Se connecter / S'enregistrer
Votre question

Logiciel malveillant

Tags :
  • Logiciels
  • Sécurité
Dernière réponse : dans Sécurité et virus
2 Juillet 2011 23:57:56

Bonjour,

Mon ordinateur est devenu affreusement lent. J'ai alors fait une analyse avec antivir qui ne trouve rien, j'ai mis à jour MBM et depuis, régulièrement un message s'affiche disant qu'un logiciel malveillant entrant a été bloqué mais je n'arrive pas à m'en débarrasser. Pouvez vous m'aider s'il vous plait?

Merci d'avance pour votre aide

Autres pages sur : logiciel malveillant

3 Juillet 2011 08:48:52

Bonjour

Citation :
j'ai mis à jour MBM et depuis, régulièrement un message s'affiche disant qu'un logiciel malveillant entrant a été bloqué mais je n'arrive pas à m'en débarrasser.

Je présume que tu as la version payante de MBAM...c'est bien lui qui t'affiche ce message?

Télécharge DDS et sauvegarde-le sur ton bureau.
  • Désactive tout script bloquant, tels qu'un antivirus, un logiciel comme ad-block, noscript etc.
  • Double-clique sur dds.scr pour lancer l'outil.
  • Une fois le scan fini, un document texte, DDS.txt, va s'ouvrir .
  • Clique Oui à la prochaine invite Optional Scan.
  • Sauvegarde les deux rapports sur ton bureau et poste-moi uniquement le DDS.txt.

    <@_@>**<@_@>**<@_@>**<@_@>**<@_@>**@_@>**<@_@><@_@>**<@_@>**<@_@>**<@_@>**
    3 Juillet 2011 09:32:09

    Bonjour,

    Depuis la mise à jour, j'ai la version pro en essai.
    Voici le rapport que tu m'a demandé :
    DDS (Ver_2011-06-23.01) - NTFSx86
    Internet Explorer: 7.0.5730.13
    Run by Romain at 9:27:28 on 2011-07-03
    Microsoft Windows XP Édition familiale 5.1.2600.3.1252.33.1036.18.3063.2373 [GMT 2:00]
    .
    AV: AntiVir Desktop *Disabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
    .
    ============== Running Processes ===============
    .
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost -k DcomLaunch
    svchost.exe
    C:\WINDOWS\System32\svchost.exe -k netsvcs
    svchost.exe
    svchost.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Avira\AntiVir Desktop\sched.exe
    C:\WINDOWS\Explorer.EXE
    svchost.exe
    C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
    C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
    C:\WINDOWS\RTHDCPL.EXE
    C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIFDE.EXE
    F:\Program Files\DAEMON Tools Lite\DTLite.exe
    C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
    C:\Program Files\Avira\AntiVir Desktop\avguard.exe
    C:\Program Files\ASUS\AsSysCtrlService\1.00.00\AsSysCtrlService.exe
    C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
    C:\WINDOWS\system32\svchost.exe -k imgsvc
    C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\Mozilla Firefox\plugin-container.exe
    C:\WINDOWS\system32\wscntfy.exe
    .
    ============== Pseudo HJT Report ===============
    .
    uInternet Connection Wizard,ShellNext = iexplore
    BHO: AcroIEHlprObj Class: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 7.0\activex\AcroIEHelper.dll
    BHO: BitComet Helper: {39f7e362-828a-4b5a-bcaf-5b79bfdfea60} - f:\program files\bitcomet\tools\BitCometBHO_1.5.4.11.dll
    BHO: Easy Photo Print: {9421dd08-935f-4701-a9ca-22df90ac4ea6} - c:\program files\epson software\easy photo print\EPTBL.dll
    BHO: EpsonToolBandKicker Class: {e99421fb-68dd-40f0-b4ac-b7027cae2f1a} - c:\program files\epson\epson web-to-page\EPSON Web-To-Page.dll
    TB: Easy Photo Print: {9421dd08-935f-4701-a9ca-22df90ac4ea6} - c:\program files\epson software\easy photo print\EPTBL.dll
    TB: EPSON Web-To-Page: {ee5d279f-081b-4404-994d-c6b60aaeba6d} - c:\program files\epson\epson web-to-page\EPSON Web-To-Page.dll
    uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe
    uRun: [EPSON SX210 Series] c:\windows\system32\spool\drivers\w32x86\3\e_fatifde.exe /fu "c:\windows\temp\E_S83.tmp" /EF "HKCU"
    uRun: [DAEMON Tools Lite] "f:\program files\daemon tools lite\DTLite.exe" -autorun
    mRun: [StartCCC] "c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe" MSRun
    mRun: [avgnt] "c:\program files\avira\antivir desktop\avgnt.exe" /min
    mRun: [RTHDCPL] RTHDCPL.EXE
    mRun: [Alcmtr] ALCMTR.EXE
    mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray
    dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
    StartupFolder: c:\docume~1\alluse~1.win\menudm~1\progra~1\dmarra~1\lancem~1.lnk - c:\program files\adobe\acrobat 7.0\reader\reader_sl.exe
    IE: E&xporter vers Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
    IE: Tout télécharger avec BitComet - f:\program files\bitcomet\BitComet.exe/AddAllLink.htm
    IE: Télécharger avec BitComet - f:\program files\bitcomet\BitComet.exe/AddLink.htm
    IE: {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://f:\program files\bitcomet\tools\BitCometBHO_1.5.4.11.dll/206
    IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
    IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
    IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
    TCP: DhcpNameServer = 212.27.40.241 212.27.40.240
    TCP: Interfaces\{29EF48DA-19BF-4836-B438-3AE36D66824F} : DhcpNameServer = 212.27.40.241 212.27.40.240
    Notify: AtiExtEvent - Ati2evxx.dll
    SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
    .
    ================= FIREFOX ===================
    .
    FF - ProfilePath - c:\documents and settings\rj-2067042\application data\mozilla\firefox\profiles\0nex63bv.default\
    FF - prefs.js: browser.search.selectedEngine - Google
    FF - prefs.js: browser.startup.homepage - hxxp://en-us.start.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:fr:o fficial
    FF - component: c:\documents and settings\all users.windows\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\norton\ipsffplgn\components\IPSFFPl.dll
    FF - component: c:\program files\mozilla firefox\extensions\talkback@mozilla.org\components\qfaservices.dll
    FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll
    .
    ============= SERVICES / DRIVERS ===============
    .
    R1 avgio;avgio;c:\program files\avira\antivir desktop\avgio.sys [2010-5-20 11608]
    R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [2011-4-10 218688]
    R2 AntiVirSchedulerService;Avira AntiVir Planificateur;c:\program files\avira\antivir desktop\sched.exe [2010-5-20 136360]
    R2 AntiVirService;Avira AntiVir Guard;c:\program files\avira\antivir desktop\avguard.exe [2010-5-20 269480]
    R2 AsSysCtrlService;ASUS System Control Service;c:\program files\asus\assysctrlservice\1.00.00\AsSysCtrlService.exe [2011-3-26 86016]
    R2 avgntflt;avgntflt;c:\windows\system32\drivers\avgntflt.sys [2011-3-26 61960]
    R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2011-3-26 366640]
    R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-3-26 22712]
    .
    =============== Created Last 30 ================
    .
    .
    ==================== Find3M ====================
    .
    2011-06-20 19:54:05 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
    2011-05-29 07:11:30 39984 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
    2011-05-29 07:11:20 22712 ----a-w- c:\windows\system32\drivers\mbam.sys
    2011-05-02 15:31:52 692736 ----a-w- c:\windows\system32\inetcomm.dll
    2011-04-29 17:25:26 151552 ----a-w- c:\windows\system32\schannel.dll
    2011-04-29 16:19:43 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
    2011-04-25 15:45:07 832512 ----a-w- c:\windows\system32\wininet.dll
    2011-04-25 15:45:07 1830912 ------w- c:\windows\system32\inetcpl.cpl
    2011-04-25 15:45:06 78336 ----a-w- c:\windows\system32\ieencode.dll
    2011-04-25 15:45:06 17408 ----a-w- c:\windows\system32\corpol.dll
    2011-04-25 12:01:21 389120 ----a-w- c:\windows\system32\html.iec
    2011-04-21 13:37:43 105472 ----a-w- c:\windows\system32\drivers\mup.sys
    2011-04-17 16:03:12 107888 ----a-w- c:\windows\system32\CmdLineExt.dll
    2011-04-17 15:58:23 413696 ----a-w- c:\windows\system32\wrap_oal.dll
    2011-04-17 15:58:23 110592 ----a-w- c:\windows\system32\OpenAL32.dll
    2011-04-13 16:08:40 271360 ----a-w- c:\windows\system32\drivers\atksgt.sys
    2011-04-13 16:08:40 18048 ----a-w- c:\windows\system32\drivers\lirsgt.sys
    2011-04-10 12:08:36 218688 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
    .
    ============= FINISH: 9:27:55,10 ===============

    Merci
    Contenus similaires
    3 Juillet 2011 23:09:59

    re
    tu peux faire un screenshot de tes alertes?

