Bonjour à tous,

Voilà je voudrais faire des vérifications (des scans etc...) parce que je pense avoir un ou des virus sur mon ordi. Il est plus lent que d'habitude et par exemple quand je regarde la télé ça marche mal, et sur un autre forum on m'a dit que ça pouvait etre un virus ou un programme qui prend beaucoup de mémoire et tout... Et là j'ai vu dans le gestionnaire des tâches que j'ai le processus IEXPLORE.EXE et non iexplore.exe et j'ai vu sur Google que ça pouvait être un virus.

Aidez-moi svp, j'ai vraiment besoin de votre aide !

Dites moi ce que je dois faire comme scans ou ce que je dois installer comme programmes sur mon ordi pour vérifier tout ça SVP !

Merci à l'avance !

Kevin930

Merci de m'aider.
Voici le rapport HijackThis :

Logfile of HijackThis v1.99.1
Scan saved at 17:56:59, on 23/07/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16473)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\VTTimer.exe
C:\WINDOWS\system32\S3trayp.exe
C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SAGEM WiFi manager\WLANUTL.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\crypserv.exe
C:\WINDOWS\system32\spupdsvc.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\WINDOWS\system32\spnpinst.exe
C:\WINDOWS\system32\Sysocmgr.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\System32\wbem\wmiapsrv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Hijackthis Version Française\hijackthis vf.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.slashmysearch.com/earn/id/49331
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:8080
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local;localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O1 - Hosts: 62.146.66.181 dl1.avgate.net
O1 - Hosts: 62.146.66.182 dl2.avgate.net
O1 - Hosts: 62.146.66.183 dl3.avgate.net
O1 - Hosts: 62.146.66.184 dl4.avgate.net
O1 - Hosts: 217.11.60.15 dl5.avgate.net
O1 - Hosts: 217.11.60.16 dl6.avgate.net
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [S3Trayp] S3trayp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SSBkgdUpdate] C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe -Embedding -boot
O4 - HKLM\..\Run: [JMB36X Configure] C:\WINDOWS\system32\JMRaidTool.exe boot
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ?
O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MI699F~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI699F~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {029FDBA6-3547-11D7-AA4C-0050BF051A00} (Rawflow ICD Client) - http://s.tf1.fr/mmdia/static/rawfl [...] awflow.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {88764F69-3831-4EC1-B40B-FF21D8381345} (AdVerifierADPCtrl Class) - https://static.impots.gouv.fr/tdir/ [...] DP-1.0.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activ [...] asinst.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/bina [...] b56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b56907.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WBSrv - C:\PROGRA~1\Stardock\OBJECT~1\WINDOW~1\wbsrv.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)
O23 - Service: Crypkey License - Kenonic Controls Ltd. - C:\WINDOWS\SYSTEM32\crypserv.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe
O23 - Service: StyleXPService - Unknown owner - C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe

Voilà le rapport :

"Yoyo" - 2007-07-23 21:05:17 - ComboFix 07-07-23.6 - Service Pack 2 NTFS


((((((((((((((((((((((((( Files Created from 2007-06-23 to 2007-07-23 )))))))))))))))))))))))))))))))


