Rapports roguekiller et malewarebytes / ukash gendarmerie

Bonjour,

attaqué à mon tour par ukash gendaremerie nationale et après avoir lu les différents messages voici mes rapports suite roguekiller et malewarebytes,
jusque là, je ne m'en débarasse pas..

your help please !
merci d'avance

Malwarebytes Anti-Malware 1.65.1.1000
www.malwarebytes.org

Database version: v2012.10.19.04

Windows XP Service Pack 3 x86 NTFS (Safe Mode/Networking)
Internet Explorer 8.0.6001.18702
Olivier :: OL-XQBH404NE7H1 [administrator]

19/10/2012 12:24:05
mbam-log-2012-10-19 (12-24-05).txt

Scan type: Full scan (C:\|E:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 421219
Time elapsed: 1 hour(s), 1 minute(s), 59 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 1
C:\Program Files\eChanblard\habill__nu_et_recto_verso.exe (Spyware.Passwords.XGen) -> Quarantined and deleted successfully.

(end)

RogueKiller V8.1.1 [01/10/2012] par Tigzy
mail: tigzyRK<at>gmail<dot>com
Remontees: https://www.luanagames.com/index.fr.html
Website: https://www.luanagames.com/index.fr.html
Blog: http://tigzyrk.blogspot.com

Systeme d'exploitation: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Demarrage : Mode sans echec avec prise en charge reseau
Utilisateur : Olivier [Droits d'admin]
Mode : Recherche -- Date : 19/10/2012 13:45:40

¤¤¤ Processus malicieux : 0 ¤¤¤

¤¤¤ Entrees de registre : 8 ¤¤¤
[RUN][SUSP PATH] HKCU\[...]\Run : LineOfSightVietnamSetup.exe (C:\DOCUME~1\Olivier\Bureau\LINEOF~1.EXE /r) -> TROUVÉ
[RUN][SUSP PATH] HKCU\[...]\Run : supaimetjhtitkt (C:\WINDOWS\supaimet.exe) -> TROUVÉ
[RUN][SUSP PATH] HKUS\S-1-5-21-1343024091-299502267-725345543-1003[...]\Run : LineOfSightVietnamSetup.exe (C:\DOCUME~1\Olivier\Bureau\LINEOF~1.EXE /r) -> TROUVÉ
[RUN][SUSP PATH] HKUS\S-1-5-21-1343024091-299502267-725345543-1003[...]\Run : supaimetjhtitkt (C:\WINDOWS\supaimet.exe) -> TROUVÉ
[STARTUP][BLACKLIST DLL] Alertes de surveillance de l'encre - HP Photosmart 6510 series.lnk @Olivier : C:\WINDOWS\system32\rundll32.exe|"C:\Program Files\HP\HP Photosmart 6510 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN1BC4204605QB;CONNECTION=USB;MONITOR=1; -> TROUVÉ
[STARTUP][SUSP PATH] Enregistrement d'un produit Joint Operations Typhoon Rising.lnk @Olivier : C:\Documents and Settings\Olivier\Local Settings\Temp\{C0481F23-2690-47D5-B267-12C20F6F5807}\{0325F1C1-883A-41AB-8981-B27359ABDFAF}\NOVG.EXE -> TROUVÉ
[HJPOL] HKLM\[...]\System : DisableRegistryTools (0) -> TROUVÉ
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> TROUVÉ

¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤

¤¤¤ Driver : [NON CHARGE] ¤¤¤

¤¤¤ Fichier HOSTS: ¤¤¤
--> C:\WINDOWS\system32\drivers\etc\hosts

127.0.0.1 localhost

¤¤¤ MBR Verif: ¤¤¤

+++++ PhysicalDrive0: IC35L120AVV207-1 +++++
--- User ---
[MBR] e98ed60b0fd09d3b45d75edd1036c3b4
[BSP] d6fe4e80ce1b53c39c9c262ae55e2444 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 117789 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: ST32122A +++++
--- User ---
[MBR] 544f177fbeabd8598d42355af00508db
[BSP] 9bb238d8105ce3034b9e8a968bb2b128 : MBR Code unknown
Partition table:
0 - [ACTIVE] FAT16 (0x06) [VISIBLE] Offset (sectors): 63 | Size: 698 Mo
1 - [XXXXXX] EXTEN (0x05) [VISIBLE] Offset (sectors): 1431360 | Size: 1315 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Termine : << RKreport[2].txt >>
RKreport[1].txt ; RKreport[2].txt