VIRUS - voici mon rapport Hijackthis

Bon voila, tout est enfin terminé. Les 2 nouveaux logiciels ont trouvés plusieurs trucs suspects.

Ca a mis les fichiers suspects en quarantaine. Je les laisse en quarantaine indéfiniment, c'est pas grave ? Il ne faut pas les effacer ?



RAPPORT AVG Anti-Spyware:


_______________________________




---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 21:42:04 21/03/2008

+ Résultat de l'analyse:



C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP573\A0173408.exe -> Backdoor.Agent.cwd : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP585\A0178844.exe -> Backdoor.IRCBot.bcr : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP590\A0179909.exe -> Backdoor.IRCBot.bcr : Nettoyé et sauvegardé (mise en quarantaine).


Fin du rapport

Pas de soucis

Voila c'est fait :)

L'erreur ne vient plus. Tout semble rentré dans l'ordre.


Rapport combofix:


__________________
ComboFix 08-03-20.5 - Romain 2008-03-21 22:38:47.3 - NTFSx86 MINIMAL
Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.1745 [GMT 1:00]
Endroit: C:\Documents and Settings\Romain\Bureau\ComboFix.exe
Command switches used :: C:\Documents and Settings\Romain\Bureau\CFScript.txt

[color=red][b]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !![/b][/color]

FILE ::
C:\WINDOWS\system32\osdlmhtv.dll
.
TimedOut: progfile.dat

((((((((((((((((((((((((((((( Fichiers créés 2008-02-21 to 2008-03-21 ))))))))))))))))))))))))))))))))))))
.