2007-07-23 21:04 51,200 --a------ C:\WINDOWS\nircmd.exe
2007-07-23 17:56 <REP> d-------- C:\Program Files\Hijackthis Version Fran‡aise
2007-07-23 15:46 <REP> d-------- C:\Program Files\RamBoost XP
2007-07-22 00:58 <REP> d-------- C:\DOCUME~1\Yoyo\APPLIC~1\InstallShield
2007-07-21 20:02 <REP> d-------- C:\Program Files\Wanadoo
2007-07-21 20:00 31,744 --a------ C:\WINDOWS\system32\drivers\ZDPSp50a64.sys
2007-07-21 20:00 29,184 --a------ C:\WINDOWS\system32\drivers\BRGSp50a64.sys
2007-07-21 20:00 20,608 --a------ C:\WINDOWS\system32\drivers\BRGSp50.sys
2007-07-21 20:00 17,664 --a------ C:\WINDOWS\system32\drivers\ZDPSp50.sys
2007-07-21 20:00 <REP> d-------- C:\Program Files\SAGEM WiFi manager
2007-07-21 20:00 <REP> d-------- C:\Program Files\SAGEM
2007-07-21 19:59 493,440 --a------ C:\WINDOWS\system32\drivers\WlanBZ64.SYS
2007-07-21 19:59 402,432 --a------ C:\WINDOWS\system32\drivers\WlanBZXP.sys
2007-07-21 01:12 536,576 --a------ C:\WINDOWS\system32\msvcr70d.dll
2007-07-21 01:12 <REP> d-------- C:\Program Files\AVS4YOU
2007-07-21 00:34 119,568 --a------ C:\WINDOWS\system32\Vb6fr.dll
2007-07-21 00:34 102,912 --a------ C:\WINDOWS\system32\Vb6stkit.dll
2007-07-21 00:34 1,409,024 --a------ C:\WINDOWS\system32\Msvbvm60.dll
2007-07-21 00:34 <REP> d-------- C:\Program Files\Web TV
2007-07-21 00:34 <REP> d-------- C:\Program Files\FreeTV
2007-07-20 23:55 <REP> d-------- C:\DOCUME~1\Yoyo\APPLIC~1\vlc
2007-07-20 20:15 <REP> d-------- C:\Program Files\adslTV
2007-07-20 20:01 <REP> d-------- C:\Program Files\PeerTV
2007-07-20 13:33 <REP> d-------- C:\Program Files\AviSynth 2.5
2007-07-20 13:32 <REP> d-------- C:\Program Files\Ripp-it_AM
2007-07-19 22:47 41 ---h----- C:\WINDOWS\dsez6072.dat
2007-07-19 22:47 <REP> d-------- C:\Program Files\PhotoFiltre Studio
2007-07-19 16:06 <REP> d-------- C:\WINDOWS\system32\Rawflow
2007-07-18 21:32 <REP> d-------- C:\Program Files\iTunes
2007-07-18 21:32 <REP> d-------- C:\Program Files\iPod
2007-07-18 19:02 <REP> d-------- C:\Program Files\CamStudio
2007-07-18 18:59 <REP> d-------- C:\Program Files\Nero
2007-07-18 18:59 <REP> d-------- C:\Program Files\Fichiers communs\Ahead
2007-07-18 18:59 <REP> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nero
2007-07-17 22:00 <REP> d-------- C:\Program Files\Electronic Arts
2007-07-17 21:59 2,297,552 --a------ C:\WINDOWS\system32\d3dx9_26.dll
2007-07-15 21:43 <REP> d-------- C:\Program Files\Audacity 1.3 Beta (Unicode)
2007-07-15 21:43 <REP> d-------- C:\DOCUME~1\Yoyo\APPLIC~1\Audacity
2007-07-15 19:59 9,464 --------- C:\WINDOWS\system32\drivers\cdralw2k.sys
2007-07-15 19:59 9,336 --------- C:\WINDOWS\system32\drivers\cdr4_xp.sys
2007-07-15 19:59 129,784 --------- C:\WINDOWS\system32\pxafs.dll
2007-07-15 19:59 <REP> d-------- C:\Program Files\Winamp
2007-07-15 19:58 <REP> d-------- C:\DOCUME~1\Yoyo\APPLIC~1\Radios Media Player
2007-07-15 17:12 95,488 --a------ C:\WINDOWS\system32\drivers\Rtnicxp.sys
2007-07-15 17:12 <REP> d-------- C:\WINDOWS\OPTIONS
2007-07-15 17:10 6,912 -ra------ C:\WINDOWS\system32\drivers\JGOGO.sys
2007-07-15 17:10 42,752 -ra------ C:\WINDOWS\system32\drivers\jraid.sys
2007-07-15 17:10 352,256 -r------- C:\WINDOWS\system32\JMRaidTool.exe
2007-07-15 17:10 139,264 -r------- C:\WINDOWS\system32\JMRaidAPI.dll
