Win32 trojan gen

bonjour a tous j'ai comme virus win32 trojan gen , j'ai suivi les conseils de regis59 c'est a dire que j'ai utilisé hijackthis et je vous donne donc le rapport du logiciel en esperant que vous trouverez une solution a mon probleme
merci a toLogfile of HijackThis v1.99.1
Scan saved at 23:39:45, on 02/10/2005
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\mqhijk.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\System32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\WINDOWS\System32\l?ass.exe
C:\Program Files\nscp\osdu.exe
C:\Program Files\WINSOS\WINSOS.EXE
C:\Program Files\Softwin\BitDefender Free Edition\Infected\3D!Turbo.exe
E:\music xiaoyu\BlueSoleil.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
E:\music xiaoyu\BTNtService.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\wdfmgr.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\etb\pokapoka72.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\WinRAR\WinRAR.exe
C:\DOCUME~1\Zhu\LOCALS~1\Temp\Rar$EX00.860\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://www.searchwebzone.com/sp2.php
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.searchwebzone.com/sp2.php
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O1 - Hosts: 129.107.56.93 onlineaccounts2.abbeynational.co.uk
O1 - Hosts: 129.107.56.93 www3.aibgbonline.co.uk
O1 - Hosts: 129.107.56.93 www.bank.alliance-leicester.co.uk
O1 - Hosts: 129.107.56.93 login.iblogin.com
O1 - Hosts: 129.107.56.93 ww2.bankofscotlandhalifax-online.co.uk
O1 - Hosts: 129.107.56.93 inet.barclays.co.uk
O1 - Hosts: 129.107.56.93 iibank.barclays.co.uk
O1 - Hosts: 129.107.56.93 iibank.cahoot.com
O1 - Hosts: 129.107.56.93 www3.coventrybuildingsociety.co.uk
O1 - Hosts: 129.107.56.93 ww.hsbc.co.uk
O1 - Hosts: 129.107.56.93 login.ebank.offshore.hsbc.co.je
O1 - Hosts: 129.107.56.93 ww3.online-offshore.lloydstsb.com
O1 - Hosts: 129.107.56.93 ww3.online-business.lloydstsb.co.uk
O1 - Hosts: 129.107.56.93 ww3.online.lloydstsb.co.uk
O1 - Hosts: 129.107.56.93 ww3.online.lloydstsb.co.uk
O1 - Hosts: 129.107.56.93 ww3.online-business.lloydstsb.co.uk
O1 - Hosts: 129.107.56.93 ob2.nationet.com
O1 - Hosts: 129.107.56.93 ww3.onlinebanking.natwestoffshore.com
O1 - Hosts: 129.107.56.93 ww1.nwolb.com
O1 - Hosts: 129.107.56.93 ww1.onlinebanking.iombank.com
O1 - Hosts: 129.107.56.93 ww1.www.rbsdigital.com
O1 - Hosts: 129.107.56.93 welcome.smile.co.uk
O1 - Hosts: 129.107.56.93 login.365online.com
O1 - Hosts: 129.107.56.93 wvw.citizensbankonline.com
O1 - Hosts: 129.107.56.93 esecure.regionsnet.com
O1 - Hosts: 129.107.56.93 rollb.associatedbank.com
O1 - Hosts: 129.107.56.93 upb.unionplanters.com
O1 - Hosts: 129.107.56.93 www.onlinebanking.huntington.com
O1 - Hosts: 129.107.56.93 inet.southtrustonlinebanking.com
O1 - Hosts: 129.107.56.93 logon.personal.wamu.com
O1 - Hosts: 129.107.56.93 login.compassweb.com
O1 - Hosts: 129.107.56.93 logon.firstmeritib.com
O1 - Hosts: 129.107.56.93 login.ccfcuonline.org
O1 - Hosts: 129.107.56.93 ww3.etimebanker.bankofthewest.com
O1 - Hosts: 129.107.56.93 ww2.onlinebanking.lasallebank.com
O1 - Hosts: 129.107.56.93 wvw.totallyfreebanking.com
