Infection (Trojan ?) et simptomes divers.

Bonjour a tous.

J'ai un petit soucis d'infection, et les symptômes sont diverses.
J'ai eu pendant un moment le fond d'écran passé en blanc (retiré par la suppression du web dans les configs).

Maintenant j'ai un IExplore.exe en processus, alors que je n'utilise ni le navigateur, ni de logiciels particuliers.

Beaucoup de problèmes lors de la navigation internet (les résultats google sont de la forme "go.google.com/xxxxxx" et me mènent à un autre moteur de recherche), et bien sur des pop-up ^^.

Avast Antivirus c'est déclenché et a supprimé quelques .dll, puis un scan avec Windows Defender, Spybot et Ad-Aware ont donnés quelques résultats.

Je vous poste un Hijackthis =)

--------------------------------------------------------------------------------------------------------------------------------------------------------
Logfile of Trend Micro HijackThis v2.0.0 (BETA)
Scan saved at 11:10:36, on 02/09/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
Boot mode: Normal

Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32Ati2evxx.exe
C:WINDOWSsystem32svchost.exe
C:Program FilesWindows DefenderMsMpEng.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSsystem32Ati2evxx.exe
C:Program FilesLavasoftAd-Awareaawservice.exe
C:WINDOWSExplorer.EXE
C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe
C:Program FilesAlwil SoftwareAvast4ashServ.exe
C:Program FilesAnalog DevicesSoundMAXSMax4PNP.exe
C:Program FilesAnalog DevicesSoundMAXSmax4.exe
C:PROGRA~1ALWILS~1Avast4ashDisp.exe
C:Program FilesWindows DefenderMSASCui.exe
C:LiberKeyAppsAsuiteLKrun.exe
C:WINDOWSsystem32ctfmon.exe
C:documents and settingscocotolocal settingsapplication datajmptwbe.exe
C:Program FilesLogitechSetPointSetPoint.exe
C:WINDOWSsystem32spoolsv.exe
C:Program FilesFichiers communsLogishrdKHAL2KHALMNPR.EXE
C:Program FilesFichiers communsAppleMobile Device SupportbinAppleMobileDeviceService.exe
C:Program FilesIVT CorporationBlueSoleilBlueSoleilCS.exe
C:WINDOWSsystem32inetsrvinetinfo.exe
C:Program FilesFichiers communsMicrosoft SharedVS7DEBUGmdm.exe
C:Program FilesAnalog DevicesSoundMAXSMAgent.exe
C:WINDOWSsystem32svchost.exe
C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe
C:Program FilesAlwil SoftwareAvast4ashWebSv.exe
C:Program FilesIVT CorporationBlueSoleilBsHelpCS.exe
C:Program FilesInternet ExplorerIexplore.exe
C:Documents and SettingscocotoBureauAUTREdéfense-gestionHiJackThis_v2.exe
C:WINDOWSsystem32wuauclt.exe

