Votre question

[résolu]Problemes de pub depuis l'instalation de webmediaplayeur

Tags :
  • Windows
  • Sécurité
Dernière réponse : dans Sécurité et virus
7 Septembre 2008 20:57:16

bonjour j'aurai besoin de votre aide pour désinfecter mon pc

voici le rapport fait avec hijackthis

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:53:04, on 07/09/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\conime.exe
C:\Program Files\U-ABIT\uGuru\uGuru.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Windows\System32\umonit.exe
C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
C:\Windows\WindowsMobile\wmdc.exe
C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe
C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Windows\System32\CTHELPER.EXE
C:\Program Files\Common Files\logishrd\LComMgr\Communications_Helper.exe
C:\Program Files\Logitech\QuickCam\Quickcam.exe
C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe
C:\Windows\System32\Ctxfihlp.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Creative\DVDAudio\CTDVDDET.exe
C:\Program Files\pspvideo9\pspVideo9.exe
C:\Program Files\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe
C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatchTray10.exe
C:\Program Files\Roxio\CinePlayer\DMXLauncher.exe
C:\Program Files\Common Files\TerraTec\Remote\TTTvRc.exe
C:\Program Files\Ideazon\ZEngine\Zboard.exe
C:\Program Files\MCE\My Movies\My Movies Tray.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Users\christophe\Downloads\CoreTemp\Core Temp.exe
C:\Program Files\Creative\Shared Files\CTSched.exe
C:\Program Files\DAEMON Tools Lite\daemon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Users\christophe\AppData\Local\ciwsg.exe
C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
C:\Users\christophe\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Program Files\e-Carte Bleue La Banque Postale\ecbl-lbp.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\SanDisk\SanDisk TransferMate\SD Monitor.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Logitech\GamePanel Software\LCD Manager\Applets\LCDClock.exe
C:\Program Files\Logitech\GamePanel Software\LCD Manager\Applets\LCDPop3.exe
C:\Program Files\Logitech\GamePanel Software\LCD Manager\Applets\LCDMedia.exe
C:\Windows\SYSTEM32\CTXFISPI.EXE
C:\Windows\System32\mobsync.exe
C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\CPSHelpRunner10.exe
C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Creative\Sound Blaster X-Fi\Entertainment Center\EAXLoadr.exe
C:\Program Files\Creative\ShareDLL\CADI\NotiMan.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE
C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Program Files\BitComet\BitComet.exe
F:\telechargement\wow.exe
F:\telechargement\HiJackThis.exe
C:\Program Files\Mozilla Firefox\firefox.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.daemonsearch.com/fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: 88.191.18.192 L2authd.lineage2.com #Val Memoria
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.2.8.7.dll
O2 - BHO: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~2\MEGAUP~1.DLL
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Mega Manager IE Click Monitor - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll
O3 - Toolbar: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~2\MEGAUP~1.DLL
O3 - Toolbar: &TerraTec Home Cinema - {AD6E6555-FB2C-47D4-8339-3E2965509877} - C:\PROGRA~1\TerraTec\TERRAT~1\THCDES~1.DLL
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [AudioDrvEmulator] "C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe" -1 AudioDrvEmulator "C:\Program Files\Creative\Shared Files\Module Loader\Audio Emulator\AudDrvEm.dll"
O4 - HKLM\..\Run: [UpdReg] C:\Windows\UpdReg.EXE
O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
O4 - HKLM\..\Run: [UMonit] C:\Windows\system32\umonit.exe
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [XboxStat] "C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
O4 - HKLM\..\Run: [Launch LCDMon] "C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe"
O4 - HKLM\..\Run: [Launch LGDCore] "C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe" /SHOWHIDE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [CTXFIREG] CTxfiReg.exe
O4 - HKLM\..\Run: [PSP Auto Trasfer] C:\Program Files\Dr4iNLiF3 Products\PSP Auto Transfer\PSP Auto Transfer.exe
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide
O4 - HKLM\..\Run: [CanalPlayerHelper] C:\Program Files\Lecteur CANALPLAY\CanalPlayerHelper.exe
O4 - HKLM\..\Run: [Module Loader] C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe -StartUpRun
O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [CTDVDDET] "C:\Program Files\Creative\DVDAudio\CTDVDDET.EXE"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [PSPVideo9] C:\Program Files\pspvideo9\pspVideo9.exe -t
O4 - HKLM\..\Run: [VolPanel] "C:\Program Files\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe" /r
O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatchTray10.exe"
O4 - HKLM\..\Run: [DMXLauncher] "C:\Program Files\Roxio\CinePlayer\DMXLauncher.exe"
O4 - HKLM\..\Run: [TerraTec Remote Control] "C:\Program Files\Common Files\TerraTec\Remote\TTTvRc.exe"
O4 - HKLM\..\Run: [Zboard] C:\Program Files\Ideazon\ZEngine\Zboard.exe
O4 - HKLM\..\Run: [My Movies Tray] "C:\Program Files\MCE\My Movies\My Movies Tray.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Core Temp] C:\Users\christophe\Downloads\CoreTemp\Core Temp.exe
O4 - HKCU\..\Run: [CreativeTaskScheduler] "C:\Program Files\Creative\Shared Files\CTSched.exe" /logon
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [sycoy] c:\users\christophe\appdata\local\sycoy.exe sycoy
O4 - HKCU\..\Run: [iyieu] "c:\users\christophe\appdata\local\iyieu.exe" iyieu
O4 - HKCU\..\Run: [ciwsg] "c:\users\christophe\appdata\local\ciwsg.exe" ciwsg
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [ISUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler
O4 - HKCU\..\Run: [Google Update] "C:\Users\christophe\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [DevconDefaultDB] C:\Windows\system32\READREG /SILENT /FAIL=1 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [DevconDefaultDB] C:\Windows\system32\READREG /SILENT /FAIL=1 (User 'Default user')
O4 - Global Startup: e-Carte Bleue La Banque Postale.lnk = C:\Program Files\e-Carte Bleue La Banque Postale\ecbl-lbp.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O4 - Global Startup: Monitor.lnk = C:\Program Files\SanDisk\SanDisk TransferMate\SD Monitor.exe
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: Download Link Using Mega Manager... - C:\Program Files\Megaupload\Mega Manager\mm_file.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Liens de téléchargement avec Mega Manager... - C:\Program Files\Megaupload\Mega Manager\mm_file.htm
O8 - Extra context menu item: Recherche sur eBay - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
O8 - Extra context menu item: Télécharger avec &BitSpirit - C:\Program Files\BitSpirit\bsurl.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra button: (no name) - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - (no file)
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - (no file)
O9 - Extra button: (no name) - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - (no file)
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.2.8.7.dll/206 (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O15 - Trusted Zone: *.canalplay.com
O15 - Trusted Zone: *.canalplusactive.com
O15 - Trusted Zone: *.canalplay.com (HKLM)
O15 - Trusted Zone: *.canalplusactive.com (HKLM)
O16 - DPF: CANALPLAY Installer - http://www.canalplay.com/cabs/CanalInstaller.CAB
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://appldnld.apple.com.edgesuite.net/content.info.ap...
O16 - DPF: {0A5FD7C5-A45C-49FC-ADB5-9952547D5715} (Creative Software AutoUpdate) - http://www.creative.com/softwareupdate/su/ocx/15031/CTS...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://www.creative.com/softwareupdate/su2/ocx/15105/CT...
O17 - HKLM\System\CCS\Services\Tcpip\..\{48994F70-44F5-411B-99CF-7A4B3E710B1F}: NameServer = 212.27.53.252,212.27.54.252
O22 - SharedTaskScheduler: Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Creative ALchemy AL6 Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTAudSvc.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe
O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: DiRT Drivers Auto Removal (pr2ah4nc) (pr2ah4nc) - CODEMASTERS - C:\Windows\system32\pr2ah4nc.exe
O23 - Service: Roxio UPnP Renderer 10 - Sonic Solutions - C:\Program Files\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe
O23 - Service: Roxio Upnp Server 10 - Sonic Solutions - C:\Program Files\Roxio\Digital Home 10\RoxioUpnpService10.exe
O23 - Service: LiveShare P2P Server 10 (RoxLiveShare10) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe
O23 - Service: RoxMediaDB10 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
O23 - Service: Roxio Hard Drive Watcher 10 (RoxWatch10) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatch10.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: Service CANALPLAY - Canal+ Distribution - C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe
O23 - Service: SessionLauncher - Unknown owner - C:\Users\CHRIST~1\AppData\Local\Temp\DX9\SessionLauncher.exe (file missing)
O23 - Service: Start BT in service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\StartSkysolSvc.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

--
End of file - 17645 bytes


merci pour votre aide

Autres pages sur : resolu problemes pub instalation webmediaplayeur

a b 8 Sécurité
8 Septembre 2008 17:05:03

Bonjour,

Désactive le contrôle des comptes utilisateurs (UAC). Tu réactiveras ce contrôle en fin de procédure.
AIDE : Désactiver l'UAC dans Vista

Télécharge Navilog1.exe (IL-MAFIOSO)
Enregistre-le sur ton Bureau.
Lance l'installation en double cliquant sur navilog.exe.
Une fois l'installation terminée, fais un clic droit sur le raccourci navilog1 puis choisis "Exécuter en tant qu'administrateur".

Laisse-toi guider par l'utilitaire. Choisis l'option 1 puis valide.
[#ff0000]! N'utilise pas l'option 2, 3 ou 4 sans notre accord ![/#f]
Patiente jusqu'à l'apparition de ce message (en italique) :
*** Analyse Termine le ..... ***
Appuie sur une touche comme demandé.
Le Bloc-notes va s'ouvrir. Poste-nous son contenu de cette manière :

  • Edition / Sélectionner tout
  • Edition / Copier
  • Clique-Droit / Coller dans ta réponse


  • NOTE : Le rapport se trouve également ici : C:\fixnavi.txt
    11 Septembre 2008 12:18:12

    bonjour voici le rapport de navilog

    Search Navipromo version 3.6.5 commencé le 11/09/2008 à 12:07:25,49

    !!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
    !!! Postez ce rapport sur le forum pour le faire analyser !!!
    !!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!

    Outil exécuté depuis C:\Program Files\navilog1
    Session actuelle : "christophe"

    Mise à jour le 22.08.2008 à 17h30 par IL-MAFIOSO

    Microsoft Windows Vista 6.0.6001
    Internet Explorer : 7.0.6001.18000
    Système de fichiers : NTFS

    Recherche executé en mode normal

    *** Recherche Programmes installés ***


    *** Recherche dossiers dans "C:\Windows" ***


    *** Recherche dossiers dans "C:\Program Files" ***


    *** Recherche dossiers dans "c:\progra~2\micros~1\windows\startm~1\programs" ***


    *** Recherche dossiers dans "c:\progra~2\micros~1\windows\startm~1" ***


    *** Recherche dossiers dans "C:\ProgramData" ***


    *** Recherche dossiers dans "c:\users\christ~1\appdata\roaming\micros~1\windows\startm~1\programs" ***


    *** Recherche dossiers dans "C:\Users\christophe\AppData\Local\virtualstore\Program Files" ***


    *** Recherche dossiers dans "C:\Users\christophe\AppData\Roaming" ***


    *** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
    pour + d'infos : http://www.gmer.net



    *** Recherche avec GenericNaviSearch ***
    !!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
    !!! A vérifier impérativement avant toute suppression manuelle !!!

    * Recherche dans "C:\Windows\system32" *

    * Recherche dans "C:\Users\christophe\AppData\Local\Microsoft" *

    * Recherche dans "C:\Users\christophe\AppData\Local\virtualstore\windows\system32" *

    * Recherche dans "C:\Users\christophe\AppData\Local" *



    *** Recherche fichiers ***



    *** Recherche clés spécifiques dans le Registre ***

    HKEY_CURRENT_USER\Software\Lanconfig trouvé !

    *** Module de Recherche complémentaire ***
    (Recherche fichiers spécifiques)

    1)Recherche nouveaux fichiers Instant Access :


    2)Recherche Heuristique :

    * Dans "C:\Windows\system32" :


    * Dans "C:\Users\christophe\AppData\Local\Microsoft" :


    * Dans "C:\Users\christophe\AppData\Local\virtualstore\windows\system32" :


    * Dans "C:\Users\christophe\AppData\Local" :

    ciwsg.dat trouvé !
    ciwsg.exe trouvé !
    ciwsg_nav.dat trouvé !
    ciwsg_navps.dat trouvé !

    3)Recherche Certificats :

    Certificat Egroup trouvé !
    Certificat Electronic-Group trouvé !
    Certificat Montorgueil absent !
    Certificat OOO-Favorit trouvé !
    Certificat Sunny-Day-Design-Ltd absent !

    4)Recherche fichiers connus :



    *** Analyse terminée le 11/09/2008 à 12:16:52,98 ***
    Contenus similaires
    a b 8 Sécurité
    11 Septembre 2008 13:12:32

    Re,

    Vérifie que le contrôle des comptes utilisateurs (UAC) soit bien désactivé.
    Fais un clic droit sur le raccourci navilog1 puis choisis "Exécuter en tant qu'administrateur".

    Suis les instructions. Choisis ensuite l'option 2 puis valide.
    Laisse toi guider et réponds aux questions éventuelles.

    L'utilitaire va t'informer qu'il va redémarrer l'ordinateur.
    [#ff0000]**Ferme toutes les fenêtres ouvertes et enregistre tes documents personnels ouverts**[/#f]
    Appuie maintenant sur une touche, comme demandé.
    (si ton PC ne redémarre pas automatiquement, fais-le manuellement)

    Patiente jusqu'à l'apparition de ce message :
    "*** Nettoyage Termine le ..... ***"

    Le Bloc-notes va s'ouvrir.
    Sauvegarde le rapport de manière à le retrouver.
    Referme le Bloc-notes. Ton bureau va maintenant réapparaître.

    NOTE : Si ton Bureau ne réapparait pas, appuie simultanément sur Ctrl+Alt+Suppr pour ouvrir le Gestionnaire des tâches.
    Rends-toi sur l'onglet "Processus". Clique en haut à gauche sur Fichier et choisis "Exécuter..."
    Tape explorer puis valide.

    Poste le rapport sauvegardé auparavant (C:\cleannavi.txt)
    Ainsi qu'un nouveau rapport Hijackthis.

    Réactive maintenant le contrôle des comptes utilisateurs (UAC).
    11 Septembre 2008 19:48:36

    voici lle rapport après la désinfection

    Clean Navipromo version 3.6.5 commencé le 11/09/2008 à 19:38:50,39

    Outil exécuté depuis C:\Program Files\navilog1
    Session actuelle : "christophe"

    Mise à jour le 22.08.2008 à 17h30 par IL-MAFIOSO

    Microsoft Windows Vista 6.0.6001
    Internet Explorer : 7.0.6001.18000
    Système de fichiers : NTFS

    Mode suppression automatique
    avec prise en charge résultats Catchme et GNS


    Nettoyage exécuté au redémarrage de l'ordinateur


    *** fsbl1.txt non trouvé ***
    (Assurez-vous que Catchme n'avait rien trouvé lors de la recherche)


    *** Suppression avec sauvegardes résultats GenericNaviSearch ***

    * Suppression dans "C:\Windows\System32" *


    * Suppression dans "C:\Users\christophe\AppData\Local\Microsoft" *


    * Suppression dans "C:\Users\christophe\AppData\Local\virtualstore\windows\system32" *


    * Suppression dans "C:\Users\christophe\AppData\Local" *



    *** Suppression dossiers dans "C:\Windows" ***


    *** Suppression dossiers dans "C:\Program Files" ***


    *** Suppression dossiers dans "c:\progra~2\micros~1\windows\startm~1\programs" ***


    *** Suppression dossiers dans "c:\progra~2\micros~1\windows\startm~1" ***


    *** Suppression dossiers dans "C:\ProgramData" ***


    *** Suppression dossiers dans c:\users\christ~1\appdata\roaming\micros~1\windows\startm~1\programs ***


    *** Suppression dossiers dans "C:\Users\christophe\AppData\Local\virtualstore\Program Files" ***


    *** Suppression dossiers dans "C:\Users\christophe\AppData\Roaming" ***



    *** Suppression fichiers ***


    *** Suppression fichiers temporaires ***

    Nettoyage contenu C:\Windows\Temp effectué !
    Nettoyage contenu C:\Users\CHRIST~1\AppData\Local\Temp effectué !

    *** Traitement Recherche complémentaire ***
    (Recherche fichiers spécifiques)

    1)Suppression avec sauvegardes nouveaux fichiers Instant Access :

    2)Recherche, création sauvegardes et suppression Heuristique :


    * Dans "C:\Windows\system32" *


    * Dans "C:\Users\christophe\AppData\Local\Microsoft" *


    * Dans "C:\Users\christophe\AppData\Local\virtualstore\windows\system32" *


    * Dans "C:\Users\christophe\AppData\Local" *


    ciwsg.exe trouvé !
    Copie ciwsg.exe réalisée avec succès !
    ciwsg.exe supprimé !

    ciwsg.dat trouvé !
    Copie ciwsg.dat réalisée avec succès !
    ciwsg.dat supprimé !

    ciwsg_nav.dat trouvé !
    Copie ciwsg_nav.dat réalisée avec succès !
    ciwsg_nav.dat supprimé !

    ciwsg_navps.dat trouvé !
    Copie ciwsg_navps.dat réalisée avec succès !
    ciwsg_navps.dat supprimé !

    C:\Windows\prefetch\ciwsg*.pf trouvé !
    Copie C:\Windows\prefetch\ciwsg*.pf réalisée avec succès !
    C:\Windows\prefetch\ciwsg*.pf supprimé !


    *** Sauvegarde du Registre vers dossier Safebackup ***

    sauvegarde du Registre réalisée avec succès !

    *** Nettoyage Registre ***

    Nettoyage Registre Ok


    *** Certificats ***

    Certificat Egroup supprimé !
    Certificat Electronic-Group supprimé !
    Certificat Montorgueil absent !
    Certificat OOO-Favorit supprimé !
    Certificat Sunny-Day-Design-Ltdt absent !

    *** Clés RUN orphelines Navipromo ***
    !! Résultats temporairement non pris en charge !!
    !! Les clés trouvées ne sont pas forcément infectées !!