2008-03-21 12:32 . 2008-03-21 12:32 <REP> d-------- C:\Documents and Settings\Romain\Application Data\Grisoft
2008-03-21 12:31 . 2008-03-21 12:31 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Grisoft
2008-03-21 12:31 . 2007-05-30 13:10 10,872 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
2008-03-21 12:19 . 2008-03-21 12:19 <REP> d-------- C:\Program Files\Avira
2008-03-21 12:19 . 2008-03-21 12:19 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Avira
2008-03-21 10:40 . 2008-03-21 10:40 1,599,082 --a------ C:\ComboFix.exe
2008-03-20 15:34 . 2008-03-21 14:03 <REP> d-------- C:\VundoFix Backups
2008-03-20 14:38 . 2008-03-20 14:39 <REP> d-------- C:\Program Files\TuneUp Utilities 2008
2008-03-20 14:38 . 2008-03-20 14:38 <REP> d-------- C:\Documents and Settings\Romain\Application Data\TuneUp Software
2008-03-20 14:38 . 2008-03-20 14:38 <REP> d-------- C:\Documents and Settings\All Users\Application Data\TuneUp Software
2008-03-20 14:38 . 2008-03-20 14:38 307,968 --a------ C:\WINDOWS\system32\TuneUpDefragService.exe
2008-03-20 14:38 . 2008-02-27 13:15 28,416 --a------ C:\WINDOWS\system32\uxtuneup.dll
2008-03-20 14:37 . 2008-03-20 14:37 <REP> d-------- C:\Program Files\Fichiers communs\Java
2008-03-20 14:37 . 2008-02-22 02:33 69,632 --a------ C:\WINDOWS\system32\javacpl.cpl
2008-03-20 11:52 . 2008-03-20 11:53 102,601,398 --a------ C:\ma_base_de_registre_du_20_03_2008.reg
2008-03-20 11:48 . 2008-03-20 14:10 <REP> d-------- C:\Program Files\Hijackthis Version Française
2008-03-20 11:47 . 2008-03-20 14:45 <REP> d-------- C:\Program Files\Trend Micro
2008-03-17 00:00 . 2008-03-17 00:00 39,936 --a------ C:\WINDOWS\system32\skeysw.exe
2008-03-16 23:50 . 2008-03-16 23:50 <REP> d-------- C:\Program Files\TeamSpeak3
2008-03-16 22:08 . 2008-03-16 22:08 754 --a------ C:\WINDOWS\WORDPAD.INI
2008-03-16 09:06 . 2008-03-16 23:38 774 ---hs---- C:\WINDOWS\system32\pojauixb.ini
2008-03-15 06:08 . 2008-03-16 09:06 534 ---hs---- C:\WINDOWS\system32\ekayblgf.ini
2008-03-14 12:08 . 2008-03-14 12:08 <REP> d-------- C:\Program Files\Dictionary 2000 4.0
2008-03-14 10:35 . 2008-03-14 10:35 <REP> d-------- C:\Program Files\Mobipocket.com
2008-03-14 10:35 . 2008-03-14 10:37 <REP> d-------- C:\Documents and Settings\Romain\Application Data\Mobipocket
2008-03-14 10:25 . 2008-03-14 12:34 2,044 --a------ C:\WINDOWS\Palm OS Emulator.ini
2008-03-14 10:15 . 2008-03-14 10:38 <REP> d-------- C:\Program Files\ICE Book Reader Professional
2008-03-14 10:11 . 1998-05-11 21:01 240,944 --a------ C:\WINDOWS\system32\RICHED.DLL
2008-03-14 10:11 . 2004-03-09 17:45 212,240 --a------ C:\WINDOWS\system32\RICHTX32.OCX
2008-03-13 12:45 . 2009-03-19 17:55 54,156 --ah----- C:\WINDOWS\QTFont.qfn
2008-03-13 12:45 . 2008-03-13 12:45 1,409 --a------ C:\WINDOWS\QTFont.for
2008-03-13 11:08 . 2008-03-13 11:08 37,888 --a------ C:\WINDOWS\system32\rar.exe
2008-03-13 11:02 . 2008-03-13 11:49 <REP> d-------- C:\Program Files\FlashGet
2008-03-12 13:28 . 2008-03-12 13:51 <REP> d-------- C:\Program Files\Steam
2008-03-12 11:24 . 2008-03-12 11:39 <REP> d-------- C:\Program Files\EasyPHP 2.0b1
2008-03-11 19:08 . 2008-03-12 13:53 <REP> d-------- C:\Program Files\Team Fortress 2
2008-03-10 21:59 . 2008-03-10 21:59 <REP> d-------- C:\Documents and Settings\All Users\Application Data\TomTom
2008-03-10 21:48 . 2008-03-10 21:48 <REP> d-------- C:\Documents and Settings\Romain\Application Data\InstallShield
2008-03-10 21:43 . 2008-03-10 21:43 <REP> d-------- C:\Program Files\TomTom HOME 2
2008-03-02 20:57 . 2008-03-02 20:58 <REP> d-------- C:\SIERRA
2008-03-02 20:57 . 2008-03-02 20:57 <REP> d-------- C:\Program Files\Sierra On-Line
2008-03-02 20:57 . 1998-10-30 22:21 1,022,976 --------- C:\WINDOWS\system32\SierraNW.dll
2008-03-02 20:57 . 1998-01-23 12:20 305,664 --a------ C:\WINDOWS\IsUn040c.exe
2008-03-02 20:57 . 1998-10-30 22:21 231,936 --------- C:\WINDOWS\system32\SNWValid.dll
2008-03-02 20:57 . 2008-03-02 20:58 342 --a------ C:\WINDOWS\SIERRA.INI
2008-03-02 09:34 . 2008-03-02 09:34 16,574 --a------ C:\WINDOWS\EPISMF00.SWB
2008-02-24 21:31 . 2008-02-24 21:56 <REP> d-------- C:\Documents and Settings\Romain\Application Data\U3
2008-02-24 20:54 . 2008-02-24 20:54 <REP> d-------- C:\EPSON
2008-02-24 20:19 . 1999-04-23 22:22 430,080 --a------ C:\WINDOWS\system32\MSREPL35.DLL
2008-02-24 20:19 . 1997-06-12 22:34 368,912 --a------ C:\WINDOWS\system32\VBAR332.DLL
2008-02-24 20:19 . 1998-04-24 00:00 287,504 --a------ C:\WINDOWS\system32\MSXBSE35.DLL
2008-02-24 20:19 . 1998-04-24 00:00 250,128 --a------ C:\WINDOWS\system32\MSPDOX35.DLL
2008-02-24 20:19 . 1998-04-24 00:00 250,128 --a------ C:\WINDOWS\system32\MSEXCL35.DLL
2008-02-24 20:19 . 1998-04-24 00:00 166,160 --a------ C:\WINDOWS\system32\MSLTUS35.DLL
2008-02-24 20:19 . 1998-04-24 00:00 165,648 --a------ C:\WINDOWS\system32\MSTEXT35.DLL
2008-02-24 20:19 . 1998-09-13 02:15 156,672 --a------ C:\WINDOWS\system32\FILEPROCESS.DLL
2008-02-24 20:19 . 1998-06-18 00:00 89,360 --a------ C:\WINDOWS\system32\VB5DB.DLL
2008-02-24 20:19 . 1996-12-11 00:00 46,080 --a------ C:\WINDOWS\system32\MCIWNDX.OCX
2008-02-24 20:18 . 2008-03-12 12:25 <REP> d-------- C:\Program Files\Top500
2008-02-24 10:39 . 2008-02-24 10:39 <REP> d-------- C:\Program Files\Bonjour
2008-02-24 10:32 . 2008-02-24 10:32 <REP> d-------- C:\Program Files\Fichiers communs\Macrovision Shared
2008-02-24 10:28 . 2008-02-24 10:28 <REP> d-------- C:\Documents and Settings\Romain\Application Data\Itsth
2008-02-24 10:27 . 2008-02-24 10:27 <REP> d-------- C:\Program Files\CompanyLogoDesigner
2008-02-24 10:19 . 2008-02-26 18:36 <REP> d-------- C:\Program Files\The Logo Creator v5
2008-02-24 09:39 . 2008-02-24 09:39 <REP> d-------- C:\Program Files\AAALOGO
2008-02-23 22:49 . 2008-02-23 22:49 <REP> d-------- C:\GLOBALSTAR
2008-02-23 22:49 . 1999-03-23 09:12 299,520 --a------ C:\WINDOWS\uninst.exe
2008-02-23 21:35 . 2008-02-23 21:35 <REP> d-------- C:\Program Files\WriteExpress
2008-02-21 12:54 . 2008-02-21 12:55 <REP> d-------- C:\Clef bureau Monique

