Votre question

Msqpdxsipcqtei.dll...

Tags :
  • Dll
  • Sécurité
Dernière réponse : dans Sécurité et virus
8 Janvier 2009 22:26:21

Bonjour à tous, j'ai un problème: je suis sous Windows Vista, et j'ai apparemment chopé le trojan Win32.FASEC. .
J'ai depuis des fenêtres d'alerte indiquant la présence de "msqpdxsipcqtei.dll" ...à chaque lancement de navigateur Internet.
J'ai vu des internautes ayant eu le même problème, mais avec des noms de DLL différentes. On dirait que le programme responsable génère des DLL au nom aléatoire...

Je précise que la DLL en question est censée se situer dans C:\Windows\System32... Elle ne s'y trouve pas, et mon antivirus Avast est donc inefficace. Je précise encore que j'ai essayé AVG et Antivir précédemment, mais je les ai virés car il était impossible de les mettre à jour depuis l'apparition de ce problème...

J'ai l'habitude du forum alors je poste un rapport HiJackThis!
Merci à tous ceux qui se préoccuperont de mon problème!

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:08:28, on 10/01/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\RtHDVCpl.exe
C:\Acer\Empowering Technology\SysMonitor.exe
C:\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe
C:\Windows\system32\taskeng.exe
C:\Windows\System32\nvraidservice.exe
C:\Program Files\Acer Arcade Live\Acer PlayMovie\PMVService.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Conceiva\DownloadStudio\DownloadStudioScheduleMonitor.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Users\Axel\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Program Files\RocketDock\RocketDock.exe
C:\Users\Axel\Program Files\DNA\btdna.exe
C:\Windows\ehome\ehtray.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Apache Software Foundation\Apache2.2\bin\ApacheMonitor.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
C:\Acer\Empowering Technology\eRecovery\ERAGENT.EXE
C:\Windows\System32\mobsync.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\Axel\Desktop\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.emule-france.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.fr.acer.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.search.yahoo.com/search?fr=mcafee&p=%s
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {0124123D-61B4-456f-AF86-78C53A0790C5} - (no file)
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: IeMonitor - {8170D7DC-BDD6-461e-88EB-F047257898C9} - C:\Program Files\Conceiva\DownloadStudio\DLMonitr.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Megaupload Toolbar - {A057A204-BACC-4D26-C39E-35F1D2A32EC8} - C:\PROGRA~1\MEGAUP~2\MEGAUP~1.DLL
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: MegaIEMn - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: (no name) - {0124123D-61B4-456f-AF86-78C53A0790C5} - (no file)
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O3 - Toolbar: Megaupload Toolbar - {A057A204-BACC-4D26-C39E-35F1D2A32EC8} - C:\PROGRA~1\MEGAUP~2\MEGAUP~1.DLL
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] C:\Acer\Empowering Technology\SysMonitor.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe
O4 - HKLM\..\Run: [PCMMediaSharing] C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe
O4 - HKLM\..\Run: [NVRaidService] C:\Windows\system32\nvraidservice.exe
O4 - HKLM\..\Run: [PlayMovie] "C:\Program Files\Acer Arcade Live\Acer PlayMovie\PMVService.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [DownloadStudio] C:\Program Files\Conceiva\DownloadStudio\DownloadStudioScheduleMonitor.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Google Update] "C:\Users\Axel\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Users\Axel\Program Files\DNA\btdna.exe"
O4 - HKCU\..\Run: [RGSC] C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - Global Startup: ASETRES.EXE
O4 - Global Startup: Empowering Technology Launcher.lnk = ?
O4 - Global Startup: Monitor Apache Servers.lnk = C:\Program Files\Apache Software Foundation\Apache2.2\bin\ApacheMonitor.exe
O4 - Global Startup: NETGEAR WG111v3 Smart Wizard.lnk = C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O15 - Trusted Zone: http://*.mcafee.com
O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} (DLM Control) - http://dlm.tools.akamai.com/dlmanager/versions/activex/...
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: CLKERN.DLL
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Acer HomeMedia Connect Service - CyberLink - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe
O23 - Service: ePerformance Service (AcerMemUsageCheckService) - Unknown owner - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: Apache2 - Apache Software Foundation - C:\Program Files\Apache Software Foundation\Apache2.2\bin\httpd.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: eDataSecurity Service - Egis Incorporated - C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: eSettings Service (eSettingsService) - Unknown owner - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
O23 - Service: Hexago Gateway6 Client (gw6c) - Hexago, Inc. - C:\Program Files\Hexago\Gateway6 Client\gw6c.exe
O23 - Service: HASP License Manager (hasplms) - Aladdin Knowledge Systems Ltd. - C:\Windows\system32\hasplms.exe
O23 - Service: HASP SRM Business Studio Server (hasp_svr) - Aladdin Knowledge Systems Ltd. - C:\Program Files\Aladdin\HASP SRM Server\Servers\HASP SRM Server\hasp_svr.exe
O23 - Service: Honolulu 11 (PC SOFT) (HONOLULU 11) - PC SOFT - D:\PC SOFT\HONOLULU\Serveur d'application\HonoluluServeur11.exe
O23 - Service: Hyper File Server : HONOLULU11 - PC SOFT - D:\PC SOFT\HONOLULU\Hyper File\manta.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MantaManager - PC SOFT - D:\PC SOFT\HONOLULU\Hyper File\mantamanager.exe
O23 - Service: McAfee SiteAdvisor Service - Unknown owner - C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: mental ray 3.6 Satellite for Autodesk 3ds Max 2008 32-bit 32-bit (mi-raysat_3dsMax2008_32) - Unknown owner - C:\Program Files\Autodesk\3ds Max 2008\mentalray\satellite\raysat_3dsMax2008_32server.exe
O23 - Service: mental ray 3.6 Satellite for Autodesk 3ds Max Design 2009 32-bit 32-bit (mi-raysat_3dsMax2009_32) - Unknown owner - C:\Program Files\Autodesk\3ds Max 2009\mentalray\satellite\raysat_3dsMax2009_32server.exe
O23 - Service: mental ray 3.5 Satellite (32-bit) (mi-raysat_3dsmax9_32) - Unknown owner - C:\Program Files\Autodesk\3ds Max 9\mentalray\satellite\raysat_3dsmax9_32server.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: VirtoolsLicenseServer - Macrovision Corporation - C:\Program Files\Virtools\Virtools License Manager\lmgrd.exe

--
End of file - 12041 bytes



Autres pages sur : msqpdxsipcqtei dll

a b 8 Sécurité
9 Janvier 2009 18:57:38

Bonjour,

[#ff0000]! Désactive tes protections résidentes (antivirus, Spybot-S&D, etc.) ![/#f]

  • Télécharge ComboFix ([#ff0000]sUBs[/#f]) sur ton Bureau.
  • Double clique sur ComboFix.exe (le .exe n'est pas forcément visible) afin de le lancer.
  • Lorsque la recherche sera terminée, un rapport apparaîtra. Poste ce rapport (C:\combofix.txt*) dans ta prochaine réponse.

    AIDE : Un guide et un tutoriel sur l'utilisation de ComboFix
    * le nom de la partition peut changer
    9 Janvier 2009 19:09:00

    Merci de te préoccuper de mon cas:

    ComboFix 09-01-08.05 - Axel 2009-01-09 19:01:36.1 - NTFSx86
    Microsoft® Windows Vista™ Édition Familiale Premium 6.0.6001.1.1252.1.1036.18.3071.1643 [GMT 1:00]
    Lancé depuis: c:\users\Axel\Desktop\ComboFix.exe
    * Un nouveau point de restauration a été créé
    .

    (((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
    .

    C:\autorun.inf
    c:\users\Axel\AppData\Roaming\inst.exe
    c:\windows\system32\AVSredirect.dll
    D:\Autorun.inf
    D:\resycled
    d:\resycled\boot.com

    .
    ((((((((((((((((((((((((((((( Fichiers créés du 2008-12-09 au 2009-01-09 ))))))))))))))))))))))))))))))))))))
    .

