**** n'est pas une application Win32 valide

Résolu
Angel78980 Messages postés 74 Statut Membre -  
 Utilisateur anonyme -
Bonjour,

Je sais qu'il y a plein de post sur les trojans !
J'ai tout essayé ! quoique je fasse et qu'importe l'anti virus que j'installe ça me dit que "nom de l'antivirus" n'est pas une application Win32 non valide !!!!
Je ne sais plus quoi faire aidez moi ! :-(
Tout ça parce que j'ai télécharger un crack a la con pour que mes sims fonctionnent mieux ... suis désespérer !
Je compte sur vous j'y ai passé l'après midi sans résultats (enfin si, ma connexion avait sauté, j'ai lutté mais j'y suis arrivée) ! Même msn ne se lance plus !
Ce put*** de bagle à bien foutu la merde dans mon système !

Merci d'avance à tous !

132 réponses

Précédent
Réponse 61 / 132
Angel78980 Messages postés 74 Statut Membre 1
 
----------------- FindyKill V4.700 ------------------

* User : Propri‚taire - PROPRIET-24R6L7
* Emplacement : C:\Program Files\FindyKill
* Outils Mis a jours le 13/11/08 par Chiquitine29
* Recherche effectuée à 20:39:34 le 18/11/2008
* Windows XP - Internet Explorer 6.0.2900.2180

((((((((((((((((( *** Recherche *** ))))))))))))))))))


--------------- [ Processus actifs ] ----------------


C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Fighters\spywarefighter\SpywarefighterUser.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Fighters\configservice.exe
C:\Program Files\PurgeIE\PurgeIE_Service.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fighters\licenseservice.exe
C:\Program Files\Fighters\updateservice.exe
C:\Program Files\Fighters\ScannerService.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\drivers\downld\59687.exe
C:\WINDOWS\system32\drivers\downld\116156.exe
c:\program files\fighters\infectionpopup.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Propriétaire\Bureau\ToolsCleaner2.exe

--------------- [ Processus infectieux stoppés ] ----------------


"C:\WINDOWS\system32\drivers\downld\59687.exe" (2652)
"C:\WINDOWS\system32\drivers\downld\116156.exe" (2692)


--------------- [ Fichiers/Dossiers infectieux ] ----------------


»»»» Presence des fichiers dans C:


»»»» Presence des fichiers dans C:\WINDOWS


»»»» Presence des fichiers dans C:\WINDOWS\Prefetch

Found ! - C:\WINDOWS\prefetch\108953.EXE-35FC0BB1.pf
Found ! - C:\WINDOWS\prefetch\111109.EXE-2EAE7EF6.pf
Found ! - C:\WINDOWS\prefetch\116156.EXE-2942D14E.pf
Found ! - C:\WINDOWS\prefetch\89531.EXE-06F0B221.pf
Found ! - C:\WINDOWS\prefetch\94687.EXE-081D6740.pf
Found ! - C:\WINDOWS\prefetch\FLEC006.EXE-08845DBD.pf
Found ! - C:\WINDOWS\prefetch\MDELK.EXE-2B713A85.pf
Found ! - C:\WINDOWS\prefetch\WINFILSE.EXE-0A729C1D.pf
Found ! - C:\WINDOWS\prefetch\WINTEMS.EXE-04D8B84E.pf
Found ! - C:\WINDOWS\Prefetch\PATCHJRE.EXE-22BC5FDF.pf

»»»» Presence des fichiers dans C:\WINDOWS\system32

Found ! [18/11/2008 20:13] - C:\WINDOWS\system32\mdelk.exe
Found ! [18/11/2008 20:13] - C:\WINDOWS\system32\wintems.exe
Found ! [18/11/2008 20:14] - C:\WINDOWS\system32\ban_list.txt

»»»» Presence des fichiers dans C:\WINDOWS\system32\drivers

Found ! [18/11/2008 20:12] - C:\WINDOWS\system32\drivers\srosa.sys
Found ! [18/11/2008 20:12] - C:\WINDOWS\system32\drivers\srosa2.sys
Found ! [05/03/2005 07:05] - C:\WINDOWS\system32\drivers\winfilse.exe
Found ! [18/11/2008 20:15] - "C:\WINDOWS\system32\drivers\downld"
Found ! [18/11/2008 20:15] C:\WINDOWS\system32\drivers\downld\106968.exe
Found ! [18/11/2008 20:15] C:\WINDOWS\system32\drivers\downld\108953.exe
Found ! [18/11/2008 20:15] C:\WINDOWS\system32\drivers\downld\111109.exe
Found ! [18/11/2008 20:15] C:\WINDOWS\system32\drivers\downld\111859.exe
Found ! [18/11/2008 20:15] C:\WINDOWS\system32\drivers\downld\116140.exe
Found ! [18/11/2008 20:15] C:\WINDOWS\system32\drivers\downld\116156.exe
Found ! [18/11/2008 20:15] C:\WINDOWS\system32\drivers\downld\121109.exe
Found ! [18/11/2008 20:15] C:\WINDOWS\system32\drivers\downld\195328.exe
Found ! [18/11/2008 20:15] C:\WINDOWS\system32\drivers\downld\202828.exe
Found ! [18/11/2008 20:15] C:\WINDOWS\system32\drivers\downld\210515.exe
Found ! [18/11/2008 20:15] C:\WINDOWS\system32\drivers\downld\218015.exe
Found ! [18/11/2008 20:15] C:\WINDOWS\system32\drivers\downld\59687.exe
Found ! [18/11/2008 20:15] C:\WINDOWS\system32\drivers\downld\65953.exe
Found ! [18/11/2008 20:15] C:\WINDOWS\system32\drivers\downld\66703.exe
Found ! [18/11/2008 20:15] C:\WINDOWS\system32\drivers\downld\66812.exe
Found ! [18/11/2008 20:15] C:\WINDOWS\system32\drivers\downld\741062.exe
Found ! [18/11/2008 20:15] C:\WINDOWS\system32\drivers\downld\741796.exe
Found ! [18/11/2008 20:15] C:\WINDOWS\system32\drivers\downld\74921.exe
Found ! [18/11/2008 20:15] C:\WINDOWS\system32\drivers\downld\75734.exe
Found ! [18/11/2008 20:15] C:\WINDOWS\system32\drivers\downld\89531.exe
Found ! [18/11/2008 20:15] C:\WINDOWS\system32\drivers\downld\94687.exe

»»»» Presence des fichiers dans C:\Documents and Settings\Propri‚taire\Application Data

Found ! [18/11/2008 20:13] - "C:\Documents and Settings\Propri‚taire\Application Data\m\flec006.exe"
Found ! [18/11/2008 20:13] - "C:\Documents and Settings\Propri‚taire\Application Data\m"

»»»» Presence des fichiers dans C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp


»»»» Presence des fichiers dans C:\Documents and Settings\Propri‚taire\Local Settings\Temporary Internet Files\Content.IE5

Found ! - C:\Documents and Settings\Propri‚taire\Local Settings\Temporary Internet Files\Content.IE5\8JAXW1AF\b64[1].jpg
Found ! - C:\Documents and Settings\Propri‚taire\Local Settings\Temporary Internet Files\Content.IE5\8JAXW1AF\b64_2[1].jpg
Found ! - C:\Documents and Settings\Propri‚taire\Local Settings\Temporary Internet Files\Content.IE5\I92561EH\b64_2[1].jpg
Found ! - C:\Documents and Settings\Propri‚taire\Local Settings\Temporary Internet Files\Content.IE5\I92561EH\b64_2[2].jpg
Found ! - C:\Documents and Settings\Propri‚taire\Local Settings\Temporary Internet Files\Content.IE5\I92561EH\b64_3[1].jpg
Found ! - C:\Documents and Settings\Propri‚taire\Local Settings\Temporary Internet Files\Content.IE5\UJSHWNIZ\b64_3[1].jpg
Found ! - C:\Documents and Settings\Propri‚taire\Local Settings\Temporary Internet Files\Content.IE5\WVI7OFOH\b64_1[1].jpg

--------------- [ Registre / Startup ] ----------------


! REG.EXE VERSION 3.0

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run
Adobe Photo Downloader REG_SZ "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe"
NvCplDaemon REG_SZ RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
nwiz REG_SZ nwiz.exe /install
NvMediaCenter REG_SZ RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
TkBellExe REG_SZ "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
ISTray REG_SZ "C:\Program Files\Spyware Doctor\pctsTray.exe"
spywarefighterguard REG_SZ C:\Program Files\Fighters\spywarefighter\SpywarefighterUser.exe
TrojanScanner REG_SZ C:\Program Files\Trojan Remover\Trjscan.exe /boot
SunJavaUpdateSched REG_SZ "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
KernelFaultCheck REG_EXPAND_SZ %systemroot%\system32\dumprep 0 -k

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\OptionalComponents

! REG.EXE VERSION 3.0

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
ctfmon.exe REG_SZ C:\WINDOWS\system32\ctfmon.exe

--------------- [ Registre / Clés infectieuses ] ----------------


Found ! - HKEY_USERS\S-1-5-21-117609710-73586283-839522115-1003\Software\Local AppWizard-Generated Applications\msnmsgr
Found ! - HKEY_USERS\S-1-5-21-117609710-73586283-839522115-1003\Software\Local AppWizard-Generated Applications\winfilse
Found ! - HKEY_USERS\S-1-5-21-117609710-73586283-839522115-1003\Software\bisoft
Found ! - HKEY_USERS\S-1-5-21-117609710-73586283-839522115-1003\Software\DateTime4
Found ! - HKEY_USERS\S-1-5-21-117609710-73586283-839522115-1003\Software\FFC
Found ! - HKEY_USERS\S-1-5-21-117609710-73586283-839522115-1003\Software\FirtR
Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\msnmsgr
Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\winfilse
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SROSA
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SROSA
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_SROSA
Found ! - HKEY_CURRENT_USER\Software\bisoft
Found ! - HKEY_CURRENT_USER\Software\DateTime4
Found ! - HKEY_CURRENT_USER\Software\FirtR

--------------- [ Etat / Services ] ----------------

Clé manquante : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot

- sans echec non fonctionnel !!

Clé manquante : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal

- sans echec non fonctionnel !!

Clé manquante : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network

- sans echec non fonctionnel !!



+- Services : [ Auto=2 / Demande=3 / Désactivé=4 ]

/!\ Ndisuio - Type de démarrage = 4

/!\ Ip6Fw - Type de démarrage = 4

/!\ SharedAccess - Type de démarrage = 4

/!\ wuauserv - Type de démarrage = 4

/!\ wscsvc - Type de démarrage = 4



--------------- [ Recherche dans supports amovibles] ----------------


+- Informations :

C: - Lecteur fixe

D: - Lecteur fixe

E: - Lecteur fixe

F: - Lecteur fixe


+- presence des fichiers :



--------------- [ Registre / Mountpoint2 ] ----------------


-> Not found !


------------------- ! Fin du rapport ! --------------------
0
Réponse 62 / 132
Angel78980 Messages postés 74 Statut Membre 1
 
----------------- FindyKill V4.700 ------------------

* User : Propri‚taire - PROPRIET-24R6L7
* executed from : C:\Program Files\FindyKill
* Update on 13/11/08 par Chiquitine29
* Start at 20:45:07 the 18/11/2008
* Windows XP - Internet Explorer 6.0.2900.2180


((((((((((((((( *** deleting *** ))))))))))))))))))


--------------- [ Active Processes ] ----------------


C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\logonui.exe
C:\WINDOWS\system32\userinit.exe

--------------- [ Infected files / folders ] ----------------


»»»» Supression files in C:


»»»» Supression files in C:\WINDOWS


»»»» Supression files in C:\WINDOWS\Prefetch

Deleted ! - C:\WINDOWS\prefetch\108953.EXE-35FC0BB1.pf
Deleted ! - C:\WINDOWS\prefetch\111109.EXE-2EAE7EF6.pf
Deleted ! - C:\WINDOWS\prefetch\116156.EXE-2942D14E.pf
Deleted ! - C:\WINDOWS\prefetch\89531.EXE-06F0B221.pf
Deleted ! - C:\WINDOWS\prefetch\94687.EXE-081D6740.pf
Deleted ! - C:\WINDOWS\prefetch\FLEC006.EXE-08845DBD.pf
Deleted ! - C:\WINDOWS\prefetch\MDELK.EXE-2B713A85.pf
Deleted ! - C:\WINDOWS\prefetch\PATCHJRE.EXE-22BC5FDF.pf
Deleted ! - C:\WINDOWS\prefetch\WINFILSE.EXE-0A729C1D.pf
Deleted ! - C:\WINDOWS\prefetch\WINTEMS.EXE-04D8B84E.pf

»»»» Supression files in C:\WINDOWS\system32

Deleted ! - C:\WINDOWS\system32\mdelk.exe
Deleted ! - C:\WINDOWS\system32\wintems.exe
Deleted ! - C:\WINDOWS\system32\ban_list.txt

»»»» Supression files in C:\WINDOWS\system32\drivers

Deleted ! - C:\WINDOWS\system32\drivers\srosa.sys
Deleted ! - C:\WINDOWS\system32\drivers\srosa2.sys
Deleted ! - C:\WINDOWS\system32\drivers\winfilse.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\106968.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\108953.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\111109.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\111859.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\116140.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\116156.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\121109.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\195328.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\202828.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\210515.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\218015.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\59687.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\65953.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\66703.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\66812.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\741062.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\741796.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\74921.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\75734.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\89531.exe
Deleted ! - C:\WINDOWS\system32\drivers\downld\94687.exe
Deleted ! - "C:\WINDOWS\system32\drivers\downld"

