rapport combofix

Bonjour,

je dois poster un rapport combofix après un rapport hijackthis qui n'a rien donné, voici le rapport :

ComboFix 08-02-19.2 - isabelle 2008-02-19 11:09:38.1 - NTFSx86
Microsoft® Windows Vista™ Édition Familiale Premium 6.0.6000.0.1252.1.1036.18.876 [GMT 1:00]
Endroit: C:\Users\isabelle\Desktop\ComboFix.exe
* Création d'un nouveau point de restauration
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InternetGameBox
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InternetGameBox\Conditions générales.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InternetGameBox\Confidentialité.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InternetGameBox\InternetGameBox.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InternetGameBox\Website.lnk
C:\Users\isabelle\AppData\Local\tiogvnm.dat
c:\users\isabelle\appdata\local\tiogvnm.exe
c:\Users\isabelle\AppData\Local\tiogvnm_nav.dat
C:\Users\isabelle\AppData\Local\tiogvnm_navps.dat

.
((((((((((((((((((((((((((((( Fichiers créés 2008-01-19 to 2008-02-19 ))))))))))))))))))))))))))))))))))))
.

2008-02-19 11:00 . 2008-02-19 11:04 <REP> d-------- C:\Program Files\Navilog1
2008-02-13 10:59 . 2008-02-13 10:59 194,560 --a------ C:\Windows\System32\WebClnt.dll
2008-02-13 10:59 . 2008-02-13 10:59 110,080 --a------ C:\Windows\System32\drivers\mrxdav.sys
2008-02-13 10:53 . 2008-02-13 10:53 806,400 --a------ C:\Windows\System32\drivers\tcpip.sys
2008-02-13 10:53 . 2008-02-13 10:53 217,144 --a------ C:\Windows\System32\drivers\netio.sys
2008-02-13 10:53 . 2008-02-13 10:53 167,424 --a------ C:\Windows\System32\tcpipcfg.dll
2008-02-13 10:53 . 2008-02-13 10:53 24,064 --a------ C:\Windows\System32\netcfg.exe
2008-02-13 10:53 . 2008-02-13 10:53 22,016 --a------ C:\Windows\System32\netiougc.exe
2008-02-13 10:49 . 2008-02-13 10:49 56,320 --a------ C:\Windows\System32\iesetup.dll
2008-02-13 10:49 . 2008-02-13 10:49 26,624 --a------ C:\Windows\System32\ieUnatt.exe
2008-02-12 09:57 . 2008-02-12 10:00 <REP> d-------- C:\Program Files\Common Files\Adobe
2008-02-03 21:06 . 2008-02-05 10:09 38 --a------ C:\Windows\avisplitter.INI
2008-02-02 22:08 . 2008-02-02 22:08 <REP> d-------- C:\Users\isabelle\AppData\Roaming\Media Player Classic
2008-02-02 22:06 . 2008-02-02 22:06 <REP> d-------- C:\Program Files\K-Lite Codec Pack
2008-02-02 22:06 . 2007-07-25 14:24 1,559,040 --a------ C:\Windows\System32\xvidcore.dll
2008-02-02 22:06 . 2006-09-24 16:11 389,120 --a------ C:\Windows\System32\lameACM.acm
2008-02-02 22:06 . 2007-03-10 12:51 282,624 --a------ C:\Windows\System32\xvidvfw.dll
2008-02-02 22:06 . 2004-01-25 17:18 217,088 --a------ C:\Windows\System32\yv12vfw.dll
2008-02-02 22:06 . 2007-09-04 17:56 164,352 --a------ C:\Windows\System32\unrar.dll
2008-02-02 22:06 . 2007-09-21 01:52 118,784 --a------ C:\Windows\System32\ac3acm.acm
2008-02-02 22:06 . 2007-12-24 13:49 7,680 --a------ C:\Windows\System32\ff_vfw.dll
2008-02-02 22:06 . 2007-07-10 17:10 547 --a------ C:\Windows\System32\ff_vfw.dll.manifest
2008-02-02 22:06 . 2007-10-03 16:03 414 --a------ C:\Windows\System32\lame_acm.xml
2008-02-02 21:17 . 2008-02-13 20:34 <REP> d-------- C:\Program Files\PowerArchiver

