Trojan

Bonjour, j'ai un problème, j'ai chopé il y a peu un trojan, avast l'a detecté mais ne peux pas le supprimer, j'au utilisé combofix et il m'a fait un scan que voici :

ComboFix 12-10-31.03 - WINDOWS-7 01/11/2012  22:22:21.1.3 - x64
Microsoft Windows 7 Professionnel   6.1.7601.1.1252.33.1036.18.3071.1644 [GMT 1:00]
Lancé depuis: c:\users\WINDOWS-7\Downloads\ComboFix.exe
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Autres suppressions   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\install.exe
c:\programdata\adob
c:\programdata\adob\1.bat
c:\programdata\adob\123.reg
c:\programdata\adob\color.exe
c:\programdata\adob\copy.exe
c:\programdata\adob\stop.bat
c:\programdata\Tages
c:\programdata\Tages\100663909\Serial.txt
c:\programdata\Tages\Priv.xey
C:\Thumbs.db
c:\users\WINDOWS-7\AppData\Roaming\cacaoweb
c:\users\WINDOWS-7\AppData\Roaming\cacaoweb\cacaoweb.exe
c:\users\WINDOWS-7\AppData\Roaming\cacaoweb\npdfile.dat
c:\users\WINDOWS-7\AppData\Roaming\cacaoweb\replicating100F549DFB05B958A822630E54A953CD.cacao
c:\users\WINDOWS-7\AppData\Roaming\cacaoweb\replicating29B08168F086795ECCB8B531293D491A.cacao
c:\users\WINDOWS-7\AppData\Roaming\cacaoweb\replicating33B77C3C8A568BDD01BC2E4CFFC036B8.cacao
c:\users\WINDOWS-7\AppData\Roaming\cacaoweb\replicating4CE1B45000BACDEB4CA43F67CF1C9951.cacao
c:\users\WINDOWS-7\AppData\Roaming\cacaoweb\replicating4EDC9F695BB6A86F30AFD4DF1AFA4A72.cacao
c:\users\WINDOWS-7\AppData\Roaming\cacaoweb\replicating55551AAD790D89DD1616D6A1D3C473EA.cacao
c:\users\WINDOWS-7\AppData\Roaming\cacaoweb\replicating572F39649EFDE65C1580673CE03B0965.cacao
c:\users\WINDOWS-7\AppData\Roaming\cacaoweb\replicating60AD5B77876F0F0F6CCD40A0C1A69F07.cacao
c:\users\WINDOWS-7\AppData\Roaming\cacaoweb\replicating630F8E672E340B48F1ED1BE8144E307F.cacao
c:\users\WINDOWS-7\AppData\Roaming\cacaoweb\replicating79C1660ABF6C3F6D06DF2529CB441EC9.cacao
c:\users\WINDOWS-7\AppData\Roaming\cacaoweb\replicating7BDCAE57AD9B783A056956FE1484E33B.cacao
c:\users\WINDOWS-7\AppData\Roaming\cacaoweb\replicating7E0CB9D84E1CC7A9A5647CA7B272E31D.cacao
c:\users\WINDOWS-7\AppData\Roaming\cacaoweb\replicating87B5639BE5FBF95C1984F8C0C05822B9.cacao
c:\users\WINDOWS-7\AppData\Roaming\cacaoweb\replicating92E249608FCCC86601FE2561D99E31CB.cacao
c:\users\WINDOWS-7\AppData\Roaming\cacaoweb\replicating9DAEC4968363044132E8FD8790F9C30F.cacao
c:\users\WINDOWS-7\AppData\Roaming\cacaoweb\replicatingC01AE13854BF4907204FC7B1123354FE.cacao
c:\users\WINDOWS-7\AppData\Roaming\cacaoweb\replicatingD0061C593186097B3FF427DBC3599A6A.cacao
c:\users\WINDOWS-7\AppData\Roaming\cacaoweb\replicatingDB88081C038DACEDB5CA5A0CF0D106BC.cacao
c:\users\WINDOWS-7\AppData\Roaming\cacaoweb\replicatingED6D12A8214D4C4D1F6C992F18790C42.cacao