    2009-01-08 18:45 . 2009-01-08 18:45 <REP> d-------- C:\WinDev Mobile 11
    2009-01-08 18:44 . 2009-01-08 18:44 <REP> d-------- C:\WinDev Mobile 11 - Installation
    2009-01-08 12:26 . 2009-01-08 12:26 <REP> d-------- c:\program files\Launcher
    2009-01-08 12:26 . 2007-05-11 16:59 4,400 --a------ c:\windows\STR1.dll
    2009-01-08 12:26 . 2007-05-12 01:27 77 --a------ c:\windows\STR.dll
    2009-01-07 19:01 . 2009-01-07 19:01 <REP> d-------- c:\program files\Alwil Software
    2009-01-07 19:01 . 2008-11-26 18:17 51,792 --a------ c:\windows\System32\drivers\aswMonFlt.sys
    2009-01-07 16:47 . 2009-01-07 16:47 <REP> d-------- c:\program files\DownloadToolz
    2009-01-06 18:34 . 2009-01-06 18:34 <REP> d-------- c:\program files\AviSynth 2.5
    2009-01-06 18:34 . 2004-02-22 10:11 719,872 --a------ c:\windows\System32\devil.dll
    2009-01-06 18:34 . 2007-05-17 17:30 318,976 --a------ c:\windows\System32\avisynth.dll
    2009-01-06 18:34 . 2004-01-25 00:00 70,656 --a------ c:\windows\System32\i420vfw.dll
    2009-01-06 18:33 . 2009-01-06 18:33 <REP> d-------- c:\program files\eRightSoft
    2009-01-04 17:54 . 2009-01-04 17:54 <REP> d-------- c:\program files\GetPDF Encryptor Decryptor
    2009-01-04 17:48 . 2009-01-04 17:48 <REP> d-------- c:\program files\iPodLibrary
    2009-01-04 17:48 . 2009-01-04 17:48 286,720 --------- c:\windows\Setup1.exe
    2009-01-04 17:48 . 2009-01-04 17:48 73,216 --a------ c:\windows\ST6UNST.EXE
    2009-01-03 18:00 . 2009-01-03 18:03 <REP> d-------- c:\users\Axel\AppData\Roaming\NetAppel
    2009-01-02 20:02 . 2009-01-02 20:02 <REP> d-------- c:\users\Axel\AppData\Roaming\CyberLink
    2009-01-02 20:02 . 2009-01-02 20:02 <REP> d-------- c:\users\All Users\PlayMovie
    2009-01-02 20:02 . 2009-01-02 20:02 <REP> d-------- c:\programdata\PlayMovie
    2008-12-30 10:45 . 2009-01-09 18:51 8,405,015 --a------ c:\windows\TempFile
    2008-12-29 16:39 . 2008-12-29 16:39 <REP> d-------- c:\program files\i2p
    2008-12-29 14:05 . 2008-12-29 14:07 <REP> d-------- C:\WebDev 11
    2008-12-29 13:46 . 2008-12-29 13:48 <REP> d-------- C:\WebDev 11 - Installation
    2008-12-29 13:12 . 32 c:\windows\System32\drivers\mshdmd.sys
    2008-12-28 00:57 . 2008-12-28 00:57 <REP> d-------- C:\Mes Etats et Requetes
    2008-12-28 00:52 . 2008-12-28 00:52 <REP> d-------- c:\program files\PC SOFT
    2008-12-27 15:17 . 2008-12-27 15:17 <REP> d-------- C:\TDF TECH 2008 - Installation
    2008-12-26 20:42 . 2009-01-08 14:26 <REP> d-------- C:\movie
    2008-12-26 20:41 . 2009-01-08 13:43 <REP> d-------- c:\users\Axel\AppData\Roaming\dvdcss
    2008-12-26 20:39 . 2008-12-26 20:39 67 --a------ c:\windows\#1 DVD Ripper.INI
    2008-12-26 20:36 . 2008-12-26 20:39 <REP> d-------- c:\program files\No1 DVD Ripper
    2008-12-26 20:36 . 2008-12-26 20:36 <REP> d-------- C:\ApolloOutput
    2008-12-26 20:30 . 2008-12-26 20:31 <REP> d-------- c:\users\Axel\AppData\Roaming\NeoDivX2008
    2008-12-26 20:30 . 2008-12-26 20:30 <REP> d-------- c:\program files\NeoDivX2008
    2008-12-26 20:22 . 2008-12-26 20:22 <REP> d-------- c:\users\Axel\dwhelper
    2008-12-25 20:04 . 2008-12-25 20:04 <REP> d-------- c:\program files\Picture Ripper 4
    2008-12-25 18:13 . 2008-12-25 18:13 <REP> d-------- c:\program files\Ipod Video Converter
    2008-12-25 18:13 . 2006-07-11 18:06 544,768 --a------ c:\windows\System32\msvcr71d.dll
    2008-12-25 18:13 . 2006-05-12 08:37 490,496 --a------ c:\windows\System32\MP4Splitter.ax
    2008-12-25 18:13 . 2004-01-10 17:02 258,048 --a------ c:\windows\System32\GplMpgDec.ax
    2008-12-25 18:13 . 2004-03-08 23:00 224,016 --a------ c:\windows\System32\TABCTL32.OCX
    2008-12-25 18:13 . 1998-06-24 00:00 164,144 --a------ c:\windows\System32\COMCT232.OCX
    2008-12-25 18:13 . 1998-07-12 23:00 141,312 --a------ c:\windows\System32\MSCMCFR.DLL
    2008-12-25 18:13 . 2005-09-28 01:31 24,576 --a------ c:\windows\System32\ControlSubX.ocx
    2008-12-25 18:13 . 1998-07-12 23:00 21,504 --a------ c:\windows\System32\TABCTFR.DLL
    2008-12-25 18:13 . 1998-07-13 00:00 20,992 --a------ c:\windows\System32\CMCT2FR.DLL
    2008-12-25 12:09 . 2008-12-25 12:09 <REP> d-------- c:\users\All Users\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
    2008-12-25 12:09 . 2008-12-25 12:09 <REP> d-------- c:\programdata\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
    2008-12-25 12:09 . 2008-12-25 12:09 <REP> d-------- c:\program files\iTunes
    2008-12-25 12:09 . 2008-12-25 12:09 <REP> d-------- c:\program files\iPod
    2008-12-25 12:09 . 2008-04-17 13:12 107,368 --a------ c:\windows\System32\GEARAspi.dll
    2008-12-25 12:09 . 2008-04-17 13:12 15,464 --a------ c:\windows\System32\drivers\GEARAspiWDM.sys
    2008-12-25 12:08 . 2008-12-25 12:09 <REP> d-------- c:\users\All Users\Apple Computer
    2008-12-25 12:08 . 2008-12-25 12:09 <REP> d-------- c:\programdata\Apple Computer
    2008-12-25 12:08 . 2008-12-25 12:08 <REP> d-------- c:\program files\QuickTime
    2008-12-25 12:08 . 2008-12-25 12:08 <REP> d-------- c:\program files\Bonjour
    2008-12-25 12:08 . 2008-12-25 12:08 <REP> d-------- c:\program files\Apple Software Update
    2008-12-25 12:07 . 2008-12-25 12:09 <REP> d-------- c:\program files\Common Files\Apple
    2008-12-20 19:18 . 2008-12-20 19:18 <REP> d-------- c:\program files\Hasbro Interactive
    2008-12-20 19:18 . 1998-10-07 13:08 327,168 --a------ c:\windows\IsUn040c.exe
    2008-12-19 20:04 . 2008-12-19 20:05 <REP> d-------- c:\users\Axel\AppData\Roaming\EmailNotifier
    2008-12-18 18:08 . 2008-12-18 18:08 <REP> d-------- c:\program files\EA GAMES
    2008-12-17 18:59 . 2008-12-21 16:13 <REP> d-------- c:\program files\eMule
    2008-12-14 12:07 . 2008-12-14 12:43 <REP> d-------- C:\WinDev 12
    2008-12-12 19:24 . 2008-12-20 18:13 <REP> d-------- C:\WinDev 14
    2008-12-12 19:21 . 2008-12-12 19:22 <REP> d-------- C:\WinDev 14 - Installation
    2008-12-12 18:57 . 2008-10-22 02:22 2,048 --a------ c:\windows\System32\tzres.dll
    2008-12-11 09:07 . 2008-10-16 05:47 827,392 --a------ c:\windows\System32\wininet.dll
    2008-12-11 09:06 . 2008-11-01 02:21 4,240,384 --a------ c:\windows\System32\GameUXLegacyGDFs.dll
    2008-12-11 09:06 . 2008-10-21 06:25 296,960 --a------ c:\windows\System32\gdi32.dll
    2008-12-11 09:06 . 2008-11-01 04:44 28,672 --a------ c:\windows\System32\Apphlpdm.dll
    2008-12-11 09:05 . 2008-10-29 07:29 2,927,104 --a------ c:\windows\explorer.exe
    2008-12-11 09:05 . 2008-06-23 02:59 2,868,736 --a------ c:\windows\System32\mf.dll
    2008-12-11 09:05 . 2008-06-23 02:59 996,352 --a------ c:\windows\System32\WMNetMgr.dll
    2008-12-11 09:05 . 2008-06-23 02:58 94,720 --a------ c:\windows\System32\logagent.exe
    2008-12-11 09:01 . 2008-12-11 09:03 <REP> d-------- C:\WinDev 12 Express