2007-07-15 17:10 <REP> d-------- C:\WINDOWS\JM
2007-07-15 17:07 9,728 -ra------ C:\WINDOWS\system32\drivers\videX32.sys
2007-07-15 17:07 11,264 -ra------ C:\WINDOWS\system32\drivers\xfilt.sys
2007-07-15 17:07 <REP> d-------- C:\WINDOWS\ASUSInstAll
2007-07-15 17:06 <REP> d-------- C:\Program Files\VIA
2007-07-15 17:05 43,520 --a------ C:\WINDOWS\system32\drivers\AmdK8.sys
2007-07-15 17:05 <REP> d-------- C:\Program Files\DIFX
2007-07-15 16:39 <REP> d-------- C:\audiograbber
2007-07-11 23:02 <REP> d-------- C:\DOCUME~1\Yoyo\APPLIC~1\ThemesCreator
2007-07-11 16:11 <REP> d-------- C:\Program Files\Open XML Editor 1.4
2007-07-11 15:41 <REP> d-------- C:\Program Files\TUGZip
2007-07-07 18:06 <REP> d-------- C:\My Downloads
2007-07-07 18:05 <REP> d-------- C:\Program Files\RS P2P Share Spy Demo
2007-07-06 22:12 <REP> d-------- C:\Program Files\DivX
2007-07-04 21:43 <REP> d-------- C:\Program Files\Fichiers communs\Apple
2007-07-04 21:43 <REP> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
2007-07-04 19:09 <REP> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
2007-07-04 18:49 <REP> d-------- C:\DOCUME~1\Yoyo\APPLIC~1\Ahead
2007-07-04 15:04 26 --a------ C:\WINDOWS\winstart.bat
2007-07-04 15:04 150 --a------ C:\WINDOWS\tmpcpyis.bat
2007-07-04 15:04 122 --a------ C:\WINDOWS\tmpdelis.bat
2007-07-04 15:03 <REP> d-------- C:\Program Files\Microsoft Windows Script
2007-07-04 15:02 <REP> d-------- C:\Program Files\ViaVoice
2007-07-03 21:24 9,728 --a------ C:\WINDOWS\system32\PCCLPFR.DLL
2007-07-03 21:24 6,656 --a------ C:\WINDOWS\system32\STDFTFR.DLL
2007-07-03 21:24 59,904 --a------ C:\WINDOWS\system32\MSCC2FR.DLL
2007-07-03 21:24 32,768 --a------ C:\WINDOWS\system32\CMDLGFR.DLL
2007-07-03 21:24 15,360 --a------ C:\WINDOWS\system32\INETFR.DLL
2007-07-03 19:10 132,904 --a------ C:\WINDOWS\system32\drivers\imagesrv.sys
2007-07-03 19:10 11,304 --a------ C:\WINDOWS\system32\drivers\imagedrv.sys
2007-07-03 13:47 <REP> d-------- C:\Program Files\KM Remote
2007-07-02 21:41 200,704 --a------ C:\WINDOWS\system32\ssldivx.dll
2007-07-02 21:41 1,044,480 --a------ C:\WINDOWS\system32\libdivx.dll
2007-07-01 19:32 <REP> d-------- C:\Program Files\Fichiers communs\xing shared
2007-07-01 12:32 <REP> d-------- C:\Program Files\Real
2007-07-01 12:32 <REP> d-------- C:\Program Files\Fichiers communs\Real
2007-07-01 12:32 <REP> d-------- C:\DOCUME~1\Yoyo\APPLIC~1\Real
2007-06-30 15:42 <REP> d-------- C:\WINDOWS\system32\VIRepair
2007-06-30 15:33 <REP> d-------- C:\Program Files\ViOrb
2007-06-30 15:28 94,208 --a------ C:\WINDOWS\system32\pskill.exe
2007-06-30 15:28 8,636 --a------ C:\WINDOWS\system32\modifype.exe
2007-06-30 15:28 19,968 --a------ C:\WINDOWS\system32\reico.exe
2007-06-30 15:28 111,104 --a------ C:\WINDOWS\system32\Uharc.exe
2007-06-30 15:28 <REP> d-------- C:\WINDOWS\system32\VITrans
2007-06-30 15:28 <REP> d-------- C:\VTPFiles
2007-06-30 15:26 42,672 --a------ C:\WINDOWS\system32\wbsys.dll
2007-06-30 15:26 <REP> d-------- C:\Program Files\Stardock
2007-06-27 19:05 972,072 --a------ C:\WINDOWS\UNNeroMediaHome.exe
2007-06-26 19:51 95,872 --a------ C:\WINDOWS\system32\AvastSS.scr
2007-06-26 19:51 94,552 --a------ C:\WINDOWS\system32\drivers\aswmon2.sys
2007-06-26 19:51 85,952 --a------ C:\WINDOWS\system32\drivers\aswmon.sys


