Trojan downloader:Win32/Renos.JS

Bonjour,
j'ai Trojan downloader:Win32/Renos.JS sur mon ordi.
Pourriez-vous m'aider?
voici un raport de ComboFix, j'ai cru comprendre que ca pourrait aider

ComboFix 09-10-20.03 - Virginie 21/10/2009 16:37.1.2 - NTFSx86
Microsoft® Windows Vista™ Édition Familiale Premium 6.0.6002.2.1252.32.1036.18.3325.2122 [GMT 2:00]
Lancé depuis: c:\users\Virginie\Downloads\asdehi.exe
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\users\Virginie\AppData\Roaming\.#
c:\windows\Installer\47938.msi
c:\windows\msa.exe
c:\windows\system32\msxml71.dll

.
((((((((((((((((((((((((((((( Fichiers créés du 2009-09-21 au 2009-10-21 ))))))))))))))))))))))))))))))))))))
.

2009-10-21 14:42 . 2009-10-21 14:42 -------- d-----w- c:\users\Virginie\AppData\Local\temp
2009-10-21 14:42 . 2009-10-21 14:42 -------- d-----w- c:\users\Default\AppData\Local\temp
2009-10-21 14:32 . 2009-10-21 14:32 -------- d-----w- C:\rsit
2009-10-21 14:31 . 2009-10-21 14:31 -------- d-----w- c:\program files\Trend Micro
2009-10-21 13:14 . 2009-09-15 10:54 52368 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2009-10-21 13:14 . 2009-09-15 10:54 23152 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2009-10-21 13:14 . 2009-09-15 10:55 114768 ----a-w- c:\windows\system32\drivers\aswSP.sys
2009-10-21 13:14 . 2009-09-15 10:55 20560 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2009-10-21 13:14 . 2009-09-15 10:53 97480 ----a-w- c:\windows\system32\AvastSS.scr
2009-10-21 13:13 . 2009-09-15 10:59 1279968 ----a-w- c:\windows\system32\aswBoot.exe
2009-10-21 13:13 . 2009-09-15 10:55 53328 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2009-10-21 13:13 . 2009-10-21 13:13 -------- d-----w- c:\program files\Alwil Software
2009-10-21 11:14 . 2009-10-21 11:14 -------- d-----w- c:\users\Virginie\AppData\Roaming\Windows Live Writer
2009-10-21 11:14 . 2009-10-21 11:14 -------- d-----w- c:\users\Virginie\AppData\Local\Windows Live Writer
2009-10-21 09:51 . 2009-10-21 09:51 -------- d-----w- c:\programdata\MythPeople
2009-10-19 20:43 . 2009-10-19 20:43 -------- d-----w- c:\users\Virginie\AppData\Roaming\Farm Mania
2009-10-19 20:39 . 2009-10-20 14:31 -------- d---a-w- c:\users\Virginie\Farm Mania
2009-10-18 01:08 . 2009-10-18 01:09 -------- d-----w- c:\users\Virginie\AppData\Local\Google
2009-10-15 01:34 . 2009-09-10 16:48 218624 ----a-w- c:\windows\system32\msv1_0.dll
2009-10-15 01:34 . 2009-08-27 12:40 834048 ----a-w- c:\windows\system32\wininet.dll
2009-10-15 01:34 . 2009-08-27 13:29 78336 ----a-w- c:\windows\system32\ieencode.dll
2009-10-15 01:34 . 2009-08-04 12:34 3600456 ----a-w- c:\windows\system32\ntkrnlpa.exe
2009-10-15 01:34 . 2009-08-04 12:34 3548216 ----a-w- c:\windows\system32\ntoskrnl.exe
2009-10-15 01:33 . 2009-09-04 11:41 60928 ----a-w- c:\windows\system32\msasn1.dll
2009-10-15 01:33 . 2009-09-14 09:29 144896 ----a-w- c:\windows\system32\drivers\srv2.sys
2009-10-15 01:33 . 2009-05-08 12:53 604672 ----a-w- c:\windows\system32\WMSPDMOD.DLL
2009-10-11 20:13 . 2009-10-11 20:13 680 ----a-w- c:\users\Virginie\AppData\Local\d3d9caps.dat
2009-10-11 16:38 . 2009-10-11 16:38 -------- d-----w- c:\programdata\PlayFirst
2009-10-02 18:04 . 2009-10-01 08:29 195440 ------w- c:\windows\system32\MpSigStub.exe
2009-10-01 03:11 . 2009-08-07 02:24 44768 ----a-w- c:\windows\system32\wups2.dll
2009-10-01 03:11 . 2009-08-07 02:24 53472 ----a-w- c:\windows\system32\wuauclt.exe
2009-10-01 03:11 . 2009-08-07 02:23 1929952 ----a-w- c:\windows\system32\wuaueng.dll
2009-10-01 03:11 . 2009-08-07 01:45 2421760 ----a-w- c:\windows\system32\wucltux.dll
2009-10-01 03:10 . 2009-08-07 02:24 35552 ----a-w- c:\windows\system32\wups.dll
2009-10-01 03:10 . 2009-08-07 02:23 575704 ----a-w- c:\windows\system32\wuapi.dll
2009-10-01 03:10 . 2009-08-07 01:44 87552 ----a-w- c:\windows\system32\wudriver.dll
2009-10-01 03:10 . 2009-08-06 17:23 171608 ----a-w- c:\windows\system32\wuwebv.dll
2009-10-01 03:10 . 2009-08-06 16:44 33792 ----a-w- c:\windows\system32\wuapp.exe
2009-09-28 22:33 . 2009-10-02 14:27 -------- d-----w- c:\users\Virginie\AppData\Local\Adobe
2009-09-23 16:45 . 2009-09-23 16:45 -------- d-----w- c:\users\Virginie\AppData\Local\assembly
2009-09-23 16:26 . 2009-09-23 16:27 -------- d-----w- c:\program files\NCsoft

