.Exe n'est pas une application win32 valide

Question

Bonjour, j'ai un petit problème :
Il y a peu de temps j'ai reçu une sorte de virus qui ma viré mon centre de sécurité et mon anti-virus =/ et c'est assez gênant.
A chaque démarrage du pc, je dois donc remettre mon centre de securités manuellement par les outils d'administration, puis retelecharger mon anti virus (avast)
Mais problème lors de de l'installation un message d'erreur apparait " .Exe n'est pas une application win32 valide ".
Pour remédier a ce problème j'ai donc tenter de vérifier les contrôleurs ATA/ATAPI IDE.
j'ai lancer la commande regsvr32 /i SHELL32.DLL  et sfc /scannow   (sans succès)

Je me demande donc comment pouvoir réinstaller un anti-virus. 
J'attends votre aide bonne soirée.

crapoulou · Answer

Salut,
Tu es infecté par Bagle, du au téléchargement d'un crack infecté via le P2P comme Emule, Limeware, Bit torrent, ...

Télécharge FindyKill (Merci à Chiquitine29 !!)
= = = = >>> En cliquant ici <<< = = = =

Fais un clic droit sur le lien, Enregistrer la cible sous (Internet Explorer) ou Enregistrer la cible du lien sous (Firefox) …
Choisis d’enregistrer le fichier sur le bureau.

Double clique sur FindyKill.exe
Choisis l’option 1 (Recherche)
Un rapport va s’ouvrir, poste le dans ta prochaine réponse.

Note :
Le rapport FindyKill.txt est sauvegardé à la racine du disque (C:\FindyKill.txt)

Yann · Answer

Bonjour, merci pour ta réponse rapide. j'ai bien reçu ce virus a la suite d'un téléchargement par p2p.
la recherche est en cour

Yann · Answer

----------------- FindyKill V4.709 ------------------

* User : Yann - YANN-CB5447644D
* Emplacement : C:\Program Files\FindyKill
* Outils Mis a jours le 10/12/08 par Chiquitine29
* Recherche effectuée à 23:28:36 le 20/12/2008
* Windows XP - Internet Explorer 7.0.5730.13
 
((((((((((((((((( *** Recherche *** ))))))))))))))))))  
 
 
--------------- [ Processus actifs ] ----------------  
 

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Steam\Steam.exe
C:\Program Files\AskBarDis\bar\bin\AskService.exe
C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32
vsvc32.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32undll32.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wuauclt.exe
 
--------------- [ Fichiers/Dossiers infectieux ] ----------------  
 
 
»»»» Presence des fichiers dans C: 
 
 
»»»» Presence des fichiers dans C:\WINDOWS 
 
 
»»»» Presence des fichiers dans C:\WINDOWS\Prefetch 
 
Found ! - C:\WINDOWS\prefetch\101187.EXE-34D3EB2B.pf 
Found ! - C:\WINDOWS\prefetch\114156.EXE-230A3B7B.pf 
Found ! - C:\WINDOWS\prefetch\126265.EXE-1CB9885A.pf 
Found ! - C:\WINDOWS\prefetch\132937.EXE-02B6D57F.pf 
Found ! - C:\WINDOWS\prefetch\152015.EXE-04C6F9B8.pf 
Found ! - C:\WINDOWS\prefetch\184609.EXE-261E3EE9.pf 
Found ! - C:\WINDOWS\prefetch\209750.EXE-23BE45FB.pf 
Found ! - C:\WINDOWS\prefetch\253781.EXE-164794E2.pf 
Found ! - C:\WINDOWS\prefetch\284656.EXE-2A9E38A4.pf 
Found ! - C:\WINDOWS\prefetch\62437.EXE-04CFF103.pf 
Found ! - C:\WINDOWS\prefetch\71937.EXE-2591482F.pf 
Found ! - C:\WINDOWS\prefetch\95609.EXE-0FDFB369.pf 
Found ! - C:\WINDOWS\prefetch\FLEC006.EXE-03AF37FC.pf 
Found ! - C:\WINDOWS\prefetch\MDELK.EXE-1D176F91.pf 
Found ! - C:\WINDOWS\prefetch\WINTEMS.EXE-2A563F9B.pf 
 
»»»» Presence des fichiers dans C:\WINDOWS\system32 
 
Found ! [20/12/2008 22:22] - C:\WINDOWS\system32\mdelk.exe 
Found ! [20/12/2008 22:22] - C:\WINDOWS\system32\wintems.exe 
Found ! [20/12/2008 23:23] - C:\WINDOWS\system32\ban_list.txt 
 