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-03-20 16:41 --------- d---a-w C:\Documents and Settings\All Users\Application Data\TEMP
2009-03-20 08:05 --------- d-----w C:\Documents and Settings\Romain\Application Data\Talkback
2009-03-19 17:37 --------- d-----w C:\Program Files\SurfNoLimit
2009-03-19 15:16 --------- d-----w C:\Program Files\Teamspeak2_RC2
2009-03-18 18:37 --------- d-----w C:\Program Files\MSN Messenger
2009-03-18 18:36 --------- dcsh--w C:\Program Files\Fichiers communs\WindowsLiveInstaller
2009-03-18 18:36 --------- d-----w C:\Program Files\Windows Live
2009-03-18 18:36 --------- d-----w C:\Documents and Settings\All Users\Application Data\WLInstaller
2009-03-18 11:10 --------- d-----w C:\Program Files\Spybot - Search & Destroy
2009-03-17 10:36 --------- d-----w C:\Program Files\Lavasoft
2009-03-17 10:36 --------- d-----w C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-03-21 21:37 2,717,259 ----a-w C:\WINDOWS\system32\drivers\fwdrv.err
2008-03-21 21:20 --------- d-----w C:\Program Files\eMule
2008-03-21 21:16 --------- d-----w C:\Documents and Settings\Romain\Application Data\verbix
2008-03-21 21:04 --------- d-----w C:\Documents and Settings\Romain\Application Data\teamspeak2
2008-03-20 13:37 --------- d-----w C:\Program Files\Java
2008-03-20 13:37 --------- d-----w C:\Program Files\Fichiers communs\Wise Installation Wizard
2008-03-20 13:22 --------- d-----w C:\Program Files\Fichiers communs\Adobe
2008-03-16 19:57 --------- d-----w C:\Program Files\Windows Live Safety Center
2008-03-16 08:48 --------- d-----w C:\Program Files\SLD Codec Pack
2008-03-14 11:45 --------- d-----w C:\Program Files\Audio Editor Gold
2008-03-13 08:39 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-03-12 11:04 81,920 ----a-w C:\Documents and Settings\Romain\Application Data\ezpinst.exe
2008-03-12 11:04 47,360 ----a-w C:\Documents and Settings\Romain\Application Data\pcouffin.sys
2008-03-12 11:04 --------- d-----w C:\Program Files\VSO
2008-03-12 11:04 --------- d-----w C:\Program Files\Gabest
2008-03-12 11:04 --------- d-----w C:\Program Files\Astonsoft
2008-03-12 11:04 --------- d-----w C:\Documents and Settings\Romain\Application Data\Vso
2008-03-12 10:55 --------- d-----w C:\Program Files\mIRC
2008-03-12 10:45 --------- d-----w C:\Program Files\Google
2008-03-12 10:36 --------- d-----w C:\Program Files\AviSynth 2.5
2008-03-12 10:35 --------- d-----w C:\Program Files\Microsoft Games
2008-03-12 10:33 --------- d-----w C:\Program Files\MagicISO
2008-03-12 10:32 --------- d-----w C:\Program Files\GIMP-2.0
2008-03-10 20:49 --------- d-----w C:\Program Files\TomTom HOME
2008-03-05 14:28 0 ----a-w C:\WINDOWS\system32\drivers\lvuvc.hs
2008-02-17 10:28 --------- d-----w C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-02-16 21:33 --------- d-----w C:\Program Files\The All-Seeing Eye
2008-02-09 10:21 --------- d-----w C:\Program Files\Verbix7
2008-02-09 08:30 --------- d-----w C:\Program Files\collatinus8
2008-02-03 17:52 --------- d-----w C:\Documents and Settings\Romain\Application Data\Sonic
2008-02-03 17:52 --------- d-----w C:\Documents and Settings\Romain\Application Data\Leadertech
2008-01-29 07:56 --------- d-----w C:\Documents and Settings\Romain\Application Data\BitTorrent
2008-01-24 08:51 --------- d-----w C:\Program Files\CureROM
2008-01-14 12:52 81,920 ----a-w C:\WINDOWS\system32\frapsvid.dll
2008-01-11 05:36 44,544 ----a-w C:\WINDOWS\system32\dllcache\pngfilt.dll
2007-11-07 07:22 643,129 ----a-w C:\Program Files\unins000.exe
2007-11-07 07:22 3,992 ----a-w C:\Program Files\unins000.dat
2006-12-26 11:52 168 --sh--r C:\WINDOWS\system32\4BFE33DEE7.sys
2007-02-17 19:51 8,086 --sha-w C:\WINDOWS\system32\KGyGaAvL.sys
.