»»»» Supression files in C:\Documents and Settings\Propri‚taire\Application Data

Deleted ! - "C:\Documents and Settings\Propri‚taire\Application Data\m\flec006.exe"
Deleted ! - "C:\Documents and Settings\Propri‚taire\Application Data\m"

»»»» Supression files in C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp


»»»» Supression files in C:\Documents and Settings\Propri‚taire\Local Settings\Temporary Internet Files\Content.IE5

Deleted ! - C:\Documents and Settings\Propri‚taire\Local Settings\Temporary Internet Files\Content.IE5\8JAXW1AF\b64[1].jpg
Deleted ! - C:\Documents and Settings\Propri‚taire\Local Settings\Temporary Internet Files\Content.IE5\8JAXW1AF\b64_2[1].jpg
Deleted ! - C:\Documents and Settings\Propri‚taire\Local Settings\Temporary Internet Files\Content.IE5\I92561EH\b64_2[1].jpg
Deleted ! - C:\Documents and Settings\Propri‚taire\Local Settings\Temporary Internet Files\Content.IE5\I92561EH\b64_2[2].jpg
Deleted ! - C:\Documents and Settings\Propri‚taire\Local Settings\Temporary Internet Files\Content.IE5\I92561EH\b64_3[1].jpg
Deleted ! - C:\Documents and Settings\Propri‚taire\Local Settings\Temporary Internet Files\Content.IE5\UJSHWNIZ\b64_3[1].jpg
Deleted ! - C:\Documents and Settings\Propri‚taire\Local Settings\Temporary Internet Files\Content.IE5\WVI7OFOH\b64_1[1].jpg

--------------- [ Registry / Infected keys ] ----------------

Deleted ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\srosa
Deleted ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\srosa
Deleted ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SROSA
Deleted ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_SROSA
Deleted ! - HKEY_CURRENT_USER\Software\bisoft
Deleted ! - HKEY_CURRENT_USER\Software\DateTime4
Deleted ! - HKEY_CURRENT_USER\Software\FirtR
Deleted ! - HKEY_CURRENT_USER\Software\FFC
Deleted ! - HKEY_USERS\S-1-5-21-117609710-73586283-839522115-1003\Software\Local AppWizard-Generated Applications\msnmsgr
Deleted ! - HKEY_USERS\S-1-5-21-117609710-73586283-839522115-1003\Software\Local AppWizard-Generated Applications\winfilse

--------------- [ States / Restarting of services ] ----------------

+- Safe boot mode restored !


+- Services : [ Auto=2 / Request=3 / Disable=4 ]

Ndisuio - Type of startup = 3

Ip6Fw - Type of startup = 2

SharedAccess - Type of startup = 2

wuauserv - Type of startup = 2

wscsvc - Type of startup = 2


--------------- [ Cleaning removable drives ] ----------------

+- Informations :

C: - Lecteur fixe

D: - Lecteur fixe

E: - Lecteur fixe

F: - Lecteur fixe


+- deleting files :


--------------- [ Registry / Moutpoint2 ] ----------------


-> Not found !


--------------- [ Searching Cracks / Keygen ] ----------------



---------------- ! End of report ! ------------------
0
Réponse 63 / 132
jacques.gache Messages postés 34829 Statut Contributeur sécurité 1 617
 
bonjour à vous , angel tu dis e l'ai fait hier deja mais j'ai pas supprimer puisque c'est ce que les gens qui m'ont aid é m'ont demandé de DL!
mais dans mon message 41 je te répondais que tu pouvais faire la suppression de ce que trouvais toolscleaner2
donc c'est pas moi qui t'es dit de ne rien faire
chiquitine29 de plus FindyKill avait déjà été passer et comme je disais dans mon message 12 le pc a été arrêté avant la fin du nettoyage et je pense que la j'aurais du demander à le repasser
0
Réponse 64 / 132
Angel78980 Messages postés 74 Statut Membre 1
 
Voici le rapport ComboFix :


ComboFix 08-11-18.02 - Propriétaire 2008-11-18 20:54:00.1 - NTFSx86
Lancé depuis: c:\documents and settings\Propriétaire\Bureau\killbagle.exe
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\Propriétaire\Application Data\sa3125_02_fus_eng.exe
c:\program files\Windows Live\Messenger\MsnMsgr.Exe
c:\windows\Downloaded Program Files\setup.inf
c:\windows\system32\drivers\npf.sys
c:\windows\system32\packet.dll
c:\windows\system32\pthreadVC.dll
c:\windows\system32\wpcap.dll

.
((((((((((((((((((((((((((((((((((((((( Pilotes/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_NPF
-------\Service_NPF


((((((((((((((((((((((((((((( Fichiers créés du 2008-10-18 au 2008-11-18 ))))))))))))))))))))))))))))))))))))
.

2008-11-18 20:57 . 2008-11-18 20:57 <REP> d-------- c:\windows\system32\drivers\downld
2008-11-18 20:38 . 2008-11-18 20:47 <REP> d-------- c:\program files\FindyKill
2008-11-17 00:33 . 2008-11-17 00:33 <REP> d-------- c:\program files\Malwarebytes' Anti-Malware
2008-11-17 00:33 . 2008-11-17 00:33 <REP> d-------- c:\documents and settings\Propriétaire\Application Data\Malwarebytes
2008-11-17 00:33 . 2008-11-17 00:33 <REP> d-------- c:\documents and settings\All Users\Application Data\Malwarebytes
2008-11-17 00:33 . 2008-10-22 16:10 38,496 --a------ c:\windows\system32\drivers\mbamswissarmy.sys
2008-11-17 00:33 . 2008-10-22 16:10 15,504 --a------ c:\windows\system32\drivers\mbam.sys
2008-11-16 22:37 . 2008-11-16 22:37 67,678 --a------ c:\windows\system32\mdelk.exe.vir
2008-11-16 22:32 . 2008-11-16 22:32 <REP> d-------- c:\program files\Trojan Remover
2008-11-16 22:32 . 2008-11-16 22:32 <REP> d-------- c:\documents and settings\Propriétaire\Application Data\Simply Super Software
2008-11-16 22:32 . 2008-11-16 22:32 <REP> d-------- c:\documents and settings\All Users\Application Data\Simply Super Software
2008-11-16 22:32 . 2006-05-25 14:52 162,304 --a------ c:\windows\system32\ztvunrar36.dll
2008-11-16 22:32 . 2003-02-02 19:06 153,088 --a------ c:\windows\system32\UNRAR3.dll
2008-11-16 22:32 . 2005-08-26 00:50 77,312 --a------ c:\windows\system32\ztvunace26.dll
2008-11-16 22:32 . 2002-03-06 00:00 75,264 --a------ c:\windows\system32\unacev2.dll
2008-11-16 22:32 . 2006-06-19 12:01 69,632 --a------ c:\windows\system32\ztvcabinet.dll
2008-11-16 22:29 . 2008-11-16 22:30 <REP> d-------- c:\program files\Trojan Killer
2008-11-16 21:28 . 2008-11-16 22:20 <REP> d-------- c:\windows\system32\NtmsData
2008-11-16 19:19 . 2008-11-16 19:20 <REP> d-------- c:\program files\Fighters
2008-11-16 19:19 . 2008-11-16 19:19 <REP> d-------- c:\documents and settings\All Users\Application Data\Fighters
2008-11-16 19:15 . 2008-11-16 19:15 <REP> d-------- c:\program files\Spyware Doctor
2008-11-16 19:15 . 2008-11-16 19:15 <REP> d-------- c:\documents and settings\Propriétaire\Application Data\PC Tools
2008-11-16 19:15 . 2008-06-02 16:19 29,576 --a------ c:\windows\system32\drivers\kcom.sys
2008-10-19 19:10 . 2008-11-16 12:12 54,156 --ah----- c:\windows\QTFont.qfn
2008-10-19 19:10 . 2008-10-19 19:10 1,409 --a------ c:\windows\QTFont.for

