Virus sous vista??

slt
depuis une qinzaine, impossible de demarrer vista en mode normal, ça lague et en finalite le disk desamorce et le pc redemarre.
par contre le pc demarre en mode ss echec et prend meme en charge le reseau mais bon c'est la merdouille quoi.
j'ai avast sur la machine mas apres plusieurs scan, tjrs pareil!!!
c'est un vista basic numero 6000, et je n'ai jamais réussi a installer le sp1!!!!
j'ai fais un scan hiackthis et voici le rapport( je c'est pas ce que c'est mais vu que c'est ce qui est demander a chaque fois )

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:07:32, on 15/10/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16711)
Boot mode: Safe mode with network support

Running processes:
C:\Windows\Explorer.EXE
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\IncrediMail\bin\IMApp.exe
C:\Users\C.K.K.A.M\Documents\scan.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = recherche.neuf.fr...
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = recherche.neuf.fr...
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = home.neuf.fr...
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = ie.redirect.hp.com...
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = recherche.neuf.fr...
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = go.microsoft.com...
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = ie.redirect.hp.com...
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = recherche.neuf.fr...
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: (no name) - {DB62CC01-ECD2-492E-BCE6-57B0AD8A8D59} - (no file)
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [MSConfig] "C:\Windows\system32\msconfig.exe" /auto
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe
O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [Magentic] C:\PROGRA~1\Magentic\bin\Magentic.exe /c
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: &Add animation to IncrediMail Style Box - C:\Program Files\IncrediMail\bin\resources\WebMenuImg.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O13 - Gopher Prefix:
O16 - DPF: {80DD2229-B8E4-4C77-B72F-F22972D723EA} (AvxScanOnline Control) - www.inoculer.com...
O21 - SSODL: fdxbameg - {A2D1F7FD-614F-4267-B1D4-F29DC47EEF01} - C:\Windows\fdxbameg.dll (file missing)
O23 - Service: AddFiltr - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\AddFiltr.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: HP Health Check Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Roxio\Roxio MyDVD Basic v9\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: wampapache - Apache Software Foundation - c:\wamp\bin\apache\apache2.2.6\bin\httpd.exe
O23 - Service: wampmysqld - Unknown owner - c:\wamp\bin\mysql\mysql5.0.45\bin\mysqld-nt.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 5921 bytes



merci de me sortir de cette merdouille( un collegue qui bosse en sav m'a dit que c'etait ptete un virus et qu'un pote a lui avait choppe la mm chose que moi le meme jour vendredi 4 octobre)

le scan ci-dessus est effectue en mode ss echec bien sur mais je pense que vous l'avez compris lol

Salut

Fait un scan complet avec malwarebytes antimalware supprime les détection et colle le rapport

oki je m'y atelle demain enfin tout a l'heure quoi!!

Malwarebytes' Anti-Malware 1.28
Version de la base de données: 1274
Windows 6.0.6000

16/10/2008 11:05:45
mbam-log-2008-10-16 (11-05-3.txt

Type de recherche: Examen complet (C:\|D:\|)
Eléments examinés: 182906
Temps écoulé: 1 hour(s), 5 minute(s), 59 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 38
Valeur(s) du Registre infectée(s): 3
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 4
Fichier(s) infecté(s): 82

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\Interface\{c5ebee4a-e9ab-4efd-8672-f0166f8ac2c3} (Trojan.FakeAlert) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{684bfe7f-f5b2-4ab3-a95e-eb5036a2d286} (Trojan.Vundo) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{0656a137-b161-cadd-9777-e37a75727e78} (Fake.Dropped.Malware) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{0b682cc1-fb40-4006-a5dd-99edd3c9095d} (Fake.Dropped.Malware) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{0e1230f8-ea50-42a9-983c-d22abc2eeb4c} (Fake.Dropped.Malware) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{9dd4258a-7138-49c4-8d34-587879a5c7a4} (Fake.Dropped.Malware) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{b8c0220d-763d-49a4-95f4-61dfdec66ee6} (Fake.Dropped.Malware) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{c3bcc488-1ae7-11d4-ab82-0010a4ec2338} (Fake.Dropped.Malware) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9dd4258a-7138-49c4-8d34-587879a5c7a4} (Fake.Dropped.Malware) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b8c0220d-763d-49a4-95f4-61dfdec66ee6} (Fake.Dropped.Malware) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c3bcc488-1ae7-11d4-ab82-0010a4ec2338} (Fake.Dropped.Malware) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{000000da-0786-4633-87c6-1aa7a4429ef1} (Fake.Dropped.Malware) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\c:/windows/downloaded program files/uninst.bat (Trojan.Agent) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\dpcproxy (Fake.Dropped.Malware) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\logons (Fake.Dropped.Malware) -> No action taken.
HKEY_CURRENT_USER\typelib (Fake.Dropped.Malware) -> No action taken.
HKEY_CURRENT_USER\HOL5_VXIEWER.FULL.1 (Trojan.FakeAlert) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Classes\hol5_vxiewer.full.1 (Trojan.FakeAlert) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Classes\applications\accessdiver.exe (Trojan.FakeAlert) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\fwbd (Trojan.FakeAlert) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\HolLol (Trojan.FakeAlert) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Inet Delivery (Trojan.FakeAlert) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Inet Delivery (Trojan.FakeAlert) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\mslagent (Trojan.FakeAlert) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Invictus (Trojan.FakeAlert) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorertoolbar (Trojan.FakeAlert) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Golden Palace Casino PT (Trojan.DNSChanger) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Golden Palace Casino NEW (Trojan.DNSChanger) -> No action taken.
HKEY_CURRENT_USER\SYSTEM\currentcontrolset\Services\iTunesMusic (Fake.Dropped.Malware) -> No action taken.
HKEY_CURRENT_USER\SYSTEM\currentcontrolset\Services\rdriv (Fake.Dropped.Malware) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\mwc (Malware.Trace) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\rdfa (Trojan.Vundo) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\MS Juan (Trojan.Vundo) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\contim (Trojan.Vundo) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\MS Track System (Trojan.Vundo) -> No action taken.
HKEY_CLASSES_ROOT\sqvgnrpx.baql (Trojan.FakeAlert) -> No action taken.
HKEY_CLASSES_ROOT\sqvgnrpx.toolbar.1 (Trojan.FakeAlert) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WebVideo (Trojan.FakeAlert) -> No action taken.

Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\C:\Windows\Downloaded Program Files\uninst.bat (Trojan.Agent) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\SystemCheck2 (Trojan.Agent) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\fdxbameg (Trojan.FakeAlert) -> No action taken.

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
C:\Windows\mslagent (Adware.EGDAccess) -> No action taken.
C:\Program Files\PCHealthCenter (Trojan.Fakealert) -> No action taken.
C:\Windows\system32smp (Fake.Dropped.Malware) -> No action taken.
C:\Users\C.K.K.A.M\Desktopvirii (Fake.Dropped.Malware) -> No action taken.

Fichier(s) infecté(s):
C:\Users\C.K.K.A.M\Downloads\eMule\Incoming\!!!!crack keygen clé cle activation windows xp pro Sp2 french francais!!!!(1)\activation crack keygen windows xp pro Sp2 french francais\KEYGEN.exe (Malware.Tool) -> No action taken.
C:\Windows\mslagent\2_mslagent.dll (Adware.EGDAccess) -> No action taken.
C:\Windows\mslagent\mslagent.exe (Adware.EGDAccess) -> No action taken.
C:\Windows\mslagent\uninstall.exe (Adware.EGDAccess) -> No action taken.
C:\Program Files\PCHealthCenter\0.gif (Trojan.Fakealert) -> No action taken.
C:\Program Files\PCHealthCenter\1.gif (Trojan.Fakealert) -> No action taken.
C:\Program Files\PCHealthCenter\2.gif (Trojan.Fakealert) -> No action taken.
C:\Program Files\PCHealthCenter\3.gif (Trojan.Fakealert) -> No action taken.
C:\Program Files\PCHealthCenter\5.exe (Trojan.Fakealert) -> No action taken.
C:\Program Files\PCHealthCenter\sex1.ico (Trojan.Fakealert) -> No action taken.
C:\Program Files\PCHealthCenter\sex2.ico (Trojan.Fakealert) -> No action taken.
C:\Windows\system32smp\msrc.exe (Fake.Dropped.Malware) -> No action taken.
C:\Users\C.K.K.A.M\Desktopvirii\Trojan-Downloader.Win32.Agent.bl.exe (Fake.Dropped.Malware) -> No action taken.
C:\Users\C.K.K.A.M\Desktopvirii\Trojan-Downloader.Win32.Agent.p.exe (Fake.Dropped.Malware) -> No action taken.
C:\Users\C.K.K.A.M\Desktopvirii\Trojan-Downloader.Win32.Agent.r.exe (Fake.Dropped.Malware) -> No action taken.
C:\Users\C.K.K.A.M\Desktopvirii\Trojan-Downloader.Win32.Agent.t.exe (Fake.Dropped.Malware) -> No action taken.
C:\Users\C.K.K.A.M\Desktopvirii\Trojan-Downloader.Win32.Agent.v.exe (Fake.Dropped.Malware) -> No action taken.
C:\Windows\Downloaded Program Files\uninst.bat (Trojan.Agent) -> No action taken.
C:\Users\C.K.K.A.M\Desktopblackbird.jpg (Fake.Dropped.Malware) -> No action taken.
C:\Users\C.K.K.A.M\DesktopEditorFKWP1.5.exe (Fake.Dropped.Malware) -> No action taken.
C:\Users\C.K.K.A.M\DesktopEditorFKWP2.0.exe (Fake.Dropped.Malware) -> No action taken.
C:\Users\C.K.K.A.M\Desktopfilemanagerclient.exe (Fake.Dropped.Malware) -> No action taken.
C:\Users\C.K.K.A.M\Desktopfkwp1.5.exe (Fake.Dropped.Malware) -> No action taken.
C:\Users\C.K.K.A.M\Desktopfkwp2.0.exe (Fake.Dropped.Malware) -> No action taken.
C:\Users\C.K.K.A.M\Desktopfwebd.exe (Fake.Dropped.Malware) -> No action taken.
C:\Users\C.K.K.A.M\DesktopFWebdEditor.exe (Fake.Dropped.Malware) -> No action taken.
C:\Users\C.K.K.A.M\DesktopTrojan.Win32.BlackBird.exe (Fake.Dropped.Malware) -> No action taken.
C:\Windows\a.bat (Fake.Dropped.Malware) -> No action taken.
C:\Windows\base64.tmp (Fake.Dropped.Malware) -> No action taken.
C:\Windows\FVProtect.exe (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32akttzn.exe (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32anticipator.dll (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32awtoolb.dll (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32bdn.com (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32bsva-egihsg52.exe (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32dpcproxy.exe (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32emesx.dll (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32h@tkeysh@@k.dll (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32hoproxy.dll (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32hxiwlgpm.dat (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32hxiwlgpm.exe (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32medup012.dll (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32medup020.dll (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32msgp.exe (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32msnbho.dll (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32mssecu.exe (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32msvchost.exe (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32mtr2.exe (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32mwin32.exe (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32netode.exe (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32newsd32.exe (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32psof1.exe (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32psoft1.exe (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32regc64.dll (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32regm64.dll (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32Rundl1.exe (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32sncntr.exe (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32ssurf022.dll (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32ssvchost.com (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32ssvchost.exe (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32sysreq.exe (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32taack.dat (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32taack.exe (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32temp#01.exe (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32thun.dll (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32thun32.dll (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32VBIEWER.OCX (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32vbsys2.dll (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32vcatchpi.dll (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32winlogonpc.exe (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32winsystem.exe (Fake.Dropped.Malware) -> No action taken.
C:\Windows\System32WINWGPX.EXE (Fake.Dropped.Malware) -> No action taken.
C:\Windows\userconfig9x.dll (Fake.Dropped.Malware) -> No action taken.
C:\Windows\winsystem.exe (Fake.Dropped.Malware) -> No action taken.
C:\Windows\zip1.tmp (Fake.Dropped.Malware) -> No action taken.
C:\Windows\zip2.tmp (Fake.Dropped.Malware) -> No action taken.
C:\Windows\zip3.tmp (Fake.Dropped.Malware) -> No action taken.
C:\Windows\zipped.tmp (Fake.Dropped.Malware) -> No action taken.
C:\Windows\bdn.com (Trojan.Agent) -> No action taken.
C:\Windows\iTunesMusic.exe (Trojan.Agent) -> No action taken.
C:\Windows\mssecu.exe (Trojan.Agent) -> No action taken.
C:\Windows\system32ps1.exe (Trojan.FakeAlert) -> No action taken.


voila

Supprime toute les détection puis ^passe un coup de vundofix

ok c'est fait, il n'a rien trouve lol

alors j'ai essaye de rebooter la bete; et bin ça continue :'(

Desactive ton antivirus
Lance combofix, laisse travailler et colle le rapport

oki ca mouline:)

ben rien ne ce passe!!!
le log c'est lancé pi plu rien, c normal??

Colle l'interier du fichier texte qu'apparait a la fin

et bin figurez-vous que rien ne c'est affiché, est-ce normal??

Désactive tes protections (antivirus / antispyware / pare feu / HIPS)
Retélécharge le et réessaye

Si sa ne remarche pas fait le en mode sans échec.

Ben suis deja en mode ss echec et ca marche poooooooo!!!!!
saletée de machine de

Met a jours MBAM et refait un scan complet.

Puis fait une analyse avec Dr CureIt (tutorial)

et c'est reparti, et c'est reparti:nexath

Malwarebytes' Anti-Malware 1.29
Version de la base de données: 1279
Windows 6.0.6000

2008-10-17 23:08:48
mbam-log-2008-10-17 (23-08-4.txt

Type de recherche: Examen complet (C:\|D:\|E:\|)
Eléments examinés: 185894
Temps écoulé: 1 hour(s), 10 minute(s), 57 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 2
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\{684bfe7f-f5b2-4ab3-a95e-eb5036a2d286} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\{0656a137-b161-cadd-9777-e37a75727e78} (Fake.Dropped.Malware) -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)

Reesaye de te connecter en mode normal

ben je mouline DR Curelt là