O1 - Hosts: 129.107.56.93 www.online.wellsfargo.com
O1 - Hosts: 129.107.56.93 www.onlinebanking.bankofoklahoma.com
O1 - Hosts: 129.107.56.93 accounts4.keybank.com
O1 - Hosts: 129.107.56.93 logon.bankone.com
O1 - Hosts: 129.107.56.93 www.secure.tdbanknorth.com
O1 - Hosts: 129.107.56.93 www.secure.mvnt4.com
O1 - Hosts: 129.107.56.93 ww.mynfbonline.com
O1 - Hosts: 129.107.56.93 login.forumcuonline.com
O1 - Hosts: 129.107.56.93 www.eds.usersonlnet.com
O1 - Hosts: 129.107.56.93 www.onlineid.bankofamerica.com
O1 - Hosts: 129.107.56.93 wvw.e-gold.com
O1 - Hosts: 129.107.56.93 pcbs.peoples.com
O1 - Hosts: 129.107.56.93 www.global1.onlinebank.com
O1 - Hosts: 129.107.56.93 ww2.mybranch.lafcu.com
O1 - Hosts: 129.107.56.93 login.webbanking.comerica.com
O1 - Hosts: 129.107.56.93 web.banking.firsttennessee.com
O1 - Hosts: 129.107.56.93 logon.members1st.org
O1 - Hosts: 129.107.56.93 www.cib.ibanking-services.com
O1 - Hosts: 129.107.56.93 www.miwebbusbank.ebanking-services.com
O1 - Hosts: 129.107.56.93 wvw.paypal.com
O1 - Hosts: 129.107.56.93 www.signin.ebay.com
O1 - Hosts: 129.107.56.93 wvw.etrade.com
O1 - Hosts: 129.107.56.93 ww4.fleethomelink.fleet.com
O1 - Hosts: 129.107.56.93 ww3.connect.skyfi.com
O1 - Hosts: 129.107.56.93 www6.usbank.com
O1 - Hosts: 129.107.56.93 www.bvi.bancodevalencia.es
O1 - Hosts: 129.107.56.93 extrant.banesto.es
O1 - Hosts: 129.107.56.93 banesnt.banesto.es
O1 - Hosts: 129.107.56.93 activia.caixagalicia.es
O1 - Hosts: 129.107.56.93 www.bancae.caixapenedes.com
O1 - Hosts: 129.107.56.93 login.caixasabadell.net
O1 - Hosts: 129.107.56.93 oii.cajamadrid.es
O1 - Hosts: 129.107.56.93 login.cajamar.es
O1 - Hosts: 129.107.56.93 login.ccm.es
O1 - Hosts: 129.107.56.93 ww.unicaja.es
O1 - Hosts: 129.107.56.93 www5.bancopopular.es
O1 - Hosts: 129.107.56.93 ww3.bbvanet.com
O1 - Hosts: 129.107.56.93 ww.bayernlb.de
O1 - Hosts: 129.107.56.93 ww2.berliner-volksbank.de
O1 - Hosts: 129.107.56.93 ww7.homebanking-berlin.de
O1 - Hosts: 129.107.56.93 portal09.commerzbanking.de
O1 - Hosts: 129.107.56.93 www.meine.deutsche-bank.de
O1 - Hosts: 129.107.56.93 ww2.dresdner-privat.de
O1 - Hosts: 129.107.56.93 ww.e-banking.helaba.de
O1 - Hosts: 129.107.56.93 ww.hsh-nordbank.de
O1 - Hosts: 129.107.56.93 www.my.hypovereinsbank.de
O1 - Hosts: 129.107.56.93 ww3.homebanking-berlin.de
O1 - Hosts: 129.107.56.93 ww3.homebanking-berlin.de
O1 - Hosts: 129.107.56.93 www.banking.lbbw.de
O1 - Hosts: 129.107.56.93 lrp.sparkasse-banking.de
O1 - Hosts: 129.107.56.93 ww3.homebanking-niedersachsen.de
O1 - Hosts: 129.107.56.93 www.onlinebanking.norisbank.de
O1 - Hosts: 129.107.56.93 www.banking.postbank.de
O1 - Hosts: 129.107.56.93 wvw.internetbanking.gad.de
O1 - Hosts: 129.107.56.93 ww1.portal.izb.de
O1 - Hosts: 129.107.56.93 wvw.kunden-service.lbs.de
O1 - Hosts: 129.107.56.93 ibanking.seb.de
O1 - Hosts: 129.107.56.93 bw7.sparkasse-banking.de
O1 - Hosts: 129.107.56.93 ww2.homebanking-sparkasse.de
O1 - Hosts: 129.107.56.93 ww2.vr-networld-ebanking.de
O1 - Hosts: 129.107.56.93 ww.bics.fr
O1 - Hosts: 129.107.56.93 www.co.caixabank.fr
O1 - Hosts: 129.107.56.93 ww.creditmutuel.fr
O1 - Hosts: 129.107.56.93 internetbank.intesabci.it
O1 - Hosts: 129.107.56.93 ww.extensive.bancalombarda.it
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NVCLOCK] Rundll32 nvclock.dll,fnNvclock
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [EPSON Stylus CX3200] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE /P19 "EPSON Stylus CX3200" /O6 "USB001" /M "Stylus CX3200"
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [BigDogPath] C:\WINDOWS\VM_STI.EXE VIMICRO USB PC Camera 301x
O4 - HKLM\..\Run: [TPPOLL] C:\Program Files\TOPRO\TPPOLL.EXE
O4 - HKLM\..\Run: [Microsoft Windows DLL Services Configuration] windir32.exe
O4 - HKLM\..\Run: [Microsoft Update 64 BIT] schvost.exe
O4 - HKLM\..\Run: [client] C:\WINDOWS\system32\client.exe
O4 - HKLM\..\Run: [lsass] C:\windows\system32\elitemxf32.exe
O4 - HKLM\..\Run: [tV7a8nEDT] C:\WINDOWS\mqhijk.exe
O4 - HKLM\..\Run: [BullsEye Network] C:\Program Files\BullsEye Network\bin\bargains.exe
O4 - HKLM\..\Run: [tV÷h$vùõš/‚²ÆßfÏNC:\Program Files\ISTsvc\istsvc.exe] C:\WINDOWS\mqhijk.exe
O4 - HKLM\..\Run: [winsvc32] C:\WINDOWS\System32\winsvc32.exe
O4 - HKLM\..\Run: [MSsvc322] C:\WINDOWS\System32\MSsvc32.exe
O4 - HKLM\..\Run: [notepad] notepad.exe
O4 - HKLM\..\Run: [winnt DNS ident] windowsp.exe
O4 - HKLM\..\Run: [svchost] C:\Program Files\2search\svchost.exe
O4 - HKLM\..\Run: [NaviSearch] C:\Program Files\NaviSearch\bin\nls.exe
O4 - HKLM\..\Run: [RBc Test] bldc32a.exe
O4 - HKLM\..\Run: [tV÷h$úêõš/‘²9*ß‚ºC:\Program Files\ISTsvc\istsvc.exe] C:\WINDOWS\mqhijk.exe
O4 - HKLM\..\Run: [tV÷h$úêõš/‘*ß‚º–C:\Program Files\ISTsvc\istsvc.exe] C:\WINDOWS\mqhijk.exe
O4 - HKLM\..\Run: [System Updates Service] updates.pif
O4 - HKLM\..\Run: [BDMCon] C:\PROGRA~1\Softwin\BITDEF~1\bdmcon.exe
O4 - HKLM\..\Run: [BDNewsAgent] C:\Program Files\Softwin\BitDefender Free Edition\bdnagent.exe
O4 - HKLM\..\Run: [System service63] C:\WINDOWS\etb\pokapoka63.exe
O4 - HKLM\..\Run: [tV÷h$úêõš/‘*ß‚º¤C:\Program Files\ISTsvc\istsvc.exe] C:\WINDOWS\mqhijk.exe
O4 - HKLM\..\Run: [YaplockTray.exe] C:\PROGRA~1\Yaplock\YaplockTray.exe
O4 - HKLM\..\Run: [SpySpotter System Defender] C:\Program Files\SpySpotter3\Defender.exe -startup
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [System service70] C:\WINDOWS\\\etb\\pokapoka70.exe
O4 - HKLM\..\Run: [IST Service] C:\Program Files\ISTsvc\istsvc.exe
O4 - HKLM\..\Run: [System service72] C:\WINDOWS\etb\pokapoka72.exe
O4 - HKLM\..\RunServices: [Microsoft Windows DLL Services Configuration] windir32.exe
O4 - HKLM\..\RunServices: [Microsoft Update 64 BIT] schvost.exe
O4 - HKLM\..\RunServices: [notepad] notepad.exe
O4 - HKLM\..\RunServices: [winnt DNS ident] windowsp.exe
O4 - HKLM\..\RunServices: [RBc Test] bldc32a.exe
O4 - HKLM\..\RunServices: [System Updates Service] updates.pif
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Microsoft Windows DLL Services Configuration] windir32.exe
O4 - HKCU\..\Run: [Rzsbtc] C:\WINDOWS\System32\l?ass.exe
O4 - HKCU\..\Run: [ste.exe] C:\WINDOWS\System32\msload.exe
O4 - HKCU\..\Run: [1 manager] c:\windows\1.exe
O4 - HKCU\..\Run: [2 manager] c:\windows\2.exe
O4 - HKCU\..\Run: [RBc Test] bldc32a.exe