»»»» Presence des fichiers dans C:\WINDOWS\system32\config\systemprofile\AppData\Roaming 
 
 
»»»» Presence des fichiers dans C:\WINDOWS\system32\drivers 
 
 
»»»» Presence des fichiers dans C:\Documents and Settings\Yann\Application Data 
 
Found ! [20/12/2008 22:23] - "C:\Documents and Settings\Yann\Application Data\m\flec006.exe" 
Found ! [20/12/2008 22:24] - "C:\Documents and Settings\Yann\Application Data\m\list.oct" 
Found ! [20/12/2008 22:24] - "C:\Documents and Settings\Yann\Application Data\m\data.oct" 
Found ! [20/12/2008 22:24] - "C:\Documents and Settings\Yann\Application Data\m\srvlist.oct" 
Found ! [20/12/2008 22:25] - "C:\Documents and Settings\Yann\Application Data\m\shared" 
Found ! [20/12/2008 14:24] - "C:\Documents and Settings\Yann\Application Data\m" 
Found ! [20/12/2008 14:23] - "C:\Documents and Settings\Yann\Application Data\drivers" 
Found ! [20/12/2008 22:22] - "C:\Documents and Settings\Yann\Application Data\drivers\srosa.sys" 
Found ! [20/12/2008 22:22] - "C:\Documents and Settings\Yann\Application Data\drivers\srosa2.sys" 
Found ! [05/03/2005 06:09] - "C:\Documents and Settings\Yann\Application Data\drivers\winupgro.exe" 
Found ! [20/12/2008 22:42] - "C:\Documents and Settings\Yann\Application Data\drivers\downld" 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\100109.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\100515.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\100750.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\101187.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\102125.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\102515.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\105062.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\107093.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\107718.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\114156.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\116437.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\117234.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\117703.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\125406.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\126265.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\126578.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\126890.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\127359.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\129000.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\132937.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\136796.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\137687.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\138984.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\139937.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\141703.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\142093.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\142906.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\143500.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\143796.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\144062.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\144796.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\145375.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\151171.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\152015.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\153015.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\154140.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\154875.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\155375.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\156453.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\157156.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\157281.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\159140.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\160796.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\161265.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\161703.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\163265.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\164125.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\165125.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\166296.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\166312.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\167031.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\167375.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\167656.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\169000.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\170062.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\170281.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\172562.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\173062.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\173875.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\174312.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\174671.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\174765.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\175000.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\175468.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\175937.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\176187.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\177078.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\177328.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\177968.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\177984.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\178359.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\180359.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\181203.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\181375.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\184609.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\186656.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\187234.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\187328.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\187953.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\188609.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\189015.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\190656.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\191265.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\191312.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\191468.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\192000.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\192109.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\192875.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\194156.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\194859.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\195921.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\196015.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\197000.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\197812.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\198140.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\198687.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\199671.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\200562.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\201328.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\202968.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\203750.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\204640.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\205296.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\205421.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\206328.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\206359.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\206531.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\206656.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\207125.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\207234.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\207484.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\207531.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\207843.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\208046.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\208640.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\208875.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\209531.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\209750.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\210078.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\210343.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\210453.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\210765.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\211390.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\211437.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\212328.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\213265.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\214140.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\215078.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\216390.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\216921.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\219093.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\219921.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\220312.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\223562.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\224531.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\225062.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\225562.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\226828.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\226921.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\227640.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\227687.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\227750.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\228609.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\229640.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\230187.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\230500.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\232109.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\232640.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\233875.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\233890.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\234281.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\234453.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\234875.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\235281.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\235515.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\235953.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\236359.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\236671.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\238859.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\239281.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\241781.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\243625.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\244125.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\245015.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\245500.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\245968.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\246578.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\246640.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\246765.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\252265.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\252656.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\253781.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\254093.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\254468.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\256593.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\261250.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\261828.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\263250.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\263828.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\268375.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\269234.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\269578.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\269625.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\275046.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\275515.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\275796.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\277843.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\280531.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\281437.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\281843.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\282406.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\282421.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\282656.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\283000.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\283343.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\283734.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\284656.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\285140.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\286781.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\287609.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\291343.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\293031.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\293640.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\293734.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\294296.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\294453.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\307000.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\308515.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\316031.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\316468.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\316531.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\322531.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\323796.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\323984.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\325453.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\326171.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\326484.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\339281.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\340187.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\340437.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\47546.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\48015.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\49531.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\49671.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\50859.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\50875.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\50890.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\51921.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\53218.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\54515.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\55171.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\55875.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\56796.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\59203.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\59343.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\60062.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\60093.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\61375.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\61390.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\62437.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\63000.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\64546.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\64609.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\64656.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\64937.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\65062.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\65078.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\65265.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\65781.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\65796.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\66796.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\67234.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\67968.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\71187.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\71234.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\71937.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\73437.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\74234.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\74390.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\76031.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\76656.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\76828.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\77078.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\77453.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\77656.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\78703.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\78718.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\79593.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\79640.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\79796.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\80093.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\80703.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\81718.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\82687.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\83562.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\84156.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\84484.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\84515.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\84968.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\85515.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\86640.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\87515.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\87968.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\88796.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\90250.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\90359.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\90421.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\90531.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\90843.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\91406.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\91515.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\91718.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\91937.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\92093.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\92234.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\92500.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\93171.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\93515.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\94750.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\95531.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\95609.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\95953.exe 
Found ! [20/12/2008 22:42] - C:\Documents and Settings\Yann\Application Data\drivers\downld\99125.exe 
 
