trojan swizzor.1 (1/1)

Connexion au forum informatique de Sur-la-Toile

La discussion « trojan swizzor.1 » se trouve dans le forum « Virus, troyens, etc... »

	trojan swizzor.1
	» Liste des Forums » Virus, troyens, etc... » Discussion

31 messages dans la rubrique Dépannage Informatique

6 messages dans la rubrique Virus, troyens, etc...

2 messages dans la rubrique Programmation

Le 27 août à 11:24 #

Salut à tous voila mon probleme j'ai chopé le virus au doux non de trojan swizzor.1 il a ete détecté par bitdefender mais ce dernier n'arrive pas à le désinfecter ni à le déplacer.
mon pc ralentit méchament depuis voici le rapport hijackthis. aidez moi svp merci:

Code: Cacher

  Logfile of HijackThis v1.99.1
  Scan saved at 11:07:40, on 27/08/2008
  Platform: Windows XP SP3 (WinNT 5.01.2600)
  MSIE: Internet Explorer v7.00 (7.00.6000.16705)
  
  Running processes:
  C:\WINDOWS\System32\smss.exe
  C:\WINDOWS\system32\csrss.exe
  C:\WINDOWS\system32\winlogon.exe
  C:\WINDOWS\system32\services.exe
  C:\WINDOWS\system32\lsass.exe
  C:\WINDOWS\system32\Ati2evxx.exe
  C:\WINDOWS\system32\svchost.exe
  C:\WINDOWS\system32\svchost.exe
  C:\WINDOWS\System32\svchost.exe
  C:\WINDOWS\system32\Ati2evxx.exe
  C:\WINDOWS\System32\svchost.exe
  C:\WINDOWS\system32\svchost.exe
  C:\WINDOWS\system32\spoolsv.exe
  C:\WINDOWS\Explorer.EXE
  C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
  C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
  C:\WINDOWS\system32\HPZipm12.exe
  C:\Program Files\Spyware Doctor\pctsAuxs.exe
  C:\Program Files\Spyware Doctor\pctsSvc.exe
  C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
  C:\Program Files\Spyware Doctor\pctsTray.exe
  C:\Program Files\Belgacom\bin\sprtsvc.exe
  C:\WINDOWS\System32\svchost.exe
  C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
  C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
  C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
  C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
  C:\Program Files\Softwin\BitDefender10\vsserv.exe
  C:\WINDOWS\System32\alg.exe
  C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
  C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe
  C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
  C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
  C:\Program Files\Creative\Creative Live! Cam\VideoFX\StartFX.exe
  C:\WINDOWS\V0220Mon.exe
  C:\Program Files\Belgacom\bin\sprtcmd.exe
  C:\PROGRA~1\Softwin\BITDEF~1\bdmcon.exe
  C:\Program Files\Softwin\BitDefender10\bdagent.exe
  C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
  F:\Ancien Disque Sauvegarde\ClocX\ClocX.exe
  C:\WINDOWS\system32\ctfmon.exe
  C:\Program Files\Creative\Creative Live! Cam\Live! Cam Manager\CTLCMgr.exe
  C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
  C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
  C:\Program Files\Logitech\Desktop Messenger76480\Program\LogitechDesktopMessenger.exe
  C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
  C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
  C:\Program Files\Windows Live\Messenger\msnmsgr.exe
  C:\Program Files\Windows Live\Messenger\usnsvc.exe
  C:\Program Files\Spyware Doctor\pctsGui.exe
  C:\PROGRA~1\Softwin\BITDEF~1\bdlite.exe
  C:\Program Files\Mozilla Firefox\firefox.exe
  C:\Program Files\WinRAR\WinRAR.exe
  C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Rar$EX00.734\HijackThis.exe
  
  R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
  R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = 
  R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
  R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
  R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
  R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
  R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
  R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
  R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://go.microsoft.com/fwlink/?LinkId=54843
  R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
  O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
  O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
  O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
  O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
  O2 - BHO: (no name) - {a981dcd2-ad48-4260-9e35-7e7602f76027} - (no file)
  O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier.1.1119.1736\swg.dll
  O4 - HKLM\..\Run: [Smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
  O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
  O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
  O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe"
  O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
  O4 - HKLM\..\Run: [ATICustomerCare] "C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe"
  O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
  O4 - HKLM\..\Run: [AVFX Engine] C:\Program Files\Creative\Creative Live! Cam\VideoFX\StartFX.exe
  O4 - HKLM\..\Run: [V0220Mon.exe] C:\WINDOWS\V0220Mon.exe
  O4 - HKLM\..\Run: [Belgacom] "C:\Program Files\Belgacom\bin\sprtcmd.exe" /P Belgacom
  O4 - HKLM\..\Run: [BDMCon] C:\PROGRA~1\Softwin\BITDEF~1\bdmcon.exe
  O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\Softwin\BitDefender10\bdagent.exe"
  O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe"  -osboot
  O4 - HKLM\..\Run: [ISTray] "C:\Program Files\Spyware Doctor\pctsTray.exe"
  O4 - HKLM\..\Run: [ClocX] F:\Ancien Disque Sauvegarde\ClocX\ClocX.exe
  O4 - HKLM\..\RunOnce: [vmc] C:\PROGRA~1\FICHIE~1\SONYSH~1\OpenMG\Regsvr32.exe /s C:\PROGRA~1\FICHIE~1\SONYSH~1\AVLib\vmc.dll
  O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
  O4 - HKCU\..\Run: [Creative Live! Cam Manager] "C:\Program Files\Creative\Creative Live! Cam\Live! Cam Manager\CTLCMgr.exe"
  O4 - HKCU\..\Run: [SpybotSD TeaTimer] "C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe"
  O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger76480\Program\LogitechDesktopMessenger.exe
  O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
  O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger76480\Program\LDMConf.exe
  O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
  O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
  O9 - Extra button: (no name) - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - (no file)
  O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
  O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
  O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
  O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
  O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
  O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
  O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
  O11 - Options group: [INTERNATIONAL] International*
  O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1214850095921
  O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2005111401/housecall.trendmicro.com/housecall/xscan53.cab
  O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} - http://fichiers.touslesdrivers.com/fichiers/hardwaredetection/hardwaredetection_3_0_0_32.cab
  O16 - DPF: {B7D07999-2ADB-4AEB-997E-F61CB7B2E2CD} (TSEasyInstallX Control) - http://www.trendsecure.com/easy_install/_activex/fr/TSEasyInstallX.CAB
  O18 - Protocol: bw+0 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw+0s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw-0 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw-0s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw00 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw00s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw10 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw10s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw20 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw20s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw30 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw30s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw40 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw40s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw50 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw50s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw60 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw60s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw70 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw70s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw80 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw80s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw90 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bw90s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwa0 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwa0s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwb0 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwb0s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwc0 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwc0s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwd0 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwd0s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwe0 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwe0s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwf0 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwf0s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger76480\Program\GAPlugProtocol-8876480.dll
  O18 - Protocol: bwg0 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwg0s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwh0 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwh0s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwi0 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwi0s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwj0 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwj0s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwk0 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwk0s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwl0 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwl0s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwm0 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwm0s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwn0 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwn0s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwo0 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwo0s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwp0 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwp0s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwq0 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwq0s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwr0 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwr0s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bws0 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bws0s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwt0 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwt0s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwu0 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwu0s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwv0 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwv0s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bww0 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bww0s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwx0 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwx0s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwy0 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwy0s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwz0 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: bwz0s - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
  O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
  O18 - Protocol: offline-8876480 - {7052EC66-E84E-4C1F-AD81-81FB117D9144} - C:\Program Files\Logitech\Desktop Messenger76480\Program\BWPlugProtocol-8876480.dll
  O18 - Protocol: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll
  O20 - Winlogon Notify: dimsntfy - %SystemRoot%\System32\dimsntfy.dll (file missing)
  O20 - Winlogon Notify: WRNotifier - C:\WINDOWS\SYSTEM32\WRLogonNTF.dll
  O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
  O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
  O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
  O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe" /service (file missing)
  O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
  O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver50\Intel 32\IDriverT.exe
  O23 - Service: BitDefender Desktop Update Service (LIVESRV) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe" /service (file missing)
  O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
  O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
  O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
  O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
  O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
  O23 - Service: SonicStage Back-End Service - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SsBeSvc.exe
  O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
  O23 - Service: SupportSoft Sprocket Service (belgacom) (sprtsvc_belgacom) - SupportSoft, Inc. - C:\Program Files\Belgacom\bin\sprtsvc.exe
  O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
  O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
  O23 - Service: SupportSoft RemoteAssist - SupportSoft, Inc. - C:\Program Files\Fichiers communs\Supportsoft\bin\ssrc.exe
  O23 - Service: BitDefender Virus Shield (VSSERV) - Unknown owner - C:\Program Files\Softwin\BitDefender10\vsserv.exe" /service (file missing)
  O23 - Service: Moteur Webroot Spy Sweeper (WebrootSpySweeperService) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
  O23 - Service: BitDefender Communicator (XCOMM) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe" /service (file missing)

(Modifié par tout_pour_la_science le 27-08-2008 à 11:35)

299 messages dans la rubrique Virus, troyens, etc...

254 messages dans la rubrique Dépannage Informatique

14 ans.

Le 27 août à 11:32 #

Salut,

Fait ceci :

Télécharger sur le bureau Malwarebyte's Anti-Malware

=> double-clic sur mbam-setup pour lancer l'installation
=> Installer simplement sans rien modifier

Si Windows Vista faire ceci sinon ne pas le faire :
=> démarrer ==> panneau de configuration
=> Double Clic sur Comptes utilisateurs
=> Clic Activer ou désactiver le contrôle des comptes utilisateurs
=> Décocher Utiliser le contrôle des comptes utilisateurs pour vous aider à protéger votre ordinateur
=> clic ok
=> redémarrer le PC

=> Quand le programme lancé ==> onglet Mise à jour cliquer sur => Recherche de mise à jour
Onglet Recherche => cocher Exécuter un examen complet
=> Clic Rechercher
=> Eventuellement décocher les disque à ne pas analyser
=> Clic Lancer l'examen
=> En fin de scan , si infection trouvée
==> Clic Afficher résultat
=> Fermer vos applications en cours
=> Vérifier si tout est coché et clic Supprimer la sélection

=> un rapport s'ouvre le copier et le coller dans la réponse

--------------------------------------------------------------------------------------

Télécharger et enregistrer sur le bureau Combofix

=> Double-clic sur Combofix
=> Presser 1 quand demandé
=> Attendre la fermeture de l’outil ( 5 à 10 mn)
=> Copier/coller le rapport dans la réponse
=> Un rapport dans C:\Combofix.txt à mettre dans la réponse
=> Qoobox dans C:\ à supprimer

-------------------------------------------------------------------------

Télécharge sur le bureau Hijackthis
=> Double-clic dessus
=> Clic Do a system scan and save the log
=> Copier le rapport, le coller dans la réponse

+++

Le 27 août à 14:21 #

voici le rapport de malwarbytes, j'ai scanné encore avec bitdefender mais tjs la présence de trojan.swizzor.1 des que je 'ai le rapport de bitdefender je le met . merci de ton aide

Malwarebytes' Anti-Malware 1.25
Version de la base de données: 1088
Windows 5.1.2600 Service Pack 3

14:07:26 27/08/2008
mbam-log-08-27-2008 (14-07-26).txt

Type de recherche: Examen complet (C:\|E:\|F:\|)
Eléments examinés: 134007
Temps écoulé: 1 hour(s), 49 minute(s), 39 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 1
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\contim (Trojan.Vundo) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Le 27-08-2008 à 11:32, leman-74 :
Salut,

Fait ceci :

Télécharger sur le bureau Malwarebyte's Anti-Malware

=> double-clic sur mbam-setup pour lancer l'installation
=> Installer simplement sans rien modifier

Si Windows Vista faire ceci sinon ne pas le faire :
=> démarrer ==> panneau de configuration
=> Double Clic sur Comptes utilisateurs
=> Clic Activer ou désactiver le contrôle des comptes utilisateurs
=> Décocher Utiliser le contrôle des comptes utilisateurs pour vous aider à protéger votre ordinateur
=> clic ok
=> redémarrer le PC

=> Quand le programme lancé ==> onglet Mise à jour cliquer sur => Recherche de mise à jour
Onglet Recherche => cocher Exécuter un examen complet
=> Clic Rechercher
=> Eventuellement décocher les disque à ne pas analyser
=> Clic Lancer l'examen
=> En fin de scan , si infection trouvée
==> Clic Afficher résultat
=> Fermer vos applications en cours
=> Vérifier si tout est coché et clic Supprimer la sélection

=> un rapport s'ouvre le copier et le coller dans la réponse

--------------------------------------------------------------------------------------

Télécharger et enregistrer sur le bureau Combofix

=> Double-clic sur Combofix
=> Presser 1 quand demandé
=> Attendre la fermeture de l’outil ( 5 à 10 mn)
=> Copier/coller le rapport dans la réponse
=> Un rapport dans C:\Combofix.txt à mettre dans la réponse
=> Qoobox dans C:\ à supprimer

-------------------------------------------------------------------------

Télécharge sur le bureau Hijackthis
=> Double-clic dessus
=> Clic Do a system scan and save the log
=> Copier le rapport, le coller dans la réponse

+++

14 ans.

Le 27 août à 15:56 #

Euh , peut-etre faire en entier ce que je t'ai demander ! Nan ?

Maintenant tu fais un ComboFix + un HijackThis !

++

» Liste des Forums » Virus, troyens, etc...

Ces discussions pourraient vous intéresser également:

TROJAN.SWIZZOR.DH
trojan Win32:Swizzor-gen [Trj]

Trojan Swizzor dh virus

Trojan win32: swizzor
Trojan- Donloader.Win32.Swiz zor.do

Navigation

Connectés

Il y a actuellement 668 visiteurs et 12 toiliens en ligne, ainsi que 9 connectés sur le tchat.

Recherche

Annonces

Partenaires

Sauf mention contraire, le contenu du blog et du forum est sous licence Creative Commons By-Sa. Vous avez le droit de le reproduire à condition de citer l'auteur, de faire un lien vers la page d'origine, et de partager vos travaux dérivés selon les mêmes conditions.

Conditions d'utilisation -

Partenaires: [Informatique Multimédia] [Portail du Maroc] [Actualité High Tech]
[Tutoriaux Photoshop] [éligibilité ADSL] [Astuces Windows]

Page générée en 719 millisecondes sur WWW1.

trojan swizzor.1

Participer! →

philos1971 →

Le 27 août à 11:24 #

leman-74 →