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-02-19 10:14 --------- d-----w C:\Users\isabelle\AppData\Roaming\Skype
2008-02-19 08:31 --------- d-----w C:\ProgramData\Google Updater
2008-02-19 08:26 --------- d-----w C:\Users\isabelle\AppData\Roaming\skypePM
2008-02-18 19:28 27,620 ----a-w C:\Users\isabelle\AppData\Roaming\nvModes.dat
2008-02-13 12:55 --------- d-----w C:\Program Files\Jewel Quest
2008-02-13 09:50 824,832 ----a-w C:\Windows\System32\wininet.dll
2008-02-13 09:50 52,736 ----a-w C:\Windows\AppPatch\iebrshim.dll
2008-02-02 20:59 --------- d-----w C:\Users\isabelle\AppData\Roaming\DivX
2008-02-02 20:26 --------- d-----w C:\Program Files\Bejeweled 2 Deluxe
2008-02-02 20:25 720,896 ----a-w C:\Windows\iun6002ev.exe
2008-02-01 20:01 --------- d-----w C:\ProgramData\GamesBar
2008-02-01 20:01 --------- d-----w C:\Program Files\Acer GameZone
2008-01-28 17:20 916 ----a-w C:\Users\isabelle\AppData\Roaming\wklnhst.dat
2008-01-27 15:39 --------- d-----w C:\Users\isabelle\AppData\Roaming\Template
2008-01-25 19:27 --------- d-----w C:\Program Files\Spybot - Search & Destroy
2008-01-19 15:46 --------- d-----w C:\Program Files\Secret Maryo Chronicles
2008-01-15 14:54 --------- d-----w C:\Program Files\Star Defender 2
2008-01-15 14:42 --------- d-----w C:\Program Files\EPSON
2008-01-15 14:34 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-01-15 14:31 --------- d-----w C:\Program Files\PopCap Games
2008-01-15 14:20 --------- d-----w C:\Program Files\GameHouse
2008-01-15 10:03 32 ----a-w C:\Users\All Users\ezsid.dat
2008-01-15 10:03 32 ----a-w C:\ProgramData\ezsid.dat
2008-01-15 09:53 --------- d-----w C:\ProgramData\Skype
2008-01-15 09:53 --------- d-----w C:\Program Files\Skype
2008-01-15 09:53 --------- d-----w C:\Program Files\Common Files\Skype
2008-01-14 18:32 --------- d-----w C:\Program Files\Trymedia
2008-01-12 16:12 --------- d-----w C:\ProgramData\CyberLink
2008-01-09 10:48 --------- d-----w C:\Program Files\Windows Sidebar
2008-01-09 10:44 11,776 ----a-w C:\Windows\System32\sbunattend.exe
2008-01-07 14:55 --------- d-----w C:\ProgramData\Spybot - Search & Destroy
2008-01-01 19:32 --------- d-----w C:\Program Files\Gamenext
2007-12-20 21:28 --------- d-----w C:\Users\isabelle\AppData\Roaming\123 Free Solitaire
2007-12-20 20:35 --------- d-----w C:\Program Files\Mahjong Garden Deluxe
2007-12-19 11:58 --------- d-----w C:\Users\isabelle\AppData\Roaming\EPSON
2007-12-19 11:38 --------- d-----w C:\Program Files\Common Files\InstallShield
2007-12-19 11:33 --------- d-----w C:\ProgramData\UDL
2007-12-15 16:34 213 ----a-w C:\Delapp.bat
2007-12-13 14:33 1,327,104 ----a-w C:\Windows\System32\quartz.dll
2007-12-13 14:32 9,728 ----a-w C:\Windows\System32\LAPRXY.DLL
2007-12-13 14:32 223,232 ----a-w C:\Windows\System32\WMASF.DLL
2007-12-13 14:28 3,504,824 ----a-w C:\Windows\System32\ntkrnlpa.exe
2007-12-13 14:28 3,470,520 ----a-w C:\Windows\System32\ntoskrnl.exe
2007-11-11 13:12 0 ----a-w C:\Users\isabelle\SCHDLR.DAT
2007-11-07 21:58 47,929,131 ----a-w C:\Windows\Internet Logs\vsmon_on_demand_2007_11_07_22_02_56_full.dmp.zip
2007-11-07 21:55 174 --sha-w C:\Program Files\desktop.ini
2007-11-07 20:22 226,918,022 ----a-w C:\Windows\Internet Logs\vsmon_on_demand_2007_11_07_20_56_58_full.dmp.zip
2007-11-07 20:20 226,929,574 ----a-w C:\Windows\Internet Logs\vsmon_on_demand_2007_11_07_20_50_57_full.dmp.zip
.

