Pourriez vous analyser mon rapport hijack svp

Merci pour les premières instructions deja! Alors voici mon raport fix:

Username "Camille" - 02/03/2008 20:13:44 [Fixwareout edited 9/01/2007]

~~~~~ Prerun check
HKLM\SOFTWARE\~\Winlogon\ "System"="kdrej.exe"

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters
"nameserver"="85.255.116.153 85.255.112.20" <Value cleared.
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\interfaces\{11A9C77C-6874-4D99-9DE0-B2F9CE7505AF}
"nameserver"="85.255.116.153,85.255.112.20" <Value cleared.
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\interfaces\{14CEFF43-13F6-487C-83B9-1093F958110D}
"nameserver"="85.255.116.153,85.255.112.20" <Value cleared.
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\interfaces\{1CEDAE29-FA41-4AE6-BD3D-D3CBBA6A701C}
"nameserver"="85.255.116.153,85.255.112.20" <Value cleared.
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\interfaces\{4887E182-24CB-4C15-907B-E0BA00A8E04A}
"nameserver"="85.255.116.153" <Value cleared.
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\interfaces\{572BE222-CD40-4F33-8F90-8A14B279382A}
"nameserver"="85.255.116.153,85.255.112.20" <Value cleared.
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\interfaces\{14CEFF43-13F6-487C-83B9-1093F958110D}
"DhcpNameServer"="85.255.116.153,85.255.112.20" <Value cleared.
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\interfaces\{1CEDAE29-FA41-4AE6-BD3D-D3CBBA6A701C}
"DhcpNameServer"="85.255.116.153,85.255.112.20" <Value cleared.
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\interfaces\{572BE222-CD40-4F33-8F90-8A14B279382A}
"DhcpNameServer"="85.255.116.153,85.255.112.20" <Value cleared.
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\interfaces\{E94CD3C3-E65D-4892-98BF-03B73E253DF1}
"DhcpNameServer"="85.255.116.153,85.255.112.20" <Value cleared.

Cache de résolution DNS vidé.


System was rebooted successfully.

~~~~~ Postrun check
HKLM\SOFTWARE\~\Winlogon\ "system"=""
....
....
~~~~~ Misc files.
....
~~~~~ Checking for older varients.
....
~~~~~ Other
C:\WINDOWS\Temp\kdrej.ren 73753 13/06/2007

~~~~~ Current runs (hklm hkcu "run" Keys Only)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray"="C:\\WINDOWS\\ehome\\ehtray.exe"
"ftutil2"="rundll32.exe ftutil2.dll,SetWriteCacheMode"
"RTHDCPL"="RTHDCPL.EXE"
"NvCplDaemon"="RUNDLL32.EXE C:\\WINDOWS\\system32\\NvCpl.dll,NvStartup"
"nwiz"="nwiz.exe /installquiet /keeploaded /nodetect"
"DMAScheduler"="\"c:\\Program Files\\HP DigitalMedia Archive\\DMAScheduler.exe\""
"Recguard"="C:\\WINDOWS\\SMINST\\RECGUARD.EXE"
"PCDrProfiler"=""
"HPBootOp"="\"C:\\Program Files\\Hewlett-Packard\\HP Boot Optimizer\\HPBootOp.exe\" /run"
"Reminder"="\"C:\\Windows\\Creator\\Remind_XP.exe\""
"HP Software Update"="C:\\Program Files\\HP\\HP Software Update\\HPWuSchd2.exe"
"HP Component Manager"="\"C:\\Program Files\\HP\\hpcoretech\\hpcmpmgr.exe\""
"DXDllRegExe"="dxdllreg.exe"
"AdslTaskBar"="rundll32.exe stmctrl.dll,TaskBar"
"avast!"="C:\\PROGRA~1\\ALWILS~1\\Avast4\\ashDisp.exe"
"Sony Ericsson PC Suite"="\"C:\\Program Files\\Sony Ericsson\\Mobile2\\Application Launcher\\Application Launcher.exe\" /startoptions"
"Salestart(1)"="\"C:\\Program Files\\Fichiers communs\\DisqudurProtection\\strpmon.exe\" dm=http://disqudurprotection.com ad=http://disqudurprotection.com sd=http://repay.disqudurprotection.com"
"Windows Defender"="\"C:\\Program Files\\Windows Defender\\MSASCui.exe\" -hide"
"BitDefender Antiphishing Helper"="\"C:\\Program Files\\BitDefender\\BitDefender 2008\\IEShow.exe\""
"BDAgent"="\"C:\\Program Files\\BitDefender\\BitDefender 2008\\bdagent.exe\""

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="\"C:\\Program Files\\Windows Live\\Messenger\\MsnMsgr.Exe\" /background"
"WinButler"="C:\\Documents and Settings\\Camille\\Application Data\\WinButler\\WinButler.exe"
"SfKg6wIPu"="C:\\Documents and Settings\\Camille\\Application Data\\Microsoft\\Windows\\pqkuva.exe"
"ctfmon.exe"="C:\\WINDOWS\\system32\\ctfmon.exe"
....
