Titou15

quelqu'un pourrait m'aider svp

Bonjour à tous, Il me semble que j'ai été infecté par le fameux bagle! BitDefender "n'est pas une application win32 valide" ainsi que Avast (que j'ai installé après avoir désinsatllé BitDefender). Je poste le rapport effectué par ComboFix. Merci d'avance ComboFix 08-10-31.02 - HP_Administrateur 2008-11-01 13:00:58.1 - NTFSx86 Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.749 [GMT 1:00] Commutateurs utilisés :: C:\Documents and Settings\HP_Administrateur\Bureau\WindowsXP-KB310994-SP2-Home-BootDisk-FRA.exe * Un nouveau point de restauration a été créé . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . C:\Documents and Settings\Administrateur\Local Settings\Application Data\Microsoft\Windows Media\10.0\WMSDKNSD.XML C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WebMediaPlayer C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WebMediaPlayer\Conditions générales.url C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WebMediaPlayer\Confidentialité.url C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WebMediaPlayer\Désinstaller.lnk C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WebMediaPlayer\WebMediaPlayer.lnk C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WebMediaPlayer\Website.url C:\Documents and Settings\HP_Administrateur\Application Data\m C:\Documents and Settings\HP_Administrateur\Application Data\m\data.oct C:\Documents and Settings\HP_Administrateur\Application Data\m\flec006.exe C:\Documents and Settings\HP_Administrateur\Application Data\m\list.oct C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\3D Night Before Christmas 1.0.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\A-PDF_Split_2.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\ABC Amber Pegasus Converter 5.03.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\AIM_Translator_3.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Aimersoft DVD Audio Ripper 1.1.55.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\AJScroller_Creator_4.2.0_(Key+Serial).zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\AMan_Pro_for_Amazon_Sellers_3.1_[With_Crack].zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\AS FAN win32 DLL 2.1.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Atlantis_Creator_5.44.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Atomic IE Password Cracker 1.20.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Auto Web View Screensaver 1.0.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Babya_bSuite_1.5.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Beyond_TV_Link_4.6.1.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Brainstorm Bungy 1.24.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\BS MCP 1.11b.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\BtPrinterList_6.0.1.4.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\BTSWCFServicePublishing Command-Line Tool 3.6.1404.0.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Business Card Studio 2.0.12.34.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\ByteName 1.12.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\CableMon 1.8.0.1 Key.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\CEREMU_Media_Browser_1.0_(Serial).zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Cintel_Orion_Web_Server_1.5_Build_235.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\CopyTrans Photo 1.28.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\CPU Cogs 1.1.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\CSAutoDoc 1.0.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\CubeVision Timer 2.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Database_Applet_5.0.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Dcat_ScreenSaver_1.61_build_821.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Debugger Selector 1.0 Build 3.5.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Ding_1.04.