Comment suprimer le virus Win32:Agent-JXC [Tr [Résolu]

J'ai fais se que vous avez dit dans le message avec MSN fix et que faut il que je fasse maintenan?

Bonjour voici le rapport:

MSN_Fix 1.463

C:\Documents and Settings\Etienne\Bureau\MSNFix
Fix exécuté le 17/08/2007 - 19:44:22,82 By Etienne
mode normal

************************ Recherche les fichiers présents

... C:\WINDOWS\album2.zip
... C:\WINDOWS\album32.zip
... C:\WINDOWS\album41.zip
... C:\WINDOWS\album44.zip
... C:\WINDOWS\album47.zip
... C:\WINDOWS\album50.zip
... C:\WINDOWS\album53.zip
... C:\WINDOWS\album62.zip
... C:\WINDOWS\album68.zip
... C:\WINDOWS\album77.zip
... C:\WINDOWS\album92.zip
... C:\WINDOWS\album98.zip
... C:\WINDOWS\photo15.zip
... C:\WINDOWS\photo36.zip
... C:\WINDOWS\photo42.zip
... C:\WINDOWS\photo48.zip
... C:\WINDOWS\photo57.zip
... C:\WINDOWS\photo84.zip
... C:\WINDOWS\photo87.zip
... C:\WINDOWS\photo96.zip
... C:\WINDOWS\photos010.zip
... C:\WINDOWS\photos016.zip
... C:\WINDOWS\photos028.zip
... C:\WINDOWS\photos031.zip
... C:\WINDOWS\photos034.zip
... C:\WINDOWS\photos037.zip
... C:\WINDOWS\photos04.zip
... C:\WINDOWS\photos049.zip
... C:\WINDOWS\photos052.zip
... C:\WINDOWS\photos055.zip
... C:\WINDOWS\photos064.zip
... C:\WINDOWS\photos067.zip
... C:\WINDOWS\photos073.zip
... C:\WINDOWS\photos079.zip
... C:\WINDOWS\photos085.zip
... C:\WINDOWS\webcam-photos017.zip
... C:\WINDOWS\webcam-photos026.zip
... C:\WINDOWS\webcam-photos035.zip
... C:\WINDOWS\webcam-photos038.zip
... C:\WINDOWS\webcam-photos041.zip
... C:\WINDOWS\webcam-photos05.zip
... C:\WINDOWS\webcam-photos050.zip
... C:\WINDOWS\webcam-photos053.zip
... C:\WINDOWS\webcam-photos056.zip
... C:\WINDOWS\webcam-photos077.zip
... C:\WINDOWS\webcam-photos080.zip
... C:\WINDOWS\webcam-photos089.zip
... C:\WINDOWS\webcam-photos098.zip
... C:\WINDOWS\itsME13.zip
... C:\WINDOWS\itsME16.zip
... C:\WINDOWS\itsME40.zip
... C:\WINDOWS\itsME43.zip
... C:\WINDOWS\itsME52.zip
... C:\WINDOWS\itsME58.zip
... C:\WINDOWS\itsME64.zip
... C:\WINDOWS\itsME70.zip
... C:\WINDOWS\itsME73.zip
... C:\WINDOWS\itsME88.zip
... C:\WINDOWS\itsME94.zip

