Se connecter / S'enregistrer
Votre question

Win32 valide...

Tags :
  • Windows
  • Sécurité
Dernière réponse : dans Sécurité et virus
8 Septembre 2011 20:06:52

Bonsoir

voila j'ai ce probleme de win32, quand je lance une appli en .exe il me dit ".exe n'est pas une application win32 valide" donc j'ai fais un scan avec combo fix je vous donne le txt :





ComboFix 11-09-08.03 - Fky 08/09/2011 18:39:36.1.4 - x64
Microsoft Windows 7 Édition Intégrale 6.1.7601.1.1252.33.1033.18.4087.2352 [GMT 2:00]
Lancé depuis: c:\users\Fky\Downloads\ComboFix.exe
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2011-08-08 au 2011-09-08 ))))))))))))))))))))))))))))))))))))
.
.
2011-09-08 22:28 . 2011-09-08 12:34 -------- d-----w- c:\windows\Panther
2011-09-08 16:42 . 2011-09-08 16:42 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-09-08 16:22 . 2011-09-08 16:23 -------- d-----w- C:\FyK
2011-09-08 16:18 . 2011-09-08 16:18 -------- d-----w- c:\programdata\Avira
2011-09-08 16:18 . 2011-09-08 16:18 -------- d-----w- c:\program files (x86)\Avira
2011-09-08 16:18 . 2011-03-04 12:38 83120 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2011-09-08 16:18 . 2011-03-04 12:38 116568 ----a-w- c:\windows\system32\drivers\avipbb.sys
2011-09-08 14:51 . 2011-09-08 14:51 -------- d--h--w- c:\program files (x86)\InstallShield Installation Information
2011-09-08 14:51 . 2011-09-08 14:51 -------- d-----w- c:\program files (x86)\Realtek
2011-09-08 14:51 . 2011-09-08 14:51 -------- d--h--w- c:\program files (x86)\Temp
2011-09-08 14:51 . 2011-05-27 15:58 1284712 ----a-w- c:\windows\RtlExUpd.dll
2011-09-08 14:50 . 2011-09-08 14:50 -------- d-----w- c:\program files (x86)\Common Files\InstallShield
2011-09-08 13:53 . 2011-09-08 13:53 -------- d-----r- c:\program files (x86)\Skype
2011-09-08 13:53 . 2011-09-08 13:53 -------- d-----w- c:\programdata\Skype
2011-09-08 13:33 . 2011-09-08 13:33 -------- d-----w- c:\windows\SysWow64\Wat
2011-09-08 13:33 . 2011-09-08 13:33 -------- d-----w- c:\windows\system32\Wat
2011-09-08 13:32 . 2011-09-08 13:32 -------- d-----w- c:\windows\fr-FR
2011-09-08 13:32 . 2011-09-08 13:32 -------- d-----w- c:\windows\SysWow64\XPSViewer
2011-09-08 13:32 . 2011-09-08 13:32 -------- d-----w- c:\windows\SysWow64\fr
2011-09-08 13:32 . 2011-09-08 13:32 -------- d-----w- c:\windows\SysWow64\drivers\UMDF\fr-FR
2011-09-08 13:32 . 2011-09-08 13:32 -------- d-----w- c:\windows\SysWow64\drivers\fr-FR
2011-09-08 13:32 . 2011-09-08 13:32 -------- d-----w- c:\windows\SysWow64\040C
2011-09-08 13:32 . 2011-09-08 13:32 -------- d-----w- c:\windows\SysWow64\wbem\fr-FR
2011-09-08 13:32 . 2011-09-08 13:32 -------- d-----w- c:\windows\system32\040C
2011-09-08 13:32 . 2011-09-08 13:32 -------- d-----w- c:\windows\system32\drivers\fr-FR
2011-09-08 13:32 . 2011-09-08 13:32 -------- d-----w- c:\windows\system32\fr
2011-09-08 13:32 . 2011-09-08 13:32 -------- d-----w- c:\windows\system32\drivers\UMDF\fr-FR
2011-09-08 13:32 . 2011-09-08 13:32 -------- d-----w- c:\windows\system32\wbem\fr-FR
2011-09-08 13:28 . 2009-07-13 16:58 3584 ----a-w- c:\windows\system32\Spool\prtprocs\x64\fr-FR\LXKPTPRC.DLL.mui
2011-09-08 13:25 . 2011-09-08 13:25 -------- d-----w- c:\programdata\ATI
2011-09-08 13:25 . 2011-09-08 13:25 -------- d-----w- c:\program files (x86)\AMD APP
2011-09-08 13:25 . 2011-09-08 13:25 -------- d-----w- c:\program files\Common Files\ATI Technologies
2011-09-08 13:25 . 2011-09-08 13:25 -------- d-----w- c:\program files (x86)\Common Files\ATI Technologies
2011-09-08 13:24 . 2011-09-08 13:25 -------- d-----w- c:\program files\ATI Technologies
2011-09-08 13:24 . 2011-09-08 13:24 -------- d-----w- c:\program files\ATI
2011-09-08 13:24 . 2011-09-08 13:24 -------- d-----w- C:\ATI
2011-09-08 13:22 . 2011-09-08 13:22 -------- d-----w- c:\program files (x86)\Image Resizer
2011-09-08 13:18 . 2011-09-08 13:18 0 ----a-w- c:\windows\ativpsrm.bin
2011-09-08 13:15 . 2011-09-08 13:24 -------- d-----w- c:\program files (x86)\ATI Technologies
2011-09-08 13:15 . 2011-09-08 13:15 -------- d-----w- C:\AMD
2011-09-08 13:11 . 2011-08-16 06:48 8862544 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{28F3AD55-42B5-4CF6-AA2C-08E8A3E0FFA8}\mpengine.dll
2011-09-08 13:11 . 2011-05-24 17:14 270720 ------w- c:\windows\system32\MpSigStub.exe
2011-09-08 13:09 . 2011-09-08 13:09 -------- dc----w- c:\programdata\{A3A26C56-02C3-4F76-A033-12EE2FB52AE6}
2011-09-08 13:09 . 2011-09-08 13:09 -------- d-----w- c:\program files (x86)\Stardock
2011-09-08 12:48 . 2011-09-08 12:48 -------- d-----w- c:\windows\CheckSur
2011-09-08 12:43 . 2011-07-09 05:26 2048 ----a-w- c:\windows\system32\tzres.dll
2011-09-08 12:42 . 2011-06-23 04:33 3912576 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2011-09-08 12:42 . 2011-06-23 05:43 5561216 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-09-08 12:42 . 2011-06-23 04:33 3967872 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2011-09-08 12:42 . 2011-06-11 03:07 3137536 ----a-w- c:\windows\system32\win32k.sys
2011-09-08 12:42 . 2011-02-12 11:34 267776 ----a-w- c:\windows\system32\FXSCOVER.exe
2011-09-08 12:42 . 2011-02-25 06:22 861696 ----a-w- c:\windows\system32\oleaut32.dll
2011-09-08 12:42 . 2011-02-25 05:34 571904 ----a-w- c:\windows\SysWow64\oleaut32.dll
2011-09-08 12:42 . 2011-02-23 04:55 90624 ----a-w- c:\windows\system32\drivers\bowser.sys
2011-09-08 12:37 . 2011-09-08 16:19 -------- d-----w- c:\program files\CCleaner
2011-09-08 12:37 . 2009-07-28 17:55 87845312 ----a-w- C:\Photoshop CS4.EXE
2011-09-08 12:37 . 2011-09-08 12:37 -------- d-----w- c:\program files (x86)\Microsoft Silverlight
2011-09-08 12:37 . 2011-09-08 12:37 -------- d-----w- c:\programdata\Malwarebytes
2011-09-08 12:37 . 2011-07-06 17:52 41272 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys
2011-09-08 12:37 . 2011-09-08 16:23 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2011-09-08 12:37 . 2011-07-06 17:52 25912 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-09-08 12:36 . 2011-09-08 12:37 -------- d-----w- c:\program files (x86)\AnvSoft
2011-09-08 12:36 . 2011-09-08 12:36 -------- d-----w- c:\program files (x86)\Mozilla Thunderbird
2011-09-08 12:36 . 2011-09-08 12:36 -------- d-----w- c:\program files (x86)\Foxit Software
2011-09-08 12:35 . 2011-09-08 12:35 -------- d-----w- c:\program files (x86)\SRWare Iron
2011-09-08 12:35 . 2011-09-08 13:28 -------- d-----w- c:\program files (x86)\Winstep
2011-09-08 12:35 . 2008-02-05 13:36 798208 ----a-w- c:\windows\SysWow64\NextControls.ocx
2011-09-08 12:35 . 2000-05-22 15:58 608448 ----a-w- c:\windows\SysWow64\comctl32.ocx
2011-09-08 12:35 . 1997-07-19 14:55 1347344 ----a-w- c:\windows\SysWow64\msvbvm50.dll
2011-09-08 12:35 . 2011-09-08 12:35 -------- d-----w- c:\program files (x86)\VideoLAN
2011-09-08 12:35 . 2011-09-08 12:35 -------- d-----w- c:\program files (x86)\UltraISO
2011-09-08 12:35 . 2011-09-08 12:35 -------- d-----w- c:\program files (x86)\Common Files\EZB Systems
2011-09-08 12:35 . 2011-09-08 12:35 -------- d-----w- c:\windows\SysWow64\Macromed
2011-09-08 12:35 . 2011-09-08 12:35 -------- d-----w- c:\program files (x86)\FileZilla FTP Client
2011-09-08 12:34 . 2011-09-08 12:34 -------- d-----w- c:\program files\7-Zip
2011-09-08 12:34 . 2011-09-08 16:18 -------- d-sh--w- c:\windows\Installer
2011-09-08 12:34 . 2011-09-08 12:38 -------- d-----w- c:\users\Fky
2011-09-08 12:34 . 2011-09-08 12:34 -------- d-----w- C:\Recovery
2011-08-24 18:19 . 2011-08-24 18:19 56320 ----a-w- c:\windows\SysWow64\OpenVideo.dll
2011-08-24 18:18 . 2011-08-24 18:18 13601280 ----a-w- c:\windows\SysWow64\amdocl.dll
2011-08-24 18:17 . 2011-08-24 18:17 43520 ----a-w- c:\windows\SysWow64\OpenCL.dll
.
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-09-08 14:38 . 2009-07-13 23:57 20268032 ----a-w- c:\windows\system32\imageres.dll
2011-09-08 14:38 . 2009-07-13 23:41 705536 ----a-w- c:\windows\SysWow64\imagesp1.dll
2011-09-08 14:38 . 2009-07-13 23:54 44544 ----a-w- c:\windows\system32\themeservice.dll
2011-09-08 14:38 . 2011-01-15 15:53 1866240 ----a-w- c:\windows\system32\ExplorerFrame.dll
2011-09-08 14:38 . 2011-01-15 15:54 1493504 ----a-w- c:\windows\SysWow64\ExplorerFrame.dll
2011-09-08 14:38 . 2009-07-13 23:57 705536 ----a-w- c:\windows\system32\imagesp1.dll
2011-09-08 14:38 . 2009-07-13 23:42 20268032 ----a-w- c:\windows\SysWow64\imageres.dll
2011-09-08 14:38 . 2009-07-13 23:55 332288 ----a-w- c:\windows\system32\uxtheme.dll
2011-07-28 22:23 . 2011-07-28 22:23 9980416 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2011-07-28 22:09 . 2011-07-28 22:09 23921664 ----a-w- c:\windows\system32\atio6axx.dll
2011-07-28 21:44 . 2011-07-28 21:44 18388480 ----a-w- c:\windows\SysWow64\atioglxx.dll
2011-07-28 21:40 . 2011-07-28 21:40 151552 ----a-w- c:\windows\system32\atiapfxx.exe
2011-07-28 21:40 . 2011-07-28 21:40 726528 ----a-w- c:\windows\SysWow64\aticfx32.dll
2011-07-28 21:39 . 2011-07-28 21:39 852992 ----a-w- c:\windows\system32\aticfx64.dll
2011-07-28 21:36 . 2011-07-28 21:36 462848 ----a-w- c:\windows\system32\ATIDEMGX.dll
2011-07-28 21:36 . 2011-07-28 21:36 485376 ----a-w- c:\windows\system32\atieclxx.exe
2011-07-28 21:35 . 2011-07-28 21:35 204288 ----a-w- c:\windows\system32\atiesrxx.exe
2011-07-28 21:34 . 2011-07-28 21:34 120320 ----a-w- c:\windows\system32\atitmm64.dll
2011-07-28 21:34 . 2011-07-28 21:34 423424 ----a-w- c:\windows\system32\atipdl64.dll
2011-07-28 21:33 . 2011-07-28 21:33 356352 ----a-w- c:\windows\SysWow64\atipdlxx.dll
2011-07-28 21:33 . 2011-07-28 21:33 278528 ----a-w- c:\windows\SysWow64\Oemdspif.dll
2011-07-28 21:33 . 2011-07-28 21:33 21504 ----a-w- c:\windows\system32\atimuixx.dll
2011-07-28 21:33 . 2011-07-28 21:33 59392 ----a-w- c:\windows\system32\atiedu64.dll
2011-07-28 21:33 . 2011-07-28 21:33 43520 ----a-w- c:\windows\SysWow64\ati2edxx.dll
2011-07-28 21:30 . 2011-07-28 21:30 4198912 ----a-w- c:\windows\SysWow64\atidxx32.dll
2011-07-28 21:20 . 2011-07-28 21:20 4943360 ----a-w- c:\windows\system32\atidxx64.dll
2011-07-28 21:12 . 2011-07-28 21:12 1113088 ----a-w- c:\windows\system32\atiumd6v.dll
2011-07-28 21:11 . 2011-07-28 21:11 1828864 ----a-w- c:\windows\SysWow64\atiumdmv.dll
2011-07-28 21:11 . 2011-07-28 21:11 3871744 ----a-w- c:\windows\system32\atiumd6a.dll
2011-07-28 21:11 . 2011-07-28 21:11 51200 ----a-w- c:\windows\system32\aticalrt64.dll
2011-07-28 21:11 . 2011-07-28 21:11 46080 ----a-w- c:\windows\SysWow64\aticalrt.dll
2011-07-28 21:11 . 2011-07-28 21:11 44544 ----a-w- c:\windows\system32\aticalcl64.dll
2011-07-28 21:11 . 2011-07-28 21:11 44032 ----a-w- c:\windows\SysWow64\aticalcl.dll
2011-07-28 21:10 . 2011-07-28 21:10 9644544 ----a-w- c:\windows\system32\aticaldd64.dll
2011-07-28 21:09 . 2011-07-28 21:09 4256768 ----a-w- c:\windows\SysWow64\atiumdag.dll
2011-07-28 21:07 . 2011-07-28 21:07 8247296 ----a-w- c:\windows\SysWow64\aticaldd.dll
2011-07-28 21:03 . 2011-07-28 21:03 4056064 ----a-w- c:\windows\SysWow64\atiumdva.dll
2011-07-28 21:02 . 2011-07-28 21:02 5399040 ----a-w- c:\windows\system32\atiumd64.dll
2011-07-28 21:01 . 2011-04-19 23:27 58880 ----a-w- c:\windows\system32\coinst.dll
2011-07-28 20:54 . 2011-07-28 20:54 378368 ----a-w- c:\windows\system32\atiadlxx.dll
2011-07-28 20:54 . 2011-07-28 20:54 266240 ----a-w- c:\windows\SysWow64\atiadlxy.dll
2011-07-28 20:54 . 2011-07-28 20:54 15360 ----a-w- c:\windows\system32\atig6pxx.dll
2011-07-28 20:54 . 2011-07-28 20:54 13312 ----a-w- c:\windows\SysWow64\atiglpxx.dll
2011-07-28 20:54 . 2011-07-28 20:54 13312 ----a-w- c:\windows\system32\atiglpxx.dll
2011-07-28 20:54 . 2011-07-28 20:54 39936 ----a-w- c:\windows\system32\atig6txx.dll
2011-07-28 20:54 . 2011-07-28 20:54 32768 ----a-w- c:\windows\SysWow64\atigktxx.dll
2011-07-28 20:54 . 2011-07-28 20:54 309248 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2011-07-28 20:53 . 2011-04-19 23:21 40960 ----a-w- c:\windows\system32\atiuxp64.dll
2011-07-28 20:53 . 2011-07-28 20:53 31744 ----a-w- c:\windows\SysWow64\atiuxpag.dll
2011-07-28 20:53 . 2011-07-28 20:53 38912 ----a-w- c:\windows\system32\atiu9p64.dll
2011-07-28 20:53 . 2011-07-28 20:53 29184 ----a-w- c:\windows\SysWow64\atiu9pag.dll
2011-07-28 20:52 . 2011-07-28 20:52 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2011-07-28 20:51 . 2011-07-28 20:51 53760 ----a-w- c:\windows\system32\atimpc64.dll
2011-07-28 20:51 . 2011-07-28 20:51 53760 ----a-w- c:\windows\system32\amdpcom64.dll
2011-07-28 20:51 . 2011-07-28 20:51 52736 ----a-w- c:\windows\SysWow64\atimpc32.dll
2011-07-28 20:51 . 2011-07-28 20:51 52736 ----a-w- c:\windows\SysWow64\amdpcom32.dll
2011-07-28 15:49 . 2011-07-28 15:49 60416 ----a-w- c:\windows\system32\OVDecode64.dll
2011-07-28 15:48 . 2011-07-28 15:48 51200 ----a-w- c:\windows\system32\OpenCL.dll
2011-07-28 15:48 . 2011-07-28 15:48 16552960 ----a-w- c:\windows\system32\amdocl64.dll
2011-07-16 04:26 . 2011-09-08 12:43 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2011-06-16 01:34 . 2011-06-16 01:34 79872 ----a-w- c:\windows\SysWow64\SlotMaximizerAg.dll
2011-06-16 01:34 . 2011-06-16 01:34 2971648 ----a-w- c:\windows\system32\SlotMaximizerBe.dll
2011-06-16 01:34 . 2011-06-16 01:34 2117632 ----a-w- c:\windows\SysWow64\SlotMaximizerBe.dll
2011-06-16 01:34 . 2011-06-16 01:34 105984 ----a-w- c:\windows\system32\SlotMaximizerAg.dll
.
  1. <pre>
  2. c:\windows\Setup\scripts\7z 4.65 x64 Silent .exe
  3. </pre>

.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Nexus"="c:\program files (x86)\Winstep\Nexus.exe" [2011-07-05 13283456]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2011-08-26 17361032]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-07-28 336384]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2011-03-04 281768]
"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-07-06 449584]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLUA"= 0 (0x0)
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 0 (0x0)
"EnableInstallerDetection"= 0 (0x0)
.
R3 dmvsc;dmvsc;c:\windows\system32\DRIVERS\dmvsc.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\DRIVERS\terminpt.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\DRIVERS\TsUsbGD.sys [x]
R3 tsusbhub;tsusbhub; [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 AntiVirSchedulerService;Avira AntiVir Planificateur;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [2011-03-04 135336]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-07-06 366640]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
.
.
.
--------- x86-64 -----------
.
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\SharedTaskScheduler]
"{1984DD45-52CF-49cd-AB77-18F378FEA264}"= "c:\program files (x86)\Stardock\Fences\FencesMenu64.dll" [2010-06-22 253288]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Examen supplémentaire -------
.
uStart Page = www.google.com
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 192.168.1.1
CLSID: {603d3801-bd81-11d0-a3a5-00c04fd706ec} - %SystemRoot%\SysWow64\shell32.dll
FF - ProfilePath - c:\users\Fky\AppData\Roaming\Mozilla\Firefox\Profiles\r2yk6h25.default\
FF - prefs.js: browser.startup.homepage - www.google.com
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\Winstep Xtreme Service]
"ImagePath"="c:\program files (x86)\Winstep\WsxService"
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10k_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10k_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10k.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10k.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10k.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10k.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Autres processus actifs ------------------------
.
c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe
c:\program files (x86)\Winstep\WsxService.exe
c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
.
**************************************************************************
.
Heure de fin: 2011-09-08 18:46:42 - La machine a redémarré
ComboFix-quarantined-files.txt 2011-09-08 16:46
.
Avant-CF: 977 974 558 720 octets libres
Après-CF: 977 960 898 560 octets libres
.
- - End Of File - - 02FAED05C8F9BF214475DC35752642FA


Ensuite j'ai fais avec Findy Kill :



############################## | FindyKill V5.053 |

# User : Fky (Administrators) # FKY-PC
# Update on 23/10/2010 by El Desaparecido
# Start at: 18:23:14 | 08/09/2011
# Website : http://www.teamxscript.org/
# Contact : eldesaparecido@teamxscript.org

# Intel(R) Core(TM) i3 CPU 550 @ 3.20GHz
# Microsoft Windows 7 Édition Intégrale (6.1.7601 64-bit) # Service Pack 1
# Internet Explorer 8.0.7601.17514
# Windows Firewall Status : Enabled

# C:\ # Disque fixe local # 931,51 Go (910,85 Go free) # NTFS
# D:\ # Disque fixe local # 297,99 Go (297,26 Go free) # NTFS
# E:\ # Disque CD-ROM # 343,8 Mo (0 Mo free) [WoWDisc5] # CDFS
# F:\ # Disque CD-ROM

################## | Processus infectieux stoppés |


################## | Eléments infectieux |

[29/09/2003 10:55|-r-------|52] E:\Autorun.inf

################## | Reference Bagle MD5 ... |


################## | MD5 ... |

Que doit-je faire ensuite?

je vous remercie :) 

Autres pages sur : win32 valide

8 Septembre 2011 20:19:07

Ah oui j'ai lancer un scan avec malwair', il m'avais trouver un virus qui na pas réglé mon probleme, ensuite j'ai voulue lancer un scan antivir, il ma trouver un virus dans combo fix... bref ><

Enfin j'suis pas sur que avoir faire un scan avec combo fix et Fk soit approprier au problème mais bon ^^


Je viens d'essayez de lancer un scan avec hijack This mais je ne peux pas le lancer :s

Si quelqu'un d'aimable pourrais se pencher sur mon problème je lui en serais reconnaissant !
Merci
8 Septembre 2011 22:01:32

Il y a quelqun? ^^'
Tom's guide dans le monde
  • Allemagne
  • Italie
  • Irlande
  • Royaume Uni
  • Etats Unis
Suivre Tom's Guide
Inscrivez-vous à la Newsletter
  • ajouter à twitter
  • ajouter à facebook
  • ajouter un flux RSS