Donc j'ai fait exactement comme tu m'as dis en suivant la procédure donnée et voici mon scan ComboFix:
ComboFix 08-09-01.05 - ADRIEN 2008-09-03 19:58:38.3 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.650 [GMT 2:00]
Endroit: C:Documents and SettingsADRIENBureauComboFi.exe
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
C:InfoSat.txt
.
((((((((((((((((((((((((((((( Fichiers créés 2008-08-03 to 2008-09-03 ))))))))))))))))))))))))))))))))))))
.
2008-09-03 19:53 . 2008-09-03 19:53 <REP> d-------- C:ComboF
2008-09-03 19:41 . 2008-09-03 19:46 <REP> d-------- C:Combo
2008-09-03 00:00 . 2008-09-03 00:00 6,057 --a------ C:F-Secure Online Scanner 3_3_1 - Scanning Report - Wednesday, September 03, 2008 000006.htm
2008-09-02 00:47 . 2008-09-03 00:14 <REP> d-a------ C:Documents and SettingsAll UsersApplication DataTEMP
2008-09-02 00:47 . 2008-09-02 00:47 <REP> d-------- C:Documents and SettingsADRIENApplication DataPC Tools
2008-09-02 00:47 . 2008-08-25 11:36 81,288 --a------ C:WINDOWSsystem32driversiksyssec.sys
2008-09-02 00:47 . 2008-08-25 11:36 66,952 --a------ C:WINDOWSsystem32driversiksysflt.sys
2008-09-02 00:47 . 2008-08-25 11:36 40,840 --a------ C:WINDOWSsystem32driversikfilesec.sys
2008-09-02 00:47 . 2008-06-02 15:19 29,576 --a------ C:WINDOWSsystem32driverskcom.sys
2008-09-01 19:31 . 2004-08-20 01:11 4,190,352 --a--c--- C:WINDOWSsystem32dllcacheluna.mst
2008-08-30 16:50 . 2008-09-03 17:41 <REP> d-------- C:HijackThis
2008-08-30 16:46 . 2008-09-03 19:48 250 --a------ C:WINDOWSgmer.ini
2008-08-30 16:31 . 2008-08-30 16:31 <REP> d-------- C:Documents and SettingsAll UsersApplication DataGrisoft
2008-08-30 16:31 . 2008-08-30 16:31 <REP> d-------- C:Documents and SettingsADRIENApplication DataGrisoft
2008-08-30 16:31 . 2007-05-30 14:10 10,872 --a------ C:WINDOWSsystem32driversAvgAsCln.sys
2008-08-30 16:25 . 2008-08-30 16:25 <REP> d-------- C:Program FilesLSPFix
2008-08-30 15:13 . 2008-04-21 22:45 <REP> d--h----- C:Documents and SettingsAdministrateurVoisinage réseau
2008-08-30 15:13 . 2008-04-21 22:45 <REP> d--h----- C:Documents and SettingsAdministrateurVoisinage d'impression
2008-08-30 15:13 . 2008-04-21 22:04 <REP> d--h----- C:Documents and SettingsAdministrateurModèles
2008-08-30 15:13 . 2008-04-21 22:45 <REP> d-------- C:Documents and SettingsAdministrateurMes documents
2008-08-30 15:13 . 2008-04-21 22:45 <REP> dr------- C:Documents and SettingsAdministrateurMenu Démarrer
2008-08-30 15:13 . 2008-08-30 15:26 <REP> d-------- C:Documents and SettingsAdministrateurFavoris
2008-08-30 15:13 . 2008-04-21 22:45 <REP> d-------- C:Documents and SettingsAdministrateurBureau
2008-08-30 15:13 . 2008-08-30 15:20 <REP> d-------- C:Documents and SettingsAdministrateur
2008-08-29 21:41 . 2008-08-29 21:41 <REP> d-------- C:Documents and SettingsAll UsersApplication DataKaspersky Lab Setup Files
2008-08-29 20:57 . 2008-08-29 20:57 578,048 --a--c--- C:WINDOWSsystem32dllcacheuser32.dll
2008-08-29 20:55 . 2008-08-29 20:55 <REP> d-------- C:WINDOWSERUNT
2008-08-28 19:58 . 2008-08-28 19:58 <REP> d-------- C:Program FilesFichiers communsWise Installation Wizard
2008-08-28 18:48 . 2008-08-28 18:48 98,833 --------- C:WINDOWSsystem32AS-E5N70T30NDG6.dll
2008-08-25 18:24 . 2008-08-25 18:27 <REP> d-------- C:Program FilesMP3Gain