    .
    (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2009-01-09 18:01 --------- d-----w c:\users\Axel\AppData\Roaming\DNA
    2009-01-09 17:52 --------- d-----w c:\users\Axel\AppData\Roaming\uTorrent
    2009-01-09 17:51 --------- d-----w c:\users\Axel\AppData\Roaming\Skype
    2009-01-08 18:31 --------- d-----w c:\program files\Malwarebytes' Anti-Malware
    2009-01-08 11:26 --------- d-----w c:\program files\Autolauncher
    2009-01-08 09:35 --------- d-----w c:\users\Axel\AppData\Roaming\skypePM
    2009-01-07 18:07 --------- d-----w c:\program files\TeamViewer3
    2009-01-07 17:48 --------- d-----w c:\programdata\avg8
    2009-01-06 17:02 2,816,000 ----a-w c:\windows\system32\drivers\XLHASP.sys
    2009-01-04 17:38 38,496 ----a-w c:\windows\system32\drivers\mbamswissarmy.sys
    2009-01-04 17:38 15,504 ----a-w c:\windows\system32\drivers\mbam.sys
    2009-01-02 19:02 --------- d-----w c:\programdata\CyberLink
    2009-01-01 15:03 --------- d-----w c:\users\Axel\AppData\Roaming\Download Manager
    2008-12-25 23:23 --------- d-----w c:\program files\adslTV
    2008-12-25 19:16 --------- d---a-w c:\programdata\TEMP
    2008-12-25 11:10 --------- d-----w c:\users\Axel\AppData\Roaming\Apple Computer
    2008-12-24 14:02 --------- d-----w c:\program files\FlashGet
    2008-12-23 11:32 --------- d--h--w c:\program files\InstallShield Installation Information
    2008-12-23 11:32 --------- d-----w c:\program files\Rockstar Games
    2008-12-21 15:14 --------- d-----w c:\programdata\eMule
    2008-12-21 11:33 --------- d-----w c:\users\Axel\AppData\Roaming\BitTorrent
    2008-12-20 10:34 --------- d-----w c:\program files\McAfee
    2008-12-19 19:06 --------- d-----w c:\users\Axel\AppData\Roaming\MegauploadToolbar
    2008-12-13 17:50 --------- d-----w c:\program files\Windows Mail
    2008-12-12 18:01 --------- d-----w c:\programdata\Microsoft Help
    2008-11-30 15:46 --------- d-----w c:\programdata\Conceiva
    2008-11-30 15:45 --------- d-----w c:\users\Axel\AppData\Roaming\Conceiva
    2008-11-30 15:45 --------- d-----w c:\program files\WinPcap
    2008-11-30 15:44 --------- d-----w c:\program files\Conceiva
    2008-11-30 10:40 --------- d-----w c:\program files\DNA
    2008-11-30 10:40 --------- d-----w c:\program files\BitTorrent
    2008-11-28 17:30 --------- d-----w c:\users\Axel\AppData\Roaming\Honolulu
    2008-11-28 16:51 --------- d-----w c:\users\Axel\AppData\Roaming\eMule
    2008-11-25 18:02 --------- d-----w c:\program files\World of Warcraft
    2008-11-25 17:34 --------- d-----w c:\programdata\Blizzard
    2008-11-16 19:25 --------- dc-h--w c:\programdata\{727691AA-C0CE-4AB4-8D16-F6558DFF5408}
    2008-11-16 16:09 --------- d-----w c:\program files\UltraISO
    2008-11-16 16:09 --------- d-----w c:\program files\Common Files\EZB Systems
    2008-11-16 14:56 --------- d-----w c:\program files\Common Files\Adobe AIR
    2008-11-13 18:13 --------- d-----w c:\users\Axel\AppData\Roaming\Megaupload
    2008-11-13 18:12 --------- d-----w c:\programdata\Megaupload
    2008-11-13 18:12 --------- d-----w c:\programdata\EmailNotifier
    2008-11-13 18:12 --------- d-----w c:\program files\MegauploadToolbar
    2008-11-13 18:12 --------- d-----w c:\program files\Megaupload
    2008-11-09 03:51 --------- d-----w c:\program files\Aladdin
    2008-11-01 03:44 541,696 ----a-w c:\windows\AppPatch\AcLayers.dll
    2008-11-01 03:44 52,736 ----a-w c:\windows\AppPatch\iebrshim.dll
    2008-11-01 03:44 460,288 ----a-w c:\windows\AppPatch\AcSpecfc.dll
    2008-11-01 03:44 2,154,496 ----a-w c:\windows\AppPatch\AcGenral.dll
    2008-11-01 03:44 173,056 ----a-w c:\windows\AppPatch\AcXtrnal.dll
    2008-10-27 09:04 70,992 ----a-w c:\windows\System32\XAPOFX1_2.dll
    2008-10-27 09:04 514,384 ----a-w c:\windows\System32\XAudio2_3.dll
    2008-10-27 09:04 235,856 ----a-w c:\windows\System32\xactengine3_3.dll
    2008-10-27 09:04 23,376 ----a-w c:\windows\System32\X3DAudio1_5.dll
    2008-10-22 03:57 241,152 ----a-w c:\windows\System32\PortableDeviceApi.dll
    2008-10-21 05:25 1,645,568 ----a-w c:\windows\System32\connect.dll
    2008-10-18 21:37 16,591,255 ----a-w c:\users\Axel\Delphi_C++Builder2009.esd_trial.zip
    2008-10-16 21:13 1,809,944 ----a-w c:\windows\System32\wuaueng.dll
    2008-10-16 21:12 561,688 ----a-w c:\windows\System32\wuapi.dll
    2008-10-16 21:09 51,224 ----a-w c:\windows\System32\wuauclt.exe
    2008-10-16 21:09 43,544 ----a-w c:\windows\System32\wups2.dll
    2008-10-16 21:08 34,328 ----a-w c:\windows\System32\wups.dll
    2008-10-16 20:56 1,524,736 ----a-w c:\windows\System32\wucltux.dll
    2008-10-16 20:55 83,456 ----a-w c:\windows\System32\wudriver.dll
    2008-10-16 13:08 162,064 ----a-w c:\windows\System32\wuwebv.dll
    2008-10-16 12:56 31,232 ----a-w c:\windows\System32\wuapp.exe
    2008-10-12 17:31 218,624 ----a-w c:\windows\System32\ToroHaspHooker.dll
    2008-10-10 03:52 452,440 ----a-w c:\windows\System32\d3dx10_40.dll
    2008-10-10 03:52 4,379,984 ----a-w c:\windows\System32\D3DX9_40.dll
    2008-10-10 03:52 2,036,576 ----a-w c:\windows\System32\D3DCompiler_40.dll
    2008-09-01 15:12 56 ---ha-w c:\users\All Users\ezsidmv.dat
    2008-09-01 15:12 56 ---ha-w c:\programdata\ezsidmv.dat
    2008-08-30 17:56 47,360 ----a-w c:\users\Axel\AppData\Roaming\pcouffin.sys
    2008-08-25 16:07 2,106,888 ----a-w c:\users\Axel\Supcom_Map_Editor.exe
    2008-08-21 16:33 267,056 ----a-w c:\users\Public\utorrent.exe
    2008-01-21 02:43 174 --sha-w c:\program files\desktop.ini
    2007-04-23 12:21 269,824 ----a-w c:\windows\inf\WG111v3\Vista64\wg111v3.sys
    2007-04-23 12:19 227,328 ----a-w c:\windows\inf\WG111v3\WG111v3.sys
    2007-04-23 12:19 227,328 ----a-w c:\windows\inf\WG111v3\Vista\wg111v3.sys
    2006-12-15 09:30 98,304 ----a-w c:\windows\inf\WG111v3\UScanM.exe
    2006-12-15 09:30 315,392 ----a-w c:\windows\inf\WG111v3\InstallDriver.exe
    2006-12-15 09:30 28,672 ----a-w c:\windows\inf\WG111v3\SetDrv.exe
    2006-12-15 09:30 212,992 ----a-w c:\windows\inf\WG111v3\CopyWHQLDriver.exe
    2006-12-15 09:30 20,480 ----a-w c:\windows\inf\WG111v3\RTWUPath.exe
    2006-12-15 09:30 19,968 ----a-w c:\windows\inf\WG111v3\RTWREFU.EXE
    2008-10-08 17:14 16,384 --sha-w c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
    2008-10-08 17:14 32,768 --sha-w c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
    2008-10-08 17:14 16,384 --sha-w c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
    2006-05-03 10:06 163,328 --sh--r c:\windows\System32\flvDX.dll
    2007-02-21 11:47 31,232 --sh--r c:\windows\System32\msfDX.dll
    2008-03-16 13:30 216,064 --sh--r c:\windows\System32\nbDX.dll
    .