Hosts file was reset, If you use a custom hosts file please replace it...
~~~~~ End report ~~~~~

Ensuite j'ai téléchargé CCleaner comme tu m'as dit, sauf que je n'ai pas marqué "erreur" ds la colonne de gauche...j'ai juste "nettoyeur", "registre", "outils" ou "options"...donc je suis un peu bloquée en fait...

Pourrez-tu encore m'aider?

C'est encore moi!

Voici mon raport AVG:

---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 22:00:54 02/03/2008

+ Résultat de l'analyse:



HKU\S-1-5-21-2540935256-2595362651-1665068133-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{944864A5-3916-46E2-96A9-A2E84F3F1208} -> Adware.Accoona : Nettoyé.
HKU\S-1-5-21-2540935256-2595362651-1665068133-1008\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{944864A5-3916-46E2-96A9-A2E84F3F1208} -> Adware.Accoona : Nettoyé.
HKU\S-1-5-21-2540935256-2595362651-1665068133-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1ADBCCE8-CF84-441E-9B38-AFC7A19C06A4} -> Adware.ActivShopper : Nettoyé.
HKU\S-1-5-21-2540935256-2595362651-1665068133-1008\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1ADBCCE8-CF84-441E-9B38-AFC7A19C06A4} -> Adware.ActivShopper : Nettoyé.
C:\Program Files\SpyShredder\SpyShredder0.ss -> Adware.DrAntispy : Nettoyé.
HKU\S-1-5-21-2540935256-2595362651-1665068133-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C5AF2622-8C75-4DFB-9693-23AB7686A456} -> Adware.Generic : Nettoyé.
HKU\S-1-5-21-2540935256-2595362651-1665068133-1008\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C5AF2622-8C75-4DFB-9693-23AB7686A456} -> Adware.Generic : Nettoyé.
C:\Program Files\p2pnetworks -> Adware.MediaPipe : Nettoyé.
C:\Program Files\p2pnetworks\amp2pl.exe -> Adware.MediaPipe : Nettoyé.
C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP548\A0057779.exe -> Downloader.Agent.dwc : Nettoyé.
C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP548\A0057778.exe -> Downloader.Agent.fwr : Nettoyé.
C:\Documents and Settings\Camille\Application Data\WinButler\WinBuninstaller.exe -> Downloader.Agent.gzp : Nettoyé.
C:\Documents and Settings\Patrick\Local Settings\Temporary Internet Files\Content.IE5\CT8N1I05\common[1].js -> Downloader.Agent.zf : Nettoyé.
C:\Documents and Settings\Patrick\Local Settings\Temp\routipqno.exe -> Downloader.Zlob.evr : Nettoyé.
C:\Documents and Settings\Patrick\Local Settings\Temporary Internet Files\Content.IE5\WDIB0DYZ\ParisHilton[1].exe -> Dropper.Agent.cwp : Nettoyé.
C:\WINDOWS\kopmet.dll -> Not-A-Virus.Adware.Vapsup : Nettoyé.
C:\WINDOWS\Downloaded Program Files\UWA7PV_0001_N96M0206NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.o : Nettoyé.
C:\Documents and Settings\Patrick\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\game.class-506f6b50-14948243.class -> Not-A-Virus.Exploit.Java.Gimsh.a : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@247realmedia[2].txt -> TrackingCookie.247realmedia : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@canalplus.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@clubmed.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@cupolaventures.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@heavycom.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@karavel.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@opodo.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@shopping.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@entrepreneur.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@heavycom.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@himedia.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@netcash.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@opodo.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@shopping.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@www.abcsearch[2].txt -> TrackingCookie.Abcsearch : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@adbrite[1].txt -> TrackingCookie.Adbrite : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@4.adbrite[1].txt -> TrackingCookie.Adbrite : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@adbrite[2].txt -> TrackingCookie.Adbrite : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@ads.adbrite[1].txt -> TrackingCookie.Adbrite : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@ads.addynamix[1].txt -> TrackingCookie.Addynamix : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@clicks.adengage[2].txt -> TrackingCookie.Adengage : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@media.adrevolver[1].txt -> TrackingCookie.Adrevolver : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@adtech[2].txt -> TrackingCookie.Adtech : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@adtech[2].txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.11:C:\Documents and Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\mnia604y.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.12:C:\Documents and Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\mnia604y.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.13:C:\Documents and Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\mnia604y.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.14:C:\Documents and Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\mnia604y.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@advertising[1].txt -> TrackingCookie.Advertising : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@advertising[2].txt -> TrackingCookie.Advertising : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@adviva[1].txt -> TrackingCookie.Adviva : Nettoyé.
