Rapport combofix

Bonjour
Quelqu'un peut il analyser mon rapport combofix qui suit ?
Merci beaucoup

ComboFix 09-06-12.02 - Les Gregs 13/06/2009 5:56.1 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.3.1252.33.1036.18.767.450 [GMT 2:00]
Lancé depuis: e:\documents and settings\Les Gregs\Bureau\Sécurité\ComboFix.exe
AV: Kaspersky Internet Security *On-access scanning disabled* (Updated) {2C4D4BC6-0793-4956-A9F9-E252435469C0}
FW: Kaspersky Internet Security *disabled* {2C4D4BC6-0793-4956-A9F9-E252435469C0}
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

e:\documents and settings\Les Gregs\Application Data\inst.exe
e:\windows\system\msvbvm60.dll
e:\windows\system32\eddcbdeba7_z.dll
e:\windows\system32\muzapp.exe

.
((((((((((((((((((((((((((((( Fichiers créés du 2009-05-13 au 2009-06-13 ))))))))))))))))))))))))))))))))))))
.

2009-06-11 18:43 . 2009-04-30 21:16 12800 -c----w- e:\windows\system32\dllcache\xpshims.dll
2009-06-11 18:43 . 2009-04-30 21:16 246272 -c----w- e:\windows\system32\dllcache\ieproxy.dll
2009-06-06 10:20 . 2009-06-06 10:22 -------- d-----w- e:\program files\jv16 PowerTools 2008
2009-06-06 05:26 . 2009-06-06 05:26 -------- d-----w- e:\program files\Misc. Support Library (Spybot - Search & Destroy)
2009-06-04 05:28 . 2009-06-04 05:28 -------- d-----w- e:\program files\iPod
2009-06-04 05:15 . 2009-06-04 05:15 75048 ----a-w- e:\documents and settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 8.2.0.23\SetupAdmin.exe
2009-06-04 04:03 . 2009-06-07 07:04 84526 ----a-w- e:\windows\system32\perfc040.dat
2009-06-04 04:03 . 2009-06-07 07:04 510324 ----a-w- e:\windows\system32\perfh040.dat
2009-05-30 11:31 . 2009-05-30 11:31 -------- d-----w- e:\program files\FreshDevices
2009-05-29 19:07 . 2009-06-13 03:44 -------- d-----w- e:\program files\Mozilla Firefox 3.5 Beta 4
2009-05-29 17:17 . 2009-06-06 08:24 -------- d-----w- e:\program files\Lavasoft
2009-05-24 19:51 . 2009-05-24 19:51 -------- d-----w- e:\documents and settings\Les Gregs\Local Settings\Application Data\Xenocode
2009-05-24 12:15 . 2009-05-24 12:15 -------- d-----w- e:\documents and settings\Default User\Application Data\Avanquest
2009-05-24 06:35 . 2009-05-24 06:35 -------- d-sh--r- E:\_Backup.RC
2009-05-24 06:33 . 2009-05-24 12:28 -------- d-----w- e:\program files\Fichiers communs\AntiVirus
2009-05-16 11:55 . 2009-05-16 11:55 -------- d-----w- e:\program files\Realtek AC97
2009-05-16 09:02 . 2009-05-16 09:02 -------- d-----w- e:\documents and settings\Les Gregs\Application Data\Logitech
2009-05-16 09:02 . 2009-05-16 09:02 -------- d-----w- e:\documents and settings\All Users\Application Data\LogiShrd
2009-05-16 09:01 . 2008-12-18 21:43 10384 ----a-w- e:\windows\system32\drivers\LBeepKE.sys
2009-05-16 08:59 . 2009-02-18 22:26 301656 ----a-w- e:\windows\system32\BtCoreIf.dll
2009-05-16 08:59 . 2009-02-18 22:27 84496 ----a-w- e:\windows\system32\KemXML.dll
2009-05-16 08:59 . 2009-02-18 22:27 117264 ----a-w- e:\windows\system32\KemWnd.dll
2009-05-16 08:59 . 2009-02-18 22:27 145936 ----a-w- e:\windows\system32\KemUtil.dll
2009-05-16 08:59 . 2009-02-18 22:27 170512 ----a-w- e:\windows\system32\kemutb.dll
2009-05-16 08:58 . 2009-05-16 08:58 -------- d-----w- e:\documents and settings\All Users\Application Data\Logitech
2009-05-16 08:58 . 2009-05-16 09:00 -------- d-----w- e:\program files\Fichiers communs\Logishrd
2009-05-15 21:57 . 2009-05-15 22:00 -------- d-----w- e:\program files\Anti Keylogger Elite