    ((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
    REGEDIT4

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A057A204-BACC-4D26-C39E-35F1D2A32EC8}]
    2008-08-04 21:44 1947080 --a------ c:\progra~1\MEGAUP~2\MEGAUP~1.DLL

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    "{A057A204-BACC-4D26-C39E-35F1D2A32EC8}"= "c:\progra~1\MEGAUP~2\MEGAUP~1.DLL" [2008-08-04 1947080]

    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
    "{A057A204-BACC-4D26-C39E-35F1D2A32EC8}"= "c:\progra~1\MEGAUP~2\MEGAUP~1.DLL" [2008-08-04 1947080]

    [HKEY_CLASSES_ROOT\clsid\{a057a204-bacc-4d26-c39e-35f1d2a32ec8}]
    [HKEY_CLASSES_ROOT\megauploadtoolbar.MEGAUPLOADTOOLBAR]

    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
    @="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
    [HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
    2008-03-04 23:38 121392 --a------ c:\acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-01-21 1233920]
    "MsnMsgr"="c:\program files\Windows Live\Messenger\MsnMsgr.Exe" [2007-10-18 5724184]
    "Skype"="c:\program files\Skype\Phone\Skype.exe" [2008-08-12 21741864]
    "Google Update"="c:\users\Axel\AppData\Local\Google\Update\GoogleUpdate.exe" [2008-09-03 133104]
    "RocketDock"="c:\program files\RocketDock\RocketDock.exe" [2007-09-02 495616]
    "BitTorrent DNA"="c:\users\Axel\Program Files\DNA\btdna.exe" [2008-12-19 342848]
    "RGSC"="c:\program files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe" [2008-11-14 305064]
    "ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
    "uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2008-10-27 270128]
    "WindowsWelcomeCenter"="oobefldr.dll" [2008-01-21 c:\windows\System32\oobefldr.dll]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Acer Empowering Technology Monitor"="c:\acer\Empowering Technology\SysMonitor.exe" [2008-01-09 326176]
    "eDataSecurity Loader"="c:\acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe" [2008-03-04 526896]
    "PCMMediaSharing"="c:\program files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe" [2008-01-25 204908]
    "WarReg_PopUp"="c:\acer\WR_PopUp\WarReg_PopUp.exe" [2006-11-05 57344]
    "NVRaidService"="c:\windows\system32\nvraidservice.exe" [2008-05-06 196128]
    "PlayMovie"="c:\program files\Acer Arcade Live\Acer PlayMovie\PMVService.exe" [2007-12-20 172032]
    "SunJavaUpdateSched"="c:\program files\Java\jre1.6.0_07\bin\jusched.exe" [2008-06-10 144784]
    "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792]
    "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-09-17 13580832]
    "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-09-17 92704]
    "DownloadStudio"="c:\program files\Conceiva\DownloadStudio\DownloadStudioScheduleMonitor.exe" [2008-11-03 156312]
    "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2008-11-04 413696]
    "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2008-11-20 290088]
    "avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2008-11-26 81000]
    "RtHDVCpl"="RtHDVCpl.exe" [2008-03-26 c:\windows\RtHDVCpl.exe]

    c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
    ASETRES.EXE [2008-04-14 20480]
    Empowering Technology Launcher.lnk - c:\acer\Empowering Technology\eAPLauncher.exe [2008-03-21 535336]
    Monitor Apache Servers.lnk - c:\program files\Apache Software Foundation\Apache2.2\bin\ApacheMonitor.exe [2007-01-09 41041]
    NETGEAR WG111v3 Smart Wizard.lnk - c:\program files\NETGEAR\WG111v3\WG111v3.exe [2007-09-14 1695744]

    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "EnableUIADesktopToggle"= 0 (0x0)

    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
    "AppInit_DLLs"=CLKERN.DLL

    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
    "vidc.i420"= i420vfw.dll
    "msacm.mkdmp3enc"= c:\progra~1\ACERAR~1\ACERDV~2\Kernel\Burner\MKDMP3Enc.ACM
    "vidc.VSPX"= vspxvfw.dll

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
    "DisableMonitoring"=dword:00000001

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware]
    "DisableMonitoring"=dword:00000001

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
    "DisableMonitoring"=dword:00000001

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
    "DisableMonitoring"=dword:00000001

