Sujet Précédent Sujet Suivant

Win 32: malware-gen HELP !!

tamy -  
 Utilisateur anonyme -
Bonjour,

J'ai un problème depuis hier. Avast m'affiche un message toutes les 3 minutes me disant que j'ai un virus Win 32: malware-gen. J'ai scanné mon ordi avec avast en mode normal et en mode sans echec. J'ai essayé superantispyware, malwarebytes, ccleaner... ils me suppriment des cookies des petits trucs mais aucun ne me supprime ce malware!
je suis a deux doigts de tout formater! quelqu'un pourrait m'aider s'il vous plait!!!
Merci beaucoup d'avance!
A voir également:

28 réponses

Précédent
  • 1
  • 2
Réponse 21 / 28
Utilisateur anonyme
 
Rien n'est perdu, ne t'en fais pas :).

Pour demain, essaie çà :
• Faits un clic droit sur l'icône A représentant Avast

• Choisis l'option "Visualiseur de journal Avast!"

Tu devrais avoir des rapports ici.
0
Réponse 22 / 28
tamy
 
Bonjour,

J'ai regardé partout mais il n'y a pas de rapport, juste une succession de lignes d'avertissements.
Désolé!

25/02/2010 09:40:50 SYSTEM 1800 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\yqcw.tmp\svchost.exe" file.
25/02/2010 09:35:04 SYSTEM 1800 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ncor.tmp\svchost.exe" file.
25/02/2010 09:29:51 SYSTEM 1800 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\coip.tmp\svchost.exe" file.
25/02/2010 00:00:00 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\udxm.tmp\svchost.exe" file.
24/02/2010 23:54:52 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\blsg.tmp\svchost.exe" file.
24/02/2010 23:49:43 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ysgh.tmp\svchost.exe" file.
24/02/2010 23:44:32 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\aajr.tmp\svchost.exe" file.
24/02/2010 23:39:28 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\tast.tmp\svchost.exe" file.
24/02/2010 23:34:09 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\tbtx.tmp\svchost.exe" file.
24/02/2010 18:52:20 SYSTEM 1740 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\gunn.tmp\svchost.exe" file.
24/02/2010 18:43:08 SYSTEM 1740 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\tcgr.tmp\svchost.exe" file.
24/02/2010 18:37:58 SYSTEM 1740 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\cgmw.tmp\svchost.exe" file.
24/02/2010 18:32:50 SYSTEM 1740 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ndar.tmp\svchost.exe" file.
24/02/2010 18:27:40 SYSTEM 1740 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ilsp.tmp\svchost.exe" file.
24/02/2010 18:22:32 SYSTEM 1740 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ehdu.tmp\svchost.exe" file.
24/02/2010 18:17:22 SYSTEM 1740 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\bgju.tmp\svchost.exe" file.
24/02/2010 18:12:13 SYSTEM 1740 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ebfn.tmp\svchost.exe" file.
24/02/2010 18:07:02 SYSTEM 1740 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ycxk.tmp\svchost.exe" file.
24/02/2010 18:01:49 SYSTEM 1740 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\mtqx.tmp\svchost.exe" file.
24/02/2010 17:56:24 SYSTEM 1740 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\rmkn.tmp\svchost.exe" file.
24/02/2010 17:44:15 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\aidc.tmp\svchost.exe" file.
24/02/2010 17:39:13 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\rube.tmp\svchost.exe" file.
24/02/2010 17:34:12 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\nkxd.tmp\svchost.exe" file.
24/02/2010 17:29:11 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\trog.tmp\svchost.exe" file.
24/02/2010 17:24:09 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ydwf.tmp\svchost.exe" file.
24/02/2010 17:19:08 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\uqli.tmp\svchost.exe" file.
24/02/2010 17:14:06 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ngso.tmp\svchost.exe" file.
24/02/2010 17:09:04 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\jaax.tmp\svchost.exe" file.
24/02/2010 17:04:02 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\gkye.tmp\svchost.exe" file.
24/02/2010 16:59:00 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\rddq.tmp\svchost.exe" file.
24/02/2010 16:53:59 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\aumn.tmp\svchost.exe" file.
24/02/2010 16:48:57 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ygja.tmp\svchost.exe" file.
24/02/2010 16:43:54 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\wndw.tmp\svchost.exe" file.
24/02/2010 16:38:52 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\pmdp.tmp\svchost.exe" file.
24/02/2010 16:33:49 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\bdnn.tmp\svchost.exe" file.
24/02/2010 16:28:48 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\lyjy.tmp\svchost.exe" file.
24/02/2010 16:23:46 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\qgfg.tmp\svchost.exe" file.
24/02/2010 16:18:44 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\sjol.tmp\svchost.exe" file.
24/02/2010 16:13:41 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\gqpl.tmp\svchost.exe" file.
24/02/2010 16:08:39 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\tbtk.tmp\svchost.exe" file.
24/02/2010 16:03:35 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\mldp.tmp\svchost.exe" file.
24/02/2010 15:58:33 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ouef.tmp\svchost.exe" file.
24/02/2010 15:53:30 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\tktr.tmp\svchost.exe" file.
24/02/2010 15:48:27 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\edoe.tmp\svchost.exe" file.
24/02/2010 15:43:24 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\huuk.tmp\svchost.exe" file.
24/02/2010 15:38:20 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\atiu.tmp\svchost.exe" file.
24/02/2010 15:33:17 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\xwuu.tmp\svchost.exe" file.
24/02/2010 15:28:14 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ixwq.tmp\svchost.exe" file.
24/02/2010 15:23:12 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\rjmt.tmp\svchost.exe" file.
24/02/2010 15:18:11 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\gkvp.tmp\svchost.exe" file.
24/02/2010 15:13:08 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\yiyb.tmp\svchost.exe" file.
24/02/2010 15:08:06 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\tons.tmp\svchost.exe" file.
24/02/2010 15:03:04 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\sovd.tmp\svchost.exe" file.
24/02/2010 14:58:03 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\yole.tmp\svchost.exe" file.
24/02/2010 14:53:01 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ctuo.tmp\svchost.exe" file.
24/02/2010 14:48:00 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\bbfc.tmp\svchost.exe" file.
24/02/2010 14:42:59 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ykxx.tmp\svchost.exe" file.
24/02/2010 14:37:58 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\qgth.tmp\svchost.exe" file.
24/02/2010 14:32:57 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\crnj.tmp\svchost.exe" file.
24/02/2010 14:27:54 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\hguy.tmp\svchost.exe" file.
24/02/2010 14:22:53 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\nebc.tmp\svchost.exe" file.
24/02/2010 14:17:52 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\xepl.tmp\svchost.exe" file.
24/02/2010 14:12:50 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\fwuv.tmp\svchost.exe" file.
24/02/2010 14:07:49 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\bmya.tmp\svchost.exe" file.
24/02/2010 14:02:48 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\orbq.tmp\svchost.exe" file.
24/02/2010 13:57:46 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\brbq.tmp\svchost.exe" file.
24/02/2010 13:52:45 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\fwra.tmp\svchost.exe" file.
24/02/2010 13:47:43 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\xuup.tmp\svchost.exe" file.
24/02/2010 13:42:42 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ksvx.tmp\svchost.exe" file.
24/02/2010 13:37:40 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\mpqq.tmp\svchost.exe" file.
24/02/2010 13:32:38 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ikcs.tmp\svchost.exe" file.
24/02/2010 13:27:37 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\kqwn.tmp\svchost.exe" file.
24/02/2010 13:22:35 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\hppy.tmp\svchost.exe" file.
24/02/2010 13:17:34 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\epdn.tmp\svchost.exe" file.
24/02/2010 13:12:33 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\kxyn.tmp\svchost.exe" file.
24/02/2010 13:07:31 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\olju.tmp\svchost.exe" file.
24/02/2010 13:02:30 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\jlqv.tmp\svchost.exe" file.
24/02/2010 12:57:28 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\yoqn.tmp\svchost.exe" file.
24/02/2010 12:52:27 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\mqoe.tmp\svchost.exe" file.
24/02/2010 12:47:26 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\tuvl.tmp\svchost.exe" file.
24/02/2010 12:42:22 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\pvdg.tmp\svchost.exe" file.
24/02/2010 12:34:41 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\gosw.tmp\svchost.exe" file.
24/02/2010 12:29:26 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\avwa.tmp\svchost.exe" file.
24/02/2010 12:24:15 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\hkcj.tmp\svchost.exe" file.
24/02/2010 12:18:52 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\eytu.tmp\svchost.exe" file.
24/02/2010 12:13:39 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\wjpg.tmp\svchost.exe" file.
24/02/2010 12:08:19 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\uodu.tmp\svchost.exe" file.
24/02/2010 12:02:23 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ougd.tmp\svchost.exe" file.
24/02/2010 11:56:37 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\crnb.tmp\svchost.exe" file.
24/02/2010 11:51:29 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\omys.tmp\svchost.exe" file.
24/02/2010 11:46:20 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\xsua.tmp\svchost.exe" file.
24/02/2010 11:41:46 SYSTEM 1848 Sign of "VBS:Malware-gen" has been found in "I:\autorun.inf" file.
24/02/2010 11:40:49 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\bvcg.tmp\svchost.exe" file.
24/02/2010 11:35:41 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\leym.tmp\svchost.exe" file.
24/02/2010 11:30:19 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\mlwy.tmp\svchost.exe" file.
24/02/2010 11:25:11 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\sbag.tmp\svchost.exe" file.
24/02/2010 11:20:03 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\lgkh.tmp\svchost.exe" file.
24/02/2010 11:14:53 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ejxc.tmp\svchost.exe" file.
24/02/2010 11:09:27 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\dusr.tmp\svchost.exe" file.
24/02/2010 11:03:20 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\crdv.tmp\svchost.exe" file.
24/02/2010 10:58:05 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\fmqb.tmp\svchost.exe" file.
24/02/2010 10:52:57 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\wseq.tmp\svchost.exe" file.
24/02/2010 10:47:49 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\qqen.tmp\svchost.exe" file.
24/02/2010 10:42:38 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\doce.tmp\svchost.exe" file.
24/02/2010 10:37:30 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\iocs.tmp\svchost.exe" file.
24/02/2010 10:32:14 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\qfka.tmp\svchost.exe" file.
24/02/2010 10:26:59 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\inhl.tmp\svchost.exe" file.
24/02/2010 10:21:40 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\jcdr.tmp\svchost.exe" file.
23/02/2010 23:58:28 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\oscw.tmp\svchost.exe" file.
23/02/2010 23:53:21 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\nwms.tmp\svchost.exe" file.
23/02/2010 23:48:00 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\fuic.tmp\svchost.exe" file.
23/02/2010 23:42:43 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\lfrp.tmp\svchost.exe" file.
23/02/2010 23:37:29 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ytkq.tmp\svchost.exe" file.
23/02/2010 23:32:22 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\alcd.tmp\svchost.exe" file.
23/02/2010 23:27:13 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\fjba.tmp\svchost.exe" file.
23/02/2010 23:22:02 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ivhq.tmp\svchost.exe" file.
23/02/2010 23:16:48 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\qhcv.tmp\svchost.exe" file.
23/02/2010 23:11:36 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\knrc.tmp\svchost.exe" file.
23/02/2010 23:06:22 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\huta.tmp\svchost.exe" file.
23/02/2010 23:01:10 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\wvgd.tmp\svchost.exe" file.
23/02/2010 22:55:58 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\wgwr.tmp\svchost.exe" file.
23/02/2010 22:50:49 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\brss.tmp\svchost.exe" file.
23/02/2010 22:45:32 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\fmbj.tmp\svchost.exe" file.
23/02/2010 22:40:02 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\sqoi.tmp\svchost.exe" file.
23/02/2010 22:34:50 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\bbhf.tmp\svchost.exe" file.
23/02/2010 22:29:38 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\oyqm.tmp\svchost.exe" file.
23/02/2010 22:24:28 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\syep.tmp\svchost.exe" file.
23/02/2010 22:19:13 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\rbcx.tmp\svchost.exe" file.
23/02/2010 22:08:23 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\algc.tmp\svchost.exe" file.
23/02/2010 22:03:15 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\jiks.tmp\svchost.exe" file.
23/02/2010 21:57:59 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\osvp.tmp\svchost.exe" file.
23/02/2010 21:52:42 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\walv.tmp\svchost.exe" file.
23/02/2010 21:47:32 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\whru.tmp\svchost.exe" file.
23/02/2010 21:42:23 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\pkgn.tmp\svchost.exe" file.
23/02/2010 21:35:59 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\mbvx.tmp\svchost.exe" file.
23/02/2010 21:26:11 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\yndh.tmp\svchost.exe" file.
23/02/2010 21:20:31 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\dwso.tmp\svchost.exe" file.
23/02/2010 21:10:03 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\bmtt.tmp\svchost.exe" file.
23/02/2010 21:04:56 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\wlir.tmp\svchost.exe" file.
23/02/2010 20:59:46 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\odmy.tmp\svchost.exe" file.
23/02/2010 20:54:34 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\tmag.tmp\svchost.exe" file.
23/02/2010 20:49:26 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\adwk.tmp\svchost.exe" file.
23/02/2010 20:44:14 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ovkt.tmp\svchost.exe" file.
23/02/2010 20:39:06 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\npbb.tmp\svchost.exe" file.
23/02/2010 20:33:35 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ffmo.tmp\svchost.exe" file.
23/02/2010 20:28:24 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\dcbv.tmp\svchost.exe" file.
23/02/2010 20:22:18 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\vrxn.tmp\svchost.exe" file.
23/02/2010 20:14:23 SYSTEM 1796 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\mpcx.tmp\svchost.exe" file.
23/02/2010 20:09:11 SYSTEM 1796 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\cppc.tmp\svchost.exe" file.
23/02/2010 20:04:04 SYSTEM 1796 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ycvx.tmp\svchost.exe" file.
23/02/2010 19:58:48 SYSTEM 1796 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\uamk.tmp\svchost.exe" file.
23/02/2010 19:53:23 SYSTEM 1796 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\tqvc.tmp\svchost.exe" file.
23/02/2010 18:20:57 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\puyt.tmp\svchost.exe" file.
23/02/2010 18:15:49 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\evwq.tmp\svchost.exe" file.
23/02/2010 18:10:40 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ymdv.tmp\svchost.exe" file.
23/02/2010 18:05:25 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\cfxl.tmp\svchost.exe" file.
23/02/2010 18:00:17 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\xyfl.tmp\svchost.exe" file.
23/02/2010 17:55:09 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\adki.tmp\svchost.exe" file.
23/02/2010 17:50:02 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\acfi.tmp\svchost.exe" file.
23/02/2010 17:44:50 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\pxmk.tmp\svchost.exe" file.
23/02/2010 17:39:42 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ukpe.tmp\svchost.exe" file.
23/02/2010 17:34:32 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\lecm.tmp\svchost.exe" file.
23/02/2010 17:29:22 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\kbua.tmp\svchost.exe" file.
23/02/2010 17:24:11 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\phjt.tmp\svchost.exe" file.
23/02/2010 17:17:34 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\rysl.tmp\svchost.exe" file.
23/02/2010 17:12:32 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\jbcu.tmp\svchost.exe" file.
23/02/2010 17:07:25 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\hymv.tmp\svchost.exe" file.
23/02/2010 17:02:17 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\kcbk.tmp\svchost.exe" file.
23/02/2010 16:57:17 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\761C.tmp" file.
23/02/2010 16:56:57 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\docy.tmp\svchost.exe" file.
23/02/2010 16:51:28 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ocib.tmp\svchost.exe" file.
23/02/2010 16:46:20 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\oafq.tmp\svchost.exe" file.
23/02/2010 16:41:12 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\iynj.tmp\svchost.exe" file.
23/02/2010 16:36:05 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\jmpg.tmp\svchost.exe" file.
23/02/2010 16:30:58 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\tkhq.tmp\svchost.exe" file.
23/02/2010 16:24:15 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\yjqq.tmp\svchost.exe" file.
23/02/2010 16:19:03 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\jisl.tmp\svchost.exe" file.
23/02/2010 16:13:56 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\rchp.tmp\svchost.exe" file.
23/02/2010 16:08:49 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\buvy.tmp\svchost.exe" file.
23/02/2010 16:00:19 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\cpds.tmp\svchost.exe" file.
23/02/2010 15:34:14 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\vxuq.tmp\svchost.exe" file.
23/02/2010 15:29:07 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\jjgn.tmp\svchost.exe" file.
23/02/2010 15:23:59 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\cwsy.tmp\svchost.exe" file.
23/02/2010 15:18:53 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\qbsi.tmp\svchost.exe" file.
23/02/2010 15:11:25 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\usei.tmp\svchost.exe" file.
23/02/2010 15:05:55 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\mvul.tmp\svchost.exe" file.
23/02/2010 15:00:46 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\yvsq.tmp\svchost.exe" file.
23/02/2010 14:55:36 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\dyef.tmp\svchost.exe" file.
23/02/2010 14:50:27 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\nvxf.tmp\svchost.exe" file.
23/02/2010 14:45:18 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\xepa.tmp\svchost.exe" file.
23/02/2010 14:37:08 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\jhed.tmp\svchost.exe" file.
23/02/2010 14:31:59 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ryru.tmp\svchost.exe" file.
23/02/2010 14:26:49 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ilce.tmp\svchost.exe" file.
23/02/2010 14:21:37 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\veek.tmp\svchost.exe" file.
23/02/2010 14:16:29 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\tkfl.tmp\svchost.exe" file.
23/02/2010 14:11:21 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\jbed.tmp\svchost.exe" file.
23/02/2010 14:06:13 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\pymk.tmp\svchost.exe" file.
23/02/2010 14:00:58 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\pjfh.tmp\svchost.exe" file.
23/02/2010 13:55:46 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\qtrq.tmp\svchost.exe" file.
23/02/2010 13:50:33 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\xefy.tmp\svchost.exe" file.
23/02/2010 13:45:20 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\hcfa.tmp\svchost.exe" file.
23/02/2010 13:36:10 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ppmy.tmp\svchost.exe" file.
23/02/2010 12:49:36 Stef 1896 Sign of "Win32:DNSChanger-VJ [Trj]" has been found in "C:\Windows\MEMORY.DMP" file.
23/02/2010 11:09:42 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\vffx.tmp\svchost.exe" file.
23/02/2010 10:55:18 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ajke.tmp\svchost.exe" file.
23/02/2010 10:50:07 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\rvfm.tmp\svchost.exe" file.
23/02/2010 10:44:55 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\enwi.tmp\svchost.exe" file.
23/02/2010 10:39:28 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\mvpt.tmp\svchost.exe" file.
23/02/2010 10:34:20 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\naqs.tmp\svchost.exe" file.
23/02/2010 10:29:13 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\aafo.tmp\svchost.exe" file.
23/02/2010 10:24:05 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\lpxd.tmp\svchost.exe" file.
23/02/2010 10:18:56 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\lfuj.tmp\svchost.exe" file.
23/02/2010 10:08:28 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\wwbh.tmp\svchost.exe" file.
23/02/2010 10:03:19 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\xise.tmp\svchost.exe" file.
23/02/2010 09:58:11 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\dtcm.tmp\svchost.exe" file.
23/02/2010 09:52:59 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\jrld.tmp\svchost.exe" file.
23/02/2010 09:47:49 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ptpu.tmp\svchost.exe" file.
23/02/2010 09:42:30 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\aphe.tmp\svchost.exe" file.
23/02/2010 09:37:13 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\awde.tmp\svchost.exe" file.
23/02/2010 09:31:39 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\sdtj.tmp\svchost.exe" file.
23/02/2010 09:26:22 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\eyci.tmp\svchost.exe" file.
23/02/2010 01:27:55 SYSTEM 1688 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ouxb.tmp\svchost.exe" file.
23/02/2010 01:22:45 SYSTEM 1688 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\dbrr.tmp\svchost.exe" file.
23/02/2010 01:17:34 SYSTEM 1688 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\cuva.tmp\svchost.exe" file.
23/02/2010 01:12:22 SYSTEM 1688 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\vfsm.tmp\svchost.exe" file.
23/02/2010 01:06:39 SYSTEM 1688 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\bfqk.tmp\svchost.exe" file.
23/02/2010 01:00:39 SYSTEM 1688 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\cqnq.tmp\svchost.exe" file.
23/02/2010 00:55:27 SYSTEM 1688 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\eyuo.tmp\svchost.exe" file.
23/02/2010 00:50:12 SYSTEM 1688 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\desb.tmp\svchost.exe" file.
23/02/2010 00:44:51 SYSTEM 1688 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\uhcv.tmp\svchost.exe" file.
23/02/2010 00:39:40 SYSTEM 1688 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\fskp.tmp\svchost.exe" file.
23/02/2010 00:34:29 SYSTEM 1688 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\imqe.tmp\svchost.exe" file.
23/02/2010 00:28:22 SYSTEM 1688 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\eihe.tmp\svchost.exe" file.
22/02/2010 15:21:46 SYSTEM 532 Sign of "VBS:Malware-gen" has been found in "H:\autorun.inf" file.
22/02/2010 12:27:28 Stef 2832 Sign of "Win32:Rootkit-gen [Rtk]" has been found in "c:\windows\system32\drivers\agp440.sys" file.
22/02/2010 12:00:16 SYSTEM 2016 Sign of "JS:Prontexi-R [Trj]" has been found in "C:\Users\Stef\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Q4PKPV38\login[1].htm" file.
22/02/2010 11:21:48 SYSTEM 1924 Sign of "Win32:Malware-gen" has been found in "C:\Users\Stef\AppData\Local\Temp\mcbvcpae.exe" file.
22/02/2010 11:21:30 SYSTEM 1924 Sign of "Win32:Malware-gen" has been found in "C:\Users\Stef\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UKX9L8U3\vzgomuf[1].htm" file.
22/02/2010 11:20:45 SYSTEM 1924 Sign of "Win32:Malware-gen" has been found in "C:\Users\Stef\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZUBIQYLI\vzgomuf[1].htm" file.
22/02/2010 11:20:41 SYSTEM 1924 Sign of "Win32:Malware-gen" has been found in "C:\Users\Stef\AppData\Local\Temp\mcbvcpae.exe" file.
0
Réponse 23 / 28
Utilisateur anonyme
 
Fais ceci :

• Télécharge gmer sur ton bureau à partir de ce lien ==> http://www.gmer.net/#files en cliquant sur le bouton "Download EXE".
Note : le fichier téléchargé aura un nom aléatoire, c'est normal, garde ce nom

• Lance gmer à partir du fichier au nom aléatoire

• Un scan va se lancer dès le lancement, laisse le faire.

• Si il détecte tout de suite le rootkit, il va te proposer de scanner le PC en entier, accepte.
• Sinon, coche sur la droite les cases "Services", "Registry" et "Files" et clique sur le bouton scan

• Laisse travailler l'outil

• A la fin du scan, clique sur le bouton Save... et enregistre le rapport sur ton bureau

• Copie/colle le contenu du rapport dans ta réponse

Puis refais un rapport RSIT stp.
0
Réponse 24 / 28
tamy
 
Voici le CR GMER et je suis entrain de passer de RSIT :

GMER 1.0.15.15281 - http://www.gmer.net
Rootkit scan 2010-02-25 15:14:16
Windows 6.0.6002 Service Pack 2
Running: hsu6jm19.exe; Driver: C:\Users\Stef\AppData\Local\Temp\kwrdypog.sys

---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s1 6988309
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s2 272468659
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@h0 2
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0x3C 0x74 0x7E 0xC8 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files\DAEMON Tools Lite\
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0xD4 0xC3 0x97 0x02 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0xB6 0xED 0xB1 0x53 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0x8B 0xC6 0x4F 0x95 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh 0x2A 0x72 0xD9 0x4A ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 1
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0x3C 0x74 0x7E 0xC8 ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files\DAEMON Tools Lite\
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0xD4 0xC3 0x97 0x02 ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0xB6 0xED 0xB1 0x53 ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0x8B 0xC6 0x4F 0x95 ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0 0
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh 0x2A 0x72 0xD9 0x4A ...

---- EOF - GMER 1.0.15 ----
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 28
tamy
 
CR RSIT :

Logfile of random's system information tool 1.06 (written by random/random)
Run by Stef at 2010-02-25 15:15:36
Microsoft® Windows Vista™ Professionnel Service Pack 2
System drive C: has 33 GB (31%) free of 105 GB
Total RAM: 2038 MB (38% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:15:46, on 25/02/2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18882)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Apoint\Apoint.exe
C:\Program Files\sony\VAIO Camera Utility\VCUServe.exe
C:\Program Files\sony\ISB Utility\ISBMgr.exe
C:\Program Files\Sony\VAIO Update 5\VAIOUpdt.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Mindjet\MindManager 7\MmReminderService.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\sony\Network Utility\LANUtil.exe
C:\Program Files\Neuf\Kit\9props.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Program Files\Apoint\ApMsgFwd.exe
C:\Program Files\Apoint\Apntex.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Users\Stef\Desktop\RSIT.exe
C:\Program Files\trend micro\Stef.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.fr/0SEFRFR/SAOS02
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.club-vaio.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:5555
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: CmjBrowserHelperObject Object - {07A11D74-9D25-4fea-A833-8B0D76A5577A} - C:\Program Files\Mindjet\MindManager 7\Mm7InternetExplorer.dll
O2 - BHO: Aide à la navigation SFR - {0F6E720A-1A6B-40E1-A294-1D4D19F156C8} - C:\Program Files\Neuf\Kit\SFRNavErrorHelper.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.2.8.7.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
O4 - HKLM\..\Run: [DRCU] "C:\Program Files\Sony\DRCU\DRCU.exe"
O4 - HKLM\..\Run: [VAIOCameraUtility] "C:\Program Files\Sony\VAIO Camera Utility\VCUServe.exe"
O4 - HKLM\..\Run: [ISBMgr.exe] "C:\Program Files\Sony\ISB Utility\ISBMgr.exe"
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SFR-PC] "C:\Program Files\SFR-PC\SFR-PC.exe" /check
O4 - HKLM\..\Run: [MMReminderService] C:\Program Files\Mindjet\MindManager 7\MMReminderService.exe
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton Internet Security\osCheck.exe"
O4 - HKLM\..\Run: [IS CfgWiz] "C:\Program Files\Common Files\Symantec Shared\OPC\{31011D49-D90C-4da0-878B-78D28AD507AF}\cltUIStb.exe" /MODULE CfgWiz /GUID {BC8D3EAF-F864-4d4b-AB4D-B3D0C32E2840} /MODE CfgWiz /CMDLINE "REBOOT"
O4 - HKCU\..\Run: [NSUFloatingUI] "C:\Program Files\Sony\Network Utility\LANUtil.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [Connexion SFR 9props.exe] "C:\Program Files\Neuf\Kit\9props.exe" /trayicon
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Startup: Microsoft Office Groove.lnk = C:\Program Files\Microsoft Office\Office12\GROOVE.EXE
O4 - Global Startup: Bluetooth Manager.lnk = ?
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Envoyer à Mindjet MindManager - {941E1A34-C6AF-4baa-A973-224F9C3E04BF} - C:\Program Files\Mindjet\MindManager 7\Mm7InternetExplorer.dll
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.2.8.7.dll/206 (file missing)
O13 - Gopher Prefix:
O15 - Trusted Zone: http://intranet.trexia.fr
O16 - DPF: {04CB5B64-5915-4629-B869-8945CEBADD21} (Module de délivrance de certificat MINEFI) - https://static.impots.gouv.fr/abos/static/securite/certdgi1.cab
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - http://www.mypix.com/fr/fr/importer/newconf/aurigma5.8.1.0/ImageUploader5.cab
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
O16 - DPF: {82774781-8F4E-11D1-AB1C-0000F8773BF0} (DLC Class) - https://transfers.ds.microsoft.com/FTM/TransferSource/grTransferCtrl.cab
O16 - DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848} (Image Uploader Control) - http://www.mypix.com/fr/fr/importer/ImageUploader4.cab
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = trexia.fr
O17 - HKLM\Software\..\Telephony: DomainName = trexia.fr
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = trexia.fr
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = trexia.fr
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: hihosove.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adobe Active File Monitor V5 (AdobeActiveFileMonitor5.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AvLib\MSCSPTISRV.exe
O23 - Service: NSUService - Sony Corporation - C:\Program Files\sony\Network Utility\NSUService.exe
O23 - Service: SonicStage Back-End Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AvLib\SsBeSvc.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AvLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AvLib\SSScsiSV.exe
O23 - Service: SigmaTel Audio Service (STacSV) - IDT, Inc. - C:\Windows\system32\stacsv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe
O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files\sony\VAIO Event Service\VESMgr.exe
O23 - Service: VAIO Media Integrated Server (VAIOMediaPlatform-IntegratedServer-AppServer) - Sony Corporation - C:\Program Files\sony\VAIO Media Integrated Server\VMISrv.exe
O23 - Service: VAIO Media Integrated Server (HTTP) (VAIOMediaPlatform-IntegratedServer-HTTP) - Sony Corporation - C:\Program Files\sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
O23 - Service: VAIO Media Integrated Server (UPnP) (VAIOMediaPlatform-IntegratedServer-UPnP) - Sony Corporation - C:\Program Files\sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
O23 - Service: VAIO Media Gateway Server (VAIOMediaPlatform-Mobile-Gateway) - Sony Corporation - C:\Program Files\sony\VAIO Media Integrated Server\Platform\VmGateway.exe
O23 - Service: VAIO Media Content Collection (VAIOMediaPlatform-UCLS-AppServer) - Sony Corporation - C:\Program Files\sony\VAIO Media Integrated Server\UCLS.exe
O23 - Service: VAIO Media Content Collection (HTTP) (VAIOMediaPlatform-UCLS-HTTP) - Sony Corporation - C:\Program Files\sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
O23 - Service: VAIO Media Content Collection (UPnP) (VAIOMediaPlatform-UCLS-UPnP) - Sony Corporation - C:\Program Files\sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
O23 - Service: VAIO Entertainment UPnP Client Adapter (Vcsw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
O23 - Service: VUAgent - Sony Corporation - C:\Program Files\sony\VAIO Update 5\VUAgent.exe
O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
O23 - Service: VAIO Entertainment File Import Service (VzFw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
0
Réponse 26 / 28
Utilisateur anonyme
 
• Sous XP : Double clique sur OTM.exe (présent sur ton bureau)
• Sous Vista : Fais un clic droit sur OTM.exe (présent sur ton bureau) et sélectionne "Exécuter en tant qu'administrateur"

• Copie la liste ci-dessous et colle-la dans le cadre jaune (celui de gauche) de OTM sous Paste Instructions for Items to be Moved 

:files
C:\WINDOWS\SYSTEM32\PEDEWOVO.DLL
C:\WINDOWS\SYSTEM32\hihosove.dll

:reg
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"=""

:commands
[emptytemp]


• Clique sur le bouton MoveIt! pour lancer la suppression.

• Clique sur le bouton YES pour redémarrer le PC

• Un rapport s'ouvre au redémarrage du PC, copie/colle le dans ta réponse

Le rapport est sauvegardé dans C:\_OTM\MovedFiles
0
Réponse 27 / 28
tamy
 
Merci beaucoup pour ton aide mais j'avais besoin de recuperer mon ordi rapidement!
il s'est bloqué vendredi matin du coup j'ai tout formaté! exit le virus ;)

tout va bien et ca m'a permis de mettre windows 7!

Merci en tout cas de ta patience et tes conseils!

bonne journée
0
Réponse 28 / 28
Utilisateur anonyme
 
D'accord, merci d'avoir prévenu :)
On peut donc mettre le sujet en résolu.
0

Discussions similaires

svp 32Gb est il egal a 32Go??
William Fernand -
nemrod18 -

3 réponses