C:\Documents and Settings\Camille\Cookies\camille@atdmt[1].txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@www.belstat[1].txt -> TrackingCookie.Belstat : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@iv2.bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@casalemedia[1].txt -> TrackingCookie.Casalemedia : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@casalemedia[1].txt -> TrackingCookie.Casalemedia : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@clickbank[1].txt -> TrackingCookie.Clickbank : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@ad1.clickhype[1].txt -> TrackingCookie.Clickhype : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@cz5.clickzs[2].txt -> TrackingCookie.Clickzs : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@vip.clickzs[1].txt -> TrackingCookie.Clickzs : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@cz11.clickzs[1].txt -> TrackingCookie.Clickzs : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@cz3.clickzs[2].txt -> TrackingCookie.Clickzs : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@cz4.clickzs[1].txt -> TrackingCookie.Clickzs : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@cz5.clickzs[2].txt -> TrackingCookie.Clickzs : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@cz7.clickzs[1].txt -> TrackingCookie.Clickzs : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@cz8.clickzs[1].txt -> TrackingCookie.Clickzs : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@commission-junction[2].txt -> TrackingCookie.Commission-junction : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@connextra[2].txt -> TrackingCookie.Connextra : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@dealtime[1].txt -> TrackingCookie.Dealtime : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@stat.dealtime[1].txt -> TrackingCookie.Dealtime : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@dealtime[1].txt -> TrackingCookie.Dealtime : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@stat.dealtime[2].txt -> TrackingCookie.Dealtime : Nettoyé.
:mozilla.8:C:\Documents and Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\mnia604y.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@doubleclick[2].txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@enhance[2].txt -> TrackingCookie.Enhance : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@enhance[1].txt -> TrackingCookie.Enhance : Nettoyé.
C:\Documents and Settings\Camille\Cookies\camille@estat[1].txt -> TrackingCookie.Estat : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@estat[1].txt -> TrackingCookie.Estat : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@estat[1].txt -> TrackingCookie.Estat : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@fastclick[1].txt -> TrackingCookie.Fastclick : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@fastclick[2].txt -> TrackingCookie.Fastclick : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@findwhat[1].txt -> TrackingCookie.Findwhat : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@goclick[1].txt -> TrackingCookie.Goclick : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@goclick[2].txt -> TrackingCookie.Goclick : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@ehg-playboy.hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@counter.hitslink[1].txt -> TrackingCookie.Hitslink : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@hotlog[1].txt -> TrackingCookie.Hotlog : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@searchportal.information[1].txt -> TrackingCookie.Information : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@server.lon.liveperson[1].txt -> TrackingCookie.Liveperson : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@image.masterstats[1].txt -> TrackingCookie.Masterstats : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@mediaplex[2].txt -> TrackingCookie.Mediaplex : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@stat.onestat[2].txt -> TrackingCookie.Onestat : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@overture[2].txt -> TrackingCookie.Overture : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@perf.overture[1].txt -> TrackingCookie.Overture : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@overture[1].txt -> TrackingCookie.Overture : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@paycounter[1].txt -> TrackingCookie.Paycounter : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@ads.planetactive[1].txt -> TrackingCookie.Planetactive : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@pro-market[1].txt -> TrackingCookie.Pro-market : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@questionmarket[2].txt -> TrackingCookie.Questionmarket : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@questionmarket[2].txt -> TrackingCookie.Questionmarket : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@revenue[2].txt -> TrackingCookie.Revenue : Nettoyé.