R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://web.ifrance.com/
R1 - HKCUSoftwareMicrosoftInternet Connection Wizard,ShellNext = http://runonce.msn.com/runonce3.aspx
R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Liens
O2 - BHO: IE7Pro - {00011268-E188-40DF-A514-835FCD78B1BF} - C:Program FilesIEProiepro.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:Program FilesFichiers communsAdobeAcrobatActiveXAcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:PROGRA~1SPYBOT~1SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:Program FilesJavajre1.6.0_05binssv.dll
O3 - Toolbar: (no name) - {CCF8082F-2A1A-4460-B3FF-E2D826259ADD} - (no file)
O4 - HKLM..Run: [SoundMAXPnP] C:Program FilesAnalog DevicesSoundMAXSMax4PNP.exe
O4 - HKLM..Run: [SoundMAX] "C:Program FilesAnalog DevicesSoundMAXSmax4.exe" /tray
O4 - HKLM..Run: [avast!] C:PROGRA~1ALWILS~1Avast4ashDisp.exe
O4 - HKLM..Run: [Rapget] C:LiberKeyAppsRapGetAppRapGetrapget.exe
O4 - HKLM..Run: [Windows Defender] "C:Program FilesWindows DefenderMSASCui.exe" -hide
O4 - HKLM..Run: [KernelFaultCheck] %systemroot%system32dumprep 0 -k
O4 - HKLM..Run: [ASuite] C:LiberKeyAppsAsuiteLKrun.exe
O4 - HKCU..Run: [ctfmon.exe] C:WINDOWSsystem32ctfmon.exe
O4 - HKCU..Run: [jmptwbe] "c:documents and settingscocotolocal settingsapplication datajmptwbe.exe" jmptwbe
O4 - HKUSS-1-5-19..RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SERVICE LOCAL')
O4 - HKUSS-1-5-19..RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'SERVICE LOCAL')
O4 - HKUSS-1-5-19..RunOnce: [x64setup] cmd.exe /Q /c If EXIST "%programfiles%VistaCodecPackiconsicons64.dll" REG ADD HKCUSoftwareGNUffdshowdefault /v isSubtitles /t REG_DWORD /d 1 /f (User 'SERVICE LOCAL')
O4 - HKUSS-1-5-19..RunOnce: [x64setup2] cmd.exe /Q /c If EXIST "%programfiles%VistaCodecPackiconsicons64.dll" regsvr32.exe /S "%programfiles%VistaCodecPackfiltersMatroskaSplitter.ax" (User 'SERVICE LOCAL')
O4 - HKUSS-1-5-19..RunOnce: [x64setup3] cmd.exe /Q /c If EXIST "%programfiles%VistaCodecPackiconsicons64.dll" REG DELETE "HKCRMedia TypeExtensions.dts" /f (User 'SERVICE LOCAL')
O4 - HKUSS-1-5-19..RunOnce: [x64setup4] cmd.exe /Q /c If EXIST "%programfiles%VistaCodecPackiconsicons64.dll" REG DELETE "HKCRMedia TypeExtensions.ac3" /f (User 'SERVICE LOCAL')
O4 - HKUSS-1-5-19..RunOnce: [x64setup1] cmd.exe /Q /c If EXIST "%programfiles%VistaCodecPackiconsicons64.dll" REG ADD HKCUSoftwareGNUffdshow_audio /v ac3 /t REG_DWORD /d 15 /f (User 'SERVICE LOCAL')
O4 - HKUSS-1-5-20..RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SERVICE RÉSEAU')
O4 - HKUSS-1-5-18..RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM')
O4 - HKUS.DEFAULT..RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user')
O4 - Global Startup: Logitech SetPoint.lnk = C:Program FilesLogitechSetPointSetPoint.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:PROGRA~1MICROS~3Office12EXCEL.EXE/3000
O8 - Extra context menu item: Envoyer via Bluetooth - C:Program FilesIVT CorporationBlueSoleilTransSendIEtsinfo.htm
O8 - Extra context menu item: Envoyer via message(&M)... - C:Program FilesIVT CorporationBlueSoleilTransSendIEtssms.htm
O9 - Extra button: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:Program FilesIEProiepro.dll
O9 - Extra 'Tools' menuitem: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:Program FilesIEProiepro.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:WINDOWSsystem32shdocvw.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:PROGRA~1SPYBOT~1SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:PROGRA~1SPYBOT~1SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%Network Diagnosticxpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%Network Diagnosticxpnetdiag.exe (file missing)
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/KO-KR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {B574DF40-B63F-4788-9CD7-1DADA0764C4A} (IMTranslate Class) - http://www.im-translate.com/LTSM/LTSM_COM.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {E6ACF817-0A85-4EBE-9F0A-096C6488CFEA} (NTR ActiveX 1.1.8) - https://www.ntrconnect.com/main/mod/setup/ntractivex118_24.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O17 - HKLMSystemCCSServicesTcpip..{1C503693-C7FF-4773-A43E-EAE79ECC8FDB}: NameServer = 192.168.1.1
O17 - HKLMSystemCS1ServicesTcpip..{1C503693-C7FF-4773-A43E-EAE79ECC8FDB}: NameServer = 192.168.1.1
O17 - HKLMSystemCS2ServicesTcpip..{1C503693-C7FF-4773-A43E-EAE79ECC8FDB}: NameServer = 192.168.1.1
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:WINDOWSsystem32skype4com.dll
O21 - SSODL: dgksvbpn - {873F9783-8690-4EBB-B43E-F864AAA350EA} - (no file)
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:WINDOWSsystem32browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:WINDOWSsystem32browseui.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:Program FilesLavasoftAd-Awareaawservice.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:Program FilesFichiers communsAppleMobile Device SupportbinAppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:WINDOWSsystem32Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:Program FilesAlwil SoftwareAvast4ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:Program FilesAlwil SoftwareAvast4ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:Program FilesAlwil SoftwareAvast4ashWebSv.exe
O23 - Service: BlueSoleilCS - Unknown owner - C:Program FilesIVT CorporationBlueSoleilBlueSoleilCS.exe
O23 - Service: BsHelpCS - Unknown owner - C:Program FilesIVT CorporationBlueSoleilBsHelpCS.exe
O23 - Service: BsMobileCS - Unknown owner - C:Program FilesIVT CorporationBlueSoleilBsMobileCS.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:WINDOWSSystem32dmadmin.exe
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:WINDOWSsystem32services.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:Program FilesFichiers communsInstallShieldDriver Intel 32IDriverT.exe
O23 - Service: Administration IIS (IISADMIN) - Unknown owner - C:WINDOWSsystem32inetsrvinetinfo.exe
O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:WINDOWSsystem32imapi.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:Program FilesFichiers communsLogishrdBluetoothLBTServ.exe
O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:WINDOWSsystem32mnmsrvc.exe
O23 - Service: Publication FTP (MSFtpsvc) - Unknown owner - C:WINDOWSsystem32inetsrvinetinfo.exe
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:WINDOWSsystem32services.exe
O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:WINDOWSsystem32sessmgr.exe
O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:WINDOWSSystem32SCardSvr.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:Program FilesAnalog DevicesSoundMAXSMAgent.exe
O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:WINDOWSsystem32smlogsvc.exe
O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:WINDOWSSystem32vssvc.exe
O23 - Service: Publication World Wide Web (W3SVC) - Unknown owner - C:WINDOWSsystem32inetsrvinetinfo.exe
O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:WINDOWSsystem32wbemwmiapsrv.exe
O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:Program FilesWindows Media PlayerWMPNetwk.exe