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-11-17 22:16 --------- d-----w c:\program files\Java
2008-11-16 21:42 --------- d---a-w c:\documents and settings\All Users\Application Data\TEMP
2008-11-16 19:35 --------- d-----w c:\program files\Spybot - Search & Destroy
2008-11-16 19:33 --------- d-----w c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2008-11-16 19:08 --------- d-----w c:\program files\Philips
2008-11-16 17:35 --------- d-----w c:\program files\eMule
2008-11-16 12:36 --------- d-----w c:\program files\spybuddy
2008-11-16 12:32 --------- d-sh--w c:\program files\KGB
2008-11-16 11:02 --------- d-----w c:\program files\Passcape
2008-11-16 10:55 --------- d-----w c:\program files\CDex_170b2
2008-11-16 10:53 --------- d-----w c:\program files\SlySoft
2008-11-09 22:18 --------- d-sh--w c:\documents and settings\All Users\Application Data\MPK
2008-11-02 16:23 --------- d-----w c:\program files\EA GAMES
2008-10-27 19:26 107,888 ----a-w c:\windows\system32\CmdLineExt.dll
2008-10-07 18:51 --------- d--h--w c:\program files\InstallShield Installation Information
2008-10-07 18:51 --------- d-----w c:\program files\VirginMega
2008-10-04 15:59 26,656 ----a-w c:\documents and settings\Propriétaire\Application Data\GDIPFONTCACHEV1.DAT
2008-10-03 22:37 --------- d-----w c:\documents and settings\Propriétaire\Application Data\Leadertech
2008-09-26 15:33 15,496 ----a-w c:\windows\system32\drivers\vffilter.sys
2008-08-31 14:35 39,424 ----a-w c:\windows\zipinst.exe
2008-08-05 09:19 284 ----a-w c:\documents and settings\Propriétaire\Application Data\ViewerApp.dat
2006-06-23 06:48 32,768 ----a-r c:\windows\inf\UpdateUSB.exe
.

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2006-03-02 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe Photo Downloader"="c:\program files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe" [2005-03-05 872456]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-05-16 13529088]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-05-16 86016]
"TkBellExe"="c:\program files\Fichiers communs\Real\Update_OB\realsched.exe" [2008-01-29 185896]
"ISTray"="c:\program files\Spyware Doctor\pctsTray.exe" [2008-11-18 1168264]
"spywarefighterguard"="c:\program files\Fighters\spywarefighter\SpywarefighterUser.exe" [2008-09-26 180872]
"TrojanScanner"="c:\program files\Trojan Remover\Trjscan.exe" [2008-11-18 1233800]
"SunJavaUpdateSched"="c:\program files\Java\jre1.6.0_07\bin\jusched.exe" [2008-06-10 144784]
"nwiz"="nwiz.exe" [2008-05-16 c:\windows\system32\nwiz.exe]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2006-03-02 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLUA"= 0 (0x0)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoLogOff"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"VIDC.X264"= x264vfw.dll
"VIDC.3iv2"= 3ivxVfWCodec.dll

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Microsoft Office.lnk]
path=c:\documents and settings\All Users\Menu Démarrer\Programmes\Démarrage\Microsoft Office.lnk
backup=c:\windows\pss\Microsoft Office.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Picture Package Menu.lnk]
path=c:\documents and settings\All Users\Menu Démarrer\Programmes\Démarrage\Picture Package Menu.lnk
backup=c:\windows\pss\Picture Package Menu.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Picture Package VCD Maker.lnk]
path=c:\documents and settings\All Users\Menu Démarrer\Programmes\Démarrage\Picture Package VCD Maker.lnk
backup=c:\windows\pss\Picture Package VCD Maker.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Photo Downloader]
--a------ 2005-03-05 07:05 872456 c:\program files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
--a------ 2008-01-11 21:16 39792 c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
--a------ 2006-12-23 18:05 143360 c:\program files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
--a------ 2006-03-02 13:00 15360 c:\windows\system32\ctfmon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
--a------ 2008-04-01 10:39 486856 c:\program files\DAEMON Tools Lite\daemon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\JMB36X Configure]
-ra------ 2006-07-12 10:47 352256 c:\windows\system32\JMRaidTool.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LanguageShortcut]
--a------ 2006-12-05 22:55 54832 c:\program files\CyberLink\PowerDVD\Language\Language.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
--a------ 2006-01-12 15:40 155648 c:\program files\Fichiers communs\Ahead\Lib\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
--a------ 2008-05-16 13:01 13529088 c:\windows\system32\nvcpl.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
--a------ 2008-05-16 13:01 86016 c:\windows\system32\nvmctray.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
--a------ 2008-07-06 10:22 98304 c:\program files\QuickTime\qttask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
--a------ 2006-11-23 15:10 56928 c:\program files\CyberLink\PowerDVD\PDVDServ.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAX]
--a------ 2006-04-10 09:19 729088 c:\program files\Analog Devices\SoundMAX\SMax4.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
-ra------ 2006-05-01 03:07 843776 c:\program files\Analog Devices\Core\smax4pnp.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
--a------ 2007-07-12 03:00 132496 c:\program files\Java\jre1.6.0_02\bin\jusched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SW20]
-ra------ 2006-12-15 03:58 208896 c:\windows\system32\sw20.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SW24]
-ra------ 2006-12-15 03:58 69632 c:\windows\system32\sw24.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
--a------ 2008-01-29 23:28 185896 c:\program files\Fichiers communs\Real\Update_OB\realsched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Veoh]
--a------ 2007-11-13 15:48 3411968 c:\program files\Veoh Networks\Veoh\VeohClient.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinSys2]
-ra------ 2006-12-15 03:59 217088 c:\windows\system32\WinSys2.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Wnsp]
--a------ 2008-01-11 21:16 39792 c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
--a------ 2008-05-16 13:01 1630208 c:\windows\system32\nwiz.exe

