Win 32: malware-gen HELP !! - Page 2

Précédent
  • 1
  • 2
Réponse 21 / 28
Utilisateur anonyme
 
Rien n'est perdu, ne t'en fais pas :).

Pour demain, essaie çà :
• Faits un clic droit sur l'icône A représentant Avast

• Choisis l'option "Visualiseur de journal Avast!"

Tu devrais avoir des rapports ici.
0
Réponse 22 / 28
tamy
 
Bonjour,

J'ai regardé partout mais il n'y a pas de rapport, juste une succession de lignes d'avertissements.
Désolé!

25/02/2010 09:40:50 SYSTEM 1800 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\yqcw.tmp\svchost.exe" file.
25/02/2010 09:35:04 SYSTEM 1800 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ncor.tmp\svchost.exe" file.
25/02/2010 09:29:51 SYSTEM 1800 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\coip.tmp\svchost.exe" file.
25/02/2010 00:00:00 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\udxm.tmp\svchost.exe" file.
24/02/2010 23:54:52 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\blsg.tmp\svchost.exe" file.
24/02/2010 23:49:43 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ysgh.tmp\svchost.exe" file.
24/02/2010 23:44:32 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\aajr.tmp\svchost.exe" file.
24/02/2010 23:39:28 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\tast.tmp\svchost.exe" file.
24/02/2010 23:34:09 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\tbtx.tmp\svchost.exe" file.
24/02/2010 18:52:20 SYSTEM 1740 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\gunn.tmp\svchost.exe" file.
24/02/2010 18:43:08 SYSTEM 1740 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\tcgr.tmp\svchost.exe" file.
24/02/2010 18:37:58 SYSTEM 1740 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\cgmw.tmp\svchost.exe" file.
24/02/2010 18:32:50 SYSTEM 1740 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ndar.tmp\svchost.exe" file.
24/02/2010 18:27:40 SYSTEM 1740 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ilsp.tmp\svchost.exe" file.
24/02/2010 18:22:32 SYSTEM 1740 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ehdu.tmp\svchost.exe" file.
24/02/2010 18:17:22 SYSTEM 1740 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\bgju.tmp\svchost.exe" file.
24/02/2010 18:12:13 SYSTEM 1740 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ebfn.tmp\svchost.exe" file.
24/02/2010 18:07:02 SYSTEM 1740 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ycxk.tmp\svchost.exe" file.
24/02/2010 18:01:49 SYSTEM 1740 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\mtqx.tmp\svchost.exe" file.
24/02/2010 17:56:24 SYSTEM 1740 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\rmkn.tmp\svchost.exe" file.
24/02/2010 17:44:15 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\aidc.tmp\svchost.exe" file.
24/02/2010 17:39:13 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\rube.tmp\svchost.exe" file.
24/02/2010 17:34:12 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\nkxd.tmp\svchost.exe" file.
24/02/2010 17:29:11 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\trog.tmp\svchost.exe" file.
24/02/2010 17:24:09 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ydwf.tmp\svchost.exe" file.
24/02/2010 17:19:08 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\uqli.tmp\svchost.exe" file.
24/02/2010 17:14:06 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ngso.tmp\svchost.exe" file.
24/02/2010 17:09:04 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\jaax.tmp\svchost.exe" file.
24/02/2010 17:04:02 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\gkye.tmp\svchost.exe" file.
24/02/2010 16:59:00 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\rddq.tmp\svchost.exe" file.
24/02/2010 16:53:59 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\aumn.tmp\svchost.exe" file.
24/02/2010 16:48:57 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ygja.tmp\svchost.exe" file.
24/02/2010 16:43:54 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\wndw.tmp\svchost.exe" file.
24/02/2010 16:38:52 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\pmdp.tmp\svchost.exe" file.
24/02/2010 16:33:49 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\bdnn.tmp\svchost.exe" file.
24/02/2010 16:28:48 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\lyjy.tmp\svchost.exe" file.
24/02/2010 16:23:46 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\qgfg.tmp\svchost.exe" file.
24/02/2010 16:18:44 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\sjol.tmp\svchost.exe" file.
24/02/2010 16:13:41 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\gqpl.tmp\svchost.exe" file.
24/02/2010 16:08:39 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\tbtk.tmp\svchost.exe" file.
24/02/2010 16:03:35 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\mldp.tmp\svchost.exe" file.
24/02/2010 15:58:33 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ouef.tmp\svchost.exe" file.
24/02/2010 15:53:30 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\tktr.tmp\svchost.exe" file.
24/02/2010 15:48:27 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\edoe.tmp\svchost.exe" file.