************************ Recherche les dossiers présents

... C:\Temp\




************************ Suppression des fichiers

.. OK ... C:\WINDOWS\album2.zip
.. OK ... C:\WINDOWS\album32.zip
.. OK ... C:\WINDOWS\album41.zip
.. OK ... C:\WINDOWS\album44.zip
.. OK ... C:\WINDOWS\album47.zip
.. OK ... C:\WINDOWS\album50.zip
.. OK ... C:\WINDOWS\album53.zip
.. OK ... C:\WINDOWS\album62.zip
.. OK ... C:\WINDOWS\album68.zip
.. OK ... C:\WINDOWS\album77.zip
.. OK ... C:\WINDOWS\album92.zip
.. OK ... C:\WINDOWS\album98.zip
.. OK ... C:\WINDOWS\photo15.zip
.. OK ... C:\WINDOWS\photo36.zip
.. OK ... C:\WINDOWS\photo42.zip
.. OK ... C:\WINDOWS\photo48.zip
.. OK ... C:\WINDOWS\photo57.zip
.. OK ... C:\WINDOWS\photo84.zip
.. OK ... C:\WINDOWS\photo87.zip
.. OK ... C:\WINDOWS\photo96.zip
.. OK ... C:\WINDOWS\photos010.zip
.. OK ... C:\WINDOWS\photos016.zip
.. OK ... C:\WINDOWS\photos028.zip
.. OK ... C:\WINDOWS\photos031.zip
.. OK ... C:\WINDOWS\photos034.zip
.. OK ... C:\WINDOWS\photos037.zip
.. OK ... C:\WINDOWS\photos04.zip
.. OK ... C:\WINDOWS\photos049.zip
.. OK ... C:\WINDOWS\photos052.zip
.. OK ... C:\WINDOWS\photos055.zip
.. OK ... C:\WINDOWS\photos064.zip
.. OK ... C:\WINDOWS\photos067.zip
.. OK ... C:\WINDOWS\photos073.zip
.. OK ... C:\WINDOWS\photos079.zip
.. OK ... C:\WINDOWS\photos085.zip
.. OK ... C:\WINDOWS\webcam-photos017.zip
.. OK ... C:\WINDOWS\webcam-photos026.zip
.. OK ... C:\WINDOWS\webcam-photos035.zip
.. OK ... C:\WINDOWS\webcam-photos038.zip
.. OK ... C:\WINDOWS\webcam-photos041.zip
.. OK ... C:\WINDOWS\webcam-photos05.zip
.. OK ... C:\WINDOWS\webcam-photos050.zip
.. OK ... C:\WINDOWS\webcam-photos053.zip
.. OK ... C:\WINDOWS\webcam-photos056.zip
.. OK ... C:\WINDOWS\webcam-photos077.zip
.. OK ... C:\WINDOWS\webcam-photos080.zip
.. OK ... C:\WINDOWS\webcam-photos089.zip
.. OK ... C:\WINDOWS\webcam-photos098.zip
.. OK ... C:\WINDOWS\itsME13.zip
.. OK ... C:\WINDOWS\itsME16.zip
.. OK ... C:\WINDOWS\itsME40.zip
.. OK ... C:\WINDOWS\itsME43.zip
.. OK ... C:\WINDOWS\itsME52.zip
.. OK ... C:\WINDOWS\itsME58.zip
.. OK ... C:\WINDOWS\itsME64.zip
.. OK ... C:\WINDOWS\itsME70.zip
.. OK ... C:\WINDOWS\itsME73.zip
.. OK ... C:\WINDOWS\itsME88.zip
.. OK ... C:\WINDOWS\itsME94.zip


************************ Suppression des dossiers

.. OK ... C:\Temp\


************************ Nettoyage du registre



************************ Fichiers suspects

/!\ ces fichiers nécessitent un avis expérimenté avant toute intervention

[C:\WINDOWS\system32\anfysave.scr] 414E884ABCB21F6C25BDCAE584D642BC


Les fichiers et clés de registre supprimés ont été sauvegardés dans le fichier 17082007_19444640.zip


------------------------------------------------------------------------
Auteur : !aur3n7 Contact: http://www.changelog.fr
------------------------------------------------------------------------

--------------------------------------------- END ---------------------------------------------

Bonjour voici le log de Hijackthis:

Logfile of HijackThis v1.99.1
Scan saved at 14:14:51, on 18/08/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16512)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
C:\Program Files\Java\jre1.5.0_03\bin\jucheck.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Santa Cruz Networks\vSkype\vSkype.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Xfire\xfire.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Etienne\Bureau\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.01net.com/telecharger/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.01net.com/telecharger/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Share_Accelerator_MM toolbar - {4596013b-6c31-408b-a266-deae5c086dc2} - C:\Program Files\Share_Accelerator_MM\tbSha0.dll
O2 - BHO: Share_Accelerator_MM toolbar - {4596013b-6c31-408b-a266-deae5c086dc2} - C:\Program Files\Share_Accelerator_MM\tbSha0.dll
O2 - BHO: VMN Toolbar - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: VMN Toolbar - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL
O3 - Toolbar: Share_Accelerator_MM toolbar - {4596013b-6c31-408b-a266-deae5c086dc2} - C:\Program Files\Share_Accelerator_MM\tbSha0.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [vSkype] C:\Program Files\Santa Cruz Networks\vSkype\vSkype.exe no
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NVMCTRAY.DLL,NvTaskbarInit
O4 - Startup: Xfire.lnk = C:\Program Files\Xfire\xfire.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?38d1c4d70dd5472fb51c31d3ede32e9f
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?38d1c4d70dd5472fb51c31d3ede32e9f
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O18 - Protocol: vskype - (no CLSID) - (no file)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe

Et voici celui de Combofix:

ComboFix 07-08-14.4 - "Etienne" 2007-08-18 14:15:41.2 - NTFSx86
Microsoft Windows XP �dition familiale 5.1.2600.2.1252.1.1036.18.221 [GMT 2:00]


((((((((((((((((((((((((( Files Created from 2007-07-18 to 2007-08-18 )))))))))))))))))))))))))))))))


2007-08-17 17:06 <REP> d-------- C:\Program Files\DVD Shrink
2007-08-17 17:06 <REP> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
2007-08-17 16:42 51,200 --a------ C:\WINDOWS\nircmd.exe
2007-08-17 14:53 <REP> d-------- C:\DOCUME~1\Etienne\APPLIC~1\dvdcss
2007-08-17 11:39 <REP> d-------- C:\Program Files\eMule
2007-08-16 22:02 76,560 --a------ C:\WINDOWS\system32\drivers\tmcomm.sys
2007-08-16 22:01 <REP> d-------- C:\DOCUME~1\Etienne\.housecall6.6
2007-08-16 20:36 <REP> d-------- C:\WINDOWS\BDOSCAN8
2007-08-16 20:24 <REP> d--h----- C:\WINDOWS\msdownld.tmp
2007-08-16 20:24 <REP> d-------- C:\WINDOWS\system32\fr-fr
2007-08-16 20:19 <REP> d-------- C:\WINDOWS\network diagnostic
2007-08-16 20:18 33,792 --a--c--- C:\WINDOWS\system32\dllcache\custsat.dll
2007-08-16 20:04 <REP> d-------- C:\Hijackthis
2007-08-10 15:11 <REP> d-------- C:\DOCUME~1\NETWOR~1\APPLIC~1\Xfire
2007-08-08 21:48 97,280 --a------ C:\DOCUME~1\Etienne\edvzjs.exe
2007-08-08 21:44 97,280 --a------ C:\DOCUME~1\Etienne\qcnady.exe
2007-08-08 21:44 5,120 --a------ C:\WINDOWS\svchost.dll
2007-07-31 12:08 719,872 --a------ C:\WINDOWS\system32\devil.dll
2007-07-31 12:08 318,976 --a------ C:\WINDOWS\system32\avisynth.dll
2007-07-31 12:08 27,648 --a------ C:\WINDOWS\system32\AVSredirect.dll
2007-07-30 20:24 <REP> d-------- C:\Program Files\WinAVI MP4 Converter
2007-07-30 20:14 638,976 --a------ C:\WINDOWS\system32\divx.dll
2007-07-30 20:14 524,288 --a------ C:\WINDOWS\system32\xvidcore.dll
2007-07-30 20:14 413,760 --a------ C:\WINDOWS\system32\mpg4c32.dll
2007-07-30 20:14 261,632 --a------ C:\WINDOWS\system32\mcdvd_32.dll
2007-07-30 20:14 24,576 --a------ C:\WINDOWS\system32\msxml3a.dll
2007-07-30 20:14 139,264 --a------ C:\WINDOWS\system32\xvidvfw.dll
2007-07-30 18:44 <REP> d-------- C:\Program Files\MediaCoder