2008-08-19 19:43 . 2008-08-19 19:43 <REP> d-------- C:Program FilesFichiers communsDirectX
2008-08-19 19:41 . 2008-08-19 19:41 107,888 --a------ C:WINDOWSsystem32CmdLineExt.dll
2008-08-19 00:09 . 2008-08-19 00:09 244 --ah----- C:sqmnoopt09.sqm
2008-08-19 00:09 . 2008-08-19 00:09 232 --ah----- C:sqmdata09.sqm
2008-08-18 20:55 . 2008-08-18 20:55 244 --ah----- C:sqmnoopt08.sqm
2008-08-18 20:55 . 2008-08-18 20:55 232 --ah----- C:sqmdata08.sqm
2008-08-16 19:23 . 2008-08-16 19:23 244 --ah----- C:sqmnoopt07.sqm
2008-08-16 19:23 . 2008-08-16 19:23 232 --ah----- C:sqmdata07.sqm
2008-08-16 17:20 . 2007-03-12 16:42 3,495,784 --a------ C:WINDOWSsystem32d3dx9_33.dll
2008-08-16 17:20 . 2007-03-12 16:42 1,123,696 --a------ C:WINDOWSsystem32D3DCompiler_33.dll
2008-08-16 17:20 . 2007-03-15 16:57 443,752 --a------ C:WINDOWSsystem32d3dx10_33.dll
2008-08-16 17:20 . 2007-04-04 18:55 261,480 --a------ C:WINDOWSsystem32xactengine2_7.dll
2008-08-16 17:05 . 2007-01-24 15:27 255,848 --a------ C:WINDOWSsystem32xactengine2_6.dll
2008-08-16 16:50 . 2006-11-29 13:06 3,426,072 --a------ C:WINDOWSsystem32d3dx9_32.dll
2008-08-16 16:50 . 2006-12-08 12:02 251,672 --a------ C:WINDOWSsystem32xactengine2_5.dll
2008-08-16 16:35 . 2006-09-28 16:05 2,414,360 --a------ C:WINDOWSsystem32d3dx9_31.dll
2008-08-16 16:35 . 2006-09-28 16:05 237,848 --a------ C:WINDOWSsystem32xactengine2_4.dll
2008-08-16 16:35 . 2007-03-05 12:42 15,128 --a------ C:WINDOWSsystem32x3daudio1_1.dll
2008-08-16 16:20 . 2006-07-28 09:30 236,824 --a------ C:WINDOWSsystem32xactengine2_3.dll
2008-08-16 16:20 . 2006-07-28 09:30 62,744 --a------ C:WINDOWSsystem32xinput1_2.dll
2008-08-16 15:34 . 2005-05-26 15:34 2,297,552 --a------ C:WINDOWSsystem32d3dx9_26.dll
2008-08-16 12:17 . 2008-08-16 12:19 <REP> d-------- C:Program FilesAudacity
2008-08-13 19:29 . 2008-08-15 20:16 <REP> d-------- C:Program FilesDAEMON Tools Lite
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-09-03 18:00 699,680 --sha-w C:WINDOWSsystem32driversfidbox2.dat
2008-09-03 18:00 29,098,528 --sha-w C:WINDOWSsystem32driversfidbox.dat
2008-09-02 22:14 75,200 --sha-w C:WINDOWSsystem32driversfidbox2.idx
2008-09-02 22:14 399,056 --sha-w C:WINDOWSsystem32driversfidbox.idx
2008-09-01 22:47 --------- d-----w C:Program FilesLogiciels sécurité internet
2008-09-01 16:56 --------- d-----w C:Documents and SettingsADRIENApplication DatauTorrent
2008-08-31 17:14 93,827,885 ----a-w C:Program FilesAVP.6.411_08.31_19.14_61c.SRV.dmp
2008-08-31 17:13 --------- d-----w C:Program FilesKaspersky
2008-08-30 19:08 --------- d-----w C:Documents and SettingsAll UsersApplication DataSpybot - Search & Destroy
2008-08-28 17:57 --------- d-----w C:Documents and SettingsAll UsersApplication DataLavasoft
2008-08-25 16:35 --------- d-----w C:Documents and SettingsAll UsersApplication DataWinZip
2008-08-16 13:21 --------- d--h--w C:Program FilesInstallShield Installation Information
2008-07-23 17:41 --------- d-----w C:Program FilesGoogle
2008-07-22 20:03 --------- d-----w C:Program FilesFichiers communsAdobe
2008-07-22 19:51 --------- d-----w C:Documents and SettingsADRIENApplication DataAdobeUM
2008-07-15 16:38 --------- d-----w C:Program FilesLogiciels de Video
2004-05-26 12:17 724,992 ----a-w C:Program Files
edeye.exe
.
((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
[HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionRun]
"DAEMON Tools Lite"="C:Program FilesDAEMON Tools Litedaemon.exe" [2008-07-24 490952]
"AVP"="C:Program FilesKasperskyavp.exe" [2006-11-08 155751]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun]
"PRONoMgr.exe"="C:Program FilesIntelNCSPROSetPRONoMgr.exe" [2003-03-11 86016]
"NeroFilterCheck"="C:WINDOWSsystem32NeroCheck.exe" [2001-07-09 155648]
"NvCplDaemon"="C:WINDOWSsystem32NvCpl.dll" [2007-12-05 8523776]
"NvMediaCenter"="C:WINDOWSsystem32NvMcTray.dll" [2007-12-05 81920]
"SunJavaUpdateSched"="C:Program FilesJavajre1.6.0_05injusched.exe" [2008-02-22 144784]
"HP Software Update"="C:Program FilesHPHP Software UpdateHPWuSchd2.exe" [2004-09-13 49152]
"nForce Tray Options"="sstray.exe" [2003-04-07 C:WINDOWSsystem32sstray.exe]
"nwiz"="nwiz.exe" [2007-12-05 C:WINDOWSsystem32
wiz.exe]
[HKEY_USERS.DEFAULTSoftwareMicrosoftWindowsCurrentVersionRun]
"CTFMON.EXE"="C:WINDOWSSystem32CTFMON.EXE" [2004-08-19 15360]
C:Documents and SettingsAll UsersMenu D,marrerProgrammesD,marrage
HP Digital Imaging Monitor.lnk - C:Program FilesHPDigital Imaginginhpqtra08.exe [2004-11-04 258048]
Lancement rapide d'Adobe Reader.lnk - C:Program FilesAdobeAcrobat 7.0Reader
eader_sl.exe [2008-04-23 29696]
Microsoft Office.lnk - C:Program FilesMicrosoft OfficeOffice10OSA.EXE [2001-02-13 83360]
[HKEY_LOCAL_MACHINEsoftwaremicrosoftwindows ntcurrentversionwinlogon
otifyAS-E5N70T30NDG6]
2008-08-28 18:48 98833 C:WINDOWSsystem32AS-E5N70T30NDG6.dll
[HKEY_LOCAL_MACHINEsoftwaremicrosoftwindows ntcurrentversiondrivers32]
"msacm.l3fhg"= mp3fhg.acm
"msacm.divxa32"= divxa32.acm
"VIDC.YV12"= yv12vfw.dll
[HKEY_LOCAL_MACHINEsoftwaremicrosoftsecurity centerMonitoringKasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
[HKLM~servicessharedaccessparametersfirewallpolicystandardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM~servicessharedaccessparametersfirewallpolicystandardprofileAuthorizedApplicationsList]
"%windir%\system32\sessmgr.exe"=
"C:\Program Files\Logiciels P2P\uTorrent\uTorrent.exe"=
"C:\Program Files\MSN Messenger\msnmsgr.exe"=
"C:\Program Files\MSN Messenger\livecall.exe"=
R0 iteraid;ITERAID_Service_Install;C:WINDOWSsystem32DRIVERSiteraid.sys [2003-02-20 21851]
R0 SI3112r;Silicon Image SiI 3112 SATARaid Controller;C:WINDOWSsystem32DRIVERSSI3112r.sys [2003-05-30 89610]
R3 usbstor;Pilote de stockage de masse USB;C:WINDOWSsystem32DRIVERSUSBSTOR.SYS [2004-08-03 26496]
R3 wdm_au8830;Pilote audio Aureal Vortex 8830 (WDM);C:WINDOWSsystem32driversadm8830.sys [2001-08-17 747392]
S3 DarkSpy;DarkSpy;C:WINDOWSsystem32DarkSpyKernel.sys [ ]
S3 usbscan;Pilote de scanneur USB;C:WINDOWSsystem32DRIVERSusbscan.sys [2004-08-03 15104]
*Newly Created Service* - CATCHME
.
.
------- Supplementary Scan -------
.
R0 -: HKCU-Main,Start Page =
hxxp://www.google.com/
O8 -: E&xporter vers Microsoft Excel - C:PROGRA~1MICROS~2Office10EXCEL.EXE/3000
O16 -: Microsoft XML Parser for Java -
file://C:WINDOWSJavaclassesxmldso.cab
C:WINDOWSDownloaded Program FilesMicrosoft XML Parser for Java.osd
O16 -: {1E54D648-B804-468d-BC78-4AFFED8E262E} -
hxxp://www.srtest.com/srl_bin/sysreqlab3.cab
C:WINDOWSDownloaded Program FilesSysReqLab3.osd
C:WINDOWSDownloaded Program Filessysreqlab3.dll
O16 -: {BA162249-F2C5-4851-8ADC-FC58CB424243} -
hxxp://copainsdavant.linternaute.com/ht ... oader5.cab
C:WINDOWSDownloaded Program FilesImageUploader5.inf
C:WINDOWSsystem32unicows.dll
C:WINDOWSDownloaded Program FilesImageUploader5.ocx
.
**************************************************************************
catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.net
Rootkit scan 2008-09-03 20:00:15
Windows 5.1.2600 Service Pack 2 NTFS
Balayage processus cachés ...
Balayage caché autostart entries ...
Balayage des fichiers cachés ...
Scan terminé avec succès
Les fichiers cachés: 0
**************************************************************************
.
--------------------- DLLs a chargé sous des processus courants ---------------------
PROCESS: C:WINDOWSsystem32winlogon.exe
-> C:WINDOWSsystem32AS-E5N70T30NDG6.dll
.
Temps d'accomplissement: 2008-09-03 20:01:00
ComboFix-quarantined-files.txt 2008-09-03 18:00:57
ComboFix2.txt 2008-09-01 22:41:28
Pre-Run: 14,788,128,768 octets libres
Post-Run: 14,787,022,848 octets libres
165
J'en ai profité pour faire un scan avec Elibagle mais il ne m'a rien trouvé.