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\Veoh Networks\\Veoh\\VeohClient.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Real\\RealPlayer\\realplay.exe"=
"c:\\Program Files\\eMule\\emule.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"c:\\Program Files\\KGB\\MpkView.exe"=
"c:\\Program Files\\BlueSourcesProject\\SaveKeys\\SaveKeys Receiver.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"6346:TCP"= 6346:TCP:tcp
"6347:UDP"= 6347:UDP:udp
"7561:UDP"= 7561:UDP:tcp
"6346:UDP"= 6346:UDP:LMW

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]
"AllowInboundEchoRequest"= 1 (0x1)
"AllowOutboundDestinationUnreachable"= 1 (0x1)
"AllowOutboundSourceQuench"= 1 (0x1)
"AllowOutboundTimeExceeded"= 1 (0x1)
"AllowRedirect"= 1 (0x1)

R2 PTK License-FIGHTERS-297811811;PTK License-FIGHTERS-297811811;c:\program files\Fighters\licenseservice.exe [2008-09-26 283272]
R2 PTK Live Update-FIGHTERS-297811811;PTK Live Update-FIGHTERS-297811811;c:\program files\Fighters\updateservice.exe [2008-09-26 307848]
R2 PTK Scanner-FIGHTERS-297811811;PTK Scanner-FIGHTERS-297811811;c:\program files\Fighters\ScannerService.exe [2008-09-26 311944]
R2 PTK SharedAccess-FIGHTERS-297811811;PTK SharedAccess-FIGHTERS-297811811;c:\program files\Fighters\configservice.exe [2008-09-26 139912]
R3 Vfscan;Vfscan;c:\windows\system32\DRIVERS\vffilter.sys [2008-09-26 15496]
S1 aswSP;avast! Self Protection; []
S2 aswFsBlk;aswFsBlk;c:\windows\system32\DRIVERS\aswFsBlk.sys []
S3 jatmlano;jatmlano;\??\c:\docume~1\PROPRI~1\LOCALS~1\Temp\jatmlano.sys []
S3 P1130VID;Creative WebCam NX Pro;c:\windows\system32\DRIVERS\P1130Vid.sys [2008-07-28 90229]
S3 s115bus;Sony Ericsson Device 115 driver (WDM);c:\windows\system32\DRIVERS\s115bus.sys [2007-12-06 83208]
S3 s115mdfl;Sony Ericsson Device 115 USB WMC Modem Filter;c:\windows\system32\DRIVERS\s115mdfl.sys [2007-12-06 15112]
S3 s115mdm;Sony Ericsson Device 115 USB WMC Modem Driver;c:\windows\system32\DRIVERS\s115mdm.sys [2007-12-06 108680]
S3 s115mgmt;Sony Ericsson Device 115 USB WMC Device Management Drivers (WDM);c:\windows\system32\DRIVERS\s115mgmt.sys [2007-12-06 100488]
S3 s115obex;Sony Ericsson Device 115 USB WMC OBEX Interface;c:\windows\system32\DRIVERS\s115obex.sys [2007-12-06 98568]
S3 se59bus;Sony Ericsson Device 089 driver (WDM);c:\windows\system32\DRIVERS\se59bus.sys [2008-06-15 61536]
S3 se59mdfl;Sony Ericsson Device 089 USB WMC Modem Filter;c:\windows\system32\DRIVERS\se59mdfl.sys [2008-06-15 9360]
S3 se59mdm;Sony Ericsson Device 089 USB WMC Modem Driver;c:\windows\system32\DRIVERS\se59mdm.sys [2008-06-15 97088]
S3 se59mgmt;Sony Ericsson Device 089 USB WMC Device Management Drivers (WDM);c:\windows\system32\DRIVERS\se59mgmt.sys [2006-09-05 88624]
S3 se59nd5;Sony Ericsson Device 089 USB Ethernet Emulation SEMC59 (NDIS);c:\windows\system32\DRIVERS\se59nd5.sys [2008-08-05 18704]
S3 se59obex;Sony Ericsson Device 089 USB WMC OBEX Interface;c:\windows\system32\DRIVERS\se59obex.sys [2006-09-05 86432]
S3 se59unic;Sony Ericsson Device 089 USB Ethernet Emulation SEMC59 (WDM);c:\windows\system32\DRIVERS\se59unic.sys [2008-08-05 90800]
.
Contenu du dossier 'Tâches planifiées'

2008-09-24 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2007-08-29 14:57]
.
- - - - ORPHELINS SUPPRIMES - - - -

MSConfigStartUp-BJCFD - c:\program files\BroadJump\Client Foundation\CFD.exe
MSConfigStartUp-CloneCDTray - c:\program files\SlySoft\CloneCD\CloneCDTray.exe
MSConfigStartUp-Cookie Jar - c:\progra~1\COOKIE~1\CookieJar.exe
MSConfigStartUp-Motive SmartBridge - c:\progra~1\CLUB-I~1\LECOMP~1\SMARTB~1\MotiveSB.exe
MSConfigStartUp-MsnMsgr - c:\program files\Windows Live\Messenger\MsnMsgr.Exe
MSConfigStartUp-SpybotSD TeaTimer - c:\program files\Spybot - Search & Destroy\TeaTimer.exe
MSConfigStartUp-SysVContoller32 - c:\windows\system32\svcl32\svcl32.exe
MSConfigStartUp-WinampAgent - c:\program files\Winamp\winampa.exe


.
------- Examen supplémentaire -------
.
FireFox -: Profile - c:\documents and settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\m631h9vc.default\
FireFox -: prefs.js - STARTUP.HOMEPAGE - hxxp://www.google.fr
FF -: plugin - c:\program files\Veoh Networks\Veoh\Plugins\noreg\NPVeohVersion.dll
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-11-18 20:57:19
Windows 5.1.2600 Service Pack 2 NTFS

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...


c:\documents and settings\Propriétaire\Local Settings\Application Data\Microsoft\Windows\GameExplorer\{DFEF49D9-FC95-4301-99B9-2FB91C6ABA06}\PlayTasks\1\Les Sims™ 2 : Boit@Look.lnk 1087 bytes hidden from API

Scan terminé avec succès
Fichiers cachés: 1

**************************************************************************
.
------------------------ Autres processus actifs ------------------------
.
c:\windows\system32\nvsvc32.exe
c:\windows\system32\rundll32.exe
c:\program files\PurgeIE\PurgeIE_Service.exe
c:\program files\CyberLink\Shared Files\RichVideo.exe
c:\program files\Fighters\Spywarefighter\SpywarefighterTray.exe
c:\windows\system32\rundll32.exe
c:\windows\system32\wscntfy.exe
.
**************************************************************************
.
Heure de fin: 2008-11-18 21:00:48 - La machine a redémarré
ComboFix-quarantined-files.txt 2008-11-18 20:00:43

Avant-CF: 61 366 181 888 octets libres
Après-CF: 61,300,355,072 octets libres

WindowsXP-KB310994-SP2-Home-BootDisk-FRA.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP dition familiale" /fastdetect /noexecute=optin

247 --- E O F --- 2008-08-15 01:02:17
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 65 / 132
Utilisateur anonyme
 
Salut jacques

je n ai rien dit sur ta prise en charge j ai juste jugé qu il falait preter main forte

@+
0
Réponse 66 / 132
Angel78980 Messages postés 74 Statut Membre 1
 
Jacques.Gache ne t'inquiète pas tu n'y es pour rien je ne suis pas la seule que tu aides !
;-)
0
Réponse 67 / 132
Utilisateur anonyme
 
INSTALLE antivir (gratuit)


tuto : https://www.malekal.com/avira-free-security-antivirus-gratuit/
tuto : http://www.swl1f.net/viewtopic.php?f=14&t=59

instal le met le a jours lance le scan et ^psot le rapport stp
A découvrir : Estopa, Rosario Flores, La Oreja De Van Gogh
Bonne écoute
@ + T' Chiki.
0
Réponse 68 / 132
jacques.gache Messages postés 34829 Statut Contributeur sécurité 1 617
 
chiquitine29, rien à redire sur ton intervention bien au contraire puisque c'est pour la bonne cause mais je tenais simplement à faire remarquer que angel disait que les personnes qui l'avaient hier lui on dit de ne pas supprimer et dans mon message 41 je lui dit le contraire et oui je pense que j'ai merdé sur le fait de ne pas avoir fait refaire FindyKill suite à ma remarque dans le message 12 suite au fait que le nettoyage de FindyKill est été interrompu avant la fin ce qui je pense à du fausser le résultat et l'efficacité de celui ci
0
Réponse 69 / 132
Utilisateur anonyme
 
t inkiete jacques j avais bien vu

passe une bonne soirée
0
Réponse 70 / 132
Angel78980 Messages postés 74 Statut Membre 1
 
Voici le rapport :



Avira AntiVir Personal
Report file date: mardi 18 novembre 2008 21:12

Scanning for 1040492 virus strains and unwanted programs.

Licensed to: Avira AntiVir PersonalEdition Classic
Serial number: 0000149996-ADJIE-0001
Platform: Windows XP
Windows version: (Service Pack 2) [5.1.2600]
Boot mode: Normally booted
Username: SYSTEM
Computer name: PROPRIET-24R6L7

Version information:
BUILD.DAT : 8.2.0.336 16933 Bytes 30/10/2008 11:40:00
AVSCAN.EXE : 8.1.4.7 315649 Bytes 26/06/2008 09:57:53
AVSCAN.DLL : 8.1.4.0 40705 Bytes 26/05/2008 08:56:40
LUKE.DLL : 8.1.4.5 164097 Bytes 12/06/2008 13:44:19
LUKERES.DLL : 8.1.4.0 12033 Bytes 26/05/2008 08:58:52
ANTIVIR0.VDF : 7.1.0.0 15603712 Bytes 27/10/2008 20:11:13
ANTIVIR1.VDF : 7.1.0.56 411136 Bytes 09/11/2008 20:11:14
ANTIVIR2.VDF : 7.1.0.89 221184 Bytes 16/11/2008 20:11:14
ANTIVIR3.VDF : 7.1.0.104 80384 Bytes 18/11/2008 20:11:15
Engineversion : 8.2.0.34
AEVDF.DLL : 8.1.0.6 102772 Bytes 18/11/2008 20:11:23
AESCRIPT.DLL : 8.1.1.15 332156 Bytes 18/11/2008 20:11:22
AESCN.DLL : 8.1.1.5 123251 Bytes 18/11/2008 20:11:21
AERDL.DLL : 8.1.1.3 438645 Bytes 18/11/2008 20:11:21
AEPACK.DLL : 8.1.3.4 393591 Bytes 18/11/2008 20:11:20
AEOFFICE.DLL : 8.1.0.30 196986 Bytes 18/11/2008 20:11:20
AEHEUR.DLL : 8.1.0.71 1487222 Bytes 18/11/2008 20:11:19
AEHELP.DLL : 8.1.2.0 119159 Bytes 18/11/2008 20:11:18
AEGEN.DLL : 8.1.1.4 319861 Bytes 18/11/2008 20:11:18
AEEMU.DLL : 8.1.0.9 393588 Bytes 18/11/2008 20:11:17
AECORE.DLL : 8.1.5.0 172407 Bytes 18/11/2008 20:11:16
AEBB.DLL : 8.1.0.3 53618 Bytes 18/11/2008 20:11:16
AVWINLL.DLL : 1.0.0.12 15105 Bytes 09/07/2008 09:40:05
AVPREF.DLL : 8.0.2.0 38657 Bytes 16/05/2008 10:28:01
AVREP.DLL : 8.0.0.2 98344 Bytes 18/11/2008 20:11:15
AVREG.DLL : 8.0.0.1 33537 Bytes 09/05/2008 12:26:40
AVARKT.DLL : 1.0.0.23 307457 Bytes 12/02/2008 09:29:23
AVEVTLOG.DLL : 8.0.0.16 119041 Bytes 12/06/2008 13:27:49
SQLITE3.DLL : 3.3.17.1 339968 Bytes 22/01/2008 18:28:02
SMTPLIB.DLL : 1.2.0.23 28929 Bytes 12/06/2008 13:49:40
NETNT.DLL : 8.0.0.1 7937 Bytes 25/01/2008 13:05:10
RCIMAGE.DLL : 8.0.0.51 2371841 Bytes 12/06/2008 14:48:07
RCTEXT.DLL : 8.0.52.0 86273 Bytes 27/06/2008 14:34:37

Configuration settings for the scan:
Jobname..........................: Complete system scan
Configuration file...............: c:\program files\avira\antivir personaledition classic\sysscan.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: on
Scan boot sector.................: on
Boot sectors.....................: C:, D:, E:, F:,
Process scan.....................: on
Scan registry....................: on
Search for rootkits..............: off
Scan all files...................: Intelligent file selection
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Macro heuristic..................: on
File heuristic...................: medium