((((((((((((((((((((((((((((( snapshot@2008-03-21_11.05.13.50 )))))))))))))))))))))))))))))))))))))))))
.
+ 2007-03-06 01:34:38 216,800 -c----w C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe
+ 2007-03-06 01:35:48 394,976 -c----w C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\updspapi.dll
+ 2007-08-13 17:54:10 765,952 -c----w C:\WINDOWS\ie7updates\KB938127-IE7\vgx.dll
+ 2007-08-13 17:39:00 123,904 -c----w C:\WINDOWS\ie7updates\KB944533-IE7\advpack.dll
+ 2007-08-13 17:35:46 346,624 -c----w C:\WINDOWS\ie7updates\KB944533-IE7\dxtmsft.dll
+ 2007-08-13 17:35:38 214,528 -c----w C:\WINDOWS\ie7updates\KB944533-IE7\dxtrans.dll
+ 2007-08-13 17:54:10 131,584 -c----w C:\WINDOWS\ie7updates\KB944533-IE7\extmgr.dll
+ 2007-08-13 17:36:26 61,952 -c----w C:\WINDOWS\ie7updates\KB944533-IE7\icardie.dll
+ 2007-08-13 17:39:06 54,784 -c----w C:\WINDOWS\ie7updates\KB944533-IE7\ie4uinit.exe
+ 2007-08-13 17:39:26 152,064 -c----w C:\WINDOWS\ie7updates\KB944533-IE7\ieakeng.dll
+ 2007-08-13 17:39:54 229,376 -c----w C:\WINDOWS\ie7updates\KB944533-IE7\ieaksie.dll
+ 2007-08-13 16:56:54 161,792 -c----w C:\WINDOWS\ie7updates\KB944533-IE7\ieakui.dll
+ 2007-02-12 15:10:12 2,451,312 -c----w C:\WINDOWS\ie7updates\KB944533-IE7\ieapfltr.dat
+ 2007-07-11 11:27:48 383,488 -c----w C:\WINDOWS\ie7updates\KB944533-IE7\ieapfltr.dll
+ 2007-08-13 17:39:50 382,976 -c----w C:\WINDOWS\ie7updates\KB944533-IE7\iedkcs32.dll
+ 2007-08-13 17:54:10 6,049,280 -c----w C:\WINDOWS\ie7updates\KB944533-IE7\ieframe.dll
+ 2007-08-13 17:39:10 43,008 -c----w C:\WINDOWS\ie7updates\KB944533-IE7\iernonce.dll
+ 2007-08-13 17:34:04 266,752 -c----w C:\WINDOWS\ie7updates\KB944533-IE7\iertutil.dll
+ 2007-08-13 17:39:10 13,312 -c----w C:\WINDOWS\ie7updates\KB944533-IE7\ieudinit.exe
+ 2007-08-13 17:43:56 622,080 -c----w C:\WINDOWS\ie7updates\KB944533-IE7\iexplore.exe
+ 2007-08-13 17:54:10 27,136 -c----w C:\WINDOWS\ie7updates\KB944533-IE7\jsproxy.dll
+ 2007-08-13 17:54:10 458,752 -c----w C:\WINDOWS\ie7updates\KB944533-IE7\msfeeds.dll
+ 2007-08-13 17:54:10 50,688 -c----w C:\WINDOWS\ie7updates\KB944533-IE7\msfeedsbs.dll
+ 2007-08-13 17:54:12 3,578,368 -c----w C:\WINDOWS\ie7updates\KB944533-IE7\mshtml.dll
+ 2007-08-13 17:54:10 475,648 -c----w C:\WINDOWS\ie7updates\KB944533-IE7\mshtmled.dll
+ 2007-08-13 17:44:26 192,000 -c----w C:\WINDOWS\ie7updates\KB944533-IE7\msrating.dll
+ 2007-08-13 17:54:10 670,720 -c----w C:\WINDOWS\ie7updates\KB944533-IE7\mstime.dll
+ 2007-08-13 17:44:06 101,376 -c----w C:\WINDOWS\ie7updates\KB944533-IE7\occache.dll
+ 2007-08-13 17:36:12 44,544 -c----w C:\WINDOWS\ie7updates\KB944533-IE7\pngfilt.dll
+ 2007-03-06 01:34:38 216,800 -c----w C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe
+ 2007-03-06 01:35:48 394,976 -c----w C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\updspapi.dll
+ 2007-08-13 17:44:30 105,984 -c----w C:\WINDOWS\ie7updates\KB944533-IE7\url.dll
+ 2007-08-13 17:54:10 1,162,240 -c----w C:\WINDOWS\ie7updates\KB944533-IE7\urlmon.dll
+ 2007-08-13 17:54:10 231,424 -c----w C:\WINDOWS\ie7updates\KB944533-IE7\webcheck.dll
+ 2007-08-13 17:54:10 818,688 -c----w C:\WINDOWS\ie7updates\KB944533-IE7\wininet.dll
- 2007-08-13 17:39:00 123,904 ----a-w C:\WINDOWS\system32\advpack.dll
+ 2007-12-07 02:08:32 124,928 ----a-w C:\WINDOWS\system32\advpack.dll
- 2007-08-13 17:39:00 123,904 ------w C:\WINDOWS\system32\dllcache\advpack.dll
+ 2007-12-07 02:08:32 124,928 ------w C:\WINDOWS\system32\dllcache\advpack.dll
- 2007-08-13 17:35:46 346,624 ----a-w C:\WINDOWS\system32\dllcache\dxtmsft.dll
+ 2007-12-19 22:53:23 347,136 ----a-w C:\WINDOWS\system32\dllcache\dxtmsft.dll
- 2007-08-13 17:35:38 214,528 ----a-w C:\WINDOWS\system32\dllcache\dxtrans.dll
+ 2007-12-07 02:08:32 214,528 ----a-w C:\WINDOWS\system32\dllcache\dxtrans.dll
- 2007-08-13 17:54:10 131,584 ----a-w C:\WINDOWS\system32\dllcache\extmgr.dll
+ 2007-12-07 02:08:32 133,120 ----a-w C:\WINDOWS\system32\dllcache\extmgr.dll
+ 2007-12-07 02:08:32 63,488 ------w C:\WINDOWS\system32\dllcache\icardie.dll
- 2007-08-13 17:39:06 54,784 ------w C:\WINDOWS\system32\dllcache\ie4uinit.exe
+ 2007-12-06 11:02:31 70,656 ------w C:\WINDOWS\system32\dllcache\ie4uinit.exe
- 2007-08-13 17:39:26 152,064 ------w C:\WINDOWS\system32\dllcache\ieakeng.dll
+ 2007-12-07 02:08:32 153,088 ------w C:\WINDOWS\system32\dllcache\ieakeng.dll
- 2007-08-13 17:39:54 229,376 ------w C:\WINDOWS\system32\dllcache\ieaksie.dll
+ 2007-12-07 02:08:32 230,400 ------w C:\WINDOWS\system32\dllcache\ieaksie.dll
- 2007-08-13 16:56:54 161,792 ------w C:\WINDOWS\system32\dllcache\ieakui.dll
+ 2007-12-06 04:59:51 161,792 ------w C:\WINDOWS\system32\dllcache\ieakui.dll
+ 2007-04-17 09:32:38 2,455,488 ------w C:\WINDOWS\system32\dllcache\ieapfltr.dat
+ 2007-12-07 02:08:32 383,488 ------w C:\WINDOWS\system32\dllcache\ieapfltr.dll
- 2007-08-13 17:39:50 382,976 ------w C:\WINDOWS\system32\dllcache\iedkcs32.dll
+ 2007-12-07 02:08:32 384,512 ------w C:\WINDOWS\system32\dllcache\iedkcs32.dll
+ 2007-12-07 02:08:33 6,066,176 ------w C:\WINDOWS\system32\dllcache\ieframe.dll
- 2007-08-13 17:39:10 43,008 ------w C:\WINDOWS\system32\dllcache\iernonce.dll
+ 2007-12-07 02:08:33 44,544 ------w C:\WINDOWS\system32\dllcache\iernonce.dll
+ 2007-12-07 02:08:33 267,776 ------w C:\WINDOWS\system32\dllcache\iertutil.dll
+ 2007-12-06 11:00:58 13,824 ------w C:\WINDOWS\system32\dllcache\ieudinit.exe
- 2007-08-13 17:43:56 622,080 ----a-w C:\WINDOWS\system32\dllcache\iexplore.exe
+ 2007-12-06 11:03:16 625,664 ----a-w C:\WINDOWS\system32\dllcache\iexplore.exe
- 2007-08-13 17:54:10 27,136 ----a-w C:\WINDOWS\system32\dllcache\jsproxy.dll
+ 2007-12-07 02:08:33 27,648 ----a-w C:\WINDOWS\system32\dllcache\jsproxy.dll
+ 2007-12-07 02:08:33 459,264 ------w C:\WINDOWS\system32\dllcache\msfeeds.dll
+ 2007-12-07 02:08:33 52,224 ------w C:\WINDOWS\system32\dllcache\msfeedsbs.dll
- 2007-08-13 17:54:12 3,578,368 ----a-w C:\WINDOWS\system32\dllcache\mshtml.dll
+ 2007-12-08 05:08:36 3,592,192 ----a-w C:\WINDOWS\system32\dllcache\mshtml.dll
- 2007-08-13 17:54:10 475,648 ----a-w C:\WINDOWS\system32\dllcache\mshtmled.dll
+ 2007-12-07 02:08:34 478,208 ----a-w C:\WINDOWS\system32\dllcache\mshtmled.dll
- 2007-08-13 17:44:26 192,000 ----a-w C:\WINDOWS\system32\dllcache\msrating.dll
+ 2007-12-07 02:08:34 193,024 ----a-w C:\WINDOWS\system32\dllcache\msrating.dll
- 2007-08-13 17:54:10 670,720 ----a-w C:\WINDOWS\system32\dllcache\mstime.dll
+ 2007-12-07 02:08:34 671,232 ----a-w C:\WINDOWS\system32\dllcache\mstime.dll
- 2007-08-13 17:44:06 101,376 ------w C:\WINDOWS\system32\dllcache\occache.dll
+ 2007-12-07 02:08:34 102,912 ------w C:\WINDOWS\system32\dllcache\occache.dll
- 2007-08-13 17:44:30 105,984 ------w C:\WINDOWS\system32\dllcache\url.dll
+ 2007-12-07 02:08:34 105,984 ------w C:\WINDOWS\system32\dllcache\url.dll
- 2007-08-13 17:54:10 1,162,240 ----a-w C:\WINDOWS\system32\dllcache\urlmon.dll
+ 2007-12-07 02:08:34 1,159,680 ----a-w C:\WINDOWS\system32\dllcache\urlmon.dll
- 2007-08-13 17:54:10 765,952 ----a-w C:\WINDOWS\system32\dllcache\VGX.dll