24/02/2010 15:43:24 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\huuk.tmp\svchost.exe" file.
24/02/2010 15:38:20 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\atiu.tmp\svchost.exe" file.
24/02/2010 15:33:17 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\xwuu.tmp\svchost.exe" file.
24/02/2010 15:28:14 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ixwq.tmp\svchost.exe" file.
24/02/2010 15:23:12 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\rjmt.tmp\svchost.exe" file.
24/02/2010 15:18:11 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\gkvp.tmp\svchost.exe" file.
24/02/2010 15:13:08 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\yiyb.tmp\svchost.exe" file.
24/02/2010 15:08:06 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\tons.tmp\svchost.exe" file.
24/02/2010 15:03:04 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\sovd.tmp\svchost.exe" file.
24/02/2010 14:58:03 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\yole.tmp\svchost.exe" file.
24/02/2010 14:53:01 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ctuo.tmp\svchost.exe" file.
24/02/2010 14:48:00 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\bbfc.tmp\svchost.exe" file.
24/02/2010 14:42:59 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ykxx.tmp\svchost.exe" file.
24/02/2010 14:37:58 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\qgth.tmp\svchost.exe" file.
24/02/2010 14:32:57 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\crnj.tmp\svchost.exe" file.
24/02/2010 14:27:54 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\hguy.tmp\svchost.exe" file.
24/02/2010 14:22:53 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\nebc.tmp\svchost.exe" file.
24/02/2010 14:17:52 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\xepl.tmp\svchost.exe" file.
24/02/2010 14:12:50 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\fwuv.tmp\svchost.exe" file.
24/02/2010 14:07:49 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\bmya.tmp\svchost.exe" file.
24/02/2010 14:02:48 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\orbq.tmp\svchost.exe" file.
24/02/2010 13:57:46 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\brbq.tmp\svchost.exe" file.
24/02/2010 13:52:45 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\fwra.tmp\svchost.exe" file.
24/02/2010 13:47:43 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\xuup.tmp\svchost.exe" file.
24/02/2010 13:42:42 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ksvx.tmp\svchost.exe" file.
24/02/2010 13:37:40 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\mpqq.tmp\svchost.exe" file.
24/02/2010 13:32:38 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ikcs.tmp\svchost.exe" file.
24/02/2010 13:27:37 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\kqwn.tmp\svchost.exe" file.
24/02/2010 13:22:35 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\hppy.tmp\svchost.exe" file.
24/02/2010 13:17:34 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\epdn.tmp\svchost.exe" file.
24/02/2010 13:12:33 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\kxyn.tmp\svchost.exe" file.
24/02/2010 13:07:31 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\olju.tmp\svchost.exe" file.
24/02/2010 13:02:30 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\jlqv.tmp\svchost.exe" file.
24/02/2010 12:57:28 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\yoqn.tmp\svchost.exe" file.
24/02/2010 12:52:27 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\mqoe.tmp\svchost.exe" file.
24/02/2010 12:47:26 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\tuvl.tmp\svchost.exe" file.
24/02/2010 12:42:22 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\pvdg.tmp\svchost.exe" file.
24/02/2010 12:34:41 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\gosw.tmp\svchost.exe" file.
24/02/2010 12:29:26 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\avwa.tmp\svchost.exe" file.
24/02/2010 12:24:15 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\hkcj.tmp\svchost.exe" file.
24/02/2010 12:18:52 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\eytu.tmp\svchost.exe" file.
24/02/2010 12:13:39 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\wjpg.tmp\svchost.exe" file.
24/02/2010 12:08:19 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\uodu.tmp\svchost.exe" file.
24/02/2010 12:02:23 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ougd.tmp\svchost.exe" file.
24/02/2010 11:56:37 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\crnb.tmp\svchost.exe" file.
24/02/2010 11:51:29 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\omys.tmp\svchost.exe" file.
24/02/2010 11:46:20 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\xsua.tmp\svchost.exe" file.
24/02/2010 11:41:46 SYSTEM 1848 Sign of "VBS:Malware-gen" has been found in "I:\autorun.inf" file.
24/02/2010 11:40:49 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\bvcg.tmp\svchost.exe" file.
24/02/2010 11:35:41 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\leym.tmp\svchost.exe" file.
24/02/2010 11:30:19 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\mlwy.tmp\svchost.exe" file.
