impossible d'installer avast et spybot !

Bonjour,

Télécharge Blacklight (F-Secure), clique sur " I ACCEPT " en bas de la page :
Clique sur le premier " Download " afin de télécharger le programme
Sauvegarde le sur ton Bureau
Double-clique fsbl.exe et accepte la licence; clique Scan puis Next.

A la fin du scan, NE TOUCHE A RIEN !

Tu verras un rapport, sur ton Bureau, nommé fsbl.xxxxxxx.log (les xxxxxxx sont des chiffres).
Nous devons analyser ce rapport, ferme donc le BlackLight.

Poste le rapport sur le forum.

AIDE : Tuto sur BlackLight (Malekal)

merci angeldark !
voici mon log :
08/22/07 21:49:10 [Info]: BlackLight Engine 1.0.64 initialized
08/22/07 21:49:10 [Info]: OS: 5.1 build 2600 (Service Pack 2)
08/22/07 21:49:10 [Note]: 7019 4
08/22/07 21:49:10 [Note]: 7005 0
08/22/07 21:49:10 [Note]: 7006 0
08/22/07 21:49:10 [Note]: 7011 1756
08/22/07 21:49:10 [Note]: 7026 0
08/22/07 21:49:11 [Note]: 7026 0
08/22/07 21:49:14 [Note]: FSRAW library version 1.7.1022
08/22/07 21:51:06 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\Empty.txt
08/22/07 21:51:06 [Note]: 10002 3
08/22/07 21:51:06 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\Filters.xml
08/22/07 21:51:06 [Note]: 10002 3
08/22/07 21:51:06 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\news.png
08/22/07 21:51:06 [Note]: 10002 3
08/22/07 21:51:06 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\paint.png
08/22/07 21:51:06 [Note]: 10002 3
08/22/07 21:51:06 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\Profiles\Blank.txt
08/22/07 21:51:06 [Note]: 10002 3
08/22/07 21:51:06 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\Sample1.jpg
08/22/07 21:51:06 [Note]: 10002 3
08/22/07 21:51:06 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\Sample2.jpg
08/22/07 21:51:06 [Note]: 10002 3
08/22/07 21:51:06 [Note]: 10002 2
08/22/07 21:51:06 [Note]: 10002 2
08/22/07 21:55:40 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\imepaden.hlp
08/22/07 21:55:40 [Note]: 10002 3
08/22/07 21:55:40 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\imepadsm.dll
08/22/07 21:55:40 [Note]: 10002 3
08/22/07 21:55:40 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\imepadsv.exe
08/22/07 21:55:40 [Note]: 10002 3
08/22/07 21:55:40 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\imlang.dll
08/22/07 21:55:40 [Note]: 10002 3
08/22/07 21:55:40 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\RES\PADRS404.DLL
08/22/07 21:55:40 [Note]: 10002 3
08/22/07 21:55:40 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\RES\padrs411.dll
08/22/07 21:55:40 [Note]: 10002 3
08/22/07 21:55:40 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\RES\padrs412.dll
08/22/07 21:55:40 [Note]: 10002 3
08/22/07 21:55:40 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\RES\padrs804.dll
08/22/07 21:55:40 [Note]: 10002 3
08/22/07 21:55:40 [Note]: 10002 2
08/22/07 21:55:40 [Note]: 10002 2
08/22/07 21:55:51 [Note]: 10002 3
08/22/07 21:55:51 [Note]: 10002 3
08/22/07 21:55:51 [Note]: 10002 3
08/22/07 21:55:51 [Note]: 10002 3
08/22/07 21:55:51 [Note]: 10002 3
08/22/07 21:55:51 [Note]: 10002 3
08/22/07 21:55:51 [Note]: 10002 3
08/22/07 21:55:51 [Note]: 10002 3
08/22/07 21:55:51 [Note]: 10002 2
08/22/07 21:55:51 [Note]: 10002 2
08/22/07 21:56:30 [Info]: Hidden file: c:\WINDOWS\system32\drivers\srosa.sys
08/22/07 21:56:30 [Note]: 10002 2
08/22/07 21:57:32 [Note]: 2000 1012
08/22/07 21:57:32 [Note]: 2000 1012
08/22/07 21:57:32 [Note]: 7007 0

Je poste le nouveau log :
08/22/07 22:03:59 [Info]: BlackLight Engine 1.0.64 initialized
08/22/07 22:03:59 [Info]: OS: 5.1 build 2600 (Service Pack 2)
08/22/07 22:03:59 [Note]: 7019 4
08/22/07 22:03:59 [Note]: 7005 0
08/22/07 22:04:01 [Note]: 7006 0
08/22/07 22:04:01 [Note]: 7011 1732
08/22/07 22:04:01 [Note]: 7026 0
08/22/07 22:04:01 [Note]: 7026 0
08/22/07 22:04:05 [Note]: FSRAW library version 1.7.1022
08/22/07 22:05:59 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\Empty.txt
08/22/07 22:05:59 [Note]: 10002 3
08/22/07 22:05:59 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\Filters.xml
08/22/07 22:05:59 [Note]: 10002 3
08/22/07 22:05:59 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\news.png
08/22/07 22:05:59 [Note]: 10002 3
08/22/07 22:05:59 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\paint.png
08/22/07 22:05:59 [Note]: 10002 3
08/22/07 22:05:59 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\Profiles\Blank.txt
08/22/07 22:05:59 [Note]: 10002 3
08/22/07 22:05:59 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\Sample1.jpg
08/22/07 22:05:59 [Note]: 10002 3
08/22/07 22:05:59 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\Sample2.jpg
08/22/07 22:05:59 [Note]: 10002 3
08/22/07 22:05:59 [Note]: 10002 2
08/22/07 22:05:59 [Note]: 10002 2
08/22/07 22:10:28 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\imepaden.hlp
08/22/07 22:10:28 [Note]: 10002 3
08/22/07 22:10:28 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\imepadsm.dll
08/22/07 22:10:28 [Note]: 10002 3
08/22/07 22:10:28 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\imepadsv.exe
08/22/07 22:10:28 [Note]: 10002 3
08/22/07 22:10:28 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\imlang.dll
08/22/07 22:10:28 [Note]: 10002 3
08/22/07 22:10:28 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\RES\PADRS404.DLL
08/22/07 22:10:28 [Note]: 10002 3
08/22/07 22:10:28 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\RES\padrs411.dll
08/22/07 22:10:28 [Note]: 10002 3
08/22/07 22:10:28 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\RES\padrs412.dll
08/22/07 22:10:28 [Note]: 10002 3
08/22/07 22:10:28 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\RES\padrs804.dll
08/22/07 22:10:28 [Note]: 10002 3
08/22/07 22:10:28 [Note]: 10002 2
08/22/07 22:10:28 [Note]: 10002 2
08/22/07 22:10:40 [Note]: 10002 3
08/22/07 22:10:40 [Note]: 10002 3
08/22/07 22:10:40 [Note]: 10002 3
08/22/07 22:10:40 [Note]: 10002 3
08/22/07 22:10:40 [Note]: 10002 3
08/22/07 22:10:40 [Note]: 10002 3
08/22/07 22:10:40 [Note]: 10002 3
08/22/07 22:10:40 [Note]: 10002 3
08/22/07 22:10:40 [Note]: 10002 2
08/22/07 22:10:40 [Note]: 10002 2
08/22/07 22:11:18 [Info]: Hidden file: c:\WINDOWS\system32\drivers\srosa.sys
08/22/07 22:11:18 [Note]: 10002 2
08/22/07 22:12:17 [Note]: 2000 1012
08/22/07 22:12:17 [Note]: 2000 1012

ca ma fé pareil g du reinstaller xp  

Quelqu'un comprend quelque chose à ce log ? merci de m'aider !

[c'est du Bagle] Attends qu'Angeldark revienne   (demain je pense)

Bonjour,
en regardant le forum, j'ai vu que d'autre personne avait le même pb que moi. Ils ont télécharger "descargar elibagla", ce que j'ai fait, et je post ici le rapport :
Wed Aug 22 21:14:30 2007
EliBagle v10.47 (c)2007 S.G.H. / Satinfo S.L.
----------------------------------------------
Lista de Acciones (por Acción Directa):
C:\WINDOWS\SYSTEM32\BAN_LIST.TXT --> Eliminado Bagle
Restaurada Clave: "SafeBoot\Minimal y Network"

Wed Aug 22 21:15:03 2007
EliBagle v10.47 (c)2007 S.G.H. / Satinfo S.L.
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando Unidad C:\

Wed Aug 22 21:20:08 2007
EliBagle v10.47 (c)2007 S.G.H. / Satinfo S.L.
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando Unidad C:\

Thu Aug 23 09:37:59 2007
EliBagle v10.47 (c)2007 S.G.H. / Satinfo S.L.
----------------------------------------------
Lista de Acciones (por Acción Directa):

Thu Aug 23 09:38:03 2007
EliBagle v10.47 (c)2007 S.G.H. / Satinfo S.L.
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando Unidad C:\
quelqu'un peut m'aider ?

Refais un scan Blacklight.

Voila :
08/23/07 11:26:06 [Info]: BlackLight Engine 1.0.64 initialized
08/23/07 11:26:06 [Info]: OS: 5.1 build 2600 (Service Pack 2)
08/23/07 11:26:06 [Note]: 7019 4
08/23/07 11:26:06 [Note]: 7005 0
08/23/07 11:26:08 [Note]: 7006 0
08/23/07 11:26:08 [Note]: 7011 1736
08/23/07 11:26:08 [Note]: 7026 0
08/23/07 11:26:08 [Note]: 7026 0
08/23/07 11:26:11 [Note]: FSRAW library version 1.7.1022
08/23/07 11:29:23 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\Empty.txt
08/23/07 11:29:23 [Note]: 10002 3
08/23/07 11:29:23 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\Filters.xml
08/23/07 11:29:23 [Note]: 10002 3
08/23/07 11:29:23 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\news.png
08/23/07 11:29:23 [Note]: 10002 3
08/23/07 11:29:23 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\paint.png
08/23/07 11:29:23 [Note]: 10002 3
08/23/07 11:29:23 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\Profiles\Blank.txt
08/23/07 11:29:23 [Note]: 10002 3
08/23/07 11:29:23 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\Sample1.jpg
08/23/07 11:29:23 [Note]: 10002 3
08/23/07 11:29:23 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\Sample2.jpg
08/23/07 11:29:23 [Note]: 10002 3
08/23/07 11:29:23 [Note]: 10002 2
08/23/07 11:29:23 [Note]: 10002 2
08/23/07 11:35:38 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\imepaden.hlp
08/23/07 11:35:38 [Note]: 10002 3
08/23/07 11:35:38 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\imepadsm.dll
08/23/07 11:35:38 [Note]: 10002 3
08/23/07 11:35:38 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\imepadsv.exe
08/23/07 11:35:38 [Note]: 10002 3
08/23/07 11:35:38 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\imlang.dll
08/23/07 11:35:38 [Note]: 10002 3
08/23/07 11:35:38 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\RES\PADRS404.DLL
08/23/07 11:35:38 [Note]: 10002 3
08/23/07 11:35:38 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\RES\padrs411.dll
08/23/07 11:35:38 [Note]: 10002 3
08/23/07 11:35:38 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\RES\padrs412.dll
08/23/07 11:35:38 [Note]: 10002 3
08/23/07 11:35:38 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\RES\padrs804.dll
08/23/07 11:35:38 [Note]: 10002 3
08/23/07 11:35:38 [Note]: 10002 2
08/23/07 11:35:38 [Note]: 10002 2
08/23/07 11:35:54 [Note]: 10002 3
08/23/07 11:35:54 [Note]: 10002 3
08/23/07 11:35:54 [Note]: 10002 3
08/23/07 11:35:54 [Note]: 10002 3
08/23/07 11:35:54 [Note]: 10002 3
08/23/07 11:35:54 [Note]: 10002 3
08/23/07 11:35:54 [Note]: 10002 3
08/23/07 11:35:54 [Note]: 10002 3
08/23/07 11:35:54 [Note]: 10002 2
08/23/07 11:35:54 [Note]: 10002 2
08/23/07 11:36:40 [Info]: Hidden file: c:\WINDOWS\system32\drivers\srosa.sys
08/23/07 11:36:40 [Note]: 10002 2
08/23/07 11:37:44 [Note]: 2000 1012
08/23/07 11:37:44 [Note]: 2000 1012
08/23/07 12:41:23 [Note]: 7007 0

merci de m'aider !

Tu peux relancer Elibagla ?

Voila (excuse moi pour le retard !)

Wed Aug 22 21:14:30 2007
EliBagle v10.47 (c)2007 S.G.H. / Satinfo S.L.
----------------------------------------------
Lista de Acciones (por Acción Directa):
C:\WINDOWS\SYSTEM32\BAN_LIST.TXT --> Eliminado Bagle
Restaurada Clave: "SafeBoot\Minimal y Network"

Wed Aug 22 21:15:03 2007
EliBagle v10.47 (c)2007 S.G.H. / Satinfo S.L.
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando Unidad C:\

Wed Aug 22 21:20:08 2007
EliBagle v10.47 (c)2007 S.G.H. / Satinfo S.L.
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando Unidad C:\

Thu Aug 23 09:37:59 2007
EliBagle v10.47 (c)2007 S.G.H. / Satinfo S.L.
----------------------------------------------
Lista de Acciones (por Acción Directa):

Thu Aug 23 09:38:03 2007
EliBagle v10.47 (c)2007 S.G.H. / Satinfo S.L.
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando Unidad C:\

Thu Aug 23 13:54:16 2007
EliBagle v10.47 (c)2007 S.G.H. / Satinfo S.L.
----------------------------------------------
Lista de Acciones (por Acción Directa):

Thu Aug 23 13:54:18 2007
EliBagle v10.47 (c)2007 S.G.H. / Satinfo S.L.
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando Unidad C:\

Comment on post le log de Elibagla ? (j'ai pas du mettre le bon !)

La procédure :

Il ne me génère aucun rapport en fin d'analyse !

Fais ceci avant de continuer :

Télécharge Hijackthis (de Trend Micro).
Dézippe-le dans un dossier ou sur ton Bureau.

Lance l'application (Hijackthis.exe) :
- Choisis l'option "Do a system scan and save a logfile"
- Le Bloc-Notes s'ouvre, poste son contenu :

Edition / Sélectionner tout

Edition / Copier

Clique-Droit / Coller dans ta réponse

Voila le rapport de Hijackthis :
Logfile of HijackThis v1.99.1
Scan saved at 16:00:59, on 23/08/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16473)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Picasa2\PicasaMediaDetector.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\LVComsX.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Outlook Express\msimn.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\MediaMonkey\MediaMonkey.exe
C:\Documents and Settings\David Guillot\Bureau\hijackthis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] sttray.exe
O4 - HKLM\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Save with Download Manager... - file://C:\Program Files\J River\Media Center 11\DMDownload.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\fr.htm
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.zebulon.fr/scan8/oscan8.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Co...
O17 - HKLM\System\CCS\Services\Tcpip\..\{D5D1B3FC-023B-435A-865A-538BAA3639B2}: NameServer = 213.36.80.1,213.36.80.2
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (file missing)
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe (file missing)
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: MysqlInventime - Unknown owner - C:\Apps\INVENT~1\mysql\bin\mysqld-nt.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: SigmaTel Audio Service (STacSV) - SigmaTel, Inc. - C:\WINDOWS\system32\STacSV.exe

merci !

Tu es victime d'un rootkit très instable  
J'aimerais voir si tu n'as pas d'autres infectiions lourdes avec.

Télécharge combofix.exe (par sUBs) sur ton Bureau.

Double clique combofix.exe.

Tape sur la touche 1 (Yes) pour démarrer le scan.

Lorsque le scan sera complété, un rapport apparaîtra. Copie/colle ce rapport dans ta prochaine réponse.

NOTE : Le rapport se trouve également ici : C:\Combofix.txt

voila le rapport de combofix :
ComboFix 07-08-17.2 - "David Guillot" 2007-08-23 16:14:56.1 - NTFSx86
Microsoft Windows XP dition familiale 5.1.2600.2.1252.1.1036.18.1273 [GMT 2:00]

ADS removed - C:\WINDOWS\system32\ntoskrnl.exe: Le fichier spécifié est introuvable.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))


C:\WINDOWS\system32\x64


((((((((((((((((((((((((( Files Created from 2007-07-23 to 2007-08-23 )))))))))))))))))))))))))))))))


2007-08-23 16:14 51,200 --a------ C:\WINDOWS\nircmd.exe
2007-08-22 20:47 <REP> d-------- C:\Downloads
2007-08-22 20:47 <REP> d-------- C:\Bases
2007-08-22 20:46 <REP> d-------- C:\Kaspersky
2007-08-22 19:01 95,608 --a------ C:\WINDOWS\system32\AvastSS.scr
2007-08-22 19:01 94,416 --a------ C:\WINDOWS\system32\drivers\aswmon2.sys
2007-08-22 19:01 92,848 --a------ C:\WINDOWS\system32\drivers\aswmon.sys
2007-08-22 19:01 42,912 --a------ C:\WINDOWS\system32\drivers\aswTdi.sys
2007-08-22 19:01 26,624 --a------ C:\WINDOWS\system32\drivers\aavmker4.sys
2007-08-22 17:39 <REP> d-------- C:\WINDOWS\system32\Kaspersky Lab
2007-08-22 16:21 <REP> d-------- C:\WINDOWS\LastGood
2007-08-22 16:21 <REP> d-------- C:\WINDOWS\BDOSCAN8
2007-08-22 14:55 <REP> d-------- C:\WINDOWS\LastGood.Tmp
2007-08-22 14:38 <REP> d-------- C:\Program Files\Alwil Software
2007-08-20 17:48 <REP> d-------- C:\Program Files\MSXML 6.0
2007-08-20 15:20 <REP> d-------- C:\DOCUME~1\DAVIDG~1\APPLIC~1\TuneUp Software
2007-08-20 15:20 <REP> d-------- C:\DOCUME~1\DAVIDG~1\APPLIC~1\iolo
2007-08-20 15:20 <REP> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
2007-08-20 15:20 <REP> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\iolo
2007-08-20 15:07 167,936 -ra------ C:\WINDOWS\system32\igfxres.dll
2007-08-20 15:03 91,648 -ra------ C:\WINDOWS\system32\stcplx.dll
2007-08-20 15:03 90,112 -ra------ C:\WINDOWS\system32\stacsv.exe
2007-08-20 15:03 812,032 -ra------ C:\WINDOWS\system32\drivers\stwrt.sys
2007-08-20 15:03 520,192 -ra------ C:\WINDOWS\system32\stapo.dll
2007-08-20 15:03 303,104 -ra------ C:\WINDOWS\sttray.exe
2007-08-20 15:03 217,600 -ra------ C:\WINDOWS\system32\stapi32.dll
2007-08-20 15:03 140,800 -ra------ C:\WINDOWS\system32\staco.dll
2007-08-20 15:03 1,146,880 -ra------ C:\WINDOWS\system32\stlang.dll
2007-08-20 14:56 <REP> d-------- C:\Program Files\SigmaTel
2007-08-20 14:47 364,544 -ra------ C:\WINDOWS\system32\igxpun.exe
2007-08-20 14:46 98,304 -ra------ C:\WINDOWS\system32\igfxdo.dll
2007-08-20 14:46 98,304 --a------ C:\WINDOWS\system32\igfxtray.exe
2007-08-20 14:46 94,208 --a------ C:\WINDOWS\system32\igfxpers.exe
2007-08-20 14:46 81,920 --a------ C:\WINDOWS\system32\hccutils.dll
2007-08-20 14:46 53,248 --a------ C:\WINDOWS\system32\igxprd32.dll
2007-08-20 14:46 450,560 -ra------ C:\WINDOWS\system32\igfxcfg.exe
2007-08-20 14:46 447,120 -ra------ C:\WINDOWS\system32\igmedkrn.dll
2007-08-20 14:46 44,032 --a------ C:\WINDOWS\system32\igfxsrvc.dll
2007-08-20 14:46 312,320 -ra------ C:\WINDOWS\system32\difxapi.dll
2007-08-20 14:46 312,320 -ra------ C:\WINDOWS\system32\difx32.dll
2007-08-20 14:46 3,276,800 --a------ C:\WINDOWS\system32\igfxress.dll
2007-08-20 14:46 23,552 -ra------ C:\WINDOWS\system32\igfxexps.dll
2007-08-20 14:46 200,704 -ra------ C:\WINDOWS\system32\igfxCoIn_v4704.dll
2007-08-20 14:46 2,383,872 -ra------ C:\WINDOWS\system32\ig4icd32.dll
2007-08-20 14:46 2,262,528 --a------ C:\WINDOWS\system32\igxpdx32.dll
2007-08-20 14:46 192,512 -ra------ C:\WINDOWS\system32\igfxsrvc.exe
2007-08-20 14:46 163,840 -ra------ C:\WINDOWS\system32\igfxpph.dll
2007-08-20 14:46 155,648 -ra------ C:\WINDOWS\system32\igfxdev.dll
2007-08-20 14:46 146,432 --a------ C:\WINDOWS\system32\igxpgd32.dll
2007-08-20 14:46 122,880 -ra------ C:\WINDOWS\system32\igfxext.exe
2007-08-20 14:46 114,688 --a------ C:\WINDOWS\system32\hkcmd.exe
2007-08-20 14:46 106,496 -ra------ C:\WINDOWS\system32\igfxzoom.exe
2007-08-20 14:46 1,442,848 --a------ C:\WINDOWS\system32\igxpdv32.dll
2007-08-20 14:46 1,323,008 -ra------ C:\WINDOWS\system32\ig4dev32.dll
2007-08-20 14:46 1,181,824 -ra------ C:\WINDOWS\system32\drivers\igxpmp32.sys
2007-08-20 14:35 20,480 --a------ C:\WINDOWS\system32\drivers\usbuhci.sys
2007-08-20 14:32 <REP> d-------- C:\Program Files\Intel
2007-08-20 14:31 <REP> d-------- C:\TempEI4
2007-08-20 14:30 43,880 -ra------ C:\WINDOWS\system32\e100bmsg.dll
2007-08-20 14:30 35,704 -ra------ C:\WINDOWS\system32\NicInst.dll
2007-08-20 14:30 28,536 -ra------ C:\WINDOWS\system32\NicCo.dll
2007-08-20 14:30 165,760 -ra------ C:\WINDOWS\system32\drivers\e100b325.sys
2007-08-20 14:30 154,496 -ra------ C:\WINDOWS\system32\Prounstl.exe
2007-08-16 11:48 <REP> d-------- C:\DOCUME~1\DAVIDG~1\APPLIC~1\ATI
2007-08-16 11:44 <REP> d-------- C:\Program Files\Steam
2007-08-16 11:41 <REP> d-------- C:\ATI
2007-08-15 16:51 <REP> d-------- C:\WINDOWS\pss
2007-08-15 11:13 <REP> d-------- C:\Program Files\PandoBar
2007-08-15 10:11 783,224 --a------ C:\WINDOWS\system32\aswBoot.exe
2007-08-15 10:11 23,152 --a------ C:\WINDOWS\system32\drivers\aswRdr.sys
2007-08-13 09:50 110,212 --a------ C:\WINDOWS\system32\drivers\hidr.exe.ren
2007-08-09 18:57 <REP> d-------- C:\Program Files\SereneScreen
2007-08-09 09:47 181,899 --a------ C:\WINDOWS\system32\hldrrr.exe.ren
2007-08-09 09:47 <REP> d-------- C:\WINDOWS\exefnd


(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

2007-08-23 12:50 --------- d-------- C:\Program Files\eMule
2007-08-21 15:17 --------- d--h----- C:\Program Files\InstallShield Installation Information
2007-08-21 15:06 --------- d-------- C:\Program Files\Yahoo!
2007-08-21 11:50 --------- d-------- C:\Program Files\Symantec
2007-08-21 11:50 --------- d-------- C:\Program Files\Fichiers communs\Symantec Shared
2007-08-21 09:43 --------- d-------- C:\Program Files\Hitman Pro
2007-08-21 09:40 --------- d-------- C:\DOCUME~1\DAVIDG~1\APPLIC~1\Lavasoft
2007-08-15 13:19 --------- d-------- C:\Program Files\QWhale
2007-08-10 12:03 --------- d-------- C:\Program Files\Windows Live Safety Center
2007-08-10 09:58 --------- d-------- C:\Program Files\Sierra
2007-08-10 09:56 --------- d-------- C:\Program Files\Anno 1701
2007-08-10 09:53 --------- d-------- C:\Program Files\Tux4kids
2007-07-30 19:19 92504 --a------ C:\WINDOWS\system32\dllcache\cdm.dll
2007-07-30 19:19 92504 --a------ C:\WINDOWS\system32\cdm.dll
2007-07-30 19:19 549720 --a------ C:\WINDOWS\system32\wuapi.dll
2007-07-30 19:19 549720 --a------ C:\WINDOWS\system32\dllcache\wuapi.dll
2007-07-30 19:19 53080 --a------ C:\WINDOWS\system32\wuauclt.exe
2007-07-30 19:19 53080 --a------ C:\WINDOWS\system32\dllcache\wuauclt.exe
2007-07-30 19:19 43352 --a------ C:\WINDOWS\system32\wups2.dll
2007-07-30 19:19 325976 --a------ C:\WINDOWS\system32\wucltui.dll
2007-07-30 19:19 325976 --a------ C:\WINDOWS\system32\dllcache\wucltui.dll
2007-07-30 19:19 271224 --a------ C:\WINDOWS\system32\mucltui.dll
2007-07-30 19:19 203096 --a------ C:\WINDOWS\system32\wuweb.dll
2007-07-30 19:19 203096 --a------ C:\WINDOWS\system32\dllcache\wuweb.dll
2007-07-30 19:19 1712984 --a------ C:\WINDOWS\system32\wuaueng.dll
2007-07-30 19:19 1712984 --a------ C:\WINDOWS\system32\dllcache\wuaueng.dll
2007-07-30 19:18 33624 --a------ C:\WINDOWS\system32\wups.dll
2007-07-30 19:18 33624 --a------ C:\WINDOWS\system32\dllcache\wups.dll
2007-07-30 19:18 207736 --a------ C:\WINDOWS\system32\muweb.dll
2007-07-28 05:30 2371584 --a------ C:\WINDOWS\system32\drivers\ati2mtag.sys
2007-07-28 05:30 2371584 --a------ C:\WINDOWS\system32\dllcache\ati2mtag.sys
2007-07-17 22:22 --------- d-------- C:\Program Files\Picasa2
2007-07-17 18:11 --------- d-------- C:\Program Files\Kodak
2007-07-16 18:19 --------- d-------- C:\Program Files\MSN Messenger
2007-06-28 22:16 --------- d-------- C:\Program Files\Musicmatch
2007-06-26 17:02 --------- d-------- C:\Program Files\aTunes
2007-06-25 22:06 --------- d-------- C:\DOCUME~1\DAVIDG~1\APPLIC~1\AdobeUM
2007-06-23 22:55 --------- d-------- C:\Program Files\MediaMonkey
2005-09-09 20:55 7155864 --a------ C:\Program Files\NGhost10.msi
2005-09-09 20:55 4588454 --a------ C:\Program Files\setup.exe
2005-09-09 20:55 37766164 --a------ C:\Program Files\Data1.cab
2005-09-09 20:55 35 --a------ C:\Program Files\SCSSDist.ini
2006-09-03 08:15:53 5 --sha-w C:\WINDOWS\system32\afadb6_s.dll


((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))


*Note* empty entries & legit default entries are not shown

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe" [2007-07-12 04:00]
"LogitechVideoRepair"="C:\Program Files\Logitech\Video\ISStart.exe" [2005-06-08 16:24]
"LogitechVideoTray"="C:\Program Files\Logitech\Video\LogiTray.exe" [2005-06-08 16:14]
"DAEMON Tools"="C:\Program Files\DAEMON Tools\daemon.exe" [2006-11-12 12:48]
"HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe" [2007-01-18 12:39]
"Persistence"="C:\WINDOWS\system32\igfxpers.exe" [2007-01-18 12:39]
"SigmatelSysTrayApp"="sttray.exe" [2007-01-18 12:37 C:\WINDOWS\sttray.exe]
"Picasa Media Detector"="C:\Program Files\Picasa2\PicasaMediaDetector.exe" [2007-06-16 01:15]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" []

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LogitechSoftwareUpdate"="C:\Program Files\Logitech\Video\ManifestEngine.exe" [2005-06-08 15:44]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-05 14:00]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sglfb.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\tga.sys]
@="Driver"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
"Pando"="C:\Program Files\Pando Networks\Pando\Pando.exe" /Minimized
"Steam"="C:\Program Files\Steam\Steam.exe" -silent

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"ACTIVBOARD"=c:\apps\ABoard\ABoard.exe
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" -atboottime
"EmailChecker"=C:\APPS\EmailChecker\ech.exe
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe
"Alcmtr"=ALCMTR.EXE

R1 srosa;Megadrv3;\??\C:\WINDOWS\system32\drivers\srosa.sys
R3 3xHybrid;3xHybrid service;C:\WINDOWS\system32\DRIVERS\3xHybrid.sys
R3 USBSTOR;Pilote de stockage de masse USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
S1 pci32;Derkz864;\??\C:\WINDOWS\system32\drivers\pci32.sys
S2 Planificateur LiveUpdate automatique;Planificateur LiveUpdate automatique;"C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe"
S3 portio;portio;\??\C:\Program Files\Zinf\portio.sys


[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\E]
AutoRun\command- E:\EIVCD.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\I]
adobe\command- I:\goodies\ar405fre.exe
AutoRun\command- I:\aocsetup.exe /autorun
log\command- I:\goodies\machine\machine.exe -l
machine\command- I:\goodies\machine\machine.exe
setup\command- I:\aocsetup.exe /autorun
zone\command- I:\goodies\mszone\zonea660.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\J]
AutoRun\command- J:\autorun\launcher.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\K]
AutoRun\command- K:\setup.exe /autorun
dxsetup\command- K:\directx\dxsetup.exe
Register\command- K:\goodies\runshell.exe http://www.microsoft.com/games/product_registration/mot...
setup\command- K:\setup.exe /autorun
Web\command- K:\goodies\runshell.exe http://www.microsoft.com/games/motocross2
Zone\command- K:\goodies\ZoneA650.exe


Contents of the 'Scheduled Tasks' folder
2007-06-30 07:13:00 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job - C:\Program Files\Apple Software Update\SoftwareUpdate.exe
2007-08-20 13:21:04 C:\WINDOWS\Tasks\Maintenance en 1 clic.job - C:\Program Files\TuneUp Utilities 2007\SystemOptimizer.exe
2005-09-23 16:13:28 C:\WINDOWS\Tasks\Rappel d'enregistrement 2.job - C:\WINDOWS\system32\OOBE\oobebaln.exe
2005-09-23 16:13:28 C:\WINDOWS\Tasks\Rappel d'enregistrement 3.job - C:\WINDOWS\system32\OOBE\oobebaln.exe

**************************************************************************

catchme 0.3.1061 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-08-23 16:15:41
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

C:\WINDOWS\system32\drivers\srosa.sys

scan completed successfully
hidden files: 1

**************************************************************************

Completion time: 2007-08-23 16:16:14

--- E O F ---

Tu peux refaire un scan Blacklight ?

ca a été un peu plus long, mais voila :
08/23/07 16:25:41 [Info]: BlackLight Engine 1.0.64 initialized
08/23/07 16:25:41 [Info]: OS: 5.1 build 2600 (Service Pack 2)
08/23/07 16:25:41 [Note]: 7019 4
08/23/07 16:25:41 [Note]: 7005 0
08/23/07 16:25:43 [Note]: 7006 0
08/23/07 16:25:43 [Note]: 7011 2576
08/23/07 16:25:43 [Note]: 7026 0
08/23/07 16:25:43 [Note]: 7026 0
08/23/07 16:25:46 [Note]: FSRAW library version 1.7.1022
08/23/07 16:28:45 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\Empty.txt
08/23/07 16:28:45 [Note]: 10002 3
08/23/07 16:28:45 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\Filters.xml
08/23/07 16:28:45 [Note]: 10002 3
08/23/07 16:28:45 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\news.png
08/23/07 16:28:45 [Note]: 10002 3
08/23/07 16:28:45 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\paint.png
08/23/07 16:28:45 [Note]: 10002 3
08/23/07 16:28:45 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\Profiles\Blank.txt
08/23/07 16:28:45 [Note]: 10002 3
08/23/07 16:28:45 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\Sample1.jpg
08/23/07 16:28:45 [Note]: 10002 3
08/23/07 16:28:45 [Info]: Hidden file: c:\Program Files\Movie Maker\Shared\Sample2.jpg
08/23/07 16:28:45 [Note]: 10002 3
08/23/07 16:28:45 [Note]: 10002 2
08/23/07 16:28:45 [Note]: 10002 2
08/23/07 16:34:46 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\imepaden.hlp
08/23/07 16:34:46 [Note]: 10002 3
08/23/07 16:34:46 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\imepadsm.dll
08/23/07 16:34:46 [Note]: 10002 3
08/23/07 16:34:46 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\imepadsv.exe
08/23/07 16:34:46 [Note]: 10002 3
08/23/07 16:34:46 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\imlang.dll
08/23/07 16:34:46 [Note]: 10002 3
08/23/07 16:34:46 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\RES\PADRS404.DLL
08/23/07 16:34:46 [Note]: 10002 3
08/23/07 16:34:46 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\RES\padrs411.dll
08/23/07 16:34:46 [Note]: 10002 3
08/23/07 16:34:46 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\RES\padrs412.dll
08/23/07 16:34:46 [Note]: 10002 3
08/23/07 16:34:46 [Info]: Hidden file: c:\WINDOWS\ime\SHARED\RES\padrs804.dll
08/23/07 16:34:46 [Note]: 10002 3
08/23/07 16:34:46 [Note]: 10002 2
08/23/07 16:34:46 [Note]: 10002 2
08/23/07 16:35:03 [Note]: 10002 3
08/23/07 16:35:03 [Note]: 10002 3
08/23/07 16:35:03 [Note]: 10002 3
08/23/07 16:35:03 [Note]: 10002 3
08/23/07 16:35:03 [Note]: 10002 3
08/23/07 16:35:03 [Note]: 10002 3
08/23/07 16:35:03 [Note]: 10002 3
08/23/07 16:35:03 [Note]: 10002 3
08/23/07 16:35:03 [Note]: 10002 2
08/23/07 16:35:03 [Note]: 10002 2
08/23/07 16:35:48 [Info]: Hidden file: c:\WINDOWS\system32\drivers\srosa.sys
08/23/07 16:35:48 [Note]: 10002 2
08/23/07 16:36:53 [Note]: 2000 1012
08/23/07 16:36:53 [Note]: 2000 1012

Est-ce qu'il faut que je réinstalle XP ?

On ne sait pas comment il pourrait réagir face à une grosse désinfection.
Cela serait une bonne chose...

tu crois qu'il n'y a pas d'autres solutions ?

Trop risqué, risque de crash complet trop importants