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-06-13 04:03 . 2007-02-22 10:58 -------- d-----w- e:\documents and settings\All Users\Application Data\Kaspersky Lab
2009-06-13 04:00 . 2007-02-22 10:58 99735584 --sha-w- e:\windows\system32\drivers\fidbox.dat
2009-06-13 04:00 . 2007-02-22 10:58 4820768 --sha-w- e:\windows\system32\drivers\fidbox2.dat
2009-06-13 04:00 . 2007-02-22 10:58 455108 --sha-w- e:\windows\system32\drivers\fidbox2.idx
2009-06-13 04:00 . 2007-02-22 10:58 1340996 --sha-w- e:\windows\system32\drivers\fidbox.idx
2009-06-12 21:02 . 2007-02-08 15:08 -------- d-----w- e:\program files\Mozilla Thunderbird
2009-06-12 20:30 . 2007-02-07 08:46 -------- d-----w- e:\program files\PowerArchiver
2009-06-11 18:54 . 2008-12-19 23:53 -------- d-----w- e:\documents and settings\All Users\Application Data\Microsoft Help
2009-06-08 16:10 . 2008-12-23 11:02 -------- d-----w- e:\program files\Smart Projects
2009-06-07 13:02 . 2007-08-18 09:58 -------- d-----w- e:\program files\CCleaner
2009-06-06 12:41 . 2007-02-25 10:01 -------- d-----w- e:\documents and settings\Les Gregs\Application Data\Vso
2009-06-06 10:17 . 2007-02-06 16:55 -------- d--h--w- e:\program files\InstallShield Installation Information
2009-06-06 10:17 . 2007-02-06 22:01 -------- d-----w- e:\documents and settings\All Users\Application Data\Ulead Systems
2009-06-05 18:38 . 2007-09-08 17:53 -------- d-----w- e:\documents and settings\Les Gregs\Application Data\Apple Computer
2009-06-04 19:41 . 2008-09-23 18:07 5632 ----a-w- e:\windows\system32\drivers\StarOpen.sys
2009-06-04 05:29 . 2008-12-29 14:36 -------- d-----w- e:\program files\iTunes
2009-06-04 05:28 . 2008-10-19 10:56 -------- d-----w- e:\program files\Fichiers communs\Apple
2009-06-04 04:34 . 2007-02-09 18:19 107752 ----a-w- e:\documents and settings\Les Gregs\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-06-03 17:25 . 2008-10-31 07:30 1 ----a-w- e:\documents and settings\Les Gregs\Application Data\OpenOffice.org\3\user\uno_packages\cache\stamp.sys
2009-05-30 11:28 . 2008-10-24 14:59 -------- d-----w- e:\documents and settings\Les Gregs\Application Data\FileZilla
2009-05-26 19:04 . 2009-03-21 13:10 -------- d-----w- e:\program files\Mozilla Firefox 3.1 Beta 3
2009-05-20 17:01 . 2008-01-06 06:23 105395 ----a-w- e:\windows\system32\drivers\klin.dat
2009-05-20 17:01 . 2008-01-06 06:23 94643 ----a-w- e:\windows\system32\drivers\klick.dat
2009-05-17 17:27 . 2007-02-06 17:33 -------- d-----w- e:\program files\WinTV
2009-05-16 09:01 . 2009-05-16 09:01 0 ---ha-w- e:\windows\system32\drivers\Msft_Kernel_LHidFilt_01005.Wdf
2009-05-16 09:01 . 2009-05-16 09:01 0 ---ha-w- e:\windows\system32\drivers\Msft_Kernel_LMouFilt_01005.Wdf
2009-05-16 09:01 . 2009-05-16 09:01 0 ---ha-w- e:\windows\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