C:\Documents and Settings\Camille\Cookies\camille@bs.serving-sys[1].txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\Camille\Cookies\camille@serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@bs.serving-sys[1].txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@bs.serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@cs.sexcounter[2].txt -> TrackingCookie.Sexcounter : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@cs.sexcounter[2].txt -> TrackingCookie.Sexcounter : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@sexlist[1].txt -> TrackingCookie.Sexlist : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@counter1.sextracker[1].txt -> TrackingCookie.Sextracker : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@counter12.sextracker[1].txt -> TrackingCookie.Sextracker : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@counter13.sextracker[1].txt -> TrackingCookie.Sextracker : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@counter14.sextracker[1].txt -> TrackingCookie.Sextracker : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@counter15.sextracker[2].txt -> TrackingCookie.Sextracker : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@counter16.sextracker[2].txt -> TrackingCookie.Sextracker : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@counter2.sextracker[2].txt -> TrackingCookie.Sextracker : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@counter6.sextracker[2].txt -> TrackingCookie.Sextracker : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@counter7.sextracker[1].txt -> TrackingCookie.Sextracker : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@counter9.sextracker[1].txt -> TrackingCookie.Sextracker : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@sextracker[1].txt -> TrackingCookie.Sextracker : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@spylog[2].txt -> TrackingCookie.Spylog : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@statcounter[1].txt -> TrackingCookie.Statcounter : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@tacoda[1].txt -> TrackingCookie.Tacoda : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@tacoda[2].txt -> TrackingCookie.Tacoda : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@tribalfusion[2].txt -> TrackingCookie.Tribalfusion : Nettoyé.
C:\Documents and Settings\Camille\Cookies\camille@weborama[2].txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@weborama[1].txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@weborama[2].txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@m.webtrends[2].txt -> TrackingCookie.Webtrends : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@m.webtrends[2].txt -> TrackingCookie.Webtrends : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@statse.webtrendslive[1].txt -> TrackingCookie.Webtrendslive : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@statse.webtrendslive[2].txt -> TrackingCookie.Webtrendslive : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@yadro[1].txt -> TrackingCookie.Yadro : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@yadro[2].txt -> TrackingCookie.Yadro : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@zedo[1].txt -> TrackingCookie.Zedo : Nettoyé.
C:\Documents and Settings\Patrick\Cookies\patrick@zedo[1].txt -> TrackingCookie.Zedo : Nettoyé.
C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP530\A0056131.ocx -> Trojan.Agent.dfy : Nettoyé.


Fin du rapport

Bonjour!
Voici mon raport combo fix:

ComboFix 08-03-03.6 - Camille 2008-03-03 9:56:13.1 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.485 [GMT 1:00]
Endroit: C:\Documents and Settings\Camille\Local Settings\Temporary Internet Files\Content.IE5\MJA1O9OB\ComboFix[1].exe