Start of the scan: mardi 18 novembre 2008 21:12

The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'jucheck.exe' - '1' Module(s) have been scanned
Scan process 'firefox.exe' - '1' Module(s) have been scanned
Scan process 'notepad.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'rundll32.exe' - '1' Module(s) have been scanned
Scan process 'SpywarefighterTray.exe' - '1' Module(s) have been scanned
Scan process 'alg.exe' - '1' Module(s) have been scanned
Scan process 'wmiprvse.exe' - '1' Module(s) have been scanned
Scan process 'ScannerService.exe' - '1' Module(s) have been scanned
Scan process 'UpdateService.exe' - '1' Module(s) have been scanned
Scan process 'LicenseService.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'RichVideo.exe' - '1' Module(s) have been scanned
Scan process 'PurgeIE_Service.exe' - '1' Module(s) have been scanned
Scan process 'ctfmon.exe' - '1' Module(s) have been scanned
Scan process 'jusched.exe' - '1' Module(s) have been scanned
Scan process 'SpywarefighterUser.exe' - '1' Module(s) have been scanned
Scan process 'realsched.exe' - '1' Module(s) have been scanned
Scan process 'rundll32.exe' - '1' Module(s) have been scanned
Scan process 'ConfigService.exe' - '1' Module(s) have been scanned
Scan process 'nvsvc32.exe' - '1' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
37 processes with 37 modules were scanned

Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!
Master boot sector HD1
[INFO] No virus was found!

Start scanning boot sectors:
Boot sector 'C:\'
[INFO] No virus was found!
Boot sector 'D:\'
[INFO] No virus was found!
Boot sector 'E:\'
[INFO] No virus was found!
Boot sector 'F:\'
[INFO] No virus was found!

Starting to scan the registry.
The registry was scanned ( '47' files ).


Starting the file scan:

Begin scan in 'C:\'
C:\pagefile.sys
[WARNING] The file could not be opened!
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\RevealerKeylogger3.zip
[DETECTION] Contains suspicious code GEN/PwdZIP
[NOTE] The detection was classified as suspicious.
[NOTE] The file was moved to '49992251.qua'!
C:\Documents and Settings\Propriétaire\Mes documents\Divers\install_ccsetup211.exe.exe
[DETECTION] Contains a recognition pattern of the (harmful) BDS/Small.fxa back-door program
[WARNING] An error has occurred and the file was not deleted. ErrorID: 26004
[WARNING] The source file could not be found.
[NOTE] Attempting to perform action using the ARK lib.
[WARNING] Error in ARK lib
[NOTE] The file is scheduled for deleting after reboot.
C:\Documents and Settings\Propriétaire\Mes documents\Ma musique\Divers\Ton Histoire Isabelle Boulay.mp3
[DETECTION] Contains recognition pattern of the EXP/ASF.GetCodec.Gen exploit
[NOTE] The file was moved to '49912405.qua'!
C:\Documents and Settings\Propriétaire\Mes documents\Spotauditor\spotauditor_setup.exe
[DETECTION] Contains recognition pattern of the DR/Drop.Small.bse dropper
[WARNING] An error has occurred and the file was not deleted. ErrorID: 26003
[WARNING] The file could not be deleted!
[NOTE] Attempting to perform action using the ARK lib.
[NOTE] The file was moved to '4ba13f28.qua'!
C:\Program Files\Adobe\perfect-keylogger-lite-1-15i.exe
[0] Archive type: NSIS
--> Software/Microsoft/Internet Explorer/Main/Inst_6097.exe
[DETECTION] Is the TR/PSW.Perf.1.0.0.1 Trojan
[DETECTION] Contains recognition pattern of the DR/Perflogger.AH dropper
[DETECTION] Contains recognition pattern of the DR/Perflogger.AH dropper
[DETECTION] Is the TR/PSW.Perf.1.0.0 Trojan
[DETECTION] Is the TR/Keylog.24576.B Trojan
[DETECTION] Is the TR/Keylog.154 Trojan
[DETECTION] Contains recognition pattern of the DR/Perflogger.DV dropper
[WARNING] An error has occurred and the file was not deleted. ErrorID: 26003
[WARNING] The file could not be deleted!
[NOTE] Attempting to perform action using the ARK lib.
[NOTE] The file was moved to '4ba5279d.qua'!
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe
[DETECTION] Is the TR/Dldr.Bagle.agb Trojan
[WARNING] An error has occurred and the file was not deleted. ErrorID: 26003
[WARNING] The file could not be deleted!
[NOTE] Attempting to perform action using the ARK lib.
[NOTE] The file was moved to '4bb306de.qua'!
C:\Qoobox\Quarantine\C\Program Files\Windows Live\Messenger\msnmsgr.exe.vir
[DETECTION] Is the TR/Dldr.Bagle.agb Trojan
[NOTE] The file was moved to '49912911.qua'!
C:\WINDOWS\hhdfc\PKMailer.exe
[DETECTION] Is the TR/Keylogger.BN Trojan
[WARNING] An error has occurred and the file was not deleted. ErrorID: 26004
[WARNING] The source file could not be found.
[NOTE] Attempting to perform action using the ARK lib.
[WARNING] Error in ARK lib
[NOTE] The file is scheduled for deleting after reboot.
C:\WINDOWS\system32\mdelk.exe.vir
[DETECTION] Is the TR/Bagle.Gen.B Trojan
[NOTE] The file was moved to '49882aed.qua'!
C:\WINDOWS\system32\drivers\sptd.sys
[WARNING] The file could not be opened!
Begin scan in 'D:\'
Begin scan in 'E:\'
Begin scan in 'F:\'
F:\Program Files\Adobe\Acrobat 7.0\Setup Files\RdrBig708\ENU\Data1.cab
[0] Archive type: CAB (Microsoft)
--> VDK10.RSD
[WARNING] No further files can be extracted from this archive. The archive will be closed


End of the scan: mardi 18 novembre 2008 22:11
Used time: 58:25 Minute(s)

The scan has been done completely.

9225 Scanning directories
499031 Files were scanned
14 viruses and/or unwanted programs were found
1 Files were classified as suspicious:
0 files were deleted
0 files were repaired
7 files were moved to quarantine
0 files were renamed
2 Files cannot be scanned
499014 Files not concerned
3430 Archives were scanned
8 Warnings
9 Notes
0
Réponse 71 / 132
Angel78980 Messages postés 74 Statut Membre 1
 
Coucou à tous,

J'ai une petite question, ma clé usb et mon lecteur mp4 ne sont pas reconnus !!! Savez vous pourquoi ? Du coup quand j'ai passé les scan je les ai branché mais je ne pense pas que ça ait servi à grand chose ...