    Clés trouvés :

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "sycoy"="c:\\users\\christophe\\appdata\\local\\sycoy.exe sycoy"



    *** Nettoyage terminé le 11/09/2008 à 19:46:16,37 ***

    11 Septembre 2008 19:49:58

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 19:49:19, on 11/09/2008
    Platform: Windows Vista SP1 (WinNT 6.00.1905)
    MSIE: Internet Explorer v7.00 (7.00.6001.18000)
    Boot mode: Normal

    Running processes:
    C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\system32\taskeng.exe
    C:\Windows\Explorer.EXE
    C:\Windows\system32\conime.exe
    C:\Program Files\U-ABIT\uGuru\uGuru.exe
    C:\Program Files\Windows Defender\MSASCui.exe
    C:\Program Files\Alwil Software\Avast4\ashDisp.exe
    C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
    C:\Windows\System32\umonit.exe
    C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
    C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
    C:\Windows\WindowsMobile\wmdc.exe
    C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe
    C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe
    C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
    C:\Windows\System32\CTHELPER.EXE
    C:\Windows\SYSTEM32\CTXFISPI.EXE
    C:\Program Files\Common Files\logishrd\LComMgr\Communications_Helper.exe
    C:\Program Files\Logitech\QuickCam\Quickcam.exe
    C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe
    C:\Windows\System32\Ctxfihlp.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Creative\DVDAudio\CTDVDDET.exe
    C:\Windows\System32\rundll32.exe
    C:\Program Files\pspvideo9\pspVideo9.exe
    C:\Program Files\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe
    C:\Program Files\Common Files\TerraTec\Remote\TTTvRc.exe
    C:\Program Files\Ideazon\ZEngine\Zboard.exe
    C:\Program Files\MCE\My Movies\My Movies Tray.exe
    C:\Program Files\Roxio Creator 2009\5.0\CPMonitor.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Windows\ehome\ehtray.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Users\christophe\Downloads\CoreTemp\Core Temp.exe
    C:\Program Files\Creative\Shared Files\CTSched.exe
    C:\Program Files\DAEMON Tools Lite\daemon.exe
    C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
    C:\Users\christophe\AppData\Local\Google\Update\GoogleUpdate.exe
    C:\Program Files\e-Carte Bleue La Banque Postale\ecbl-lbp.exe
    C:\Program Files\Logitech\SetPoint\SetPoint.exe
    C:\Program Files\SanDisk\SanDisk TransferMate\SD Monitor.exe
    C:\Program Files\Windows Media Player\wmpnscfg.exe
    C:\Program Files\Logitech\GamePanel Software\LCD Manager\Applets\LCDClock.exe
    C:\Program Files\Logitech\GamePanel Software\LCD Manager\Applets\LCDPop3.exe
    C:\Program Files\Logitech\GamePanel Software\LCD Manager\Applets\LCDMedia.exe
    C:\Windows\System32\mobsync.exe
    C:\Windows\ehome\ehmsas.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
    C:\Program Files\Creative\Sound Blaster X-Fi\Entertainment Center\EAXLoadr.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\Creative\ShareDLL\CADI\NotiMan.exe
    C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE
    C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
    C:\Windows\system32\wuauclt.exe
    F:\telechargement\HiJackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.daemonsearch.com/fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    O1 - Hosts: 88.191.18.192 L2authd.lineage2.com #Val Memoria
    O1 - Hosts: ::1 localhost
    O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.2.8.7.dll
    O2 - BHO: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~2\MEGAUP~1.DLL
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Mega Manager IE Click Monitor - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll
    O3 - Toolbar: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~2\MEGAUP~1.DLL
    O3 - Toolbar: &TerraTec Home Cinema - {AD6E6555-FB2C-47D4-8339-3E2965509877} - C:\PROGRA~1\TerraTec\TERRAT~1\THCDES~1.DLL
    O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [AudioDrvEmulator] "C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe" -1 AudioDrvEmulator "C:\Program Files\Creative\Shared Files\Module Loader\Audio Emulator\AudDrvEm.dll"
    O4 - HKLM\..\Run: [UpdReg] C:\Windows\UpdReg.EXE
    O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
    O4 - HKLM\..\Run: [UMonit] C:\Windows\system32\umonit.exe
    O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
    O4 - HKLM\..\Run: [XboxStat] "C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
    O4 - HKLM\..\Run: [Launch LCDMon] "C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe"
    O4 - HKLM\..\Run: [Launch LGDCore] "C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe" /SHOWHIDE
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
    O4 - HKLM\..\Run: [CTXFIREG] CTxfiReg.exe
    O4 - HKLM\..\Run: [PSP Auto Trasfer] C:\Program Files\Dr4iNLiF3 Products\PSP Auto Transfer\PSP Auto Transfer.exe
    O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
    O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe"
    O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide
    O4 - HKLM\..\Run: [CanalPlayerHelper] C:\Program Files\Lecteur CANALPLAY\CanalPlayerHelper.exe
    O4 - HKLM\..\Run: [Module Loader] C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe -StartUpRun
    O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE
    O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
    O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [CTDVDDET] "C:\Program Files\Creative\DVDAudio\CTDVDDET.EXE"
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [PSPVideo9] C:\Program Files\pspvideo9\pspVideo9.exe -t
    O4 - HKLM\..\Run: [VolPanel] "C:\Program Files\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe" /r
    O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files\Common Files\Roxio Shared\11.0\SharedCOM\RoxWatchTray11.exe"
    O4 - HKLM\..\Run: [TerraTec Remote Control] "C:\Program Files\Common Files\TerraTec\Remote\TTTvRc.exe"
    O4 - HKLM\..\Run: [Zboard] C:\Program Files\Ideazon\ZEngine\Zboard.exe
    O4 - HKLM\..\Run: [My Movies Tray] "C:\Program Files\MCE\My Movies\My Movies Tray.exe"
    O4 - HKLM\..\Run: [CPMonitor] "C:\Program Files\Roxio Creator 2009\5.0\CPMonitor.exe"
    O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
    O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
    O4 - HKCU\..\Run: [Core Temp] C:\Users\christophe\Downloads\CoreTemp\Core Temp.exe
    O4 - HKCU\..\Run: [CreativeTaskScheduler] "C:\Program Files\Creative\Shared Files\CTSched.exe" /logon
    O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
    O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    O4 - HKCU\..\Run: [sycoy] c:\users\christophe\appdata\local\sycoy.exe sycoy
    O4 - HKCU\..\Run: [iyieu] "c:\users\christophe\appdata\local\iyieu.exe" iyieu
    O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
    O4 - HKCU\..\Run: [ISUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler
    O4 - HKCU\..\Run: [Google Update] "C:\Users\christophe\AppData\Local\Google\Update\GoogleUpdate.exe" /c
    O4 - HKCU\..\Run: [ciwsg] "c:\users\christophe\appdata\local\ciwsg.exe" ciwsg
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [DevconDefaultDB] C:\Windows\system32\READREG /SILENT /FAIL=1 (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [DevconDefaultDB] C:\Windows\system32\READREG /SILENT /FAIL=1 (User 'Default user')
    O4 - Global Startup: e-Carte Bleue La Banque Postale.lnk = C:\Program Files\e-Carte Bleue La Banque Postale\ecbl-lbp.exe
    O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
    O4 - Global Startup: Monitor.lnk = C:\Program Files\SanDisk\SanDisk TransferMate\SD Monitor.exe
    O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
    O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
    O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
    O8 - Extra context menu item: Download Link Using Mega Manager... - C:\Program Files\Megaupload\Mega Manager\mm_file.htm
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
    O8 - Extra context menu item: Liens de téléchargement avec Mega Manager... - C:\Program Files\Megaupload\Mega Manager\mm_file.htm
    O8 - Extra context menu item: Recherche sur eBay - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
    O8 - Extra context menu item: Télécharger avec &BitSpirit - C:\Program Files\BitSpirit\bsurl.htm
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
    O9 - Extra button: (no name) - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - (no file)
    O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - (no file)
    O9 - Extra button: (no name) - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - (no file)
    O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.2.8.7.dll/206 (file missing)
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O13 - Gopher Prefix:
    O15 - Trusted Zone: *.canalplay.com
    O15 - Trusted Zone: *.canalplusactive.com
    O15 - Trusted Zone: *.canalplay.com (HKLM)
    O15 - Trusted Zone: *.canalplusactive.com (HKLM)
    O16 - DPF: CANALPLAY Installer - http://www.canalplay.com/cabs/CanalInstaller.CAB
    O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://appldnld.apple.com.edgesuite.net/content.info.ap...
    O16 - DPF: {0A5FD7C5-A45C-49FC-ADB5-9952547D5715} (Creative Software AutoUpdate) - http://www.creative.com/softwareupdate/su/ocx/15031/CTS...
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
    O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://www.creative.com/softwareupdate/su2/ocx/15105/CT...
    O17 - HKLM\System\CCS\Services\Tcpip\..\{48994F70-44F5-411B-99CF-7A4B3E710B1F}: NameServer = 212.27.53.252,212.27.54.252
    O22 - SharedTaskScheduler: Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll
    O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
    O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: Creative ALchemy AL6 Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
    O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
    O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTAudSvc.exe
    O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
    O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
    O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe
    O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
    O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
    O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
    O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
    O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
    O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
    O23 - Service: DiRT Drivers Auto Removal (pr2ah4nc) (pr2ah4nc) - CODEMASTERS - C:\Windows\system32\pr2ah4nc.exe
    O23 - Service: Roxio UPnP Renderer 10 - Sonic Solutions - C:\Program Files\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe
    O23 - Service: Roxio UPnP Renderer 11 - Sonic Solutions - C:\Program Files\Roxio Creator 2009\Digital Home 11\RoxioUPnPRenderer11.exe
    O23 - Service: Roxio Upnp Server 10 - Sonic Solutions - C:\Program Files\Roxio\Digital Home 10\RoxioUpnpService10.exe
    O23 - Service: Roxio Upnp Server 11 - Sonic Solutions - C:\Program Files\Roxio Creator 2009\Digital Home 11\RoxioUpnpService11.exe
    O23 - Service: LiveShare P2P Server 10 (RoxLiveShare10) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe
    O23 - Service: LiveShare P2P Server 11 (RoxLiveShare11) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\11.0\SharedCOM\RoxLiveShare11.exe
    O23 - Service: RoxMediaDB10 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
    O23 - Service: RoxMediaDB11 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\11.0\SharedCOM\RoxMediaDB11.exe
    O23 - Service: Roxio Hard Drive Watcher 10 (RoxWatch10) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatch10.exe
    O23 - Service: Roxio Hard Drive Watcher 11 (RoxWatch11) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\11.0\SharedCOM\RoxWatch11.exe
    O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
    O23 - Service: Service CANALPLAY - Canal+ Distribution - C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe
    O23 - Service: SessionLauncher - Unknown owner - C:\Users\CHRIST~1\AppData\Local\Temp\DX9\SessionLauncher.exe (file missing)
    O23 - Service: Start BT in service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\StartSkysolSvc.exe
    O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

    --
    End of file - 18148 bytes
    a b 8 Sécurité
    11 Septembre 2008 20:46:55

    Re,

    [#ff0000]Désactive tes protections résidentes (antivirus, Spybot-S&D, etc.) ![/#f]

  • Télécharge ComboFix ([#ff0000]sUBs[/#f]) sur ton Bureau.
  • Double clique sur ComboFix.exe (le .exe n'est pas forcément visible) afin de le lancer.
  • Lorsque la recherche sera terminée, un rapport apparaîtra. Poste ce rapport (C:\combofix.txt*) dans ta prochaine réponse.

    AIDE : Un guide et un tutoriel sur l'utilisation de ComboFix
    * le nom de la partition peut changer
    11 Septembre 2008 23:19:54

    voici le rapport

    ComboFix 08-09-10.04 - christophe 2008-09-11 22:56:43.1 - NTFSx86
    Microsoft® Windows Vista™ Édition Intégrale 6.0.6001.1.1252.1.1036.18.1832 [GMT 2:00]
    Endroit: C:\Users\christophe\Desktop\ComboFix.exe
    * Création d'un nouveau point de restauration
    .

    (((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
    .

    C:\Windows\system32\setup.ini

    .
    ((((((((((((((((((((((((((((( Fichiers cr‚‚s 2008-08-11 to 2008-09-11 ))))))))))))))))))))))))))))))))))))
    .

    2008-09-11 18:40 . 2008-09-11 18:40 <REP> d-------- C:\Users\christophe\AppData\Roaming\Sonic
    2008-09-11 18:28 . 2008-09-11 18:39 <REP> d-------- C:\ProgramData\Uninstall
    2008-09-11 18:20 . 2008-09-11 18:25 <REP> d-------- C:\Program Files\Roxio Creator 2009
    2008-09-07 02:39 . 2008-09-07 20:29 <REP> d-------- C:\Users\christophe\{11d60891-f2ea-4f5a-9433-663a3f44b52e}
    2008-09-07 00:59 . 2008-09-07 01:00 <REP> d-------- C:\Program Files\World of Warcraft
    2008-09-07 00:59 . 2008-09-07 01:19 <REP> d-------- C:\Program Files\Common Files\Blizzard Entertainment
    2008-09-06 20:04 . 2008-09-11 19:46 <REP> d-------- C:\Program Files\Navilog1
    2008-09-06 04:16 . 2008-09-06 04:16 <REP> d-------- C:\Windows\SQLTools9_KB948109_ENU
    2008-09-06 04:14 . 2008-09-06 04:14 <REP> d-------- C:\Windows\SQL9_KB948109_ENU
    2008-09-05 18:46 . 2008-09-05 18:52 <REP> d-------- C:\ProgramData\My Movies
    2008-09-05 18:46 . 2008-09-05 18:46 <REP> d-------- C:\Program Files\MCE
    2008-09-05 18:41 . 2008-09-06 04:16 <REP> d-------- C:\Program Files\Microsoft SQL Server
    2008-09-04 16:18 . 2008-09-04 16:18 <REP> d-------- C:\ProgramData\TerraTec
    2008-09-04 16:17 . 2008-09-04 16:17 <REP> d-------- C:\Program Files\TerraTec
    2008-09-04 16:17 . 2008-09-04 16:17 <REP> d-------- C:\Program Files\Common Files\TerraTec
    2008-09-04 16:17 . 2007-07-02 15:31 1,712,128 -ra------ C:\Windows\System32\gdiplus.dll
    2008-09-04 16:17 . 2007-07-02 15:31 44,544 -ra------ C:\Windows\System32\msxml4a.dll
    2008-09-04 16:16 . 2008-09-04 16:23 <REP> d-------- C:\Users\christophe\AppData\Roaming\TerraTec
    2008-09-04 13:53 . 2008-09-04 13:53 <REP> d-------- C:\Program Files\Common Files\INCA Shared
    2008-09-04 12:44 . 2007-03-16 10:19 5,174 -ra------ C:\Windows\System32\nppt9x.vxd
    2008-09-04 12:44 . 2007-03-16 10:19 4,682 -ra------ C:\Windows\System32\npptNT2.sys
    2008-09-04 05:20 . 2008-09-11 18:32 <REP> d-------- C:\Users\christophe\AppData\Roaming\Roxio
    2008-09-03 20:58 . 2008-09-11 18:38 <REP> d-------- C:\ProgramData\Sonic
    2008-09-03 20:56 . 2008-09-11 18:22 <REP> d-------- C:\ProgramData\Roxio
    2008-09-03 20:54 . 2008-09-11 18:25 <REP> d-------- C:\Program Files\Common Files\Sonic Shared
    2008-09-03 20:53 . 2008-09-03 21:01 <REP> d-------- C:\ProgramData\SmartSound Software Inc
    2008-09-03 20:53 . 2008-09-03 20:53 <REP> d-------- C:\ProgramData\eSellerate
    2008-09-03 20:53 . 2008-09-03 20:53 <REP> d-------- C:\Program Files\SmartSound Software
    2008-09-03 20:53 . 2008-09-11 18:23 <REP> d-------- C:\Program Files\Common Files\Roxio Shared
    2008-09-03 20:52 . 2008-09-03 20:52 <REP> dr------- C:\Windows\System32\config\systemprofile\Searches
    2008-09-03 20:52 . 2008-09-03 20:52 <REP> dr------- C:\Windows\System32\config\systemprofile\Saved Games
    2008-09-03 20:52 . 2008-09-03 20:52 <REP> dr------- C:\Windows\System32\config\systemprofile\Links
    2008-09-03 20:52 . 2008-09-11 18:26 <REP> d-------- C:\Program Files\Roxio
    2008-09-02 20:03 . 2008-09-02 20:03 <REP> d-------- C:\Users\christophe\AppData\Roaming\InterVideo
    2008-09-02 20:01 . 2008-09-02 20:01 <REP> d-------- C:\Program Files\InterVideo Information Service
    2008-09-02 20:01 . 2008-09-02 20:01 <REP> d-------- C:\Program Files\Common Files\Ulead
    2008-09-02 20:01 . 2006-05-11 18:41 654 --------- C:\Windows\remove.iss
    2008-09-02 19:57 . 2008-09-02 19:57 <REP> d-------- C:\Program Files\InterVideo
    2008-09-02 19:57 . 2008-09-02 19:57 <REP> d-------- C:\Program Files\Common Files\InterVideo
    2008-09-02 15:00 . 2008-09-02 15:00 <REP> d-------- C:\Program Files\pspvideo9
    2008-09-02 13:14 . 2008-09-02 13:20 <REP> d-------- C:\Program Files\WinAVI MP4 Converter
    2008-08-29 23:39 . 2008-05-02 02:38 301,656 --a------ C:\Windows\System32\BtCoreIf.dll
    2008-08-22 23:14 . 2008-08-22 23:14 <REP> d-------- C:\Program Files\Opera
    2008-08-20 15:09 . 2005-01-24 17:47 1,746,360 --------- C:\Windows\System32\CTAA1.DAT
    2008-08-20 15:09 . 2008-06-13 11:13 65,536 --------- C:\Windows\System32\ctdvda32.dll
    2008-08-19 15:12 . 2008-08-19 15:12 <REP> d-------- C:\Program Files\Apple Software Update
    2008-08-19 15:11 . 2008-08-19 15:11 <REP> d-------- C:\Program Files\iTunes
    2008-08-19 15:11 . 2008-08-19 15:11 <REP> d-------- C:\Program Files\iPod
    2008-08-19 15:09 . 2008-08-19 15:09 <REP> d-------- C:\Program Files\QuickTime
    2008-08-19 15:09 . 2008-08-19 15:09 <REP> d-------- C:\Program Files\Bonjour
    2008-08-19 15:00 . 2008-08-19 15:00 <REP> d-------- C:\Program Files\Safari
    2008-08-14 15:19 . 2008-08-14 15:19 <REP> d-------- C:\Windows\555EE1B2F53F4057AB489BF9B77E5004.TMP
    2008-08-14 14:13 . 2008-08-14 14:13 <REP> d-------- C:\Program Files\GameSpy
    2008-08-14 14:11 . 2008-08-14 14:11 <REP> d-------- C:\Windows\F579118563414E21A47F41B57AC749B5.TMP
    2008-08-14 14:11 . 2008-08-14 14:11 <REP> d-------- C:\Program Files\Netdevil
    2008-08-13 18:26 . 2008-08-13 21:35 <REP> d-------- C:\Users\christophe\AppData\Roaming\Download Manager
    2008-08-13 16:38 . 2008-07-16 03:32 2,048 --a------ C:\Windows\System32\tzres.dll
    2008-08-13 16:34 . 2008-06-27 03:55 1,383,424 --a------ C:\Windows\System32\mshtml.tlb
    2008-08-13 16:34 . 2008-06-27 06:15 827,392 --a------ C:\Windows\System32\wininet.dll
    2008-08-13 16:34 . 2008-04-10 07:12 738,304 --a------ C:\Windows\System32\inetcomm.dll
    2008-08-13 16:34 . 2008-06-19 05:31 361,984 --a------ C:\Windows\System32\IPSECSVC.DLL
    2008-08-13 16:34 . 2008-04-18 07:48 269,312 --a------ C:\Windows\System32\es.dll
    2008-08-11 19:07 . 2008-08-11 19:07 <REP> d-------- C:\Users\christophe\AppData\Roaming\Grisoft
    2008-08-11 19:07 . 2008-08-11 19:07 <REP> d-------- C:\ProgramData\Grisoft
    2008-08-11 19:07 . 2007-05-30 14:10 10,872 --a------ C:\Windows\System32\drivers\AvgAsCln.sys
    2008-08-11 10:53 . 2008-08-11 10:53 57,328 --a------ C:\Windows\System32\drivers\RxFilter.sys