((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe" [2008-01-09 11:44 1232896]
"Acer Tour Reminder"="" []
"ehTray.exe"="C:\Windows\ehome\ehTray.exe" [2006-11-02 13:35 125440]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-11-07 20:32 68856]
"MsnMsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.exe" [2007-10-18 11:34 5724184]
"IncrediMail"="C:\Program Files\IncrediMail\bin\IncMail.exe" [2007-10-09 12:02 208946]
"RoboForm"="C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe" [2007-11-07 23:04 160568]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe" [2007-09-20 15:35 202024]
"WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" [2006-11-02 13:36 201728]
"SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [2007-08-31 16:46 1460560]
"Skype"="C:\Program Files\Skype\Phone\Skype.exe" [2007-12-07 15:08 21686568]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe" [2007-08-02 15:40 1006264]
"RtHDVCpl"="RtHDVCpl.exe" [2007-05-18 08:24 4468736 C:\Windows\RtHDVCpl.exe]
"eDataSecurity Loader"="C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe" [2007-04-25 16:33 457216]
"Acer Tour"="" []
"NvSvc"="C:\Windows\system32\nvsvc.dll" [2007-06-06 09:07 86016]
"NvCplDaemon"="C:\Windows\system32\NvCpl.dll" [2007-06-06 09:07 8433664]
"NvMediaCenter"="C:\Windows\system32\NvMcTray.dll" [2007-06-06 09:07 81920]
"LManager"="C:\PROGRA~1\LAUNCH~1\LManager.exe" [2007-06-27 10:15 752136]
"PlayMovie"="C:\Program Files\Acer Arcade Deluxe\Play Movie\PMVService.exe" [2007-05-03 10:16 206952]
"Apoint"="C:\Program Files\Apoint2K\Apoint.exe" [2007-06-06 09:06 159744]
"eRecoveryService"="" []
"Acer Tour Reminder"="C:\Acer\AcerTour\Reminder.exe" [2007-05-22 14:49 151552]
"WarReg_PopUp"="C:\Acer\WR_PopUp\WarReg_PopUp.exe" [2006-11-05 21:48 57344]
"eAudio"="C:\Acer\Empowering Technology\eAudio\eAudio.exe" [2007-06-11 14:54 1286144]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 01:11 132496]
"NeroFilterCheck"="C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe" [2007-03-01 15:57 153136]
"NBKeyScan"="C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2007-09-20 09:51 1836328]
"F-Secure Manager"="C:\Program Files\Orange\AntivirusFirewall\Common\FSM32.exe" [2007-06-13 14:58 176177]
"F-Secure TNB"="C:\Program Files\Orange\AntivirusFirewall\FSGUI\TNBUtil.exe" [2007-06-13 14:57 733184]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 22:16 39792]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\
Empowering Technology Launcher.lnk - C:\Acer\Empowering Technology\eAPLauncher.exe [2006-12-10 13:49:08 535336]
Outil de mise … jour Google.lnk - C:\Program Files\Google\Google Updater\GoogleUpdater.exe [2007-11-07 20:31:51 126136]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLUA"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=eNetHook.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vetdsiyhxf]
c:\users\isabelle\appdata\local\vetdsiyhxf.exe