2009-05-16 08:58 . 2007-02-06 17:25 -------- d-----w- e:\program files\Logitech
2009-05-13 05:04 . 2004-08-23 17:16 915456 ----a-w- e:\windows\system32\wininet.dll
2009-05-12 16:22 . 2009-05-12 16:21 -------- d-----w- e:\program files\Savvy TV
2009-05-08 19:43 . 2007-02-23 12:40 -------- d-----w- e:\documents and settings\Les Gregs\Application Data\Ulead Systems
2009-05-08 17:31 . 2009-05-08 17:31 -------- d-----w- e:\documents and settings\Les Gregs\Application Data\InstallShield
2009-05-08 08:47 . 2007-09-29 06:48 -------- d-----w- e:\documents and settings\All Users\Application Data\DVD Shrink
2009-05-07 15:33 . 2001-09-28 12:00 348672 ----a-w- e:\windows\system32\localspl.dll
2009-05-03 15:30 . 2008-12-25 09:02 1324 ----a-w- e:\windows\system32\d3d9caps.dat
2009-04-30 20:02 . 2009-04-30 20:02 663552 ----a-w- e:\windows\system32\nvcuvid.dll
2009-04-30 20:02 . 2009-04-30 20:02 1579630 ----a-w- e:\windows\system32\nvdata.bin
2009-04-30 20:02 . 2009-04-30 20:02 1314816 ----a-w- e:\windows\system32\nvcuvenc.dll
2009-04-30 20:02 . 2007-02-06 16:58 457248 ----a-w- e:\windows\system32\nvudisp.exe
2009-04-29 19:38 . 2008-12-20 00:01 -------- d-----w- e:\program files\Microsoft Works
2009-04-29 17:52 . 2007-09-27 20:06 47360 -c--a-w- e:\documents and settings\Les Gregs\Application Data\pcouffin.sys
2009-04-29 17:52 . 2007-09-27 20:06 47360 -c--a-w- e:\documents and settings\Les Gregs\Application Data\pcouffin.sys
2009-04-29 17:52 . 2007-09-27 20:06 47360 ----a-w- e:\windows\system32\drivers\pcouffin.sys
2009-04-29 17:52 . 2008-03-07 18:45 -------- d-----w- e:\program files\VSO
2009-04-28 17:14 . 2009-04-28 17:14 -------- d-----w- e:\program files\Xilisoft
2009-04-26 22:42 . 2007-02-06 16:54 457248 ----a-w- e:\windows\system32\NVUNINST.EXE
2009-04-24 12:13 . 2001-09-28 12:00 84526 ----a-w- e:\windows\system32\perfc00C.dat
2009-04-24 12:13 . 2001-09-28 12:00 510324 ----a-w- e:\windows\system32\perfh00C.dat
2009-04-24 08:14 . 2009-04-24 08:14 -------- d-----w- e:\documents and settings\Les Gregs\Application Data\LiteOn
2009-04-19 19:50 . 2001-09-28 12:00 1847296 ----a-w- e:\windows\system32\win32k.sys
2009-04-19 14:09 . 2009-04-19 14:09 -------- d-----w- e:\documents and settings\All Users\Application Data\Messenger Plus!
2009-04-19 12:37 . 2009-04-19 12:37 -------- d-----w- e:\program files\Messenger Plus! Live
2009-04-19 10:14 . 2009-04-19 10:14 -------- d-----w- e:\program files\Windows Live
2009-04-19 07:59 . 2009-04-19 07:54 -------- d-----w- e:\documents and settings\Les Gregs\Application Data\WIPE
2009-04-19 07:43 . 2009-04-19 07:42 -------- d-----w- e:\program files\splus
2009-04-18 21:53 . 2009-04-18 21:53 -------- d-----w- e:\program files\Microsoft Silverlight