(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

2007-08-18 14:12 --------- d-------- C:\DOCUME~1\Etienne\APPLIC~1\vmntoolbar
2007-08-17 14:29 --------- d--h----- C:\Program Files\InstallShield Installation Information
2007-08-17 14:29 --------- d-------- C:\Program Files\Google
2007-08-17 11:37 --------- d-------- C:\DOCUME~1\Etienne\APPLIC~1\Xfire
2007-08-17 10:41 --------- d---s---- C:\Program Files\Xfire
2007-08-08 18:49 --------- d-------- C:\Program Files\Movie Maker
2007-08-01 15:46 --------- d-------- C:\DOCUME~1\Etienne\APPLIC~1\uTorrent
2007-07-30 21:21 --------- d-------- C:\Program Files\Fichiers communs\AVSMedia
2007-07-30 21:21 --------- d-------- C:\Program Files\AVS4YOU
2007-07-30 20:17 --------- d-------- C:\DOCUME~1\Etienne\APPLIC~1\AVS4YOU
2007-07-28 23:12 --------- d-------- C:\DOCUME~1\Etienne\APPLIC~1\Skype
2007-07-28 00:07 783224 --a------ C:\WINDOWS\system32\aswBoot.exe
2007-07-28 00:02 94416 --a------ C:\WINDOWS\system32\drivers\aswmon2.sys
2007-07-28 00:02 92848 --a------ C:\WINDOWS\system32\drivers\aswmon.sys
2007-07-28 00:00 23152 --a------ C:\WINDOWS\system32\drivers\aswRdr.sys
2007-07-27 23:59 42912 --a------ C:\WINDOWS\system32\drivers\aswTdi.sys
2007-07-27 23:58 26624 --a------ C:\WINDOWS\system32\drivers\aavmker4.sys
2007-07-27 23:57 95608 --a------ C:\WINDOWS\system32\AVASTSS.scr
2007-07-26 12:19 --------- d-------- C:\Program Files\EA GAMES
2007-07-19 08:58 3583488 --a--c--- C:\WINDOWS\system32\dllcache\mshtml.dll
2007-07-13 01:30 765952 --a--c--- C:\WINDOWS\system32\dllcache\vgx.dll
2007-07-06 19:30 99904 --a------ C:\WINDOWS\system32\PnkBstrB.exe
2007-07-06 15:04 --------- d-------- C:\Program Files\uTorrent
2007-07-06 10:51 22584 --a------ C:\WINDOWS\system32\drivers\PnkBstrK.sys
2007-07-04 13:25 --------- d-------- C:\Program Files\Replay Media Catcher
2007-07-04 11:12 --------- d-------- C:\Program Files\MSN Messenger
2007-07-04 11:11 --------- d-------- C:\Program Files\Windows Live
2007-06-27 15:24 823808 --a--c--- C:\WINDOWS\system32\dllcache\wininet.dll
2007-06-27 15:24 671232 --a--c--- C:\WINDOWS\system32\dllcache\mstime.dll
2007-06-27 15:24 477696 --a--c--- C:\WINDOWS\system32\dllcache\mshtmled.dll
2007-06-27 15:24 232960 -----c--- C:\WINDOWS\system32\dllcache\webcheck.dll
2007-06-27 15:24 193024 --a--c--- C:\WINDOWS\system32\dllcache\msrating.dll
2007-06-27 15:24 1152000 --a--c--- C:\WINDOWS\system32\dllcache\urlmon.dll
2007-06-27 15:24 105984 -----c--- C:\WINDOWS\system32\dllcache\url.dll
2007-06-27 15:24 102400 -----c--- C:\WINDOWS\system32\dllcache\occache.dll
2007-06-27 15:23 6058496 -----c--- C:\WINDOWS\system32\dllcache\ieframe.dll
2007-06-27 15:23 52224 -----c--- C:\WINDOWS\system32\dllcache\msfeedsbs.dll
2007-06-27 15:23 459264 -----c--- C:\WINDOWS\system32\dllcache\msfeeds.dll
2007-06-27 15:23 44544 -----c--- C:\WINDOWS\system32\dllcache\iernonce.dll
2007-06-27 15:23 27648 --a--c--- C:\WINDOWS\system32\dllcache\jsproxy.dll
2007-06-27 15:23 267776 -----c--- C:\WINDOWS\system32\dllcache\iertutil.dll
2007-06-27 15:22 384512 -----c--- C:\WINDOWS\system32\dllcache\iedkcs32.dll
2007-06-27 15:22 383488 -----c--- C:\WINDOWS\system32\dllcache\ieapfltr.dll
2007-06-27 15:22 230400 -----c--- C:\WINDOWS\system32\dllcache\ieaksie.dll
2007-06-27 15:22 153088 -----c--- C:\WINDOWS\system32\dllcache\ieakeng.dll
2007-06-27 15:22 132608 --a--c--- C:\WINDOWS\system32\dllcache\extmgr.dll
2007-06-27 15:22 124928 -----c--- C:\WINDOWS\system32\dllcache\advpack.dll
2007-06-27 10:53 --------- d-------- C:\Program Files\Replay Converter
2007-06-27 10:28 625152 -----c--- C:\WINDOWS\system32\dllcache\iexplore.exe
2007-06-27 10:27 63488 -----c--- C:\WINDOWS\system32\dllcache\ie4uinit.exe
2007-06-27 10:27 13824 -----c--- C:\WINDOWS\system32\dllcache\ieudinit.exe
2007-06-27 09:00 161792 --a--c--- C:\WINDOWS\system32\dllcache\ieakui.dll
2007-06-26 08:09 1104896 --a--c--- C:\WINDOWS\system32\dllcache\msxml3.dll
2007-06-26 08:09 1104896 --a------ C:\WINDOWS\system32\msxml3.dll
2007-06-21 21:33 --------- d-------- C:\Program Files\Microsoft Games
2007-06-19 15:32 282112 --a------ C:\WINDOWS\system32\gdi32.dll
2007-06-19 15:32 282112 -----c--- C:\WINDOWS\system32\dllcache\gdi32.dll
2007-06-18 22:08 --------- d-------- C:\DOCUME~1\Etienne\APPLIC~1\teamspeak2
2007-06-15 10:12 474624 -----c--- C:\WINDOWS\system32\dllcache\shlwapi.dll
2007-06-15 10:12 152064 -----c--- C:\WINDOWS\system32\dllcache\cdfview.dll
2007-06-15 10:12 1498624 -----c--- C:\WINDOWS\system32\dllcache\shdocvw.dll
2007-06-15 10:12 1056768 --a--c--- C:\WINDOWS\system32\dllcache\danim.dll
2007-06-15 10:12 1023488 -----c--- C:\WINDOWS\system32\dllcache\browseui.dll
2007-06-13 15:22 1037312 --a------ C:\WINDOWS\explorer.exe
2007-06-13 15:22 1037312 -----c--- C:\WINDOWS\system32\dllcache\explorer.exe
2007-06-07 18:03 3655608 --a------ C:\Program Files\FLV PlayerRCATSetup.exe
2007-06-07 18:02 737280 --a------ C:\WINDOWS\iun6002.exe
2007-06-07 18:02 25990392 --a------ C:\Program Files\FLV PlayerRCSetup.exe
2007-06-01 08:20 51568 --a------ C:\WINDOWS\system32\sirenacm.dll