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
    "{9A0FC0E6-C41A-491D-85B2-7B42B0C4D7B6}"= UDP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
    "{9272E7EA-E5B0-4E65-AA03-61B849992A79}"= TCP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
    "{0590D135-20CF-4616-83A2-B4D64D7A7ADC}"= c:\program files\Acer Arcade Live\Acer Arcade Live Main Page\Acer Arcade Live.exe:Acer Arcade Live
    "{40F60C6C-DD8E-40B8-AB34-5061C567E010}"= c:\program files\Acer Arcade Live\Acer DVDivine\Acer DVDivine.exe:Acer DVDivine
    "{EC714915-D3A6-43D3-B785-23155F4ED9A6}"= c:\program files\Acer Arcade Live\Acer HomeMedia\Acer HomeMedia.exe:Acer HomeMedia
    "{8FB6D042-3CF4-407D-A2E9-A1CE05C41456}"= c:\program files\Acer Arcade Live\Acer HomeMedia Connect\Acer HomeMedia Connect.exe:Acer HomeMedia Connect
    "{542BA28B-703D-48DB-B83F-94E757E578BF}"= c:\program files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.EXE:Acer HomeMedia Connect Service
    "{B34DAF09-668F-41FD-94EB-A7A892360F5C}"= c:\program files\Acer Arcade Live\Acer SlideShow DVD\Acer SlideShow DVD.exe:Acer SlideShow DVD
    "{A924C65E-76C0-4E34-9E09-9FC3F7E6691A}"= c:\program files\Acer Arcade Live\Acer VideoMagician\Acer VideoMagician.exe:Acer VideoMagician
    "{F051E17E-51EF-4830-B367-F6DA497077E5}"= c:\program files\Acer Arcade Live\Acer HomeMedia Trial Creator\Acer HomeMedia Trial Creator.exe:Acer HomeMedia Trial Creator
    "{F158742F-48F9-4833-8369-7CBA8CC22457}"= c:\program files\Acer Arcade Live\Acer DV Magician\Acer DV Magician.exe:Acer DV Magician
    "{400A2EF9-6577-4982-B254-C0FA32F1B6BF}"= c:\program files\Acer Arcade Live\Acer PlayMovie\PlayMovie.exe:Acer PlayMovie
    "{F1CB2C33-F496-4D2B-8860-125771192688}"= c:\program files\Acer Arcade Live\Acer PlayMovie\PMVService.exe:Acer PlayMovie Resident Program
    "{F5D79F0E-8CFB-417E-86A5-3A05DF3DDE6C}"= UDP:c:\program files\Autodesk\3ds Max 2009\3dsmax.exe:Autodesk 3ds Max Design 2009 32-bit
    "{11665379-4A94-4087-A1B0-D60F3806FE93}"= TCP:c:\program files\Autodesk\3ds Max 2009\3dsmax.exe:Autodesk 3ds Max Design 2009 32-bit
    "{5A46821A-BDEC-4657-882A-32DAA7E54993}"= UDP:c:\program files\Autodesk\3ds Max 9\3dsmax.exe:Autodesk 3ds Max 9 32-bit
    "{0AC84723-8417-4B72-9D6A-E75057029464}"= TCP:c:\program files\Autodesk\3ds Max 9\3dsmax.exe:Autodesk 3ds Max 9 32-bit
    "{77DA70DE-C2AD-402D-ABCA-863C8F064C21}"= UDP:c:\program files\Autodesk\Backburner\monitor.exe:backburner 2.3 monitor
    "{F41A7645-1CD2-44D5-852C-45284103C270}"= TCP:c:\program files\Autodesk\Backburner\monitor.exe:backburner 2.3 monitor
    "{C0CF2E90-47AF-4C00-B65D-0BBCE6A2A4FA}"= UDP:c:\program files\Autodesk\Backburner\manager.exe:backburner 2.3 manager
    "{CCD6E8E7-9FE2-4C12-82BA-69B3DA6CCA54}"= TCP:c:\program files\Autodesk\Backburner\manager.exe:backburner 2.3 manager
    "{9A34844C-B21E-4F10-BD86-492A1BA9BC37}"= UDP:c:\program files\Autodesk\Backburner\server.exe:backburner 2.3 server
    "{E473A153-A05C-4A2C-925C-833A6B8151B9}"= TCP:c:\program files\Autodesk\Backburner\server.exe:backburner 2.3 server
    "{76E2F270-659A-48B8-9D12-545E462A1CA1}"= UDP:c:\program files\THQ\Gas Powered Games\Supreme Commander\bin\SupremeCommander.exe:Supreme Commander
    "{8C96CA83-FE3B-4D10-ACDF-9B4784F0D700}"= TCP:c:\program files\THQ\Gas Powered Games\Supreme Commander\bin\SupremeCommander.exe:Supreme Commander
    "{759AB346-A8D9-4BD0-AFEA-CCEF899B2341}"= UDP:c:\program files\THQ\Gas Powered Games\Supreme Commander - Forged Alliance\bin\ForgedAlliance.exe:Supreme Commander - Forged Alliance
    "{21F79F5C-B3EA-4BDD-B5EF-ABA61EBC8013}"= TCP:c:\program files\THQ\Gas Powered Games\Supreme Commander - Forged Alliance\bin\ForgedAlliance.exe:Supreme Commander - Forged Alliance
    "{DC60A1EA-738F-47DF-9227-64AECCDCB48C}"= UDP:c:\program files\THQ\Gas Powered Games\GPGNet\GPG.Multiplayer.Client.exe:GPGNet - Supreme Commander - Forged Alliance
    "{BB6CE2CF-FE90-4EB5-9CF9-5AF90A262D2F}"= TCP:c:\program files\THQ\Gas Powered Games\GPGNet\GPG.Multiplayer.Client.exe:GPGNet - Supreme Commander - Forged Alliance
    "{A09D6639-C121-4628-9E6D-B95951446EBA}"= UDP:c:\program files\uTorrent\uTorrent.exe:µTorrent (TCP-In)
    "{E24471CC-708D-4414-947F-1505D6E2E668}"= TCP:c:\program files\uTorrent\uTorrent.exe:µTorrent (UDP-In)
    "{411395FF-8B2C-4346-BF84-E9C3F869EEC7}"= UDP:c:\program files\Autodesk\3ds Max 2008\3dsmax.exe:Autodesk 3ds Max 2008 32-bit
    "{3CB573D5-BDE3-440C-9486-1F0E5CB21BDF}"= TCP:c:\program files\Autodesk\3ds Max 2008\3dsmax.exe:Autodesk 3ds Max 2008 32-bit
    "{704DA674-DFC5-4632-B3C7-E5FB2A4CA19A}"= c:\program files\Windows Live\Messenger\livecall.exe:Windows Live Messenger (Phone)
    "TCP Query User{76D25DCE-FEFF-445D-9A2F-94BB696E89D2}c:\\program files\\ares\\ares.exe"= UDP:c:\program files\ares\ares.exe:Ares p2p for windows
    "UDP Query User{7F4F8A6C-4FB2-4DD7-B288-AEA145F6E688}c:\\program files\\ares\\ares.exe"= TCP:c:\program files\ares\ares.exe:Ares p2p for windows
    "{B94E4699-8B8E-41CA-AA83-EBC2D2506CD4}"= c:\program files\Skype\Phone\Skype.exe:Skype
    "TCP Query User{FA1870AD-CE8B-4A10-87F0-C427AD9C5CDF}c:\\program files\\lucasarts\\star wars battlefront ii\\gamedata\\battlefrontii.exe"= UDP:c:\program files\lucasarts\star wars battlefront ii\gamedata\battlefrontii.exe:BattlefrontII
    "UDP Query User{AEEAE4E5-146B-4B35-A494-BA111F590D37}c:\\program files\\lucasarts\\star wars battlefront ii\\gamedata\\battlefrontii.exe"= TCP:c:\program files\lucasarts\star wars battlefront ii\gamedata\battlefrontii.exe:BattlefrontII
    "TCP Query User{42D9190C-D5C6-44C8-95A0-CF62F936EC07}c:\\program files\\flashget\\flashget.exe"= UDP:c:\program files\flashget\flashget.exe:FlashGet
    "UDP Query User{5E341A21-1E2C-4D9D-9ADE-F14F932A8DCA}c:\\program files\\flashget\\flashget.exe"= TCP:c:\program files\flashget\flashget.exe:FlashGet
    "TCP Query User{A5D4BA85-6BD6-46AE-8892-15471DEB69DE}c:\\program files\\net tools\\nettools5.exe"= UDP:c:\program files\net tools\nettools5.exe:Net Tools by Mohammad Ahmadi Bidakhvidi
    "UDP Query User{6C7D6461-F30E-4B56-AC08-F511F3AFE683}c:\\program files\\net tools\\nettools5.exe"= TCP:c:\program files\net tools\nettools5.exe:Net Tools by Mohammad Ahmadi Bidakhvidi
    "TCP Query User{83F47122-3F99-49F0-889F-8115A0A35CCB}c:\\program files\\azureus\\azureus.exe"= UDP:c:\program files\azureus\azureus.exe:Azureus
    "UDP Query User{B8905D70-B2E7-423E-AC14-27A1ED785056}c:\\program files\\azureus\\azureus.exe"= TCP:c:\program files\azureus\azureus.exe:Azureus