+ 2007-07-12 23:30:52 765,952 ----a-w C:\WINDOWS\system32\dllcache\vgx.dll
- 2007-08-13 17:54:10 231,424 ------w C:\WINDOWS\system32\dllcache\webcheck.dll
+ 2007-12-07 02:08:34 233,472 ------w C:\WINDOWS\system32\dllcache\webcheck.dll
- 2007-08-13 17:54:10 818,688 ----a-w C:\WINDOWS\system32\dllcache\wininet.dll
+ 2007-12-07 02:08:34 824,832 ----a-w C:\WINDOWS\system32\dllcache\wininet.dll
+ 2007-08-09 12:04:11 40,768 ----a-w C:\WINDOWS\system32\drivers\avgntdd.sys
+ 2007-07-18 13:22:19 21,312 ----a-w C:\WINDOWS\system32\drivers\avgntmgr.sys
+ 2008-03-21 11:21:02 61,632 ----a-w C:\WINDOWS\system32\drivers\avipbb.sys
+ 2007-03-01 09:34:36 28,352 ----a-w C:\WINDOWS\system32\drivers\ssmdrv.sys
- 2007-08-13 17:35:46 346,624 ----a-w C:\WINDOWS\system32\dxtmsft.dll
+ 2007-12-19 22:53:23 347,136 ----a-w C:\WINDOWS\system32\dxtmsft.dll
- 2007-08-13 17:35:38 214,528 ----a-w C:\WINDOWS\system32\dxtrans.dll
+ 2007-12-07 02:08:32 214,528 ----a-w C:\WINDOWS\system32\dxtrans.dll
- 2007-08-13 17:54:10 131,584 ----a-w C:\WINDOWS\system32\extmgr.dll
+ 2007-12-07 02:08:32 133,120 ----a-w C:\WINDOWS\system32\extmgr.dll
- 2007-08-13 17:36:26 61,952 ------w C:\WINDOWS\system32\icardie.dll
+ 2007-12-07 02:08:32 63,488 ----a-w C:\WINDOWS\system32\icardie.dll
- 2007-08-13 17:39:06 54,784 ----a-w C:\WINDOWS\system32\ie4uinit.exe
+ 2007-12-06 11:02:31 70,656 ----a-w C:\WINDOWS\system32\ie4uinit.exe
- 2007-08-13 17:39:26 152,064 ----a-w C:\WINDOWS\system32\ieakeng.dll
+ 2007-12-07 02:08:32 153,088 ----a-w C:\WINDOWS\system32\ieakeng.dll
- 2007-08-13 17:39:54 229,376 ----a-w C:\WINDOWS\system32\ieaksie.dll
+ 2007-12-07 02:08:32 230,400 ----a-w C:\WINDOWS\system32\ieaksie.dll
- 2007-08-13 16:56:54 161,792 ----a-w C:\WINDOWS\system32\ieakui.dll
+ 2007-12-06 04:59:51 161,792 ----a-w C:\WINDOWS\system32\ieakui.dll
- 2007-02-12 15:10:12 2,451,312 ------w C:\WINDOWS\system32\ieapfltr.dat
+ 2007-04-17 09:32:38 2,455,488 ----a-w C:\WINDOWS\system32\ieapfltr.dat
- 2007-07-11 11:27:48 383,488 ------w C:\WINDOWS\system32\ieapfltr.dll
+ 2007-12-07 02:08:32 383,488 ----a-w C:\WINDOWS\system32\ieapfltr.dll
- 2007-08-13 17:39:50 382,976 ----a-w C:\WINDOWS\system32\iedkcs32.dll
+ 2007-12-07 02:08:32 384,512 ----a-w C:\WINDOWS\system32\iedkcs32.dll
- 2007-08-13 17:54:10 6,049,280 ------w C:\WINDOWS\system32\ieframe.dll
+ 2007-12-07 02:08:33 6,066,176 ----a-w C:\WINDOWS\system32\ieframe.dll
- 2007-08-13 17:39:10 43,008 ----a-w C:\WINDOWS\system32\iernonce.dll
+ 2007-12-07 02:08:33 44,544 ----a-w C:\WINDOWS\system32\iernonce.dll
- 2007-08-13 17:34:04 266,752 ------w C:\WINDOWS\system32\iertutil.dll
+ 2007-12-07 02:08:33 267,776 ----a-w C:\WINDOWS\system32\iertutil.dll
- 2007-08-13 17:39:10 13,312 ----a-w C:\WINDOWS\system32\ieudinit.exe
+ 2007-12-06 11:00:58 13,824 ----a-w C:\WINDOWS\system32\ieudinit.exe
- 2007-08-13 17:54:10 27,136 ----a-w C:\WINDOWS\system32\jsproxy.dll
+ 2007-12-07 02:08:33 27,648 ----a-w C:\WINDOWS\system32\jsproxy.dll
- 2007-08-13 17:54:10 458,752 ------w C:\WINDOWS\system32\msfeeds.dll
+ 2007-12-07 02:08:33 459,264 ----a-w C:\WINDOWS\system32\msfeeds.dll
- 2007-08-13 17:54:10 50,688 ------w C:\WINDOWS\system32\msfeedsbs.dll
+ 2007-12-07 02:08:33 52,224 ----a-w C:\WINDOWS\system32\msfeedsbs.dll
- 2007-08-13 17:54:12 3,578,368 ----a-w C:\WINDOWS\system32\mshtml.dll
+ 2007-12-08 05:08:36 3,592,192 ----a-w C:\WINDOWS\system32\mshtml.dll
- 2007-08-13 17:54:10 475,648 ----a-w C:\WINDOWS\system32\mshtmled.dll