((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))


*Note* empty entries & legit default entries are not shown

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-07-28 00:03]
"DAEMON Tools"="C:\Program Files\DAEMON Tools\daemon.exe" [2006-11-12 12:48]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe" [2005-04-13 04:48]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2003-07-28 15:19]
"nwiz"="nwiz.exe" [2003-07-28 15:19 C:\WINDOWS\system32\nwiz.exe]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2003-07-28 15:19]
"vSkype"="C:\Program Files\Santa Cruz Networks\vSkype\vSkype.exe" [2005-06-23 14:10]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-19 17:09]
"MsnMsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.exe" [2007-06-01 08:21]
"NvMediaCenter"="C:\WINDOWS\system32\NVMCTRAY.DLL,NvTaskbarInit" []

C:\Documents and Settings\Etienne\Menu D‚marrer\Programmes\D‚marrage\
Xfire.lnk - C:\Program Files\Xfire\xfire.exe [2007-08-03 00:44:38]

C:\Documents and Settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE [2001-02-13 10:01:04]

R3 P0630VID;Creative WebCam Live!;C:\WINDOWS\system32\DRIVERS\P0630Vid.sys
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM);C:\WINDOWS\system32\DRIVERS\sscdbus.sys
S3 sscdmdfl;SAMSUNG CDMA Modem Filter;C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys
S3 sscdmdm;SAMSUNG CDMA Modem Drivers;C:\WINDOWS\system32\DRIVERS\sscdmdm.sys


Contents of the 'Scheduled Tasks' folder
2007-08-18 12:07:01 C:\WINDOWS\Tasks\Vérifier les mises à jour de Windows Live Toolbar.job

**************************************************************************

catchme 0.3.1061 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-08-18 14:17:28
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************

Completion time: 2007-08-18 14:18:14
C:\ComboFix-quarantined-files.txt ... 2007-08-18 14:18
C:\ComboFix2.txt ... 2007-08-17 16:47

--- E O F ---

Voila !!@+