    .
    (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2008-09-11 16:26 --------- d-----w C:\Program Files\Common Files\PX Storage Engine
    2008-09-11 11:45 --------- d-----w C:\Program Files\Mio Technology
    2008-09-11 10:02 --------- d-----w C:\Program Files\Messenger Plus! Live
    2008-09-07 20:02 --------- d-----w C:\Program Files\CSV2ASC
    2008-09-07 18:40 --------- d-----w C:\Program Files\BitComet
    2008-09-06 05:01 --------- d-----w C:\Program Files\Common Files\Adobe
    2008-09-05 16:42 --------- d-----w C:\Program Files\Microsoft.NET
    2008-09-05 14:37 --------- d--h--w C:\Program Files\InstallShield Installation Information
    2008-09-03 18:56 --------- d-----w C:\Program Files\Windows Sidebar
    2008-09-03 18:52 --------- d-----w C:\Program Files\Common Files\InstallShield
    2008-09-03 17:06 --------- d-----w C:\ProgramData\Creative
    2008-09-03 13:03 --------- d-----w C:\Program Files\Creative
    2008-09-02 16:51 --------- d-----w C:\Program Files\DivX
    2008-09-02 13:00 --------- d-----w C:\Program Files\AviSynth 2.5
    2008-08-30 22:37 37,440 ----a-w C:\Windows\system32\drivers\pssdklbf.drv
    2008-08-30 22:37 30,272 ----a-w C:\Windows\system32\drivers\pssdk31.drv
    2008-08-29 21:46 --------- d-----w C:\Program Files\Common Files\logishrd
    2008-08-29 21:39 --------- d-----w C:\Program Files\Common Files\Logitech
    2008-08-27 18:35 --------- d-----w C:\Users\christophe\AppData\Roaming\MyPhoneExplorer
    2008-08-27 18:06 --------- d-----w C:\ProgramData\NVIDIA
    2008-08-27 18:03 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard
    2008-08-27 18:03 --------- d-----w C:\Program Files\AGEIA Technologies
    2008-08-24 13:59 --------- d-----w C:\Program Files\BitSpirit
    2008-08-20 13:08 --------- d-----w C:\Program Files\Common Files\Creative Labs Shared
    2008-08-20 13:07 --------- d--h--w C:\Program Files\Creative Installation Information
    2008-08-19 13:26 --------- d-----w C:\Users\christophe\AppData\Roaming\Apple Computer
    2008-08-19 13:26 --------- d-----w C:\Program Files\Microsoft Silverlight
    2008-08-19 13:11 --------- d-----w C:\ProgramData\Apple Computer
    2008-08-18 15:59 --------- d-----w C:\Program Files\Lecteur CANALPLAY
    2008-08-13 15:48 --------- d-----w C:\Program Files\Windows Mail
    2008-08-13 14:39 --------- d-----w C:\ProgramData\Microsoft Help
    2008-08-10 10:53 --------- d-----w C:\Users\christophe\AppData\Roaming\DivX
    2008-08-05 00:16 --------- d-----w C:\ProgramData\Spybot - Search & Destroy
    2008-08-04 21:09 --------- d-----w C:\Program Files\Spybot - Search & Destroy
    2008-08-03 21:34 --------- d-----w C:\Program Files\THQ
    2008-08-03 15:21 319,456 ----a-w C:\Windows\DIFxAPI.dll
    2008-08-03 15:04 315,392 ----a-w C:\Windows\HideWin.exe
    2008-08-03 01:20 107,888 ----a-w C:\Windows\System32\CmdLineExt.dll
    2008-08-02 15:57 --------- d-----w C:\Users\christophe\AppData\Roaming\InstallShield Installation Information
    2008-08-02 10:20 5,806,624 ----a-w C:\Windows\System32\nvdispsr.dll
    2008-08-02 10:20 465,440 ----a-w C:\Windows\System32\nvmccssr.dll
    2008-08-02 10:20 4,155,936 ----a-w C:\Windows\System32\nvvitvsr.dll
    2008-08-02 10:20 3,463,712 ----a-w C:\Windows\System32\nvgamesr.dll
    2008-08-02 10:20 2,988,576 ----a-w C:\Windows\System32\nvwssr.dll
    2008-08-02 10:20 2,861,600 ----a-w C:\Windows\System32\nvmoblsr.dll
    2008-08-02 10:20 122,880 ----a-w C:\Windows\System32\nvcod133.dll
    2008-08-01 09:05 70,936 ----a-w C:\Windows\System32\PhysXLoader.dll
    2008-08-01 07:16 63,984 ----a-w C:\Windows\DVDRGN.EXE
    2008-07-31 13:35 --------- d-----w C:\ProgramData\Lavasoft
    2008-07-31 13:35 --------- d-----w C:\Program Files\Lavasoft
    2008-07-31 08:41 68,616 ----a-w C:\Windows\System32\XAPOFX1_1.dll
    2008-07-31 08:41 238,088 ----a-w C:\Windows\System32\xactengine3_2.dll
    2008-07-31 08:40 509,448 ----a-w C:\Windows\System32\XAudio2_2.dll
    2008-07-26 00:25 --------- d-----w C:\Program Files\Java
    2008-07-25 08:36 524,288 ----a-w C:\Windows\System32\DivXsm.exe
    2008-07-24 16:05 --------- d-----w C:\Program Files\Paragon Software
    2008-07-23 16:50 3,596,288 ----a-w C:\Windows\System32\qt-dx331.dll
    2008-07-23 16:48 200,704 ----a-w C:\Windows\System32\ssldivx.dll
    2008-07-23 16:48 1,044,480 ----a-w C:\Windows\System32\libdivx.dll
    2008-07-23 16:46 12,288 ----a-w C:\Windows\System32\DivXWMPExtType.dll
    2008-07-22 13:03 --------- d-----w C:\Program Files\DAEMON Tools Lite
    2008-07-21 17:46 717,296 ----a-w C:\Windows\system32\drivers\sptd.sys
    2008-07-21 17:21 --------- d-----w C:\Users\christophe\AppData\Roaming\gnupg
    2008-07-19 14:36 51,280 ----a-w C:\Windows\system32\drivers\aswMonFlt.sys
    2008-07-16 07:52 446,464 ----a-w C:\Windows\System32\NVUNINST.EXE
    2008-07-15 16:13 15,896 ----a-w C:\Windows\system32\drivers\pfmodnt.sys
    2008-07-15 16:12 1,173,016 ----a-w C:\Windows\system32\drivers\ha20x2k.sys
    2008-07-15 16:11 92,696 ----a-w C:\Windows\system32\drivers\emupia2k.sys
    2008-07-15 16:10 157,208 ----a-w C:\Windows\system32\drivers\ctsfm2k.sys
    2008-07-15 16:09 14,360 ----a-w C:\Windows\system32\drivers\ctprxy2k.sys
    2008-07-15 16:08 347,080 ----a-w C:\Windows\system32\drivers\ctdvda2k.sys
    2008-07-15 16:08 127,000 ----a-w C:\Windows\system32\drivers\ctoss2k.sys
    2008-07-15 16:07 527,384 ----a-w C:\Windows\system32\drivers\ctaud2k.sys
    2008-07-15 16:06 511,000 ----a-w C:\Windows\system32\drivers\ctac32k.sys
    2008-07-15 15:23 72,728 ----a-w C:\Windows\System32\CTHWIUT.DLL
    2008-07-15 15:23 170,520 ----a-w C:\Windows\System32\CT20XUT.DLL
    2008-07-15 15:22 1,323,544 ----a-w C:\Windows\System32\CTEXFIFX.DLL
    2008-07-14 23:08 24,089,151 ----a-w C:\Windows\System32\AppSetup.exe
    2008-07-13 21:28 21,840 ----atw C:\Windows\System32\SIntfNT.dll
    2008-07-13 21:28 17,212 ----atw C:\Windows\System32\SIntf32.dll
    2008-07-13 21:28 12,067 ----atw C:\Windows\System32\SIntf16.dll
    2008-07-12 06:18 467,984 ----a-w C:\Windows\System32\d3dx10_39.dll
    2008-07-12 06:18 3,851,784 ----a-w C:\Windows\System32\D3DX9_39.dll
    2008-07-12 06:18 1,493,528 ----a-w C:\Windows\System32\D3DCompiler_39.dll
    2008-07-11 13:53 86,016 ----a-w C:\Windows\System32\ctcoinst.dll
    2008-07-11 13:53 181,248 ----a-w C:\Windows\System32\ctdvinst.dll
    2008-07-11 13:51 34,816 ----a-w C:\Windows\System32\a3d.dll
    2008-07-11 13:51 27,648 ----a-w C:\Windows\System32\ac3api.dll
    2008-07-11 13:50 45,056 ----a-w C:\Windows\System32\CTxfiSpk.dll
    2008-07-11 13:50 35,840 ----a-w C:\Windows\System32\CTxfiBtn.dll
    2008-07-11 13:50 3,072 ----a-w C:\Windows\System32\CtxfiRes.dll
    2008-07-11 13:50 19,968 ----a-w C:\Windows\System32\Ctxfihlp.exe
    2008-07-11 13:46 969,216 ----a-w C:\Windows\System32\CTxfispi.exe
    2008-07-11 13:46 43,520 ----a-w C:\Windows\System32\Ctxfireg.exe
    2008-07-11 13:46 10,752 ----a-w C:\Windows\System32\Ct20xspi.dll
    2008-07-11 13:40 110,080 ----a-w C:\Windows\System32\ctemupia.dll
    2008-07-11 13:39 69,120 ----a-w C:\Windows\System32\ctosuser.dll
    2008-07-11 13:39 64,512 ----a-w C:\Windows\System32\piaproxy.dll
    2008-07-11 13:39 6,144 ----a-w C:\Windows\System32\sfman32.dll
    2008-07-11 13:39 49,152 ----a-w C:\Windows\System32\ctdproxy.dll
    .

    ((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s
    REGEDIT4

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe" [2008-01-19 1233920]
    "ehTray.exe"="C:\Windows\ehome\ehTray.exe" [2008-01-19 125952]
    "MsnMsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" [2007-10-18 5724184]
    "Core Temp"="C:\Users\christophe\Downloads\CoreTemp\Core Temp.exe" [2008-07-10 260624]
    "CreativeTaskScheduler"="C:\Program Files\Creative\Shared Files\CTSched.exe" [2006-11-17 53341]
    "DAEMON Tools Lite"="C:\Program Files\DAEMON Tools Lite\daemon.exe" [2008-07-08 486856]
    "SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [2008-07-07 2156368]
    "WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" [2008-01-19 202240]
    "ISUSPM"="C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" [2006-03-20 213936]
    "Google Update"="C:\Users\christophe\AppData\Local\Google\Update\GoogleUpdate.exe" [2008-09-03 133104]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "AudioDrvEmulator"="C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe" [2007-07-23 57344]
    "UpdReg"="C:\Windows\UpdReg.EXE" [2000-05-11 90112]
    "IAAnotif"="C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe" [2007-03-21 174872]
    "UMonit"="C:\Windows\system32\umonit.exe" [2006-07-27 53248]
    "XboxStat"="C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" [2007-09-26 734264]
    "Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792]
    "Windows Mobile Device Center"="C:\Windows\WindowsMobile\wmdc.exe" [2007-05-31 648072]
    "Launch LCDMon"="C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe" [2007-12-13 2051096]
    "Launch LGDCore"="C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe" [2007-12-13 2095640]
    "SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe" [2008-06-10 144784]
    "LogitechCommunicationsManager"="C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe" [2007-10-25 563984]
    "LogitechQuickCamRibbon"="C:\Program Files\Logitech\QuickCam\Quickcam.exe" [2007-10-25 2178832]
    "Module Loader"="C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe" [2007-07-23 57344]
    "!AVG Anti-Spyware"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [2007-06-11 6731312]
    "AppleSyncNotifier"="C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe" [2008-07-22 116040]
    "QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" [2008-05-27 413696]
    "iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2008-07-30 289064]
    "CTDVDDET"="C:\Program Files\Creative\DVDAudio\CTDVDDET.EXE" [2003-06-18 45056]
    "NvCplDaemon"="C:\Windows\system32\NvCpl.dll" [2008-08-15 13576736]
    "NvMediaCenter"="C:\Windows\system32\NvMcTray.dll" [2008-08-15 92704]
    "PSPVideo9"="C:\Program Files\pspvideo9\pspVideo9.exe" [2005-10-30 606208]
    "VolPanel"="C:\Program Files\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe" [2008-08-06 233576]
    "RoxWatchTray"="C:\Program Files\Common Files\Roxio Shared\11.0\SharedCOM\RoxWatchTray11.exe" [2008-08-14 240112]
    "TerraTec Remote Control"="C:\Program Files\Common Files\TerraTec\Remote\TTTvRc.exe" [2007-07-02 1073152]
    "Zboard"="C:\Program Files\Ideazon\ZEngine\Zboard.exe" [2008-06-27 53248]
    "My Movies Tray"="C:\Program Files\MCE\My Movies\My Movies Tray.exe" [2008-08-04 217088]
    "CPMonitor"="C:\Program Files\Roxio Creator 2009\5.0\CPMonitor.exe" [2008-08-10 80368]
    "Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2008-02-29 C:\Windows\KHALMNPR.Exe]
    "CTXFIREG"="CTxfiReg.exe" [2008-07-11 C:\Windows\System32\Ctxfireg.exe]
    "CTHelper"="CTHELPER.EXE" [2008-02-20 C:\Windows\System32\CTHELPER.EXE]
    "CTxfiHlp"="CTXFIHLP.EXE" [2008-07-11 C:\Windows\System32\Ctxfihlp.exe]

    [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
    "DevconDefaultDB"="C:\Windows\system32\READREG" [X]

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\
    e-Carte Bleue La Banque Postale.lnk - C:\Program Files\e-Carte Bleue La Banque Postale\ecbl-lbp.exe [2008-04-02 278528]
    Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe [2008-08-29 805392]
    Monitor.lnk - C:\Program Files\SanDisk\SanDisk TransferMate\SD Monitor.exe [2008-02-21 114688]

    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "EnableLUA"= 0 (0x0)
    "EnableUIADesktopToggle"= 0 (0x0)

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
    --a------ 2008-03-20 18:46 217544 C:\Program Files\Alcohol Soft\Alcohol 120\AxCmd.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Creative MediaSource Go]
    --------- 2006-11-09 11:19 204800 C:\Program Files\Creative\MediaSource5\Go\CTCMSGoU.exe

