Keylogger?

Je pense qu'un keylogger a pris un de mes comptes de jeu et maintenant, tous mes trucs est allé = D

Logfile de Trend Micro HijackThis v2.0.2
Scan sauvé à 11:17:20 PM, le 20/06/2009
Plate-forme: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ svchost. exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ WINDOWS \ Explorer.EXE
C: \ Program Files \ Analog Devices \ SoundMAX \ Smax4.exe
C: \ Program Files \ Analog Devices \ Core \ smax4pnp.exe
C: \ PROGRA ~ 1 \ AVG \ AVG8 \ avgtray.exe
C: \ Program Files \ Microsoft Office \ Office12 \ GrooveMonitor.exe
C: \ WINDOWS \ system32 \ RUNDLL32.EXE
C: \ Program Files \ Winamp \ winampa.exe
C: \ Program Files \ iTunes \ iTunesHelper.exe
C: \ WINDOWS \ system32 \ CTFMON.EXE
C: \ Program Files \ Steam \ vapeur. exe
C: \ Program Files \ Windows Live \ Messenger \ msnmsgr.exe
C: \ Program Files \ Messenger \ msmsgs.exe
C: \ Program Files \ DAEMON Tools Lite \ daemon.exe
C: \ Program Files \ DNA \ btdna.exe
C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe
C: \ Program Files \ OpenOffice.org 2.4 \ program \ soffice.exe
C: \ Program Files \ OpenOffice.org 2.4 \ program \ soffice.bin
C: \ PROGRA ~ 1 \ AVG \ AVG8 \ avgwdsvc.exe
C: \ Program Files \ Bonjour \ mDNSResponder. exe
C: \ WINDOWS \ system32 \ msot32.exe
C: \ Nexon \ Mabinogi \ npkcmsvc.exe
C: \ WINDOWS \ system32 \ nvsvc32.exe
C: \ PROGRA ~ 1 \ AVG \ AVG8 \ avgrsx.exe
C: \ PROGRA ~ 1 \ AVG \ AVG8 \ avgnsx.exe
C: \ WINDOWS \ system32 \ PnkBstrA.exe
C: \ WINDOWS \ system32 \ PnkBstrB.exe
C: \ Program Files \ Viewpoint \ Common \ ViewpointService.exe
C: \ WINDOWS \ system32 \ msdio.exe
C: \ Program Files \ iPod \ bin \ iPodService.exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ Program Files \ Windows Live \ Contacts \ wlcomm. exe
C: \ Program Files \ Ventrilo \ Ventrilo.exe
C: \ Program Files \ Ventrilo \ Ventrilo.exe
C: \ Program Files \ Ventrilo \ Ventrilo.exe
C: \ Program Files \ Winamp \ winamp.exe
C: \ Program Files \ AIM6 \ aim6.exe
C: \ Program Files \ AIM6 \ aolsoftware.exe
C: \ Program Files \ Trend Micro \ HijackThis \ HijackThis. exe