(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

2007-07-23 19:03:34 -------- d-----w C:\Program Files\Hijackthis Version Française
2007-07-23 11:32:17 -------- d-----w C:\Program Files\eMule
2007-07-23 00:44:52 -------- d-----w C:\Program Files\Fichiers communs\AVSMedia
2007-07-22 11:16:33 -------- d-----w C:\Program Files\Canon
2007-07-21 18:00:31 -------- d--h--w C:\Program Files\InstallShield Installation Information
2007-07-20 23:13:25 -------- d-----w C:\DOCUME~1\Yoyo\APPLIC~1\AVS4YOU
2007-07-20 18:23:54 -------- d-----w C:\Program Files\VideoLAN
2007-07-19 19:00:35 4,705 ----a-w C:\WINDOWS\mozver.dat
2007-07-18 19:28:47 -------- d-----w C:\Program Files\QuickTime
2007-07-18 12:55:42 -------- d-----w C:\Program Files\Ahead
2007-07-15 15:20:56 72,366 ----a-w C:\WINDOWS\system32\perfc00C.dat
2007-07-15 15:20:56 461,404 ----a-w C:\WINDOWS\system32\perfh00C.dat
2007-07-15 15:12:30 -------- d-----w C:\Program Files\Realtek
2007-07-10 12:59:53 -------- d-----w C:\DOCUME~1\Yoyo\APPLIC~1\Azureus
2007-07-09 10:50:26 -------- d-----w C:\DOCUME~1\Yoyo\APPLIC~1\Apple Computer
2007-07-07 16:02:54 -------- d-----w C:\DOCUME~1\Yoyo\APPLIC~1\LimeWire
2007-07-07 08:18:17 -------- d-----w C:\Program Files\Fichiers communs\Symantec Shared
2007-07-04 17:09:18 -------- d-----w C:\DOCUME~1\Yoyo\APPLIC~1\ScanSoft
2007-07-04 17:03:30 -------- d-----w C:\Program Files\Fichiers communs\ScanSoft Shared
2007-07-04 17:03:04 -------- d-----w C:\Program Files\ScanSoft
2007-07-03 12:32:22 -------- d-----w C:\Program Files\Google
2007-07-03 10:29:05 -------- d-----w C:\DOCUME~1\Yoyo\APPLIC~1\Google
2007-06-30 13:42:49 -------- d-----w C:\Program Files\MSN Messenger
2007-06-24 09:46:27 -------- d-----w C:\Program Files\WinAVI MP4 Converter
2007-06-22 14:29:58 -------- d-----w C:\Program Files\Sony Ericsson
2007-06-21 19:54:32 -------- d-----w C:\Program Files\ICQ6
2007-06-19 19:59:53 -------- d-----w C:\Program Files\KiddiesBarre
2007-06-19 18:57:56 -------- d-----w C:\Program Files\Eurobarre
2007-06-18 08:15:33 20,480 ----a-w C:\WINDOWS\system32\normaliz.dll
2007-06-18 08:15:33 20,480 ----a-w C:\normaliz.dll
2007-06-17 10:57:43 -------- d-----w C:\Program Files\Fichiers communs\Teleca Shared
2007-06-14 17:39:23 -------- d-----w C:\Program Files\DAEMON Tools
2007-06-14 10:03:49 -------- d-----w C:\Program Files\Securitoo
2007-06-11 10:07:32 -------- d-----w C:\Program Files\IPex
2007-06-10 11:30:24 45 ---h--w C:\WINDOWS\dsez2726.dat
2007-06-09 21:40:37 -------- d-----w C:\Program Files\Movie Maker
2007-06-09 15:55:04 -------- d-----w C:\DOCUME~1\Yoyo\APPLIC~1\Help
2007-06-09 12:59:21 12,464 ----a-w C:\WINDOWS\system32\drivers\secdrv.sys
2007-06-09 12:57:46 565 ----a-w C:\WINDOWS\eReg.dat
2007-06-09 12:42:55 -------- d-----w C:\DOCUME~1\Yoyo\APPLIC~1\Ulead Systems
2007-06-09 12:34:18 -------- d-----w C:\Program Files\Ulead Systems
2007-06-09 12:34:09 -------- d-----w C:\Program Files\Fichiers communs\Ulead Systems
2007-06-09 12:30:58 -------- d-----w C:\Program Files\Digital Camera
2007-06-09 10:49:37 43,520 ----a-w C:\WINDOWS\system32\CmdLineExt03.dll
2007-06-09 09:07:57 -------- d-----w C:\Program Files\Fichiers communs\Nero
2007-06-09 08:32:29 682,232 ----a-w C:\WINDOWS\system32\drivers\sptd.sys
2007-06-08 19:42:28 -------- d-----w C:\DOCUME~1\Yoyo\APPLIC~1\ICQ Toolbar
2007-06-08 19:39:02 -------- d-----w C:\DOCUME~1\Yoyo\APPLIC~1\ICQ
2007-06-07 21:58:05 -------- d-----w C:\Program Files\Microsoft CAPICOM 2.1.0.2
2007-06-07 05:39:34 -------- d-----w C:\Program Files\Messenger Plus! Live