R0 PSDFilter;PSDFilter;C:\Windows\system32\DRIVERS\psdfilter.sys [2007-04-25 16:34]
R0 PSDNServ;PSDNSERVER;C:\Windows\system32\drivers\PSDNServ.sys [2007-04-25 16:34]
R0 psdvdisk;psdvdisk;C:\Windows\system32\drivers\psdvdisk.sys [2007-04-25 16:34]
R1 DritekPortIO;Dritek General Port I/O;C:\PROGRA~1\LAUNCH~1\DPortIO.sys [2006-11-02 14:27]
R1 F-Secure HIPS;F-Secure HIPS;C:\Program Files\Orange\AntivirusFirewall\HIPS\fshs.sys [2007-06-13 14:58]
R1 FSES;F-Secure Email Scanning Driver;C:\Windows\system32\drivers\fses.sys [2007-06-13 14:58]
R1 FSFW;F-Secure Firewall Driver;C:\Windows\system32\drivers\fsdfw.sys [2007-06-13 14:58]
R1 fsvista;F-Secure Vista Support Driver;C:\Program Files\Orange\AntivirusFirewall\Anti-Virus\minifilter\fsvista.sys [2007-06-13 14:58]
R2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796};{49DE1C67-83F8-4102-99E0-C16DCC7EEC796};C:\Program Files\Acer Arcade Deluxe\Play Movie\000.fcl [2006-11-02 15:51]
R2 ALaunchService;ALaunch Service;C:\Acer\ALaunch\ALaunchSvc.exe [2007-01-26 14:24]
R2 eDataSecurity Service;eDSService.exe;"C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe" [2007-04-25 16:34]
R2 eNet Service;eNet Service;C:\Acer\Empowering Technology\eNet\eNet Service.exe [2007-05-22 15:00]
R2 eSettingsService;eSettings Service;C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe [2007-05-10 14:05]
R2 int15;int15;C:\Acer\Empowering Technology\eRecovery\int15.sys [2006-12-07 17:12]
R2 MobilityService;MobilityService;C:\Acer\Mobility Center\MobilityService.exe [2006-11-24 12:57]
R2 SBSDWSCService;SBSD Security Center Service;C:\Program Files\Spybot []
R2 WMIService;ePower Service;C:\Acer\Empowering Technology\ePower\ePowerSvc.exe [2007-05-16 22:15]
R2 XAudio;XAudio;C:\Windows\system32\DRIVERS\xaudio.sys [2007-05-17 01:46]
R3 athr;Atheros Extensible Wireless LAN device driver;C:\Windows\system32\DRIVERS\athr.sys [2007-05-30 08:40]
R3 Cam5607;Acer Crystal Eye webcam;C:\Windows\system32\Drivers\BisonC07.sys [2007-05-28 06:57]
R3 enecir;ENE CIR Receiver;C:\Windows\system32\DRIVERS\enecir.sys [2007-05-16 13:47]
R3 F-Secure Gatekeeper;F-Secure Gatekeeper;C:\Program Files\Orange\AntivirusFirewall\Anti-Virus\minifilter\fsgk.sys [2007-06-13 14:58]
R3 nvsmu;nvsmu;C:\Windows\system32\DRIVERS\nvsmu.sys [2007-05-17 02:05]
S3 WSVD;WSVD;C:\Windows\system32\drivers\WSVD.sys [2006-09-19 15:47]
S4 F-Secure Filter;F-Secure File System Filter;C:\Program Files\Orange\AntivirusFirewall\Anti-Virus\Win2K\FSfilter.sys [2007-06-13 14:58]
S4 F-Secure Recognizer;F-Secure File System Recognizer;C:\Program Files\Orange\AntivirusFirewall\Anti-Virus\Win2K\FSrec.sys [2007-06-13 14:58]

.
**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-02-19 11:14:41
Windows 6.0.6000 NTFS

Balayage processus cachés ...

Balayage caché autostart entries ...

Balayage des fichiers cachés ...

Scan terminé avec succès
Les fichiers cachés: 0

**************************************************************************
.
Temps d'accomplissement: 2008-02-19 11:15:40
ComboFix-quarantined-files.txt 2008-02-19 10:15:37
.
2008-02-15 06:58:37 --- E O F ---


Cordialement,

Ce sujet a été fermé par Angeldark