R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://baka-updates.com/releases.php
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search, SearchAssistant =
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search, CustomizeSearch =
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, ProxyOverride = *. local
O2 - BHO: Adobe PDF Reader Link Helper - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Adobe \ Acrobat 7.0 \ ActiveX \ AcroIEHelper. dll
O2 - BHO: Flashget urlcatch - (2F364306-AA45-47B5-9F9D-39A8B94E7EF7) - C: \ Program Files \ FlashGet \ jccatch.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - (3CA2F312-6F6E-4B53-A66E-4E65E497C8C0) - C: \ Program Files \ AVG \ AVG8 \ avgssie.dll
O2 - BHO: (no name) - (5C255C8A-E604-49b4-9D64-90988571CECB) - (no file)
O2 - BHO: Groove GFS Browser Helper - (72853161-30C5-4D22-B7F9-0BBC1D38A37E) - C: \ Program Files \ Microsoft Office \ Office12 \ GrooveShellExtensions. dll
O2 - BHO: SSVHelper Class - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ ssv.dll
O2 - BHO: Windows Live Sign-in Helper - (9030D464-4C02-4ABF-8ECC-5164760863C6) - C: \ Program Files \ Fichiers communs \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll
O2 - BHO: (no name) - (9ae7c614-3bd2-4375-B235-4ed21191737c) - C: \ WINDOWS \ system32 \ bedinuni. dll (file missing)
O2 - BHO: Solid State Networks IE Browser Plugin - (BD08A9D5-0E5C-99A3-4f42-C0CB5E860557) - C: \ WINDOWS \ system32 \ SolidStateNetworks \ SolidStateION \ solidax.dll
O2 - BHO: FlashGet getflash Class - (F156768E-81EF-470C-9057-481BA8380DBA) - C: \ Program Files \ FlashGet \ getflash.dll
O4 - HKLM \ .. \ Run: [SoundMax] "C: \ Program Files \ Analog Devices \ SoundMAX \ Smax4.exe" / tray
O4 - HKLM \ .. \ Run: [SoundMAXPnP] C: \ Program Files \ Analog Devices \ Core \ smax4pnp.exe
O4 - HKLM \ .. \ Run: [AVG8_TRAY] C: \ PROGRA ~ 1 \ AVG \ AVG8 \ avgtray.exe
O4 - HKLM \ .. \ Run: [NvCplDaemon] RUNDLL32.EXE C: \ WINDOWS \ system32 \ NvCpl.dll, NvStartup
O4 - HKLM \ .. \ Run: [AppleSyncNotifier] C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleSyncNotifier.exe
O4 - HKLM \ .. \ Run: [GrooveMonitor] "C: \ Program Files \ Microsoft Office \ Office12 \ GrooveMonitor.exe"
O4 - HKLM \ .. \ Run: [nwiz] nwiz.exe / install
O4 - HKLM \ .. \ Run: [NvMediaCenter] Rundll32. EXE C: \ WINDOWS \ system32 \ NvMcTray.dll, NvTaskbarInit
O4 - HKLM \ .. \ Run: [rigosepova] Rundll32.exe "C: \ WINDOWS \ system32 \ muturebe.dll", s
O4 - HKLM \ .. \ Run: [WinampAgent] "C: \ Program Files \ Winamp \ winampa.exe"
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files \ QuickTime \ qttask.exe"-atboottime
O4 - HKLM \ .. \ Run: [iTunesHelper] "C: \ Program Files \ iTunes \ iTunesHelper.exe"
O4 - HKLM \ .. \ Run: [Ad-Watch] C: \ Program Files \ Lavasoft \ Ad-Aware \ AAWTray. exe
O4 - HKCU \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - HKCU \ .. \ Run: [Steam] "c: \ program files \ Steam \ steam.exe"-silent
O4 - HKCU \ .. \ Run: [msnmsgr] "C: \ Program Files \ Windows Live \ Messenger \ msnmsgr.exe" / background
O4 - HKCU \ .. \ Run: [MSMSGS] "C: \ Program Files \ Messenger \ msmsgs.exe" / background
O4 - HKCU \ .. \ Run: [DAEMON Tools Lite] "C: \ Program Files \ DAEMON Tools Lite \ daemon.exe"-autorun
O4 - HKCU \ .. \ Run: [BitTorrent DNA] "C: \ Program Files \ DNA \ btdna.exe"
O4 - HKUS \ S-1-5-19 \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ CTFMON.EXE (User SERVICE LOCAL)
O4 - HKUS \ S-1-5-20 \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ CTFMON.EXE (User service réseau)
O4 - HKUS \ S-1-5-18 \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ CTFMON.EXE (User "SYSTEM")
O4 - HKUS \. DEFAULT \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ CTFMON.EXE (User utilisateur par défaut)
O4 - Startup: OpenOffice.org 2.4. lnk = C: \ Program Files \ OpenOffice.org 2.4 \ program \ quickstart.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C: \ Program Files \ Adobe \ Acrobat 7.0 \ Reader \ reader_sl.exe
O8 - Extra du menu contextuel: & Télécharger tout avec FlashGet - C: \ Program Files \ FlashGet \ jc_all.htm
O8 - Extra du menu contextuel: & Télécharger avec FlashGet - C: \ Program Files \ FlashGet \ jc_link.htm
O8 - Extra du menu contextuel: E & xporter vers Microsoft Excel -- res://C : \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ EXCEL. EXE/3000
O9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ ssv.dll
O9 - Extra "Outils" menuitem: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ ssv.dll
O9 - Extra button: Envoyer à OneNote - (2670000A-7350-4f3c-8081-5663EE0C6C49) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ ONBttnIE. dll
O9 - Extra "Outils" menuitem: S & end à OneNote - (2670000A-7350-4f3c-8081-5663EE0C6C49) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ ONBttnIE.dll
O9 - Extra button: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ Program Files \ Microsoft Office \ Office12 \ REFIEBAR.DLL (file missing)