2007-06-06 20:33:55 -------- d-----w C:\Program Files\Microsoft Office 2003
2007-06-06 20:33:16 -------- d-----w C:\Program Files\Microsoft.NET
2007-06-06 19:22:10 -------- d-----w C:\Program Files\Apple Software Update
2007-06-06 17:19:47 81,920 ------r C:\WINDOWS\bwUnin-6.1.4.68-8876480L.exe
2007-06-06 17:19:42 -------- d-----w C:\Program Files\Logitech
2007-06-06 17:14:55 -------- d-----w C:\DOCUME~1\Yoyo\APPLIC~1\FotoWire
2007-06-06 17:14:54 -------- d-----w C:\Program Files\Fichiers communs\FotoWire
2007-06-06 17:13:10 -------- d-----w C:\Program Files\Fichiers communs\Logitech
2007-06-05 22:25:39 -------- d-----w C:\Program Files\MSXML 4.0
2007-06-04 22:37:48 -------- d-----w C:\DOCUME~1\Yoyo\APPLIC~1\Teleca
2007-06-04 22:34:38 5,808 ----a-w C:\WINDOWS\system32\drivers\w810whnt.sys
2007-06-04 22:34:38 5,808 ----a-w C:\WINDOWS\system32\drivers\w810wh.sys
2007-06-04 22:34:37 94,064 ----a-w C:\WINDOWS\system32\drivers\w810mdm.sys
2007-06-04 22:34:37 85,408 ----a-w C:\WINDOWS\system32\drivers\w810mgmt.sys
2007-06-04 22:34:37 83,344 ----a-w C:\WINDOWS\system32\drivers\w810obex.sys
2007-06-04 22:34:37 8,336 ----a-w C:\WINDOWS\system32\drivers\w810mdfl.sys
2007-06-04 22:34:37 6,176 ----a-w C:\WINDOWS\system32\drivers\w810cmnt.sys
2007-06-04 22:34:37 6,176 ----a-w C:\WINDOWS\system32\drivers\w810cm.sys
2007-06-04 22:34:37 58,288 ----a-w C:\WINDOWS\system32\drivers\w810bus.sys
2007-06-04 22:33:56 -------- d-----w C:\Program Files\Fichiers communs\InstallShield
2007-06-04 17:09:12 8,704 ----a-w C:\WINDOWS\system32\drivers\ggsemc.sys
2007-06-02 22:07:13 -------- d-----w C:\Program Files\IncrediMail
2007-06-02 11:25:04 0 ----a-w C:\WINDOWS\nsreg.dat
2007-06-01 19:23:04 -------- d-----w C:\DOCUME~1\Yoyo\APPLIC~1\Screenshot Sender
2007-05-31 22:02:08 -------- d-----w C:\Program Files\ArcSoft
2007-05-31 21:32:47 -------- d-----w C:\Program Files\TuneUp Utilities 2007
2007-05-31 21:26:56 -------- d-----w C:\Program Files\Windows Media Connect 2
2007-05-31 21:20:30 -------- d-----w C:\Program Files\CCleaner
2007-05-31 21:20:12 -------- d-----w C:\DOCUME~1\Yoyo\APPLIC~1\TuneUp Software
2007-05-31 21:19:54 -------- d-----w C:\Program Files\Fichiers communs\Wise Installation Wizard
2007-05-31 21:16:59 -------- d-----w C:\Program Files\Azureus
2007-05-31 20:40:40 -------- d-----w C:\Program Files\Microsoft Works
2007-05-31 20:40:30 -------- d-----w C:\Program Files\MSBuild
2007-05-31 19:43:24 -------- d-----w C:\Program Files\Windows Live
2007-05-30 20:27:07 -------- d-----w C:\Program Files\Messenger
2007-05-30 20:01:45 -------- d--h--w C:\Program Files\WindowsUpdate
2007-05-30 19:37:48 -------- d-----w C:\Program Files\Windows NT
2007-05-30 19:28:25 -------- d-----w C:\DOCUME~1\Yoyo\APPLIC~1\WinRAR
2007-05-30 19:27:42 -------- d-----w C:\DOCUME~1\Yoyo\APPLIC~1\Lavasoft
2007-05-30 19:27:34 -------- d-----w C:\Program Files\Lavasoft
2007-05-30 19:25:20 -------- d-----w C:\Program Files\LimeWire
2007-05-30 19:18:53 -------- d-----w C:\Program Files\S3
2007-05-30 18:55:18 -------- d-----w C:\Program Files\Fichiers communs\ODBC
2007-05-30 18:55:15 -------- d-----w C:\Program Files\Fichiers communs\SpeechEngines
2007-05-30 18:03:29 -------- d-----w C:\Program Files\microsoft frontpage
2007-05-30 18:03:25 0 --sha-r C:\MSDOS.SYS
2007-05-30 18:03:25 0 --sha-r C:\IO.SYS
2007-05-30 18:03:25 0 ----a-w C:\CONFIG.SYS
2007-05-30 18:03:25 0 ----a-w C:\AUTOEXEC.BAT
2007-05-30 18:01:06 -------- d-----w C:\Program Files\Fichiers communs\MSSoap


((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))


*Note* empty entries & legit default entries are not shown

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2006-09-06 05:44 C:\WINDOWS\RTHDCPL.exe]
"SkyTel"="SkyTel.EXE" [2006-05-16 12:04 C:\WINDOWS\SkyTel.exe]
"VTTimer"="VTTimer.exe" [2006-08-03 14:53 C:\WINDOWS\system32\VTTimer.exe]
"S3Trayp"="S3trayp.exe" [2006-07-11 02:33 C:\WINDOWS\system32\S3Trayp.exe]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe" [2005-04-13 03:48]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-04-30 17:42]
"SSBkgdUpdate"="C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2003-09-29 16:00]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-19 16:09]
"MsnMsgr"="C:\Program Files\MSN Messenger\MsnMsgr.exe" [2007-01-19 12:55]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-05-30 21:44]

C:\Documents and Settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
Utilitaire r‚seau pour SAGEM Wi-Fi 11g USB adapter.lnk - C:\Program Files\SAGEM WiFi manager\WLANUTL.exe [2007-07-21 20:00:32]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoLowDiskSpaceChecks"=1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\WBSrv]
C:\PROGRA~1\Stardock\OBJECT~1\WINDOW~1\wbsrv.dll 2007-03-05 17:36 140976 C:\PROGRA~1\Stardock\OBJECT~1\WINDOW~1\WbSrv.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"appinit_dlls"=wbsys.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\minimal\AVG Anti-Spyware Driver]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\minimal\AVG Anti-Spyware Guard]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Logitech Desktop Messenger.lnk]
path=C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logitech Desktop Messenger.lnk
backup=C:\WINDOWS\pss\Logitech Desktop Messenger.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Outil de mise à jour Google.lnk]
path=C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Outil de mise à jour Google.lnk
backup=C:\WINDOWS\pss\Outil de mise à jour Google.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Yoyo^Menu Démarrer^Programmes^Démarrage^EUROBARRE.lnk]
path=C:\Documents and Settings\Yoyo\Menu Démarrer\Programmes\Démarrage\Eurobarre.lnk
backup=C:\WINDOWS\pss\Eurobarre.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\!AVG Anti-Spyware]
"C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
"C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr]
ALCMTR.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
"C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Controleur de calendrier pour Ulead Photo Express]
C:\Program Files\Ulead Systems\Ulead Photo Express 5 SE\calcheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools]
"C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
"C:\Program Files\ICQ6\ICQ.exe" silent

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IncrediMail]
C:\Program Files\IncrediMail\bin\IncMail.exe /c

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InvisibleBrowsing]
C:\Program Files\Invisible Browsing\InvisibleBrowsing.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
"C:\Program Files\iTunes\iTunesHelper.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LDM]
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechSoftwareUpdate]
"C:\Program Files\Logitech\Video\ManifestEngine.exe" boot

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideoRepair]
C:\Program Files\Logitech\Video\ISStart.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideoTray]
C:\Program Files\Logitech\Video\LogiTray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LVCOMSX]
C:\WINDOWS\system32\LVCOMSX.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mmtask]
"C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MMTray]
"C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
"C:\Program Files\Messenger\msmsgs.exe" /background

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OPSE reminder]
"C:\Program Files\ScanSoft\OmniPageSE2.0\EregFre\Ereg.exe" -r "C:\Program Files\ScanSoft\OmniPageSE2.0\EregFre\ereg.ini"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OpwareSE2]
"C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
"C:\Program Files\QuickTime\QTTask.exe" -atboottime

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\STYLEXP]
C:\Program Files\TGTSoft\StyleXP\StyleXP.exe -Hide

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
"C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Ulead AutoDetector]
C:\Program Files\Ulead Systems\Ulead Photo Explorer 8.0 SE Basic\Monitor.exe

R0 gagp30kx;Filtre AGP version 3.0 g‚n‚rique Microsoft pour plates-formes … base de processeur K8;C:\WINDOWS\system32\DRIVERS\gagp30kx.sys
R0 JGOGO;JMicron Hot-Plug Driver;C:\WINDOWS\system32\DRIVERS\JGOGO.sys
R0 JRAID;JRAID;C:\WINDOWS\system32\DRIVERS\jraid.sys
R0 videX32;videX32;C:\WINDOWS\system32\DRIVERS\videX32.sys
R0 xfilt;VIA SATA IDE Hot-plug Driver;C:\WINDOWS\system32\DRIVERS\xfilt.sys
R1 AmdK8;Pilote de processeur AMD;C:\WINDOWS\system32\DRIVERS\AmdK8.sys
R1 NetworkX;NetworkX;C:\WINDOWS\system32\ckldrv.sys
R1 StyleXPHelper;StyleXPHelper;\??\C:\Program Files\TGTSoft\StyleXP\StyleXPHelper.exe
R2 spupdsvc;Windows Service Pack Installer update service;C:\WINDOWS\system32\spupdsvc.exe
R2 UxTuneUp;TuneUp Extension de thŠme;C:\WINDOWS\System32\svchost.exe -k netsvcs
R3 MTsensor;ATK0110 ACPI UTILITY;C:\WINDOWS\system32\DRIVERS\ASACPI.sys
R3 QCMerced;Logitech QuickCam Communicate;C:\WINDOWS\system32\DRIVERS\LVCM.sys
R3 RTL8023xp;Realtek 10/100/1000 PCI NIC Family NDIS XP Driver;C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys
R3 S3GIGP;S3GIGP;C:\WINDOWS\system32\DRIVERS\S3gIGPm.sys
R3 SG762_XP;SAGEM 802.11g XG762 1211B Driver;C:\WINDOWS\system32\DRIVERS\WlanBZXP.sys
R3 ZDPSp50;ZDPSp50 NDIS Protocol Driver;C:\WINDOWS\system32\Drivers\ZDPSp50.sys
S3 ggsemc;Sony Ericsson USB Flash Driver;C:\WINDOWS\system32\DRIVERS\ggsemc.sys
S3 iPod Service;Service de l'iPod;"C:\Program Files\iPod\bin\iPodService.exe"
S3 odserv;Microsoft Office Diagnostics Service;"C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE"
S3 ZDCndis5;ZDCndis5 Protocol Driver;\??\C:\WINDOWS\System32\ZDCndis5.SYS
S3 ZDPNDIS5;ZDPNDIS5 NDIS Protocol Driver;\??\C:\WINDOWS\system32\ZDPNDIS5.SYS
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Svchost - netsvcs
UxTuneUp


[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{8365c032-113a-11dc-9aba-0060b3f9f5e0}]
Auto\command- AdobeR.exe e
AutoRun\command- C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL AdobeR.exe e

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{99243044-1fe4-11dc-9aeb-0060b3f9f5e0}]
Auto\command- I:\AdobeR.exe e
AutoRun\command- C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL AdobeR.exe e

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{fc6e9334-11ce-11dc-9abe-0060b3f9f5e0}]
Auto\command- K:\AdobeR.exe e
AutoRun\command- C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL AdobeR.exe e


Contents of the 'Scheduled Tasks' folder
2007-07-18 19:22:00 C:\WINDOWS\tasks\AppleSoftwareUpdate.job
2007-07-20 15:16:08 C:\WINDOWS\tasks\Maintenance en 1 clic.job

**************************************************************************

catchme 0.3.1061 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-07-23 21:07:52
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden registry entries ...

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Prefetcher]
"TracesProcessed"=dword:00000214

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************

Completion time: 2007-07-23 21:09:03

--- E O F ---