Virus detecte

merci je l'ai installe mais c koi?
il supprime tout seul y a rien besoin de faire?

ok je l'ai installe et maintenant il y a une grande liste je dois faire quoi parce que c'est en anglais
merci

j'ai copie mais par contre je ne trouve pas l'adresse du forum et le truc bleu
aide moi stp

ok mais tu as l'adresse du forum celle que tu m'as donne ce n'est pas le forum parce que j'ai fait un truc et c'est un espece de tableau ca dure longtemps il me detecte tout les virus là et ma les supprime
bitdefender online scanner c ca?

oui je l'ai sur mon bureau

ben j'ai fait double clic et j'ai le truc avec des cases ou y a do a system scan and.. ect

ok j'ai copie

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:05:43, on 27/02/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Unlocker\UnlockerAssistant.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
R3 - URLSearchHook: (no name) - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - (no file)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\winlogon.exe
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe"
O4 - HKLM\..\Run: [Flash Driver] C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\winlogon.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'Default user')
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {E8F628B5-259A-4734-97EE-BA914D7BE941} (Driver Agent ActiveX Control) - https://driveragent.com/files/driveragent.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe

bonjour,he oui dsl

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:20:58, on 01/03/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Unlocker\UnlockerAssistant.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
R3 - URLSearchHook: (no name) - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - (no file)
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'Default user')
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {E8F628B5-259A-4734-97EE-BA914D7BE941} (Driver Agent ActiveX Control) - https://driveragent.com/files/driveragent.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe

no problemo
il reste encore des virus?

ComboFix 08-03-01.3 - Administrateur 2008-03-04 18:54:26.2 - NTFSx86
Endroit: C:\Documents and Settings\Administrateur\Bureau\Combo-Fix.exe

[color=red][b]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !![/b][/color]
.

((((((((((((((((((((((((((((( Fichiers créés 2008-02-04 to 2008-03-04 ))))))))))))))))))))))))))))))))))))
.

2008-03-04 15:27 . 2008-03-04 15:27 <REP> d-------- C:\WINDOWS\LastGood
2008-03-01 19:02 . 2008-03-01 19:02 <REP> d---s---- C:\Documents and Settings\David\UserData
2008-03-01 10:38 . 2008-03-01 10:38 244 --ah----- C:\sqmnoopt04.sqm
2008-03-01 10:38 . 2008-03-01 10:38 244 --ah----- C:\sqmdata04.sqm
2008-02-28 14:52 . 2008-02-28 14:52 244 --ah----- C:\sqmnoopt03.sqm
2008-02-28 14:52 . 2008-02-28 14:52 244 --ah----- C:\sqmdata03.sqm
2008-02-27 20:19 . 2004-08-19 16:09 578,048 --a--c--- C:\WINDOWS\system32\dllcache\user32.dll
2008-02-27 20:16 . 2008-02-27 20:16 <REP> d-------- C:\WINDOWS\ERUNT
2008-02-27 19:49 . 2008-02-27 20:47 <REP> d-------- C:\SDFix
2008-02-27 12:54 . 2008-02-27 13:38 <REP> d-------- C:\WINDOWS\BDOSCAN8
2008-02-27 12:21 . 2008-02-27 12:21 <REP> d-------- C:\Program Files\Trend Micro
2008-02-26 20:00 . 2008-02-26 20:00 <REP> d-------- C:\Program Files\Atari
2008-02-26 14:18 . 2008-02-26 14:18 244 --ah----- C:\sqmnoopt02.sqm
2008-02-26 14:18 . 2008-02-26 14:18 244 --ah----- C:\sqmdata02.sqm
2008-02-25 17:51 . 2007-09-24 22:31 69,632 --a------ C:\WINDOWS\system32\javacpl.cpl
2008-02-25 16:49 . 2008-02-25 16:49 244 --ah----- C:\sqmnoopt01.sqm
2008-02-25 16:49 . 2008-02-25 16:49 244 --ah----- C:\sqmdata01.sqm
2008-02-25 14:29 . 2008-02-25 14:29 <REP> dr------- C:\Documents and Settings\LocalService\Favoris
2008-02-24 19:20 . 2008-02-28 12:48 <REP> dr------- C:\Documents and Settings\Administrateur\Favoris
2008-02-24 18:57 . 2008-02-24 18:57 244 --ah----- C:\sqmnoopt00.sqm
2008-02-24 18:57 . 2008-02-24 18:57 244 --ah----- C:\sqmdata00.sqm
2008-02-24 13:24 . 2008-02-24 13:24 9,296 --a------ C:\WINDOWS\system32\iumdfa.exe
2008-02-22 17:56 . 2008-02-22 17:56 <REP> d-------- C:\Program Files\SigmaTel
2008-02-22 15:17 . 2008-02-22 15:17 23,600 --a------ C:\WINDOWS\system32\drivers\TVICHW32.SYS
2008-02-22 15:11 . 2008-02-22 15:11 <REP> d-------- C:\Documents and Settings\Administrateur\Application Data\Uniblue
2008-02-21 13:32 . 2008-02-26 14:26 <REP> d-------- C:\Documents and Settings\David\Application Data\La Bataille pour la Terre du Milieu ™ II
2008-02-21 10:30 . 2008-03-01 10:37 <REP> d-------- C:\Documents and Settings\David\Application Data\teamspeak2
2008-02-21 10:26 . 2006-08-21 17:30 <REP> d--h----- C:\Documents and Settings\David\Voisinage réseau
2008-02-21 10:26 . 2006-08-21 17:30 <REP> d--h----- C:\Documents and Settings\David\Voisinage d'impression
2008-02-21 10:26 . 2008-01-13 16:36 <REP> d--h----- C:\Documents and Settings\David\Modèles
2008-02-21 10:26 . 2008-02-21 10:34 <REP> dr------- C:\Documents and Settings\David\Mes documents
2008-02-21 10:26 . 2006-08-21 17:30 <REP> dr------- C:\Documents and Settings\David\Menu Démarrer
2008-02-21 10:26 . 2008-03-01 19:03 <REP> dr------- C:\Documents and Settings\David\Favoris
2008-02-21 10:26 . 2008-02-24 19:13 <REP> d-------- C:\Documents and Settings\David\Bureau
2008-02-21 09:57 . 2008-02-24 13:32 <REP> d-------- C:\Program Files\Unlocker
2008-02-21 09:51 . 2008-02-21 09:51 <REP> d-------- C:\Program Files\SafeSoft
2008-02-20 12:54 . 2008-03-02 17:48 <REP> d-------- C:\Documents and Settings\Administrateur\Application Data\teamspeak2
2008-02-20 12:51 . 2008-02-21 11:05 <REP> d-------- C:\Program Files\Teamspeak2_RC2
2008-02-20 12:51 . 2008-02-20 12:51 34,064 --a------ C:\WINDOWS\system32\lhacm.acm
2008-02-18 11:40 . 2006-12-08 15:20 10,528,768 --a------ C:\WINDOWS\system32\RTLCPL.EXE
2008-02-18 11:40 . 2006-07-31 11:27 217,088 --a------ C:\WINDOWS\Alcrmv.exe
2008-02-18 11:40 . 2006-10-18 02:53 147,456 --a------ C:\WINDOWS\system32\RTLCPAPI.dll
2008-02-18 11:40 . 2002-02-05 13:54 141,016 --a------ C:\WINDOWS\system32\ALSNDMGR.WAV
2008-02-18 11:39 . 2006-11-17 05:40 18,804,736 --a------ C:\WINDOWS\system32\ALSNDMGR.CPL
2008-02-18 11:39 . 2008-01-24 16:36 4,127,488 -ra------ C:\WINDOWS\system32\drivers\ALCXWDM.SYS
2008-02-18 11:39 . 2007-04-16 15:28 577,536 --a------ C:\WINDOWS\SOUNDMAN.EXE
2008-02-18 11:39 . 2004-08-05 13:00 145,792 --a------ C:\WINDOWS\system32\drivers\portcls.sys
2008-02-18 11:39 . 2004-08-05 13:00 140,928 --a------ C:\WINDOWS\system32\drivers\ks.sys
2008-02-18 11:39 . 2004-08-19 16:10 130,048 --a------ C:\WINDOWS\system32\ksproxy.ax
2008-02-18 11:39 . 2004-08-05 13:00 60,288 --a------ C:\WINDOWS\system32\drivers\drmk.sys
2008-02-18 11:39 . 2004-08-05 13:00 48,640 --a------ C:\WINDOWS\system32\drivers\stream.sys
2008-02-18 11:39 . 2004-08-19 16:10 23,552 --a------ C:\WINDOWS\system32\wdmaud.drv
2008-02-18 11:39 . 2004-08-19 16:09 4,096 --a------ C:\WINDOWS\system32\ksuser.dll
2008-02-18 11:14 . 2004-08-03 23:15 145,792 --a--c--- C:\WINDOWS\system32\dllcache\portcls.sys
2008-02-18 11:14 . 2004-08-03 23:15 140,928 --a--c--- C:\WINDOWS\system32\dllcache\ks.sys
2008-02-18 11:14 . 2004-08-03 23:08 60,288 --a--c--- C:\WINDOWS\system32\dllcache\drmk.sys
2008-02-18 11:14 . 2004-08-03 23:08 48,640 --a--c--- C:\WINDOWS\system32\dllcache\stream.sys
2008-02-18 11:13 . 2008-02-18 11:39 <REP> d-------- C:\Program Files\Realtek AC97
2008-02-18 11:13 . 2006-07-31 11:19 315,392 --a------ C:\WINDOWS\alcupd.exe
2008-02-18 10:54 . 2008-02-18 10:54 <REP> d-------- C:\Documents and Settings\All Users\Application Data\nView_Profiles
2008-02-18 09:14 . 2008-02-19 11:06 8 --a------ C:\WINDOWS\system32\nvModes.dat
2008-02-16 18:38 . 2008-02-16 18:40 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Go Go Gourmet
2008-02-16 12:17 . 2008-02-16 12:17 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Yahoo! Companion
2008-02-15 18:23 . 2008-02-18 09:09 163,353 --a------ C:\WINDOWS\system32\nvapps.xml
2008-02-15 17:59 . 2008-02-16 09:11 <REP> d-------- C:\WINDOWS\nview
2008-02-15 17:59 . 2008-02-15 18:00 <REP> d-------- C:\WINDOWS\NV31603164.TMP
2008-02-15 17:59 . 2007-12-05 01:41 356,352 --a------ C:\WINDOWS\system32\nvudisp.exe
2008-02-15 17:59 . 2007-12-05 01:41 17,737 --a------ C:\WINDOWS\system32\nvdisp.nvu
2008-02-15 17:45 . 2002-07-24 03:30 32,128 --a------ C:\WINDOWS\system32\drivers\VIAAGP1.SYS
2008-02-15 17:25 . 2008-02-25 18:08 <REP> d-------- C:\Program Files\AIDA32 - Personal System Information
2008-02-12 11:26 . 2001-08-23 17:46 137,216 --a--c--- C:\WINDOWS\system32\dllcache\atidrae.dll
2008-02-12 11:26 . 2001-08-23 17:46 137,216 --a------ C:\WINDOWS\system32\atidrae.dll
2008-02-12 11:26 . 2001-08-23 16:59 75,392 --a------ C:\WINDOWS\system32\drivers\atimpae.sys
2008-02-12 11:26 . 2001-08-23 16:59 75,392 --a--c--- C:\WINDOWS\system32\dllcache\atimpae.sys
2008-02-09 13:28 . 2008-02-09 13:28 <REP> dr------- C:\Documents and Settings\NetworkService\Favoris
2008-02-05 21:10 . 2008-02-05 21:09 28,224 --a------ C:\WINDOWS\system32\4BG2LwAG.exe
2008-02-05 21:10 . 2008-02-05 21:10 166 --a------ C:\key.shm

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-02-26 19:00 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-02-25 16:52 --------- d-----w C:\Program Files\Java
2008-02-20 18:30 --------- d-----w C:\Documents and Settings\Administrateur\Application Data\uTorrent
2008-02-16 18:38 --------- d---a-w C:\Documents and Settings\All Users\Application Data\TEMP
2008-02-16 08:59 --------- d-----w C:\Documents and Settings\Administrateur\Application Data\La Bataille pour la Terre du Milieu ™ II
2008-02-15 20:29 --------- d-----w C:\Program Files\Yahoo!
2008-02-15 16:56 --------- d-----w C:\Program Files\Fichiers communs\InstallShield
2008-02-07 19:44 --------- d-----w C:\Program Files\uTorrent
2008-02-02 10:28 --------- d-----w C:\Program Files\SystemRequirementsLab
2008-02-01 20:23 --------- d-----w C:\Program Files\iTunes
2008-02-01 20:23 --------- d-----w C:\Program Files\iPod
2008-02-01 20:19 --------- d-----w C:\Program Files\QuickTime
2008-01-30 16:01 --------- d-----w C:\Documents and Settings\Administrateur\Application Data\Atari
2008-01-27 16:42 --------- d-----w C:\Documents and Settings\Administrateur\Application Data\Image Zone Express
2008-01-27 15:28 --------- d-----w C:\Program Files\DivX
2008-01-20 17:08 --------- d-----w C:\Program Files\pspvideo9
2008-01-20 17:08 --------- d-----w C:\Program Files\AviSynth 2.5
2008-01-18 19:51 --------- d-----w C:\Program Files\CCleaner
2008-01-15 17:12 --------- d-----w C:\Documents and Settings\Administrateur\Application Data\Home Sweet Home
2008-01-15 13:29 --------- d-----w C:\Documents and Settings\All Users\Application Data\NannyMania
2008-01-14 19:43 --------- d-----w C:\Program Files\Electronic Arts
2008-01-14 11:48 --------- d-----w C:\Program Files\Windows Live
2008-01-13 17:09 --------- d--h--r C:\Documents and Settings\Administrateur\Application Data\SecuROM
2008-01-07 11:37 --------- d-----w C:\Program Files\Fichiers communs\Symantec Shared
2008-01-07 11:36 --------- d-----w C:\Program Files\Executive Software
.

((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-19 16:09 15360]
"msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [2007-10-18 11:34 5724184]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-06-11 18:14 68856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-12-04 14:00 79224]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2008-01-10 15:27 385024]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2008-01-15 03:22 267048]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2007-12-05 01:41 8523776]
"nwiz"="nwiz.exe" [2007-12-05 01:41 1626112 C:\WINDOWS\system32\nwiz.exe]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2007-12-05 01:41 81920]
"UnlockerAssistant"="C:\Program Files\Unlocker\UnlockerAssistant.exe" [2006-09-07 18:19 15872]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 00:11 132496]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-19 16:09 15360]
"msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [2007-10-18 11:34 5724184]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"nlsf"="cmd.exe" [2004-08-19 16:09 400896 C:\WINDOWS\system32\cmd.exe]
"tscuninstall"="C:\WINDOWS\system32\tscupgrd.exe" [2004-08-19 14:52 44544]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"DisableStatusMessages"= 1 (0x1)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 1 (0x1)

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoInternetIcon"= 1 (0x1)
"NoResolveTrack"= 1 (0x1)

[HKLM\~\startupfolder\C:^Documents and Settings^Administrateur^Menu Démarrer^Programmes^Démarrage^Y'z Toolbar.lnk]
path=C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Démarrage\Y'z Toolbar.lnk
backup=C:\WINDOWS\pss\Y'z Toolbar.lnkStartup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Adobe Reader Speed Launch.lnk]
path=C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Adobe Reader Speed Launch.lnk
backup=C:\WINDOWS\pss\Adobe Reader Speed Launch.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^HP Digital Imaging Monitor.lnk]
path=C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\HP Digital Imaging Monitor.lnk
backup=C:\WINDOWS\pss\HP Digital Imaging Monitor.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
--a------ 2004-08-19 16:09 15360 C:\WINDOWS\system32\ctfmon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
--a------ 2006-02-18 19:41 49152 C:\Program Files\HP\HP Software Update\HPWuSchd2.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IncrediMail]
--a------ 2007-07-19 09:54 208946 C:\Program Files\IncrediMail\bin\IncMail.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
--a------ 2008-01-15 03:22 267048 C:\Program Files\iTunes\iTunesHelper.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogProtect]
--a------ 2006-06-20 16:28 2348544 C:\Program Files\LogProtect\logprotect.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
--------- 2004-10-13 17:24 1694208 C:\Program Files\Messenger\msmsgs.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
--a------ 2007-10-18 11:34 5724184 C:\Program Files\Windows Live\Messenger\msnmsgr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PSPVideo9]
--a------ 2005-10-30 01:56 606208 C:\Program Files\pspvideo9\pspVideo9.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
--a------ 2008-01-10 15:27 385024 C:\Program Files\QuickTime\qttask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
--a------ 2004-11-02 13:24 32768 C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
--a------ 2007-09-25 00:11 132496 C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SweetIM]
-ra------ 2006-12-27 15:53 73840 C:\Program Files\Macrogaming\SweetIM\SweetIM.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
--a------ 2007-06-11 18:14 68856 C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Synchronization Manager]
--a------ 2004-08-19 16:09 144384 C:\WINDOWS\system32\mobsync.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
-ra------ 2003-03-17 17:20 569344 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPLpr]
-ra------ 2003-03-17 17:21 110592 C:\Program Files\Synaptics\SynTP\SynTPLpr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\updateMgr]
-ra------ 2006-03-30 15:45 313472 C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\WINDOWS\\system32\\mmc.exe"=
"C:\\Program Files\\eMule\\emule.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqnrs08.exe"=
"C:\\Program Files\\VideoLAN\\VLC\\vlc.exe"=
"C:\\Program Files\\uTorrent\\utorrent.exe"=
"C:\\Program Files\\IncrediMail\\bin\\ImApp.exe"=
"C:\\Program Files\\IncrediMail\\bin\\IncMail.exe"=
"C:\\Program Files\\IncrediMail\\bin\\ImpCnt.exe"=
"C:\\Program Files\\IncrediMail\\bin\\ImLc.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"D:\\photos\\game.dat"=
"C:\\Program Files\\iTunes\\iTunes.exe"=
"D:\\photos\\patchget.dat"=
"C:\\WINDOWS\\system32\\dpvsetup.exe"=
"C:\\WINDOWS\\system32\\rundll32.exe"=

S3 Boonty Games;Boonty Games;"C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe" [2007-12-27 17:54]
S3 gel90xne;gel90xne;C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\gel90xne.sys []

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\E]
\Shell\AutoRun\command - E:\Autorun.exe

.
Contenu du dossier 'Scheduled Tasks/Tâches planifiées'
"2008-02-15 20:10:12 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"
- C:\Program Files\Apple Software Update\SoftwareUpdate.exe
"2008-02-05 20:10:15 C:\WINDOWS\Tasks\At1.job"
- C:\WINDOWS\system32\4BG2LwAG.exe
"2008-02-20 08:00:02 C:\WINDOWS\Tasks\At10.job"
- C:\WINDOWS\system32\4BG2LwAG.exe
"2008-02-26 09:00:02 C:\WINDOWS\Tasks\At11.job"
- C:\WINDOWS\system32\4BG2LwAG.exe
"2008-03-01 10:00:37 C:\WINDOWS\Tasks\At12.job"
- C:\WINDOWS\system32\4BG2LwAG.exe
"2008-03-01 11:00:59 C:\WINDOWS\Tasks\At13.job"
- C:\WINDOWS\system32\4BG2LwAG.exe
"2008-03-02 12:00:08 C:\WINDOWS\Tasks\At14.job"
- C:\WINDOWS\system32\4BG2LwAG.exe
"2008-03-02 13:01:04 C:\WINDOWS\Tasks\At15.job"
- C:\WINDOWS\system32\4BG2LwAG.exe
"2008-03-02 14:00:44 C:\WINDOWS\Tasks\At16.job"
- C:\WINDOWS\system32\4BG2LwAG.exe
"2008-03-04 15:00:02 C:\WINDOWS\Tasks\At17.job"
- C:\WINDOWS\system32\4BG2LwAG.exe
"2008-03-04 16:00:02 C:\WINDOWS\Tasks\At18.job"
- C:\WINDOWS\system32\4BG2LwAG.exe
"2008-03-04 17:00:24 C:\WINDOWS\Tasks\At19.job"
- C:\WINDOWS\system32\4BG2LwAG.exe
"2008-02-05 20:10:15 C:\WINDOWS\Tasks\At2.job"
- C:\WINDOWS\system32\4BG2LwAG.exe
"2008-03-04 18:00:04 C:\WINDOWS\Tasks\At20.job"
- C:\WINDOWS\system32\4BG2LwAG.exe
"2008-03-01 19:00:03 C:\WINDOWS\Tasks\At21.job"
- C:\WINDOWS\system32\4BG2LwAG.exe
"2008-02-27 20:00:02 C:\WINDOWS\Tasks\At22.job"
- C:\WINDOWS\system32\4BG2LwAG.exe
"2008-02-08 21:00:37 C:\WINDOWS\Tasks\At23.job"
- C:\WINDOWS\system32\4BG2LwAG.exe
"2008-02-05 20:10:15 C:\WINDOWS\Tasks\At24.job"
- C:\WINDOWS\system32\4BG2LwAG.exe
"2008-02-05 20:10:15 C:\WINDOWS\Tasks\At3.job"
- C:\WINDOWS\system32\4BG2LwAG.exe
"2008-02-05 20:10:15 C:\WINDOWS\Tasks\At4.job"
- C:\WINDOWS\system32\4BG2LwAG.exe
"2008-02-05 20:10:15 C:\WINDOWS\Tasks\At5.job"
- C:\WINDOWS\system32\4BG2LwAG.exe
"2008-02-05 20:10:15 C:\WINDOWS\Tasks\At6.job"
- C:\WINDOWS\system32\4BG2LwAG.exe
"2008-02-05 20:10:15 C:\WINDOWS\Tasks\At7.job"
- C:\WINDOWS\system32\4BG2LwAG.exe
"2008-02-05 20:10:15 C:\WINDOWS\Tasks\At8.job"
- C:\WINDOWS\system32\4BG2LwAG.exe
"2008-02-05 20:10:15 C:\WINDOWS\Tasks\At9.job"
- C:\WINDOWS\system32\4BG2LwAG.exe
.
**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-03-04 19:04:01
Windows 5.1.2600 Service Pack 2 NTFS

Balayage processus cachés ...

Balayage caché autostart entries ...

Balayage des fichiers cachés ...

Scan terminé avec succès
Les fichiers cachés: 2

**************************************************************************
.
Temps d'accomplissement: 2008-03-04 19:08:49
ComboFix-quarantined-files.txt 2008-03-04 18:08:39
ComboFix2.txt 2008-03-02 16:04:54
.
2008-03-04 18:01:44 --- E O F ---

ok merci je te repondrai demain a midi