»»»» Presence des fichiers dans C:\DOCUME~1\Yann\LOCALS~1\Temp 
 
 
»»»» Presence des fichiers dans C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5 
 
Found ! [17/12/2008 22:21] - C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\29450DE9	n_EPMKFOVK3ROB64GGPANNFGIYCY72YONH[1].jpg 
Found ! [17/12/2008 22:22] - C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\SBU7Q9AZ	n_X55HCJVSDYQGB64U6UFFNLPDTSFKUKH4[1].jpg 
Found ! [17/12/2008 20:45] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\0TEBCHUJ\06a90dcc2a27c27c7c68b643dbd37110ed1c0a58[1].jpg 
Found ! [17/12/2008 20:34] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\0TEBCHUJ\c6fd63cb5866b527299fb64ebf2ab579234195da[1].jpg 
Found ! [17/12/2008 20:34] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\0TEBCHUJ\c6fd63cb5866b527299fb64ebf2ab579234195da_medium[1].jpg 
Found ! [20/12/2008 15:39] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\LNL35Q5Y\87a2c2e361e903031a12954b64ec399d26e3782b_medium[1].jpg 
Found ! [20/12/2008 14:40] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\LNL35Q5Y\b64[1].jpg 
Found ! [20/12/2008 14:42] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\LNL35Q5Y\b64_1[1].jpg 
Found ! [20/12/2008 18:09] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\LNL35Q5Y\b64_1[2].jpg 
Found ! [20/12/2008 14:23] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\LNL35Q5Y\b64_3[1].jpg 
Found ! [20/12/2008 15:08] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\LNL35Q5Y\b64_3[2].jpg 
Found ! [20/12/2008 18:03] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\LNL35Q5Y\b64_3[3].jpg 
Found ! [20/12/2008 18:35] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\LNL35Q5Y\b64_3[4].jpg 
Found ! [20/12/2008 18:46] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\LNL35Q5Y\b64_3[5].jpg 
Found ! [20/12/2008 15:39] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\OXANG37X\b1652a4b6451e4c914ad51011f2b98dd023863b8[1].jpg 
Found ! [20/12/2008 14:24] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\OXANG37X\b64[1].jpg 
Found ! [20/12/2008 18:07] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\OXANG37X\b64[2].jpg 
Found ! [20/12/2008 18:50] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\OXANG37X\b64_2[1].jpg 
Found ! [20/12/2008 22:25] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\OXANG37X\b64_2[2].jpg 
Found ! [20/12/2008 14:28] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\OXANG37X\b64_3[1].jpg 
Found ! [20/12/2008 14:40] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\OXANG37X\b64_3[2].jpg 
Found ! [20/12/2008 18:05] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\OXANG37X\b64_3[3].jpg 
Found ! [20/12/2008 22:22] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\OXANG37X\b64_3[4].jpg 
Found ! [20/12/2008 15:09] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\OXANG37X\mxd[1].jpg 
Found ! [20/12/2008 15:13] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\OXANG37X\mxd[2].jpg 
Found ! [20/12/2008 18:07] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\OXANG37X\mxd[3].jpg 
Found ! [20/12/2008 22:24] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\OXANG37X\mxd[4].jpg 
Found ! [20/12/2008 14:29] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\TJW6YNIS\b64[1].jpg 
Found ! [20/12/2008 14:56] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\TJW6YNIS\b64[2].jpg 
Found ! [20/12/2008 15:08] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\TJW6YNIS\b64[3].jpg 
Found ! [20/12/2008 18:36] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\TJW6YNIS\b64[4].jpg 
Found ! [20/12/2008 14:31] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\TJW6YNIS\b64_1[1].jpg 
Found ! [20/12/2008 18:38] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\TJW6YNIS\b64_1[2].jpg 
Found ! [20/12/2008 18:49] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\TJW6YNIS\b64_1[3].jpg 
Found ! [20/12/2008 18:39] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\TJW6YNIS\b64_2[1].jpg 
Found ! [20/12/2008 15:39] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\VAF18NYV\87a2c2e361e903031a12954b64ec399d26e3782b[1].jpg 
Found ! [20/12/2008 15:39] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\VAF18NYV\b1652a4b6451e4c914ad51011f2b98dd023863b8_medium[1].jpg 
Found ! [20/12/2008 15:13] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\VAF18NYV\b64[1].jpg 
Found ! [20/12/2008 18:47] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\VAF18NYV\b64[2].jpg 
Found ! [20/12/2008 22:23] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\VAF18NYV\b64[3].jpg 
Found ! [20/12/2008 14:31] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\VAF18NYV\b64_1[1].jpg 
Found ! [20/12/2008 15:14] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\VAF18NYV\b64_1[2].jpg 
Found ! [20/12/2008 18:50] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\VAF18NYV\b64_1[3].jpg 
Found ! [20/12/2008 14:30] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\VAF18NYV\mxd[1].jpg 
Found ! [20/12/2008 14:57] - C:\Documents and Settings\Yann\Local Settings\Temporary Internet Files\Content.IE5\VAF18NYV\mxd[2].jpg 
Found ! [18/12/2008 17:57] - C:\Documents and Settings\Yann\Mes documents\Ma musique\AlbumArt_{E7B64201-5FE4-4D0C-955D-CFA88CEAD578}_Large.jpg 
Found ! [18/12/2008 17:56] - C:\Documents and Settings\Yann\Mes documents\Ma musique\AlbumArt_{E7B64201-5FE4-4D0C-955D-CFA88CEAD578}_Small.jpg 
 