    "{4CD1F84A-B801-493D-AF0F-6B461BF6A51D}"= UDP:c:\program files\Internet Explorer\iexplore.exe:Internet Explorer
    "{E854BD9C-B4D9-4ED8-96FF-05079D9EC3B7}"= TCP:c:\program files\Internet Explorer\iexplore.exe:Internet Explorer
    "TCP Query User{2664FEE8-50E4-4ABE-A9AB-CBA61051FCBF}c:\\program files\\zattoo\\zattood.exe"= UDP:c:\program files\zattoo\zattood.exe:zattood
    "UDP Query User{59843B02-052E-42DA-8FEE-14C3A855103D}c:\\program files\\zattoo\\zattood.exe"= TCP:c:\program files\zattoo\zattood.exe:zattood
    "TCP Query User{422CAE11-9440-4AB2-8DE1-C28E9C08E6A4}c:\\program files\\zattoo\\zattoo.exe"= UDP:c:\program files\zattoo\zattoo.exe:
    "UDP Query User{1F5D1C55-8513-4210-9D06-52B8615FCF76}c:\\program files\\zattoo\\zattoo.exe"= TCP:c:\program files\zattoo\zattoo.exe:
    "TCP Query User{EBE327FE-3E4F-477F-A30A-A614938A64DF}c:\\windev 12\\exemples\\exemples complets\\wd messagerie instantanee\\exe\\wd messagerie instantanee.exe"= UDP:c:\windev 12\exemples\exemples complets\wd messagerie instantanee\exe\wd messagerie instantanee.exe:WD Messagerie Instantanee
    "UDP Query User{870CB2E2-AEB7-48C3-A80D-8B591DAC29F3}c:\\windev 12\\exemples\\exemples complets\\wd messagerie instantanee\\exe\\wd messagerie instantanee.exe"= TCP:c:\windev 12\exemples\exemples complets\wd messagerie instantanee\exe\wd messagerie instantanee.exe:WD Messagerie Instantanee
    "TCP Query User{B7492D48-3921-49F7-A2AA-A13EFBF59A43}c:\\users\\axel\\desktop\\wow.exe"= UDP:c:\users\axel\desktop\wow.exe:wow.exe
    "UDP Query User{3434DC2B-2A1B-46F4-9A8C-94DB384AA00D}c:\\users\\axel\\desktop\\wow.exe"= TCP:c:\users\axel\desktop\wow.exe:wow.exe
    "TCP Query User{53AF29ED-6819-4518-8797-9542713716A5}c:\\users\\axel\\desktop\\bc.exe"= UDP:c:\users\axel\desktop\bc.exe:bc.exe
    "UDP Query User{8A8AA0F1-81A4-47AA-A428-F7812BDD2AFF}c:\\users\\axel\\desktop\\bc.exe"= TCP:c:\users\axel\desktop\bc.exe:bc.exe
    "{F5FB936B-A91A-4009-9847-9E8ED1A4AF6C}"= UDP:c:\program files\Aladdin\HASP SRM Server\Servers\HASP SRM Server\hasp_svr.exe:HASP SRM Server
    "{1D6CF370-3672-4306-91E9-9FA8ACD99E10}"= TCP:c:\program files\Aladdin\HASP SRM Server\Servers\HASP SRM Server\hasp_svr.exe:HASP SRM Server
    "TCP Query User{DA0EF238-1096-47E5-BBA7-367CE13A0848}c:\\users\\axel\\desktop\\wotlk-ff-frfr-downloader.exe"= UDP:c:\users\axel\desktop\wotlk-ff-frfr-downloader.exe:wotlk-ff-frfr-downloader.exe
    "UDP Query User{D9FDAAC5-5F34-408F-9973-AC29BAC6946F}c:\\users\\axel\\desktop\\wotlk-ff-frfr-downloader.exe"= TCP:c:\users\axel\desktop\wotlk-ff-frfr-downloader.exe:wotlk-ff-frfr-downloader.exe
    "TCP Query User{5D7EB5E1-5C7E-4C56-B586-4352F9D798A7}c:\\program files\\echanblard\\emule.exe"= UDP:c:\program files\echanblard\emule.exe:eMule
    "UDP Query User{D50D8237-FFF4-4220-8F9C-DA5818A4B990}c:\\program files\\echanblard\\emule.exe"= TCP:c:\program files\echanblard\emule.exe:eMule
    "TCP Query User{E449AAAB-5C42-4787-984C-2F2672692784}c:\\program files\\lphant\\elephantclient.exe"= UDP:c:\program files\lphant\elephantclient.exe:lphant Client
    "UDP Query User{FBA048E7-4BB7-4563-9CC4-48D2CA367B00}c:\\program files\\lphant\\elephantclient.exe"= TCP:c:\program files\lphant\elephantclient.exe:lphant Client
    "{9F22EDEC-6346-47A2-8B90-0C62F20224DF}"= UDP:c:\program files\uTorrent\uTorrent.exe:uTorrent
    "{B67DAEEF-643C-41C6-8474-E1BE0B689AD1}"= TCP:c:\program files\uTorrent\uTorrent.exe:uTorrent
    "{B5D09597-504A-4433-A795-D4CA30DF5900}"= UDP:c:\program files\DNA\btdna.exe:D NA (TCP-In)
    "{138DF3A6-245E-4F37-A370-31F83996FF86}"= TCP:c:\program files\DNA\btdna.exe:D NA (UDP-In)
    "TCP Query User{CBCEE463-BA21-4E16-9CDB-E20601F8D843}c:\\program files\\bittorrent\\bittorrent.exe"= UDP:c:\program files\bittorrent\bittorrent.exe:BitTorrent
    "UDP Query User{0E85CEE7-8FC1-499B-9D67-2389184208B8}c:\\program files\\bittorrent\\bittorrent.exe"= TCP:c:\program files\bittorrent\bittorrent.exe:BitTorrent
    "TCP Query User{89BBB6FF-186B-4E6B-AE70-A6D2B8E7F3FE}c:\\program files\\gigatribe\\gigatribe.exe"= UDP:c:\program files\gigatribe\gigatribe.exe:gigatribe
    "UDP Query User{FD1D6BB4-C6FF-4FD7-9990-25303CFBDDC5}c:\\program files\\gigatribe\\gigatribe.exe"= TCP:c:\program files\gigatribe\gigatribe.exe:gigatribe
    "TCP Query User{8992DD0C-1E06-4D22-A62B-FC171676E2F2}c:\\users\\axel\\program files\\dna\\btdna.exe"= UDP:c:\users\axel\program files\dna\btdna.exe:btdna.exe
    "UDP Query User{F17A8375-9133-484D-AD39-F041DC81510C}c:\\users\\axel\\program files\\dna\\btdna.exe"= TCP:c:\users\axel\program files\dna\btdna.exe:btdna.exe
    "TCP Query User{BDCAF2CC-5776-4B9A-BC58-04345445F52E}c:\\windev 14\\exemples\\exemples complets\\wd utilisation du rpc\\wd serveur de la messagerie\\exe\\wd serveur de la messagerie.exe"= UDP:c:\windev 14\exemples\exemples complets\wd utilisation du rpc\wd serveur de la messagerie\exe\wd serveur de la messagerie.exe:WD Serveur de la messagerie
    "UDP Query User{50B265A9-9169-421D-852D-9F83DF9E2294}c:\\windev 14\\exemples\\exemples complets\\wd utilisation du rpc\\wd serveur de la messagerie\\exe\\wd serveur de la messagerie.exe"= TCP:c:\windev 14\exemples\exemples complets\wd utilisation du rpc\wd serveur de la messagerie\exe\wd serveur de la messagerie.exe:WD Serveur de la messagerie
    "TCP Query User{C9044E64-E25D-4BC3-8B7B-5EEFE0801C2E}c:\\program files\\emule\\emule.exe"= UDP:c:\program files\emule\emule.exe:eMule
    "UDP Query User{34009E44-F2AA-45AA-8333-FD724B34CEBC}c:\\program files\\emule\\emule.exe"= TCP:c:\program files\emule\emule.exe:eMule
    "{B3A8C689-BB6C-4DF3-A9AC-3649B36E51D5}"= UDP:c:\program files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:Rockstar Games Social Club
    "{D1809B46-9B8E-4106-B4E1-D69ECEC42289}"= TCP:c:\program files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:Rockstar Games Social Club
    "{8129356A-A02E-40A0-A558-B8FC6D7A7C8F}"= UDP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
    "{C3549F7C-CF78-45FF-B895-E936522E5E0D}"= TCP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
    "{A0A3D845-AD3A-4637-89F4-F8B0869ECC1D}"= UDP:c:\program files\iTunes\iTunes.exe:iTunes
    "{B6C20B3F-370B-4D83-8EB5-3E7F32DA29E6}"= TCP:c:\program files\iTunes\iTunes.exe:iTunes
    "{AFC9F942-3FCD-4AF9-8F61-38F922FC0EDB}"= UDP:c:\program files\NetAppel\NetAppel.exe:NetAppel
    "{11441A9D-8686-41D6-BC31-BC7934F4E077}"= TCP:c:\program files\NetAppel\NetAppel.exe:NetAppel

