 -- http://origin.games.yahoo.net/games/cli ... 21t0_x.cab
O16 - DPF: (05C1004E-2596-48E5-8E26-39362985EEB9) (MMCPlayer Class) -- http://p3p.sogou.com/MMCShell.cab
O16 - DPF: (05D96F71-87C6-11D3-9BE4-00902742D6E0) (QuickPlace Class) -- http://crystal.atkinson.yorku.ca/qp2.cab
O16 - DPF: (17492023-C23A-453E-A040-C7C580BBF700) (Windows Genuine Advantage Validation Tool) -- http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: (238F6F83-B8B4-11CF-8771-00A024541EE3) (Citrix ICA Client) -- http://a516.g.akamai.net/f/516/25175/7d ... o-eula.cab
O16 - DPF: (67A5F8DC-1A4B-4D66 -9F24-A704AD929EEE) (System Requirements Lab) -- http://www.nvidia.com/content/DriverDow ... eqlab2.cab
O18 - Protocol: about - (3050F406-98b5-11cf-bb82-00aa00bdce0b) - C: \ WINDOWS \ system32 \ mshtml.dll
O18 - Protocol: cdl - (3DD53D40-7B8B-11D0-B013-00AA0059CE02) - C: \ WINDOWS \ system32 \ urlmon.dll
O18 - Protocol: dvd - (12D51199-0DB5-46FE-A120-47A3D7D937CC) - C: \ WINDOWS \ system32 \ msvidctl.dll
O18 - Protocol: file - (79EAC9E7-baf9-11ce-8c82-00aa004ba90b) - C: \ WINDOWS \ system32 \ URLMON. dll
O18 - Protocol: ftp - (79EAC9E3-baf9-11ce-8c82-00aa004ba90b) - C: \ WINDOWS \ system32 \ urlmon.dll
O18 - Protocol: gopher - (79EAC9E4-baf9-11ce-8c82-00aa004ba90b) - C: \ WINDOWS \ system32 \ urlmon.dll
O18 - Protocol: http - (79EAC9E2-baf9-11ce-8c82-00aa004ba90b) - C: \ WINDOWS \ system32 \ urlmon.dll
O18 - Protocol: https - (79EAC9E5-baf9-11ce-8c82-00aa004ba90b) - C: \ WINDOWS \ system32 \ URLMON. dll
O18 - Protocol: ipp - (no CLSID) - (no file)
O18 - Protocol: sa - (9D148291-B9C8-11D0-A4CC-0000F80149F6) - C: \ WINDOWS \ system32 \ Itss.dll
O18 - Protocol: javascript - (3050F3B2-98b5-11cf-bb82-00aa00bdce0b) - C: \ WINDOWS \ system32 \ mshtml.dll
O18 - Protocol: livecall - (828030A1-22C1-4009-854F-8E305202313F) - C: \ PROGRA ~ 1 \ MSNMES ~ 1 \ MSGRAP ~ 1.DLL
O18 - Protocol: local - (79EAC9E7-baf9-11ce-8c82-00aa004ba90b) - C: \ WINDOWS \ system32 \ URLMON. dll
O18 - Protocol: mailto - (3050F3DA-98b5-11cf-bb82-00aa00bdce0b) - C: \ WINDOWS \ system32 \ mshtml.dll
O18 - Protocol: mhtml - (05300401-BCBC-11D0-85E3-00C04FD85AB4) - C: \ WINDOWS \ system32 \ Inetcomm.dll
O18 - Protocol: mk - (79EAC9E6-baf9-11ce-8c82-00aa004ba90b) - C: \ WINDOWS \ system32 \ urlmon.dll
O18 - Protocol: ms-its - (9D148291-B9C8-11D0-A4CC-0000F80149F6) - C: \ WINDOWS \ system32 \ SPI. dll
O18 - Protocol: MSDAIPP - (no CLSID) - (no file)
O18 - Protocol: msnim - (828030A1-22C1-4009-854F-8E305202313F) - C: \ PROGRA ~ 1 \ MSNMES ~ 1 \ MSGRAP ~ 1.DLL
O18 - Protocol: res - (3050F3BC-98b5-11cf-bb82-00aa00bdce0b) - C: \ WINDOWS \ system32 \ mshtml.dll
O18 - Protocol: sysimage - (76E67A63-06E9-11D2-A840-006008059382) - C: \ WINDOWS \ system32 \ mshtml.dll