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
    "TCP Query User{421D32CF-EB27-4DFE-BF12-24699CC71987}C:\\program files\\bitcomet\\bitcomet.exe"= UDP:C:\program files\bitcomet\bitcomet.exe:BitComet - a BitTorrent Client
    "UDP Query User{3775FF2C-EE71-44BA-B135-5CBB20C6F870}C:\\program files\\bitcomet\\bitcomet.exe"= TCP:C:\program files\bitcomet\bitcomet.exe:BitComet - a BitTorrent Client
    "{73FC102A-7EEB-4267-B248-B0DF900AA0BD}"= TCP:6004|C:\Program Files\Microsoft Office\Office12\outlook.exe:Microsoft Office Outlook
    "{EBA3973D-E526-4CAC-BF33-904BD7F6F640}"= UDP:L:\CRYSIS\Bin32\Crysis.exe:Crysis_32
    "{FE7CCC9D-68B4-4DF5-A7BD-057B6B1E033D}"= TCP:L:\CRYSIS\Bin32\Crysis.exe:Crysis_32
    "{DD2B5252-FA74-4423-9797-E4D5D2636686}"= UDP:L:\CRYSIS\Bin32\CrysisDedicatedServer.exe:CrysisDedicatedServer_32
    "{720B343E-CB0D-4A52-B5A0-7B2830A18857}"= TCP:L:\CRYSIS\Bin32\CrysisDedicatedServer.exe:CrysisDedicatedServer_32
    "{C8C53498-8F4B-4351-85F6-8799A792E6DA}"= UDP:C:\Windows\System32\PnkBstrA.exe:p nkBstrA
    "{4F09392D-B6F7-4CF6-97F6-EBB6644DA9B3}"= TCP:C:\Windows\System32\PnkBstrA.exe:p nkBstrA
    "{BAF7A568-7099-44E8-8D2D-FC4128F75A6C}"= UDP:C:\Windows\System32\PnkBstrB.exe:p nkBstrB
    "{FBCD0368-F33F-4C08-A6D5-064C8F1E69F5}"= TCP:C:\Windows\System32\PnkBstrB.exe:p nkBstrB
    "TCP Query User{E7AB327D-A685-4BCE-BA87-1DCB40E505FC}M:\\ut 3\\binaries\\ut3.exe"= UDP:M:\ut 3\binaries\ut3.exe:UT3
    "UDP Query User{5CD2D17A-E5C3-4765-AB51-C584AF8A4284}M:\\ut 3\\binaries\\ut3.exe"= TCP:M:\ut 3\binaries\ut3.exe:UT3
    "TCP Query User{1990924F-BAF7-4850-8FD0-A142BD88518E}M:\\enemy territory\\etqw.exe"= UDP:M:\enemy territory\etqw.exe:Enemy Territory: QUAKE Wars
    "UDP Query User{42AAF334-DC85-4DF2-A837-F7047B75EEA2}M:\\enemy territory\\etqw.exe"= TCP:M:\enemy territory\etqw.exe:Enemy Territory: QUAKE Wars
    "TCP Query User{2863EEEE-EA16-4697-B9EF-C63165DAAB13}C:\\program files\\windows sidebar\\sidebar.exe"= UDP:C:\program files\windows sidebar\sidebar.exe:Volet Windows
    "UDP Query User{36DC4EDA-1FE5-4500-ADE2-41969074C3B6}C:\\program files\\windows sidebar\\sidebar.exe"= TCP:C:\program files\windows sidebar\sidebar.exe:Volet Windows
    "{91F410CA-0D8F-4160-916D-04D7B5E39B5D}"= UDP:L:\UT3\Binaries\UT3.exe:Unreal Tournament 3
    "{89C5D096-FBFA-4DC1-BACB-2F913FF23359}"= TCP:L:\UT3\Binaries\UT3.exe:Unreal Tournament 3
    "TCP Query User{0BF4E5E5-FADA-4F33-A61C-D8F5BDD32AC1}C:\\users\\christophe\\appdata\\local\\temp\\electronicarts_patcher_000.exe"= UDP:C:\users\christophe\appdata\local\temp\electronicarts_patcher_000.exe:electronicarts_patcher_000.exe
    "UDP Query User{8D371BCB-6918-47A1-AA4C-54BAC40F5BE0}C:\\users\\christophe\\appdata\\local\\temp\\electronicarts_patcher_000.exe"= TCP:C:\users\christophe\appdata\local\temp\electronicarts_patcher_000.exe:electronicarts_patcher_000.exe
    "TCP Query User{AD91C3D0-B016-470A-84B1-72B641620292}C:0\\gears of war\\binaries\\wargame-g4wlive.exe"= UDP:C:0\gears of war\binaries\wargame-g4wlive.exe:wargame-g4wlive.exe
    "UDP Query User{5BE9E7AD-118D-40CC-B1A4-7ABC968D9E3A}C:0\\gears of war\\binaries\\wargame-g4wlive.exe"= TCP:C:0\gears of war\binaries\wargame-g4wlive.exe:wargame-g4wlive.exe
    "TCP Query User{B240E8BD-ED3A-494F-9A43-8F646C84A759}C:1\\dawn of war\\dawn of war - dark crusade\\darkcrusade.exe"= UDP:C:1\dawn of war\dawn of war - dark crusade\darkcrusade.exe:D arkcrusade.exe
    "UDP Query User{0A9502B3-75BA-4AEB-A36D-6140AAB2FC84}C:1\\dawn of war\\dawn of war - dark crusade\\darkcrusade.exe"= TCP:C:1\dawn of war\dawn of war - dark crusade\darkcrusade.exe:D arkcrusade.exe
    "TCP Query User{4DF594B6-4356-4A3E-88F2-4F96E0BB5079}L:\\dark crusade\\dawn of war - dark crusade\\darkcrusade.exe"= UDP:L:\dark crusade\dawn of war - dark crusade\darkcrusade.exe:D arkCrusade
    "UDP Query User{D996A22F-EBDD-4E74-BB4E-4358551741B2}L:\\dark crusade\\dawn of war - dark crusade\\darkcrusade.exe"= TCP:L:\dark crusade\dawn of war - dark crusade\darkcrusade.exe:D arkCrusade
    "TCP Query User{9C5BF147-AE75-484E-82FC-277A6814E4E2}C:\\program files\\gamespy\\comrade\\comrade.exe"= UDP:C:\program files\gamespy\comrade\comrade.exe:Comrade
    "UDP Query User{2D1D5390-2083-4A01-B0EE-18998391ADC1}C:\\program files\\gamespy\\comrade\\comrade.exe"= TCP:C:\program files\gamespy\comrade\comrade.exe:Comrade
    "TCP Query User{8EEC7D22-E01C-48E4-BFEA-84F9F6D4723D}L:\\coh\\reliccoh.exe"= UDP:L:\coh\reliccoh.exe:RelicCOH
    "UDP Query User{F69C84E4-7CAF-4668-9B3E-FA5CD136D3FB}L:\\coh\\reliccoh.exe"= TCP:L:\coh\reliccoh.exe:RelicCOH
    "TCP Query User{D55C21A0-A756-46D1-AAF3-F6B1DD7DB5A5}L:\\mark of chaos\\warhammer.exe"= UDP:L:\mark of chaos\warhammer.exe:Warhammer®: Mark of Chaos™
    "UDP Query User{140587AE-FA4F-4B70-B4DD-674E5B4481FE}L:\\mark of chaos\\warhammer.exe"= TCP:L:\mark of chaos\warhammer.exe:Warhammer®: Mark of Chaos™
    "{C6D4C457-A7EB-4F2B-846B-4C191246F51C}"= C:\Program Files\Windows Live\Messenger\livecall.exe:Windows Live Messenger (Phone)
    "TCP Query User{A75DC87E-AEBC-4D8B-9A84-4C5D3A71A89E}C:\\program files\\mozilla firefox\\firefox.exe"= UDP:C:\program files\mozilla firefox\firefox.exe:Firefox
    "UDP Query User{37C4AF53-7C23-4CEC-940A-B8CF24D35C65}C:\\program files\\mozilla firefox\\firefox.exe"= TCP:C:\program files\mozilla firefox\firefox.exe:Firefox
    "TCP Query User{34CD9F6A-15E0-4043-9DE7-B9B11F6B93C6}C:0\\ghost recon 2\\ghost recon advanced warfighter 2\\graw2.exe"= UDP:C:0\ghost recon 2\ghost recon advanced warfighter 2\graw2.exe:graw2.exe
    "UDP Query User{C73EB56D-1FF5-4B29-ADAF-80D3A8886D39}C:0\\ghost recon 2\\ghost recon advanced warfighter 2\\graw2.exe"= TCP:C:0\ghost recon 2\ghost recon advanced warfighter 2\graw2.exe:graw2.exe
    "{BAA256B4-4657-4C6C-BBB3-7DF5C359ABF3}"= UDP:C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe:BlueSoleil
    "{3A3D1111-8266-4232-8B41-E48CACC3F61C}"= TCP:C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe:BlueSoleil
    "TCP Query User{746642E2-458B-46C5-AC3E-A03E85326336}L:\\ghost recon 2\\ghost recon advanced warfighter 2\\graw2.exe"= UDP:L:\ghost recon 2\ghost recon advanced warfighter 2\graw2.exe:Ghost Recon Advanced Warfighter® 2
    "UDP Query User{5A2721C1-397E-422A-A113-BB8AC5D85234}L:\\ghost recon 2\\ghost recon advanced warfighter 2\\graw2.exe"= TCP:L:\ghost recon 2\ghost recon advanced warfighter 2\graw2.exe:Ghost Recon Advanced Warfighter® 2
    "TCP Query User{70E7B986-E7F5-4B17-AF64-765AE3EF82BD}L:\\ut2004\\system\\ut2004.exe"= UDP:L:\ut2004\system\ut2004.exe:UT2004
    "UDP Query User{3A9B24F3-E4F8-4AF8-A10C-EDA30CE12353}L:\\ut2004\\system\\ut2004.exe"= TCP:L:\ut2004\system\ut2004.exe:UT2004
    "{FD032643-0E7E-4F5D-A12E-5CFB06461164}"= L:\CC3\RetailExe\1.9\cnc3game.dat:Command & Conquer 3 Les guerres du Tiberium™
    "{33F3B001-4D30-4093-B958-DB53418F1188}"= UDP:C:\Program Files\Microsoft Games\Gears of War\Binaries\WarGame-G4WLive.exe:Gears of War
    "{D96E5365-FEF7-4C37-96C0-75B383260DBA}"= TCP:C:\Program Files\Microsoft Games\Gears of War\Binaries\WarGame-G4WLive.exe:Gears of War
    "{201DB663-116C-4E4A-A516-5060777F818D}"= UDP:L:\ENNEMY QUAKE WAR\etqwded.exe:etqwded.exe
    "{32D6DC37-C8C0-49A5-B6F6-A703B1EFAA15}"= TCP:L:\ENNEMY QUAKE WAR\etqwded.exe:etqwded.exe
    "{D3677139-6C66-4514-BFC0-5C3E0C112C18}"= UDP:L:\ENNEMY QUAKE WAR\etqw.exe:Enemy Territory - QUAKE Wars(TM)
    "{307D28B0-E979-44C4-8342-A3FFD89D7BB0}"= TCP:L:\ENNEMY QUAKE WAR\etqw.exe:Enemy Territory - QUAKE Wars(TM)
    "TCP Query User{AF4B4F98-36FC-40F2-B8F8-94D75A6365BD}C:\\program files\\utorrent\\utorrent.exe"= UDP:C:\program files\utorrent\utorrent.exe:uTorrent
    "UDP Query User{AE2FFDA6-C0C3-4638-AC03-2FDCC703B153}C:\\program files\\utorrent\\utorrent.exe"= TCP:C:\program files\utorrent\utorrent.exe:uTorrent
    "TCP Query User{547E7A40-4D26-4856-A072-0853197548C9}L:\\warcraft iii\\warcraft iii\\war3.exe"= UDP:L:\warcraft iii\warcraft iii\war3.exe:Warcraft III
    "UDP Query User{0394FFDE-5348-4DFD-A5B9-7997491DBBD6}L:\\warcraft iii\\warcraft iii\\war3.exe"= TCP:L:\warcraft iii\warcraft iii\war3.exe:Warcraft III
    "TCP Query User{2841322C-E91D-45E7-BB4C-CA70E6F69B6E}C:\\program files\\bitspirit\\bitspirit.exe"= UDP:C:\program files\bitspirit\bitspirit.exe:The powerful and easy-to-use BitTorrent Client
    "UDP Query User{E4FF6C96-4DA9-4107-9FC6-DA4D441B7897}C:\\program files\\bitspirit\\bitspirit.exe"= TCP:C:\program files\bitspirit\bitspirit.exe:The powerful and easy-to-use BitTorrent Client
    "{A302E99B-4093-46BE-A01C-3582874AFCD4}"= UDP:8822:BitComet 8822 TCP
    "{539781FF-D3ED-402E-8AA1-13B191D981E4}"= TCP:8822:BitComet 8822 UDP
    "{E4A08756-E2BE-401A-9432-7EE9DB0C2DD1}"= UDP:C:\Program Files\iTunes\iTunes.exe:iTunes
    "{CFF035B0-23C8-43A8-AD67-48FF555A65A9}"= TCP:C:\Program Files\iTunes\iTunes.exe:iTunes
    "TCP Query User{5DF8339A-375E-41B7-A26A-3B77F9021819}L:\\sacred underworld\\sacred underworld\\sacred.exe"= UDP:L:\sacred underworld\sacred underworld\sacred.exe:Sacred
    "UDP Query User{9EFFE4D3-26B1-43F4-8C5F-F68A85025C05}L:\\sacred underworld\\sacred underworld\\sacred.exe"= TCP:L:\sacred underworld\sacred underworld\sacred.exe:Sacred
    "TCP Query User{170D0D04-53F3-4F7E-ACCE-4FDD6ED640FE}L:\\tmnationsforever\\tmforever.exe"= UDP:L:\tmnationsforever\tmforever.exe:TmForever
    "UDP Query User{26DF0540-C670-44F4-89B7-B346F231D663}L:\\tmnationsforever\\tmforever.exe"= TCP:L:\tmnationsforever\tmforever.exe:TmForever
    "TCP Query User{3BA14168-DBE2-4952-A956-D897195A7F5F}L:\\tmsunrise\\tmsunrise.exe"= UDP:L:\tmsunrise\tmsunrise.exe:TmSunrise
    "UDP Query User{7BF2E392-6872-4AE5-BDE5-B1E641183E9B}L:\\tmsunrise\\tmsunrise.exe"= TCP:L:\tmsunrise\tmsunrise.exe:TmSunrise
    "{75812B4F-58EB-4D58-956E-243F8CF4CFB3}"= C:\Program Files\Windows Live\Messenger\livecall.exe:Windows Live Messenger (Phone)
    "TCP Query User{48C82354-87AD-4706-A6CD-C5C668C9F462}L:\\silverfall\\silverfall.exe"= UDP:L:\silverfall\silverfall.exe:Silverfall
    "UDP Query User{93E6B9ED-5767-4609-A979-3DD3A4AF2C9C}L:\\silverfall\\silverfall.exe"= TCP:L:\silverfall\silverfall.exe:Silverfall
    "{5AC00840-B240-477A-B1E5-57A1F7D46DE6}"= UDP:L:\FRONTLINES\Binaries\FFOW.exe:Frontlines Game
    "{198A9CE3-AA50-4085-BDC8-E6D1BAD8F640}"= TCP:L:\FRONTLINES\Binaries\FFOW.exe:Frontlines Game
    "{7C4E0A88-A6E6-44FF-9EA3-7F55A4096C7A}"= UDP:C:\Program Files\Codemasters\GRID Demo\GRID.exe:GRID Demo
    "{C3962A73-2063-4399-A42A-59153210002A}"= TCP:C:\Program Files\Codemasters\GRID Demo\GRID.exe:GRID Demo
    "TCP Query User{DFF48A67-585B-494F-AD2F-80927BE4AA4F}L:\\iron man\\ironman.exe"= UDP:L:\iron man\ironman.exe:A2M Game Engine
    "UDP Query User{E69CCF09-A70B-4937-8619-0A16187AA1FF}L:\\iron man\\ironman.exe"= TCP:L:\iron man\ironman.exe:A2M Game Engine
    "{B8599560-2C70-489D-A1CF-C022A4E5461D}"= UDP:48113:LocalSubnet:LocalSubnet:maconfig_tcp
    "{81EB2C05-AD59-4725-ACFE-FCA96BBFA578}"= TCP:48113:LocalSubnet:LocalSubnet:maconfig_udp
    "{FFD7AB03-7D59-4770-8022-9221E9497480}"= UDP:C:\Program Files\ma-config.com\maconfservice.exe:maconfservice
    "{AC3BE9D3-7B04-4C05-9589-FAA27DEA732A}"= TCP:C:\Program Files\ma-config.com\maconfservice.exe:maconfservice
    "TCP Query User{D70F9FDD-EA44-4B3A-818B-FDC884F7DA73}L:\\dirt\\dirt.exe"= UDP:L:\dirt\dirt.exe:D iRT Executable
    "UDP Query User{9B380C71-815A-4AF7-8D5C-4EE91FD6BF18}L:\\dirt\\dirt.exe"= TCP:L:\dirt\dirt.exe:D iRT Executable
    "TCP Query User{3849314F-3C0D-4A47-A893-0BD9C318A944}L:\\ennemy quake war\\etqw.exe"= UDP:L:\ennemy quake war\etqw.exe:Enemy Territory: QUAKE Wars
    "UDP Query User{1ECDF1D7-9C4E-421D-A071-1271F9CE860D}L:\\ennemy quake war\\etqw.exe"= TCP:L:\ennemy quake war\etqw.exe:Enemy Territory: QUAKE Wars
    "{2C3DE8F4-50D9-4F3F-8921-F0E343C7A20D}"= UDP:L:\GRIP\GRID.exe:GRID
    "{680FE783-08F5-4C66-B50C-77F5B364ADC0}"= TCP:L:\GRIP\GRID.exe:GRID
    "TCP Query User{1F3C7CFB-8357-438E-9392-8AC6AE26538E}C:\\program files\\mozilla firefox\\firefox.exe"= UDP:C:\program files\mozilla firefox\firefox.exe:Firefox
    "UDP Query User{C972EC21-C5B0-4036-86F9-AD666E0DEE65}C:\\program files\\mozilla firefox\\firefox.exe"= TCP:C:\program files\mozilla firefox\firefox.exe:Firefox
    "{53585154-5CD2-4A8E-A089-E29888A87D50}"= UDP:C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe:BlueSoleil
    "{E87D0E40-6FBD-402A-B599-88B331E111B0}"= TCP:C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe:BlueSoleil
    "TCP Query User{4BE947D0-2AB1-49DB-8A14-ED330D0D832B}C:\\program files\\windows sidebar\\sidebar.exe"= UDP:C:\program files\windows sidebar\sidebar.exe:Volet Windows
    "UDP Query User{14A80A45-ED9A-4EE4-B416-F5631E1998C3}C:\\program files\\windows sidebar\\sidebar.exe"= TCP:C:\program files\windows sidebar\sidebar.exe:Volet Windows
    "TCP Query User{5E3B63C8-A90C-42F3-9511-1601D44AB298}F:\\ghost recon 2\\ghost recon advanced warfighter 2\\graw2.exe"= UDP:F:\ghost recon 2\ghost recon advanced warfighter 2\graw2.exe:Ghost Recon Advanced Warfighter® 2
    "UDP Query User{91EA823E-F9CA-4ADC-BE41-18A928A3BA38}F:\\ghost recon 2\\ghost recon advanced warfighter 2\\graw2.exe"= TCP:F:\ghost recon 2\ghost recon advanced warfighter 2\graw2.exe:Ghost Recon Advanced Warfighter® 2
    "TCP Query User{DEFA81D6-FFA2-401A-B05C-7596A2BDBE8F}C:\\program files\\microsoft games\\gears of war\\binaries\\wargame-g4wlive.exe"= UDP:C:\program files\microsoft games\gears of war\binaries\wargame-g4wlive.exe:Gears Of War
    "UDP Query User{87ECB255-7FA3-456E-8239-98D89F6141E1}C:\\program files\\microsoft games\\gears of war\\binaries\\wargame-g4wlive.exe"= TCP:C:\program files\microsoft games\gears of war\binaries\wargame-g4wlive.exe:Gears Of War
    "TCP Query User{B168EA2A-33B4-420C-A799-C7E2321E2C68}L:\\mark of chaos\\warhammer.exe"= UDP:L:\mark of chaos\warhammer.exe:Warhammer®: Mark of Chaos™
    "UDP Query User{FAC2C2B3-EF42-40D7-BE56-1A7ACF448F9F}L:\\mark of chaos\\warhammer.exe"= TCP:L:\mark of chaos\warhammer.exe:Warhammer®: Mark of Chaos™
    "TCP Query User{1FE2D91D-9858-457F-80E2-26F56ACF1853}C:\\users\\christophe\\appdata\\local\\dyyno receiver\\dppm.exe"= UDP:C:\users\christophe\appdata\local\dyyno receiver\dppm.exe:D ppm.exe
    "UDP Query User{78DBDC9A-7BA2-465A-A366-5A7658EE51E3}C:\\users\\christophe\\appdata\\local\\dyyno receiver\\dppm.exe"= TCP:C:\users\christophe\appdata\local\dyyno receiver\dppm.exe:D ppm.exe
    "{2584E83A-F268-4C5B-99B8-31B75AD5FF68}"= UDP:p :\CALL OF DUTY 4\iw3mp.exe:Call of Duty(R) 4 - Modern Warfare(TM)
    "{B5D17A4F-3A60-45EC-803D-6B78395816E0}"= TCP:p :\CALL OF DUTY 4\iw3mp.exe:Call of Duty(R) 4 - Modern Warfare(TM)
    "TCP Query User{EF239801-D76D-4129-8480-66B428D10296}C:\\program files\\bitspirit\\bitspirit.exe"= UDP:C:\program files\bitspirit\bitspirit.exe:The powerful and easy-to-use BitTorrent Client
    "UDP Query User{D8370F72-CF59-4FF0-A971-DECD13E53B08}C:\\program files\\bitspirit\\bitspirit.exe"= TCP:C:\program files\bitspirit\bitspirit.exe:The powerful and easy-to-use BitTorrent Client
    "TCP Query User{F2A7FC6B-7C9B-400A-8659-AF41149D7879}L:\\iron man\\ironman.exe"= UDP:L:\iron man\ironman.exe:A2M Game Engine
    "UDP Query User{099FCEA1-055B-4596-B63C-BC8DBAEF2DE6}L:\\iron man\\ironman.exe"= TCP:L:\iron man\ironman.exe:A2M Game Engine
    "TCP Query User{C1E9A2F5-FEEC-496C-8AC8-AFCFFBC8AAA0}C:\\program files\\gamespy\\comrade\\comrade.exe"= UDP:C:\program files\gamespy\comrade\comrade.exe:Comrade
    "UDP Query User{85009049-E73D-41B7-98F6-6FF4267FE7CB}C:\\program files\\gamespy\\comrade\\comrade.exe"= TCP:C:\program files\gamespy\comrade\comrade.exe:Comrade
    "TCP Query User{CA40F940-0B94-4C58-BDA9-130EB43E1349}L:\\crysis\\bin32\\crysis.exe"= UDP:L:\crysis\bin32\crysis.exe:Crysis
    "UDP Query User{01BCA71C-03E9-4B1A-8E0B-33C785ADDDE5}L:\\crysis\\bin32\\crysis.exe"= TCP:L:\crysis\bin32\crysis.exe:Crysis
    "{08AC9E54-EFCA-4E62-8AA6-3C3C5CD81339}"= UDP:L:\AITD\Alone.exe:Alone In The Dark
    "{FFE2372E-88DB-4DD1-8537-29523E98E700}"= TCP:L:\AITD\Alone.exe:Alone In The Dark
    "{87C1C168-34D4-4F09-8271-A1DBD6DA1ECE}"= UDP:L:\AITD\AITD\Alone.exe:Alone In The Dark
    "{7D949FD3-2FAE-49FB-A4F4-540BD37A0014}"= TCP:L:\AITD\AITD\Alone.exe:Alone In The Dark
    "{5B83968A-C0F3-4BDF-B81C-B0B46FBDCBF1}"= UDP:L:\UT3\Binaries\UT3.exe:Unreal Tournament 3
    "{9E96982B-F22A-45C3-80B5-122C8CD45D38}"= TCP:L:\UT3\Binaries\UT3.exe:Unreal Tournament 3
    "TCP Query User{8FC56379-2DDC-4245-80BA-8136D2A89997}L:\\dawn of war\\w40kwa.exe"= UDP:L:\dawn of war\w40kwa.exe:W40kWA
    "UDP Query User{879C89AA-B201-4393-B978-9E8A9251B5CB}L:\\dawn of war\\w40kwa.exe"= TCP:L:\dawn of war\w40kwa.exe:W40kWA
    "TCP Query User{F480AF00-905B-4BF4-991F-D1B1433DA52C}L:\\dawn of war\\w40k.exe"= UDP:L:\dawn of war\w40k.exe:W40k
    "UDP Query User{4337CCEF-2F0D-4928-A797-4CAF52160CA8}L:\\dawn of war\\w40k.exe"= TCP:L:\dawn of war\w40k.exe:W40k
    "{C9832ECC-680C-41F8-92E5-9BAB9D7B1B18}"= UDP:L:\UT2004\System\UT2004.exe:UT2004
    "{28152A75-6408-4C75-BEB9-CEE0B0422E78}"= TCP:L:\UT2004\System\UT2004.exe:UT2004
    "TCP Query User{E76DAC14-594D-458A-9AE1-8E43DDCA2ADA}C:\\program files\\nurien\\alpha v0.7\\binaries\\nurien.exe"= UDP:C:\program files\nurien\alpha v0.7\binaries\nurien.exe:Nurien
    "UDP Query User{F24AA9EF-EA2A-48B2-B7C4-61C1255404D6}C:\\program files\\nurien\\alpha v0.7\\binaries\\nurien.exe"= TCP:C:\program files\nurien\alpha v0.7\binaries\nurien.exe:Nurien
    "{A7661C2C-C079-40BE-9623-331591DFC255}"= UDP:C:\Program Files\Lecteur CANALPLAY\CanalPlayer.exe:Lecteur CANALPLAY
    "{E3FAC682-4D85-4C48-9722-02CED74BCD23}"= TCP:C:\Program Files\Lecteur CANALPLAY\CanalPlayer.exe:Lecteur CANALPLAY
    "{AE7C633C-27F6-4B14-B0B1-12E0597900C6}"= UDP:C:\Program Files\Bonjour\mDNSResponder.exe:Bonjour
    "{C95F2FB6-13E0-468B-8059-7F14E345A60A}"= TCP:C:\Program Files\Bonjour\mDNSResponder.exe:Bonjour
    "{1985CA56-428F-4715-863D-857477E347D9}"= UDP:C:\Program Files\iTunes\iTunes.exe:iTunes
    "{9868B1D2-E685-416D-9DCC-FC5BDD9029D7}"= TCP:C:\Program Files\iTunes\iTunes.exe:iTunes
    "TCP Query User{F5D67AEB-A554-4A16-949B-86FA5DE9FE3E}C:\\program files\\opera\\opera.exe"= UDP:C:\program files\opera\opera.exe:o pera Internet Browser
    "UDP Query User{E1F4225B-6AA5-4DD2-B0A0-5EAD9A6217DE}C:\\program files\\opera\\opera.exe"= TCP:C:\program files\opera\opera.exe:o pera Internet Browser
    "TCP Query User{826357F8-6FAD-4984-BC8F-8F728382E62E}C:\\program files\\bitcomet\\bitcomet.exe"= UDP:C:\program files\bitcomet\bitcomet.exe:BitComet - a BitTorrent Client
    "UDP Query User{4D1CDEB7-BAF5-4D5B-A2F7-3E7AAD6F7060}C:\\program files\\bitcomet\\bitcomet.exe"= TCP:C:\program files\bitcomet\bitcomet.exe:BitComet - a BitTorrent Client
    "TCP Query User{FE6A8F48-1B56-4418-A0E4-B75F3AE030EE}C:\\program files\\intervideo\\dvd8\\windvd.exe"= UDP:C:\program files\intervideo\dvd8\windvd.exe:WinDVD
    "UDP Query User{4FA4E8EE-34E6-45C8-8FBC-C3642EE351DA}C:\\program files\\intervideo\\dvd8\\windvd.exe"= TCP:C:\program files\intervideo\dvd8\windvd.exe:WinDVD
    "{9C95CA6A-A45A-4111-B3E6-0BCB6A1858D6}"= UDP:C:\Users\christophe\AppData\Local\Temp\{9746A028-0ADE-402C-90AA-A5DE99E5BB47}\{63B9BAB5-F36A-4A3B-9E5C-68A7F212BFB9}\CinergyDvrHelper.exe:TerraTec Home Cinema (Setup)
    "{077B291D-74F1-4456-BDD1-7A8B41B1794F}"= TCP:C:\Users\christophe\AppData\Local\Temp\{9746A028-0ADE-402C-90AA-A5DE99E5BB47}\{63B9BAB5-F36A-4A3B-9E5C-68A7F212BFB9}\CinergyDvrHelper.exe:TerraTec Home Cinema (Setup)
    "{5729E561-2885-48F4-B306-1FD15B333C33}"= UDP:C:\Program Files\TerraTec\TerraTec Home Cinema\CinergyDvrHelper.exe:TerraTec Home Cinema (Setup)
    "{79C38A9C-5099-427F-BFC0-74116E383939}"= TCP:C:\Program Files\TerraTec\TerraTec Home Cinema\CinergyDvrHelper.exe:TerraTec Home Cinema (Setup)
    "{F90F85ED-9D45-4B06-83A5-90A6D786BEBE}"= UDP:C:\Program Files\TerraTec\TerraTec Home Cinema\tvtvSetup\tvtv_Wizard.exe:TerraTec tvtv Setup
    "{5103D90F-999E-46FB-81D5-16B77226E0EC}"= TCP:C:\Program Files\TerraTec\TerraTec Home Cinema\tvtvSetup\tvtv_Wizard.exe:TerraTec tvtv Setup
    "{81A0D392-E124-4ECF-B749-4853FC215301}"= UDP:C:\Program Files\TerraTec\TerraTec Home Cinema\CinergyDvr.exe:TerraTec Home Cinema
    "{199C1ACE-A33A-4E15-9653-65D9878EBA50}"= TCP:C:\Program Files\TerraTec\TerraTec Home Cinema\CinergyDvr.exe:TerraTec Home Cinema
    "TCP Query User{00B02C06-00C1-437A-B8B7-5DABE05E0CF8}C:\\windows\\ehome\\ehexthost.exe"= UDP:C:\windows\ehome\ehexthost.exe:Media Center Extensibility Host
    "UDP Query User{EDC0DB0A-2EBA-4394-BF0A-0C24176380F3}C:\\windows\\ehome\\ehexthost.exe"= TCP:C:\windows\ehome\ehexthost.exe:Media Center Extensibility Host
    "TCP Query User{11289171-7467-4E3A-9612-BD4763EE166F}F:\\telechargement\\wow.exe"= UDP:F:\telechargement\wow.exe:Blizzard Downloader
    "UDP Query User{857EAE89-B760-4D90-9DDB-42995C7A0010}F:\\telechargement\\wow.exe"= TCP:F:\telechargement\wow.exe:Blizzard Downloader
    "TCP Query User{9FD57972-F91D-46D6-84CC-D284B6C43C43}F:\\telechargement\\bc.exe"= UDP:F:\telechargement\bc.exe:Blizzard Downloader
    "UDP Query User{601498D5-2F73-498C-8D1F-503293139722}F:\\telechargement\\bc.exe"= TCP:F:\telechargement\bc.exe:Blizzard Downloader
    "TCP Query User{6D1E7F3B-0370-4460-88A7-59CF50345DAE}L:\\world of warcraft\\wow-1.12.0-frfr-downloader.exe"= UDP:L:\world of warcraft\wow-1.12.0-frfr-downloader.exe:Blizzard Downloader
    "UDP Query User{4E687D99-C62F-437E-B049-284D5AB25220}L:\\world of warcraft\\wow-1.12.0-frfr-downloader.exe"= TCP:L:\world of warcraft\wow-1.12.0-frfr-downloader.exe:Blizzard Downloader
    "{3F03259D-2D28-48A6-AC36-BEF1A77C2CDF}"= UDP:8822:BitComet 8822 TCP
    "{3ADEF3E0-99A1-4ABF-B25F-1243561F7CAF}"= TCP:8822:BitComet 8822 UDP
    "TCP Query User{775F9A09-6057-4DFB-B526-BE9A505BD28F}L:\\world of warcraft\\wow-1.12.x-to-2.0.1-frfr-patch-downloader.exe"= UDP:L:\world of warcraft\wow-1.12.x-to-2.0.1-frfr-patch-downloader.exe:Blizzard Downloader
    "UDP Query User{9AEF2413-978B-447D-8C2C-E44079CFF30A}L:\\world of warcraft\\wow-1.12.x-to-2.0.1-frfr-patch-downloader.exe"= TCP:L:\world of warcraft\wow-1.12.x-to-2.0.1-frfr-patch-downloader.exe:Blizzard Downloader
    "{056BB28A-3502-45B9-94F2-2CF67DD35699}"= UDP:4662:BitComet 4662 TCP
    "{4A04187B-C0E5-440F-8574-01BEB4308984}"= TCP:4662:BitComet 4662 UDP