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List]
    "c:\\Program Files\\BitTorrent\\bittorrent.exe"= c:\program files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent

    R1 aswSP;avast! Self Protection;c:\windows\System32\drivers\aswSP.sys [2009-01-07 111184]
    R1 VBoxDrv;VirtualBox Service;c:\windows\System32\drivers\VBoxDrv.sys [2008-09-25 95888]
    R1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\System32\drivers\VBoxUSBMon.sys [2008-09-25 41680]
    R3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\System32\drivers\nvhda32v.sys [2006-06-07 42528]
    R3 RTL8187B;NETGEAR WG111v3 54Mbps Wireless USB 2.0 Adapter Vista Driver;c:\windows\System32\drivers\wg111v3.sys [2008-08-19 227328]
    R4 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796};{49DE1C67-83F8-4102-99E0-C16DCC7EEC796};c:\program files\Acer Arcade Live\Acer PlayMovie\000.fcl [2008-08-19 16:30:58 41456]
    R4 Acer HomeMedia Connect Service;Acer HomeMedia Connect Service;c:\program files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe [2008-03-21 269448]
    R4 aswFsBlk;aswFsBlk;c:\windows\System32\drivers\aswFsBlk.sys [2009-01-07 20560]
    R4 aswMonFlt;aswMonFlt;c:\windows\System32\drivers\aswMonFlt.sys [2009-01-07 51792]
    R4 hasp_svr;HASP SRM Business Studio Server;c:\program files\Aladdin\HASP SRM Server\Servers\HASP SRM Server\hasp_svr.exe [2008-07-16 13312]
    R4 hasplms;HASP License Manager;c:\windows\system32\hasplms.exe -run --> c:\windows\system32\hasplms.exe -run [?]
    R4 HONOLULU 11;Honolulu 11 (PC SOFT);d:\pc soft\HONOLULU\Serveur d'application\HonoluluServeur11.exe [2008-11-28 1443824]
    R4 Hyper File Server : HONOLULU11;Hyper File Server : HONOLULU11;d:\pc soft\HONOLULU\Hyper File\manta.exe --SERVICE --> d:\pc soft\HONOLULU\Hyper File\manta.exe --SERVICE [?]
    R4 MantaManager;MantaManager;d:\pc soft\HONOLULU\Hyper File\mantamanager.exe --SERVICE --> d:\pc soft\HONOLULU\Hyper File\mantamanager.exe --SERVICE [?]
    R4 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\McAfee\SiteAdvisor\McSACore.exe [2008-10-08 206096]
    R4 mi-raysat_3dsMax2009_32;mental ray 3.6 Satellite for Autodesk 3ds Max Design 2009 32-bit 32-bit;c:\program files\Autodesk\3ds Max 2009\mentalray\satellite\raysat_3dsMax2009_32server.exe [2008-03-09 65536]
    R4 MSSQL$HASPSRMDATABASE;SQL Server (HASPSRMDATABASE);c:\program files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2008-02-26 29183504]
    R4 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0;c:\program files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2008-09-30 935208]
    S3 NPF;NetGroup Packet Filter Driver;c:\windows\System32\drivers\npf.sys [2007-11-06 34064]
    S3 teamviewervpn;TeamViewer VPN Adapter;c:\windows\System32\drivers\teamviewervpn.sys [2008-01-25 25088]
    S3 XLHASP;XLHASP;c:\windows\System32\drivers\XLHASP.sys [2008-11-25 2816000]
    S4 gw6c;Hexago Gateway6 Client;c:\program files\Hexago\Gateway6 Client\gw6c.exe [2007-12-20 380928]
    S4 VirtoolsLicenseServer;VirtoolsLicenseServer;c:\program files\Virtools\Virtools License Manager\lmgrd.exe [2004-08-18 815104]

    --- Other Services/Drivers In Memory ---

    *NewlyCreated* - HARDLOCK

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{b3277051-441f-11dd-b93e-806e6f6e6963}]
    \shell\AutoRun\command - E:\LaunchBFII.exe
    .
    Contenu du dossier 'Tâches planifiées'

    2009-01-08 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2465264454-395113429-1895035380-1000.job
    - c:\users\Axel\AppData\Local\Google\Update\GoogleUpdate.exe [2008-09-03 12:36]

    2009-01-01 c:\windows\Tasks\NeroLiveEpgUpdate-My-Pi-Ci_Axel.job
    - c:\program files\Nero\Nero 9\Nero Live\NeroLive.exe [2008-09-18 13:51]
    .
    - - - - ORPHELINS SUPPRIMES - - - -

    HKCU-Run-ares - c:\program files\Ares\Ares.exe
    HKCU-Run-NetAppel - c:\program files\NetAppel\netappel.exe
    HKLM-Run-Acer Tour Reminder - c:\acer\AcerTour\Reminder.exe
    HKLM-Run-Apanel - c:\acersw\config\NewSetApanel.cmd
    HKLM-Run-eRecoveryService - (no file)
    ShellExecuteHooks-{5ECD31F0-F91A-11d4-B3CA-00D0B70A09D2} - WDShell


    .
    ------- Examen supplémentaire -------
    .
    uStart Page = hxxp://www.emule-france.com
    mStart Page = hxxp://fr.fr.acer.yahoo.com
    uInternet Settings,ProxyOverride = *.local
    uSearchURL,(Default) = hxxp://fr.search.yahoo.com/search?fr=mcafee&p=%s
    IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
    Trusted Zone: *.internet
    Trusted Zone: *.mcafee.com

    c:\program files\Autodesk\Backburner\manager.exe - c:\windows\Downloaded Program Files\DownloadManagerV2.ocx
    O16 -: {4871A87A-BFDD-4106-8153-FFDE2BAC2967}
    hxxp://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.4.3.cab
    c:\windows\Downloaded Program Files\DownloadManagerV2.inf
    FF - ProfilePath - c:\users\Axel\AppData\Roaming\Mozilla\Firefox\Profiles\p2lsersh.default\
    FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1361345&SearchSource=3&q=
    FF - prefs.js: browser.search.selectedEngine - The_Pirate_Bay Customized Web Search
    FF - prefs.js: browser.startup.homepage - hxxp://www.google.fr/
    FF - component: c:\program files\Mozilla Firefox\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\components\NPComponent.dll
    FF - plugin: c:\program files\Microsoft Silverlight\2.0.31005.0\npctrl.dll
    FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
    FF - plugin: c:\program files\Mozilla Firefox\plugins\npbittorrent.dll
    FF - plugin: c:\program files\Mozilla Firefox\plugins\npWebLaunch.dll
    FF - plugin: c:\users\Axel\AppData\Local\Google\Update\1.2.133.33\npGoogleOneClick7.dll
    FF - plugin: c:\users\Axel\Program Files\DNA\plugins\npbtdna.dll
    .

    **************************************************************************

    catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2009-01-09 19:04:16
    Windows 6.0.6001 Service Pack 1 NTFS

    Recherche de processus cachés ...

    Recherche d'éléments en démarrage automatique cachés ...

    Recherche de fichiers cachés ...