* Création d'un nouveau point de restauration
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft\Network\Downloader\qmgr0.dat
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft\Network\Downloader\qmgr1.dat
C:\DOCUME~1\ALLUSE~1\APPLIC~1\salesmonitor
C:\DOCUME~1\ALLUSE~1\APPLIC~1\WinAntiVirus Pro 2007
C:\DOCUME~1\ALLUSE~1\APPLIC~1\WinAntiVirus Pro 2007\Data\Abbr
C:\DOCUME~1\ALLUSE~1\APPLIC~1\WinAntiVirus Pro 2007\Data\ActivationCode
C:\DOCUME~1\ALLUSE~1\APPLIC~1\WinAntiVirus Pro 2007\Data\ProductCode
C:\Documents and Settings\Camille\Application Data\WinAntiVirus Pro 2007
C:\Documents and Settings\Camille\Application Data\WinAntiVirus Pro 2007\avtasks.dat
C:\Documents and Settings\Camille\Application Data\WinAntiVirus Pro 2007\CookieList.dat
C:\Documents and Settings\Camille\Application Data\WinAntiVirus Pro 2007\history.db
C:\Documents and Settings\Camille\Application Data\WinAntiVirus Pro 2007\Logs\update.log
C:\Documents and Settings\Camille\Application Data\WinAntiVirus Pro 2007\Logs\wa7Support.log
C:\Documents and Settings\Camille\Application Data\WinAntiVirus Pro 2007\Logs\winav.log
C:\Documents and Settings\Camille\Application Data\WinAntiVirus Pro 2007\PGE.dat
C:\Documents and Settings\Camille\err.log
C:\Documents and Settings\Camille\ResErrors.log
C:\Documents and Settings\Patrick\Application Data\WinAntiVirus Pro 2007
C:\Documents and Settings\Patrick\Application Data\WinAntiVirus Pro 2007\history.db
C:\Documents and Settings\Patrick\Application Data\WinAntiVirus Pro 2007\Logs\update.log
C:\Documents and Settings\Patrick\Application Data\WinAntiVirus Pro 2007\Logs\wa7Support.log
C:\Documents and Settings\Patrick\Application Data\WinAntiVirus Pro 2007\Logs\winav.log
C:\Documents and Settings\Patrick\Application Data\WinAntiVirus Pro 2007\PGE.dat
C:\Documents and Settings\Patrick\err.log
C:\Documents and Settings\Patrick\ResErrors.log
C:\Program Files\Fichiers communs\winantivirus pro 2007
C:\Program Files\Fichiers communs\winantivirus pro 2007\err.log
C:\Program Files\Fichiers communs\winantivirus pro 2007\mfc71.dll
C:\Program Files\Fichiers communs\winantivirus pro 2007\msvcp71.dll
C:\Program Files\Fichiers communs\winantivirus pro 2007\msvcr71.dll
C:\Program Files\video activex access
C:\WINDOWS\764.exe
C:\WINDOWS\7search.dll
C:\WINDOWS\absolute key logger.lnk
C:\WINDOWS\aconti.exe
C:\WINDOWS\aconti.ini
C:\WINDOWS\aconti.sdb
C:\WINDOWS\acontidialer.txt
C:\WINDOWS\adbar.dll
C:\WINDOWS\daxtime.dll
C:\WINDOWS\default.htm
C:\WINDOWS\dp0.dll
C:\WINDOWS\eventlowg.dll
C:\WINDOWS\fhfmm-Uninstaller.exe
C:\WINDOWS\flt.dll
C:\WINDOWS\hotporn.exe
C:\WINDOWS\ie_32.exe
C:\WINDOWS\jd2002.dll
C:\WINDOWS\kkcomp$.exe
C:\WINDOWS\liqad$.exe
C:\WINDOWS\liqui-Uninstaller.exe
C:\WINDOWS\ngd.dll
C:\WINDOWS\pbar.dll
C:\WINDOWS\spredirect.dll
C:\WINDOWS\system32\ace16win.dll
C:\WINDOWS\system32\acespy
C:\WINDOWS\system32\acespy\__acelog.ndx
C:\WINDOWS\system32\acespy\systune.exe
C:\WINDOWS\system32\adult.txt
C:\WINDOWS\system32\drivers\symavc32.sys
C:\WINDOWS\system32\ESHOPEE.exe
C:\WINDOWS\system32\finance.txt
C:\WINDOWS\system32\lt.res
C:\WINDOWS\system32\other.txt
C:\WINDOWS\system32\pharma.txt
C:\WINDOWS\system32\sft.res
C:\WINDOWS\system32\stera.log
C:\WINDOWS\system32\vxddsk.exe
C:\WINDOWS\system32\wml.exe
C:\WINDOWS\vxddsk.exe
C:\WINDOWS\wbeInst$.exe
C:\WINDOWS\wml.exe
C:\WINDOWS\xadbrk_.exe
C:\WINDOWS\xxxvideo.exe
D:\Autorun.inf

----- BITS: Possible sites infectés -----

hxxp://thenetworkcom.com
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))

.
-------\LEGACY_NJC30


((((((((((((((((((((((((((((( Fichiers créés 2008-02-03 to 2008-03-03 ))))))))))))))))))))))))))))))))))))
.