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\DrWeb_for_Linux.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Duplicate Image File Finder 7.0.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\DVDRecode DVD Copy.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\DVDWriterPro2_1.008.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\DVDx 2.10.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Easy_Go_Back_2.5.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\EBgo_Break_Even_1.1.2_(Cracked).zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\English Danish & Dansk Engelsk Dictionary 1.0.0.15.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\EnjoiFLV 1.12.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Erebuni_Backgammon_1.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Fading_Border_1.0.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\File Wiper 2.96.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\File_and_Folder_Lister_2.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\FixTunes_1.3.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\FixVTS 1.603.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Flash_Speed_200%_3.2.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Flora_Antiqa_Screensaver_1.0_[Cracked].zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\FontZip_5.0_[Key+Serial].zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Fresh_FTP_3.4.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Frostbow_Collection_Manager_2.5.4_[Crack].zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Fun_and_Easy_Bible_Memorization_1.2_Patch.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Gala2_1.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Gateway GAT Type Motherboard BIOS 4.04H.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\GPAKEL 1.0.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\GraFX Saver 4.0.1.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Grammar_Quest_1.5_KeyGen.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\GRE Red & Blue Bible 6.0.6.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\HTML_Color_Codes_&_Color_Wheel_1.0.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Icechip Keeper 1.1a.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\InternetOK 2.2 [KeyGen].zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Jar2Exe_Standard_Edition_1.6.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\JUTree_1.0.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\kbSizer 0.8.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Kentucky_Fried_Chicken_Font_1.0.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Kernel SQL Recovery 7.07.01 (Key+Serial).zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\KolayBAR_4.13.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Launchkey 2.01.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\LEAD_MJPEG2000_Video_Codec_Patch.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\LingvoSoft_Talking_Dictionary_2007_English_-_Chinese_Traditional_4.0.22.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\M_File_Splitter_1.0.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\MaxCopy_2.5.1.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Microsoft_Virtual_Machine_5.00.3810.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\MIDImage_2.4.4.1.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Mosaic_Tomb_of_Mystery_1.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Mountain Skiing Screensaver 2.0.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Move Oracle to Another Oracle Database Software 7.0.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\MP3_to_CD_Burners_2.50.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Multiget_1.1_Crack.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\NeatHtml 1.0.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\NextInstaller_2.81.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\niurosoft_ReaDit2005_5.2.