    R0 hotcore3;hotcore3;C:\Windows\system32\drivers\hotcore3.sys [2008-06-25 40368]
    R0 pe3ah4nc;DiRT Environment Driver (pe3ah4nc);C:\Windows\system32\drivers\pe3ah4nc.sys [2007-05-18 64880]
    R0 ps6ah4nc;DiRT Synchronization Driver (ps6ah4nc);C:\Windows\system32\drivers\ps6ah4nc.sys [2007-05-18 55160]
    R1 aswSP;avast! Self Protection;C:\Windows\system32\drivers\aswSP.sys [2008-07-19 78416]
    R1 c2scsi;c2scsi;C:\Windows\system32\DRIVERS\c2scsi.sys [2007-08-18 252152]
    R1 UGURU;UGURU;C:\Windows\system32\drivers\uGuru.sys [2006-10-02 21048]
    R2 aswFsBlk;aswFsBlk;C:\Windows\system32\DRIVERS\aswFsBlk.sys [2008-07-19 20560]
    R2 aswMonFlt;aswMonFlt;C:\Windows\system32\DRIVERS\aswMonFlt.sys [2008-07-19 51280]
    R2 CTAudSvcService;Creative Audio Service;C:\Program Files\Creative\Shared Files\CTAudSvc.exe [2008-04-30 425984]
    R2 MSSQL$MYMOVIES;SQL Server (MYMOVIES);C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2008-02-26 29183504]
    R2 SBSDWSCService;SBSD Security Center Service;C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [2008-07-07 809296]
    R3 Alpham1;Ideazon Fang USB Human Interface Device;C:\Windows\system32\DRIVERS\Alpham1.sys [2007-07-23 42624]
    R3 Alpham2;Ideazon Fang MM USB Human Interface Device;C:\Windows\system32\DRIVERS\Alpham2.sys [2007-03-20 18432]
    R3 ha20x2k;Creative 20X HAL Driver;C:\Windows\system32\drivers\ha20x2k.sys [2008-07-15 1173016]
    R3 TTCinergyT2;TerraTec Cinergy T² (BDA);C:\Windows\system32\drivers\TTCinergyT2BDA.sys [2005-10-06 22528]
    S0 OemBiosDevice;Royalty OEM Bios Extension;C:\Windows\system32\drivers\royal.sys [2008-02-21 240128]
    S2 pr2ah4nc;DiRT Drivers Auto Removal (pr2ah4nc);C:\Windows\system32\pr2ah4nc.exe svc [ ]
    S2 Roxio Upnp Server 10;Roxio Upnp Server 10;C:\Program Files\Roxio\Digital Home 10\RoxioUpnpService10.exe [2007-08-24 362992]
    S2 Roxio Upnp Server 11;Roxio Upnp Server 11;C:\Program Files\Roxio Creator 2009\Digital Home 11\RoxioUpnpService11.exe [2008-08-14 367088]
    S2 RoxLiveShare10;LiveShare P2P Server 10;C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe [2007-08-24 309744]
    S2 RoxLiveShare11;LiveShare P2P Server 11;C:\Program Files\Common Files\Roxio Shared\11.0\SharedCOM\RoxLiveShare11.exe [2008-08-14 309744]
    S2 RoxWatch10;Roxio Hard Drive Watcher 10;C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatch10.exe [2007-08-24 166384]
    S2 RoxWatch11;Roxio Hard Drive Watcher 11;C:\Program Files\Common Files\Roxio Shared\11.0\SharedCOM\RoxWatch11.exe [2008-08-14 170480]
    S2 SessionLauncher;SessionLauncher;C:\Users\CHRIST~1\AppData\Local\Temp\DX9\SessionLauncher.exe [ ]
    S3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2008-08-20 79360]
    S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2008-06-09 79360]
    S3 fixustor;fixustor;C:\Windows\system32\drivers\fixustor.sys [2006-07-27 6016]
    S3 libusb0;LibUsb-Win32 - Kernel Driver, Version 0.1.10.1;C:\Windows\system32\drivers\libusb0.sys [2005-03-09 33792]
    S3 maconfservice;Ma-Config Service;C:\Program Files\ma-config.com\maconfservice.exe [2008-05-23 576680]
    S3 PsSdk31;PsSdk31;C:\Windows\system32\Drivers\pssdk31.drv [2008-08-31 30272]
    S3 PsSdkLBF;PsSdkLBF;C:\Windows\system32\Drivers\pssdklbf.drv [2008-08-31 37440]
    S3 Roxio UPnP Renderer 10;Roxio UPnP Renderer 10;C:\Program Files\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe [2007-08-24 72176]
    S3 Roxio UPnP Renderer 11;Roxio UPnP Renderer 11;C:\Program Files\Roxio Creator 2009\Digital Home 11\RoxioUPnPRenderer11.exe [2008-08-14 313840]
    S3 RoxMediaDB10;RoxMediaDB10;C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2007-08-24 1083888]
    S3 RoxMediaDB11;RoxMediaDB11;C:\Program Files\Common Files\Roxio Shared\11.0\SharedCOM\RoxMediaDB11.exe [2008-08-14 1124848]
    S3 Service CANALPLAY;Service CANALPLAY;C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe [2008-06-20 436096]
    S3 Start BT in service;Start BT in service;C:\Program Files\IVT Corporation\BlueSoleil\StartSkysolSvc.exe [2007-04-21 52080]

