system32 / ntload.dll virus on c

[BoanHed]

Hello, this is what i get while scanning

Logfile of Trend Micro HijackThis v2.0.2
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\winupdate.exe C: \ WINDOWS \ system32 \ winupdate.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Search Bar = res: / / C: \ Program Files \ Copernic Agent \ CopernicAgentExt.rdl / INTEGRATION_BAND_SEARCHBAR_HTML
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {BE89472C-B803-4D1D-9A9A-0A63660E0FE3} - C:\PROGRA~1\COPERN~1\COPERN~1.DLL R3 - URLSearchHook: (no name) - (BE89472C-B803-4D1D-9A9A-0A63660E0FE3) - C: \ PROGRA ~ 1 \ COPERN ~ 1 \ COPERN ~ 1.DLL
F2 - REG:system.ini: Shell=explorer.exe "C:\Program Files\Common Files\System\svchost.exe"
F3 - REG:win.ini: run="C:\WINDOWS\system32\winupdate.exe" F3 - REG: win.ini: run = "C: \ WINDOWS \ system32 \ winupdate.exe"
O2 - BHO: Help for the link Adobe PDF Reader - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Common Files \ Adobe \ Acrobat \ ActiveX \ AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - (22BF413B-C6D2-4d91-82A9-A0F997BA588C) - C: \ Program Files \ Skype \ Toolbars \ Internet Explorer \ SkypeIEPlugin.dll
O2 - BHO: SSVHelper Class - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files \ Java \ jre1.6.0_01 \ bin \ ssv.dll
O2 - BHO: (no name) - (7E853D72-626A-48EC-A868-BA8D5E23E045) - (no file)
O2 - BHO: CUNta - (933ED98E-57E9-11DD-BF82-A36255D89593) - C: \ WINDOWS \ system32 \ cunta.dll
O3 - Toolbar: Copernic Agent - (F2E259E8-0FC8-438C-A6E0-342DD80FA53E) - C: \ Program Files \ Copernic Agent \ CopernicAgentExt.dll
O3 - Toolbar: &WinSec Toolbar - {3F5A62E2-51F2-11D3-A075-CC7364CAE42A} - C:\WINDOWS\system32\wscmp.dll
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName O4 - HKLM \ .. \ Run: [PHIME2002A] C: \ WINDOWS \ system32 \ EMI \ TINTLGNT \ TINTSETP.EXE / IMEName
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h O4 - HKCU \ .. \ Run: [acres] "C: \ Program Files \ Ares \ Ares.exe"-h
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS \ S-1-5-20 \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Adobe Media Player.lnk = C:\Program Files\Adobe Media Player\Adobe Media Player.exe
O4 - Startup: update.exe O4 - Startup: update.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: update.exe O4 - Global Startup: update.exe
O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1
O7 - HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1 O7 - HKLM \ Software \ Microsoft \ Windows \ CurrentVersion \ Policies \ System, DisableRegedit = 1
O8 - Extra context menu item: Search with Copernic Agent - res: / / C: \ Program Files \ Copernic Agent \ CopernicAgentExt.rdl / INTEGRATION_MENU_SEARCHEXT
O8 - Extra context menu item: E & xport to Microsoft Excel - res: / / C: \ PROGRA ~ 1 \ MICROS ~ 2 \ OFFICE11 \ EXCEL.EXE/3000
O9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_01 \ bin \ ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_01 \ bin \ ssv.dll
O9 - Extra button: (no name) - (193B17B0-7C9F-4D5B-AEAB-8D3605EFC084) - C: \ PROGRA ~ 1 \ COPERN ~ 1 \ COPERN ~ 1.EXE
O9 - Extra 'Tools' menuitem: Start Copernic Agent - (193B17B0-7C9F-4D5B-AEAB-8D3605EFC084) - C: \ PROGRA ~ 1 \ COPERN ~ 1 \ COPERN ~ 1.EXE
O9 - Extra button: Copernic Agent - (688DC797-DC11-46A7-9F1B-445F4F58CE6E) - C: \ PROGRA ~ 1 \ COPERN ~ 1 \ COPERN ~ 1.EXE
O9 - Extra button: Skype - (77BF5300-1474-4EC7-9980-D32B190E9B07) - C: \ Program Files \ Skype \ Toolbars \ Internet Explorer \ SkypeIEPlugin.dll
O9 - Extra button: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ OFFICE11 \ REFIEBAR.DLL
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O16 - DPF: (5ED80217-570B-4DA9-BF44-BE107C0EC166) (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/res...scbase5036.cab
O17 - HKLM\System\CS1\Services\Tcpip\..\{3D4869C2-1917-46DC-B7CA-A65C03FDDE36}: NameServer = 208.67.222.222 208.67.220.220 O17 - HKLM \ System \ CS1 \ Services \ Tcpip \ .. \ (3D4869C2-1917-46DC-B7CA-A65C03FDDE36): NameServer = 208.67.222.222 208.67.220.220
O18 - Protocol: skype4com - (FFC8B962-9B40-4DFF-9458-1830C7DD7F5D) - C: \ PROGRA ~ 1 \ FICHIE ~ 1 \ Skype \ SKYPE4 ~ 1.DLL
O20 - Winlogon Notify: crypt - C:\WINDOWS\SYSTEM32\crypts.dll O20 - Winlogon Notify: crypt - C: \ WINDOWS \ SYSTEM32 \ crypts.dll
O23 - Service: avast! O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe Antivirus - ALWIL Software - C: \ Program Files \ Alwil Software \ Avast4 \ ashServ.exe
O23 - Service: avast! O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe Mail Scanner - ALWIL Software - C: \ Program Files \ Alwil Software \ Avast4 \ ashMaiSv.exe
O23 - Service: MsSecurity Updated (MsSecurity1.209.4) - Unknown owner - C:\WINDOWS\winself.exe (file missing)

[Big Fish]

1) Download and install Malwarebyte's Anti-Malware:

http://www.malwarebytes.org/mbam/program/mbam-setup.exe

At the end of the installation, ensure that the option to upgrade Malwarebyte's Anti-Malware "is checked. >>> Click OK

Click Malwarebyte's Anti-Malware by double-clicking the icon on your desktop.

At first launch, a window with the version is Free>>> click OK

Let Updates download

*** *** Close program

2) Restarts in "Safe Mode"
After rebooting the computer, once loading the BIOS finished, there is a black screen that appears quickly, with the support of the [F8] (or [F5] on some pc) to display the menu of options Advanced Windows will open .
Select "Safe Mode" and press [Enter]
It will need to choose your usual session, not the "Administrator" or another.

Open the text file stored on the desktop to follow the instructions.

3) Scan with Malwarebyte's Anti-Malware

Launch Malwarebyte's Anti-Malware
Tab "Search">>> Execute test will be complete>>> Search or select your hard drive and then click on Start review
At the end of the scan>>> click on the results show then Save the report
Removing elements detected>>>> click Delete Selected
If you're asked to restart>>> click "Yes"

--> A report scan opens records on your office and post the report in response.
when you request an analysis, demand for safe mode.