2009-04-18 21:52 . 2009-04-18 21:52 -------- d-----w- e:\program files\Microsoft Sync Framework
2009-04-17 16:01 . 2009-03-21 11:45 -------- d-----w- e:\program files\Microsoft
2009-04-16 21:00 . 2009-04-16 21:00 206088 ----a-w- e:\documents and settings\All Users\Application Data\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav8exec\8.0.0.506\avp.exe
2009-04-16 21:00 . 2009-04-16 21:00 226832 ----a-w- e:\documents and settings\All Users\Application Data\Kaspersky Lab\AVP8\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav8exec\8.0.0.506\XP\klif.sys
2009-04-15 16:47 . 2009-04-15 16:25 -------- d-----w- e:\program files\OrangeHSS
2009-04-15 14:53 . 2007-02-07 00:20 585216 ----a-w- e:\windows\system32\rpcrt4.dll
2009-04-14 18:38 . 2009-03-27 22:24 -------- d-----w- e:\documents and settings\LocalService\Application Data\SACore
2009-04-04 13:03 . 2007-11-24 13:33 2560 ----a-w- e:\windows\_MSRSTRT.EXE
2009-03-28 08:28 . 2008-10-30 18:34 410984 ----a-w- e:\windows\system32\deploytk.dll
2009-03-28 08:27 . 2009-03-28 08:22 152576 ----a-w- e:\documents and settings\Les Gregs\Application Data\Sun\Java\jre1.6.0_13\lzma.dll
2009-03-24 18:47 . 2009-03-24 18:47 86576 ----a-w- e:\documents and settings\Les Gregs\Application Data\Microsoft\Services Windows Live\Raccourci Galerie de Photos Windows Live.exe
2009-03-24 18:47 . 2009-03-24 18:47 392728 ----a-w- e:\documents and settings\Les Gregs\Application Data\Microsoft\Services Windows Live\Services Windows Live.dll
2009-03-24 18:47 . 2009-03-24 18:47 132672 ----a-w- e:\documents and settings\Les Gregs\Application Data\Microsoft\Services Windows Live\Raccourci Windows Live Messenger.exe
2009-03-23 18:45 . 2007-12-14 23:14 8457 ----a-w- e:\windows\system32\SpoonUninstall-dBpoweramp DSP Effects.dat
2009-03-23 18:44 . 2009-03-23 18:44 13281 ----a-w- e:\windows\system32\SpoonUninstall-dBpoweramp Music Converter.dat
2009-03-23 18:44 . 2007-02-19 09:37 2433400 ----a-w- e:\windows\system32\SpoonUninstall.exe
2009-03-21 09:24 . 2009-03-21 09:24 152576 ----a-w- e:\documents and settings\Les Gregs\Application Data\Sun\Java\jre1.6.0_11\lzma.dll
2009-03-19 14:32 . 2009-03-19 14:32 23400 ----a-w- e:\documents and settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}\x86\x86\GEARAspiWDM.sys
2009-03-19 14:32 . 2008-10-19 11:07 23400 ----a-w- e:\windows\system32\drivers\GEARAspiWDM.sys
2009-03-15 08:34 . 2007-02-06 21:25 36864 ----a-w- e:\windows\gotouninstall.exe
2008-03-15 10:50 . 2008-03-15 10:50 23 --sha-w- e:\windows\system32\cdfedfdcc_z.dll
2009-01-31 07:17 . 2009-01-31 07:17 23 --sha-w- e:\windows\system32\edafdaa6_x.dll
2006-05-03 09:06 . 2007-08-29 16:11 163328 --sha-r- e:\windows\system32\flvDX.dll
2007-02-21 10:47 . 2007-08-29 16:11 31232 --sha-r- e:\windows\system32\msfDX.dll
.