O9 - Extra button: FlashGet - (D6E814A0-E0C5-11D4-8D29-0050BA6940E3) - C: \ Program Files \ FlashGet \ FlashGet. exe
O9 - Extra "Outils" menuitem: FlashGet - (D6E814A0-E0C5-11D4-8D29-0050BA6940E3) - C: \ Program Files \ FlashGet \ FlashGet.exe
O9 - Extra button: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag.exe
O9 - Extra "Outils" menuitem: @ xpsp3res.dll, -20001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag. exe
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O12 - Plugin for. Spop: C: \ Program Files \ Internet Explorer \ Plugins \ NPDocBox.dll
O15 - Trusted Zone: http://www.mediafire.com
O15 - Trusted Zone: *. youtube. com
O16 - DPF: (1E54D648-B804-468d-BC78-4AFFED8E262E) (System Requirements Lab) -- http://www.srtest.com/srl_bin/sysreqlab_srl.cab
O16 - DPF: (277934AC-A6CD-4D11-AFA0-88521C2F2D35) (WebActiveXCtrl Class) -- http://ffsd.gamengame.com/activeX/NeoWebActiveX.cab
O16 - DPF: (39B0684F-D7BF-4743-B050-FDC3F48F7E3B) (CDownloadCtrl Object) -- http://www.fileplanet.com/fpdlmgr/cabs/ ... .9.113.cab
O16 - DPF: (62D21B0B-D96F-45F7-968E-7DC16E31FE57) (DazoinControl Class) -- http://tcrew.gamengame.com/activex/DazoinActiveXE.cab
O16 - DPF: (67DABFBF-D0AB-41FA-9C46-CC0F21721616) (DivXBrowserPlugin Object) -- http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: (69EF49E5 -FE46-4B92-B5FA-2193AB7A6B8A) (GameLauncher Control) -- http://www.acclaim.com/cabs/acclaim_v5.cab
O16 - DPF: (8F60EE6F-DC53-4F9C-9E66-84BD2A545805) (CsLauncher Class) -- http://www.holybeast.com/start/CsLauncher.cab
O16 - DPF: (99CAAA27-FA0C-4FA4-B88A-4AB1CC7A17FE) (MGLaunch_USAv1001 Class) -- http://ares.netgame.com/download/mglaunch_USAv1002.cab
O16 - DPF: (AA07EBD2-EBDD-4BD6-9F8F-114BD513492C) (NeffyLauncherCtl Class) -- http://dist.globalgamecdn.com/dist/neff ... uncher.cab
O16 - DPF: (BD08A9D5-0E5C-4F42-99A3-C0CB5E860557) (CSolidBrowserObj Object) -- http://www.playwhat.com/solidPlugin/solidstateion.cab
O16 - DPF: (BDAF9A81-8FDE-4F9B-A91B-CCCD3CF003A4) (NdoorsGameStarter Class) -- http://sign.ndoors.com/confirm/NdoorsStarter.cab
O16 - DPF: (C044CD87-DFB0-4130-A5E4-49361106FBC8) (HanSetupCtrl1010 Class) -- http://cdn.hangame.com/hangame/hansetup ... up1020.cab
O16 - DPF: (D1E7CBDA-E60E-4970-A01C-37301EF7BF98) (Measurement Services Client v.3.12) -- http://service.futuremark.com/virtualmark/tc/MSC3.cab
O16 - DPF: (D27CDB6E-AE6D-11CF-96B8-444553540000) (Shockwave Flash Object) -- http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: grooveLocalGWS - (88FED34C-F0CA-4636-A375-3CB6248B04CD) - C: \ Program Files \ Microsoft Office \ Office12 \ GrooveSystemServices. dll
O18 - Protocol: linkscanner - (F274614C-63F8-47D5-A4D1-FBDDE494F8D1) - C: \ Program Files \ AVG \ AVG8 \ avgpp.dll
O20 - AppInit_DLLs: C: \ WINDOWS \ system32 \ lugatepo.dll, c: \ windows \ system32 \ kenahozi.dll, C: \ WINDOWS \ system32 \ pasaruwe.dll
O20 - Winlogon Notify: avgrsstarter - C: \ WINDOWS \ SYSTEM32 \ avgrsstx.dll
O21 - SSODL: SSODL - (EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4) - c: \ windows \ system32 \ kenahozi. dll (file missing)
O22 - SharedTaskScheduler: STS - (EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4) - c: \ windows \ system32 \ kenahozi.dll (file missing)
O23 - Service: Apple Mobile Device - Apple Inc - C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, sro - C: \ PROGRA ~ 1 \ AVG \ AVG8 \ avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc - C: \ Program Files \ Bonjour \ mDNSResponder. exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd - C: \ Program Files \ Fichiers communs \ Macrovision Shared \ FLEXnet Publisher \ FNPLicensingService.exe
O23 - Service: iPod Service - Apple Inc - C: \ Program Files \ iPod \ bin \ iPodService.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C: \ Program Files \ Lavasoft \ Ad-Aware \ AAWService.exe
O23 - Service: Service nProtect GameGuard (npggsvc) - Unknown owner - C: \ WINDOWS \ system32 \ GameMon.des. exe (file missing)
O23 - Service: npkcmsvc - INCA Internet Co., Ltd - C: \ Nexon \ Mabinogi \ npkcmsvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C: \ WINDOWS \ system32 \ nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C: \ WINDOWS \ system32 \ PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C: \ WINDOWS \ system32 \ PnkBstrB.exe
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C: \ Program Files \ Viewpoint \ Common \ ViewpointService.exe

O2 - BHO: (no name) - (9ae7c614-3bd2-4375-B235-4ed21191737c) - C: \ WINDOWS \ system32 \ bedinuni.dll (file missing)

O8 - Extra du menu contextuel: & Télécharger tout avec FlashGet - C: \ Program Files \ FlashGet \ jc_all.htm

O8 - Extra du menu contextuel: & Télécharger avec FlashGet - C: \ Program Files \ FlashGet \ jc_link.htm

O21 - SSODL: SSODL - (EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4) - c: \ windows \ system32 \ kenahozi. dll (file missing)

O22 - SharedTaskScheduler: STS - (EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4) - c: \ windows \ system32 \ kenahozi.dll (file missing)