    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
    WindowsMobile REG_MULTI_SZ wcescomm rapimgr
    LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{2995daac-e0a3-11dc-a2c6-806e6f6e6963}]
    \shell\AutoRun\command - E:\AutoRunCD.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{2df6b2c4-e09a-11dc-b547-806e6f6e6963}]
    \shell\AutoRun\command - D:\Autorun.exe root.ini

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{8a1442e4-fb4e-11dc-8b43-00116763e979}]
    \shell\AutoRun\command - M:\SETUP.EXE

    *Newly Created Service* - ALSYSIO

    [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{7070D8E0-650A-46b3-B03C-9497582E6A74}]
    %SystemRoot%\system32\soundschemes.exe /AddRegistration
    .
    Contenu du dossier 'Scheduled Tasks/Tƒches planifi‚es'
    .
    - - - - ORPHANS REMOVED - - - -

    HKCU-Run-iyieu - c:\users\christophe\appdata\local\iyieu.exe
    HKCU-Run-ciwsg - c:\users\christophe\appdata\local\ciwsg.exe
    HKLM-Run-PSP Auto Trasfer - C:\Program Files\Dr4iNLiF3 Products\PSP Auto Transfer\PSP Auto Transfer.exe
    HKLM-Run-CanalPlayerHelper - C:\Program Files\Lecteur CANALPLAY\CanalPlayerHelper.exe


    .
    ------- Supplementary Scan -------
    .
    FireFox -: Profile - C:\Users\christophe\AppData\Roaming\Mozilla\Firefox\Profiles\73sftamo.default\
    FireFox -: prefs.js - STARTUP.HOMEPAGE - hxxp://fr.start2.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:fr:o fficial
    FF -: plugin - C:\Program Files\Dyyno\Dyyno Player\npvlc.dll
    FF -: plugin - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
    FF -: plugin - C:\Program Files\ma-config.com\nphardwaredetection.dll
    FF -: plugin - C:\Program Files\Opera\program\plugins\npdivx32.dll
    FF -: plugin - C:\Users\christophe\AppData\Local\Google\Update\1.2.131.11\npGoogleOneClick5.dll
    FF -: plugin - C:\Users\christophe\AppData\Roaming\Mozilla\Firefox\Profiles\73sftamo.default\extensions\{bb628310-0ab7-11db-9cd8-0800200c9a66}\plugins\nphardwaredetection.dll
    .

    **************************************************************************

    catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-09-11 23:01:36
    Windows 6.0.6001 Service Pack 1 NTFS

    Balayage processus cach‚s ...

    Balayage cach‚ autostart entries ...

    Balayage des fichiers cach‚s ...

    Scan termin‚ avec succŠs
    Les fichiers cach‚s: 0

    **************************************************************************
    .
    ------------------------ Other Running Processes ------------------------
    .
    C:\Windows\System32\nvvsvc.exe
    C:\Program Files\Common Files\logishrd\LVMVFM\LVPrcSrv.exe
    C:\Windows\System32\audiodg.exe
    C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
    C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
    C:\Program Files\Common Files\logishrd\LVCOMSER\LVComSer.exe
    C:\Windows\System32\PnkBstrA.exe
    C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
    C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
    C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
    C:\Windows\System32\WUDFHost.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\Windows\System32\rundll32.exe
    C:\Program Files\Common Files\logishrd\LVCOMSER\LVComSer.exe
    C:\Windows\System32\conime.exe
    C:\Program Files\U-ABIT\uGuru\uGuru.exe
    C:\Windows\System32\rundll32.exe
    C:\Windows\System32\CTxfispi.exe
    C:\Program Files\Windows Media Player\wmplayer.exe
    C:\Windows\ehome\ehmsas.exe
    C:\Program Files\Logitech\GamePanel Software\LCD Manager\Applets\LCDClock.exe
    C:\Program Files\Logitech\GamePanel Software\LCD Manager\Applets\LCDPop3.exe
    C:\Program Files\Logitech\GamePanel Software\LCD Manager\Applets\LCDMedia.exe
    C:\Windows\ehome\ehsched.exe
    C:\Program Files\Creative\Sound Blaster X-Fi\Entertainment Center\EAXLoadr.exe
    C:\Program Files\Windows Media Player\wmpnetwk.exe
    C:\Program Files\Creative\ShareDLL\CADI\NotiMan.exe
    C:\Program Files\Common Files\logishrd\KHAL2\KHALMNPR.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\PROGRA~1\MICROS~3\Office12\OUTLOOK.EXE
    C:\Program Files\Common Files\logishrd\LQCVFX\COCIManager.exe
    C:\Windows\ehome\ehrecvr.exe
    C:\Windows\System32\wbem\WMIADAP.exe
    .
    **************************************************************************
    .
    Temps d'accomplissement: 2008-09-11 23:05:48 - machine was rebooted
    ComboFix-quarantined-files.txt 2008-09-11 21:05:36

    Pre-Run: 26,635,804,672 octets libres
    Post-Run: 26,489,212,928 octets libres

    530 --- E O F --- 2008-09-06 02:16:49
    a b 8 Sécurité
    12 Septembre 2008 13:24:25

    Reposte un rapport Hijackthis.
    12 Septembre 2008 18:46:38

    voici le rapport

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 18:45:38, on 12/09/2008
    Platform: Windows Vista SP1 (WinNT 6.00.1905)
    MSIE: Internet Explorer v7.00 (7.00.6001.18000)
    Boot mode: Normal

    Running processes:
    C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\system32\taskeng.exe
    C:\Windows\Explorer.EXE
    C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
    C:\Windows\System32\umonit.exe
    C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
    C:\Windows\WindowsMobile\wmdc.exe
    C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe
    C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe
    C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
    C:\Windows\System32\CTHELPER.EXE
    C:\Program Files\Common Files\logishrd\LComMgr\Communications_Helper.exe
    C:\Program Files\Logitech\QuickCam\Quickcam.exe
    C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe
    C:\Windows\System32\Ctxfihlp.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Creative\DVDAudio\CTDVDDET.exe
    C:\Windows\System32\rundll32.exe
    C:\Program Files\pspvideo9\pspVideo9.exe
    C:\Program Files\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe
    C:\Program Files\Common Files\TerraTec\Remote\TTTvRc.exe
    C:\Program Files\Ideazon\ZEngine\Zboard.exe
    C:\Program Files\MCE\My Movies\My Movies Tray.exe
    C:\Program Files\Roxio Creator 2009\5.0\CPMonitor.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Windows\ehome\ehtray.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\Creative\Shared Files\CTSched.exe
    C:\Program Files\DAEMON Tools Lite\daemon.exe
    C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
    C:\Windows\System32\mobsync.exe
    C:\Program Files\Windows Media Player\wmplayer.exe
    C:\Users\christophe\AppData\Local\Google\Update\GoogleUpdate.exe
    C:\Program Files\Windows Media Player\wmpnscfg.exe
    C:\Program Files\e-Carte Bleue La Banque Postale\ecbl-lbp.exe
    C:\Program Files\Logitech\SetPoint\SetPoint.exe
    C:\Program Files\SanDisk\SanDisk TransferMate\SD Monitor.exe
    C:\Program Files\Logitech\GamePanel Software\LCD Manager\Applets\LCDClock.exe
    C:\Program Files\Logitech\GamePanel Software\LCD Manager\Applets\LCDPop3.exe
    C:\Program Files\Logitech\GamePanel Software\LCD Manager\Applets\LCDMedia.exe
    C:\Windows\ehome\ehmsas.exe
    C:\Windows\SYSTEM32\CTXFISPI.EXE
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
    C:\Program Files\Creative\Sound Blaster X-Fi\Entertainment Center\EAXLoadr.exe
    C:\Program Files\Creative\ShareDLL\CADI\NotiMan.exe
    C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE
    C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
    F:\telechargement\HiJackThis.exe
    F:\telechargement\HiJackThis.exe

    O16 - DPF: CANALPLAY Installer - http://www.canalplay.com/cabs/CanalInstaller.CAB
    O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://appldnld.apple.com.edgesuite.net/content.info.ap...
    O16 - DPF: {0A5FD7C5-A45C-49FC-ADB5-9952547D5715} (Creative Software AutoUpdate) - http://www.creative.com/softwareupdate/su/ocx/15031/CTS...
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
    O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://www.creative.com/softwareupdate/su2/ocx/15105/CT...
    O17 - HKLM\System\CCS\Services\Tcpip\..\{48994F70-44F5-411B-99CF-7A4B3E710B1F}: NameServer = 212.27.53.252,212.27.54.252
    O22 - SharedTaskScheduler: Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll
    O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
    O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: Creative ALchemy AL6 Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
    O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
    O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTAudSvc.exe
    O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
    O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
    O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe
    O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
    O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
    O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
    O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
    O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
    O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
    O23 - Service: DiRT Drivers Auto Removal (pr2ah4nc) (pr2ah4nc) - CODEMASTERS - C:\Windows\system32\pr2ah4nc.exe
    O23 - Service: Roxio UPnP Renderer 10 - Sonic Solutions - C:\Program Files\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe
    O23 - Service: Roxio UPnP Renderer 11 - Sonic Solutions - C:\Program Files\Roxio Creator 2009\Digital Home 11\RoxioUPnPRenderer11.exe
    O23 - Service: Roxio Upnp Server 10 - Sonic Solutions - C:\Program Files\Roxio\Digital Home 10\RoxioUpnpService10.exe
    O23 - Service: Roxio Upnp Server 11 - Sonic Solutions - C:\Program Files\Roxio Creator 2009\Digital Home 11\RoxioUpnpService11.exe
    O23 - Service: LiveShare P2P Server 10 (RoxLiveShare10) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe
    O23 - Service: LiveShare P2P Server 11 (RoxLiveShare11) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\11.0\SharedCOM\RoxLiveShare11.exe
    O23 - Service: RoxMediaDB10 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
    O23 - Service: RoxMediaDB11 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\11.0\SharedCOM\RoxMediaDB11.exe
    O23 - Service: Roxio Hard Drive Watcher 10 (RoxWatch10) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatch10.exe
    O23 - Service: Roxio Hard Drive Watcher 11 (RoxWatch11) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\11.0\SharedCOM\RoxWatch11.exe
    O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
    O23 - Service: Service CANALPLAY - Canal+ Distribution - C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe
    O23 - Service: SessionLauncher - Unknown owner - C:\Users\CHRIST~1\AppData\Local\Temp\DX9\SessionLauncher.exe (file missing)
    O23 - Service: Start BT in service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\StartSkysolSvc.exe
    O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

    --
    End of file - 8584 bytes
    13 Septembre 2008 01:56:38

    voici le rapport d'antivir



    Avira AntiVir Personal
    Report file date: samedi 13 septembre 2008 00:18

    Scanning for 1612438 virus strains and unwanted programs.

    Licensed to: Avira AntiVir PersonalEdition Classic
    Serial number: 0000149996-ADJIE-0001
    Platform: Windows Vista
    Windows version: (Service Pack 1) [6.0.6001]
    Boot mode: Normally booted
    Username: christophe
    Computer name: PC-DE-CHRISTOPH

    Version information:
    BUILD.DAT : 8.1.0.331 16934 Bytes 12/08/2008 11:46:00
    AVSCAN.EXE : 8.1.4.7 315649 Bytes 26/06/2008 08:57:53
    AVSCAN.DLL : 8.1.4.0 40705 Bytes 26/05/2008 07:56:40
    LUKE.DLL : 8.1.4.5 164097 Bytes 12/06/2008 12:44:19
    LUKERES.DLL : 8.1.4.0 12033 Bytes 26/05/2008 07:58:52
    ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 10:33:34
    ANTIVIR1.VDF : 7.0.5.1 8182784 Bytes 24/06/2008 13:54:15
    ANTIVIR2.VDF : 7.0.6.153 3341312 Bytes 12/09/2008 22:15:58
    ANTIVIR3.VDF : 7.0.6.154 2048 Bytes 12/09/2008 22:15:59
    Engineversion : 8.1.1.28
    AEVDF.DLL : 8.1.0.5 102772 Bytes 25/02/2008 09:58:21
    AESCRIPT.DLL : 8.1.0.70 319866 Bytes 12/09/2008 22:16:09
    AESCN.DLL : 8.1.0.23 119156 Bytes 10/07/2008 12:44:49
    AERDL.DLL : 8.1.1.1 397683 Bytes 12/09/2008 22:16:08
    AEPACK.DLL : 8.1.2.1 364917 Bytes 15/07/2008 12:58:35
    AEOFFICE.DLL : 8.1.0.23 196987 Bytes 12/09/2008 22:16:06
    AEHEUR.DLL : 8.1.0.51 1397111 Bytes 12/09/2008 22:16:05
    AEHELP.DLL : 8.1.0.15 115063 Bytes 10/07/2008 12:44:48
    AEGEN.DLL : 8.1.0.36 315764 Bytes 12/09/2008 22:16:02
    AEEMU.DLL : 8.1.0.7 430452 Bytes 31/07/2008 08:33:21
    AECORE.DLL : 8.1.1.11 172406 Bytes 12/09/2008 22:16:01
    AEBB.DLL : 8.1.0.1 53617 Bytes 10/07/2008 12:44:48
    AVWINLL.DLL : 1.0.0.12 15105 Bytes 09/07/2008 08:40:05
    AVPREF.DLL : 8.0.2.0 38657 Bytes 16/05/2008 09:28:01
    AVREP.DLL : 8.0.0.2 98344 Bytes 12/09/2008 22:16:00
    AVREG.DLL : 8.0.0.1 33537 Bytes 09/05/2008 11:26:40
    AVARKT.DLL : 1.0.0.23 307457 Bytes 12/02/2008 08:29:23
    AVEVTLOG.DLL : 8.0.0.16 119041 Bytes 12/06/2008 12:27:49
    SQLITE3.DLL : 3.3.17.1 339968 Bytes 22/01/2008 17:28:02
    SMTPLIB.DLL : 1.2.0.23 28929 Bytes 12/06/2008 12:49:40
    NETNT.DLL : 8.0.0.1 7937 Bytes 25/01/2008 12:05:10
    RCIMAGE.DLL : 8.0.0.51 2371841 Bytes 12/06/2008 13:48:07
    RCTEXT.DLL : 8.0.52.0 86273 Bytes 27/06/2008 13:34:37

    Configuration settings for the scan:
    Jobname..........................: Local Drives
    Configuration file...............: c:\program files\avira\antivir personaledition classic\alldrives.avp
    Logging..........................: low
    Primary action...................: interactive
    Secondary action.................: ignore
    Scan master boot sector..........: on
    Scan boot sector.................: on
    Boot sectors.....................: C:, F:, L:, A:, H:, I:, J:, K:, D:, E:, G:, M:, W:,
    Process scan.....................: on
    Scan registry....................: on
    Search for rootkits..............: off
    Scan all files...................: Intelligent file selection
    Scan archives....................: on
    Recursion depth..................: 20
    Smart extensions.................: on
    Macro heuristic..................: on
    File heuristic...................: medium