+ 2007-12-07 02:08:34 478,208 ----a-w C:\WINDOWS\system32\mshtmled.dll
- 2007-08-13 17:44:26 192,000 ----a-w C:\WINDOWS\system32\msrating.dll
+ 2007-12-07 02:08:34 193,024 ----a-w C:\WINDOWS\system32\msrating.dll
- 2007-08-13 17:54:10 670,720 ----a-w C:\WINDOWS\system32\mstime.dll
+ 2007-12-07 02:08:34 671,232 ----a-w C:\WINDOWS\system32\mstime.dll
- 2007-08-13 17:44:06 101,376 ----a-w C:\WINDOWS\system32\occache.dll
+ 2007-12-07 02:08:34 102,912 ----a-w C:\WINDOWS\system32\occache.dll
- 2007-08-13 17:36:12 44,544 ----a-w C:\WINDOWS\system32\pngfilt.dll
+ 2008-01-11 05:36:55 44,544 ----a-w C:\WINDOWS\system32\pngfilt.dll
- 2007-08-13 17:44:30 105,984 ----a-w C:\WINDOWS\system32\url.dll
+ 2007-12-07 02:08:34 105,984 ----a-w C:\WINDOWS\system32\url.dll
- 2007-08-13 17:54:10 1,162,240 ----a-w C:\WINDOWS\system32\urlmon.dll
+ 2007-12-07 02:08:34 1,159,680 ----a-w C:\WINDOWS\system32\urlmon.dll
- 2007-08-13 17:54:10 231,424 ----a-w C:\WINDOWS\system32\webcheck.dll
+ 2007-12-07 02:08:34 233,472 ----a-w C:\WINDOWS\system32\webcheck.dll
- 2007-08-13 17:54:10 818,688 ----a-w C:\WINDOWS\system32\wininet.dll
+ 2007-12-07 02:08:34 824,832 ----a-w C:\WINDOWS\system32\wininet.dll
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-10 13:00 15360]
"LogitechSoftwareUpdate"="C:\Program Files\Logitech\Video\ManifestEngine.exe" [2005-01-18 17:07 196608]
"SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [2008-01-28 11:43 2097488]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray"="C:\WINDOWS\ehome\ehtray.exe" [2005-09-29 15:01 67584]
"SigmatelSysTrayApp"="stsystra.exe" [2006-07-24 11:20 282624 C:\WINDOWS\stsystra.exe]
"IAAnotif"="C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe" [2006-07-06 08:15 151552]
"ATICCC"="C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" [2006-01-02 18:41 45056]
"DMXLauncher"="C:\Program Files\Dell\Media Experience\DMXLauncher.exe" [2005-10-05 04:12 94208]
"DLA"="C:\WINDOWS\System32\DLA\DLACTRLW.EXE" [2005-09-08 06:20 122940]
"ISUSPM Startup"="c:\Program Files\Fichiers communs\InstallShield\UpdateService\isuspm.exe" [2005-08-11 16:30 249856]
"ISUSScheduler"="C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" [2005-08-11 16:30 81920]
"LVCOMSX"="C:\WINDOWS\system32\LVCOMSX.EXE" [2005-09-01 13:04 221184]
"LogitechVideo[inspector]"="C:\Program Files\Logitech\Video\InstallHelper.exe" [2005-09-07 06:39 73728]
"TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" [2007-01-24 22:56 185896]
"NeroFilterCheck"="C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe" [2006-01-12 16:40 155648]
"Corel Photo Downloader"="C:\Program Files\Corel\Corel Snapfire Plus\Corel Photo Downloader.exe" [2006-08-14 15:20 462336]
"CloneCDTray"="C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" [2006-09-28 20:21 57344]
"EPSON Stylus C66 Series"="C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0S2.exe" [2003-11-27 03:00 99840]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 22:16 39792]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [2008-02-22 04:25 144784]
"NWEReboot"="" []
"avgnt"="C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2008-03-21 12:21 249896]
"!AVG Anti-Spyware"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [2007-06-11 10:25 6731312]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-10 13:00 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"InstallVisualStyle"= C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"= C:\WINDOWS\Resources\Themes\Royale.theme