O18 - Protocol: tv - (CBD30858-AF45-11D2-B6D6-00C04FBBDE6E) - C: \ WINDOWS \ system32 \ msvidctl. dll
O18 - Protocol: vbscript - (3050F3B2-98b5-11cf-bb82-00aa00bdce0b) - C: \ WINDOWS \ system32 \ mshtml.dll
O18 - Protocol: wia - (13F3EA8B-4F0A-91D7-AD76-D2853AC8BECE) - C: \ WINDOWS \ system32 \ wiascr.dll
O20 - AppInit_DLLs: svtepps.dll, ipndppgp.dll, hakpgdmc.dll, gnegaijb.dll, fogdgnjb.dll, fpbellio.dll, jgdhgeia.dll, mflijckc.dll, mibmnmln.dll, dgnohdbj.dll, chajbkgg.dll, cgfigbaa. dll
O21 - SSODL: 297D9909 - (297D9909-A846-4F85-94CA-DF1FE397B770) - C: \ WINDOWS \ system32 \ ipndppgp. dll
O21 - SSODL: 1A490D6C - (1A490D6C-5F8A-4DBD-97A5-B1DBFF5954F2) - C: \ WINDOWS \ system32 \ hakpgdmc.dll
O21 - SSODL: 07E0A23B - (07E0A23B-C02C-45E3-9B8F-834B259CC5C6) - C: \ WINDOWS \ system32 \ gnegaijb.dll
O21 - SSODL: F80D073B - (F80D073B-66FD-41F1-AF02-D37CEB627B2C) - C: \ WINDOWS \ system32 \ fogdgnjb.dll
O21 - SSODL: F9BE5528 - (F9BE5528-4BA9-06D5-868F-BDB1CE27A8DF) - C: \ WINDOWS \ system32 \ fpbellio. dll
O21 - SSODL: 30D10E2A - (30D10E2A-596F-402F-8ACC-5EDC76207892) - C: \ WINDOWS \ system32 \ jgdhgeia.dll
O21 - SSODL: 6F523C4C - (6F523C4C-2583-4264-8D22-8D6816B7AAB0) - C: \ WINDOWS \ system32 \ mflijckc.dll
O21 - SSODL: 62B67657 - (62B67657-258F-4EF2-A5E5-8D02D334977C) - C: \ WINDOWS \ system32 \ mibmnmln.dll
O21 - SSODL: D0781DB3 - (D0781DB3-4C19-4757-A077-86B58E8AEBBF) - C: \ WINDOWS \ system32 \ dgnohdbj. dll
O21 - SSODL: C1A3B400 - (C1A3B400-D1E6-4905-ACCD-8DC4221DDF6C) - C: \ WINDOWS \ system32 \ chajbkgg.dll
O21 - SSODL: C0F20BAA - (C0F20BAA-4EED-1A02-B546-563D14CF7C5D) - C: \ WINDOWS \ system32 \ cgfigbaa.dll
O23 - Service: Apple Mobile Device - Apple Inc - C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe
O23 - Service:服务Bonjour (Bonjour Service) - Apple Inc - C: \ Program Files \ Bonjour \ mDNSResponder. exe
O23 - Service: Centre de CONTRL Storm Media (ccosm) -北京暴风网际科技有限公司- C: \ Program Files \ StormII \ stormliv.exe
O23 - Service: ewido anti-spyware 4.0 Guard - Anti-Malware Development as - C: \ Program Files \ ewido anti-spyware 4.0 \ guard.exe
O23 - Service: Google Updater Service (gusvc) - Google - C: \ Program Files \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe
O23 - Service: iPod服务(iPod Service) - Apple Inc - C: \ Program Files \ iPod \ bin \ iPodService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc - C: \ WINDOWS \ system32 \ LEXBCES.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C: \ WINDOWS \ system32 \ nvsvc32.exe
O23 - Service: Remote Packet Capture V.0 Protocole (experimental) (rpcapd) - CACE Technologies - C: \ Program Files \ WinPCap \ rpcapd.exe