    ++++++++++++++++
    Pour envoyer une capture d'écran :


    Enregistrer l'image :[/#ff]


  • Appuie sur la touche Impécr de ton clavier.


  • Démarre [#ff001d]Paint
  • (de Microsoft Corporation) : Démarrer > Tous les programmes > Accessoires > Paint


  • Clique sur Edition , Coller .


  • Va dans Fichier , puis Enregistrer sous... et sauvegarde ton image.


    [#ff9000]Héberger l'image :[/#ff]


  • Va sur le site Imageshack , un hébergeur d'images.


  • Une fois sur le site, clique sur le bouton Choisissez un fichier (en gris) puis double-clique sur ton image.


  • Ne mets pas ton adresse de messagerie et clique sur Upload now


  • Après quelques secondes, des liens s'affichent à gauche : copie le lien en face de Lien direct et colle-le dans ta prochaine réponse.

    ++++++++++++++++++++
    4 Juillet 2011 21:29:30

    ok
    Désactive ton antivirus et tout autre type de protection.
    Télécharge ComboFix de sUBs : Combofix
    Sauvegarde-le sur ton bureau et pas ailleurs!

    Double-clic sur ComboFix, Il va te poser une question, suis les invites puis attends que combofix ait terminé, il est possible que ton PC reboot, c’est normal, un rapport sera créé.Poste le rapport:C:\Combofix.txt
    clique dessus pour l'ouvrir, puis édition "sélectionner tout", édition "copier"

    viens sur le forum et édition "coller"

    AIDE : Un guide et un tutoriel sur l'utilisation de ComboFix
    * le nom de la partition peut changer

    <@_@>

    +++++++++++++++++++++
    5 Juillet 2011 11:29:34

    Bonjour,

    Voici le comboFix :
    ComboFix 11-07-04.02 - Romain 05/07/2011 11:23:51.2.8 - x86
    Microsoft Windows XP Édition familiale 5.1.2600.3.1252.33.1036.18.3063.2324 [GMT 2:00]
    Lancé depuis: c:\documents and settings\R.J-2067042\Bureau\ComboFix.exe
    AV: AntiVir Desktop *Disabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
    .
    AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !!
    .
    .
    ((((((((((((((((((((((((((((( Fichiers créés du 2011-06-05 au 2011-07-05 ))))))))))))))))))))))))))))))))))))
    .
    .
    .
    .
    .
    (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2011-06-20 19:54 . 2011-06-02 07:59 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
    2011-05-29 07:11 . 2011-03-26 17:20 39984 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
    2011-05-29 07:11 . 2011-03-26 17:20 22712 ----a-w- c:\windows\system32\drivers\mbam.sys
    2011-05-02 15:31 . 2011-03-26 09:20 692736 ----a-w- c:\windows\system32\inetcomm.dll
    2011-04-29 17:25 . 2008-04-14 12:00 151552 ----a-w- c:\windows\system32\schannel.dll
    2011-04-29 16:19 . 2008-04-14 12:00 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
    2011-04-25 15:45 . 2008-04-14 12:00 832512 ----a-w- c:\windows\system32\wininet.dll
    2011-04-25 15:45 . 2008-04-14 12:00 1830912 ------w- c:\windows\system32\inetcpl.cpl
    2011-04-25 15:45 . 2008-04-14 12:00 78336 ----a-w- c:\windows\system32\ieencode.dll
    2011-04-25 15:45 . 2008-04-14 12:00 17408 ----a-w- c:\windows\system32\corpol.dll
    2011-04-25 12:01 . 2008-04-14 12:00 389120 ----a-w- c:\windows\system32\html.iec
    2011-04-21 13:37 . 2008-04-14 12:00 105472 ----a-w- c:\windows\system32\drivers\mup.sys
    2011-04-17 16:03 . 2011-04-17 16:03 107888 ----a-w- c:\windows\system32\CmdLineExt.dll
    2011-04-17 15:58 . 2011-04-17 15:58 413696 ----a-w- c:\windows\system32\wrap_oal.dll
    2011-04-17 15:58 . 2011-04-17 15:58 110592 ----a-w- c:\windows\system32\OpenAL32.dll
    2011-04-13 16:08 . 2011-04-13 16:08 271360 ----a-w- c:\windows\system32\drivers\atksgt.sys
    2011-04-13 16:08 . 2011-04-13 16:08 18048 ----a-w- c:\windows\system32\drivers\lirsgt.sys
    2011-04-10 12:08 . 2011-04-10 12:08 218688 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
    2011-04-06 10:09 . 2011-03-26 11:21 137656 ----a-w- c:\windows\system32\drivers\avipbb.sys
    2011-05-01 17:06 . 2011-03-26 11:08 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
    .
    .
    ((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
    REGEDIT4
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "DAEMON Tools Lite"="f:\program files\DAEMON Tools Lite\DTLite.exe" [2011-01-20 1305408]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2008-08-29 61440]
    "avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2011-02-04 281768]
    "RTHDCPL"="RTHDCPL.EXE" [2008-11-07 17421824]
    "Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-05-29 449584]
    .
    [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
    .
    c:\documents and settings\romain\Menu D‚marrer\Programmes\D‚marrage\
    GIGABYTE Gamer HUD.lnk - c:\program files\GIGABYTE\Gamer HUD\HUD.exe [2009-2-25 1690112]
    .
    c:\documents and settings\All Users.WINDOWS\Menu D‚marrer\Programmes\D‚marrage\
    Lancement rapide d'Adobe Reader.lnk - c:\program files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2005-9-23 29696]
    .
    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
    BootExecute REG_MULTI_SZ autocheck autochk /r \??\F:\0autocheck autochk *
    .
    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
    "%windir%\\Network Diagnostic\\xpnetdiag.exe"=
    "%windir%\\system32\\sessmgr.exe"=
    "c:\\Program Files\\adslTV\\adsltv.exe"=
    "f:\\Program Files\\Deep Silver\\Sacred 2 - Fallen Angel\\system\\s2gs.exe"=
    "f:\\Program Files\\Deep Silver\\Sacred 2 - Fallen Angel\\system\\sacred2.exe"=
    "c:\\Program Files\\adslTV\\VLC\\vlc.exe"=
    "c:\\Program Files\\Farming Simulator 2011\\FarmingSimulator2011.exe"=
    "c:\\Program Files\\Farming Simulator 2011\\game.exe"=
    "f:\\Program Files\\BitComet\\BitComet.exe"=
    "c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
    .
    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
    "8556:TCP"= 8556:TCP:BitComet 8556 TCP
    "8556:UDP"= 8556:UDP:BitComet 8556 UDP
    "13632:TCP"= 13632:TCP:BitComet 13632 TCP
    "13632:UDP"= 13632:UDP:BitComet 13632 UDP
    .
    R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [10/04/2011 14:08 218688]
    R2 AntiVirSchedulerService;Avira AntiVir Planificateur;c:\program files\Avira\AntiVir Desktop\sched.exe [20/05/2010 17:29 136360]
    R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [26/03/2011 19:20 366640]
    R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [26/03/2011 19:20 22712]
    S2 AsSysCtrlService;ASUS System Control Service;c:\program files\ASUS\AsSysCtrlService\1.00.00\AsSysCtrlService.exe [26/03/2011 12:41 86016]
    .
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
    UxTuneUp
    .
    Contenu du dossier 'Tâches planifiées'
    .
    2011-05-27 c:\windows\Tasks\Maintenance en 1 clic.job
    - c:\program files\TuneUp Utilities 2007\SystemOptimizer.exe [2007-08-02 17:18]
    .
    .
    ------- Examen supplémentaire -------
    .
    uInternet Connection Wizard,ShellNext = iexplore
    IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
    IE: Tout télécharger avec BitComet - f:\program files\BitComet\BitComet.exe/AddAllLink.htm
    IE: Télécharger avec BitComet - f:\program files\BitComet\BitComet.exe/AddLink.htm
    TCP: DhcpNameServer = 212.27.40.241 212.27.40.240
    FF - ProfilePath - c:\documents and settings\R.J-2067042\Application Data\Mozilla\Firefox\Profiles\0nex63bv.default\
    FF - prefs.js: browser.search.selectedEngine - Google
    FF - prefs.js: browser.startup.homepage - hxxp://en-us.start.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:fr:o fficial
    .
    .
    **************************************************************************
    .
    catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2011-07-05 11:25
    Windows 5.1.2600 Service Pack 3 NTFS
    .
    Recherche de processus cachés ...
    .
    Recherche d'éléments en démarrage automatique cachés ...
    .
    Recherche de fichiers cachés ...
    .
    Scan terminé avec succès
    Fichiers cachés: 0
    .
    **************************************************************************
    .
    --------------------- CLES DE REGISTRE BLOQUEES ---------------------
    .
    [HKEY_USERS\S-1-5-21-1482476501-1958367476-1801674531-1004\Software\SecuROM\License information*]
    "datasecu"=hex:a0,02,a9,38,e9,de,5e,e7,da,30,15,28,61,52,59,ce,a1,dc,62,a9,2c,
    9f,56,c5,ec,4b,ed,49,b4,06,f4,20,f8,86,9f,1c,85,46,92,36,6e,56,35,11,6a,e7,\
    "rkeysecu"=hex:72,ea,8c,b4,7e,0c,8d,ba,92,9e,b0,07,ca,d8,9b,b9
    .
    --------------------- DLLs chargées dans les processus actifs ---------------------
    .
    - - - - - - - > 'winlogon.exe'(776)
    c:\windows\system32\Ati2evxx.dll
    c:\windows\system32\atiadlxx.dll
    .
    - - - - - - - > 'explorer.exe'(3384)
    c:\windows\system32\eappprxy.dll
    c:\windows\system32\WPDShServiceObj.dll
    c:\windows\system32\PortableDeviceTypes.dll
    c:\windows\system32\PortableDeviceApi.dll
    .
    Heure de fin: 2011-07-05 11:26:14
    ComboFix-quarantined-files.txt 2011-07-05 09:26
    .
    Avant-CF: 6 797 287 424 octets libres
    Après-CF: 6 783 033 344 octets libres
    .
    - - End Of File - - 7DF2B13B1C17C224CB4BD52C0A53FC4E