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="e:\windows\system32\ctfmon.exe" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="e:\windows\system32\NvCpl.dll" [2008-09-17 13574144]
"NvMediaCenter"="e:\windows\system32\NvMcTray.dll" [2008-09-17 86016]
"LVCOMSX"="e:\windows\System32\LVCOMSX.EXE" [2005-07-19 221184]
"AVP"="e:\program files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe" [2009-04-16 206088]
"SoundMan"="SOUNDMAN.EXE" - e:\windows\soundman.exe [2007-04-16 577536]
"nwiz"="nwiz.exe" - e:\windows\system32\nwiz.exe [2008-09-17 1657376]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
2009-02-18 22:30 72208 ----a-w- e:\program files\Fichiers communs\Logishrd\Bluetooth\LBTWLgn.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
@=""

[HKLM\~\startupfolder\E:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Adobe Reader Synchronizer.lnk]
backup=e:\windows\pss\Adobe Reader Synchronizer.lnkCommon Startup

[HKLM\~\startupfolder\E:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Lancement rapide d'Adobe Reader.lnk]
backup=e:\windows\pss\Lancement rapide d'Adobe Reader.lnkCommon Startup

[HKLM\~\startupfolder\E:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Logitech Desktop Messenger.lnk]
backup=e:\windows\pss\Logitech Desktop Messenger.lnkCommon Startup

[HKLM\~\startupfolder\E:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Logitech SetPoint.lnk]
backup=e:\windows\pss\Logitech SetPoint.lnkCommon Startup

[HKLM\~\startupfolder\E:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Microsoft Office.lnk]
backup=e:\windows\pss\Microsoft Office.lnkCommon Startup

[HKLM\~\startupfolder\E:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^WinZip Quick Pick.lnk]
backup=e:\windows\pss\WinZip Quick Pick.lnkCommon Startup

[HKLM\~\startupfolder\E:^Documents and Settings^Les Gregs^Menu Démarrer^Programmes^Démarrage^OpenOffice.org 2.4.lnk]
backup=e:\windows\pss\OpenOffice.org 2.4.lnkStartup
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Ad-Watch
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CaISSDT
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eTrustPPAP
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\fssui
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InCD
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OrangePlayer
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Orb
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RegClean Expert Scheduler
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"SeaPort"=2 (0x2)
"RichVideo"=2 (0x2)

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"UpdatesDisableNotify"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"e:\\Program Files\\CyberLink\\PowerDVD\\PowerDVD.exe"=
"e:\\Program Files\\OrangeHSS\\Connectivity\\ConnectivityManager.exe"=
"e:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"e:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"e:\\Program Files\\iTunes\\iTunes.exe"=
"e:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=

R0 klbg;Kaspersky Lab Boot Guard Driver;e:\windows\system32\drivers\klbg.sys [29/01/2008 19:29 33808]
R2 LBeepKE;LBeepKE;e:\windows\system32\drivers\LBeepKE.sys [16/05/2009 11:01 10384]
R3 HCWBT8XX;Hauppauge WinTV 848/9 WDM Video Driver;e:\windows\system32\drivers\HCWBT8xx.sys [06/02/2007 19:34 472644]
R3 KLFLTDEV;Kaspersky Lab KLFltDev;e:\windows\system32\drivers\klfltdev.sys [13/03/2008 20:02 26640]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;e:\windows\system32\drivers\klim5.sys [30/04/2008 19:06 24592]
R3 PID_0920;Logitech QuickCam Express(PID_0920);e:\windows\system32\drivers\LV532AV.SYS [06/02/2007 19:25 163328]
R3 usbdtv;LITE-ON DVB-T (PID=F001) receiver;e:\windows\system32\drivers\usbdtv.sys [24/04/2009 10:05 31232]
S0 Lbd;Lbd;e:\windows\system32\DRIVERS\Lbd.sys --> e:\windows\system32\DRIVERS\Lbd.sys [?]
S2 AKEProtect;AKEProtect;\??\e:\program files\Anti Keylogger Elite\AKEProtect.sys --> e:\program files\Anti Keylogger Elite\AKEProtect.sys [?]
S3 DstAud;DstAud;e:\windows\system32\drivers\DstAud.sys [06/02/2007 18:59 8901]
S3 DstVid;DstVid;e:\windows\system32\drivers\DstVid.sys [06/02/2007 18:59 11237]
S3 DTVFW;LITE-ON DVB-T USB adapter firmware;e:\windows\system32\drivers\dtvfw.sys [24/04/2009 10:05 22016]
S3 maconfservice;Ma-Config Service;e:\program files\ma-config.com\maconfservice.exe [15/03/2009 09:34 216232]
S3 SetupNTGLM7X;SetupNTGLM7X;\??\g:\ntglm7x.sys --> g:\NTGLM7X.sys [?]
S3 SynasUSB;SynasUSB;e:\windows\system32\drivers\synasUSB.sys [08/02/2009 16:15 23288]

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
"e:\windows\system32\rundll32.exe" "e:\windows\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
.
Contenu du dossier 'Tâches planifiées'

2009-06-10 e:\windows\Tasks\AppleSoftwareUpdate.job
- e:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]
.
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://www.google.fr/
uInternet Connection Wizard,ShellNext = https://login.live.com/ppsecure/sha1auth.srf?lc=1036
uSearchURL,(Default) = hxxp://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
IE: E&xport to Microsoft Excel - e:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: {{60C3E87C-41AC-4AEE-B5BF-EB5C4D1EC0E7} - e:\program files\FreshDevices\FreshDownload\fd.exe
Trusted Zone: mappy.com
Trusted Zone: orange.fr
Trusted Zone: weborama.fr\orange
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-06-13 06:04
Windows 5.1.2600 Service Pack 3 NTFS

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...

Scan terminé avec succès
Fichiers cachés: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\{95808DC4-FA4A-4c74-92FE-5B863F82066B}]
"ImagePath"="\??\e:\program files\CyberLink\PowerDVD\000.fcl"
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------

[HKEY_USERS\S-1-5-21-1606980848-1417001333-1801674531-1006\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:3e,25,3e,39,01,ed,41,c8,ac,bf,33,86,7f,4a,d7,ee,0a,d5,b2,ab,d3,1b,2f,
28,03,86,84,a2,5c,32,86,32,37,82,3d,5b,a4,b0,40,83,c3,3f,36,81,d7,75,fd,99,\
"??"=hex:92,d3,64,23,3f,d5,85,90,c8,03,db,25,80,b7,71,96

[HKEY_USERS\S-1-5-21-1606980848-1417001333-1801674531-1006\Software\SecuROM\License information*]
"datasecu"=hex:4d,86,1b,58,86,51,a2,ff,1f,d5,40,23,99,9f,9f,db,6e,1a,f4,7f,82,
92,36,4e,ac,0b,3d,83,7c,f8,36,ef,98,3d,a2,e3,3a,05,fb,1f,47,32,53,da,e6,97,\
"rkeysecu"=hex:4d,80,f1,2e,bb,76,90,17,f2,3f,2c,9b,96,ff,2d,19
.
--------------------- DLLs chargées dans les processus actifs ---------------------

- - - - - - - > 'winlogon.exe'(1028)
e:\program files\fichiers communs\logishrd\bluetooth\LBTWlgn.dll
e:\program files\fichiers communs\logishrd\bluetooth\LBTServ.dll

- - - - - - - > 'explorer.exe'(3980)
e:\windows\system32\nview.dll
e:\windows\system32\NVWRSFR.DLL
e:\windows\system32\webcheck.dll
e:\windows\system32\WPDShServiceObj.dll
e:\windows\system32\PortableDeviceTypes.dll
e:\windows\system32\PortableDeviceApi.dll
e:\windows\system32\eappprxy.dll
.
------------------------ Autres processus actifs ------------------------
.
e:\program files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
e:\program files\Bonjour\mDNSResponder.exe
e:\program files\Fichiers communs\InterVideo\DeviceService\DevSvc.exe
e:\progra~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
e:\program files\Java\jre6\bin\jqs.exe
e:\program files\Fichiers communs\LightScribe\LSSrvc.exe
e:\windows\system32\nvsvc32.exe
e:\program files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
e:\windows\system32\CF7774.exe
e:\windows\system32\rundll32.exe
e:\windows\system32\rundll32.exe
e:\windows\system32\wscntfy.exe
.
**************************************************************************
.
Heure de fin: 2009-06-13 6:08 - La machine a redémarré
ComboFix-quarantined-files.txt 2009-06-13 04:08

Avant-CF: 43 858 677 760 octets libres
Après-CF: 43 684 536 320 octets libres

WindowsXP-KB310994-SP2-Pro-BootDisk-FRA.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
e:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professionnel" /fastdetect / NoExecute=OptIn

290 --- E O F --- 2008-10-25 05:15