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\nod32_v2.70.23.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\One_Click_Sweep_1.4.5.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Password Hasher 1.0.4.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Pingotron Pro 4.1.3.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Plug_and_Browse_5.0_(Key+Serial).zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Popup_Eliminator_1.0_(Key).zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Portinho_3.0a.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Post NET Notes 1.5f.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Project Log 1.0.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Quake Video Maker 1.4.2.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\ReaStyler 3.3.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\RecoverEXE_1.0_(Serial).zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\RegRun Security Suite Standard 5.0.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Roadkil's CommTest 1.1.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\RollerCoaster_Tycoon_2_2.0.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Sachi's_Quest_Demo_1.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\SEO Note 1.3.30.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\SIMMS_Inventory_Software_5.1.7_Cracked.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Simple Loan Calculator 2.3.0.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Sixties 1.0.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Snood_Solitaire_1.1.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\SoftCollection Video Capture 1.63.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\SoftTime_Lite_2005_2.05.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Software_Translator_6.4_Key.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Spinning String Screensaver.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\SPROC_Function_Builder_1.1_[Key+Serial].zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Steganos Safe Professional 2007 9.0.6.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\StockQ 0.8.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Super Clock Screensaver City.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Syncward 1.9.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Text Converter 2.1.3.21.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\The_Sims_2_v1.0.0.971_CD_update.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Time4Videos_toolbar_for_Firefox_1.5.0.6.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Vocal 1.1.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Volleyball (UIQ) 1.0.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\WaveGain 1.2.6.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Web Questionnaire 4.12.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\WebPass_Pro_1.1.22.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Win-Medic Registry Compressor 2.01.69.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\WinASO_Disk_Cleaner_1.61_[Cracked].zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Windows in a box 2.0.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\WiseDesktop_1.5.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\Wit_and_Wisdom_2.02_Cracked.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\X-Win32_8.0.2204s.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\XFader 5.0 Patch.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\shared\ZipAdvisor_1.0.zip C:\Documents and Settings\HP_Administrateur\Application Data\m\srvlist.oct C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\qqaqu.dat C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\qqaqu_nav.dat C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\qqaqu_navps.dat C:\InfoSat.txt C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\INSTALL.LOG C:\WINDOWS\system32\_004598_.tmp.dll C:\WINDOWS\system32\_004599_.tmp.dll C:\WINDOWS\system32\_004600_.tmp.dll C:\WINDOWS\system32\_004601_.tmp.dll C:\WINDOWS\system32\_004608_.tmp.dll C:\WINDOWS\system32\_004609_.tmp.dll C:\WINDOWS\system32\_004610_.tmp.dll C:\WINDOWS\system32\_004611_.tmp.dll C:\WINDOWS\system32\_004613_.tmp.dll C:\WINDOWS\system32\_004614_.tmp.dll C:\WINDOWS\system32\_004617_.tmp.dll C:\WINDOWS\system32\_004618_.tmp.dll C:\WINDOWS\system32\_004620_.tmp.dll C:\WINDOWS\system32\_004621_.tmp.dll C:\WINDOWS\system32\_004622_.tmp.dll C:\WINDOWS\system32\_004624_.tmp.dll C:\WINDOWS\system32\_004627_.tmp.dll C:\WINDOWS\system32\_004628_.tmp.dll C:\WINDOWS\system32\_004632_.tmp.dll C:\WINDOWS\system32\_004633_.tmp.dll C:\WINDOWS\system32\_004635_.tmp.dll C:\WINDOWS\system32\_004638_.tmp.dll C:\WINDOWS\system32\_004640_.tmp.dll C:\WINDOWS\system32\_004641_.tmp.dll C:\WINDOWS\system32\_004642_.tmp.dll C:\WINDOWS\system32\_004643_.tmp.dll C:\WINDOWS\system32\_004644_.tmp.dll C:\WINDOWS\system32\_004647_.tmp.dll C:\WINDOWS\system32\_004648_.tmp.dll C:\WINDOWS\system32\_004649_.tmp.dll C:\WINDOWS\system32\_004650_.tmp.dll C:\WINDOWS\system32\_004651_.tmp.dll C:\WINDOWS\system32\_004656_.tmp.dll C:\WINDOWS\system32\_004658_.tmp.dll C:\WINDOWS\system32\ban_list.txt C:\WINDOWS\system32\drivers\downld C:\WINDOWS\system32\drivers\downld\100578.exe C:\WINDOWS\system32\drivers\downld\102718.exe C:\WINDOWS\system32\drivers\downld\103578.exe C:\WINDOWS\system32\drivers\downld\105140.exe C:\WINDOWS\system32\drivers\downld\106031.exe C:\WINDOWS\system32\drivers\downld\106750.exe C:\WINDOWS\system32\drivers\downld\110109.exe C:\WINDOWS\system32\drivers\downld\112515.exe C:\WINDOWS\system32\drivers\downld\113812.exe C:\WINDOWS\system32\drivers\downld\114953.exe C:\WINDOWS\system32\drivers\downld\115703.exe C:\WINDOWS\system32\drivers\downld\1162062.exe C:\WINDOWS\system32\drivers\downld\122937.exe C:\WINDOWS\system32\drivers\downld\1231609.exe C:\WINDOWS\system32\drivers\downld\123218.exe C:\WINDOWS\system32\drivers\downld\124046.exe C:\WINDOWS\system32\drivers\downld\1242546.exe C:\WINDOWS\system32\drivers\downld\124453.exe C:\WINDOWS\system32\drivers\downld\125250.exe C:\WINDOWS\system32\drivers\downld\125890.exe C:\WINDOWS\system32\drivers\downld\129515.exe C:\WINDOWS\system32\drivers\downld\130609.exe C:\WINDOWS\system32\drivers\downld\131812.exe C:\WINDOWS\system32\drivers\downld\132406.exe C:\WINDOWS\system32\drivers\downld\133625.exe C:\WINDOWS\system32\drivers\downld\134796.exe C:\WINDOWS\system32\drivers\downld\136500.exe C:\WINDOWS\system32\drivers\downld\141437.exe C:\WINDOWS\system32\drivers\downld\142250.exe C:\WINDOWS\system32\drivers\downld\145421.exe C:\WINDOWS\system32\drivers\downld\146093.exe C:\WINDOWS\system32\drivers\downld\147734.exe C:\WINDOWS\system32\drivers\downld\155218.exe C:\WINDOWS\system32\drivers\downld\156343.exe C:\WINDOWS\system32\drivers\downld\158625.exe C:\WINDOWS\system32\drivers\downld\160828.exe C:\WINDOWS\system32\drivers\downld\161015.exe C:\WINDOWS\system32\drivers\downld\166812.exe C:\WINDOWS\system32\drivers\downld\170109.exe C:\WINDOWS\system32\drivers\downld\171718.exe C:\WINDOWS\system32\drivers\downld\174171.exe C:\WINDOWS\system32\drivers\downld\179281.exe C:\WINDOWS\system32\drivers\downld\180593.exe C:\WINDOWS\system32\drivers\downld\180640.exe C:\WINDOWS\system32\drivers\downld\181718.exe C:\WINDOWS\system32\drivers\downld\182687.exe C:\WINDOWS\system32\drivers\downld\183265.exe C:\WINDOWS\system32\drivers\downld\184718.exe C:\WINDOWS\system32\drivers\downld\188640.exe C:\WINDOWS\system32\drivers\downld\190015.exe C:\WINDOWS\system32\drivers\downld\191328.exe C:\WINDOWS\system32\drivers\downld\191875.exe C:\WINDOWS\system32\drivers\downld\193546.exe C:\WINDOWS\system32\drivers\downld\194125.exe C:\WINDOWS\system32\drivers\downld\194687.exe C:\WINDOWS\system32\drivers\downld\195500.exe C:\WINDOWS\system32\drivers\downld\198421.exe C:\WINDOWS\system32\drivers\downld\199734.exe C:\WINDOWS\system32\drivers\downld\199921.exe C:\WINDOWS\system32\drivers\downld\200718.exe C:\WINDOWS\system32\drivers\downld\201343.exe C:\WINDOWS\system32\drivers\downld\201781.exe C:\WINDOWS\system32\drivers\downld\205015.exe C:\WINDOWS\system32\drivers\downld\207890.exe C:\WINDOWS\system32\drivers\downld\207968.exe C:\WINDOWS\system32\drivers\downld\210750.exe C:\WINDOWS\system32\drivers\downld\214781.exe C:\WINDOWS\system32\drivers\downld\215421.exe C:\WINDOWS\system32\drivers\downld\217484.exe C:\WINDOWS\system32\drivers\downld\221921.exe C:\WINDOWS\system32\drivers\downld\231437.exe C:\WINDOWS\system32\drivers\downld\232546.exe C:\WINDOWS\system32\drivers\downld\235546.exe C:\WINDOWS\system32\drivers\downld\240937.exe C:\WINDOWS\system32\drivers\downld\243562.exe C:\WINDOWS\system32\drivers\downld\256562.exe C:\WINDOWS\system32\drivers\downld\276078.exe C:\WINDOWS\system32\drivers\downld\276781.exe C:\WINDOWS\system32\drivers\downld\293656.exe C:\WINDOWS\system32\drivers\downld\304000.exe C:\WINDOWS\system32\drivers\downld\306812.exe C:\WINDOWS\system32\drivers\downld\308234.exe C:\WINDOWS\system32\drivers\downld\309484.exe C:\WINDOWS\system32\drivers\downld\310250.exe C:\WINDOWS\system32\drivers\downld\312718.exe C:\WINDOWS\system32\drivers\downld\313531.exe C:\WINDOWS\system32\drivers\downld\314437.exe C:\WINDOWS\system32\drivers\downld\315812.exe C:\WINDOWS\system32\drivers\downld\320953.exe C:\WINDOWS\system32\drivers\downld\321171.exe C:\WINDOWS\system32\drivers\downld\321406.exe C:\WINDOWS\system32\drivers\downld\339359.exe C:\WINDOWS\system32\drivers\downld\348359.exe C:\WINDOWS\system32\drivers\downld\363828.exe C:\WINDOWS\system32\drivers\downld\369421.exe C:\WINDOWS\system32\drivers\downld\377625.exe C:\WINDOWS\system32\drivers\downld\382625.exe C:\WINDOWS\system32\drivers\downld\388359.exe C:\WINDOWS\system32\drivers\downld\393437.exe C:\WINDOWS\system32\drivers\downld\395828.exe C:\WINDOWS\system32\drivers\downld\400468.exe C:\WINDOWS\system32\drivers\downld\400984.exe C:\WINDOWS\system32\drivers\downld\402281.exe C:\WINDOWS\system32\drivers\downld\404296.exe C:\WINDOWS\system32\drivers\downld\411343.exe C:\WINDOWS\system32\drivers\downld\412765.exe C:\WINDOWS\system32\drivers\downld\412781.exe C:\WINDOWS\system32\drivers\downld\413468.exe C:\WINDOWS\system32\drivers\downld\415109.exe C:\WINDOWS\system32\drivers\downld\422390.exe C:\WINDOWS\system32\drivers\downld\426312.exe C:\WINDOWS\system32\drivers\downld\428046.exe C:\WINDOWS\system32\drivers\downld\431562.exe C:\WINDOWS\system32\drivers\downld\440281.exe C:\WINDOWS\system32\drivers\downld\446843.exe C:\WINDOWS\system32\drivers\downld\65953.exe C:\WINDOWS\system32\drivers\downld\66203.exe C:\WINDOWS\system32\drivers\downld\66281.exe C:\WINDOWS\system32\drivers\downld\67203.exe C:\WINDOWS\system32\drivers\downld\67781.exe C:\WINDOWS\system32\drivers\downld\68500.exe C:\WINDOWS\system32\drivers\downld\70390.exe C:\WINDOWS\system32\drivers\downld\76796.exe C:\WINDOWS\system32\drivers\downld\77265.exe C:\WINDOWS\system32\drivers\downld\77515.exe C:\WINDOWS\system32\drivers\downld\77750.exe C:\WINDOWS\system32\drivers\downld\77796.exe C:\WINDOWS\system32\drivers\downld\77890.exe C:\WINDOWS\system32\drivers\downld\78593.exe C:\WINDOWS\system32\drivers\downld\79000.exe C:\WINDOWS\system32\drivers\downld\79203.exe C:\WINDOWS\system32\drivers\downld\79453.exe C:\WINDOWS\system32\drivers\downld\80421.exe C:\WINDOWS\system32\drivers\downld\85046.exe C:\WINDOWS\system32\drivers\downld\86250.exe C:\WINDOWS\system32\drivers\downld\88593.exe C:\WINDOWS\system32\drivers\downld\93390.exe C:\WINDOWS\system32\drivers\downld\95109.exe C:\WINDOWS\system32\drivers\downld\96734.exe C:\WINDOWS\system32\drivers\downld\99828.exe C:\WINDOWS\system32\drivers\srosa.sys C:\WINDOWS\system32\drivers\winfilse.exe C:\WINDOWS\system32\mdelk.exe C:\WINDOWS\system32\wintems.exe D:\Autorun.inf . ((((((((((((((((((((((((((((((((((((((( Pilotes/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Service_SROSA -------\Legacy_SROSA ((((((((((((((((((((((((((((( Fichiers créés du 2008-10-01 au 2008-11-01 )))))))))))))))))))))))))))))))))))) . 2008-10-31 23:49 . 2008-10-31 23:49 <REP> d-------- C:\WINDOWS\system32\Kaspersky Lab 2008-10-31 15:20 . 2008-10-31 15:20 <REP> d-------- C:\Program Files\Alwil Software 2008-10-28 19:00 . 2008-10-30 22:48 <REP> d-------- C:\CS1.6 pod-Bot 2008-10-20 16:05 . 2008-10-20 17:13 <REP> d-------- C:\Program Files\NOS 2008-10-20 16:05 . 2008-10-21 15:40 <REP> d-------- C:\Documents and Settings\All Users\Application Data\NOS 2008-10-01 18:52 . 2008-10-01 18:52 <REP> d-------- C:\Documents and Settings\HP_Administrateur\Application Data\dvdcss . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2008-11-01 11:56 --------- d-----w C:\Documents and Settings\HP_Administrateur\Application Data\vmntoolbar 2008-10-31 23:04 --------- d-----w C:\Program Files\Metin2_France 2008-10-31 22:39 --------- d-----w C:\Program Files\Spybot - Search & Destroy 2008-10-31 22:39 --------- d-----w C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy 2008-10-31 22:33 --------- d-----w C:\Program Files\LimeWire 2008-10-31 14:34 --------- d-----w C:\Program Files\PC-Doctor 5 for Windows 2008-10-31 14:34 --------- d-----w C:\Program Files\GemMasterFrench 2008-10-31 14:34 --------- d-----w C:\Program Files\FrenchOtto 2008-10-31 14:31 --------- d-----w C:\Program Files\Download Express 2008-10-31 14:11 --------- d-----w C:\Program Files\BitDefender 2008-10-31 13:34 --------- d-----w C:\Program Files\Windows Media Connect 2 2008-10-31 13:34 --------- d-----w C:\Program Files\Windows Live Toolbar 2008-10-31 13:34 --------- d-----w C:\Program Files\Livre Album Fuji Photo 2008-10-31 13:33 --------- d-----w C:\Program Files\Motorola Phone Tools 2008-10-31 13:33 --------- d-----w C:\Program Files\Microsoft Works 2008-10-31 13:33 --------- d-----w C:\Program Files\Avanquest update 2008-10-31 13:13 --------- d-----w C:\Program Files\eMule 2008-10-28 17:58 --------- d-----w C:\Program Files\DAEMON Tools 2008-10-25 18:37 15,636 ----a-w C:\Documents and Settings\HP_Administrateur\Application Data\wklnhst.dat 2008-10-25 12:23 --------- d-----w C:\Documents and Settings\HP_Administrateur\Application Data\LimeWire 2008-10-21 16:10 --------- d-----w C:\Program Files\Microsoft Silverlight 2008-10-20 15:09 --------- d-----w C:\Program Files\Fichiers communs\Adobe 2008-09-13 22:43 --------- d-----w C:\Program Files\Messenger Plus! Live 2008-09-10 15:39 --------- d-----w C:\Program Files\Orange 2008-09-10 15:33 --------- d-----w C:\Program Files\SAGEM 2008-09-10 15:31 --------- d-----w C:\Program Files\Securitoo 2008-09-01 17:19 --------- d-----w C:\Documents and Settings\HP_Administrateur\Application Data\EoRezo 2008-05-07 19:52 774,144 ----a-w C:\Program Files\RngInterstitial.dll 2007-12-09 18:53 251 ----a-w C:\Program Files\wt3d.ini 2007-03-06 19:45 24,192 ----a-w C:\Documents and Settings\HP_Administrateur\usbsermptxp.sys 2007-03-06 19:45 22,768 ----a-w C:\Documents and Settings\HP_Administrateur\usbsermpt.sys 2006-12-26 13:35 22 --sha-w C:\WINDOWS\SMINST\HPCD.sys 2008-03-02 17:19 8 --sh--r C:\WINDOWS\system32\A1C9D169CE.sys 2008-03-02 17:19 4,184 --sha-w C:\WINDOWS\system32\KGyGaAvL.sys . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A057A204-BACC-4D26-8287-79A187E26987}] 2007-09-24 15:26 2022912 --a------ C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "{A057A204-BACC-4D26-8287-79A187E26987}"= "C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL" [2007-09-24 2022912] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Creative WebCam Tray"="C:\Program Files\Creative\Shared Files\CamTray.exe" [2005-03-29 258048] "MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2004-10-14 1694208] "MessengerPlus3"="C:\Program Files\MessengerPlus! 3\MsgPlus.exe" [2007-02-13 190024] "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-10 15360] "msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [2007-10-18 5724184] "DAEMON Tools"="C:\Program Files\DAEMON Tools\daemon.exe" [2007-04-03 165784] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2006-06-21 7622656] "Adobe Photo Downloader"="C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe" [2005-06-23 57344] "SystrayORAHSS"="C:\Program Files\Orange\Systray\SystrayApp.exe" [2007-09-25 94208] "ORAHSSSessionManager"="C:\Program Files\Orange\SessionManager\SessionManager.exe" [2007-09-25 102400] "Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672] "avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2008-11-01 78008] C:\Documents and Settings\HP_Administrateur\Menu D‚marrer\Programmes\D‚marrage\ Outil de d‚tection de support de Cyber-shot Viewer.lnk - C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe [2006-12-31 155648] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "InstallVisualStyle"= C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles "InstallTheme"= C:\WINDOWS\Resources\Themes\Royale.theme [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "C:\\Program Files\\Messenger\\msmsgs.exe"= "C:\\Program Files\\Microsoft Games\\Age of Mythology\\aomx.exe"= "C:\\Program Files\\SightSpeed\\SightSpeed.exe"= "C:\\Program Files\\Sierra\\FEAR\\FEAR.exe"= "C:\\UT2003Demo\\System\\UT2003.exe"= "C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"= "C:\\Program Files\\Sierra\\FEARCombat\\FEARMP.exe"= "C:\\Program Files\\Orange\\Connectivity\\ConnectivityManager.exe"= "C:\\Program Files\\eMule\\emule.exe"= "C:\\Program Files\\Metin2_France\\metin2.bin"= R3 P0630VID;Creative WebCam Live!;C:\WINDOWS\system32\DRIVERS\P0630Vid.sys [2005-06-06 91841] R3 usbstor;Pilote de stockage de masse USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496] S2 aswFsBlk;aswFsBlk;C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [ ] S2 TICalc;TICalc;C:\WINDOWS\system32\drivers\TICalc.sys [1999-08-30 9152] S3 PortlUSB;PortlUSB;C:\WINDOWS\system32\DRIVERS\YH-820.sys [2004-09-09 7552] S3 st324kj;st324kj;C:\WINDOWS\system32\DRIVERS\st324kj.sys [2002-11-13 88896] S3 usbscan;Pilote de scanneur USB;C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104] . Contenu du dossier 'Tâches planifiées' 2008-04-03 C:\WINDOWS\Tasks\Services Internet.job - C:\Program Files\Hewlett-Packard\SDP\HPSdpApp.exe [2005-09-08 18:23] 2008-11-01 C:\WINDOWS\Tasks\Vérifier les mises à jour de Windows Live Toolbar.job - C:\Program Files\Windows Live Toolbar\MSNTBUP.EXE [2006-09-27 16:39] . - - - - ORPHELINS SUPPRIMES - - - - HKCU-Run-swg - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe HKCU-Run-Walser - (no file) Notify-dimsntfy - (no file) . ------- Examen supplémentaire ------- . FireFox -: Profile - C:\Documents and Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\e1rtds8l.default\ FireFox -: prefs.js - SEARCH.DEFAULTURL - hxxp://fr.search.yahoo.com/search?fr=ffsp1&p= FireFox -: prefs.js - STARTUP.HOMEPAGE - hxxp://lo.st . ************************************************************************** catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-11-01 13:06:54 Windows 5.1.2600 Service Pack 2 NTFS Recherche de processus cachés ... Recherche d'éléments en démarrage automatique cachés ... Recherche de fichiers cachés ... Scan terminé avec succès Fichiers cachés: 0 ************************************************************************** . ------------------------ Autres processus actifs ------------------------ . C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\ehome\mcrdsvc.exe C:\Program Files\Intel\IntelDH\Intel® Quick Resume Technology Drivers\ELService.exe C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe . ************************************************************************** . Heure de fin: 2008-11-01 13:15:27 - La machine a redémarré ComboFix-quarantined-files.txt 2008-11-01 12:15:24 Avant-CF: 143,239,700,480 octets libres Après-CF: 145,518,665,728 octets libres 477 --- E O F --- 2008-10-24 20:05:44