--
Fin de fichier - 12,448 octets
Tout ce que je peux faire pour résoudre le problème?

comme vous pouvez le voir, je vous parler de ceux supprimés ci-dessus (en mode sans échec), mais pour des raisons certaines d'entre elles reviennent. Any idea?

Quand les choses garder réapparaissent, son fonctionnement, car ils sont directement à partir du Registre. Ill vous donner deux places à regarder.
Suivez le même chemin dans HKCU et HKLM
Logiciels
Microsoft
Windows
CurrentVersion
Run <---- Ouvrez le dossier courir dans les deux sites et supprimer ce qui n'a pas sa place dans la fenêtre de droite.

Okie i done la suppression des clés de Reg maintenant, et c'est mon nouveau journal:
Logfile de Trend Micro HijackThis V2.0.0 (BETA)
Scan sauvé à 10:56:08, le 2009-1-20
Plate-forme: Windows XP SP2 (WinNT 5.01.2600)
Boot mode: Normal

Running processes:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ csrss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ system32 \ svchost. exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ system32 \ LEXBCES.EXE
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ WINDOWS \ system32 \ userinit.exe
C: \ WINDOWS \ explorer.exe
C: \ WINDOWS \ system32 \ ctfmon.exe
C: \ Program Files \ WinZip \ WZQKPICK.EXE
C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe
C: \ Program Files \ StormII \ stormliv.exe
C: \ WINDOWS \ system32 \ ntfrs. exe
C: \ WINDOWS \ system32 \ nvsvc32.exe
C: \ WINDOWS \ system32 \ oodag.exe
C: \ Program Files \ Pure Networks \ Network Magic \ nmsrvc.exe
C: \ WINDOWS \ system32 \ wscntfy.exe
C: \ WINDOWS \ system32 \ Wuauclt.exe
C: \ WINDOWS \ system32 \ wbem \ wmiprvse.exe
C: \ WINDOWS \ System32 \ alg.exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ WINDOWS \ system32 \ conime.exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ Program Files \ Fichiers communs \ Microsoft Shared \ Windows Live \ WLLoginProxy. exe
C: \ WINDOWS \ system32 \ Wuauclt.exe
C: \ WINDOWS \ system32 \ wbem \ wmiprvse.exe
C: \ Documents and Settings \ ken \ Desktop \ HiJackThis_v2.exe
C: \ DOCUME ~ 1 \ ken \ LOCALS ~ 1 \ Temp \ 208202

O2 - BHO: Adobe PDF Reader Link Helper - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Fichiers communs \ Adobe \ Acrobat \ ActiveX \ AcroIEHelper. dll
O2 - BHO: (no name) - (140BD8E3-C167-11D4-B4A3-080000180323) - (no file)
O2 - BHO: RealPlayer Téléchargez et Record Plugin for Internet Explorer - (3049C3E9-B461-4BC5-8870-4C09146192CA) - C: \ Program Files \ Real \ RealPlayer \ rpbrowserrecordplugin.dll
O2 - BHO: SSVHelper Class - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files \ Java \ jre1.6.0_07 \ bin \ ssv. dll
O2 - BHO: (no name) - (7E853D72-626A-48EC-A868-BA8D5E23E045) - (no file)
O2 - BHO: Windows Live Sign-in Helper - (9030D464-4C02-4ABF-8ECC-5164760863C6) - C: \ Program Files \ Fichiers communs \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll
O2 - BHO: FlashGetBHO - (b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0) - C: \ Documents and Settings \ All Users \ Application Data \ FlashGetBHO \ FlashGetBHO. dll
O2 - BHO: Windows Live Toolbar Helper - (BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0) - C: \ Program Files \ Windows Live Toolbar \ msntb.dll
O2 - BHO: QQHelper Class - (BF182DBF-1283-4BD3-86EE-D3239228770C) - C: \ Program Files \ Internet Explorer \ Connection Wizard \ QQZoneHelper.dll
O3 - Toolbar: Windows Live Toolbar - (BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0) - C: \ Program Files \ Windows Live Toolbar \ msntb.dll
O4 - HKLM \ .. \ Run: [PHIME2002ASync] C: \ WINDOWS \ system32 \ IME \ TINTLGNT \ TINTSETP. EXE / SYNC
O4 - HKLM \ .. \ Run: [PHIME2002A] C: \ WINDOWS \ system32 \ IME \ TINTLGNT \ TINTSETP.EXE / IMEName
O4 - HKLM \ .. \ Run: [NvCplDaemon] RUNDLL32.EXE C: \ WINDOWS \ system32 \ NvCpl.dll, NvStartup
O4 - HKCU \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - HKUS \ S-1-5-18 \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon.exe (User "SYSTEM")
O4 - HKUS \. DEFAULT \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon.exe (User utilisateur par défaut)
O4 - Global Startup: WinZip Quick Pick. lnk = C: \ Program Files \ WinZip \ WZQKPICK.EXE
O8 - Extra du menu contextuel: & Windows Live Search -- res://C : \ Program Files \ Windows Live Toolbar \ msntb.dll / search.htm
O9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_07 \ bin \ ssv.dll
O9 - Extra "Outils" menuitem: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_07 \ bin \ ssv. dll
O9 - Extra button: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) -% windir% \ Network Diagnostic \ xpnetdiag.exe (file missing)
O9 - Extra "Outils" menuitem: @ xpsp3res.dll, -20001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) -% windir% \ Network Diagnostic \ xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs. exe
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs. exe
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O16 - DPF: Tornado 21 -- http://origin.games.yahoo.net/games/cli ... 21t0_x.cab
O16 - DPF: (05C1004E-2596-48E5-8E26-39362985EEB9) (MMCPlayer Class) -- http://p3p.sogou.com/MMCShell.cab
O16 - DPF: (05D96F71-87C6-11D3-9BE4-00902742D6E0) (QuickPlace Class) -- http://crystal.atkinson.yorku.ca/qp2.cab
O16 - DPF: (17492023-C23A-453E-A040-C7C580BBF700) (Windows Genuine Advantage Validation Tool) -- http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: (238F6F83-B8B4-11CF-8771-00A024541EE3) (Citrix ICA Client) -- http://a516.g.akamai.net/f/516/25175/7d ... o-eula.cab
O16 - DPF: (67A5F8DC-1A4B-4D66 -9F24-A704AD929EEE) (System Requirements Lab) -- http://www.nvidia.com/content/DriverDow ... eqlab2.cab
O18 - Protocol: about - (3050F406-98b5-11cf-bb82-00aa00bdce0b) - C: \ WINDOWS \ system32 \ mshtml.dll
O18 - Protocol: cdl - (3DD53D40-7B8B-11D0-B013-00AA0059CE02) - C: \ WINDOWS \ system32 \ urlmon.dll
O18 - Protocol: dvd - (12D51199-0DB5-46FE-A120-47A3D7D937CC) - C: \ WINDOWS \ system32 \ msvidctl.dll
O18 - Protocol: file - (79EAC9E7-baf9-11ce-8c82-00aa004ba90b) - C: \ WINDOWS \ system32 \ URLMON. dll
O18 - Protocol: ftp - (79EAC9E3-baf9-11ce-8c82-00aa004ba90b) - C: \ WINDOWS \ system32 \ urlmon.dll
O18 - Protocol: gopher - (79EAC9E4-baf9-11ce-8c82-00aa004ba90b) - C: \ WINDOWS \ system32 \ urlmon.dll
O18 - Protocol: http - (79EAC9E2-baf9-11ce-8c82-00aa004ba90b) - C: \ WINDOWS \ system32 \ urlmon.dll
O18 - Protocol: https - (79EAC9E5-baf9-11ce-8c82-00aa004ba90b) - C: \ WINDOWS \ system32 \ URLMON. dll
O18 - Protocol: ipp - (no CLSID) - (no file)
O18 - Protocol: sa - (9D148291-B9C8-11D0-A4CC-0000F80149F6) - C: \ WINDOWS \ system32 \ Itss.dll
O18 - Protocol: javascript - (3050F3B2-98b5-11cf-bb82-00aa00bdce0b) - C: \ WINDOWS \ system32 \ mshtml.dll
O18 - Protocol: livecall - (828030A1-22C1-4009-854F-8E305202313F) - C: \ PROGRA ~ 1 \ MSNMES ~ 1 \ MSGRAP ~ 1.DLL
O18 - Protocol: local - (79EAC9E7-baf9-11ce-8c82-00aa004ba90b) - C: \ WINDOWS \ system32 \ URLMON. dll
O18 - Protocol: mailto - (3050F3DA-98b5-11cf-bb82-00aa00bdce0b) - C: \ WINDOWS \ system32 \ mshtml.dll
O18 - Protocol: mhtml - (05300401-BCBC-11D0-85E3-00C04FD85AB4) - C: \ WINDOWS \ system32 \ Inetcomm.dll
O18 - Protocol: mk - (79EAC9E6-baf9-11ce-8c82-00aa004ba90b) - C: \ WINDOWS \ system32 \ urlmon.dll
O18 - Protocol: ms-its - (9D148291-B9C8-11D0-A4CC-0000F80149F6) - C: \ WINDOWS \ system32 \ SPI. dll
O18 - Protocol: MSDAIPP - (no CLSID) - (no file)
O18 - Protocol: msnim - (828030A1-22C1-4009-854F-8E305202313F) - C: \ PROGRA ~ 1 \ MSNMES ~ 1 \ MSGRAP ~ 1.DLL
O18 - Protocol: pure-go - (4746C79A-2042-4332-8650-48966E44ABA8) - C: \ Program Files \ Common Files \ Pure Networks Shared \ puresp3.dll
O18 - Protocol: res - (3050F3BC-98b5-11cf-bb82-00aa00bdce0b) - C: \ WINDOWS \ system32 \ mshtml.dll
O18 - Protocol: sysimage - (76E67A63-06E9-11D2-A840-006008059382) - C: \ WINDOWS \ system32 \ MSHTML. dll
O18 - Protocol: tv - (CBD30858-AF45-11D2-B6D6-00C04FBBDE6E) - C: \ WINDOWS \ system32 \ msvidctl.dll
O18 - Protocol: vbscript - (3050F3B2-98b5-11cf-bb82-00aa00bdce0b) - C: \ WINDOWS \ system32 \ mshtml.dll
O18 - Protocol: wia - (13F3EA8B-4F0A-91D7-AD76-D2853AC8BECE) - C: \ WINDOWS \ system32 \ wiascr.dll
O20 - AppInit_DLLs: nmsdjh.dll, hrafh.dll, bsnfhs.dll, gaffg.dll, snszh.dll, zdhere.dll, klsf.dll, jsdfa.dll, hjsz.dll, cgfhr.dll, aghmxd.dll, sdfrbt. dll, jkzsgf.dll, dghagc.dll, dfgwag.dll, fgjd.dll, xfnh. dll, bgyu.dll, xdrhcj.dll, zsrdygx.dll, dfhvk.dll, xdfthjh.dll, cvbtfs.dll, cgydj.dll, zsdgrgh.dll, fghdd.dll, bgcjty.dll, dbgj.dll, xcfgh.dll, cvnghk.dll, vgxdcg.dll, chjg.dll, vnfxd.dll, nbmfu.dll, xdbjy.dll, vbjxbnm.dll, xgngj.dll, cxvbh.dll, fgjt.dll, cnbv.dll, cvnhk.dll, vgjzrg. dll, cvjdfh.dll, sdfhk.dll, gmnait.dll, xdbnm.dll, xbnft.dll, myuf.dll, hkxddrh.dll, aserg.dll, zdfgf.dll, bnmdgh.dll, bxdfh.dll, cncft.dll, cfjzsxn.dll, dfbghj.dll, dgbzd.dll, nhjsd.dll, hjmasd.dll, xbfhxd.dll, bngyjuf.dll, xdgxr.dll, bnmft.dll, xcvgu. dll, szggfj.dll, zsggixd.dll, bnhugk.dll, xdhuk.dll, dxgjgfy.dll, fgjderg.dll, asfhjy.dll, swegfuj.dll, cxfhf.dll, hjukrt.dll, dhdhvv.dll, vdfthjk.dll, xdfrg.dll, zsgjfh.dll, cvbyj.dll, nmxdt.dll, bhdryn.dll, nbkfy.dll, xsdjd.dll, xuxdg.dll, nmdgkn.dll, xdhts.dll, vcnyd.dll, zsdth.dll, oalddpnm . dll, ljonfemf.dll, elcgnnmo.dll, hdikmdap.dll, mnhgmmhb.dll, lhlemnbl.dll, ddp
O21 - SSODL: 6710661B - (6710661B-71CA-4B6B-98D3-0DA4D0547CF8) - C: \ WINDOWS \ system32 \ mnhgmmhb. dll
O21 - SSODL: 515E67B5 - (515E67B5-A420-4A95-B13C-A4FF7FA819D4) - C: \ WINDOWS \ system32 \ lhlemnbl.dll
O21 - SSODL: 1D246DA9 - (1D246DA9-72D5-4C6A-BE2B-C08C4F9FDC3A) - C: \ WINDOWS \ system32 \ hdikmdap.dll
O21 - SSODL: E5C07768 - (E5C07768-3689-4FE4-A701-89C27D75CB98) - C: \ WINDOWS \ system32 \ elcgnnmo.dll
O21 - SSODL: 5387FE6F - (5387FE6F-F256-4F9B-B5D2-59BE67D0E0DF) - C: \ WINDOWS \ system32 \ ljonfemf. dll
O21 - SSODL: 8A5DD976 - (8A5DD976-4A04-43AB-B4F4-94C56CC72E16) - C: \ WINDOWS \ system32 \ oalddpnm.dll
O21 - SSODL: DD9564D4 - (DD9564D4-5959-4111-B69D-BCBCEFF2F1AB) - C: \ WINDOWS \ system32 \ ddplmkdk.dll
O22 - SharedTaskScheduler: Preloader Browseui - (438755C2-A8BA-11D1-B96B-00A0C90312E1) - C: \ WINDOWS \ system32 \ browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - (8C7461EF-2B13-11d2-BE35-3078302C2030) - C: \ WINDOWS \ system32 \ browseui. dll
O23 - Service: Apple Mobile Device - Apple Inc - C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe
O23 - Service: Centre de CONTRL Storm Media (ccosm) -北京暴风网际科技有限公司- C: \ Program Files \ StormII \ stormliv.exe
O23 - Service: iPod服务(iPod Service) - Apple Inc - C: \ Program Files \ iPod \ bin \ iPodService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc - C: \ WINDOWS \ system32 \ LEXBCES. EXE
O23 - Service: Pure Networks Net2Go Service (nmraapache) - Pure Networks, Inc - C: \ Program Files \ Pure Networks \ Network Magic \ WebServer \ bin \ nmraapache.exe
O23 - Service: Pure Networks Network Magic Service (nmservice) - Pure Networks, Inc - C: \ Program Files \ Pure Networks \ Network Magic \ nmsrvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C: \ WINDOWS \ system32 \ nvsvc32.exe

--
Fin de fichier - 10,308 octets


Le problème, c'est parti! Merci beaucoup, mais j'ai besoin de rien d'autre ne soit plus propre sur mon PC?

Ne pas arrêter maintenant, garder la suppression.

O2 - BHO: (no name) - (140BD8E3-C167-11D4-B4A3-080000180323) - (no file)

O18 - Protocol: ipp - (no CLSID) - (no file)

O20 - AppInit_DLLs: nmsdjh.dll, hrafh.dll, bsnfhs.dll, gaffg.dll, snszh.dll, zdhere.dll, klsf.dll, jsdfa.dll, hjsz.dll, cgfhr.dll, aghmxd.dll, sdfrbt. dll, jkzsgf.dll, dghagc.dll, dfgwag.dll, fgjd.dll, xfnh.dll, bgyu.dll, xdrhcj.dll, zsrdygx.dll, dfhvk.dll, xdfthjh.dll, cvbtfs.dll, cgydj.dll, zsdgrgh.dll, fghdd.dll, bgcjty.dll, dbgj.dll, xcfgh. dll, cvnghk.dll, vgxdcg.dll, chjg.dll, vnfxd.dll, nbmfu.dll, xdbjy.dll, vbjxbnm.dll, xgngj.dll, cxvbh.dll, fgjt.dll, cnbv.dll, cvnhk.dll, vgjzrg.dll, cvjdfh.dll, sdfhk.dll, gmnait.dll, xdbnm.dll, xbnft.dll, myuf.dll, hkxddrh.dll, aserg.dll, zdfgf.dll, bnmdgh.dll, bxdfh.dll, cncft. dll, cfjzsxn.dll, dfbghj.dll, dgbzd.dll, nhjsd.dll, hjmasd.dll, xbfhxd.dll, bngyjuf.dll, xdgxr.dll, bnmft.dll, xcvgu.dll, szggfj.dll, zsggixd.dll, bnhugk.dll, xdhuk.dll, dxgjgfy.dll, fgjderg.dll, asfhjy.dll, swegfuj.dll, cxfhf.dll, hjukrt.dll, dhdhvv. dll, vdfthjk.dll, xdfrg.dll, zsgjfh.dll, cvbyj.dll, nmxdt.dll, bhdryn.dll, nbkfy.dll, xsdjd.dll, xuxdg.dll, nmdgkn.dll, xdhts.dll, vcnyd.dll, zsdth.dll, oalddpnm.dll, ljonfemf.dll, elcgnnmo.dll, hdikmdap.dll, mnhgmmhb.dll, lhlemnbl.dll, ddp

O21 - SSODL: 6710661B - (6710661B-71CA-4B6B-98D3-0DA4D0547CF8) - C: \ WINDOWS \ system32 \ mnhgmmhb.dll

O21 - SSODL: 515E67B5 - (515E67B5-A420-4A95-B13C-A4FF7FA819D4) - C: \ WINDOWS \ system32 \ lhlemnbl. dll

O21 - SSODL: 1D246DA9 - (1D246DA9-72D5-4C6A-BE2B-C08C4F9FDC3A) - C: \ WINDOWS \ system32 \ hdikmdap.dll

O21 - SSODL: E5C07768 - (E5C07768-3689-4FE4-A701-89C27D75CB98) - C: \ WINDOWS \ system32 \ elcgnnmo.dll

O21 - SSODL: 5387FE6F - (5387FE6F-F256-4F9B-B5D2-59BE67D0E0DF) - C: \ WINDOWS \ system32 \ ljonfemf.dll

O21 - SSODL: 8A5DD976 - (8A5DD976-4A04-43AB-B4F4-94C56CC72E16) - C: \ WINDOWS \ system32 \ oalddpnm. dll

O21 - SSODL: DD9564D4 - (DD9564D4-5959-4111-B69D-BCBCEFF2F1AB) - C: \ WINDOWS \ system32 \ ddplmkdk.dll

oh non, j'ai déjà essayé de supprimer les postes ci-dessus et dont la clé de registre, mais le sont de nouveau reapearing Log:
Logfile de Trend Micro HijackThis V2.0.0 (BETA)
Scan sauvé à 16:13:31, le 2009-1-20
Plate-forme: Windows XP SP2 (WinNT 5.01.2600)
Boot mode: Normal

Running processes:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ csrss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services. exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ system32 \ LEXBCES.EXE
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ WINDOWS \ system32 \ userinit.exe
C: \ WINDOWS \ explorer.exe
C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe
C: \ WINDOWS \ system32 \ conime. exe
C: \ Program Files \ StormII \ stormliv.exe
C: \ WINDOWS \ system32 \ cmd.exe
C: \ WINDOWS \ system32 \ ntfrs.exe
C: \ WINDOWS \ system32 \ nvsvc32.exe
C: \ WINDOWS \ system32 \ oodag.exe
C: \ Program Files \ Pure Networks \ Network Magic \ nmsrvc.exe
C: \ WINDOWS \ system32 \ ctfmon.exe
C: \ Program Files \ WinZip \ WZQKPICK.EXE
C: \ WINDOWS \ system32 \ wscntfy.exe
C: \ WINDOWS \ System32 \ alg.exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ WINDOWS \ system32 \ wuauclt. exe
C: \ DOCUME ~ 1 \ ken \ LOCALS ~ 1 \ Temp \ 247655
C: \ DOCUME ~ 1 \ ken \ LOCALS ~ 1 \ Temp \ 278001
C: \ WINDOWS \ system32 \ svteppsk.exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ Program Files \ Fichiers communs \ Microsoft Shared \ Windows Live \ WLLoginProxy.exe
C: \ Documents and Settings \ ken \ Desktop \ HiJackThis_v2.exe

O1 - Hosts: 127.0.0.2 ymsdasdw1.cn
O1 - Hosts: 127.0.0.3 h96b.info
O1 - Hosts: 127.0.0.0 *peach*.zttwp.cn
O1 - Hosts: 127.0.0. 0 http://www.hackerbf.cn
O1 - Hosts: 127.0.0.0 ww.popdm.cn
O1 - Hosts: 127.1.1.1 bbt.etimes888.com
O1 - Hosts: 127.1.1.1 219.147.13.53
O1 - Hosts: 127.1.1.1 20068080.cn
O1 - Hosts: 127.1.1.1 l.neter888.cn
O1 - Hosts: 127.1.1.1 stat.untang.com
O1 - Hosts: 127.1.1.1 http://www. ikdy.cn
O1 - Hosts: 127.0.0.0 geekbyfeng.cn
O1 - Hosts: 127.0.0.0 121.14.101.68
O1 - Hosts: 127.0.0.0 ppp.etimes888.com
O1 - Hosts: 127.0.0.0 http://www.bypk.com
O1 - Hosts: 127.0.0.0 CSC3-2004-crl.verisign.com
O1 - Hosts: 127.0.0.0 udp.hjob123.com
O1 - Hosts: 127.1.1.1 999.hfdy2828.com
O1 - Hosts: 127.1.1. 1 http://www.hfdy2929.com
O1 - Hosts: 127.1.1.1 http://www.xiazaide1.cn
O1 - Hosts: 127.1.1.1 http://www.vuf51579.cn
O1 - Hosts: 127.1.1.1 wm.eo2q.cn
O1 - Hosts: 127.1.1.1 d.www-263.com
O1 - Hosts: 127.1.1. 1 http://www.ssy1688.cn
O1 - Hosts: 127.1.1.1 121.12.173.218
O1 - Hosts: 127.1.1.1 qq.18i16.net
O1 - Hosts: 127.1.1.1 a.baidu-6661.com
O1 - Hosts: 127.1.1.1 http://www.vuf51579.cn
O1 - Hosts: 127.1.1.1 http://www. 1079223105.cn
O1 - Hosts: 127.1.1.1 home.xzx6.cn
O1 - Hosts: 127.1.1.1 top.fgc3.cn
O1 - Hosts: 127.1.1.1 165.246.44.228
O1 - Hosts: 127.1.1.1 wwww.ttfafa.com
O1 - Hosts: 127.1.1.1 pa.tt-09.com
O1 - Hosts: 127.0.0.2 bnasnd83nd.cn
O1 - Hosts: 127.0.0.0 http://www.gamehacker.com.cn
O1 - Hosts: 127.0.0.0 gamehacker.com.cn
O1 - Hosts: 127.1.1. 1 http://www.cctv-100008.cn
O1 - Hosts: 127.1.1.1 222.73.208.141
O1 - Hosts: 127.0.0.3 adlaji.cn
O1 - Hosts: 127.1.1.1 aiyyw.com
O1 - Hosts: 127.1.1.1 bnasnd83nd.cn
O1 - Hosts: 127.0.0.0 user1.12-27.net
O1 - Hosts: 127.0.0.0 fengent.cn
O1 - Hosts: 127.0.0.0 http://www. sony888.cn
O1 - Hosts: 127.0.0.0 user1.asp-33.cn
O1 - Hosts: 127.0.0.0 http://www.netkwek.cn
O1 - Hosts: 127.0.0.0 ymsdkad6.cn
O1 - Hosts: 127.0.0.0 http://www.lkwueir.cn
O1 - Hosts: 127.0.1.1 user1.23-17.net
O1 - Hosts: 127.0.0.0 upa.luzhiai.net
O1 - Hosts: 127.0.0. 0 http://www.guccia.net
O1 - Hosts: 127.0.0.0 4m9mnlmi.cn
O1 - Hosts: 127.0.0.0 mm119mkssd.cn
O1 - Hosts: 127.0.0.0 61.128.171.115:8080
O1 - Hosts: 127.0.0.0 http://www.1119111.com
O1 - Hosts: 127.0.0.0 win.nihao69.cn
O1 - Hosts: 127.0.0.0 puc.lianxiac.net
O1 - Hosts: 127.0.0.0 pud.lianxiac.net
O1 - Hosts: 127.0.0.0 210,76. 0,133
O1 - Hosts: 127.0.0.0 61.166.32.2
O1 - Hosts: 127.0.0.0 218.92.186.27
O1 - Hosts: 127.0.0.0 http://www.fsfsfag.cn
O1 - Hosts: 127.0.0.0 ovo.ovovov.cn
O1 - Hosts: 127.0.0.0 dw.com.com
O1 - Hosts: 127.0.0.0 t.myblank.cn
O1 - Hosts: 127.0.0.0 x.myblank.cn
O1 - Hosts: 127.0.0.0 qq-xing.com.cn
O1 - Hosts: 127.0.0.0 59.125.231. 177:17777
O2 - BHO: Adobe PDF Reader Link Helper - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Fichiers communs \ Adobe \ Acrobat \ ActiveX \ AcroIEHelper.dll
O2 - BHO: (no name) - (140BD8E3-C167-11D4-B4A3-080000180323) - (no file)
O2 - BHO: RealPlayer Téléchargez et Record Plugin for Internet Explorer - (3049C3E9-B461-4BC5-8870-4C09146192CA) - C: \ Program Files \ Real \ RealPlayer \ rpbrowserrecordplugin. dll
O2 - BHO: SSVHelper Class - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files \ Java \ jre1.6.0_07 \ bin \ ssv.dll
O2 - BHO: (no name) - (7E853D72-626A-48EC-A868-BA8D5E23E045) - (no file)
O2 - BHO: Windows Live Sign-in Helper - (9030D464-4C02-4ABF-8ECC-5164760863C6) - C: \ Program Files \ Fichiers communs \ Microsoft Shared \ Windows Live \ WindowsLiveLogin. dll
O2 - BHO: FlashGetBHO - (b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0) - C: \ Documents and Settings \ All Users \ Application Data \ FlashGetBHO \ FlashGetBHO.dll
O2 - BHO: Windows Live Toolbar Helper - (BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0) - C: \ Program Files \ Windows Live Toolbar \ msntb.dll
O2 - BHO: QQHelper Class - (BF182DBF-1283-4BD3-86EE-D3239228770C) - C: \ Program Files \ Internet Explorer \ Connection Wizard \ QQZoneHelper. dll
O3 - Toolbar: Windows Live Toolbar - (BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0) - C: \ Program Files \ Windows Live Toolbar \ msntb.dll
O4 - HKLM \ .. \ Run: [PHIME2002ASync] C: \ WINDOWS \ system32 \ IME \ TINTLGNT \ TINTSETP.EXE / SYNC
O4 - HKLM \ .. \ Run: [PHIME2002A] C: \ WINDOWS \ system32 \ IME \ TINTLGNT \ TINTSETP.EXE / IMEName
O4 - HKLM \ .. \ Run: [NvCplDaemon] RUNDLL32.EXE C: \ WINDOWS \ system32 \ NvCpl.dll, NvStartup
O4 - HKCU \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - HKLM \ .. \ Policies \ Explorer \ Run: [Alcmtr] anymie360.exe
O4 - HKUS \ S-1-5-18 \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon.exe (User "SYSTEM")
O4 - HKUS \. DEFAULT \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon.exe (User utilisateur par défaut)
O4 - Global Startup: WinZip Quick Pick.lnk = C: \ Program Files \ WinZip \ WZQKPICK.EXE
O8 - Extra du menu contextuel: & Windows Live Search -- res://C : \ Program Files \ Windows Live Toolbar \ msntb.dll / recherche. htm
O9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_07 \ bin \ ssv.dll
O9 - Extra "Outils" menuitem: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_07 \ bin \ ssv.dll
O9 - Extra button: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) -% windir% \ Network Diagnostic \ xpnetdiag.exe (file missing)
O9 - Extra "Outils" menuitem: @ xpsp3res. dll, -20001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) -% windir% \ Network Diagnostic \ xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs. exe
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O16 - DPF: Tornado 21 -- http://origin.games.yahoo.net/games/cli ... 21t0_x.cab
O16 - DPF: (05C1004E-2596-48E5-8E26-39362985EEB9) (MMCPlayer Class) -- http://p3p.sogou.com/MMCShell.cab
O16 - DPF: (05D96F71-87C6-11D3-9BE4-00902742D6E0) (QuickPlace Class) -- http://crystal.atkinson.yorku.ca/qp2.cab
O16 - DPF: (17492023-C23A-453E-A040-C7C580BBF700) (Windows Genuine Advantage Validation Tool) -- http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: (238F6F83-B8B4-11CF-8771-00A024541EE3) (Citrix ICA Client) -- http://a516.g.akamai.net/f/516/25175/7d ... o-eula.cab
O16 - DPF: (67A5F8DC-1A4B-4D66 -9F24-A704AD929EEE) (System Requirements Lab) -- http://www.nvidia.com/content/DriverDow ... eqlab2.cab
O21 - SSODL: A1F100C4 - (A1F100C4-691B-469E-88F1-01D481D0D0FF) - C: \ WINDOWS \ system32 \ ahfhggck.dll
O21 - SSODL: 7F418A20 - (7F418A20-BC50-4F23-B4F4-1AF00E761F8E) - C: \ WINDOWS \ system32 \ nfkhoaig.dll
O21 - SSODL: 5AD75A20 - (5AD75A20-D7FC-4B54-A106-F6E5A60A78BB) - C: \ WINDOWS \ system32 \ ladnlaig.dll
O21 - SSODL: E65C3E02 - (E65C3E02-4363-4EA7-B474-1B632773DB78) - C: \ WINDOWS \ system32 \ emlcjegi. dll
O21 - SSODL: C6DFC593 - (C6DFC593-2385-48CF-9D3C-995ABE5C9C40) - C: \ WINDOWS \ system32 \ cmdfclpj.dll
O21 - SSODL: 390F440B - (390F440B-248E-4311-AF59-E2FC13BFEFB9) - C: \ WINDOWS \ system32 \ jpgfkkgb.dll
O21 - SSODL: FC308B54 - (FC308B54-FAF6-4477-AA6D-C486DA5F7F2D) - C: \ WINDOWS \ system32 \ fcjgoblk.dll

--
Fin de la file - 8462 bytes

La seule autre chose que je puisse recommander est d'essayer de faire un point de restauration. Sinon, vous devez vous trouver quelqu'un pour vous aider localement. Le PC est trop infecté de continuer dans le forum. Je dois être à l'avant de la machine à ce point.