Bonjour. merci pour votre aide.


DDS (Ver_09-10-13.01) - NTFSx86
Run by lotfi at 15:28:58,35 on 14/10/2009
Internet Explorer: 6.0.2900.2180 BrowserJavaVersion: 1.6.0_15
Microsoft Windows XP Professionnel 5.1.2600.2.1252.33.1036.18.2046.1388 [GMT 2:00]

AV: ESET NOD32 Antivirus 4.0 *On-access scanning enabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\VIAudioi\HDADeck\HDeck.exe
C:\WINDOWS\vsnp2std.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
C:\Documents and Settings\lotfi\Mes documents\Téléchargements\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.google.fr/
uSearch Page = hxxp://search.live.com
uWindow Title =
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\fichiers communs\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\program files\microsoft\search enhancement pack\search helper\SearchHelper.dll
BHO: Programme d'aide de l'Assistant de connexion Windows Live: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\fichiers communs\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
BHO: Search Assistant: {f0626a63-410b-45e2-99a1-3f2475b2d695} - c:\program files\sgpsa\BHO.dll
TB: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [nwiz] nwiz.exe /install
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [HDAudDeck] c:\program files\viaudioi\hdadeck\HDeck.exe 1
mRun: [snp2std] c:\windows\vsnp2std.exe
mRun: [ISUSPM Startup] "c:\program files\fichiers communs\installshield\updateservice\ISUSPM.exe" -startup
mRun: [egui] "c:\program files\eset\eset nod32 antivirus\egui.exe" /hide /waitservice
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
IE: Add to AMV Convert Tool... - c:\program files\mp3 player utilities 3.79\amvconverter\grab.html
IE: Add to AMV Converter... - c:\program files\mp3 player utilities 4.15\amvconverter\grab.html
IE: MediaManager tool grab multimedia file - c:\program files\mp3 player utilities 4.15\mediamanager\grab.html
IE: Ouvrir dans WordPerfect - c:\program files\wordperfect office x3\programs\WPLauncher.hta
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} - hxxp://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} - hxxp://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab
DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} - hxxp://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/PhtPkMSN.cab
DPF: {A1F2F2CE-06AF-483C-9F12-D3BAA72477D6} - hxxp://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/DigWXMSN.cab
DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\fichie~1\skype\SKYPE4~1.DLL
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\lotfi\applic~1\mozilla\firefox\profiles\n8rfjm0g.default\
FF - prefs.js: browser.search.defaulturl - hxxp://www.fastbrowsersearch.com/results/results.aspx?s=DEF&v=19&q=
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - www.google.fr
FF - prefs.js: keyword.URL - hxxp://www.fastbrowsersearch.com/results/results.aspx?s=NAUS&v=19&tid={959DAD2D-8D82-D110-AE33-A1E77E6C4AA6}&q=
FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}

============= SERVICES / DRIVERS ===============

R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [2009-5-14 107256]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [2009-5-14 94360]
R2 ekrn;ESET Service;c:\program files\eset\eset nod32 antivirus\ekrn.exe [2009-5-14 731840]
R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [2009-7-8 55152]
R2 SeaPort;SeaPort;c:\program files\microsoft\search enhancement pack\seaport\SeaPort.exe [2009-1-14 226656]
S3 camfilt2;camfilt2;c:\windows\system32\drivers\camfilt2.sys [2009-10-12 94208]
S3 fsssvc;Windows Live Contrôle parental;"c:\program files\windows live\family safety\fsssvc.exe" --> c:\program files\windows live\family safety\fsssvc.exe [?]
S3 o1394bul;o1394bul;\??\c:\temp\o1394bul.sys --> c:\temp\o1394bul.sys [?]
S3 SNP325;USB PC Camera (SNPSTD325);c:\windows\system32\drivers\snp325.sys --> c:\windows\system32\drivers\snp325.sys [?]

=============== Created Last 30 ================

2009-10-14 15:28 <DIR> --d----- c:\temp\F1D.tmp
2009-10-14 15:13 <DIR> --d----- c:\program files\Spybot - Search & Destroy
2009-10-14 15:01 <DIR> --d----- c:\temp\~nsu.tmp
2009-10-14 14:41 16,384 a------t c:\temp\Perflib_Perfdata_4b0.dat
2009-10-14 14:40 <DIR> --d----- c:\temp\WPDNSE
2009-10-14 13:33 <DIR> --d----- c:\program files\SGPSA
2009-10-14 13:33 <DIR> --d----- c:\temp\{1BB22D38-A411-4B13-A746-C2A4F4EC7344}
2009-10-13 22:48 <DIR> --d----- c:\documents and settings\all users\Modèles
2009-10-12 20:02 94,208 a------- c:\windows\system32\drivers\camfilt2.sys
2009-10-12 20:02 53,248 a------- c:\windows\system32\csnp2uvc.dll
2009-10-12 20:02 28,160 a------- c:\windows\system32\drivers\sncduvc.sys
2009-10-12 20:02 15,497 a------- c:\windows\snp2uvc.ini
2009-10-12 20:02 13,022 a------- c:\windows\snp2uvc.src
2009-10-12 20:02 9,602,944 a------- c:\windows\system32\drivers\snp2uvc.sys
2009-10-12 20:02 299,008 a------- c:\windows\system32\vsnp2uvc.dll
2009-10-12 20:02 167,936 a------- c:\windows\system32\rsnp2uvc.dll
2009-10-12 20:00 20,992 ac------ c:\windows\system32\dllcache\dshowext.ax
2009-10-12 20:00 20,992 a------- c:\windows\system32\dshowext.ax
2009-10-12 13:47 <DIR> --d----- c:\temp\plugtmp-1
2009-10-11 21:52 <DIR> --d----- c:\docume~1\lotfi\applic~1\AVS4YOU
2009-10-11 21:52 <DIR> --d----- c:\docume~1\alluse~1\applic~1\AVS4YOU
2009-10-11 21:51 974,848 a------- c:\windows\system32\mfc70.dll
2009-10-11 21:51 487,424 a------- c:\windows\system32\msvcp70.dll
2009-10-11 21:51 <DIR> --d----- c:\program files\fichiers communs\AVSMedia
2009-10-11 21:51 344,064 a------- c:\windows\system32\msvcr70.dll
2009-10-11 21:28 1,822,091 a------- C:\ghenni el babour.amv
2009-10-11 01:55 <DIR> --d----- c:\program files\ESET
2009-10-09 21:53 <DIR> --d----- c:\temp\WERd7a0.dir00
2009-10-08 19:40 <DIR> --dsh--- c:\windows\ftpcache
2009-10-02 19:22 <DIR> --d----- c:\documents and settings\lotfi\AbiSuite
2009-10-02 19:21 <DIR> --d----- c:\program files\AbiSuite2
2009-09-30 20:11 <DIR> --d----- c:\program files\fichiers communs\Apple

==================== Find3M ====================

2009-08-11 15:45 411,368 a------- c:\windows\system32\deploytk.dll
2009-07-22 17:57 458,980 a------- c:\windows\system32\perfh00C.dat
2009-07-22 17:57 71,836 a------- c:\windows\system32\perfc00C.dat
2009-07-20 13:18 23,416 a------- c:\windows\system32\emptyregdb.dat

============= FINISH: 15:29:21,20 ===============

Hello ,


Suit cette procédure: http://pagesperso-orange.fr/NosTools/crbst_12.html

>> lien modifié :)

Bonne suite .
@+

Malwarebytes' Anti-Malware 1.41
Version de la base de données: 2960
Windows 5.1.2600 Service Pack 2

14/10/2009 17:01:52
mbam-log-2009-10-14 (17-01-52).txt

Type de recherche: Examen rapide
Eléments examinés: 91373
Temps écoulé: 2 minute(s), 7 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)