c:\users\WINDOWS-7\AppData\Roaming\cacaoweb\replicatingF42354A0BC2DFAB1E815801803130691.cacao
c:\users\WINDOWS-7\AppData\Roaming\cacaoweb\replicatingF5B381AB60963CC1836AAC16CC035146.cacao
c:\users\WINDOWS-7\AppData\Roaming\cacaoweb\replicatingFE4698FFB65A18D847C211761AE11E4F.cacao
c:\users\WINDOWS-7\AppData\Roaming\cacaoweb\storage.db
c:\users\WINDOWS-7\AppData\Roaming\Love
c:\users\WINDOWS-7\AppData\Roaming\Love\ortho_robot\save.txt
c:\users\WINDOWS-7\AppData\Roaming\WinDir
c:\users\WINDOWS-7\AppData\Roaming\WINDOWS-7log.dat
c:\windows\assembly\GAC_32\Desktop.ini
c:\windows\assembly\GAC_64\Desktop.ini
c:\windows\Installer\{95b3c3ee-4f8e-db9e-697c-1d63950855ad}\@
c:\windows\Installer\{95b3c3ee-4f8e-db9e-697c-1d63950855ad}\L\00000004.@
c:\windows\Installer\{95b3c3ee-4f8e-db9e-697c-1d63950855ad}\L\201d3dde
c:\windows\Installer\{95b3c3ee-4f8e-db9e-697c-1d63950855ad}\U\00000004.@
c:\windows\Installer\{95b3c3ee-4f8e-db9e-697c-1d63950855ad}\U\00000008.@
c:\windows\Installer\{95b3c3ee-4f8e-db9e-697c-1d63950855ad}\U\000000cb.@
c:\windows\Installer\{95b3c3ee-4f8e-db9e-697c-1d63950855ad}\U\80000000.@
c:\windows\Installer\{95b3c3ee-4f8e-db9e-697c-1d63950855ad}\U\80000064.@
c:\windows\SysWow64\muzapp.exe
c:\windows\SysWow64\windir
.
Une copie infectée de c:\windows\system32\services.exe a été trouvée et désinfectée 
Copie restaurée à partir de - c:\windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe 
.
.
(((((((((((((((((((((((((((((   Fichiers créés du 2012-10-01 au 2012-11-01  ))))))))))))))))))))))))))))))))))))
.
.
2012-11-01 18:07 . 2012-08-21 10:13	359464	----a-w-	c:\windows\system32\drivers\aswSP.sys
2012-11-01 18:07 . 2012-08-21 10:13	25232	----a-w-	c:\windows\system32\drivers\aswFsBlk.sys
2012-11-01 18:07 . 2012-08-21 10:13	54072	----a-w-	c:\windows\system32\drivers\aswRdr2.sys
2012-11-01 18:07 . 2012-08-21 10:13	59728	----a-w-	c:\windows\system32\drivers\aswTdi.sys
2012-11-01 18:07 . 2012-08-21 10:13	969200	----a-w-	c:\windows\system32\drivers\aswSnx.sys
2012-11-01 18:07 . 2012-08-21 10:13	71600	----a-w-	c:\windows\system32\drivers\aswMonFlt.sys
2012-11-01 18:07 . 2012-08-21 10:12	285328	----a-w-	c:\windows\system32\aswBoot.exe
2012-11-01 18:06 . 2012-08-21 10:12	41224	----a-w-	c:\windows\avastSS.scr
2012-11-01 18:06 . 2012-08-21 10:12	227648	----a-w-	c:\windows\SysWow64\aswBoot.exe
2012-11-01 18:06 . 2012-11-01 18:06	--------	d-----w-	c:\programdata\AVAST Software
2012-11-01 18:06 . 2012-11-01 18:06	--------	d-----w-	c:\program files\AVAST Software
2012-11-01 18:01 . 2012-11-01 18:01	--------	d-sh--w-	c:\windows\SysWow64\%APPDATA%
2012-11-01 17:43 . 2012-11-01 17:43	--------	d-----w-	C:\found.000
2012-11-01 17:37 . 2012-11-01 17:37	--------	d-----w-	C:\e6a0a4beb3d2cf9217895dfcb20870
2012-10-30 17:53 . 2012-10-30 17:53	--------	d-----w-	C:\Games
2012-10-30 17:52 . 2012-10-30 17:52	--------	d-----w-	c:\users\WINDOWS-7\AppData\Local\Black_Tree_Gaming
2012-10-30 17:51 . 2012-10-30 17:52	--------	d-----w-	c:\program files\Nexus Mod Manager
2012-10-30 14:19 . 2012-10-30 14:19	--------	d-----w-	c:\programdata\Software
2012-10-24 17:15 . 2012-10-24 17:15	--------	d-----w-	c:\users\WINDOWS-7\AppData\Roaming\Apple Computer
2012-10-23 20:21 . 2012-10-23 20:21	--------	d-----w-	c:\program files (x86)\Common Files\Apple
2012-10-23 20:21 . 2012-10-23 20:21	--------	d-----w-	c:\users\WINDOWS-7\AppData\Local\Apple
2012-10-23 20:20 . 2012-10-23 20:20	--------	d-----w-	c:\program files (x86)\Apple Software Update
2012-10-23 20:20 . 2012-10-23 20:20	--------	d-----w-	c:\programdata\Apple
2012-10-21 10:35 . 2012-09-24 21:16	95208	----a-w-	c:\windows\SysWow64\WindowsAccessBridge-32.dll
2012-10-18 19:10 . 2012-10-18 19:10	--------	d-----w-	c:\users\WINDOWS-7\AppData\Roaming\zombies
2012-10-12 21:24 . 2012-10-12 21:25	--------	d-----w-	c:\users\WINDOWS-7\AppData\Roaming\.minecraft
2012-10-05 09:08 . 2012-10-30 14:19	--------	d-----w-	c:\program files (x86)\Software
2012-10-05 09:08 . 2012-10-05 09:08	--------	d-----w-	c:\users\WINDOWS-7\AppData\Local\Software
2012-10-05 09:08 . 2012-10-05 09:08	--------	d-----w-	c:\program files (x86)\ASIO4ALL v2
2012-10-05 09:08 . 2012-10-05 09:08	--------	d-----w-	c:\program files (x86)\VstPlugins
2012-10-05 09:08 . 2006-06-20 08:56	225280	----a-w-	c:\windows\SysWow64\rewire.dll
2012-10-05 09:07 . 2009-09-15 09:14	1554944	----a-w-	c:\windows\SysWow64\vorbis.acm
2012-10-05 09:07 . 2012-10-05 09:07	--------	d-----w-	c:\program files (x86)\Outsim
2012-10-05 09:03 . 2012-10-05 09:07	--------	d-----w-	c:\program files (x86)\Image-Line
.
.
.
((((((((((((((((((((((((((((((((((   Compte-rendu de Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-11-01 17:57 . 2012-04-30 23:46	696760	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2012-11-01 17:57 . 2011-08-21 15:21	73656	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-10-31 11:57 . 2012-05-02 14:42	281520	----a-w-	c:\windows\SysWow64\PnkBstrB.exe
2012-10-31 11:57 . 2012-02-16 16:29	281520	----a-w-	c:\windows\SysWow64\PnkBstrB.xtr
2012-10-31 11:57 . 2012-05-02 14:42	280904	----a-w-	c:\windows\SysWow64\PnkBstrB.ex0
2012-09-22 23:32 . 2011-08-19 17:29	64462936	----a-w-	c:\windows\system32\MRT.exe
2012-09-19 09:02 . 2012-09-19 09:02	102368	----a-w-	c:\windows\system32\drivers\ssudbus.sys
2012-09-19 09:02 . 2012-09-19 09:02	203104	----a-w-	c:\windows\system32\drivers\ssudmdm.sys
2012-08-31 10:18 . 2012-04-11 22:51	821736	----a-w-	c:\windows\SysWow64\npdeployJava1.dll
2012-08-31 10:18 . 2011-08-21 15:15	746984	----a-w-	c:\windows\SysWow64\deployJava1.dll
2012-08-31 10:15 . 2011-12-08 20:38	2300528	----a-w-	c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\markup.dll
2012-08-31 10:14 . 2011-12-08 20:37	42776	----a-w-	c:\programdata\Microsoft\eHome\Packages\MCEClientUX\dSM\StartResources.dll
2012-08-30 21:03 . 2012-08-30 21:03	228768	----a-w-	c:\windows\system32\drivers\MpFilter.sys
2012-08-28 08:05 . 2012-09-22 23:31	4659712	----a-w-	c:\windows\SysWow64\Redemption.dll
2012-08-28 08:04 . 2012-08-28 08:04	90112	----a-w-	c:\windows\MAMCityDownload.ocx
2012-08-28 08:04 . 2012-08-28 08:04	81920	----a-w-	c:\windows\SysWow64\issacapi_bs-2.3.dll
2012-08-28 08:04 . 2012-08-28 08:04	65536	----a-w-	c:\windows\SysWow64\issacapi_pe-2.3.dll
2012-08-28 08:04 . 2012-08-28 08:04	57344	----a-w-	c:\windows\SysWow64\issacapi_se-2.3.dll
2012-08-28 08:04 . 2012-08-28 08:04	49152	----a-w-	c:\windows\SysWow64\MaJGUILib.dll
2012-08-28 08:04 . 2012-08-28 08:04	45056	----a-w-	c:\windows\SysWow64\MaXMLProto.dll
2012-08-28 08:04 . 2012-08-28 08:04	40960	----a-w-	c:\windows\SysWow64\MTTELECHIP.dll
2012-08-28 08:04 . 2012-08-28 08:04	330240	----a-w-	c:\windows\MASetupCaller.dll
2012-08-28 08:04 . 2012-08-28 08:04	30568	----a-w-	c:\windows\MusiccityDownload.exe
2012-08-28 08:04 . 2012-08-28 08:04	200704	----a-w-	c:\windows\SysWow64\muzwmts.dll
2012-08-28 08:04 . 2012-08-28 08:04	143360	----a-w-	c:\windows\SysWow64\3DAudio.ax
2012-08-28 08:04 . 2012-08-28 08:04	135168	----a-w-	c:\windows\SysWow64\muzaf1.dll
2012-08-28 08:04 . 2012-08-28 08:04	122880	----a-w-	c:\windows\SysWow64\muzeffect.ax
2012-08-28 08:04 . 2012-08-28 08:04	118784	----a-w-	c:\windows\SysWow64\MaDRM.dll
2012-08-28 08:04 . 2012-08-28 08:04	110592	----a-w-	c:\windows\SysWow64\muzmp4sp.ax
2012-08-28 08:04 . 2012-09-22 23:31	821824	----a-w-	c:\windows\SysWow64\dgderapi.dll
2012-08-28 08:04 . 2012-08-28 08:04	974848	----a-w-	c:\windows\SysWow64\cis-2.4.dll
2012-08-28 08:04 . 2012-08-28 08:04	57344	----a-w-	c:\windows\SysWow64\MTXSYNCICON.dll
2012-08-28 08:04 . 2012-08-28 08:04	57344	----a-w-	c:\windows\SysWow64\MK_Lyric.dll
2012-08-28 08:04 . 2012-08-28 08:04	569344	----a-w-	c:\windows\SysWow64\muzdecode.ax
2012-08-28 08:04 . 2012-08-28 08:04	491520	----a-w-	c:\windows\SysWow64\muzapp.dll
2012-08-28 08:04 . 2012-08-28 08:04	45320	----a-w-	c:\windows\SysWow64\MAMACExtract.dll
2012-08-28 08:04 . 2012-08-28 08:04	45056	----a-w-	c:\windows\SysWow64\MACXMLProto.dll
2012-08-28 08:04 . 2012-08-28 08:04	352256	----a-w-	c:\windows\SysWow64\MSLUR71.dll
2012-08-28 08:04 . 2012-08-28 08:04	258048	----a-w-	c:\windows\SysWow64\muzoggsp.ax
2012-08-28 08:04 . 2012-08-28 08:04	245760	----a-w-	c:\windows\SysWow64\MSCLib.dll
2012-08-28 08:04 . 2012-08-28 08:04	24576	----a-w-	c:\windows\SysWow64\MASetupCleaner.exe
2012-08-28 08:04 . 2012-08-28 08:04	155648	----a-w-	c:\windows\SysWow64\MSFLib.dll
2012-08-28 08:04 . 2012-08-28 08:04	131072	----a-w-	c:\windows\SysWow64\muzmpgsp.ax
2012-08-24 11:15 . 2012-09-22 23:37	17810944	----a-w-	c:\windows\system32\mshtml.dll
2012-08-24 10:39 . 2012-09-22 23:37	10925568	----a-w-	c:\windows\system32\ieframe.dll
2012-08-24 10:31 . 2012-09-22 23:37	2312704	----a-w-	c:\windows\system32\jscript9.dll
2012-08-24 10:22 . 2012-09-22 23:37	1346048	----a-w-	c:\windows\system32\urlmon.dll
2012-08-24 10:21 . 2012-09-22 23:37	1392128	----a-w-	c:\windows\system32\wininet.dll
2012-08-24 10:20 . 2012-09-22 23:37	1494528	----a-w-	c:\windows\system32\inetcpl.cpl
2012-08-24 10:18 . 2012-09-22 23:37	237056	----a-w-	c:\windows\system32\url.dll
2012-08-24 10:17 . 2012-09-22 23:37	85504	----a-w-	c:\windows\system32\jsproxy.dll
2012-08-24 10:14 . 2012-09-22 23:37	173056	----a-w-	c:\windows\system32\ieUnatt.exe
2012-08-24 10:14 . 2012-09-22 23:37	816640	----a-w-	c:\windows\system32\jscript.dll
2012-08-24 10:13 . 2012-09-22 23:37	599040	----a-w-	c:\windows\system32\vbscript.dll
2012-08-24 10:12 . 2012-09-22 23:37	2144768	----a-w-	c:\windows\system32\iertutil.dll
2012-08-24 10:11 . 2012-09-22 23:37	729088	----a-w-	c:\windows\system32\msfeeds.dll
2012-08-24 10:10 . 2012-09-22 23:37	96768	----a-w-	c:\windows\system32\mshtmled.dll
2012-08-24 10:09 . 2012-09-22 23:37	2382848	----a-w-	c:\windows\system32\mshtml.tlb
2012-08-24 10:04 . 2012-09-22 23:37	248320	----a-w-	c:\windows\system32\ieui.dll
2012-08-24 06:59 . 2012-09-22 23:37	1800704	----a-w-	c:\windows\SysWow64\jscript9.dll
2012-08-24 06:51 . 2012-09-22 23:37	1129472	----a-w-	c:\windows\SysWow64\wininet.dll
2012-08-24 06:51 . 2012-09-22 23:37	1427968	----a-w-	c:\windows\SysWow64\inetcpl.cpl
2012-08-24 06:47 . 2012-09-22 23:37	142848	----a-w-	c:\windows\SysWow64\ieUnatt.exe
2012-08-24 06:47 . 2012-09-22 23:37	420864	----a-w-	c:\windows\SysWow64\vbscript.dll
2012-08-24 06:43 . 2012-09-22 23:37	2382848	----a-w-	c:\windows\SysWow64\mshtml.tlb
2012-08-22 18:12 . 2012-09-22 23:31	1913200	----a-w-	c:\windows\system32\drivers\tcpip.sys
2012-08-22 18:12 . 2012-09-22 23:31	950128	----a-w-	c:\windows\system32\drivers\ndis.sys
2012-08-22 18:12 . 2012-09-22 23:31	376688	----a-w-	c:\windows\system32\drivers\netio.sys
2012-08-22 18:12 . 2012-09-22 23:31	288624	----a-w-	c:\windows\system32\drivers\FWPKCLNT.SYS
2012-08-22 00:38 . 2012-06-16 15:39	428544	----a-w-	c:\windows\cacaoweb.exe
2010-06-02 04:22 . 2010-06-02 04:22	89944	----a-w-	c:\program files (x86)\DSETUP.dll
2010-06-02 04:22 . 2010-06-02 04:22	537432	----a-w-	c:\program files (x86)\DXSETUP.exe
2010-06-02 04:22 . 2010-06-02 04:22	1801048	----a-w-	c:\program files (x86)\dsetup32.dll
.
.
(((((((((((((((((((((((((((((((((   Points de chargement Reg   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShareOverlay]
@="{594D4122-1F87-41E2-96C7-825FB4796516}"
[HKEY_CLASSES_ROOT\CLSID\{594D4122-1F87-41E2-96C7-825FB4796516}]
2010-10-30 10:09	478208	----a-w-	c:\program files\Classic Shell\ClassicExplorer32.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RocketDock"="c:\program files (x86)\RocketDock\RocketDock.exe" [2007-09-02 495616]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-07-31 38872]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-11 919008]
"LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2012-08-29 1996200]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"KiesTrayAgent"="c:\program files (x86)\Samsung\Kies\KiesTrayAgent.exe" [2012-08-31 3524536]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-20 59240]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2012-04-18 421888]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-08-21 4282728]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer5"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages	REG_MULTI_SZ   	kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Service Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-04-01 116648]
R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2011-09-09 86072]
R2 libusbd;LibUsb-Win32 - Daemon, Version 0.1.10.1;c:\windows\system32\libusbd-nt.exe [x]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-05-15 1262400]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-07-03 160944]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-11-01 250808]
R3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2010-05-11 6790656]
R3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2010-05-11 221184]
R3 dc3d;MS Hardware Device Detection Driver (USB);c:\windows\system32\DRIVERS\dc3d.sys [2011-07-28 52584]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys [2012-09-19 102368]
R3 driverhardwarev2x64;driverhardwarev2x64;c:\program files\ma-config.com\Drivers\driverhardwarev2x64.sys [2011-07-21 16640]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys [x]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2012-06-25 1432400]
R3 gupdatem;Service Google Update (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-04-01 116648]
R3 libusb0;LibUsb-Win32 - Kernel Driver, Version 0.1.10.1;c:\windows\system32\drivers\libusb0.sys [x]
R3 maconfservice;Ma-Config Service;c:\program files\ma-config.com\x64\maconfservice.exe [2012-07-04 427672]
R3 MotioninJoyXFilter;MotioninJoy Virtual Xinput device Filter Driver;c:\windows\system32\DRIVERS\MijXfilt.sys [2012-03-25 115272]
R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\NisSrv.exe [x]
R3 OxPPort;OxPPort;c:\windows\system32\DRIVERS\OxPPort.sys [2008-07-31 98304]
R3 OXSDIDRV_x64;Oxford Semi eSATA Filter (x64);c:\windows\system32\DRIVERS\OXSDIDRV_x64.sys [2009-09-28 51760]
R3 RoxMediaDB10;RoxMediaDB10;c:\program files (x86)\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2010-03-19 1120752]
R3 ssudmdm;SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys [2012-09-19 203104]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2011-08-19 1255736]
S0 amd_sata;amd_sata;c:\windows\system32\DRIVERS\amd_sata.sys [2011-10-29 80512]
S0 amd_xata;amd_xata;c:\windows\system32\DRIVERS\amd_xata.sys [2011-10-29 42624]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2010-03-19 55856]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-05-10 283200]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-05-11 203264]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-08-21 71600]
S2 cbVSCService;Cobian Backup 10 Volume Shadow Copy service;c:\program files (x86)\Cobian Backup 10\cbVSCService.exe [2010-09-23 67584]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [2012-08-29 2369960]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-03-28 94264]
S2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-10-02 3064000]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-05-15 382272]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [2012-04-18 188736]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2010-09-20 349800]
S3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\RTL8192su.sys [2010-09-29 695400]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys [2011-11-16 54400]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2010-06-16 11:38	451872	----a-w-	c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe
.
Contenu du dossier 'Tâches planifiées'
.
2012-11-01 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-30 17:57]
.
2012-11-01 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-04-01 11:49]
.
2012-11-01 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-04-01 11:49]
.
2012-10-31 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-850644927-963332498-2101961306-1001Core.job
- c:\users\WINDOWS-7\AppData\Local\Google\Update\GoogleUpdate.exe [2011-08-21 12:46]
.
2012-11-01 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-850644927-963332498-2101961306-1001UA.job
- c:\users\WINDOWS-7\AppData\Local\Google\Update\GoogleUpdate.exe [2011-08-21 12:46]
.
2012-10-21 c:\windows\Tasks\HPCeeScheduleForWINDOWS-7-HP$.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-14 06:15]
.
2012-10-21 c:\windows\Tasks\HPCeeScheduleForWINDOWS-7.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-14 06:15]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-08-21 10:11	133400	----a-w-	c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShareOverlay]
@="{594D4122-1F87-41E2-96C7-825FB4796516}"
[HKEY_CLASSES_ROOT\CLSID\{594D4122-1F87-41E2-96C7-825FB4796516}]
2010-10-30 10:09	594432	----a-w-	c:\program files\Classic Shell\ClassicExplorer64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Classic Start Menu"="c:\program files\Classic Shell\ClassicStartMenu.exe" [2010-10-30 98304]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-09-20 444904]
.
------- Examen supplémentaire -------
.
uLocal Page = c:\windows\system32\blank.htm
uDefault_Search_URL = hxxp://www.google.com/ie
uStart Page = hxxp://www.google.fr/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyServer = 218.47.65.70:80
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
TCP: Interfaces\{72A07924-CE30-46CB-9DB1-890B417B38CF}: NameServer = 192.168.1.1
FF - ProfilePath - c:\users\WINDOWS-7\AppData\Roaming\Mozilla\Firefox\Profiles\uhvx5jvy.default\
FF - prefs.js: network.proxy.type - 0
FF - user.js: extensions.BabylonToolbar_i.id - 2665096600000000000008863b35ba24
FF - user.js: extensions.BabylonToolbar_i.hardId - 2665096600000000000008863b35ba24
FF - user.js: extensions.BabylonToolbar_i.instlDay - 15388
FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.1711:54
FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar_i.tlbrId - base
FF - user.js: extensions.BabylonToolbar_i.newTab - false
FF - user.js: extensions.BabylonToolbar_i.babTrack - tt=090212_noffx
FF - user.js: extensions.BabylonToolbar_i.babExt - 
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar_i.instlRef - sst
.
- - - - ORPHELINS SUPPRIMES - - - -
.
HKLM_Wow6432Node-ActiveSetup-{D218M3I7-4MJK-03BU-116J-XI868LM44437} - c:\windows\SysWOW64\Windir\svchost.exe
BHO-{F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - c:\program files (x86)\Hotspot Shield\HssIE\HssIE_64.dll
AddRemove-Battlelog Web Plugins - c:\program files (x86)\Battlelog Web Plugins\uninstall.exe
AddRemove-IPCameraDSFilter - c:\program files (x86)\wLite\ipds-uninst.exe
AddRemove-Penwes - c:\program files (x86)\PenWes\uninstall.exe
AddRemove-{6F44AF95-3CDE-4513-AD3F-6D45F17BF324} - c:\program files (x86)\InstallShield Installation Information\{6F44AF95-3CDE-4513-AD3F-6D45F17BF324}\setup.exe
AddRemove-4006576648.www.artevod.com - c:\program files (x86)\Microsoft Silverlight\4.0.60831.0\Silverlight.Configuration.exe
AddRemove-UnityWebPlayer - c:\users\WINDOWS-7\AppData\Local\Unity\WebPlayer\Uninstall.exe
.
.
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_USERS\S-1-5-21-850644927-963332498-2101961306-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.Email.1"
.
[HKEY_USERS\S-1-5-21-850644927-963332498-2101961306-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Autres processus actifs ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
c:\program files (x86)\Common Files\LightScribe\LSSrvc.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
c:\program files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\ModLEDKey.exe
c:\program files (x86)\IObit\Game Booster 3\gbtray.exe
.
**************************************************************************
.
Heure de fin: 2012-11-01  22:38:50 - La machine a redémarré
ComboFix-quarantined-files.txt  2012-11-01 21:38
.
Avant-CF: 79 584 067 584 octets libres
Après-CF: 79 465 287 680 octets libres
.
- - End Of File - - 52F59764FB55A0FFC62C6FDD36633040

Le problème c'est que je ne sais pas si le virus a été supprimé ou non, et depuis le scan je ne peux plus utiliser mozilla, chrome et quelques autres logiciel, dois-je les réinstaller ?