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\run]
"skeysw"= skeysw.exe

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\wvuroml]

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\eMule\\emule.exe"=
"C:\\Program Files\\Teamspeak2_RC2\\server_windows.exe"=
"C:\\WINDOWS\\system32\\dplaysvr.exe"=
"C:\\Program Files\\The All-Seeing Eye\\eye.exe"=
"C:\\WINDOWS\\system32\\dpvsetup.exe"=
"C:\\WINDOWS\\system32\\rundll32.exe"=
"C:\\Program Files\\uTorrent\\utorrent.exe"=
"C:\\Program Files\\HD Publishing\\Joint Task Force\\jtf.exe"=
"C:\\Program Files\\EA GAMES\\MOHDA\\moh_spearhead.exe"=
"C:\\Program Files\\Electronic Arts\\Medal of Honor Airborne\\UnrealEngine3\\Binaries\\MOHA.exe"=
"C:\\Program Files\\BitTorrent\\bittorrent.exe"=
"C:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"10421:UDP"= 10421:UDP:SingleClick Discovery Protocol
"10426:UDP"= 10426:UDP:SingleClick ICC

R1 fwdrv;Firewall Driver;C:\WINDOWS\system32\drivers\fwdrv.sys [2007-04-26 10:21]
R3 USBSTOR;Pilote de stockage de masse USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-04 00:08]
S1 khips;Kerio HIPS Driver;C:\WINDOWS\system32\drivers\khips.sys [2007-04-26 10:21]
S2 SPF4;Sunbelt Personal Firewall 4;"C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe" [2007-04-26 10:21]
S2 UxTuneUp;TuneUp Extension de thème;C:\WINDOWS\System32\svchost.exe [2004-08-10 13:00]
S3 EMSUSB2;EMSUSB2;C:\WINDOWS\system32\Drivers\EMSUSB2.SYS [2007-11-11 12:41]
S3 LVPrcMon;Logitech LVPrcMon Driver;C:\WINDOWS\system32\drivers\LVPrcMon.sys [2005-09-01 13:11]
S3 NAL;Nal Service ;C:\WINDOWS\system32\Drivers\iqvw32.sys [2006-06-05 04:39]
S3 TuneUp.Defrag;TuneUp Drive Defrag Service;C:\WINDOWS\System32\TuneUpDefragService.exe [2008-03-20 14:38]
S4 ADSLAutoconnect;ADSLAutoconnect;"C:\Program Files\ADSL Autoconnect\ADSL Autoconnect.exe" -z []

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{2ede7ac4-b142-11dc-bcde-001676e044ef}]
\Shell\AutoRun\command - H:\InstallTomTomHOME.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{4c69e16c-e1eb-11dc-bd31-001676e044ef}]
\Shell\AutoRun\command - H:\LaunchU3.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f5d50418-f491-11db-bb44-0090272ccae4}]
\Shell\AutoRun\command - H:\InstallTomTomHOME.exe

.
Contenu du dossier 'Scheduled Tasks/Tâches planifiées'
"2008-03-21 21:00:00 C:\WINDOWS\Tasks\Maintenance en 1 clic.job"
- C:\Program Files\TuneUp Utilities 2008\OneClickStarter.exe
"2008-01-28 18:10:00 C:\WINDOWS\Tasks\Stop2.job"
- C:\Windows\System32\shutdown.exe
.
**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-03-21 22:42:38
Windows 5.1.2600 Service Pack 2 NTFS

Balayage processus cachés ...

Balayage caché autostart entries ...

Balayage des fichiers cachés ...

Scan terminé avec succès
Les fichiers cachés: 0

**************************************************************************
.
Temps d'accomplissement: 2008-03-21 22:44:41
ComboFix-quarantined-files.txt 2008-03-21 21:44:39
ComboFix2.txt 2008-03-21 10:05:20
.
2008-03-21 11:35:26 --- E O F ---

non il n'y a plus cette erreur au demarage. Il n'y a plus rien qui cloche a priori :)

ok je ferai tout ca dès demain matin :)

Merci d'avoir passé beaucoup de temps a m'aider booddha
Tu as résolu tout mes problemes et tu m'as donné des conseils pour l'avenir. Je ne pouvais pas rever mieux. D'ailleurs je ne pensais pas que qqn s'occuperait personnelement de mon cas !


Tu es vraiment génial.
Merci Merci Merci booddha !!! :))