2008-03-02 21:56 . 2008-03-03 09:55 <REP> d-------- C:\Program Files\a-squared Free
2008-03-02 20:47 . 2008-03-02 20:47 <REP> d-------- C:\Documents and Settings\Camille\Application Data\Grisoft
2008-03-02 20:46 . 2008-03-02 20:46 <REP> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
2008-03-02 20:46 . 2007-05-30 13:10 10,872 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
2008-03-02 20:22 . 2008-03-02 20:22 <REP> d-------- C:\Program Files\CCleaner
2008-03-02 20:13 . 2008-03-02 20:18 <REP> d-------- C:\fixwareout
2008-03-02 16:13 . 2008-03-02 16:13 1,167 --a------ C:\WINDOWS\mozver.dat
2008-03-02 15:02 . 2008-03-02 15:02 <REP> d-------- C:\Documents and Settings\Patrick\Application Data\BitDefender
2008-03-02 13:52 . 2008-03-02 13:52 <REP> d-------- C:\Documents and Settings\Camille\Application Data\BitDefender
2008-03-02 13:04 . 2008-03-02 13:04 230 --a------ C:\WINDOWS\system32\spupdsvc.inf
2008-03-02 12:44 . 2008-03-02 12:44 <REP> d-------- C:\Program Files\Trend Micro
2008-03-02 12:21 . 2008-03-03 10:02 121 --a------ C:\WINDOWS\bdagent.INI
2008-03-02 12:19 . 2008-03-02 12:19 <REP> d-------- C:\Program Files\BitDefender
2008-03-02 12:19 . 2008-03-02 12:19 <REP> d-------- C:\Documents and Settings\HP_Administrateur\Application Data\Bitdefender
2008-03-02 12:19 . 2008-03-02 12:20 <REP> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\BitDefender
2008-03-02 12:18 . 2008-03-02 12:19 <REP> d-------- C:\Program Files\Fichiers communs\BitDefender
2008-03-02 11:48 . 2008-03-02 11:48 <REP> d--h----- C:\WINDOWS\system32\GroupPolicy
2008-03-01 20:29 . 2008-03-01 20:29 <REP> d-------- C:\Program Files\Windows Defender
2008-03-01 14:29 . 2008-03-01 14:29 <REP> d-------- C:\Program Files\Lavasoft
2008-03-01 14:29 . 2008-03-01 14:30 <REP> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
2008-03-01 13:32 . 2008-03-02 20:16 664 --a------ C:\WINDOWS\system32\d3d9caps.dat
2008-03-01 12:51 . 2008-03-01 12:51 89,107 --a------ C:\WINDOWS\system32\mgmrwmrv.exe
2008-03-01 12:51 . 2008-03-01 12:51 4 --a------ C:\WINDOWS\system32\winfrun32.bin
2008-02-26 09:33 . 2008-02-26 09:33 <REP> d-------- C:\Documents and Settings\Camille\Application Data\disqudurprotection
2008-02-25 23:41 . 2008-02-25 23:41 <REP> d-------- C:\Documents and Settings\Patrick\Application Data\disqudurprotection
2008-02-25 22:39 . 2008-02-25 22:39 <REP> d-------- C:\Documents and Settings\HP_Administrateur\Application Data\disqudurprotection
2008-02-25 22:33 . 2008-03-01 18:13 <REP> d-------- C:\Program Files\Fichiers communs\DisqudurProtection
2008-02-25 22:33 . 2008-02-29 10:02 <REP> d-------- C:\Program Files\DisqudurProtection
2008-02-25 22:33 . 2008-02-25 22:33 <REP> dr------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\SalesMon
2008-02-25 22:33 . 2008-02-25 22:33 <REP> dr------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\disqudurprotection
2008-02-25 22:32 . 2008-02-25 22:31 260,632 --a------ C:\Documents and Settings\HP_Administrateur\Application Data\setup_fr[1].exe
2008-02-25 22:29 . 2008-03-02 11:32 <REP> d-------- C:\Program Files\IKEA HomePlanner
2008-02-25 22:28 . 2008-03-02 11:32 <REP> d-------- C:\Program Files\Fichiers communs\Wise Installation Wizard
2008-02-20 12:29 . 2008-03-01 10:28 <REP> d-------- C:\Documents and Settings\HP_Administrateur\Application Data\AdobeUM
2008-02-17 14:50 . 2008-02-17 14:50 167,936 --a------ C:\WINDOWS\system32\drivers\Njc30.sys
2008-02-17 14:50 . 2008-02-17 14:50 54,272 --a------ C:\ukbdtg.exe
2008-02-17 14:50 . 2008-02-17 14:50 29 --a------ C:\WINDOWS\system32\iifeffio.tmp
2008-02-17 14:50 . 2008-02-17 14:50 2 --a------ C:\-664524276
2008-02-17 14:46 . 2007-06-13 14:22 1,078,482 --a------ C:\WINDOWS\fgtwhml.exe

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-03-02 18:07 7,026 ----a-w C:\Documents and Settings\Camille\Application Data\wklnhst.dat
2008-03-02 12:07 --------- d-----w C:\Program Files\Google
2008-03-02 12:07 --------- d-----w C:\Program Files\Fichiers communs\Labtec
2008-03-02 10:41 --------- d-----w C:\Program Files\Yahoo!
2008-03-02 10:40 --------- d-----w C:\Program Files\Windows Live Toolbar
2008-03-02 10:40 --------- d-----w C:\Program Files\Windows Live
2008-03-02 10:39 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-03-02 10:39 --------- d-----w C:\Documents and Settings\Camille\Application Data\Samsung
2008-03-02 10:38 --------- d-----w C:\Program Files\Samsung
2008-03-02 10:38 --------- d-----w C:\Program Files\Fichiers communs\Real
2008-03-02 10:33 --------- d-----w C:\Program Files\Labtec
2008-03-02 10:31 --------- d-----w C:\Program Files\DivX
2008-03-02 10:30 --------- d-----w C:\Program Files\eMule
2008-03-01 17:03 --------- d-----w C:\Documents and Settings\Camille\Application Data\HP
2008-03-01 12:38 --------- d-----w C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
2008-02-20 14:51 22,342 ----a-w C:\Documents and Settings\HP_Administrateur\Application Data\wklnhst.dat
2008-01-28 12:33 --------- d-----w C:\Documents and Settings\Camille\Application Data\WinButler
2008-01-20 14:59 --------- d-----w C:\Program Files\Intel
2008-01-18 14:06 --------- d-----w C:\Program Files\muvee Technologies
2008-01-18 14:06 --------- d-----w C:\Program Files\Fichiers communs\muvee Technologies
2008-01-18 14:05 --------- d-----w C:\Program Files\RichVideoCodec
2007-06-04 17:37 550 ----a-w C:\Documents and Settings\Patrick\Application Data\wklnhst.dat
.

((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0}
{381FFDE8-2394-4F90-B10D-FC6124A40F8C}

[HKEY_CLASSES_ROOT\clsid\{381ffde8-2394-4f90-b10d-fc6124a40f8c}]
[HKEY_CLASSES_ROOT\BitDefender Toolbar]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.exe" [2007-10-18 11:34 5724184]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-10 12:00 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray"="C:\WINDOWS\ehome\ehtray.exe" [2005-08-05 19:34 64512]
"ftutil2"="ftutil2.dll" [2004-06-07 13:05 106496 C:\WINDOWS\system32\ftutil2.dll]
"RTHDCPL"="RTHDCPL.EXE" [2006-07-22 00:56 16261632 C:\WINDOWS\RTHDCPL.EXE]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2006-06-21 01:06 7622656]
"nwiz"="nwiz.exe" [2006-06-21 01:06 1519616 C:\WINDOWS\system32\nwiz.exe]
"DMAScheduler"="c:\Program Files\HP DigitalMedia Archive\DMAScheduler.exe" [2006-04-13 08:05 90112]
"Recguard"="C:\WINDOWS\SMINST\RECGUARD.EXE" [2005-07-22 21:14 237568]
"PCDrProfiler"="" []
"HPBootOp"="C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" [2006-02-15 21:34 249856]
"HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [2005-05-11 23:12 49152]
"HP Component Manager"="C:\Program Files\HP\hpcoretech\hpcmpmgr.exe" [2003-12-22 08:38 241664]
"DXDllRegExe"="dxdllreg.exe" []
"AdslTaskBar"="stmctrl.dll" [2004-06-04 14:03 151552 C:\WINDOWS\system32\stmctrl.dll]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-12-04 14:00 79224]
"Sony Ericsson PC Suite"="C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" [2005-10-26 15:17 159744]
"Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe" [2006-11-03 19:20 866584]
"BitDefender Antiphishing Helper"="C:\Program Files\BitDefender\BitDefender 2008\IEShow.exe" [2007-10-09 15:46 61440]
"BDAgent"="C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe" [2008-03-02 12:24 360448]
"ISUSPM Startup"="C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2004-07-27 22:50 221184]
"!AVG Anti-Spyware"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [2007-06-11 10:25 6731312]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"STMADSL"="control stmadsl.cpl" []

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"InstallVisualStyle"= C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"= C:\WINDOWS\Resources\Themes\Royale.theme

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"C:\\Program Files\\Services en ligne\\Tele2\\t2ch6.exe"=
"C:\\Program Files\\Internet Explorer\\IEXPLORE.EXE"=
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"C:\\Program Files\\Messenger\\msmsgs.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009

R2 Planificateur LiveUpdate automatique;Planificateur LiveUpdate automatique;"C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe" [2006-08-03 17:29]
R3 Stmatm;ATM/ADSL miniport;C:\WINDOWS\system32\DRIVERS\stmatm.sys [2004-06-04 14:03]
R3 TaurusUsb;ADSL Modem USB Service;C:\WINDOWS\system32\DRIVERS\torususb.sys [2004-06-04 14:03]
R3 usbscan;Pilote de scanneur USB;C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 22:58]
R3 usbstor;Pilote de stockage de masse USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-10 12:00]
S3 Navcar;Navman In-car Navigator USB Driver Service;C:\WINDOWS\system32\DRIVERS\Navcar.sys [2006-12-13 22:25]
S3 scan;BitDefender Threat Scanner;C:\WINDOWS\System32\svchost.exe [2004-08-10 12:00]
S3 ss_bus;SAMSUNG Mobile USB Device 1.0 driver (WDM);C:\WINDOWS\system32\DRIVERS\ss_bus.sys [2005-08-30 16:57]
S3 ss_mdfl;SAMSUNG Mobile USB Modem 1.0 Filter;C:\WINDOWS\system32\DRIVERS\ss_mdfl.sys [2005-08-30 16:58]
S3 ss_mdm;SAMSUNG Mobile USB Modem 1.0 Drivers;C:\WINDOWS\system32\DRIVERS\ss_mdm.sys [2005-08-30 16:59]
S3 w200bus;Sony Ericsson W200 driver (WDM);C:\WINDOWS\system32\DRIVERS\w200bus.sys [2006-11-07 08:42]
S3 w200mdfl;Sony Ericsson W200 USB WMC Modem Filter;C:\WINDOWS\system32\DRIVERS\w200mdfl.sys [2006-11-07 08:42]
S3 w200mdm;Sony Ericsson W200 USB WMC Modem Driver;C:\WINDOWS\system32\DRIVERS\w200mdm.sys [2006-11-07 08:42]
S3 w200mgmt;Sony Ericsson W200 USB WMC Device Management Drivers (WDM);C:\WINDOWS\system32\DRIVERS\w200mgmt.sys [2006-11-07 08:42]
S3 w200obex;Sony Ericsson W200 USB WMC OBEX Interface;C:\WINDOWS\system32\DRIVERS\w200obex.sys [2006-11-07 08:42]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bdx REG_MULTI_SZ scan

.
**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-03-03 10:07:19
Windows 5.1.2600 Service Pack 2 NTFS

Balayage processus cachés ...

Balayage caché autostart entries ...

Balayage des fichiers cachés ...

Scan terminé avec succès
Les fichiers cachés: 0

**************************************************************************
.
------------------------ Other Running Processes ------------------------
.
C:\Program Files\Windows Defender\MsMpEng.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\a-squared Free\a2service.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Fichiers communs\BitDefender\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology Drivers\Elservice.exe
C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
C:\WINDOWS\ehome\mcrdsvc.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\WINDOWS\system32\rundll32.exe
.
**************************************************************************
.
Temps d'accomplissement: 2008-03-03 10:09:48 - machine was rebooted
ComboFix-quarantined-files.txt 2008-03-03 09:09:45
.
2008-02-15 02:00:46 --- E O F ---

La je suis en train de faire le scan en ligne...

Bonjour.

Je suis désolée de ne répondre qu'aujourd'hui, mais c'est l'ordinateur de chez mes parents qui a un problème, et je ne suis chez eux que le we.

Alors, voici le raport que tu m'as demandé lundi:

C:\WINDOWS\system32\mgmrwmrv.exe moved successfully.
C:\Documents and Settings\HP_Administrateur\Application Data\setup_fr[1].exe moved successfully.
File/Folder C:\WINDOWS\system32\drivers\Njc30.sys not found.
File/Folder C:\ukbdtg.exe not found.
C:\WINDOWS\system32\iifeffio.tmp moved successfully.
C:\-664524276 moved successfully.
File/Folder C:\WINDOWS\fgtwhml.exe not found.
File/Folder C:\WINDOWS\system32\marwin32.dl not found.
File/Folder C:\Documents and Settings\All Users\Application Data\wrujghor.dll not found.
File/Folder C:\WINDOWS\system32\fepajink.exe not found.
C:\Program Files\RichVideoCodec moved successfully.
C:\Documents and Settings\Camille\Application Data\WinButler moved successfully.
Folder c:\program files\3721\ not found.

OTMoveIt2 v1.0.20 log created on 03072008_112827

Pour clean, j'ai ce petit raport qui s'est ouvert:

07/03/2008 a 11:33:46,89

*** Recherche des fichiers dans C:

*** Recherche des fichiers dans C:\WINDOWS\

*** Recherche des fichiers dans C:\WINDOWS\system32
"C:\WINDOWS\Downloaded Program Files\CONFLICT.1" FOUND

*** Recherche des fichiers dans C:\Program Files
*** Fin du rapport !

Je ne sais pas si c'est cela qu'il fallait envoyer...