    Scan terminé avec succès
    Fichiers cachés: 0

    **************************************************************************
    .
    --------------------- DLLs chargées dans les processus actifs ---------------------

    - - - - - - - > 'winlogon.exe'(852)
    c:\windows\system32\CLKERN.DLL

    - - - - - - - > 'lsass.exe'(660)
    c:\windows\system32\CLKERN.DLL
    .
    Heure de fin: 2009-01-09 19:06:17
    ComboFix-quarantined-files.txt 2009-01-09 18:06:14

    Avant-CF: 51 758 948 352 octets libres
    Après-CF: 58,655,956,992 octets libres

    435 --- E O F --- 2009-01-09 17:55:45
    a b 8 Sécurité
    10 Janvier 2009 14:24:55

    Reposte un rapport Hijackthis.
    10 Janvier 2009 15:10:52

    Voici:

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 15:08:28, on 10/01/2009
    Platform: Windows Vista SP1 (WinNT 6.00.1905)
    MSIE: Internet Explorer v7.00 (7.00.6001.18000)
    Boot mode: Normal

    Running processes:
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Windows\RtHDVCpl.exe
    C:\Acer\Empowering Technology\SysMonitor.exe
    C:\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe
    C:\Windows\system32\taskeng.exe
    C:\Windows\System32\nvraidservice.exe
    C:\Program Files\Acer Arcade Live\Acer PlayMovie\PMVService.exe
    C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
    C:\Program Files\Conceiva\DownloadStudio\DownloadStudioScheduleMonitor.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Alwil Software\Avast4\ashDisp.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Users\Axel\AppData\Local\Google\Update\GoogleUpdate.exe
    C:\Program Files\RocketDock\RocketDock.exe
    C:\Users\Axel\Program Files\DNA\btdna.exe
    C:\Windows\ehome\ehtray.exe
    C:\Windows\ehome\ehmsas.exe
    C:\Program Files\Apache Software Foundation\Apache2.2\bin\ApacheMonitor.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
    C:\Acer\Empowering Technology\eRecovery\ERAGENT.EXE
    C:\Windows\System32\mobsync.exe
    C:\Windows\system32\wbem\unsecapp.exe
    C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Users\Axel\Desktop\HiJackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.emule-france.com
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.fr.acer.yahoo.com
    R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.search.yahoo.com/search?fr=mcafee&p=%s
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    O1 - Hosts: ::1 localhost
    O2 - BHO: (no name) - {0124123D-61B4-456f-AF86-78C53A0790C5} - (no file)
    O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (file missing)
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: IeMonitor - {8170D7DC-BDD6-461e-88EB-F047257898C9} - C:\Program Files\Conceiva\DownloadStudio\DLMonitr.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Megaupload Toolbar - {A057A204-BACC-4D26-C39E-35F1D2A32EC8} - C:\PROGRA~1\MEGAUP~2\MEGAUP~1.DLL
    O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
    O2 - BHO: MegaIEMn - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll
    O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll
    O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O3 - Toolbar: (no name) - {0124123D-61B4-456f-AF86-78C53A0790C5} - (no file)
    O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
    O3 - Toolbar: Megaupload Toolbar - {A057A204-BACC-4D26-C39E-35F1D2A32EC8} - C:\PROGRA~1\MEGAUP~2\MEGAUP~1.DLL
    O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
    O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] C:\Acer\Empowering Technology\SysMonitor.exe
    O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe
    O4 - HKLM\..\Run: [PCMMediaSharing] C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exe
    O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe
    O4 - HKLM\..\Run: [NVRaidService] C:\Windows\system32\nvraidservice.exe
    O4 - HKLM\..\Run: [PlayMovie] "C:\Program Files\Acer Arcade Live\Acer PlayMovie\PMVService.exe"
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [DownloadStudio] C:\Program Files\Conceiva\DownloadStudio\DownloadStudioScheduleMonitor.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
    O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
    O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
    O4 - HKCU\..\Run: [Google Update] "C:\Users\Axel\AppData\Local\Google\Update\GoogleUpdate.exe" /c
    O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
    O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Users\Axel\Program Files\DNA\btdna.exe"
    O4 - HKCU\..\Run: [RGSC] C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent
    O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
    O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
    O4 - Global Startup: ASETRES.EXE
    O4 - Global Startup: Empowering Technology Launcher.lnk = ?
    O4 - Global Startup: Monitor Apache Servers.lnk = C:\Program Files\Apache Software Foundation\Apache2.2\bin\ApacheMonitor.exe
    O4 - Global Startup: NETGEAR WG111v3 Smart Wizard.lnk = C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
    O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
    O13 - Gopher Prefix:
    O15 - Trusted Zone: http://*.mcafee.com
    O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} (DLM Control) - http://dlm.tools.akamai.com/dlmanager/versions/activex/...
    O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
    O20 - AppInit_DLLs: CLKERN.DLL
    O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
    O23 - Service: Acer HomeMedia Connect Service - CyberLink - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe
    O23 - Service: ePerformance Service (AcerMemUsageCheckService) - Unknown owner - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
    O23 - Service: Apache2 - Apache Software Foundation - C:\Program Files\Apache Software Foundation\Apache2.2\bin\httpd.exe
    O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: eDataSecurity Service - Egis Incorporated - C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
    O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
    O23 - Service: eSettings Service (eSettingsService) - Unknown owner - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
    O23 - Service: Hexago Gateway6 Client (gw6c) - Hexago, Inc. - C:\Program Files\Hexago\Gateway6 Client\gw6c.exe
    O23 - Service: HASP License Manager (hasplms) - Aladdin Knowledge Systems Ltd. - C:\Windows\system32\hasplms.exe
    O23 - Service: HASP SRM Business Studio Server (hasp_svr) - Aladdin Knowledge Systems Ltd. - C:\Program Files\Aladdin\HASP SRM Server\Servers\HASP SRM Server\hasp_svr.exe
    O23 - Service: Honolulu 11 (PC SOFT) (HONOLULU 11) - PC SOFT - D:\PC SOFT\HONOLULU\Serveur d'application\HonoluluServeur11.exe
    O23 - Service: Hyper File Server : HONOLULU11 - PC SOFT - D:\PC SOFT\HONOLULU\Hyper File\manta.exe
    O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
    O23 - Service: MantaManager - PC SOFT - D:\PC SOFT\HONOLULU\Hyper File\mantamanager.exe
    O23 - Service: McAfee SiteAdvisor Service - Unknown owner - C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
    O23 - Service: mental ray 3.6 Satellite for Autodesk 3ds Max 2008 32-bit 32-bit (mi-raysat_3dsMax2008_32) - Unknown owner - C:\Program Files\Autodesk\3ds Max 2008\mentalray\satellite\raysat_3dsMax2008_32server.exe
    O23 - Service: mental ray 3.6 Satellite for Autodesk 3ds Max Design 2009 32-bit 32-bit (mi-raysat_3dsMax2009_32) - Unknown owner - C:\Program Files\Autodesk\3ds Max 2009\mentalray\satellite\raysat_3dsMax2009_32server.exe
    O23 - Service: mental ray 3.5 Satellite (32-bit) (mi-raysat_3dsmax9_32) - Unknown owner - C:\Program Files\Autodesk\3ds Max 9\mentalray\satellite\raysat_3dsmax9_32server.exe (file missing)
    O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
    O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
    O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
    O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe
    O23 - Service: VirtoolsLicenseServer - Macrovision Corporation - C:\Program Files\Virtools\Virtools License Manager\lmgrd.exe

    --
    End of file - 12041 bytes


    PS: j'ai passé un coup de MalwaresBytes, et je n'ai plus eu de problèmes...pour l'instant. Merci encore.
    a b 8 Sécurité
    11 Janvier 2009 15:18:57

    Re,

    Fix les lignes dans le cadre ci-dessous avec HijackThis : AIDE EN IMAGES

    O2 - BHO: (no name) - {0124123D-61B4-456f-AF86-78C53A0790C5} - (no file)
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O3 - Toolbar: (no name) - {0124123D-61B4-456f-AF86-78C53A0790C5} - (no file)


    &

    Désinstalle correctement Avast! pour le remplacer par AntiVir.
    Pourquoi changer ? Avast! vs AntiVir

    Fais un scan complet puis poste le rapport en fin d'analyse.
    AIDE : Tutorial sur l'antivirus AntiVir Personal Edition Classic

    Ton pc se comporte mieux ?
    11 Janvier 2009 16:05:17

    Oui, merci, il n'y a plus de problèmes!
    Par contre je préfère garder Avast pour l'instant vu que j'avais des problèmes avec AntiVir...Désolé.
    a b 8 Sécurité
    12 Janvier 2009 17:05:53

    Quels problèmes ?
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS