StefAnne

Bonjour, j'espère déjà ne pas me tromper d'endroit pour mon sujet. depuis quelques temps il m'est impossible d'effectuer certaines mises à jour, entre autres pour iTunes et pour ma carte graphique ATI Radeon. Je télécharge l'exe et une fois que je veux installer cela me met le message d'erreur "...exe., application win32 non valide."j'ai plusieurfois tout désinstaller et réessayer mais rien. D'ailleurs maintenant je n'ai plus du tout mon itunes. J'ai chercher des réponses et j'ai donc installer combofix. Et maintenant il faudrait que quelqu'un regarde si tout est en ordre, parce que moi là je suis aux fiques. Résultats combofix ComboFix 08-04-29.3 - Propriétaire 2008-04-30 15:21:42.1 - NTFSx86 Microsoft Windows XP Édition familiale 5.1.2600.2.1252.1.1036.18.184 [GMT 2:00] Endroit: C:\Documents and Settings\Propriétaire\Bureau\ComboFix.exe . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat C:\WINDOWS\Downloaded Program Files\setup.inf C:\WINDOWS\system32\AutoRun.inf D:\Autorun.inf ----- BITS: Possible sites infectés ----- hxxp://h20264.www2.hp.com . ((((((((((((((((((((((((((((( Fichiers créés 2008-03-28 to 2008-04-30 )))))))))))))))))))))))))))))))))))) . 2008-04-29 21:21 . 2008-04-29 21:21 <REP> d-------- C:\Program Files\jv16 PowerTools 2008-04-29 10:12 . 2008-04-29 10:12 <REP> d-------- C:\Program Files\Microsoft Silverlight 2008-04-29 10:11 . 2008-04-29 10:11 0 --ah----- C:\WINDOWS\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf 2008-04-29 10:11 . 2008-04-29 10:11 0 --ah----- C:\WINDOWS\system32\drivers\Msft_Kernel_NuidFltr_01005.Wdf 2008-04-29 10:10 . 2004-08-20 00:09 21,504 --a------ C:\WINDOWS\system32\drivers\hidserv.dll 2008-04-26 14:33 . 2008-04-26 14:33 <REP> d-------- C:\Program Files\Sibelius Software 2008-04-26 14:33 . 2008-04-26 14:33 <REP> d-------- C:\Documents and Settings\Propriétaire\Application Data\Sibelius Software 2008-04-25 10:20 . 2008-04-25 10:20 54,156 --ah----- C:\WINDOWS\QTFont.qfn 2008-04-25 10:20 . 2008-04-25 10:20 1,409 --a------ C:\WINDOWS\QTFont.for 2008-04-25 10:15 . 2008-04-25 10:14 691,545 --a------ C:\WINDOWS\unins000.exe 2008-04-25 10:15 . 2008-04-25 10:15 2,555 --a------ C:\WINDOWS\unins000.dat 2008-03-02 19:41 . 2008-03-02 19:41 <REP> d-------- C:\Documents and Settings\Propriétaire\Application Data\vlc . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2008-04-25 08:21 --------- d-----w C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy 2008-04-25 08:19 --------- d-----w C:\Program Files\Spybot - Search & Destroy 2008-04-25 07:48 --------- d-----w C:\Documents and Settings\Propriétaire\Application Data\Apple Computer 2008-04-25 07:48 --------- d-----w C:\Documents and Settings\All Users\Application Data\Apple Computer 2008-04-25 07:41 --------- d-----w C:\Program Files\iPod 2008-04-08 18:20 --------- d-----w C:\Documents and Settings\Propriétaire\Application Data\GARMIN 2008-03-23 19:49 --------- d-----w C:\Program Files\Java 2008-03-20 08:09 1,845,376 ----a-w C:\WINDOWS\system32\win32k.sys 2008-03-11 14:32 --------- d-----w C:\Program Files\Fichiers communs\Adobe 2008-03-11 14:27 --------- d-----w C:\Program Files\efinance 2008-03-02 17:39 --------- d-----w C:\Program Files\Neuf 2008-03-01 12:58 826,368 ----a-w C:\WINDOWS\system32\wininet.dll 2008-02-28 07:27 --------- d-----w C:\Program Files\Windows Live 2008-02-20 06:51 282,624 ----a-w C:\WINDOWS\system32\gdi32.dll 2008-02-20 05:35 45,568 ----a-w C:\WINDOWS\system32\dnsrslvr.dll 2008-02-01 10:17 587,264 ----a-w C:\WINDOWS\WLXPGSS.SCR 2007-05-02 07:53 4,117,736 ----a-w C:\Program Files\registrybooster.exe 2007-01-03 14:47 278,528 -c--a-w C:\Program Files\Fichiers communs\FDEUnInstaller.exe 2006-06-09 14:20 774,144 -c--a-w C:\Program Files\RngInterstitial.dll 2001-03-28 11:02 122,880 -c--a-w C:\WINDOWS\inf\Agfa\message.exe 2005-05-01 11:39 0 -csha-w C:\WINDOWS\SMINST\HPCD.sys . ((((((((((((((((((((((((((((((((( Point de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))) . . REGEDIT4 *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-20 01:09 15360] "swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-07-12 13:47 68856] "BackupNotify"="c:\Program Files\HP\Digital Imaging\bin\backupnotify.exe" [2004-01-09 02:34 32768] "SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [2008-01-28 11:43 2097488] "WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" [2006-11-03 10:59 204288] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2007-01-05 12:47 155648] "HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [2007-03-11 22:34 49152] "SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [2008-02-22 05:25 144784] "Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 23:16 39792] "TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" [2005-10-05 18:20 180269] C:\Documents and Settings\All Users\Menu D‚marrer\Programmes\D‚marrage\ HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [2007-03-11 22:26:24 210520] [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Adobe Gamma Loader.lnk] backup=C:\WINDOWS\pss\Adobe Gamma Loader.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^AOL 9.0 Icône AOL.lnk] path=C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\AOL 9.0 Icône AOL.lnk backup=C:\WINDOWS\pss\AOL 9.0 Icône AOL.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^AOL Compagnon.lnk] path=C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\AOL Compagnon.lnk backup=C:\WINDOWS\pss\AOL Compagnon.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^HP Digital Imaging Monitor.lnk] backup=C:\WINDOWS\pss\HP Digital Imaging Monitor.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Travaux PageKeeper.lnk] backup=C:\WINDOWS\pss\Travaux PageKeeper.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^Propriétaire^Menu Démarrer^Programmes^Démarrage^OCRAWARE.lnk] backup=C:\WINDOWS\pss\OCRAWARE.lnkStartup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acme.PCHButton] --a--c--- 2004-01-02 00:17 159744 C:\PROGRA~1\HPPAVI~1\Pavilion\XPHWWBS4\plugin\bin\PCHButton.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Photo Downloader] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] --a------ 2008-01-11 23:16 39792 C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AGRSMMSG] --a------ 2005-03-04 12:01 88209 C:\WINDOWS\AGRSMMSG.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcxMonitor] --a------ 2004-09-07 14:47 57344 C:\WINDOWS\Alcxmntr.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AOLDialer] -ra--c--- 2006-11-01 16:12 71216 C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avast!] --a------ 2008-03-29 19:37 79224 C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BackupNotify] --a------ 2004-01-09 02:34 32768 c:\Program Files\HP\Digital Imaging\bin\backupnotify.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe] --a------ 2004-08-20 01:09 15360 C:\WINDOWS\system32\ctfmon.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Component Manager] --a------ 2005-01-12 14:54 241664 C:\Program Files\HP\hpcoretech\hpcmpmgr.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update] --a------ 2007-03-11 22:34 49152 C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPHmon05] --a------ 2003-08-21 04:16 483328 C:\WINDOWS\System32\hphmon05.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPHUPD05] --a------ 2003-08-21 04:23 49152 c:\Program Files\HP\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpsysdrv] --a------ 1998-05-07 17:04 52736 c:\windows\system\hpsysdrv.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KBD] --a------ 2005-02-02 16:44 61440 C:\HP\KBD\KBD.EXE [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr] --a------ 2007-01-19 13:55 5674352 C:\Program Files\MSN Messenger\MsnMsgr.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] --a------ 2007-01-05 12:47 155648 C:\Program Files\QuickTime\qttask.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Recguard] --a------ 2004-04-14 22:43 233472 C:\WINDOWS\SMINST\RECGUARD.EXE [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] --a------ 2007-07-12 04:00 132496 C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg] --a------ 2007-07-12 13:47 68856 C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe] --a------ 2005-10-05 18:20 180269 C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG] --------- 2006-11-03 10:59 204288 C:\Program Files\Windows Media Player\WMPNSCFG.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\YeppStudioAgent] --a--c--- 2005-10-11 12:11 40960 C:\Program Files\Samsung\Samsung Media Studio\SamsungMediaStudioAgent.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "iPodService"=3 (0x3) [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-] "Acme.PCHButton"=C:\PROGRA~1\HPPAVI~1\Pavilion\XPHWWBS4\plugin\bin\PCHButton.exe [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" "QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" -atboottime "TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot "UpdateManager"="c:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r "YeppStudioAgent"=C:\Program Files\Samsung\Samsung Media Studio\SamsungMediaStudioAgent.exe [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "C:\\WINDOWS\\system32\\mshta.exe"= "C:\\Program Files\\HP\\HP Software Update\\HPWUCli.exe"= "C:\\WINDOWS\\system32\\dpvsetup.exe"= "C:\\WINDOWS\\system32\\rundll32.exe"= "C:\\WINDOWS\\system32\\dxdiag.exe"= "C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLAcsd.exe"= "C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLDial.exe"= "C:\\Program Files\\Windows Media Player\\wmplayer.exe"= "C:\\Program Files\\AIM\\aim.exe"= "C:\\Program Files\\Fichiers communs\\AOL\\Loader\\aolload.exe"= "C:\\Program Files\\Fichiers communs\\AOL\\System Information\\sinf.exe"= "C:\\Program Files\\Messenger\\msmsgs.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "C:\\Program Files\\AOL 9.0b\\waol.exe"= "C:\\Program Files\\Skype\\Phone\\Skype.exe"= "C:\\Program Files\\MSN Messenger\\msnmsgr.exe"= "C:\\Program Files\\MSN Messenger\\livecall.exe"= "C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"= "C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"= "C:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"= "C:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"= "C:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"= "C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"= "C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"= "C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqcopy.exe"= "C:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"= "C:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"= "C:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"= "C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqnrs08.exe"= "C:\\Program Files\\Internet Explorer\\iexplore.exe"= R0 Ramdisk;Ramdisk Driver;C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2000-04-19 23:00] R1 aswSP;avast! Self Protection;C:\WINDOWS\system32\drivers\aswSP.sys [2008-03-29 19:31] R2 aswFsBlk;aswFsBlk;C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2008-03-29 19:35] R2 X4HSX32;X4HSX32;C:\Program Files\Player Metaboli\X4HSX32.Sys [2006-12-13 10:34] R3 usbscan;Pilote de scanneur USB;C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-04 06:58] R3 USBSTOR;Pilote de stockage de masse USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-04 08:08] S3 alcan5ln;SpeedTouch USB ADSL RFC1483 Networking Driver (NDIS);C:\WINDOWS\system32\DRIVERS\alcan5ln.sys [2003-12-08 12:53] S3 Boonty Games;Boonty Games;"C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe" [2005-10-06 19:17] S3 musbehco;musbehco;C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp\musbehco.sys [] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12 hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{0c9e3e75-7641-11da-b0b2-0090d0d15dd1}] \Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Boot.exe e \Shell\Open\command - Boot.exe e [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{eddae568-e20b-11db-b2c7-00038a000015}] \Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Boot.exe e \Shell\Open\command - K:\Boot.exe e *Newly Created Service* - CATCHME . Contenu du dossier 'Scheduled Tasks/Tâches planifiées' "2008-04-30 10:47:05 C:\WINDOWS\Tasks\User_Feed_Synchronization-{48D100EC-3A7D-4A2D-92FB-7A113C2F8057}.job" - C:\WINDOWS\system32\msfeedssync.exe "2008-04-30 12:44:01 C:\WINDOWS\Tasks\Vérifier les mises à jour de Windows Live Toolbar.job" - C:\Program Files\Windows Live Toolbar\MSNTBUP.EXE . ************************************************************************** catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-04-30 15:23:28 Windows 5.1.2600 Service Pack 2 NTFS Balayage processus cachés ... Balayage caché autostart entries ... Balayage des fichiers cachés ... ************************************************************************** . Temps d'accomplissement: 2008-04-30 15:26:57 ComboFix-quarantined-files.txt 2008-04-30 13:25:54 Pre-Run: 91,282,067,456 octets libres Post-Run: 91,272,065,024 octets libres 213 --- E O F --- 2008-04-09 12:07:03 Je vous remercie par avance. StefAnne