    Start of the scan: samedi 13 septembre 2008 00:18

    The scan of running processes will be started
    Scan process 'avscan.exe' - '1' Module(s) have been scanned
    Scan process 'avcenter.exe' - '1' Module(s) have been scanned
    Scan process 'BitComet.exe' - '1' Module(s) have been scanned
    Scan process 'avgnt.exe' - '1' Module(s) have been scanned
    Scan process 'avguard.exe' - '1' Module(s) have been scanned
    Scan process 'sched.exe' - '1' Module(s) have been scanned
    Scan process 'TrustedInstaller.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'VSSVC.exe' - '1' Module(s) have been scanned
    Scan process 'WmiPrvSE.exe' - '1' Module(s) have been scanned
    Scan process 'COCIManager.exe' - '1' Module(s) have been scanned
    Scan process 'OUTLOOK.EXE' - '1' Module(s) have been scanned
    Scan process 'NotiMan.exe' - '1' Module(s) have been scanned
    Scan process 'KHALMNPR.exe' - '1' Module(s) have been scanned
    Scan process 'iPodService.exe' - '1' Module(s) have been scanned
    Scan process 'EAXLoadr.exe' - '1' Module(s) have been scanned
    Scan process 'sidebar.exe' - '1' Module(s) have been scanned
    Scan process 'LCDMedia.exe' - '1' Module(s) have been scanned
    Scan process 'LCDPop3.exe' - '1' Module(s) have been scanned
    Scan process 'LCDClock.exe' - '1' Module(s) have been scanned
    Scan process 'ehrecvr.exe' - '1' Module(s) have been scanned
    Scan process 'NMIndexingService.exe' - '1' Module(s) have been scanned
    Scan process 'taskeng.exe' - '1' Module(s) have been scanned
    Scan process 'NMIndexStoreSvr.exe' - '1' Module(s) have been scanned
    Scan process 'wmpnetwk.exe' - '1' Module(s) have been scanned
    Scan process 'NMFirstStart.exe' - '1' Module(s) have been scanned
    Scan process 'ehsched.exe' - '1' Module(s) have been scanned
    Scan process 'wmpnscfg.exe' - '1' Module(s) have been scanned
    Scan process 'SD Monitor.exe' - '1' Module(s) have been scanned
    Scan process 'SetPoint.exe' - '1' Module(s) have been scanned
    Scan process 'ehmsas.exe' - '1' Module(s) have been scanned
    Scan process 'ecbl-lbp.exe' - '1' Module(s) have been scanned
    Scan process 'NMIndexStoreSvr.exe' - '1' Module(s) have been scanned
    Scan process 'CTxfispi.exe' - '1' Module(s) have been scanned
    Scan process 'GoogleUpdate.exe' - '1' Module(s) have been scanned
    Scan process 'ISUSPM.exe' - '1' Module(s) have been scanned
    Scan process 'TeaTimer.exe' - '1' Module(s) have been scanned
    Scan process 'daemon.exe' - '1' Module(s) have been scanned
    Scan process 'CTSched.exe' - '1' Module(s) have been scanned
    Scan process 'mobsync.exe' - '1' Module(s) have been scanned
    Scan process 'msnmsgr.exe' - '1' Module(s) have been scanned
    Scan process 'ehtray.exe' - '1' Module(s) have been scanned
    Scan process 'sidebar.exe' - '1' Module(s) have been scanned
    Scan process 'CPMonitor.exe' - '1' Module(s) have been scanned
    Scan process 'My Movies Tray.exe' - '1' Module(s) have been scanned
    Scan process 'Zboard.exe' - '1' Module(s) have been scanned
    Scan process 'TTTvRc.exe' - '1' Module(s) have been scanned
    Scan process 'VolPanlu.exe' - '1' Module(s) have been scanned
    Scan process 'pspVideo9.exe' - '1' Module(s) have been scanned
    Scan process 'rundll32.exe' - '1' Module(s) have been scanned
    Scan process 'CTDVDDET.exe' - '1' Module(s) have been scanned
    Scan process 'iTunesHelper.exe' - '1' Module(s) have been scanned
    Scan process 'avgas.exe' - '1' Module(s) have been scanned
    Scan process 'Ctxfihlp.exe' - '1' Module(s) have been scanned
    Scan process 'DLLML.exe' - '1' Module(s) have been scanned
    Scan process 'Quickcam.exe' - '1' Module(s) have been scanned
    Scan process 'Communications_Helper.exe' - '1' Module(s) have been scanned
    Scan process 'CTHELPER.EXE' - '1' Module(s) have been scanned
    Scan process 'jusched.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'LGDCore.exe' - '1' Module(s) have been scanned
    Scan process 'uGuru.exe' - '1' Module(s) have been scanned
    Scan process 'LCDMon.exe' - '1' Module(s) have been scanned
    Scan process 'wmdc.exe' - '1' Module(s) have been scanned
    Scan process 'XBoxStat.exe' - '1' Module(s) have been scanned
    Scan process 'umonit.exe' - '1' Module(s) have been scanned
    Scan process 'IAAnotif.exe' - '1' Module(s) have been scanned
    Scan process 'conime.exe' - '1' Module(s) have been scanned
    Scan process 'taskeng.exe' - '1' Module(s) have been scanned
    Scan process 'explorer.exe' - '1' Module(s) have been scanned
    Scan process 'dwm.exe' - '1' Module(s) have been scanned
    Scan process 'LVComSer.exe' - '1' Module(s) have been scanned
    Scan process 'rundll32.exe' - '1' Module(s) have been scanned
    Scan process 'WUDFHost.exe' - '1' Module(s) have been scanned
    Scan process 'SDWinSec.exe' - '1' Module(s) have been scanned
    Scan process 'SearchIndexer.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'StarWindServiceAE.exe' - '1' Module(s) have been scanned
    Scan process 'sqlwriter.exe' - '1' Module(s) have been scanned
    Scan process 'sqlbrowser.exe' - '1' Module(s) have been scanned
    Scan process 'taskeng.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'PnkBstrA.exe' - '1' Module(s) have been scanned
    Scan process 'IoctlSvc.exe' - '1' Module(s) have been scanned
    Scan process 'NBService.exe' - '1' Module(s) have been scanned
    Scan process 'sqlservr.exe' - '1' Module(s) have been scanned
    Scan process 'LVComSer.exe' - '1' Module(s) have been scanned
    Scan process 'iviRegMgr.exe' - '1' Module(s) have been scanned
    Scan process 'IAANTmon.exe' - '1' Module(s) have been scanned
    Scan process 'mDNSResponder.exe' - '1' Module(s) have been scanned
    Scan process 'guard.exe' - '1' Module(s) have been scanned
    Scan process 'AppleMobileDeviceService.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
    Scan process 'aawservice.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'SLsvc.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'CTAudSvc.exe' - '1' Module(s) have been scanned
    Scan process 'audiodg.exe' - '0' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'LVPrcSrv.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'winlogon.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'nvvsvc.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'lsm.exe' - '1' Module(s) have been scanned
    Scan process 'lsass.exe' - '1' Module(s) have been scanned
    Scan process 'services.exe' - '1' Module(s) have been scanned
    Scan process 'csrss.exe' - '1' Module(s) have been scanned
    Scan process 'wininit.exe' - '1' Module(s) have been scanned
    Scan process 'csrss.exe' - '1' Module(s) have been scanned
    Scan process 'smss.exe' - '1' Module(s) have been scanned
    117 processes with 117 modules were scanned

    Starting master boot sector scan:
    Master boot sector HD0
    [INFO] No virus was found!
    Master boot sector HD1
    [INFO] No virus was found!
    [WARNING] System error [21]: Le périphérique n'est pas prêt.
    [INFO] Please restart the search with Administrator rights
    Master boot sector HD2
    [INFO] No virus was found!
    [WARNING] System error [21]: Le périphérique n'est pas prêt.
    [INFO] Please restart the search with Administrator rights
    Master boot sector HD3
    [INFO] No virus was found!
    [WARNING] System error [21]: Le périphérique n'est pas prêt.
    [INFO] Please restart the search with Administrator rights
    Master boot sector HD4
    [INFO] No virus was found!
    [WARNING] System error [21]: Le périphérique n'est pas prêt.
    [INFO] Please restart the search with Administrator rights

    Start scanning boot sectors:
    Boot sector 'C:\'
    [INFO] No virus was found!
    Boot sector 'F:\'
    [INFO] No virus was found!
    Boot sector 'L:\'
    [INFO] No virus was found!
    Boot sector 'A:\'
    [INFO] In the drive 'A:\' no data medium is inserted!
    Boot sector 'H:\'
    [INFO] In the drive 'H:\' no data medium is inserted!
    Boot sector 'I:\'
    [INFO] In the drive 'I:\' no data medium is inserted!
    Boot sector 'J:\'
    [INFO] In the drive 'J:\' no data medium is inserted!
    Boot sector 'K:\'
    [INFO] In the drive 'K:\' no data medium is inserted!

    Starting to scan the registry.
    The registry was scanned ( '60' files ).


    Starting the file scan:

    Begin scan in 'C:\'
    C:\hiberfil.sys
    [WARNING] The file could not be opened!
    C:\pagefile.sys
    [WARNING] The file could not be opened!
    C:\Users\christophe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\IY7844P1\swflash[1].cab
    [0] Archive type: CAB (Microsoft)
    --> FP_AX_CAB_INSTALLER.exe
    [WARNING] No further files can be extracted from this archive. The archive will be closed
    C:\Windows\System32\drivers\sptd.sys
    [WARNING] The file could not be opened!
    Begin scan in 'F:\' <sauvegarde>
    F:\applications\gravage\Alcohol120%\Alcohol 120% 1.4.3.410 + Keygen.zip
    [0] Archive type: ZIP
    --> tsrh-alc120-140_kg.exe
    [DETECTION] Is the TR/Gendal.86833 Trojan
    [NOTE] The file was moved to '492df5dd.qua'!
    F:\applications\prise en charge adistance\pcanyware\Pcanywhere 10.5 Fr Full.ace
    [0] Archive type: ACE
    --> PcAnywhere 10.5 Fr full\Installs\Unsupported\pcA_921\program files\Symantec\pcAnywhere\CMS\Sms.bhf
    [WARNING] No further files can be extracted from this archive. The archive will be closed
    F:\applications\prise en charge adistance\Vmaware\VMware.Workstation.v4.0.1.build.5289.para.Windows.y.Linux-[Neo-Zoltar].rar
    [0] Archive type: RAR
    --> rorvml4d-2003-7-25.rar
    [1] Archive type: RAR
    --> keygen.exe
    [DETECTION] Is the TR/Agent.244224 Trojan
    [NOTE] The file was moved to '4941f676.qua'!
    F:\applications\traducteur\Softissimo.Reverso.Pro.5.0.+.serie.Fr137.72.mo.[found.via.www.fileDonkey.com].exe
    [0] Archive type: ACE SFX (self extracting)
    --> Softissimo Reverso Pro 5.0 Fr\English\EFFE\instmsiw.exe
    [WARNING] No further files can be extracted from this archive. The archive will be closed
    [WARNING] No further files can be extracted from this archive. The archive will be closed
    F:\telechargement\Adobe Photoshop CS3 Extended - FULL CRACKED\payloads\AdobeAssetServices3All\AdobeAssetServices3All1.cab.bc!
    [0] Archive type: CAB (Microsoft)
    --> _4_13dfee1ec6b1dbae65213d23eed8abd7
    [WARNING] No further files can be extracted from this archive. The archive will be closed
    F:\telechargement\Adobe Photoshop CS3 Extended - FULL CRACKED\payloads\AdobeExtendScriptToolKitAll\AdobeExtendScriptToolKitAll1.cab.bc!
    [0] Archive type: CAB (Microsoft)
    --> _3_c7192f38167e3e5cdf92ebc8abb93f72
    [WARNING] No further files can be extracted from this archive. The archive will be closed
    F:\telechargement\Adobe Photoshop CS3 Extended - FULL CRACKED\payloads\AdobePDFL8All\AdobePDFL8All1.cab.bc!
    [0] Archive type: CAB (Microsoft)
    --> _50_a861144d2e770f5bdb0d09cde80224ac
    [WARNING] No further files can be extracted from this archive. The archive will be closed
    F:\telechargement\Adobe Photoshop CS3 Extended - FULL CRACKED\payloads\AdobeVersionCueClient3All\AdobeVersionCueClient3All1.cab.bc!
    [0] Archive type: CAB (Microsoft)
    --> _115_5bda80cbc6f429f38196dd2899c80b86
    [WARNING] No further files can be extracted from this archive. The archive will be closed
    F:\telechargement\Adobe Photoshop CS3 Extended - FULL CRACKED\payloads\AdobeWinSoftLinguisticsPluginAll\AdobeWinSoftLinguisticsPluginAll1.cab.bc!
    [0] Archive type: CAB (Microsoft)
    --> _6_521d0ae44e80f68178ccff5abdadc3f9
    [WARNING] No further files can be extracted from this archive. The archive will be closed
    Begin scan in 'L:\' <GAMES>
    L:\WOW\WoW-2.0.0-frFR-Installer\DirectX\BDANT.cab
    [0] Archive type: CAB (Microsoft)
    --> kstvtune.ax
    [WARNING] No further files can be extracted from this archive. The archive will be closed
    L:\WOW\WoW-2.0.0-frFR-Installer\DirectX\DirectX.cab
    [0] Archive type: CAB (Microsoft)
    --> vjoyd.vxd
    [WARNING] No further files can be extracted from this archive. The archive will be closed
    Begin scan in 'A:\'
    Search path A:\ could not be opened!
    System error [21]: Le périphérique n'est pas prêt.
    Begin scan in 'H:\'
    Search path H:\ could not be opened!
    System error [21]: Le périphérique n'est pas prêt.
    Begin scan in 'I:\'
    Search path I:\ could not be opened!
    System error [21]: Le périphérique n'est pas prêt.
    Begin scan in 'J:\'
    Search path J:\ could not be opened!
    System error [21]: Le périphérique n'est pas prêt.
    Begin scan in 'K:\'
    Search path K:\ could not be opened!
    System error [21]: Le périphérique n'est pas prêt.
    Begin scan in 'D:\'
    Search path D:\ could not be opened!
    System error [21]: Le périphérique n'est pas prêt.
    Begin scan in 'E:\'
    Search path E:\ could not be opened!
    System error [21]: Le périphérique n'est pas prêt.
    Begin scan in 'G:\'
    Search path G:\ could not be opened!
    System error [21]: Le périphérique n'est pas prêt.
    Begin scan in 'M:\'
    Search path M:\ could not be opened!
    System error [21]: Le périphérique n'est pas prêt.
    Begin scan in 'W:\' <Disk1>


    End of the scan: samedi 13 septembre 2008 01:28
    Used time: 1:09:23 Hour(s)

    The scan has been done completely.

    27009 Scanning directories
    729186 Files were scanned
    2 viruses and/or unwanted programs were found
    0 Files were classified as suspicious:
    0 files were deleted
    0 files were repaired
    2 files were moved to quarantine
    0 files were renamed
    4 Files cannot be scanned
    729180 Files not concerned
    8065 Archives were scanned
    18 Warnings
    2 Notes

    a b 8 Sécurité
    13 Septembre 2008 12:54:17

    Reposte un rapport Hijackthis.
    13 Septembre 2008 17:14:25

    voici le rapport

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 17:13:30, on 13/09/2008
    Platform: Windows Vista SP1 (WinNT 6.00.1905)
    MSIE: Internet Explorer v7.00 (7.00.6001.18000)
    Boot mode: Normal