O4 - HKCU\..\Run: [Iosu] C:\Program Files\nscp\osdu.exe
O4 - HKCU\..\Run: [System Updates Service] updates.pif
O4 - HKCU\..\Run: [WINSOS VERIFY] "C:\Program Files\WINSOS\WINSOS.EXE" MINI
O4 - HKCU\..\RunServices: [System Updates Service] updates.pif
O4 - Global Startup: 3D!Turbo Experience.lnk = C:\Program Files\Softwin\BitDefender Free Edition\Infected\3D!Turbo.exe
O4 - Global Startup: BlueSoleil.lnk = ?
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Softwin\BitDefender Free Edition\Infected\reader_sl.exe
O8 - Extra context menu item: &Traduire à partir de l'anglais - res://C:\Program Files\Google\GoogleToolbar2.dll/cmwordtrans.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Pages liées - res://C:\Program Files\Google\GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://C:\Program Files\Google\GoogleToolbar2.dll/cmsimilar.html
O8 - Extra context menu item: Recherche &Google - res://C:\Program Files\Google\GoogleToolbar2.dll/cmsearch.html
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://C:\Program Files\Google\GoogleToolbar2.dll/cmcache.html
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O16 - DPF: v3cab - http://searchmiracle.com/cab/v3cab.cab
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {20048BB3-DB68-11CF-9CAF-00AA006CB425} (007installer Control) - http://www.bardownload.com/prompt/cabs/website.cab
O16 - DPF: {42F2C9BA-614F-47C0-B3E3-ECFD34EED658} - http://216.127.33.119/ist/softwares/v4.0/ysb_regular.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {9EB320CE-BE1D-4304-A081-4B4665414BEF} (MediaTicketsInstaller Control) - http://www.mt-download.com/MediaTicketsInstaller.cab?refid=4861
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/msnmessengersetupdownloader.cab
O16 - DPF: {FC67BB52-AAB6-4282-9D51-2DAFFE73AFD0} - http://download.spyspotter.com/spyspotter/SpSp29952.40opt/SpySpotterCabInstall.cab
O23 - Service: AOL Instant Messenger (AOL Instant Messenger) - Unknown owner - C:\WINDOWS\rofl.exe (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe" /service (file missing)
O23 - Service: BlueSoleil Hid Service - Unknown owner - E:\music xiaoyu\BTNtService.exe
O23 - Service: EpsonBidirectionalService - Unknown owner - C:\Program Files\Fichiers communs\EPSON\EBAPI\eEBSVC.exe (file missing)
O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - Unknown owner - C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Remote Procedure Call (RPC) Locator (Locator) - Unknown owner - C:\WINDOWS\System32\rpclocator.exe (file missing)
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Office Source Engine (ose) - Unknown owner - C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE (file missing)
O23 - Service: SMSS - Unknown owner - C:\WINDOWS\smss.exe (file missing)
O23 - Service: spool - Unknown owner - C:\WINDOWS\spoollv.exe (file missing)
O23 - Service: tsecure - Unknown owner - C:\WINDOWS\tsecure.exe (file missing)
O23 - Service: WindowsService (WINSERVICE) - Unknown owner - C:\WINDOWS\service.exe (file missing)
O23 - Service: BitDefender Communicator (XCOMM) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe" /service (file missing)

us