    Merci
    5 Juillet 2011 21:31:58

    Bonsoir


    Télécharge GMER à partir de ce lien : http://www.gmer.net/files.php – clic sur « Download EXE » et télécharge le fichier sur ton bureau.
    Voir le tutorial GMER, ça peut peut-être t’aider : http://www.malekal.com/tutorial_GMER.php

    Désactive tes logiciels de protection (antivirus, antispyware etc) et ferme tous les programmes ouverts.
    Double-clic sur le fichier GMER téléchargé.
    Une fois lancé, fais un clic droit sur le fond blanc (comme ci-dessus) et clic sur « Only Non MS files »
    Clic en bas à droite sur le bouton « Scan » pour lancer le scan.



    Lorsque le scan est terminé, clic sur « Copy »

    Ouvre le bloc-note et clic sur le Menu Edition / Coller
    Le rapport doit alors apparaître.
    Enregistre le fichier sur ton bureau et copie/colle le contenu ici.

    6 Juillet 2011 21:18:33

    Bonsoir,

    Voici le rapport :

    MER 1.0.15.15640 - http://www.gmer.net
    Rootkit scan 2011-07-06 21:17:10
    Windows 5.1.2600 Service Pack 3
    Running: 8cgecd2b.exe; Driver: C:\DOCUME~1\ROMAIN~1.JAC\LOCALS~1\Temp\kwgdqfob.sys


    ---- Modules - GMER 1.0.15 ----

    Module sfhlp02.sys (StarForce Protection Helper Driver/Protection Technology) BA338000-BA340000 (32768 bytes)
    Module sfhlp01.sys (StarForce Protection Helper Driver/Protection Technology) BA5AC000-BA5AE000 (8192 bytes)
    Module sfdrv01.sys (StarForce Protection Environment Driver/Protection Technology) B9E1C000-B9E2D000 (69632 bytes)
    Module prosync1.sys (StarForce Protection Synchronization Driver/Protection Technology) BA5AE000-BA5B0000 (8192 bytes)
    Module prohlp02.sys (StarForce Protection Helper Driver/Protection Technology) B9DF2000-B9E04000 (73728 bytes)
    Module \SystemRoot\system32\DRIVERS\ati2mtag.sys (ATI Radeon WindowsNT Miniport Driver/ATI Technologies Inc.) B8EAC000-B953E000 (6889472 bytes)
    Module \SystemRoot\system32\DRIVERS\HDAudBus.sys (High Definition Audio Bus Driver v1.0a/Windows (R) Server 2003 DDK provider) B8E70000-B8E98000 (163840 bytes)
    Module \SystemRoot\system32\DRIVERS\Rtenicxp.sys (Realtek 10/100/1000 NDIS 5.1 Driver /Realtek Semiconductor Corporation ) B8E30000-B8E4C000 (114688 bytes)
    Module \SystemRoot\system32\DRIVERS\ASACPI.sys BA5E0000-BA5E2000 (8192 bytes)
    Module \SystemRoot\system32\DRIVERS\ptilink.sys (Parallel Technologies DirectParallel IO Library/Parallel Technologies, Inc.) BA4A0000-BA4A5000 (20480 bytes)
    Module \SystemRoot\system32\DRIVERS\dtsoftbus01.sys (DAEMON Tools Virtual Bus Driver/DT Soft Ltd) B8D4C000-B8D87000 (241664 bytes)
    Module \SystemRoot\system32\drivers\AtiHdmi.sys (Ati High Definition Audio Function Driver/ATI Research Inc.) AAB82000-AAB9D000 (110592 bytes)
    Module \SystemRoot\system32\drivers\RtkHDAud.sys (Realtek(r) High Definition Audio Function Driver/Realtek Semiconductor Corp.) AA67C000-AAB5E000 (5120000 bytes)
    Module \SystemRoot\system32\DRIVERS\ssmdrv.sys (AVIRA SnapShot Driver/Avira GmbH) BA410000-BA416000 (24576 bytes)
    Module \SystemRoot\System32\drivers\prodrv06.sys (StarForce Protection Environment Driver/Protection Technology) BA228000-BA236000 (57344 bytes)
    Module \SystemRoot\system32\DRIVERS\avipbb.sys (Avira Driver for Security Enhancement/Avira GmbH) AA3CF000-AA3F5000 (155648 bytes)
    Module \??\C:\Program_Files\Avira\AntiVir_Desktop\avgio.sys (Avira AntiVir Support for Minifilter/Avira GmbH) BA628000-BA62A000 (8192 bytes)
    Module \SystemRoot\system32\drivers\AsIO.sys BA62A000-BA62C000 (8192 bytes)
    Module \SystemRoot\System32\ati2dvag.dll (ATI Radeon WindowsNT Display Driver/ATI Technologies Inc.) BF012000-BF060000 (319488 bytes)
    Module \SystemRoot\System32\ati2cqag.dll (Central Memory Manager / Queue Server Module/ATI Technologies Inc.) BF060000-BF130000 (851968 bytes)
    Module \SystemRoot\System32\atikvmag.dll (Virtual Command And Memory Manager/ATI Technologies Inc.) BF130000-BF1DF000 (716800 bytes)
    Module \SystemRoot\System32\atiok3x2.dll (Ring 0 x2 component/Advanced Micro Devices, Inc.) BF1DF000-BF25C000 (512000 bytes)
    Module \SystemRoot\System32\ati3duag.dll (ati3duag.dll/ATI Technologies Inc. ) BF25C000-BF651000 (4149248 bytes)
    Module \SystemRoot\System32\ativvaxx.dll (Radeon Video Acceleration Universal Driver/Advanced Micro Devices, Inc. ) BF9C6000-BFC55000 (2682880 bytes)
    Module \SystemRoot\System32\ATMFD.DLL (Windows NT OpenType/Type 1 Font Driver/Adobe Systems Incorporated) BF651000-BF698000 (290816 bytes)
    Module \SystemRoot\system32\DRIVERS\avgntflt.sys (Avira Minifilter Driver/Avira GmbH) A7805000-A781A000 (86016 bytes)
    Module \??\C:\WINDOWS\system32\drivers\mbam.sys (Malwarebytes' Anti-Malware/Malwarebytes Corporation) A7876000-A787A000 (16384 bytes)
    Module \SystemRoot\system32\DRIVERS\atksgt.sys A7000000-A7043000 (274432 bytes)
    Module \SystemRoot\system32\DRIVERS\lirsgt.sys BA460000-BA465000 (20480 bytes)
    Module \??\C:\DOCUME~1\ROMAIN~1.JAC\LOCALS~1\Temp\kwgdqfob.sys (GMER) A6792000-A67AB000 (102400 bytes)

    ---- Processes - GMER 1.0.15 ----

    Process C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Catalyst Control Center: Monitoring program/Advanced Micro Devices Inc.) 120
    Library C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Catalyst Control Center: Monitoring program/Advanced Micro Devices Inc.) 0x00400000
    Library C:\WINDOWS\assembly\GAC_MSIL\MOM.Implementation\2.0.3198.30497__90ba9c70f846762e\MOM.Implementation.dll (MOM Implementation/Advanced Micro Devices Inc.) 0x61600000
    Library C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation\2.0.3156.17681__90ba9c70f846762e\LOG.Foundation.dll (LOG Foundation Static/Advanced Micro Devices Inc.) 0x60C00000
    Library C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3156.17689__90ba9c70f846762e\LOG.Foundation.Private.dll (LOG Foundation Dynamic/Advanced Micro Devices Inc.) 0x61200000
    Library C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3198.30494__90ba9c70f846762e\LOG.Foundation.Implementation.dll (LOG Foundation Implementation/Advanced Micro Devices Inc.) 0x60E00000
    Library C:\WINDOWS\assembly\GAC_MSIL\MOM.Foundation\2.0.3156.17699__90ba9c70f846762e\MOM.Foundation.dll (MOM Foundation/Advanced Micro Devices Inc.) 0x61400000
    Library C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3156.17702__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll (LOG Foundation Implementation Private SDK/Advanced Micro Devices Inc.) 0x61000000
    Library C:\WINDOWS\assembly\GAC_MSIL\CCC.Implementation\2.0.3198.30496__90ba9c70f846762e\CCC.Implementation.dll (CCC Application Implementation/Advanced Micro Devices Inc.) 0x51400000
    Library C:\WINDOWS\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.3156.17682__90ba9c70f846762e\NEWAEM.Foundation.dll (AEM Foundation/Advanced Micro Devices Inc.) 0x61A00000