Bonne journée à tous et surement à ce soir !
0
Réponse 72 / 132
Utilisateur anonyme
 
Télécharge HijackThis (outils de dignostic) ici :

-> Fais un clic droit sur un des liens et choisi enregistrer la cible sous .... le bureau
-> http://www.trendsecure.com/portal/en-US/_download/HJTInstall.exe
-> ftp://ftp.commentcamarche.com/download/HJTInstall.exe

-> Fais un double-clic sur HJTInstall.exe afin de lancer l'installation

-> Clique sur Install ensuite sur I Accept

-> Clique sur Do a scan system and save log file

-> Le bloc-notes s'ouvrira, fais un copier-coller de tout son contenu ici dans ta prochaine réponse
0
Angel78980
 
Bonsoir Chiquitine et tout le monde,

Voici mon rapport Hijack :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:36:36, on 19/11/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Fighters\spywarefighter\SpywarefighterUser.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Fighters\configservice.exe
C:\Program Files\PurgeIE\PurgeIE_Service.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fighters\licenseservice.exe
C:\Program Files\Fighters\updateservice.exe
C:\Program Files\Fighters\ScannerService.exe
c:\program files\fighters\spywarefighter\SPYWAREfighterTray.exe
C:\Program Files\Java\jre1.6.0_07\bin\jucheck.exe
C:\Program Files\Outlook Express\msimn.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://dufpy.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [ISTray] "C:\Program Files\Spyware Doctor\pctsTray.exe"
O4 - HKLM\..\Run: [spywarefighterguard] C:\Program Files\Fighters\spywarefighter\SpywarefighterUser.exe
O4 - HKLM\..\Run: [TrojanScanner] C:\Program Files\Trojan Remover\Trjscan.exe /boot
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {87AF076E-D86D-4E87-ADDD-F05804E1F150} - https://www.virginmega.fr/DownloadManager/Release/Prod/DownMan.cab
O16 - DPF: {A73BAEFA-EE65-494D-BEDB-DD3E5A34FA98} (Image Uploader) - http://www.extrafilm.fr/ImageUploader4.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game07.zylom.com/activex/zylomgamesplayer.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PTK License-FIGHTERS-297811811 - SPAMfighter - C:\Program Files\Fighters\licenseservice.exe
O23 - Service: PTK Live Update-FIGHTERS-297811811 - SPAMfighter - C:\Program Files\Fighters\updateservice.exe
O23 - Service: PTK Scanner-FIGHTERS-297811811 - SPAMfighter - C:\Program Files\Fighters\ScannerService.exe
O23 - Service: PTK SharedAccess-FIGHTERS-297811811 - SPAMfighter - C:\Program Files\Fighters\configservice.exe
O23 - Service: PurgeIE XP Service (PurgeIEservice) - Assistance & Resources for Computing, Inc. - C:\Program Files\PurgeIE\PurgeIE_Service.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
0
Angel78980 > Angel78980
 
Ya personne ce soir ? :-(
0
Réponse 73 / 132
jacques.gache Messages postés 34829 Statut Contributeur sécurité 1 617
 
bonjour, si je trouve chiquitine29 dans les parage je lui dit qu'il a rencard avec angel !! lol !!
sinon perso je vois que tu as installé antivir sage décision, mais tu as toujours Fighters SpywareFighter Antivirus ,
SPAMFighter®SpywareFighter , tu es sur de vouloir les conserver car à première vu cela ne correspond pas à tes protections sinon pourquoi avoir mis antivir????
0
Réponse 74 / 132
jorginho67 Messages postés 15447 Statut Contributeur sécurité 1 169
 
SPYWAREfighter est un programme anti spyware .

Normal qu'Angel ai un AV , non ??
0
Angel78980
 
J'avais téléchargé ça avant de poster sur le forum !
C'est quoi un AV ? lol
Mais prenez votre temps pour répondre, vous avez tous une vie en dehors du forum ...
Heureusement que j'ai rréussi à rétablir ma connexion pour vous exposer mon pb sinon je ne sais pas comment j'aurais fait !
0
jacques.gache Messages postés 34829 Statut Contributeur sécurité 1 617
 
ok mais pourquoi à telle ça aussi, PC Tools®Spyware Doctor, Lavasoft AB®Ad-Aware 2007
0
jorginho67 Messages postés 15447 Statut Contributeur sécurité 1 169 > jacques.gache Messages postés 34829 Statut Contributeur sécurité
 
J'sais pas.... j'suis pas devin.

C'est toi le spécialiste de " Attention !! la surmultiplication de logiciel de sécurité ne­
protège pas mieux voir peut engendrer des conflits voir des plantages.

On peux avoir autant d'Anti Spywares qu'on veux...

Mais juste 1 AV ;-) ET 1 Pare feu
0
jacques.gache Messages postés 34829 Statut Contributeur sécurité 1 617 > jorginho67 Messages postés 15447 Statut Contributeur sécurité
 
ok mais pas en mode résident en même temps sur le même pc et tu as oublié le principal mais chacun reste maître de son PC
0
Réponse 75 / 132
jorginho67 Messages postés 15447 Statut Contributeur sécurité 1 169
 
Un AV dans le " jargon ", c'est un AntiVirus ;-)
0
Réponse 76 / 132
jacques.gache Messages postés 34829 Statut Contributeur sécurité 1 617
 
AV = anti-virus
0
Angel78980
 
Merde ... la honte !
Vous pouvez pas me voir mais là j'ai envie de me faire toute petite .... :-p
0
Angel78980 > Angel78980
 
Bon je peux pas rester sur le forum ...
Alors je vous dis au prochain épisode !!!
Et merci encore une fois pour votre aide c'est super gentil !
Je continuerai de suivre vos conseils à la lettre !!
Bonne soirée pis surement à demain
Gnarf
0
Réponse 77 / 132
Angel78980 Messages postés 74 Statut Membre 1
 
c'est bizarre je n'arrive plus à voir vos derniers messages sur le forum !!!

Je compte sur vous pour ne pas m'oublier hein !
0
Réponse 78 / 132
Angel78980 Messages postés 74 Statut Membre 1
 
Ben comment que j'fais alors ?

J'ai envoyé mon rapport mais je n'ai pas de réponses ! Vous me boycotté ? lol
Ne m'oubliez pas ... :-p
0
Réponse 79 / 132
Angel78980
 
Bonsoir à tous,

Personne n'est là pour me dire quoi faire après avoir passé mon scan avec Hijacthis ?
0
Réponse 80 / 132
Utilisateur anonyme
 
t'inquietes ...................si on ne te reponds pas de suite c est qu on fait des recherches pour repondre a ton cas.......donc patience et longueur de temps ne font que force et courage
..........................;lol
0

Discussions similaires

Nom de champs du tableau croisé dynamique non valide
Kazooie123 -
SajDri -

6 réponses
Pb Windows 7, .EXE n'est pas app win32 valide
Witeric -
Lio -

15 réponses
StartMenuExperienceHost c'est quoi ?
golfeur68 -
fabul -

3 réponses