24/02/2010 11:25:11 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\sbag.tmp\svchost.exe" file.
24/02/2010 11:20:03 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\lgkh.tmp\svchost.exe" file.
24/02/2010 11:14:53 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ejxc.tmp\svchost.exe" file.
24/02/2010 11:09:27 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\dusr.tmp\svchost.exe" file.
24/02/2010 11:03:20 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\crdv.tmp\svchost.exe" file.
24/02/2010 10:58:05 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\fmqb.tmp\svchost.exe" file.
24/02/2010 10:52:57 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\wseq.tmp\svchost.exe" file.
24/02/2010 10:47:49 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\qqen.tmp\svchost.exe" file.
24/02/2010 10:42:38 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\doce.tmp\svchost.exe" file.
24/02/2010 10:37:30 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\iocs.tmp\svchost.exe" file.
24/02/2010 10:32:14 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\qfka.tmp\svchost.exe" file.
24/02/2010 10:26:59 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\inhl.tmp\svchost.exe" file.
24/02/2010 10:21:40 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\jcdr.tmp\svchost.exe" file.
23/02/2010 23:58:28 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\oscw.tmp\svchost.exe" file.
23/02/2010 23:53:21 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\nwms.tmp\svchost.exe" file.
23/02/2010 23:48:00 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\fuic.tmp\svchost.exe" file.
23/02/2010 23:42:43 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\lfrp.tmp\svchost.exe" file.
23/02/2010 23:37:29 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ytkq.tmp\svchost.exe" file.
23/02/2010 23:32:22 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\alcd.tmp\svchost.exe" file.
23/02/2010 23:27:13 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\fjba.tmp\svchost.exe" file.
23/02/2010 23:22:02 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ivhq.tmp\svchost.exe" file.
23/02/2010 23:16:48 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\qhcv.tmp\svchost.exe" file.
23/02/2010 23:11:36 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\knrc.tmp\svchost.exe" file.
23/02/2010 23:06:22 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\huta.tmp\svchost.exe" file.
23/02/2010 23:01:10 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\wvgd.tmp\svchost.exe" file.
23/02/2010 22:55:58 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\wgwr.tmp\svchost.exe" file.
23/02/2010 22:50:49 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\brss.tmp\svchost.exe" file.
23/02/2010 22:45:32 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\fmbj.tmp\svchost.exe" file.
23/02/2010 22:40:02 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\sqoi.tmp\svchost.exe" file.
23/02/2010 22:34:50 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\bbhf.tmp\svchost.exe" file.
23/02/2010 22:29:38 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\oyqm.tmp\svchost.exe" file.
23/02/2010 22:24:28 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\syep.tmp\svchost.exe" file.
23/02/2010 22:19:13 SYSTEM 1668 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\rbcx.tmp\svchost.exe" file.
23/02/2010 22:08:23 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\algc.tmp\svchost.exe" file.
23/02/2010 22:03:15 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\jiks.tmp\svchost.exe" file.
23/02/2010 21:57:59 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\osvp.tmp\svchost.exe" file.
23/02/2010 21:52:42 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\walv.tmp\svchost.exe" file.
23/02/2010 21:47:32 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\whru.tmp\svchost.exe" file.
23/02/2010 21:42:23 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\pkgn.tmp\svchost.exe" file.
23/02/2010 21:35:59 SYSTEM 1848 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\mbvx.tmp\svchost.exe" file.
23/02/2010 21:26:11 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\yndh.tmp\svchost.exe" file.
23/02/2010 21:20:31 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\dwso.tmp\svchost.exe" file.
23/02/2010 21:10:03 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\bmtt.tmp\svchost.exe" file.
23/02/2010 21:04:56 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\wlir.tmp\svchost.exe" file.
23/02/2010 20:59:46 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\odmy.tmp\svchost.exe" file.
23/02/2010 20:54:34 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\tmag.tmp\svchost.exe" file.
23/02/2010 20:49:26 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\adwk.tmp\svchost.exe" file.
23/02/2010 20:44:14 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ovkt.tmp\svchost.exe" file.
23/02/2010 20:39:06 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\npbb.tmp\svchost.exe" file.
23/02/2010 20:33:35 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ffmo.tmp\svchost.exe" file.
23/02/2010 20:28:24 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\dcbv.tmp\svchost.exe" file.
23/02/2010 20:22:18 SYSTEM 1712 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\vrxn.tmp\svchost.exe" file.
23/02/2010 20:14:23 SYSTEM 1796 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\mpcx.tmp\svchost.exe" file.
23/02/2010 20:09:11 SYSTEM 1796 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\cppc.tmp\svchost.exe" file.
23/02/2010 20:04:04 SYSTEM 1796 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ycvx.tmp\svchost.exe" file.
23/02/2010 19:58:48 SYSTEM 1796 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\uamk.tmp\svchost.exe" file.
23/02/2010 19:53:23 SYSTEM 1796 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\tqvc.tmp\svchost.exe" file.
23/02/2010 18:20:57 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\puyt.tmp\svchost.exe" file.
23/02/2010 18:15:49 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\evwq.tmp\svchost.exe" file.
23/02/2010 18:10:40 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ymdv.tmp\svchost.exe" file.
23/02/2010 18:05:25 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\cfxl.tmp\svchost.exe" file.
23/02/2010 18:00:17 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\xyfl.tmp\svchost.exe" file.
23/02/2010 17:55:09 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\adki.tmp\svchost.exe" file.
23/02/2010 17:50:02 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\acfi.tmp\svchost.exe" file.
23/02/2010 17:44:50 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\pxmk.tmp\svchost.exe" file.
23/02/2010 17:39:42 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ukpe.tmp\svchost.exe" file.
23/02/2010 17:34:32 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\lecm.tmp\svchost.exe" file.
23/02/2010 17:29:22 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\kbua.tmp\svchost.exe" file.
23/02/2010 17:24:11 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\phjt.tmp\svchost.exe" file.
23/02/2010 17:17:34 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\rysl.tmp\svchost.exe" file.
23/02/2010 17:12:32 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\jbcu.tmp\svchost.exe" file.
23/02/2010 17:07:25 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\hymv.tmp\svchost.exe" file.
23/02/2010 17:02:17 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\kcbk.tmp\svchost.exe" file.
23/02/2010 16:57:17 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\761C.tmp" file.
23/02/2010 16:56:57 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\docy.tmp\svchost.exe" file.
23/02/2010 16:51:28 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ocib.tmp\svchost.exe" file.
23/02/2010 16:46:20 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\oafq.tmp\svchost.exe" file.
23/02/2010 16:41:12 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\iynj.tmp\svchost.exe" file.
23/02/2010 16:36:05 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\jmpg.tmp\svchost.exe" file.
23/02/2010 16:30:58 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\tkhq.tmp\svchost.exe" file.
23/02/2010 16:24:15 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\yjqq.tmp\svchost.exe" file.
23/02/2010 16:19:03 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\jisl.tmp\svchost.exe" file.
23/02/2010 16:13:56 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\rchp.tmp\svchost.exe" file.
23/02/2010 16:08:49 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\buvy.tmp\svchost.exe" file.
23/02/2010 16:00:19 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\cpds.tmp\svchost.exe" file.
23/02/2010 15:34:14 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\vxuq.tmp\svchost.exe" file.
23/02/2010 15:29:07 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\jjgn.tmp\svchost.exe" file.
23/02/2010 15:23:59 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\cwsy.tmp\svchost.exe" file.
23/02/2010 15:18:53 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\qbsi.tmp\svchost.exe" file.
23/02/2010 15:11:25 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\usei.tmp\svchost.exe" file.
23/02/2010 15:05:55 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\mvul.tmp\svchost.exe" file.
23/02/2010 15:00:46 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\yvsq.tmp\svchost.exe" file.
23/02/2010 14:55:36 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\dyef.tmp\svchost.exe" file.
23/02/2010 14:50:27 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\nvxf.tmp\svchost.exe" file.
23/02/2010 14:45:18 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\xepa.tmp\svchost.exe" file.
23/02/2010 14:37:08 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\jhed.tmp\svchost.exe" file.
23/02/2010 14:31:59 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ryru.tmp\svchost.exe" file.
23/02/2010 14:26:49 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ilce.tmp\svchost.exe" file.
23/02/2010 14:21:37 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\veek.tmp\svchost.exe" file.
23/02/2010 14:16:29 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\tkfl.tmp\svchost.exe" file.
23/02/2010 14:11:21 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\jbed.tmp\svchost.exe" file.
23/02/2010 14:06:13 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\pymk.tmp\svchost.exe" file.
23/02/2010 14:00:58 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\pjfh.tmp\svchost.exe" file.
23/02/2010 13:55:46 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\qtrq.tmp\svchost.exe" file.
23/02/2010 13:50:33 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\xefy.tmp\svchost.exe" file.
23/02/2010 13:45:20 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\hcfa.tmp\svchost.exe" file.
23/02/2010 13:36:10 SYSTEM 1820 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ppmy.tmp\svchost.exe" file.
23/02/2010 12:49:36 Stef 1896 Sign of "Win32:DNSChanger-VJ [Trj]" has been found in "C:\Windows\MEMORY.DMP" file.
23/02/2010 11:09:42 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\vffx.tmp\svchost.exe" file.
23/02/2010 10:55:18 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ajke.tmp\svchost.exe" file.
23/02/2010 10:50:07 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\rvfm.tmp\svchost.exe" file.
23/02/2010 10:44:55 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\enwi.tmp\svchost.exe" file.
23/02/2010 10:39:28 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\mvpt.tmp\svchost.exe" file.
23/02/2010 10:34:20 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\naqs.tmp\svchost.exe" file.
23/02/2010 10:29:13 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\aafo.tmp\svchost.exe" file.
23/02/2010 10:24:05 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\lpxd.tmp\svchost.exe" file.
23/02/2010 10:18:56 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\lfuj.tmp\svchost.exe" file.
23/02/2010 10:08:28 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\wwbh.tmp\svchost.exe" file.
23/02/2010 10:03:19 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\xise.tmp\svchost.exe" file.
23/02/2010 09:58:11 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\dtcm.tmp\svchost.exe" file.
23/02/2010 09:52:59 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\jrld.tmp\svchost.exe" file.
23/02/2010 09:47:49 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ptpu.tmp\svchost.exe" file.
23/02/2010 09:42:30 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\aphe.tmp\svchost.exe" file.
23/02/2010 09:37:13 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\awde.tmp\svchost.exe" file.
23/02/2010 09:31:39 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\sdtj.tmp\svchost.exe" file.
23/02/2010 09:26:22 SYSTEM 1824 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\eyci.tmp\svchost.exe" file.
23/02/2010 01:27:55 SYSTEM 1688 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\ouxb.tmp\svchost.exe" file.
23/02/2010 01:22:45 SYSTEM 1688 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\dbrr.tmp\svchost.exe" file.
23/02/2010 01:17:34 SYSTEM 1688 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\cuva.tmp\svchost.exe" file.
23/02/2010 01:12:22 SYSTEM 1688 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\vfsm.tmp\svchost.exe" file.
23/02/2010 01:06:39 SYSTEM 1688 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\bfqk.tmp\svchost.exe" file.
23/02/2010 01:00:39 SYSTEM 1688 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\cqnq.tmp\svchost.exe" file.
23/02/2010 00:55:27 SYSTEM 1688 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\eyuo.tmp\svchost.exe" file.
23/02/2010 00:50:12 SYSTEM 1688 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\desb.tmp\svchost.exe" file.
23/02/2010 00:44:51 SYSTEM 1688 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\uhcv.tmp\svchost.exe" file.
23/02/2010 00:39:40 SYSTEM 1688 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\fskp.tmp\svchost.exe" file.
23/02/2010 00:34:29 SYSTEM 1688 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\imqe.tmp\svchost.exe" file.
23/02/2010 00:28:22 SYSTEM 1688 Sign of "Win32:Malware-gen" has been found in "C:\Windows\Temp\eihe.tmp\svchost.exe" file.
22/02/2010 15:21:46 SYSTEM 532 Sign of "VBS:Malware-gen" has been found in "H:\autorun.inf" file.
22/02/2010 12:27:28 Stef 2832 Sign of "Win32:Rootkit-gen [Rtk]" has been found in "c:\windows\system32\drivers\agp440.sys" file.
22/02/2010 12:00:16 SYSTEM 2016 Sign of "JS:Prontexi-R [Trj]" has been found in "C:\Users\Stef\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Q4PKPV38\login[1].htm" file.
22/02/2010 11:21:48 SYSTEM 1924 Sign of "Win32:Malware-gen" has been found in "C:\Users\Stef\AppData\Local\Temp\mcbvcpae.exe" file.
22/02/2010 11:21:30 SYSTEM 1924 Sign of "Win32:Malware-gen" has been found in "C:\Users\Stef\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UKX9L8U3\vzgomuf[1].htm" file.
22/02/2010 11:20:45 SYSTEM 1924 Sign of "Win32:Malware-gen" has been found in "C:\Users\Stef\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZUBIQYLI\vzgomuf[1].htm" file.
22/02/2010 11:20:41 SYSTEM 1924 Sign of "Win32:Malware-gen" has been found in "C:\Users\Stef\AppData\Local\Temp\mcbvcpae.exe" file.
0
Réponse 23 / 28
Utilisateur anonyme
 
Fais ceci :

• Télécharge gmer sur ton bureau à partir de ce lien ==> http://www.gmer.net/#files en cliquant sur le bouton "Download EXE".
Note : le fichier téléchargé aura un nom aléatoire, c'est normal, garde ce nom

• Lance gmer à partir du fichier au nom aléatoire

• Un scan va se lancer dès le lancement, laisse le faire.

• Si il détecte tout de suite le rootkit, il va te proposer de scanner le PC en entier, accepte.
• Sinon, coche sur la droite les cases "Services", "Registry" et "Files" et clique sur le bouton scan

• Laisse travailler l'outil

• A la fin du scan, clique sur le bouton Save... et enregistre le rapport sur ton bureau

• Copie/colle le contenu du rapport dans ta réponse

Puis refais un rapport RSIT stp.
0
Réponse 24 / 28
tamy
 
Voici le CR GMER et je suis entrain de passer de RSIT :

GMER 1.0.15.15281 - http://www.gmer.net
Rootkit scan 2010-02-25 15:14:16
Windows 6.0.6002 Service Pack 2
Running: hsu6jm19.exe; Driver: C:\Users\Stef\AppData\Local\Temp\kwrdypog.sys

---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s1 6988309
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s2 272468659
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@h0 2
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0x3C 0x74 0x7E 0xC8 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files\DAEMON Tools Lite\
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0xD4 0xC3 0x97 0x02 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0xB6 0xED 0xB1 0x53 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0x8B 0xC6 0x4F 0x95 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh 0x2A 0x72 0xD9 0x4A ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 1
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0x3C 0x74 0x7E 0xC8 ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files\DAEMON Tools Lite\
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0xD4 0xC3 0x97 0x02 ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0xB6 0xED 0xB1 0x53 ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0x8B 0xC6 0x4F 0x95 ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0 0
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh 0x2A 0x72 0xD9 0x4A ...

---- EOF - GMER 1.0.15 ----
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 28
tamy
 
CR RSIT :

Logfile of random's system information tool 1.06 (written by random/random)
Run by Stef at 2010-02-25 15:15:36
Microsoft® Windows Vista™ Professionnel Service Pack 2
System drive C: has 33 GB (31%) free of 105 GB
Total RAM: 2038 MB (38% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:15:46, on 25/02/2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18882)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Apoint\Apoint.exe
C:\Program Files\sony\VAIO Camera Utility\VCUServe.exe
C:\Program Files\sony\ISB Utility\ISBMgr.exe
C:\Program Files\Sony\VAIO Update 5\VAIOUpdt.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Mindjet\MindManager 7\MmReminderService.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\sony\Network Utility\LANUtil.exe
C:\Program Files\Neuf\Kit\9props.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Program Files\Apoint\ApMsgFwd.exe
C:\Program Files\Apoint\Apntex.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Users\Stef\Desktop\RSIT.exe
C:\Program Files\trend micro\Stef.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.fr/0SEFRFR/SAOS02
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.club-vaio.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:5555
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: CmjBrowserHelperObject Object - {07A11D74-9D25-4fea-A833-8B0D76A5577A} - C:\Program Files\Mindjet\MindManager 7\Mm7InternetExplorer.dll
O2 - BHO: Aide à la navigation SFR - {0F6E720A-1A6B-40E1-A294-1D4D19F156C8} - C:\Program Files\Neuf\Kit\SFRNavErrorHelper.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.2.8.7.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
O4 - HKLM\..\Run: [DRCU] "C:\Program Files\Sony\DRCU\DRCU.exe"
O4 - HKLM\..\Run: [VAIOCameraUtility] "C:\Program Files\Sony\VAIO Camera Utility\VCUServe.exe"
O4 - HKLM\..\Run: [ISBMgr.exe] "C:\Program Files\Sony\ISB Utility\ISBMgr.exe"
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SFR-PC] "C:\Program Files\SFR-PC\SFR-PC.exe" /check
O4 - HKLM\..\Run: [MMReminderService] C:\Program Files\Mindjet\MindManager 7\MMReminderService.exe
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton Internet Security\osCheck.exe"
O4 - HKLM\..\Run: [IS CfgWiz] "C:\Program Files\Common Files\Symantec Shared\OPC\{31011D49-D90C-4da0-878B-78D28AD507AF}\cltUIStb.exe" /MODULE CfgWiz /GUID {BC8D3EAF-F864-4d4b-AB4D-B3D0C32E2840} /MODE CfgWiz /CMDLINE "REBOOT"
O4 - HKCU\..\Run: [NSUFloatingUI] "C:\Program Files\Sony\Network Utility\LANUtil.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [Connexion SFR 9props.exe] "C:\Program Files\Neuf\Kit\9props.exe" /trayicon
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Startup: Microsoft Office Groove.lnk = C:\Program Files\Microsoft Office\Office12\GROOVE.EXE
O4 - Global Startup: Bluetooth Manager.lnk = ?
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Envoyer à Mindjet MindManager - {941E1A34-C6AF-4baa-A973-224F9C3E04BF} - C:\Program Files\Mindjet\MindManager 7\Mm7InternetExplorer.dll
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.2.8.7.dll/206 (file missing)
O13 - Gopher Prefix:
O15 - Trusted Zone: http://intranet.trexia.fr
O16 - DPF: {04CB5B64-5915-4629-B869-8945CEBADD21} (Module de délivrance de certificat MINEFI) - https://static.impots.gouv.fr/abos/static/securite/certdgi1.cab
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - http://www.mypix.com/fr/fr/importer/newconf/aurigma5.8.1.0/ImageUploader5.cab
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
O16 - DPF: {82774781-8F4E-11D1-AB1C-0000F8773BF0} (DLC Class) - https://transfers.ds.microsoft.com/FTM/TransferSource/grTransferCtrl.cab
O16 - DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848} (Image Uploader Control) - http://www.mypix.com/fr/fr/importer/ImageUploader4.cab
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = trexia.fr
O17 - HKLM\Software\..\Telephony: DomainName = trexia.fr
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = trexia.fr
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = trexia.fr
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: hihosove.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adobe Active File Monitor V5 (AdobeActiveFileMonitor5.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AvLib\MSCSPTISRV.exe
O23 - Service: NSUService - Sony Corporation - C:\Program Files\sony\Network Utility\NSUService.exe
O23 - Service: SonicStage Back-End Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AvLib\SsBeSvc.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AvLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AvLib\SSScsiSV.exe
O23 - Service: SigmaTel Audio Service (STacSV) - IDT, Inc. - C:\Windows\system32\stacsv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe
O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files\sony\VAIO Event Service\VESMgr.exe
O23 - Service: VAIO Media Integrated Server (VAIOMediaPlatform-IntegratedServer-AppServer) - Sony Corporation - C:\Program Files\sony\VAIO Media Integrated Server\VMISrv.exe
O23 - Service: VAIO Media Integrated Server (HTTP) (VAIOMediaPlatform-IntegratedServer-HTTP) - Sony Corporation - C:\Program Files\sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
O23 - Service: VAIO Media Integrated Server (UPnP) (VAIOMediaPlatform-IntegratedServer-UPnP) - Sony Corporation - C:\Program Files\sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
O23 - Service: VAIO Media Gateway Server (VAIOMediaPlatform-Mobile-Gateway) - Sony Corporation - C:\Program Files\sony\VAIO Media Integrated Server\Platform\VmGateway.exe
O23 - Service: VAIO Media Content Collection (VAIOMediaPlatform-UCLS-AppServer) - Sony Corporation - C:\Program Files\sony\VAIO Media Integrated Server\UCLS.exe
O23 - Service: VAIO Media Content Collection (HTTP) (VAIOMediaPlatform-UCLS-HTTP) - Sony Corporation - C:\Program Files\sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
O23 - Service: VAIO Media Content Collection (UPnP) (VAIOMediaPlatform-UCLS-UPnP) - Sony Corporation - C:\Program Files\sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
O23 - Service: VAIO Entertainment UPnP Client Adapter (Vcsw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
O23 - Service: VUAgent - Sony Corporation - C:\Program Files\sony\VAIO Update 5\VUAgent.exe
O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
O23 - Service: VAIO Entertainment File Import Service (VzFw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
0
Réponse 26 / 28
Utilisateur anonyme
 
• Sous XP : Double clique sur OTM.exe (présent sur ton bureau)
• Sous Vista : Fais un clic droit sur OTM.exe (présent sur ton bureau) et sélectionne "Exécuter en tant qu'administrateur"

• Copie la liste ci-dessous et colle-la dans le cadre jaune (celui de gauche) de OTM sous Paste Instructions for Items to be Moved 

:files
C:\WINDOWS\SYSTEM32\PEDEWOVO.DLL
C:\WINDOWS\SYSTEM32\hihosove.dll

:reg
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"=""

:commands
[emptytemp]


• Clique sur le bouton MoveIt! pour lancer la suppression.

• Clique sur le bouton YES pour redémarrer le PC

• Un rapport s'ouvre au redémarrage du PC, copie/colle le dans ta réponse

Le rapport est sauvegardé dans C:\_OTM\MovedFiles
0
Réponse 27 / 28
tamy
 
Merci beaucoup pour ton aide mais j'avais besoin de recuperer mon ordi rapidement!
il s'est bloqué vendredi matin du coup j'ai tout formaté! exit le virus ;)

tout va bien et ca m'a permis de mettre windows 7!

Merci en tout cas de ta patience et tes conseils!

bonne journée
0
Réponse 28 / 28
Utilisateur anonyme
 
D'accord, merci d'avoir prévenu :)
On peut donc mettre le sujet en résolu.
0
Précédent
  • 1
  • 2

Discussions similaires

svp 32Gb est il egal a 32Go??
William Fernand -
nemrod18 -

3 réponses