--------------- [ Registre / Startup ] ----------------  
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersionun]
   ctfmon.exe=C:\WINDOWS\system32\ctfmon.exe
   msnmsgr="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
   Steam="C:\Program Files\Steam\Steam.exe" -silent
   SpybotSD TeaTimer=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersionun]
   NvCplDaemon=RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
   nwiz=nwiz.exe /install
   NvMediaCenter=RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
   SunJavaUpdateSched="C:\Program Files\Java\jre6\bin\jusched.exe"
   avast!=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
 
[HKEY_CURRENT_USER\software\local appwizard-generated applications\setup]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\Steam]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\winupgro]
 
--------------- [ Registre / Clés infectieuses ] ----------------  
 
 
Found ! - HKEY_USERS\S-1-5-21-343818398-515967899-1417001333-1004\Software\Local AppWizard-Generated Applications\winupgro 
Found ! - HKEY_USERS\S-1-5-21-343818398-515967899-1417001333-1004\Software\bisoft 
Found ! - HKEY_USERS\S-1-5-21-343818398-515967899-1417001333-1004\Software\DateTime4 
Found ! - HKEY_USERS\S-1-5-21-343818398-515967899-1417001333-1004\Software\FFC 
Found ! - HKEY_USERS\S-1-5-21-343818398-515967899-1417001333-1004\Software\FirtR 
Found ! - HKEY_USERS\S-1-5-21-343818398-515967899-1417001333-1004\Software\MuleAppData 
Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\winupgro 
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\srosa 
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\srosa 
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\srosa 
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SROSA 
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SROSA 
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_SROSA 
Found ! - HKEY_CURRENT_USER\Software\bisoft 
Found ! - HKEY_CURRENT_USER\Software\DateTime4 
Found ! - HKEY_CURRENT_USER\Software\FirtR 
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SK9OU0S 
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SK9OU0S 
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_SK9OU0S 
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sK9Ou0s 
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sK9Ou0s 
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sK9Ou0s 
 
--------------- [ Etat / Services ] ---------------- 
 
Clé manquante : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot 
 
 - sans echec non fonctionnel !! 
 
Clé manquante : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal 
 
 - sans echec non fonctionnel !! 
 
Clé manquante : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network 
 
 - sans echec non fonctionnel !! 
 


+- Services : [ Auto=2 / Demande=3 / Désactivé=4 ] 

 /!\ Ndisuio - Type de démarrage = 4 
 
 EapHost - Type de démarrage = 3 
 
 /!\ Ip6Fw - Type de démarrage = 4 
 
 SharedAccess - Type de démarrage = 2 
 
 wuauserv - Type de démarrage = 2 
 
 wscsvc - Type de démarrage = 2 
 
 
 
--------------- [ Recherche dans supports amovibles] ----------------  
 
 
+- Informations : 

C: - Lecteur fixe

D: - Lecteur fixe

E: - Lecteur de CD-ROM

F: - Lecteur de CD-ROM

 
+- Contenu de l'autorun : E:\autorun.inf  

[autorun]
OPEN=AUTORUN.EXE
ICON=CSS.ICO

 
+- presence des fichiers :  

Found ! [12/09/2005 01:10][-r-------] - E:\autorun.inf 
 
 
--------------- [ Registre / Mountpoint2 ] ----------------  
 
 
-> Not found ! 
 
 
------------------- ! Fin du rapport ! --------------------

crapoulou · Answer

Rien que ça ... Nettoyage : --> Double clic sur le raccourci FindyKill sur ton bureau --> Au menu principal, choisis l’option 2 (Suppression) /!\ Il y aura deux redémarrages, laisse travailler l’outil jusqu’à l’apparition du message "nettoyage effectué" /!\ /!\ Ne te sert pas du pc durant la suppression, ton bureau ne sera pas accessible, c’est normal ! /!\ = = = = >>> Ensuite poste le rapport FindyKill.txt <<< = = = = Notes : * Le rapport FindyKill.txt est sauvegardé à la racine du disque (C:\ FindyKill.txt) * Si le Bureau ne réapparaît pas presse Ctrl + Alt + Suppr, Onglet "Fichier", "Nouvelle tâche", tape explorer.exe et valide

crapoulou · Answer

- Télécharge HijackThis Version 2.02 : = = = = >>> En cliquant ici <<< = = = = - Enregistre HJTInstall.exe sur ton bureau. - Fais un double-clic (gauche) sur HJTInstall.exe afin de lancer l’installation - Clique sur Install ensuite sur « I Accept » - Clique sur « Do a scan system and save log file » - Le bloc-notes s’ouvrira, fais un copier-coller de tout son contenu ici dans ta prochaine réponse.

Yann · Answer

J'ai réussi a installer avast ! =) merci pour ta patience et ton savoir-faire :)

Je continu la procédure

crapoulou · Answer

Ok.
Si tu avais attendu, je t'aurais fait installer Antivir, meilleur mais bon ...
Regarde la preuve, ce qu'il a trouvé comparé à Avast sur ce lien :
http://www.commentcamarche.net/forum/affich 9993869 gros soucis d antivirus?page=2#37

crapoulou · Answer

Télécharges ToolBar S&D ( de Eric_71 ) = = = = >>> En cliquant ici <<< = = = = Tuto si besoin en cliquant ICI !! Déconnectes toi et fermes toute tes applications en cours le temps de la manipulation !! * Double-cliques sur l’exécutable pour lancer l’outil * Une fois fait, tape F pour sélectionner le Français * Choisis l’option 1 (Recherche) et tape sur Entrée. * Une fois le scan finit, un rapport va apparaître au format .txt. * Copie-colle l’intégralité de son contenu dans ta prochaine réponse ... Note : Le rapport est sauvegardé ici : C:\TB.txt

Yann · Answer

Ok, je désinstalle avast ?
je suis en train télécharger toolbar

crapoulou · Answer

Tant qu'à faire oui, désinstalle le proprement, installe Antivir d'Avira sur ce lien : = = = =>>> Clique ici <<<= = = =

Yann · Answer

ok, je l'installe


   -----------\  ToolBar S&D 1.2.7   XP/Vista

   Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
   X86-based PC ( Uniprocessor Free : AMD Sempron(tm) Processor 2800+ )
   BIOS : Phoenix - AwardBIOS v6.00PG
   USER : Yann ( Administrator )
   BOOT : Normal boot
   Antivirus : avast! antivirus 4.8.1296 [VPS 081220-0] 4.8.1296 (Activated)
   A:\ (USB)
   C:\ (Local Disk) - NTFS - Total:134 Go (Free:121 Go)
   D:\ (Local Disk) - NTFS - Total:98 Go (Free:98 Go)
   E:\ (CD or DVD) - CDFS - Total:2 Go (Free:0 Go)
   F:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)

   "C:\ToolBar SD" ( MAJ : 19-12-2008|22:30 )
   Option : [1] ( 21/12/2008| 0:34 )

   -----------\  Recherche de Fichiers / Dossiers ...

   [Service] ASKService
   [Service] ASKUpgrade
   C:\Program Files\AskBarDis
   C:\Program Files\AskBarDis\bar
   C:\Program Files\AskBarDis\unins000.dat
   C:\Program Files\AskBarDis\unins000.exe
   C:\Program Files\AskBarDis\bar\bin
   C:\Program Files\AskBarDis\bar\Settings
   C:\Program Files\AskBarDis\bar\bin\askPopStp.dll
   C:\Program Files\AskBarDis\bar\bin\AskService.exe
   C:\Program Files\AskBarDis\bar\bin\AskSplash.exe
   C:\Program Files\AskBarDis\bar\bin\AskTBApp.exe
   C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe
   C:\Program Files\AskBarDis\bar\bin\psvince.dll
   C:\Program Files\AskBarDis\bar\Settings\AskLogo.ico
   C:\Program Files\AskBarDis\bar\Settings\config.dat
   C:\Program Files\AskBarDis\bar\Settings\config.dat.bak
   C:\Program Files\AskBarDis\bar\Settings\prevCfg2.htm

   -----------\  Extensions

   (Yann) - {E9A1DEE0-C623-4439-8932-001E7D17607D} => ajtoolbar


   -----------\  [..\Internet Explorer\Main]

   [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
   "Local Page"="C:\WINDOWS\system32\blank.htm"
   "Start Page"="https://www.google.com/?gws_rd=ssl"

crapoulou · Answer

Le rapport n'est pas complet.

Yann · Answer

oups dsl 



   -----------\  ToolBar S&D 1.2.7   XP/Vista

   Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
   X86-based PC ( Uniprocessor Free : AMD Sempron(tm) Processor 2800+ )
   BIOS : Phoenix - AwardBIOS v6.00PG
   USER : Yann ( Administrator )
   BOOT : Normal boot
   Antivirus : avast! antivirus 4.8.1296 [VPS 081220-0] 4.8.1296 (Activated)
   A:\ (USB)
   C:\ (Local Disk) - NTFS - Total:134 Go (Free:121 Go)
   D:\ (Local Disk) - NTFS - Total:98 Go (Free:98 Go)
   E:\ (CD or DVD) - CDFS - Total:2 Go (Free:0 Go)
   F:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)

   "C:\ToolBar SD" ( MAJ : 19-12-2008|22:30 )
   Option : [1] ( 21/12/2008| 0:34 )

   -----------\  Recherche de Fichiers / Dossiers ...

   [Service] ASKService
   [Service] ASKUpgrade
   C:\Program Files\AskBarDis
   C:\Program Files\AskBarDis\bar
   C:\Program Files\AskBarDis\unins000.dat
   C:\Program Files\AskBarDis\unins000.exe
   C:\Program Files\AskBarDis\bar\bin
   C:\Program Files\AskBarDis\bar\Settings
   C:\Program Files\AskBarDis\bar\bin\askPopStp.dll
   C:\Program Files\AskBarDis\bar\bin\AskService.exe
   C:\Program Files\AskBarDis\bar\bin\AskSplash.exe
   C:\Program Files\AskBarDis\bar\bin\AskTBApp.exe
   C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe
   C:\Program Files\AskBarDis\bar\bin\psvince.dll
   C:\Program Files\AskBarDis\bar\Settings\AskLogo.ico
   C:\Program Files\AskBarDis\bar\Settings\config.dat
   C:\Program Files\AskBarDis\bar\Settings\config.dat.bak
   C:\Program Files\AskBarDis\bar\Settings\prevCfg2.htm

   -----------\  Extensions

   (Yann) - {E9A1DEE0-C623-4439-8932-001E7D17607D} => ajtoolbar


   -----------\  [..\Internet Explorer\Main]

   [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
   "Local Page"="C:\WINDOWS\system32\blank.htm"
   "Start Page"="https://www.google.com/?gws_rd=ssl"
   "Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"

   [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
   "Default_Page_URL"="https://www.msn.com/fr-fr/?ocid=iehp"
   "Default_Search_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
   "Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
   "Start Page"="https://www.msn.com/fr-fr/?ocid=iehp"


   --------------------\  Recherche d'autres infections


   Aucune autre infection trouvée  !


   1 - "C:\ToolBar SD\TB_1.txt" - 21/12/2008| 0:35 - Option : [1]

   -----------\  Fin du rapport a  0:35:10,73

crapoulou · Answer

Pas grave.

Nettoyage avec ToolBar S&D :

!! Déconnectes toi et fermes toute tes applications en cours le temps de la manipulation !! 

Relance Toolbar-S&D en double-cliquant sur le raccourci.
* Tape l’option 2 (Nettoyage) puis tapes sur Entrée.
Notes :
Ne touche à rien lors de la suppression !
Un rapport sera généré à la fin du processus : postes son contenu dans ta prochaine réponse 
accompagné d’un nouveau rapport Hijackthis pour analyse ...

Yann · Answer

Je viens d'installer avira antivir

crapoulou · Answer

Ok, t'as bien désinstallé Avast ?
Met le à jour et fais un scan complet du système.

Yann · Answer

-----------\  ToolBar S&D 1.2.7   XP/Vista

   Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
   X86-based PC ( Uniprocessor Free : AMD Sempron(tm) Processor 2800+ )
   BIOS : Phoenix - AwardBIOS v6.00PG
   USER : Yann ( Administrator )
   BOOT : Normal boot
   Antivirus : Avira AntiVir PersonalEdition Classic 8.0.1.30 (Activated)
   A:\ (USB)
   C:\ (Local Disk) - NTFS - Total:134 Go (Free:121 Go)
   D:\ (Local Disk) - NTFS - Total:98 Go (Free:98 Go)
   E:\ (CD or DVD) - CDFS - Total:2 Go (Free:0 Go)
   F:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)

   "C:\ToolBar SD" ( MAJ : 19-12-2008|22:30 )
   Option : [2] ( 21/12/2008| 0:50 )

   -----------\ SUPPRESSION

   Supprime! - [Service] ASKService
   Supprime! - [Service] ASKUpgrade
   Supprime! - C:\Program Files\AskBarDis\bar
   Supprime! - C:\Program Files\AskBarDis\unins000.dat
   Supprime! - C:\Program Files\AskBarDis\unins000.exe
   Supprime! - C:\Program Files\AskBarDis

   -----------\  Recherche de Fichiers / Dossiers ...


   -----------\  Extensions

   (Yann) - {E9A1DEE0-C623-4439-8932-001E7D17607D} => ajtoolbar


   -----------\  [..\Internet Explorer\Main]

   [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
   "Local Page"="C:\WINDOWS\system32\blank.htm"
   "Start Page"="https://www.google.com/?gws_rd=ssl"
   "Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"

   [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
   "Default_Page_URL"="https://www.msn.com/fr-fr/?ocid=iehp"
   "Default_Search_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
   "Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
   "Start Page"="https://www.msn.com/fr-fr/"


   --------------------\  Recherche d'autres infections


   Aucune autre infection trouvée  !


   1 - "C:\ToolBar SD\TB_1.txt" - 21/12/2008| 0:35 - Option : [1]
   2 - "C:\ToolBar SD\TB_2.txt" - 21/12/2008| 0:51 - Option : [2]

   -----------\  Fin du rapport a  0:51:04,17

crapoulou · Answer

Parfait, fais suivre d'un nouveau rapport hijackthis.

Yann · Answer

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 00:54:21, on 21/12/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0013)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32
vsvc32.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.nvidia.com/fr-fr/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (file missing)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL (file missing)
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll (file missing)
O23 - Service: Planificateur Avira AntiVir Personal - Free Antivirus (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32
vsvc32.exe

crapoulou · Answer

Fais ce qui suit une fois l'analyse antivirus terminée.
J'attends le rapport Antivir.
Met le bien à jour avant de scanner le PC.