    Process C:\WINDOWS\RTHDCPL.EXE (Realtek HD Audio Control Panel/Realtek Semiconductor Corp.) 136
    Library C:\WINDOWS\RTHDCPL.EXE (Realtek HD Audio Control Panel/Realtek Semiconductor Corp.) 0x00400000

    Process C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes' Anti-Malware/Malwarebytes Corporation) 152
    Library C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes' Anti-Malware/Malwarebytes Corporation) 0x00400000
    Library C:\Program Files\Malwarebytes' Anti-Malware\mbam.dll (Malwarebytes' Anti-Malware/Malwarebytes Corporation) 0x10000000
    Library C:\Program Files\Malwarebytes' Anti-Malware\mbamnet.dll (Malwarebytes' Anti-Malware/Malwarebytes Corporation) 0x00960000

    Process F:\Program Files\DAEMON Tools Lite\DTLite.exe (DAEMON Tools Lite/DT Soft Ltd) 172
    Library F:\Program Files\DAEMON Tools Lite\DTLite.exe (DAEMON Tools Lite/DT Soft Ltd) 0x00400000
    Library F:\Program Files\DAEMON Tools Lite\DTCommonRes.dll (DAEMON Tools Common resources/DT Soft Ltd) 0x10000000
    Library F:\Program Files\DAEMON Tools Lite\Engine.dll (Helper library/DT Soft Ltd) 0x00B00000
    Library F:\Program Files\DAEMON Tools Lite\ImgEngine.dll (Image engine library/DT Soft Ltd.) 0x01110000

    Process C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe (Adobe Acrobat SpeedLauncher/Adobe Systems Incorporated) 280
    Library C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe (Adobe Acrobat SpeedLauncher/Adobe Systems Incorporated) 0x00400000

    Process C:\Program Files\Avira\AntiVir Desktop\avshadow.exe (AntiVir shadow copy service/Avira GmbH) 620
    Library C:\Program Files\Avira\AntiVir Desktop\avshadow.exe (AntiVir shadow copy service/Avira GmbH) 0x00400000
    Library C:\Program Files\Avira\AntiVir Desktop\avipc.dll (AVIRA IPC Library/Avira GmbH) 0x10000000

    Process C:\WINDOWS\system32\winlogon.exe (Application d'ouverture de session Windows NT/Microsoft Corporation) 776
    Library C:\WINDOWS\system32\Ati2evxx.dll (ATI External Event Utility DLL Module/ATI Technologies Inc.) 0x10000000
    Library C:\WINDOWS\system32\atiadlxx.dll (ADL/Advanced Micro Devices, Inc.) 0x01ED0000

    Process C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe (Catalyst Control Centre: Host application/ATI Technologies Inc.) 900
    Library C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe (Catalyst Control Centre: Host application/ATI Technologies Inc.) 0x00400000
    Library C:\WINDOWS\assembly\GAC_MSIL\CCC.Implementation\2.0.3198.30496__90ba9c70f846762e\CCC.Implementation.dll (CCC Application Implementation/Advanced Micro Devices Inc.) 0x51400000
    Library C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation\2.0.3156.17681__90ba9c70f846762e\LOG.Foundation.dll (LOG Foundation Static/Advanced Micro Devices Inc.) 0x60C00000
    Library C:\WINDOWS\assembly\GAC_MSIL\MOM.Foundation\2.0.3156.17699__90ba9c70f846762e\MOM.Foundation.dll (MOM Foundation/Advanced Micro Devices Inc.) 0x61400000
    Library C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation\2.0.3156.17682__90ba9c70f846762e\CLI.Foundation.dll (CLI Foundation/Advanced Micro Devices Inc.) 0x5FA00000
    Library C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3156.17702__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll (LOG Foundation Implementation Private SDK/Advanced Micro Devices Inc.) 0x61000000
    Library C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3198.30494__90ba9c70f846762e\LOG.Foundation.Implementation.dll (LOG Foundation Implementation/Advanced Micro Devices Inc.) 0x60E00000
    Library C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3156.17689__90ba9c70f846762e\LOG.Foundation.Private.dll (LOG Foundation Dynamic/Advanced Micro Devices Inc.) 0x61200000
    Library C:\WINDOWS\assembly\GAC_MSIL\MOM.Implementation\2.0.3198.30497__90ba9c70f846762e\MOM.Implementation.dll (MOM Implementation/Advanced Micro Devices Inc.) 0x61600000
    Library C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.SkinFactory\2.0.3198.30340__90ba9c70f846762e\CLI.Component.SkinFactory.dll (SkinFactory/Advanced Micro Devices Inc.) 0x5F000000
    Library C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.3156.17747__90ba9c70f846762e\CLI.Foundation.XManifest.dll (CLI Foundation XManifest/Advanced Micro Devices Inc.) 0x5FE00000
    Library C:\WINDOWS\assembly\GAC_MSIL\LOCALIZATION.Foundation.Private\2.0.3156.17686__90ba9c70f846762e\LOCALIZATION.Foundation.Private.dll (Private Foundation for Localization framework/Advanced Micro Devices, Inc.) 0x64400000
    Library C:\WINDOWS\assembly\GAC_MSIL\AxInterop.WBOCXLib\1.0.0.0__90ba9c70f846762e\AxInterop.WBOCXLib.dll 0x039F0000
    Library C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.3198.30338__90ba9c70f846762e\CLI.Component.Runtime.dll (Runtime Component/Advanced Micro Devices, Inc.) 0x5EC00000
    Library C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.3156.17698__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll (Runtime Shared Private/Advanced Micro Devices Inc.) 0x5EE00000
    Library C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.3156.17686__90ba9c70f846762e\CLI.Foundation.Private.dll (CLI Foundation Private/Advanced Micro Devices Inc.) 0x5FC00000
    Library C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.3156.17694__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll (Runtime Shared/Advanced Micro Devices Inc.) 0x64600000
    Library C:\WINDOWS\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll (CCCCom/Advanced Micro Devices Inc.) 0x50E00000
    Library C:\WINDOWS\assembly\GAC_MSIL\AEM.Server\2.0.3198.30336__90ba9c70f846762e\AEM.Server.dll (AEM Server/Advanced Micro Devices Inc.) 0x50400000
    Library C:\WINDOWS\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.3156.17682__90ba9c70f846762e\NEWAEM.Foundation.dll (AEM Foundation/Advanced Micro Devices Inc.) 0x61A00000
    Library C:\WINDOWS\system32\atiadlxx.dll (ADL/Advanced Micro Devices, Inc.) 0x10000000
    Library C:\Program Files\ATI Technologies\ATI.ACE\Core-Implementation\32\wbocx.ocx (WindowBlinds : DirectSkin /Stardock Corporation) 0x63000000
    Library C:\WINDOWS\assembly\GAC\Interop.WBOCXLib\1.0.0.0__90ba9c70f846762e\Interop.WBOCXLib.dll ( / ) 0x03C60000
    Library C:\WINDOWS\assembly\GAC_MSIL\AEM.Server.Shared\2.0.3156.17695__90ba9c70f846762e\AEM.Server.Shared.dll (AEM Server Shared/Advanced Micro Devices Inc.) 0x50600000
    Library C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.3198.30523__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll (AEM Event Sources Kit/Advanced Micro Devices Inc.) 0x64000000
    Library C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.3156.17721__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll (DPPE Shared/Advanced Micro Devices Inc.) 0x63600000
    Library C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.3156.17694__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll (HK Shared/Advanced Micro Devices Inc.) 0x03E00000
    Library C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.WinMessages.Shared\2.0.3156.17698__90ba9c70f846762e\AEM.Plugin.WinMessages.Shared.dll (WinMessages Shared/Advanced Micro Devices Inc.) 0x03F20000
    Library C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0.2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll (DEM Graphics I0601/ATI Technologies Inc.) 0x60600000
    Library C:\WINDOWS\assembly\GAC_MSIL\DEM.Foundation\2.0.2573.17684__90ba9c70f846762e\DEM.Foundation.dll (DEM Foundation/ATI Technologies Inc.) 0x60200000
    Library C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics\2.0.3156.17703__90ba9c70f846762e\DEM.Graphics.dll (DEM Graphics/Advanced Micro Devices Inc.) 0x60400000
    Library C:\WINDOWS\system32\ATIDEMGX.dll (Graphics DEM/Advanced Micro Devices, Inc.) 0x51000000
    Library C:\WINDOWS\assembly\GAC_MSIL\LOCALIZATION.Foundation.Implementation\2.0.3198.30537__90ba9c70f846762e\LOCALIZATION.Foundation.Implementation.dll (Private Foundation Implementation for Localization framework/Advanced Micro Devices, Inc.) 0x64200000
    Library C:\Program Files\ATI Technologies\ATI.ACE\Core-Implementation\32\wbhelp2.dll (WindowBlinds Helper DLL/Stardock.Net, Inc) 0x04140000
    Library C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.3198.30341__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll (Runtime Graphics Caste/Advanced Mirco Devices, Inc.) 0x5C400000
    Library C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.3156.17695__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll (Shared Graphics Caste/Advanced Mirco Devices, Inc.) 0x5C800000
    Library C:\WINDOWS\assembly\GAC_MSIL\ACE.Graphics.DisplaysManager.Shared\2.0.2573.17685__90ba9c70f846762e\ACE.Graphics.DisplaysManager.Shared.dll (ACE Graphics DisplaysManager Shared/ATI Technologies Inc.) 0x50000000
    Library C:\WINDOWS\assembly\GAC_MSIL\DEM.OS.I0602\2.0.3156.17703__90ba9c70f846762e\DEM.OS.I0602.dll (DEM.OS.I0602/Advanced Micro Devices Inc.) 0x60A00000
    Library C:\WINDOWS\assembly\GAC_MSIL\DEM.OS\2.0.3156.17703__90ba9c70f846762e\DEM.OS.dll (DEM OS/Advanced Micro Devices Inc.) 0x60800000
    Library C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0709.dll (DEM.Graphics.I0709/Advanced Micro Devices, Inc.) 0x04910000
    Library C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.3156.17722__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll (GD source plugin shared/Advanced Micro Devices Inc.) 0x04940000
    Library C:\WINDOWS\assembly\GAC_MSIL\ATIDEMOS\2.0.3198.30339__90ba9c70f846762e\ATIDEMOS.dll (OS DEM/Advanced Micro Devices, Inc.) 0x51200000
    Library C:\WINDOWS\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.3156.17689__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll (AEM Actions Shared/Advanced Micro Devices Inc.) 0x63400000
    Library C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Systemtray\2.0.3198.30487__90ba9c70f846762e\CLI.Component.Systemtray.dll (SystemTray Component/Advanced Micro Devices Inc.) 0x5F200000
    Library C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.3156.17692__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll (Client Shared Private/Advanced Micro Devices, Inc.) 0x5D200000
    Library C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.3198.30358__90ba9c70f846762e\CLI.Component.Wizard.dll (Wizard Component/Advanced Micro Devices, Inc.) 0x5F400000
    Library C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.3156.17689__90ba9c70f846762e\CLI.Component.Client.Shared.dll (Client Shared/Advanced Micro Devices Inc.) 0x5D000000
    Library C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.3156.17697__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll (Wizard Component Shared Types/Advanced Micro Devices Inc.) 0x5F600000
    Library C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.3156.17698__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll (Wizard Component Shared Private Types/Advanced Micro Devices Inc.) 0x5F800000
    Library C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.3198.30346__90ba9c70f846762e\CLI.Component.Dashboard.dll (Dashboard Component/Advanced Micro Devices, Inc.) 0x04C20000
    Library C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared\2.0.3156.17695__90ba9c70f846762e\CLI.Component.Dashboard.Shared.dll (Dashboard Component Shared Types/Advanced Micro Devices Inc.) 0x5DE00000
    Library C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.3156.17702__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll (Dashboard Component Shared Private Types/Advanced Micro Devices Inc.) 0x5E000000