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-10-21 14:24 . 2009-06-02 22:07 669328 ----a-w- c:\windows\system32\perfh00C.dat
2009-10-21 14:24 . 2009-06-02 22:07 123350 ----a-w- c:\windows\system32\perfc00C.dat
2009-10-21 13:06 . 2009-08-31 09:50 -------- d-----w- c:\users\Virginie\AppData\Roaming\BullGuard
2009-10-20 21:07 . 2009-08-31 09:49 -------- d-----w- c:\programdata\Google Updater
2009-10-20 16:50 . 2009-08-31 16:51 -------- d-----w- c:\users\Virginie\AppData\Roaming\teamspeak2
2009-10-16 13:22 . 2009-08-31 11:44 1890 --sha-w- c:\programdata\KGyGaAvL.sys
2009-10-16 01:19 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail
2009-10-14 23:00 . 2009-08-31 11:44 -------- d-----w- c:\users\Virginie\AppData\Roaming\CorelHomeOffice
2009-10-14 18:59 . 2009-08-31 11:44 -------- d-----w- c:\users\Virginie\AppData\Roaming\Corel
2009-09-23 20:30 . 2009-06-02 14:31 -------- d-----w- c:\program files\Microsoft Silverlight
2009-09-23 16:26 . 2009-06-02 15:29 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-09-02 07:15 . 2009-09-02 07:15 -------- d-----w- c:\users\Virginie\AppData\Roaming\OpenOffice.org
2009-09-01 12:11 . 2009-09-01 12:00 -------- d-----w- c:\programdata\Blizzard Entertainment
2009-08-31 18:45 . 2009-08-31 18:45 -------- d-----w- c:\programdata\Electronic Arts
2009-08-31 18:44 . 2009-08-31 18:25 -------- d-----w- c:\program files\Electronic Arts
2009-08-31 18:42 . 2009-08-31 18:42 -------- d-----w- c:\program files\Microsoft WSE
2009-08-31 16:51 . 2009-08-31 16:50 -------- d-----w- c:\program files\Teamspeak2_RC2
2009-08-31 15:56 . 2009-06-15 15:49 -------- d-----w- c:\program files\Windows Live
2009-08-31 15:56 . 2009-08-31 15:56 -------- d-----w- c:\program files\Microsoft Sync Framework
2009-08-31 15:55 . 2009-08-31 15:54 -------- d-----w- c:\users\Virginie\AppData\Roaming\CyberLink
2009-08-31 15:54 . 2009-08-31 09:50 62384 ----a-w- c:\users\Virginie\AppData\Local\GDIPFONTCACHEV1.DAT
2009-08-31 15:53 . 2009-08-31 15:53 -------- d-----w- c:\program files\Microsoft
2009-08-31 15:50 . 2009-08-31 15:50 -------- d-----w- c:\program files\JRE
2009-08-31 15:50 . 2009-08-31 15:50 -------- d-----w- c:\program files\OpenOffice.org 3
2009-08-31 15:48 . 2009-06-02 15:59 411368 ----a-w- c:\windows\system32\deploytk.dll
2009-08-31 15:48 . 2009-08-31 15:48 -------- d-----w- c:\program files\Java
2009-08-31 15:43 . 2009-08-31 09:49 -------- d-----w- c:\program files\Google
2009-08-31 15:30 . 2009-08-31 15:30 -------- d-----w- c:\programdata\Blizzard
2009-08-31 15:20 . 2009-06-16 10:37 -------- d-----w- c:\programdata\BullGuard
2009-08-31 11:44 . 2009-06-15 16:06 -------- d-----w- c:\programdata\Corel
2009-08-31 11:27 . 2009-08-31 11:26 -------- d-----w- c:\program files\Common Files\Blizzard Entertainment
2009-08-31 11:26 . 2009-08-31 11:26 -------- d-----w- c:\program files\World of Warcraft
2009-08-31 09:50 . 2009-06-02 15:54 -------- d-----w- c:\programdata\NVIDIA
2009-08-31 09:49 . 2009-08-31 09:49 -------- d-----w- c:\program files\Picasa2
2009-08-31 09:46 . 2009-08-31 09:46 -------- d-sh--we c:\programdata\Modèles
2009-08-31 09:46 . 2009-08-31 09:46 -------- d-sh--we c:\programdata\Menu Démarrer
2009-08-31 09:46 . 2009-08-31 09:46 -------- d-sh--we c:\programdata\Favoris
2009-08-31 09:46 . 2009-08-31 09:46 -------- d-sh--we c:\programdata\Bureau
2009-08-31 09:46 . 2009-08-31 09:46 -------- d-sh--we c:\program files\Fichiers communs
2009-08-29 00:27 . 2009-09-02 19:40 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll
2009-08-29 00:14 . 2009-09-02 19:40 28672 ----a-w- c:\windows\system32\Apphlpdm.dll
2009-08-14 16:27 . 2009-09-14 11:17 904776 ----a-w- c:\windows\system32\drivers\tcpip.sys
2009-08-14 15:53 . 2009-09-14 11:17 17920 ----a-w- c:\windows\system32\netevent.dll
2009-08-14 13:49 . 2009-09-14 11:17 9728 ----a-w- c:\windows\system32\TCPSVCS.EXE
2009-08-14 13:49 . 2009-09-14 11:17 17920 ----a-w- c:\windows\system32\ROUTE.EXE
2009-08-14 13:49 . 2009-09-14 11:17 11264 ----a-w- c:\windows\system32\MRINFO.EXE
2009-08-14 13:49 . 2009-09-14 11:17 27136 ----a-w- c:\windows\system32\NETSTAT.EXE
2009-08-14 13:49 . 2009-09-14 11:17 19968 ----a-w- c:\windows\system32\ARP.EXE
2009-08-14 13:49 . 2009-09-14 11:17 8704 ----a-w- c:\windows\system32\HOSTNAME.EXE
2009-08-14 13:49 . 2009-09-14 11:17 10240 ----a-w- c:\windows\system32\finger.exe
2009-08-14 13:48 . 2009-09-14 11:17 30720 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
2009-08-14 13:48 . 2009-09-14 11:17 105984 ----a-w- c:\windows\system32\netiohlp.dll
2009-07-26 14:44 . 2009-07-26 14:44 48448 ----a-w- c:\windows\system32\sirenacm.dll
2009-03-11 14:14 . 2009-03-11 14:09 8192 --sha-w- c:\windows\Users\Default\NTUSER.DAT
.

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-10 1233920]
"BullGuard"="c:\program files\BullGuard Ltd\BullGuard\BullGuard.exe" [2009-08-31 304464]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856]
"EA Core"="c:\program files\Electronic Arts\EADM\Core.exe" [2009-09-03 3342336]
"WindowsWelcomeCenter"="oobefldr.dll" - c:\windows\System32\oobefldr.dll [2009-04-10 2153472]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2008-01-21 1008184]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\Iaanotif.exe" [2007-10-08 178712]
"CLMLServer"="c:\program files\HomeCinema\Power2Go\CLMLSvc.exe" [2008-07-18 104936]
"BullGuard"="c:\program files\BullGuard Ltd\BullGuard\bullguard.exe" [2009-08-31 304464]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2009-02-03 6724128]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-03-27 13687328]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2009-03-27 92704]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-08-31 149280]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-09-15 81000]

c:\users\Virginie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OpenOffice.org 3.1.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2009-8-18 384000]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BgMainSvc]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"VistaSp2"=hex(b):46,77,10,f7,86,e3,c9,01

R1 afw;Agnitum Firewall Driver;c:\windows\System32\drivers\afw.sys [23/03/2009 14:07 29208]
R1 aswSP;avast! Self Protection;c:\windows\System32\drivers\aswSP.sys [21/10/2009 15:14 114768]
R2 aswFsBlk;aswFsBlk;c:\windows\System32\drivers\aswFsBlk.sys [21/10/2009 15:14 20560]
R2 aswMonFlt;aswMonFlt;c:\windows\System32\drivers\aswMonFlt.sys [21/10/2009 15:13 53328]
R2 BdFileSpy;BullGuard File Monitor Driver;c:\windows\System32\drivers\BdFileSpy.sys [16/06/2009 12:37 55504]
R2 BsFileScan;BullGuard File Scan Service;c:\windows\System32\svchost.exe -k BullGuard [21/01/2008 4:23 21504]
R2 BsFire;BullGuard Firewall Service;c:\windows\System32\svchost.exe -k BullGuard [21/01/2008 4:23 21504]
R2 BsMailProxy;BullGuard Email Monitoring Service;c:\windows\System32\svchost.exe -k BullGuard [21/01/2008 4:23 21504]
R3 afwcore;afwcore;c:\windows\System32\drivers\afwcore.sys [23/03/2009 14:07 305688]
R3 netr73;Linksys Compact Wireless-G USB Adapter Driver for Vista;c:\windows\System32\drivers\WUSB54GCx86.sys [12/03/2007 10:12 256000]
S3 netr28u;RT2870 USB Wireless LAN Card Driver for Vista;c:\windows\System32\drivers\netr28u.sys [24/04/2009 15:06 554496]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
BullGuard REG_MULTI_SZ BgMainSvc BsFileScan BsMailProxy BsFire
.
Contenu du dossier 'Tâches planifiées'

2009-10-21 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-08-31 09:49]
.
.
------- Examen supplémentaire -------
.
IE: {{0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - https://www.befr.ebay.be
LSP: c:\windows\system32\BGLsp.dll
.
- - - - ORPHELINS SUPPRIMES - - - -

HKCU-Run-PlayNC Launcher - (no file)
AddRemove-_{E1A63F75-1F72-4450-980D-434496FFC646} - c:\program files\Corel\Corel Painter Essentials 4\MSILauncher {E1A63F75-1F72-4450-980D-434496FFC646}



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-10-21 16:42
Windows 6.0.6002 Service Pack 2 NTFS

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...

Scan terminé avec succès
Fichiers cachés: 0

**************************************************************************
.
Heure de fin: 2009-10-21 16:43
ComboFix-quarantined-files.txt 2009-10-21 14:43

Avant-CF: 455.939.129.344 octets libres
Après-CF: 456.121.450.496 octets libres

- - End Of File - - 131DB75DFBA40C057CF7626C6DB7EA5D