***************************************

Télécharge Malwarebytes’ Anti-Malware
= = = = >>> En cliquant ici <<< = = = =

- Sur la page cliques sur Télécharger Malwarebyte’s Anti-Malware
- Enregistres le sur le bureau
- Double cliques sur le fichier téléchargé pour lancer le processus d’installation
- Lorsqu’il te le sera demandé, met à jour Malwarebytes anti malware
- Si le pare-feu demande l’autorisation de se connecter pour malwarebytes, acceptes
- Une fois la mise à jour terminée, ferme Malwarebytes
- Double-cliques sur l’icône de malwarebytes pour le relancer
- Dans l’onglet, Recherche, probablement ouvert par défaut,
- Sélectionne Exécuter un examen complet
- Clique sur Rechercher
- Le scan démarre
- A la fin de l’analyse, un message s’affiche : L’examen s’est terminé normalement. Cliquez sur ‘Afficher les résultats’ pour afficher tous les objets trouvés.
- Cliques sur Ok pour poursuivre.
- Si des malwares ont été détectés, cliques sur Afficher les résultats
- Sélectionnes tout (ou laisses cochés) et cliques sur Supprimer la sélection Malwarebytes va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.
- Malwarebytes va ouvrir le bloc-notes et y copier le rapport d’analyse.
- Rends toi dans l’onglet rapport/log
- Tu cliques dessus pour l’afficher une fois affiché
- Tu cliques sur édition en haut du boc notes, et puis sur sélectionner tout
- Tu recliques sur édition et puis sur copier et tu reviens sur le forum et dans ta réponse
- Tu cliques droit dans le cadre de la réponse et coller

Si tu as besoin d’aide regarde ce tutorial ICI

Yann · Answer

dsl j'avais pas compris que la suite était page 2 ^^
Je n'est donc pas copier le rapport d'erreur de l'anti-virus =/ (il ma détecté 70 infection) 

Le lien est mort pour le téléchargement du logiciel et il est payant..

crapoulou · Answer

Revoilà le lien.
Ce n'est pas payant.
http://www.download.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.htm

Yann · Answer

Malwarebytes' Anti-Malware 1.31
Version de la base de données: 1531
Windows 5.1.2600 Service Pack 3

22/12/2008 10:55:23
mbam-log-2008-12-22 (10-55-23).txt

Type de recherche: Examen complet (C:\|D:\|)
Eléments examinés: 79370
Temps écoulé: 20 minute(s), 21 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 14

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
C:\System Volume Information\_restore{CE1B48DE-D02C-4F75-86B3-6C92930BABD2}\RP15\A0002853.sys (Worm.Bagel) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{CE1B48DE-D02C-4F75-86B3-6C92930BABD2}\RP15\A0002979.sys (Worm.Bagel) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{CE1B48DE-D02C-4F75-86B3-6C92930BABD2}\RP15\A0003096.sys (Worm.Bagel) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{CE1B48DE-D02C-4F75-86B3-6C92930BABD2}\RP15\A0003104.sys (Worm.Bagel) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{CE1B48DE-D02C-4F75-86B3-6C92930BABD2}\RP15\A0004103.sys (Worm.Bagel) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{CE1B48DE-D02C-4F75-86B3-6C92930BABD2}\RP16\A0004129.sys (Worm.Bagel) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{CE1B48DE-D02C-4F75-86B3-6C92930BABD2}\RP17\A0004157.sys (Worm.Bagel) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{CE1B48DE-D02C-4F75-86B3-6C92930BABD2}\RP17\A0004202.sys (Worm.Bagel) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{CE1B48DE-D02C-4F75-86B3-6C92930BABD2}\RP21\A0004544.sys (Worm.Bagel) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{CE1B48DE-D02C-4F75-86B3-6C92930BABD2}\RP21\A0004556.sys (Worm.Bagel) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{CE1B48DE-D02C-4F75-86B3-6C92930BABD2}\RP22\A0004684.sys (Worm.Bagel) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{CE1B48DE-D02C-4F75-86B3-6C92930BABD2}\RP22\A0004695.sys (Worm.Bagel) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{CE1B48DE-D02C-4F75-86B3-6C92930BABD2}\RP23\A0004709.sys (Worm.Bagel) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{CE1B48DE-D02C-4F75-86B3-6C92930BABD2}\RP23\A0004783.sys (Worm.Bagel) -> Quarantined and deleted successfully.

crapoulou · Answer

Certains programmes en les lançant devraient peut être te mettre ce message "... n'est pas une application win32 valide". Tu es obligé de les désinstaller et de les réinstaller. *************************************************** Vide la quarantaine de malwarebytes anti malware *************************************************** Désactive et réactive ta restauration système. Démarrer, clic droit sur Poste de travail, Propriétés, onglet Restauration du système, Désactiver la restauration du système, puis Appliquer et ok, ok. (Manipulation inverse pour la réactiver). N'oublie pas de la réactiver !

crapoulou · Answer

Poste un nouveau rapport hijackthis stp.

.Exe n'est pas une application win32 valide

25 réponses

Votre réponse

Discussions similaires

Newsletters