    Process C:\WINDOWS\system32\Ati2evxx.exe (ATI External Event Utility EXE Module/ATI Technologies Inc.) 1084
    Library C:\WINDOWS\system32\Ati2evxx.exe (ATI External Event Utility EXE Module/ATI Technologies Inc.) 0x00400000
    Library C:\WINDOWS\system32\Ati2edxx.dll (ati2edxx/ATI Technologies, Inc.) 0x003C0000
    Library C:\WINDOWS\system32\atipdlxx.dll (ATI Desktop CWDDEDI DLL/ATI Technologies, Inc.) 0x10000000

    Process C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Antivirus On-Access Service/Avira GmbH) 1468
    Library C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Antivirus On-Access Service/Avira GmbH) 0x00400000
    Library C:\Program Files\Avira\AntiVir Desktop\libdb44.dll (Berkeley DB 4.4 DLL/Sleepycat Software) 0x13000000
    Library C:\Program Files\Avira\AntiVir Desktop\AVEvtLog.dll (Event Logger/Avira GmbH) 0x10000000
    Library C:\Program Files\Avira\AntiVir Desktop\guardmsg.dll (AVGuard Messages (Deutsch)/Avira GmbH) 0x00D40000
    Library C:\Program Files\Avira\AntiVir Desktop\cfglib.dll (Antivirus configuration library/Avira GmbH) 0x00D50000
    Library C:\Program Files\Avira\AntiVir Desktop\sqlite3.dll 0x00D70000
    Library C:\Program Files\Avira\AntiVir Desktop\AVPREF.DLL (Prefix DLL/Avira GmbH) 0x00EE0000
    Library C:\Program Files\Avira\AntiVir Desktop\avsmtp.dll (Antivirus email sender library/Avira GmbH) 0x00F00000
    Library C:\Program Files\Avira\AntiVir Desktop\AVGIO.DLL (On-access scan support/Avira GmbH) 0x00FE0000
    Library C:\Program Files\Avira\AntiVir Desktop\aecore.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01110000
    Library C:\Program Files\Avira\AntiVir Desktop\aevdf.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01160000
    Library C:\Program Files\Avira\AntiVir Desktop\aescript.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01190000
    Library C:\Program Files\Avira\AntiVir Desktop\aescn.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01330000
    Library C:\Program Files\Avira\AntiVir Desktop\aesbx.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01360000
    Library C:\Program Files\Avira\AntiVir Desktop\aerdl.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x013D0000
    Library C:\Program Files\Avira\AntiVir Desktop\aepack.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01480000
    Library C:\Program Files\Avira\AntiVir Desktop\unacev2.dll (UNACE Dynamic Link Library/ACE Compression Software) 0x01520000
    Library C:\Program Files\Avira\AntiVir Desktop\aeoffice.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01580000
    Library C:\Program Files\Avira\AntiVir Desktop\aeheur.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x015D0000
    Library C:\Program Files\Avira\AntiVir Desktop\aehelp.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01950000
    Library C:\Program Files\Avira\AntiVir Desktop\aegen.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01BA0000
    Library C:\Program Files\Avira\AntiVir Desktop\aeemu.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01C20000
    Library C:\Program Files\Avira\AntiVir Desktop\aebb.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01CA0000
    Library C:\Program Files\Avira\AntiVir Desktop\avipc.dll (AVIRA IPC Library/Avira GmbH) 0x01D80000

    Process C:\Program Files\ASUS\AsSysCtrlService\1.00.00\AsSysCtrlService.exe 1476
    Library C:\Program Files\ASUS\AsSysCtrlService\1.00.00\AsSysCtrlService.exe 0x00400000

    Process C:\WINDOWS\system32\Ati2evxx.exe (ATI External Event Utility EXE Module/ATI Technologies Inc.) 1480
    Library C:\WINDOWS\system32\Ati2evxx.exe (ATI External Event Utility EXE Module/ATI Technologies Inc.) 0x00400000
    Library C:\WINDOWS\system32\Ati2edxx.dll (ati2edxx/ATI Technologies, Inc.) 0x003C0000
    Library C:\WINDOWS\system32\atipdlxx.dll (ATI Desktop CWDDEDI DLL/ATI Technologies, Inc.) 0x10000000
    Library C:\WINDOWS\system32\ati2evxx.dll (ATI External Event Utility DLL Module/ATI Technologies Inc.) 0x00C90000
    Library C:\WINDOWS\system32\atiadlxx.dll (ADL/Advanced Micro Devices, Inc.) 0x00CC0000

    Process C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes' Anti-Malware/Malwarebytes Corporation) 1544
    Library C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes' Anti-Malware/Malwarebytes Corporation) 0x00400000
    Library C:\Program Files\Malwarebytes' Anti-Malware\mbam.dll (Malwarebytes' Anti-Malware/Malwarebytes Corporation) 0x10000000
    Library C:\Program Files\Malwarebytes' Anti-Malware\mbamnet.dll (Malwarebytes' Anti-Malware/Malwarebytes Corporation) 0x00460000

    Process C:\WINDOWS\system32\spoolsv.exe (Spooler SubSystem App/Microsoft Corporation) 1728
    Library C:\WINDOWS\system32\E_FLBFDE.DLL (EPSON Bi-directional Monitor x86/SEIKO EPSON CORPORATION) 0x00980000
    Library C:\WINDOWS\System32\spool\PRTPROCS\W32X86\filterpipelineprintproc.dll (Print Filter Pipeline Proxy/Microsoft Corporation) 0x3F420000

    Process C:\Program Files\Avira\AntiVir Desktop\sched.exe (Antivirus Scheduler/Avira GmbH) 1788
    Library C:\Program Files\Avira\AntiVir Desktop\sched.exe (Antivirus Scheduler/Avira GmbH) 0x00400000
    Library C:\Program Files\Avira\AntiVir Desktop\schedr.dll (avschdr Dynamic Link Library/Avira GmbH) 0x10000000
    Library C:\Program Files\Avira\AntiVir Desktop\avevtlog.dll (Event Logger/Avira GmbH) 0x00BD0000
    Library C:\Program Files\Avira\AntiVir Desktop\cfglib.dll (Antivirus configuration library/Avira GmbH) 0x00D30000
    Library C:\Program Files\Avira\AntiVir Desktop\sqlite3.dll 0x00D50000

    Process C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Antivirus System Tray Tool/Avira GmbH) 2044
    Library C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Antivirus System Tray Tool/Avira GmbH) 0x00400000
    Library C:\Program Files\Avira\AntiVir Desktop\ccwkrlib.dll (Antivirus Control Center Common Worker Library/Avira GmbH) 0x10000000
    Library c:\program files\avira\antivir desktop\cfglib.dll (Antivirus configuration library/Avira GmbH) 0x003E0000
    Library c:\program files\avira\antivir desktop\ccgen.dll (Control Center General Plugin/Avira GmbH) 0x00B10000
    Library c:\program files\avira\antivir desktop\ccgenrc.dll (Control Center General Plugin Resources/Avira GmbH) 0x00C10000
    Library c:\program files\avira\antivir desktop\ccguard.dll (Control Center Guard Plugin/Avira GmbH) 0x00E20000
    Library c:\program files\avira\antivir desktop\ccgrdrc.dll (Control Center Guard Plugin Resources/Avira GmbH) 0x00EB0000
    Library c:\program files\avira\antivir desktop\ccgrdw.dll (Control Center Guard Worker Plugin/Avira GmbH) 0x00EC0000
    Library C:\Program Files\Avira\AntiVir Desktop\avipc.dll (AVIRA IPC Library/Avira GmbH) 0x00EF0000
    Library c:\program files\avira\antivir desktop\ccupdate.dll (Control Center Updater Plugin/Avira GmbH) 0x00F20000
    Library c:\program files\avira\antivir desktop\ccupdrc.dll (Control Center Updater Plugin Resources/Avira GmbH) 0x00F90000
    Library c:\program files\avira\antivir desktop\cclic.dll (Control Center License Plugin/Avira GmbH) 0x011C0000
    Library c:\program files\avira\antivir desktop\cclicrc.dll (Control Center License Plugin Resources/Avira GmbH) 0x01200000
    Library c:\program files\avira\antivir desktop\ccmsg.dll (Control Center Message Plugin/Avira GmbH) 0x01210000
    Library c:\program files\avira\antivir desktop\ccmsgrc.dll (Control Center MSG Plugin Resources/Avira GmbH) 0x01280000
    Library C:\Program Files\Avira\AntiVir Desktop\rcimage.dll (Avira AntiVir PersonalEdition Classic Master Resource File (English)/Avira GmbH) 0x015A0000
    Library c:\program files\avira\antivir desktop\ccmainrc.dll (Control Center Resources/Avira GmbH) 0x01980000

    Process C:\Documents and Settings\Romain.JACQUET-2067042\Bureau\8cgecd2b.exe 4040
    Library C:\Documents and Settings\Romain.JACQUET-2067042\Bureau\8cgecd2b.exe 0x00400000

    ---- Services - GMER 1.0.15 ----

    Service C:\Program Files\Avira\AntiVir Desktop\sched.exe (Antivirus Scheduler/Avira GmbH) [AUTO] AntiVirSchedulerService
    Service C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Antivirus On-Access Service/Avira GmbH) [AUTO] AntiVirService
    Service C:\WINDOWS\system32\drivers\AsIO.sys [SYSTEM] AsIO
    Service C:\Program Files\ASUS\AsSysCtrlService\1.00.00\AsSysCtrlService.exe [AUTO] AsSysCtrlService
    Service C:\WINDOWS\system32\Ati2evxx.exe (ATI External Event Utility EXE Module/ATI Technologies Inc.) [AUTO] Ati HotKey Poller
    Service C:\WINDOWS\system32\ati2sgag.exe [AUTO] ATI Smart
    Service C:\WINDOWS\system32\DRIVERS\ati2mtag.sys (ATI Radeon WindowsNT Miniport Driver/ATI Technologies Inc.) [MANUAL] ati2mtag
    Service Atierecord
    Service C:\WINDOWS\system32\drivers\AtiHdmi.sys (Ati High Definition Audio Function Driver/ATI Research Inc.) [MANUAL] AtiHdmiService
    Service C:\WINDOWS\system32\DRIVERS\atksgt.sys [AUTO] atksgt
    Service C:\Program Files\Avira\AntiVir Desktop\avgio.sys (Avira AntiVir Support for Minifilter/Avira GmbH) [SYSTEM] avgio
    Service C:\WINDOWS\system32\DRIVERS\avgntflt.sys (Avira Minifilter Driver/Avira GmbH) [AUTO] avgntflt
    Service C:\WINDOWS\system32\DRIVERS\avipbb.sys (Avira Driver for Security Enhancement/Avira GmbH) [SYSTEM] avipbb
    Service C:\DOCUME~1\ROMAIN~1.JAC\LOCALS~1\Temp\catchme.sys [MANUAL] catchme
    Service C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys (DAEMON Tools Virtual Bus Driver/DT Soft Ltd) [SYSTEM] dtsoftbus01
    Service C:\WINDOWS\system32\DRIVERS\HDAudBus.sys (High Definition Audio Bus Driver v1.0a/Windows (R) Server 2003 DDK provider) [MANUAL] HDAudBus
    Service C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek(r) High Definition Audio Function Driver/Realtek Semiconductor Corp.) [MANUAL] IntcAzAudAddService
    Service C:\WINDOWS\system32\DRIVERS\lirsgt.sys [AUTO] lirsgt
    Service C:\WINDOWS\system32\drivers\mbam.sys (Malwarebytes' Anti-Malware/Malwarebytes Corporation) [MANUAL] MBAMProtector
    Service C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes' Anti-Malware/Malwarebytes Corporation) [AUTO] MBAMService
    Service MSDTC Bridge 3.0.0.0
    Service C:\WINDOWS\system32\DRIVERS\ASACPI.sys [MANUAL] MTsensor
    Service Outlook
    Service C:\WINDOWS\System32\drivers\prodrv06.sys (StarForce Protection Environment Driver/Protection Technology) [SYSTEM] prodrv06
    Service C:\WINDOWS\System32\drivers\prohlp02.sys (StarForce Protection Helper Driver/Protection Technology) [BOOT] prohlp02
    Service C:\WINDOWS\System32\drivers\prosync1.sys (StarForce Protection Synchronization Driver/Protection Technology) [BOOT] prosync1
    Service C:\WINDOWS\system32\DRIVERS\ptilink.sys (Parallel Technologies DirectParallel IO Library/Parallel Technologies, Inc.) [MANUAL] Ptilink
    Service C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys (Realtek 10/100/1000 NDIS 5.1 Driver /Realtek Semiconductor Corporation ) [MANUAL] RTLE8023xp
    Service C:\WINDOWS\system32\DRIVERS\secdrv.sys (Macrovision SECURITY Driver/Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [MANUAL] Secdrv
    Service ServiceModelEndpoint 3.0.0.0
    Service ServiceModelOperation 3.0.0.0
    Service ServiceModelService 3.0.0.0
    Service C:\WINDOWS\System32\drivers\sfdrv01.sys (StarForce Protection Environment Driver/Protection Technology) [BOOT] sfdrv01
    Service C:\WINDOWS\System32\drivers\sfhlp01.sys (StarForce Protection Helper Driver/Protection Technology) [BOOT] sfhlp01
    Service C:\WINDOWS\System32\drivers\sfhlp02.sys (StarForce Protection Helper Driver/Protection Technology) [BOOT] sfhlp02
    Service SMSvcHost 3.0.0.0
    Service C:\WINDOWS\system32\DRIVERS\ssmdrv.sys (AVIRA SnapShot Driver/Avira GmbH) [SYSTEM] ssmdrv
    Service [MANUAL] TlntSvr
    Service Windows Workflow Foundation 3.0.0.0

    ---- EOF - GMER 1.0.15 ----
    6 Juillet 2011 21:23:22

    Bonsoir,

    Voici le rapport :

    MER 1.0.15.15640 - http://www.gmer.net
    Rootkit scan 2011-07-06 21:17:10
    Windows 5.1.2600 Service Pack 3
    Running: 8cgecd2b.exe; Driver: C:\DOCUME~1\ROMAIN~1.JAC\LOCALS~1\Temp\kwgdqfob.sys


    ---- Modules - GMER 1.0.15 ----

    Module sfhlp02.sys (StarForce Protection Helper Driver/Protection Technology) BA338000-BA340000 (32768 bytes)
    Module sfhlp01.sys (StarForce Protection Helper Driver/Protection Technology) BA5AC000-BA5AE000 (8192 bytes)
    Module sfdrv01.sys (StarForce Protection Environment Driver/Protection Technology) B9E1C000-B9E2D000 (69632 bytes)
    Module prosync1.sys (StarForce Protection Synchronization Driver/Protection Technology) BA5AE000-BA5B0000 (8192 bytes)
    Module prohlp02.sys (StarForce Protection Helper Driver/Protection Technology) B9DF2000-B9E04000 (73728 bytes)
    Module \SystemRoot\system32\DRIVERS\ati2mtag.sys (ATI Radeon WindowsNT Miniport Driver/ATI Technologies Inc.) B8EAC000-B953E000 (6889472 bytes)
    Module \SystemRoot\system32\DRIVERS\HDAudBus.sys (High Definition Audio Bus Driver v1.0a/Windows (R) Server 2003 DDK provider) B8E70000-B8E98000 (163840 bytes)
    Module \SystemRoot\system32\DRIVERS\Rtenicxp.sys (Realtek 10/100/1000 NDIS 5.1 Driver /Realtek Semiconductor Corporation ) B8E30000-B8E4C000 (114688 bytes)
    Module \SystemRoot\system32\DRIVERS\ASACPI.sys BA5E0000-BA5E2000 (8192 bytes)
    Module \SystemRoot\system32\DRIVERS\ptilink.sys (Parallel Technologies DirectParallel IO Library/Parallel Technologies, Inc.) BA4A0000-BA4A5000 (20480 bytes)
    Module \SystemRoot\system32\DRIVERS\dtsoftbus01.sys (DAEMON Tools Virtual Bus Driver/DT Soft Ltd) B8D4C000-B8D87000 (241664 bytes)
    Module \SystemRoot\system32\drivers\AtiHdmi.sys (Ati High Definition Audio Function Driver/ATI Research Inc.) AAB82000-AAB9D000 (110592 bytes)
    Module \SystemRoot\system32\drivers\RtkHDAud.sys (Realtek(r) High Definition Audio Function Driver/Realtek Semiconductor Corp.) AA67C000-AAB5E000 (5120000 bytes)
    Module \SystemRoot\system32\DRIVERS\ssmdrv.sys (AVIRA SnapShot Driver/Avira GmbH) BA410000-BA416000 (24576 bytes)
    Module \SystemRoot\System32\drivers\prodrv06.sys (StarForce Protection Environment Driver/Protection Technology) BA228000-BA236000 (57344 bytes)
    Module \SystemRoot\system32\DRIVERS\avipbb.sys (Avira Driver for Security Enhancement/Avira GmbH) AA3CF000-AA3F5000 (155648 bytes)
    Module \??\C:\Program_Files\Avira\AntiVir_Desktop\avgio.sys (Avira AntiVir Support for Minifilter/Avira GmbH) BA628000-BA62A000 (8192 bytes)
    Module \SystemRoot\system32\drivers\AsIO.sys BA62A000-BA62C000 (8192 bytes)
    Module \SystemRoot\System32\ati2dvag.dll (ATI Radeon WindowsNT Display Driver/ATI Technologies Inc.) BF012000-BF060000 (319488 bytes)
    Module \SystemRoot\System32\ati2cqag.dll (Central Memory Manager / Queue Server Module/ATI Technologies Inc.) BF060000-BF130000 (851968 bytes)
    Module \SystemRoot\System32\atikvmag.dll (Virtual Command And Memory Manager/ATI Technologies Inc.) BF130000-BF1DF000 (716800 bytes)
    Module \SystemRoot\System32\atiok3x2.dll (Ring 0 x2 component/Advanced Micro Devices, Inc.) BF1DF000-BF25C000 (512000 bytes)
    Module \SystemRoot\System32\ati3duag.dll (ati3duag.dll/ATI Technologies Inc. ) BF25C000-BF651000 (4149248 bytes)
    Module \SystemRoot\System32\ativvaxx.dll (Radeon Video Acceleration Universal Driver/Advanced Micro Devices, Inc. ) BF9C6000-BFC55000 (2682880 bytes)
    Module \SystemRoot\System32\ATMFD.DLL (Windows NT OpenType/Type 1 Font Driver/Adobe Systems Incorporated) BF651000-BF698000 (290816 bytes)
    Module \SystemRoot\system32\DRIVERS\avgntflt.sys (Avira Minifilter Driver/Avira GmbH) A7805000-A781A000 (86016 bytes)
    Module \??\C:\WINDOWS\system32\drivers\mbam.sys (Malwarebytes' Anti-Malware/Malwarebytes Corporation) A7876000-A787A000 (16384 bytes)
    Module \SystemRoot\system32\DRIVERS\atksgt.sys A7000000-A7043000 (274432 bytes)
    Module \SystemRoot\system32\DRIVERS\lirsgt.sys BA460000-BA465000 (20480 bytes)
    Module \??\C:\DOCUME~1\ROMAIN~1.JAC\LOCALS~1\Temp\kwgdqfob.sys (GMER) A6792000-A67AB000 (102400 bytes)

    ---- Processes - GMER 1.0.15 ----

    Process C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Catalyst Control Center: Monitoring program/Advanced Micro Devices Inc.) 120
    Library C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Catalyst Control Center: Monitoring program/Advanced Micro Devices Inc.) 0x00400000
    Library C:\WINDOWS\assembly\GAC_MSIL\MOM.Implementation\2.0.3198.30497__90ba9c70f846762e\MOM.Implementation.dll (MOM Implementation/Advanced Micro Devices Inc.) 0x61600000
    Library C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation\2.0.3156.17681__90ba9c70f846762e\LOG.Foundation.dll (LOG Foundation Static/Advanced Micro Devices Inc.) 0x60C00000
    Library C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3156.17689__90ba9c70f846762e\LOG.Foundation.Private.dll (LOG Foundation Dynamic/Advanced Micro Devices Inc.) 0x61200000
    Library C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3198.30494__90ba9c70f846762e\LOG.Foundation.Implementation.dll (LOG Foundation Implementation/Advanced Micro Devices Inc.) 0x60E00000
    Library C:\WINDOWS\assembly\GAC_MSIL\MOM.Foundation\2.0.3156.17699__90ba9c70f846762e\MOM.Foundation.dll (MOM Foundation/Advanced Micro Devices Inc.) 0x61400000
    Library C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3156.17702__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll (LOG Foundation Implementation Private SDK/Advanced Micro Devices Inc.) 0x61000000
    Library C:\WINDOWS\assembly\GAC_MSIL\CCC.Implementation\2.0.3198.30496__90ba9c70f846762e\CCC.Implementation.dll (CCC Application Implementation/Advanced Micro Devices Inc.) 0x51400000
    Library C:\WINDOWS\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.3156.17682__90ba9c70f846762e\NEWAEM.Foundation.dll (AEM Foundation/Advanced Micro Devices Inc.) 0x61A00000

    Process C:\WINDOWS\RTHDCPL.EXE (Realtek HD Audio Control Panel/Realtek Semiconductor Corp.) 136
    Library C:\WINDOWS\RTHDCPL.EXE (Realtek HD Audio Control Panel/Realtek Semiconductor Corp.) 0x00400000

    Process C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes' Anti-Malware/Malwarebytes Corporation) 152
    Library C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes' Anti-Malware/Malwarebytes Corporation) 0x00400000
    Library C:\Program Files\Malwarebytes' Anti-Malware\mbam.dll (Malwarebytes' Anti-Malware/Malwarebytes Corporation) 0x10000000
    Library C:\Program Files\Malwarebytes' Anti-Malware\mbamnet.dll (Malwarebytes' Anti-Malware/Malwarebytes Corporation) 0x00960000

    Process F:\Program Files\DAEMON Tools Lite\DTLite.exe (DAEMON Tools Lite/DT Soft Ltd) 172
    Library F:\Program Files\DAEMON Tools Lite\DTLite.exe (DAEMON Tools Lite/DT Soft Ltd) 0x00400000
    Library F:\Program Files\DAEMON Tools Lite\DTCommonRes.dll (DAEMON Tools Common resources/DT Soft Ltd) 0x10000000
    Library F:\Program Files\DAEMON Tools Lite\Engine.dll (Helper library/DT Soft Ltd) 0x00B00000
    Library F:\Program Files\DAEMON Tools Lite\ImgEngine.dll (Image engine library/DT Soft Ltd.) 0x01110000

    Process C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe (Adobe Acrobat SpeedLauncher/Adobe Systems Incorporated) 280
    Library C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe (Adobe Acrobat SpeedLauncher/Adobe Systems Incorporated) 0x00400000

    Process C:\Program Files\Avira\AntiVir Desktop\avshadow.exe (AntiVir shadow copy service/Avira GmbH) 620
    Library C:\Program Files\Avira\AntiVir Desktop\avshadow.exe (AntiVir shadow copy service/Avira GmbH) 0x00400000
    Library C:\Program Files\Avira\AntiVir Desktop\avipc.dll (AVIRA IPC Library/Avira GmbH) 0x10000000

    Process C:\WINDOWS\system32\winlogon.exe (Application d'ouverture de session Windows NT/Microsoft Corporation) 776
    Library C:\WINDOWS\system32\Ati2evxx.dll (ATI External Event Utility DLL Module/ATI Technologies Inc.) 0x10000000
    Library C:\WINDOWS\system32\atiadlxx.dll (ADL/Advanced Micro Devices, Inc.) 0x01ED0000

    Process C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe (Catalyst Control Centre: Host application/ATI Technologies Inc.) 900
    Library C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe (Catalyst Control Centre: Host application/ATI Technologies Inc.) 0x00400000
    Library C:\WINDOWS\assembly\GAC_MSIL\CCC.Implementation\2.0.3198.30496__90ba9c70f846762e\CCC.Implementation.dll (CCC Application Implementation/Advanced Micro Devices Inc.) 0x51400000
    Library C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation\2.0.3156.17681__90ba9c70f846762e\LOG.Foundation.dll (LOG Foundation Static/Advanced Micro Devices Inc.) 0x60C00000
    Library C:\WINDOWS\assembly\GAC_MSIL\MOM.Foundation\2.0.3156.17699__90ba9c70f846762e\MOM.Foundation.dll (MOM Foundation/Advanced Micro Devices Inc.) 0x61400000
    Library C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation\2.0.3156.17682__90ba9c70f846762e\CLI.Foundation.dll (CLI Foundation/Advanced Micro Devices Inc.) 0x5FA00000
    Library C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3156.17702__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll (LOG Foundation Implementation Private SDK/Advanced Micro Devices Inc.) 0x61000000
    Library C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3198.30494__90ba9c70f846762e\LOG.Foundation.Implementation.dll (LOG Foundation Implementation/Advanced Micro Devices Inc.) 0x60E00000
    Library C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3156.17689__90ba9c70f846762e\LOG.Foundation.Private.dll (LOG Foundation Dynamic/Advanced Micro Devices Inc.) 0x61200000
    Library C:\WINDOWS\assembly\GAC_MSIL\MOM.Implementation\2.0.3198.30497__90ba9c70f846762e\MOM.Implementation.dll (MOM Implementation/Advanced Micro Devices Inc.) 0x61600000
    Library C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.SkinFactory\2.0.3198.30340__90ba9c70f846762e\CLI.Component.SkinFactory.dll (SkinFactory/Advanced Micro Devices Inc.) 0x5F000000
    Library C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.3156.17747__90ba9c70f846762e\CLI.Foundation.XManifest.dll (CLI Foundation XManifest/Advanced Micro Devices Inc.) 0x5FE00000
    Library C:\WINDOWS\assembly\GAC_MSIL\LOCALIZATION.Foundation.Private\2.0.3156.17686__90ba9c70f846762e\LOCALIZATION.Foundation.Private.dll (Private Foundation for Localization framework/Advanced Micro Devices, Inc.) 0x64400000
    Library C:\WINDOWS\assembly\GAC_MSIL\AxInterop.WBOCXLib\1.0.0.0__90ba9c70f846762e\AxInterop.WBOCXLib.dll 0x039F0000
    Library C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.3198.30338__90ba9c70f846762e\CLI.Component.Runtime.dll (Runtime Component/Advanced Micro Devices, Inc.) 0x5EC00000
    Library C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.3156.17698__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll (Runtime Shared Private/Advanced Micro Devices Inc.) 0x5EE00000
    Library C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.3156.17686__90ba9c70f846762e\CLI.Foundation.Private.dll (CLI Foundation Private/Advanced Micro Devices Inc.) 0x5FC00000
    Library C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.3156.17694__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll (Runtime Shared/Advanced Micro Devices Inc.) 0x64600000
    Library C:\WINDOWS\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll (CCCCom/Advanced Micro Devices Inc.) 0x50E00000
    Library C:\WINDOWS\assembly\GAC_MSIL\AEM.Server\2.0.3198.30336__90ba9c70f846762e\AEM.Server.dll (AEM Server/Advanced Micro Devices Inc.) 0x50400000
    Library C:\WINDOWS\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.3156.17682__90ba9c70f846762e\NEWAEM.Foundation.dll (AEM Foundation/Advanced Micro Devices Inc.) 0x61A00000
    Library C:\WINDOWS\system32\atiadlxx.dll (ADL/Advanced Micro Devices, Inc.) 0x10000000
    Library C:\Program Files\ATI Technologies\ATI.ACE\Core-Implementation\32\wbocx.ocx (WindowBlinds : DirectSkin /Stardock Corporation) 0x63000000
    Library C:\WINDOWS\assembly\GAC\Interop.WBOCXLib\1.0.0.0__90ba9c70f846762e\Interop.WBOCXLib.dll ( / ) 0x03C60000
    Library C:\WINDOWS\assembly\GAC_MSIL\AEM.Server.Shared\2.0.3156.17695__90ba9c70f846762e\AEM.Server.Shared.dll (AEM Server Shared/Advanced Micro Devices Inc.) 0x50600000
    Library C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.3198.30523__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll (AEM Event Sources Kit/Advanced Micro Devices Inc.) 0x64000000
    Library C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.3156.17721__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll (DPPE Shared/Advanced Micro Devices Inc.) 0x63600000
    Library C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.3156.17694__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll (HK Shared/Advanced Micro Devices Inc.) 0x03E00000
    Library C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.WinMessages.Shared\2.0.3156.17698__90ba9c70f846762e\AEM.Plugin.WinMessages.Shared.dll (WinMessages Shared/Advanced Micro Devices Inc.) 0x03F20000
    Library C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0.2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll (DEM Graphics I0601/ATI Technologies Inc.) 0x60600000
    Library C:\WINDOWS\assembly\GAC_MSIL\DEM.Foundation\2.0.2573.17684__90ba9c70f846762e\DEM.Foundation.dll (DEM Foundation/ATI Technologies Inc.) 0x60200000
    Library C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics\2.0.3156.17703__90ba9c70f846762e\DEM.Graphics.dll (DEM Graphics/Advanced Micro Devices Inc.) 0x60400000
    Library C:\WINDOWS\system32\ATIDEMGX.dll (Graphics DEM/Advanced Micro Devices, Inc.) 0x51000000
    Library C:\WINDOWS\assembly\GAC_MSIL\LOCALIZATION.Foundation.Implementation\2.0.3198.30537__90ba9c70f846762e\LOCALIZATION.Foundation.Implementation.dll (Private Foundation Implementation for Localization framework/Advanced Micro Devices, Inc.) 0x64200000
    Library C:\Program Files\ATI Technologies\ATI.ACE\Core-Implementation\32\wbhelp2.dll (WindowBlinds Helper DLL/Stardock.Net, Inc) 0x04140000
    Library C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.3198.30341__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll (Runtime Graphics Caste/Advanced Mirco Devices, Inc.) 0x5C400000
    Library C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.3156.17695__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll (Shared Graphics Caste/Advanced Mirco Devices, Inc.) 0x5C800000
    Library C:\WINDOWS\assembly\GAC_MSIL\ACE.Graphics.DisplaysManager.Shared\2.0.2573.17685__90ba9c70f846762e\ACE.Graphics.DisplaysManager.Shared.dll (ACE Graphics DisplaysManager Shared/ATI Technologies Inc.) 0x50000000
    Library C:\WINDOWS\assembly\GAC_MSIL\DEM.OS.I0602\2.0.3156.17703__90ba9c70f846762e\DEM.OS.I0602.dll (DEM.OS.I0602/Advanced Micro Devices Inc.) 0x60A00000
    Library C:\WINDOWS\assembly\GAC_MSIL\DEM.OS\2.0.3156.17703__90ba9c70f846762e\DEM.OS.dll (DEM OS/Advanced Micro Devices Inc.) 0x60800000
    Library C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0709.dll (DEM.Graphics.I0709/Advanced Micro Devices, Inc.) 0x04910000
    Library C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.3156.17722__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll (GD source plugin shared/Advanced Micro Devices Inc.) 0x04940000
    Librar
    6 Juillet 2011 21:24:58

    Bonsoir
    ça me semble propre.
    désactive les infobulles si ça te pose problème... mais c'est juste Mbam qui fait bien son boulot.
    12 Juillet 2011 17:33:07

    Bonsoir,

    Désolé de répondre que maintenant. J'ai toujours le même problème, parfois l'ordinateur est très lent et même il m'arrive de ne pas pouvoir avoir accès à internet. Est-ce que cela viendrait de ma connexion alors?

    Merci beaucoup
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS