Trojan horse TR/Crypt.FKM.Gen : help !!!

Bonjour, habitué à désinfecter mon ordi seul, je me trouve aujourd'hui devant "du compliqué" qui dépasse mes faibles connaissances en la matière...un trojan du nom de Trojan horse TR/Crypt.FKM.Gen qui pourrit mon ordi depuis quelques jours...

N'ayant trouvé aucun antivirus capable de faire une desinfection automatique, je me retrouve ici pour trouver l'expert qui pourra m'aider à virer ceci....Je pense que j'ai chopé le virus en téléchargeant sur emule un fichier corrompu...ou en ouvrant un email !!!

Voici le résultat ci-dessous d'un scan avec anti personal

Merci d'avance....Yann


Scanning for 1042518 virus strains and unwanted programs.

Licensed to: Avira AntiVir PersonalEdition Classic
Serial number: 0000149996-ADJIE-0001
Platform: Windows XP
Windows version: (Service Pack 1) [5.1.2600]
Username: yann
Computer name: HOME-DKYE8PIQ8W

Version information:
BUILD.DAT : 247 14437 Bytes 10/05/2007 11:55:00
AVSCAN.EXE : 7.0.4.15 282664 Bytes 20/04/2007 11:37:14
AVSCAN.DLL : 7.0.4.4 33832 Bytes 27/03/2007 11:31:54
LUKE.DLL : 7.0.4.11 143400 Bytes 27/03/2007 11:26:04
LUKERES.DLL : 7.0.4.0 10280 Bytes 19/03/2007 11:18:59
ANTIVIR0.VDF : 6.35.0.1 7371264 Bytes 31/05/2006 13:08:58
ANTIVIR1.VDF : 6.39.0.129 7251968 Bytes 10/07/2007 09:48:46
ANTIVIR2.VDF : 6.39.1.74 1637376 Bytes 02/09/2007 09:48:46
ANTIVIR3.VDF : 6.39.1.77 9728 Bytes 03/09/2007 09:48:46
AVEWIN32.DLL : 7.4.1.66 2789888 Bytes 03/09/2007 09:48:48
AVWINLL.DLL : 1.0.0.7 14376 Bytes 26/02/2007 09:36:26
AVPREF.DLL : 7.0.2.1 24616 Bytes 27/03/2007 11:31:50
AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 12:16:24
AVPACK32.DLL : 7.3.0.15 360488 Bytes 03/09/2007 09:48:49
AVREG.DLL : 7.0.1.2 31784 Bytes 15/03/2007 08:05:08
AVEVTLOG.DLL : 7.0.0.18 86056 Bytes 27/03/2007 11:16:05
AVARKT.DLL : 1.0.0.17 278568 Bytes 02/05/2007 10:32:26
NETNT.DLL : 7.0.0.0 7720 Bytes 08/03/2007 10:09:42
RCIMAGE.DLL : 7.0.1.15 2228264 Bytes 13/03/2007 09:46:18
RCTEXT.DLL : 7.0.45.0 86056 Bytes 19/03/2007 11:42:42

Configuration settings for the scan:
Jobname..........................: Local Hard Disks
Configuration file...............: C:\Program Files\AntiVir PersonalEdition Classic\alldiscs.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: off
Scan boot sector.................: on
Boot sectors.....................: D:,
Scan memory......................: on
Process scan.....................: on
Scan registry....................: on
Search for rootkits..............: off
Scan all files...................: Intelligent file selection
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Macro heuristic..................: on
File heuristic...................: medium

Start of the scan: lundi 3 septembre 2007 12:40

The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'aoltray.exe' - '1' Module(s) have been scanned
Scan process 'bgnwksdiu.exe' - '1' Module(s) have been scanned
Module is infected -> 'C:\WINDOWS\System32\bgnwksdiu.exe'
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'qttask.exe' - '1' Module(s) have been scanned
Scan process 'uwdf.exe' - '1' Module(s) have been scanned
Scan process 'wmiprvse.exe' - '1' Module(s) have been scanned
Scan process 'aolsoftware.exe' - '1' Module(s) have been scanned
Scan process 'AOLDial.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'CALMAIN.exe' - '1' Module(s) have been scanned
Scan process 'wanmpsvc.exe' - '1' Module(s) have been scanned
Scan process 'wdfmgr.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'nvsvc32.exe' - '1' Module(s) have been scanned
Scan process 'MDM.EXE' - '1' Module(s) have been scanned
Scan process 'SAgent2.exe' - '1' Module(s) have been scanned
Scan process 'AOLacsd.exe' - '1' Module(s) have been scanned
Scan process 'alg.exe' - '1' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
Process 'bgnwksdiu.exe' has been terminated
C:\WINDOWS\System32\bgnwksdiu.exe
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!

33 processes with 32 modules were scanned

Start scanning boot sectors:
Boot sector 'C:\'
[NOTE] No virus was found!
Boot sector 'D:\'
[NOTE] No virus was found!

Starting to scan the registry.
C:\WINDOWS\system32\bgnwksdiu.exe
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\WINDOWS\system32\bgnwksdiu.exe
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen

The registry was scanned ( '11' files ).


Starting the file scan:

Begin scan in 'C:\'
C:\hiberfil.sys
[WARNING] The file could not be opened!
C:\pagefile.sys
[WARNING] The file could not be opened!
C:\rswulgazg.exe
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[INFO] The file was moved to '4752e53b.qua'!
C:\Documents and Settings\All Users\Application Data\AOL\UserProfiles\All Users\toaster\aol.activeupdate\ActiveUpdate\fr-FR\ActiveUpda­te.zip
[0] Archive type: ZIP
--> OB3EDHn.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[INFO] The file was moved to '474fe53b.qua'!
C:\Documents and Settings\All Users\Application Data\AOL\UserProfiles\All Users\toaster\aol.CCU\toaster\fr-FR\toaster.zip
[0] Archive type: ZIP
--> Bpy35jN.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[INFO] The file was moved to '473ce54a.qua'!
C:\Documents and Settings\yann\Application Data\hidires\flec003.exe
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '4740e57a.qua'!
C:\Documents and Settings\yann\Application Data\hidires\hidr.exe
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '473fe57e.qua'!
C:\Documents and Settings\yann\Application Data\hidires\m_hook.sys
[DETECTION] Contains signature of the rootkit RKIT/Bagle.GL
[WARNING] The file was ignored!
C:\Documents and Settings\yann\Application Data\VideoEgg\Publisher\2817\resources\gid326\cid1094\AOL1\i­mages\skin.zip
[0] Archive type: ZIP
--> Yw4WtYn.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[INFO] The file was moved to '4744e5a7.qua'!
C:\Documents and Settings\yann\Mes documents\070714Klein60ans011.zip
[0] Archive type: ZIP
--> MEl2JGf.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Adobe\Adobe Bridge\browser\skin\standard_skin.zip
[0] Archive type: ZIP
--> k7kVc8X.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Adobe\Adobe Bridge\browser\skin\windows_skin.zip
[0] Archive type: ZIP
--> bS6KkC6.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Adobe\Adobe Help Center\AdobeHelpData\Packages\AdobeHelpCenter_1.0_de-de.zip
[0] Archive type: ZIP
--> o40IgF0.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Adobe\Adobe Help Center\AdobeHelpData\Packages\AdobeHelpCenter_1.0_en-us.zip
[0] Archive type: ZIP
--> Vu08JeS.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Adobe\Adobe Help Center\AdobeHelpData\Packages\AdobeHelpCenter_1.0_fr-fr.zip
[0] Archive type: ZIP
--> h1JO430.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Adobe\Adobe Help Center\AdobeHelpData\Packages\AdobeHelpCenter_1.0_ja-jp.zip
[0] Archive type: ZIP
--> m2V5E60.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Adobe\Adobe Help Center\AdobeHelpData\Packages\Photoshop_9.0_fr-fr.zip
[0] Archive type: ZIP
--> OF1867f.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Adobe\Adobe Help Center\Browser\skin\standard_skin.zip
[0] Archive type: ZIP
--> p8kr1li.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Adobe\Adobe Help Center\Browser\skin\windows_skin.zip
[0] Archive type: ZIP
--> xYimj0m.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Adobe\Adobe Help Center\Required\help\AdobeHelpCenter_1.0_de-de.zip
[0] Archive type: ZIP
--> k8wMdUm.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Adobe\Adobe Help Center\Required\help\AdobeHelpCenter_1.0_en-us.zip
[0] Archive type: ZIP
--> sm5F1CW.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Adobe\Adobe Help Center\Required\help\AdobeHelpCenter_1.0_fr-fr.zip
[0] Archive type: ZIP
--> bH80h.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Adobe\Adobe Help Center\Required\help\AdobeHelpCenter_1.0_ja-jp.zip
[0] Archive type: ZIP
--> IBD06dk.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Cool2000\Quick Start\CE2Kquick.zip
[0] Archive type: ZIP
--> DT11w3o.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Fichiers communs\AOL\1169587693\ee\services\bfts\ver2_14_5_6\resource­s\en-US\bfts.zip
[0] Archive type: ZIP
--> j1L440o.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Fichiers communs\AOL\1169587693\ee\services\bfts\ver2_14_5_6\resource­s\fr-FR\bfts.zip
[0] Archive type: ZIP
--> uE8Ko1w.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Fichiers communs\AOL\1169587693\ee\services\computerCheckupUI\Ver4_0_­40_4\resources\en-US\toaster.zip
[0] Archive type: ZIP
--> s7WOi8E.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Fichiers communs\AOL\1169587693\ee\services\computerCheckupUI\Ver4_0_­40_4\resources\fr-FR\toaster.zip
[0] Archive type: ZIP
--> cjU5ILi.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Fichiers communs\AOL\1169587693\ee\services\softwareUpdate\ver2_14_9_­3\resources\en-US\ActiveUpdate.zip
[0] Archive type: ZIP
--> DR5PLQP.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Fichiers communs\AOL\1169587693\ee\services\softwareUpdate\ver2_14_9_­3\resources\fr-FR\ActiveUpdate.zip
[0] Archive type: ZIP
--> GbT2vTs.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Fichiers communs\AOL\1169587693\ee\services\toaster\ver2_26_1_1\resou­rces\en-US\credits.zip
[0] Archive type: ZIP
--> s0jlQd2.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Fichiers communs\AOL\1169587693\ee\services\toaster\ver2_26_1_1\resou­rces\en-US\sample.zip
[0] Archive type: ZIP
--> jTYIhRb.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Fichiers communs\AOL\1169587693\ee\services\toaster\ver2_26_1_1\resou­rces\fr-FR\credits.zip
[0] Archive type: ZIP
--> kQscG1v.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Fichiers communs\AOL\1169587693\ee\services\toaster\ver2_26_1_1\resou­rces\fr-FR\sample.zip
[0] Archive type: ZIP
--> v7p8O.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Macromedia\Dreamweaver 8\Configuration\Third Party Source Code\JavaScript Interpreter\javascript15.zip
[0] Archive type: ZIP
--> Dx3EtT8.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Macromedia\Dreamweaver 8\Configuration\Third Party Source Code\Sablotron\Sablot-0.70-MACR.zip
[0] Archive type: ZIP
--> C5mv0BM.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Macromedia\Dreamweaver 8\Tutorial_assets\Extending\extending_dw.zip
[0] Archive type: ZIP
--> v7s0v7F.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Sony\ACID Pro 5.0\acid50.zip
[0] Archive type: ZIP
--> cT8jgIb.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Sony\Shared Plug-Ins\File Formats\AC3\ac3plug.zip
[0] Archive type: ZIP
--> T.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Sony\Shared Plug-Ins\File Formats\MCMPEG\mcplug.zip
[0] Archive type: ZIP
--> wSS5J5M.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Sony\Shared Plug-Ins\File Formats\MP3\mp3plug.zip
[0] Archive type: ZIP
--> fMwug57.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Windows Media Player\npdrmv2.zip
[0] Archive type: ZIP
--> tGw7C3N.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Windows Media Player\npds.zip
[0] Archive type: ZIP
--> Ke6jjYC.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\WinZip\EXAMPLE.zip
[0] Archive type: ZIP
--> cNVulm7.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\WINDOWS\java\Packages\1BBFHVND.zip
[0] Archive type: ZIP
--> gdRc258.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\WINDOWS\java\Packages\93DBV5NP.zip
[0] Archive type: ZIP
--> B4KNje4.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\WINDOWS\java\Packages\EZ5ZFZHN.zip
[0] Archive type: ZIP
--> b52m0TB.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\WINDOWS\java\Packages\MKFXNDBR.zip
[0] Archive type: ZIP
--> EOXXM32.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\WINDOWS\java\Packages\NJD7NTRV.zip
[0] Archive type: ZIP
--> i32S2vv.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\WINDOWS\java\Packages\P3LFB9FN.zip
[0] Archive type: ZIP
--> PE50635.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\WINDOWS\java\Packages\SQ3R7TF7.zip
[0] Archive type: ZIP
--> g762v5P.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\WINDOWS\java\Packages\VPZRN1ZX.zip
[0] Archive type: ZIP
--> o16W3s7.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\WINDOWS\system32\.exe
[DETECTION] Contains code of the Windows virus W32/Virut.Gen
[WARNING] The file was ignored!
C:\WINDOWS\system32\algs.exe
[DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Agent.apf.2 Backdoor server programs
[WARNING] The file was ignored!
C:\WINDOWS\system32\bgnwksdiu.exe
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\WINDOWS\system32\hgkpmij32.exe
[DETECTION] Contains signature of the worm WORM/SdBo.100864.22
[WARNING] The file was ignored!
C:\WINDOWS\system32\irdvxc.exe
[DETECTION] Contains code of the Windows virus W32/Virut.Gen
[WARNING] The file was ignored!
C:\WINDOWS\system32\Isass.exe
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[WARNING] The file was ignored!
C:\WINDOWS\system32\mmdmm.exe
[DETECTION] Is the Trojan horse TR/Crypt.PCMM.Gen
[WARNING] The file was ignored!
C:\WINDOWS\system32\xyawkumay.exe
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\WINDOWS\system32\drivers\core.sys
[WARNING] The file could not be opened!
Begin scan in 'D:\' <BACKUP>
D:\rswulgazg.exe
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
D:\TOOLS\NeroBurningRom\FreeDB\FreeDB.zip
[0] Archive type: ZIP
--> Rf7i6.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!


End of the scan: lundi 3 septembre 2007 13:34
Used time: 54:13 min

The scan has been done completely.

5029 Scanning directories
260986 Files were scanned
63 viruses and/or unwanted programs were found
0 classified as suspicious:
0 files were deleted
0 files were repaired
6 files were moved to quarantine
0 files were renamed
3 Files cannot be scanned
260923 Files not concerned
1374 Archives were scanned
59 Warnings
17 Notes
0 Hidden objects were found

Configuration: Windows XP
AOL 9.0