    Running processes:
    C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\system32\taskeng.exe
    C:\Windows\Explorer.EXE
    C:\Windows\system32\conime.exe
    C:\Program Files\U-ABIT\uGuru\uGuru.exe
    C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
    C:\Windows\System32\umonit.exe
    C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
    C:\Windows\WindowsMobile\wmdc.exe
    C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe
    C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe
    C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
    C:\Windows\System32\CTHELPER.EXE
    C:\Program Files\Common Files\logishrd\LComMgr\Communications_Helper.exe
    C:\Windows\SYSTEM32\CTXFISPI.EXE
    C:\Program Files\Logitech\QuickCam\Quickcam.exe
    C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe
    C:\Windows\System32\Ctxfihlp.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Creative\DVDAudio\CTDVDDET.exe
    C:\Windows\System32\rundll32.exe
    C:\Program Files\pspvideo9\pspVideo9.exe
    C:\Program Files\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe
    C:\Program Files\Common Files\TerraTec\Remote\TTTvRc.exe
    C:\Program Files\Ideazon\ZEngine\Zboard.exe
    C:\Program Files\MCE\My Movies\My Movies Tray.exe
    C:\Program Files\Roxio Creator 2009\5.0\CPMonitor.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Premium\avgnt.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Windows\ehome\ehtray.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\Creative\Shared Files\CTSched.exe
    C:\Program Files\Logitech\GamePanel Software\LCD Manager\Applets\LCDClock.exe
    C:\Program Files\Logitech\GamePanel Software\LCD Manager\Applets\LCDPop3.exe
    C:\Program Files\DAEMON Tools Lite\daemon.exe
    C:\Program Files\Logitech\GamePanel Software\LCD Manager\Applets\LCDMedia.exe
    C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    C:\Program Files\Windows Media Player\wmpnscfg.exe
    C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
    C:\Users\christophe\AppData\Local\Google\Update\GoogleUpdate.exe
    C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
    C:\Program Files\e-Carte Bleue La Banque Postale\ecbl-lbp.exe
    C:\Program Files\Logitech\SetPoint\SetPoint.exe
    C:\Program Files\SanDisk\SanDisk TransferMate\SD Monitor.exe
    C:\Windows\ehome\ehmsas.exe
    C:\Program Files\Windows Media Player\wmplayer.exe
    C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
    C:\Program Files\Creative\Sound Blaster X-Fi\Entertainment Center\EAXLoadr.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files\Creative\ShareDLL\CADI\NotiMan.exe
    C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE
    C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
    C:\Windows\system32\SearchFilterHost.exe
    F:\telechargement\HiJackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.daemonsearch.com/fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.2.8.7.dll
    O2 - BHO: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~2\MEGAUP~1.DLL
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Mega Manager IE Click Monitor - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll
    O3 - Toolbar: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~2\MEGAUP~1.DLL
    O3 - Toolbar: &TerraTec Home Cinema - {AD6E6555-FB2C-47D4-8339-3E2965509877} - C:\PROGRA~1\TerraTec\TERRAT~1\THCDES~1.DLL
    O4 - HKLM\..\Run: [AudioDrvEmulator] "C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe" -1 AudioDrvEmulator "C:\Program Files\Creative\Shared Files\Module Loader\Audio Emulator\AudDrvEm.dll"
    O4 - HKLM\..\Run: [UpdReg] C:\Windows\UpdReg.EXE
    O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
    O4 - HKLM\..\Run: [UMonit] C:\Windows\system32\umonit.exe
    O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
    O4 - HKLM\..\Run: [XboxStat] "C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
    O4 - HKLM\..\Run: [Launch LCDMon] "C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe"
    O4 - HKLM\..\Run: [Launch LGDCore] "C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe" /SHOWHIDE
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
    O4 - HKLM\..\Run: [CTXFIREG] CTxfiReg.exe
    O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
    O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe"
    O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide
    O4 - HKLM\..\Run: [Module Loader] C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe -StartUpRun
    O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE
    O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
    O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [CTDVDDET] "C:\Program Files\Creative\DVDAudio\CTDVDDET.EXE"
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [PSPVideo9] C:\Program Files\pspvideo9\pspVideo9.exe -t
    O4 - HKLM\..\Run: [VolPanel] "C:\Program Files\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe" /r
    O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files\Common Files\Roxio Shared\11.0\SharedCOM\RoxWatchTray11.exe"
    O4 - HKLM\..\Run: [TerraTec Remote Control] "C:\Program Files\Common Files\TerraTec\Remote\TTTvRc.exe"
    O4 - HKLM\..\Run: [Zboard] C:\Program Files\Ideazon\ZEngine\Zboard.exe
    O4 - HKLM\..\Run: [My Movies Tray] "C:\Program Files\MCE\My Movies\My Movies Tray.exe"
    O4 - HKLM\..\Run: [CPMonitor] "C:\Program Files\Roxio Creator 2009\5.0\CPMonitor.exe"
    O4 - HKLM\..\Run: [PSP Auto Trasfer] C:\Program Files\Dr4iNLiF3 Products\PSP Auto Transfer\PSP Auto Transfer.exe
    O4 - HKLM\..\Run: [CanalPlayerHelper] C:\Program Files\Lecteur CANALPLAY\CanalPlayerHelper.exe
    O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
    O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Premium\avgnt.exe" /min
    O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
    O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
    O4 - HKCU\..\Run: [Core Temp] C:\Users\christophe\Downloads\CoreTemp\Core Temp.exe
    O4 - HKCU\..\Run: [CreativeTaskScheduler] "C:\Program Files\Creative\Shared Files\CTSched.exe" /logon
    O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
    O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
    O4 - HKCU\..\Run: [ISUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler
    O4 - HKCU\..\Run: [Google Update] "C:\Users\christophe\AppData\Local\Google\Update\GoogleUpdate.exe" /c
    O4 - HKCU\..\Run: [iyieu] "c:\users\christophe\appdata\local\iyieu.exe" iyieu
    O4 - HKCU\..\Run: [ciwsg] "c:\users\christophe\appdata\local\ciwsg.exe" ciwsg
    O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [DevconDefaultDB] C:\Windows\system32\READREG /SILENT /FAIL=1 (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [DevconDefaultDB] C:\Windows\system32\READREG /SILENT /FAIL=1 (User 'Default user')
    O4 - Global Startup: e-Carte Bleue La Banque Postale.lnk = C:\Program Files\e-Carte Bleue La Banque Postale\ecbl-lbp.exe
    O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
    O4 - Global Startup: Monitor.lnk = C:\Program Files\SanDisk\SanDisk TransferMate\SD Monitor.exe
    O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
    O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
    O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
    O8 - Extra context menu item: Download Link Using Mega Manager... - C:\Program Files\Megaupload\Mega Manager\mm_file.htm
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
    O8 - Extra context menu item: Liens de téléchargement avec Mega Manager... - C:\Program Files\Megaupload\Mega Manager\mm_file.htm
    O8 - Extra context menu item: Recherche sur eBay - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
    O8 - Extra context menu item: Télécharger avec &BitSpirit - C:\Program Files\BitSpirit\bsurl.htm
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
    O9 - Extra button: (no name) - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - (no file)
    O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - (no file)
    O9 - Extra button: (no name) - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - (no file)
    O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.2.8.7.dll/206 (file missing)
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O13 - Gopher Prefix:
    O15 - Trusted Zone: *.canalplay.com
    O15 - Trusted Zone: *.canalplusactive.com
    O15 - Trusted Zone: *.canalplay.com (HKLM)
    O15 - Trusted Zone: *.canalplusactive.com (HKLM)
    O16 - DPF: CANALPLAY Installer - http://www.canalplay.com/cabs/CanalInstaller.CAB
    O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://appldnld.apple.com.edgesuite.net/content.info.ap...
    O16 - DPF: {0A5FD7C5-A45C-49FC-ADB5-9952547D5715} (Creative Software AutoUpdate) - http://www.creative.com/softwareupdate/su/ocx/15031/CTS...
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
    O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://www.creative.com/softwareupdate/su2/ocx/15105/CT...
    O17 - HKLM\System\CCS\Services\Tcpip\..\{48994F70-44F5-411B-99CF-7A4B3E710B1F}: NameServer = 212.27.53.252,212.27.54.252
    O22 - SharedTaskScheduler: Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll
    O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
    O23 - Service: Avira AntiVir Premium MailGuard (AntiVirMailService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Premium\avmailc.exe
    O23 - Service: Planificateur Avira AntiVir Premium (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Premium\sched.exe
    O23 - Service: Avira AntiVir Premium Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Premium\avguard.exe
    O23 - Service: Avira AntiVir Premium WebGuard (antivirwebservice) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Premium\AVWEBGRD.EXE
    O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: Service d'assistance Avira AntiVir Premium MailGuard (AVEService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Premium\avesvc.exe
    O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: Creative ALchemy AL6 Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
    O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
    O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTAudSvc.exe
    O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
    O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
    O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe
    O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
    O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
    O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
    O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
    O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
    O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
    O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
    O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe
    O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
    O23 - Service: DiRT Drivers Auto Removal (pr2ah4nc) (pr2ah4nc) - CODEMASTERS - C:\Windows\system32\pr2ah4nc.exe
    O23 - Service: Roxio UPnP Renderer 10 - Sonic Solutions - C:\Program Files\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe
    O23 - Service: Roxio UPnP Renderer 11 - Sonic Solutions - C:\Program Files\Roxio Creator 2009\Digital Home 11\RoxioUPnPRenderer11.exe
    O23 - Service: Roxio Upnp Server 10 - Sonic Solutions - C:\Program Files\Roxio\Digital Home 10\RoxioUpnpService10.exe
    O23 - Service: Roxio Upnp Server 11 - Sonic Solutions - C:\Program Files\Roxio Creator 2009\Digital Home 11\RoxioUpnpService11.exe
    O23 - Service: LiveShare P2P Server 10 (RoxLiveShare10) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe
    O23 - Service: LiveShare P2P Server 11 (RoxLiveShare11) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\11.0\SharedCOM\RoxLiveShare11.exe
    O23 - Service: RoxMediaDB10 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
    O23 - Service: RoxMediaDB11 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\11.0\SharedCOM\RoxMediaDB11.exe
    O23 - Service: Roxio Hard Drive Watcher 10 (RoxWatch10) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatch10.exe
    O23 - Service: Roxio Hard Drive Watcher 11 (RoxWatch11) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\11.0\SharedCOM\RoxWatch11.exe
    O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
    O23 - Service: Service CANALPLAY - Canal+ Distribution - C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe
    O23 - Service: SessionLauncher - Unknown owner - C:\Users\CHRIST~1\AppData\Local\Temp\DX9\SessionLauncher.exe (file missing)
    O23 - Service: Start BT in service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\StartSkysolSvc.exe
    O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

    --
    End of file - 18619 bytes
    a b 8 Sécurité
    13 Septembre 2008 18:51:10

    Re,

    Fix les lignes dans le cadre ci-dessous avec HijackThis : AIDE EN IMAGES

    O4 - HKCU\..\Run: [iyieu] "c:\users\christophe\appdata\local\iyieu.exe" iyieu
    O4 - HKCU\..\Run: [ciwsg] "c:\users\christophe\appdata\local\ciwsg.exe" ciwsg
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
    O9 - Extra button: (no name) - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - (no file)
    O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - (no file)
    O9 - Extra button: (no name) - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - (no file)
    13 Septembre 2008 19:07:12

    je n'arrive pas a supprimer ces lignes

    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
    O9 - Extra button: (no name) - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - (no file)
    O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - (no file)
    O9 - Extra button: (no name) - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - (no file)
    a b 8 Sécurité
    13 Septembre 2008 19:10:17

    Il te dit quoi ?
    13 Septembre 2008 19:12:42

    absolument rien

    il me demande de confirmer la suppression donc je clic sur ok et quand je rescanne derrière elles sont là
    a b 8 Sécurité
    13 Septembre 2008 19:13:31

    Reposte un rapport Hijackthis.
    13 Septembre 2008 19:15:48

    voici le dernier rapport

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 19:14:55, on 13/09/2008
    Platform: Windows Vista SP1 (WinNT 6.00.1905)
    MSIE: Internet Explorer v7.00 (7.00.6001.18000)
    Boot mode: Normal

    Running processes:
    C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\system32\taskeng.exe
    C:\Windows\Explorer.EXE
    C:\Windows\system32\conime.exe
    C:\Program Files\U-ABIT\uGuru\uGuru.exe
    C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
    C:\Windows\System32\umonit.exe
    C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
    C:\Windows\WindowsMobile\wmdc.exe
    C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe
    C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe
    C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
    C:\Windows\System32\CTHELPER.EXE
    C:\Program Files\Common Files\logishrd\LComMgr\Communications_Helper.exe
    C:\Windows\SYSTEM32\CTXFISPI.EXE
    C:\Program Files\Logitech\QuickCam\Quickcam.exe
    C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe
    C:\Windows\System32\Ctxfihlp.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Creative\DVDAudio\CTDVDDET.exe
    C:\Windows\System32\rundll32.exe
    C:\Program Files\pspvideo9\pspVideo9.exe
    C:\Program Files\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe
    C:\Program Files\Common Files\TerraTec\Remote\TTTvRc.exe
    C:\Program Files\Ideazon\ZEngine\Zboard.exe
    C:\Program Files\MCE\My Movies\My Movies Tray.exe
    C:\Program Files\Roxio Creator 2009\5.0\CPMonitor.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Premium\avgnt.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Windows\ehome\ehtray.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\Creative\Shared Files\CTSched.exe
    C:\Program Files\Logitech\GamePanel Software\LCD Manager\Applets\LCDClock.exe
    C:\Program Files\Logitech\GamePanel Software\LCD Manager\Applets\LCDPop3.exe
    C:\Program Files\DAEMON Tools Lite\daemon.exe
    C:\Program Files\Logitech\GamePanel Software\LCD Manager\Applets\LCDMedia.exe
    C:\Program Files\Windows Media Player\wmpnscfg.exe
    C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
    C:\Users\christophe\AppData\Local\Google\Update\GoogleUpdate.exe
    C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
    C:\Program Files\e-Carte Bleue La Banque Postale\ecbl-lbp.exe
    C:\Program Files\Logitech\SetPoint\SetPoint.exe
    C:\Program Files\SanDisk\SanDisk TransferMate\SD Monitor.exe
    C:\Windows\ehome\ehmsas.exe
    C:\Program Files\Windows Media Player\wmplayer.exe
    C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
    C:\Program Files\Creative\Sound Blaster X-Fi\Entertainment Center\EAXLoadr.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files\Creative\ShareDLL\CADI\NotiMan.exe
    C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE
    C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    F:\telechargement\HiJackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.daemonsearch.com/fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.2.8.7.dll
    O2 - BHO: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~2\MEGAUP~1.DLL
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Mega Manager IE Click Monitor - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll
    O3 - Toolbar: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~2\MEGAUP~1.DLL
    O3 - Toolbar: &TerraTec Home Cinema - {AD6E6555-FB2C-47D4-8339-3E2965509877} - C:\PROGRA~1\TerraTec\TERRAT~1\THCDES~1.DLL
    O4 - HKLM\..\Run: [AudioDrvEmulator] "C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe" -1 AudioDrvEmulator "C:\Program Files\Creative\Shared Files\Module Loader\Audio Emulator\AudDrvEm.dll"
    O4 - HKLM\..\Run: [UpdReg] C:\Windows\UpdReg.EXE
    O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
    O4 - HKLM\..\Run: [UMonit] C:\Windows\system32\umonit.exe
    O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
    O4 - HKLM\..\Run: [XboxStat] "C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
    O4 - HKLM\..\Run: [Launch LCDMon] "C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe"
    O4 - HKLM\..\Run: [Launch LGDCore] "C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe" /SHOWHIDE
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
    O4 - HKLM\..\Run: [CTXFIREG] CTxfiReg.exe
    O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
    O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe"
    O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide
    O4 - HKLM\..\Run: [Module Loader] C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe -StartUpRun
    O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE
    O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
    O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [CTDVDDET] "C:\Program Files\Creative\DVDAudio\CTDVDDET.EXE"
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [PSPVideo9] C:\Program Files\pspvideo9\pspVideo9.exe -t
    O4 - HKLM\..\Run: [VolPanel] "C:\Program Files\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe" /r
    O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files\Common Files\Roxio Shared\11.0\SharedCOM\RoxWatchTray11.exe"
    O4 - HKLM\..\Run: [TerraTec Remote Control] "C:\Program Files\Common Files\TerraTec\Remote\TTTvRc.exe"
    O4 - HKLM\..\Run: [Zboard] C:\Program Files\Ideazon\ZEngine\Zboard.exe
    O4 - HKLM\..\Run: [My Movies Tray] "C:\Program Files\MCE\My Movies\My Movies Tray.exe"
    O4 - HKLM\..\Run: [CPMonitor] "C:\Program Files\Roxio Creator 2009\5.0\CPMonitor.exe"
    O4 - HKLM\..\Run: [PSP Auto Trasfer] C:\Program Files\Dr4iNLiF3 Products\PSP Auto Transfer\PSP Auto Transfer.exe
    O4 - HKLM\..\Run: [CanalPlayerHelper] C:\Program Files\Lecteur CANALPLAY\CanalPlayerHelper.exe
    O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
    O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Premium\avgnt.exe" /min
    O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
    O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
    O4 - HKCU\..\Run: [Core Temp] C:\Users\christophe\Downloads\CoreTemp\Core Temp.exe
    O4 - HKCU\..\Run: [CreativeTaskScheduler] "C:\Program Files\Creative\Shared Files\CTSched.exe" /logon
    O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
    O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
    O4 - HKCU\..\Run: [ISUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler
    O4 - HKCU\..\Run: [Google Update] "C:\Users\christophe\AppData\Local\Google\Update\GoogleUpdate.exe" /c
    O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [DevconDefaultDB] C:\Windows\system32\READREG /SILENT /FAIL=1 (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [DevconDefaultDB] C:\Windows\system32\READREG /SILENT /FAIL=1 (User 'Default user')
    O4 - Global Startup: e-Carte Bleue La Banque Postale.lnk = C:\Program Files\e-Carte Bleue La Banque Postale\ecbl-lbp.exe
    O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
    O4 - Global Startup: Monitor.lnk = C:\Program Files\SanDisk\SanDisk TransferMate\SD Monitor.exe
    O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
    O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
    O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
    O8 - Extra context menu item: Download Link Using Mega Manager... - C:\Program Files\Megaupload\Mega Manager\mm_file.htm
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
    O8 - Extra context menu item: Liens de téléchargement avec Mega Manager... - C:\Program Files\Megaupload\Mega Manager\mm_file.htm
    O8 - Extra context menu item: Télécharger avec &BitSpirit - C:\Program Files\BitSpirit\bsurl.htm
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
    O9 - Extra button: (no name) - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - (no file)
    O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - (no file)
    O9 - Extra button: (no name) - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - (no file)
    O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.2.8.7.dll/206 (file missing)
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O13 - Gopher Prefix:
    O15 - Trusted Zone: *.canalplay.com
    O15 - Trusted Zone: *.canalplusactive.com
    O15 - Trusted Zone: *.canalplay.com (HKLM)
    O15 - Trusted Zone: *.canalplusactive.com (HKLM)
    O16 - DPF: CANALPLAY Installer - http://www.canalplay.com/cabs/CanalInstaller.CAB
    O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://appldnld.apple.com.edgesuite.net/content.info.ap...
    O16 - DPF: {0A5FD7C5-A45C-49FC-ADB5-9952547D5715} (Creative Software AutoUpdate) - http://www.creative.com/softwareupdate/su/ocx/15031/CTS...
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
    O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://www.creative.com/softwareupdate/su2/ocx/15105/CT...
    O17 - HKLM\System\CCS\Services\Tcpip\..\{48994F70-44F5-411B-99CF-7A4B3E710B1F}: NameServer = 212.27.53.252,212.27.54.252
    O22 - SharedTaskScheduler: Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll
    O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
    O23 - Service: Avira AntiVir Premium MailGuard (AntiVirMailService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Premium\avmailc.exe
    O23 - Service: Planificateur Avira AntiVir Premium (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Premium\sched.exe
    O23 - Service: Avira AntiVir Premium Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Premium\avguard.exe
    O23 - Service: Avira AntiVir Premium WebGuard (antivirwebservice) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Premium\AVWEBGRD.EXE
    O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: Service d'assistance Avira AntiVir Premium MailGuard (AVEService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Premium\avesvc.exe
    O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: Creative ALchemy AL6 Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
    O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
    O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTAudSvc.exe
    O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
    O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
    O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe
    O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
    O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
    O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
    O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
    O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
    O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
    O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
    O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe
    O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
    O23 - Service: DiRT Drivers Auto Removal (pr2ah4nc) (pr2ah4nc) - CODEMASTERS - C:\Windows\system32\pr2ah4nc.exe
    O23 - Service: Roxio UPnP Renderer 10 - Sonic Solutions - C:\Program Files\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe
    O23 - Service: Roxio UPnP Renderer 11 - Sonic Solutions - C:\Program Files\Roxio Creator 2009\Digital Home 11\RoxioUPnPRenderer11.exe
    O23 - Service: Roxio Upnp Server 10 - Sonic Solutions - C:\Program Files\Roxio\Digital Home 10\RoxioUpnpService10.exe
    O23 - Service: Roxio Upnp Server 11 - Sonic Solutions - C:\Program Files\Roxio Creator 2009\Digital Home 11\RoxioUpnpService11.exe
    O23 - Service: LiveShare P2P Server 10 (RoxLiveShare10) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe
    O23 - Service: LiveShare P2P Server 11 (RoxLiveShare11) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\11.0\SharedCOM\RoxLiveShare11.exe
    O23 - Service: RoxMediaDB10 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
    O23 - Service: RoxMediaDB11 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\11.0\SharedCOM\RoxMediaDB11.exe
    O23 - Service: Roxio Hard Drive Watcher 10 (RoxWatch10) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatch10.exe
    O23 - Service: Roxio Hard Drive Watcher 11 (RoxWatch11) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\11.0\SharedCOM\RoxWatch11.exe
    O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
    O23 - Service: Service CANALPLAY - Canal+ Distribution - C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe
    O23 - Service: SessionLauncher - Unknown owner - C:\Users\CHRIST~1\AppData\Local\Temp\DX9\SessionLauncher.exe (file missing)
    O23 - Service: Start BT in service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\StartSkysolSvc.exe
    O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

    --
    End of file - 18289 bytes
    a b 8 Sécurité
    13 Septembre 2008 19:28:26

    Tu as toujours des pubs ?
    13 Septembre 2008 19:47:44

    non Angeldark grâce a tes connaissances je n'ais plus de pubs

    je pense que ces quatre lignes on peu d'importance

    encore merci pour ton aide
    a b 8 Sécurité
    13 Septembre 2008 20:09:34

    Bonne continuation ;) 
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS