Possible virus restant sur mon ordinateur/Cheval de troie ?

Aide à la désinfection pour supprimer les virus, adwares, ransomwares, trojans.

Modérateurs : Mods Windows, Helper

Jeyrhum
Messages : 1
Inscription : 11 janv. 2024 04:08

Possible virus restant sur mon ordinateur/Cheval de troie ?

par Jeyrhum »

Bonjour, j'ai supprimé récemment un cheval de troie avec mon antivirus, j'ai bien peur qu'il reste des traces. De + j'ai remarqué des activités inhabituelles sur mon adresse mail (compte invites gmail avec un modèle de mobile inconnu). J'ai renforcé la sécurité de mon email et j'ai formaté mon pc, mais j'ai actuellement 2 partitions et je ne sais pas comment procéder pour n'en avoir qu'une. Voici un rapport HiJackThis si vous voulez bien m'aider ^^. Merci d'avance.

Logfile of HijackThis+ (Plus) build 2023-12-21 Beta v.3.3.0.11

Code : Tout sélectionner

Platform:  x64 Windows 11 (Home), 10.0.22631.3007 (ReleaseId: 2009, 23H2), Service Pack: 0
Time:      11.01.2024 - 04:10 (UTC+01:00)
Language:  OS: French (0x40C). Display: French (0x40C). Non-Unicode: French (0x40C)
Memory:    10411 MiB Free. Loading RAM (37 %), CPU (6 %)
Elevated:  Yes
Ran by:    dupot	(group: Administrators; type: Microsoft) on DESKTOP-MDRRZZK, FirstRun: no

Chrome:  120.0.6099.217
Internet Explorer: 11.0.22621.1
Default: "C:\Program Files\Google\Chrome\Application\chrome.exe" --single-argument %1 (Google Chrome)

Boot mode: Normal (Secure Boot: Off)

Running processes:
Number | Path
  11  C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
   1  C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
   6  C:\Program Files (x86)\Microsoft\EdgeWebView\Application\120.0.2210.121\msedgewebview2.exe
   1  C:\Program Files\Bitdefender Agent\27.0.1.266\DiscoverySrv.exe
   1  C:\Program Files\Bitdefender Agent\ProductAgentService.exe
   1  C:\Program Files\Bitdefender Agent\redline\bdredline.exe
   1  C:\Program Files\Bitdefender\Bitdefender Security App\bdagent.exe
   1  C:\Program Files\Bitdefender\Bitdefender Security App\bdservicehost.exe
   1  C:\Program Files\Bitdefender\Bitdefender Security App\bdtrackersnmh.exe
   1  C:\Program Files\Bitdefender\Bitdefender Security App\Safepay\bdservicehost.exe
   1  C:\Program Files\Bitdefender\Bitdefender Security App\seccenter.exe
   1  C:\Program Files\Bitdefender\Bitdefender Security\bdntwrk.exe
   3  C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe
   2  C:\Program Files\Bitdefender\Bitdefender Security\bduserhost.exe
   1  C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe
   1  C:\Program Files\Bitdefender\Bitdefender Security\wsccommunicator.exe
   1  C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnapp.exe
   1  C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnService.exe
   1  C:\Program Files\Bitdefender\Bitdefender VPN\UnifiedSDK.Service\UnifiedSDK.Service.exe
   1  C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
  16  C:\Program Files\Google\Chrome\Application\chrome.exe
   2  C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
   1  C:\Program Files\WindowsApps\microsoft.desktopappinstaller_1.17.10691.0_x64__8wekyb3d8bbwe\WindowsPackageManagerServer.exe
   1  C:\Program Files\WindowsApps\microsoftwindows.client.webexperience_421.20070.195.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
   1  C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe
   1  C:\Users\dupot\AppData\Local\Microsoft\OneDrive\23.246.1127.0002\FileCoAuth.exe
   1  C:\Users\dupot\AppData\Local\Microsoft\OneDrive\OneDrive.exe
   1  C:\Users\dupot\Downloads\HiJackThis\HiJackThis.exe
   2  C:\Windows\explorer.exe
   1  C:\Windows\System32\AggregatorHost.exe
   1  C:\Windows\System32\ApplicationFrameHost.exe
   1  C:\Windows\System32\audiodg.exe
   1  C:\Windows\System32\backgroundTaskHost.exe
   1  C:\Windows\System32\cmd.exe
   3  C:\Windows\System32\conhost.exe
   2  C:\Windows\System32\csrss.exe
   1  C:\Windows\System32\ctfmon.exe
   1  C:\Windows\System32\DataExchangeHost.exe
   3  C:\Windows\System32\dllhost.exe
   1  C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_49b621720141a009\AsusAppService\AsusAppService.exe
   1  C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_49b621720141a009\ASUSLinkNear\AsusLinkNear.exe
   1  C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_49b621720141a009\ASUSLinkRemote\AsusLinkRemote.exe
   1  C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_49b621720141a009\AsusOptimization\AsusOptimization.exe
   1  C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_49b621720141a009\ASUSSoftwareManager\AsusSoftwareManager.exe
   1  C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_49b621720141a009\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe
   1  C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_49b621720141a009\ASUSSwitch\AsusSwitch.exe
   2  C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_49b621720141a009\ASUSSystemAnalysis\AsusSystemAnalysis.exe
   1  C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_49b621720141a009\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
   1  C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe
   1  C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe
   1  C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsMonStartupTask64.exe
   1  C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_6c1db4160fc7f113\Intel_PIE_Service.exe
   1  C:\Windows\System32\dwm.exe
   2  C:\Windows\System32\fontdrvhost.exe
   1  C:\Windows\System32\ibtsiva.exe
   1  C:\Windows\System32\lsass.exe
   1  C:\Windows\System32\oobe\UserOOBEBroker.exe
   2  C:\Windows\System32\RtkAudUService64.exe
   5  C:\Windows\System32\RuntimeBroker.exe
   1  C:\Windows\System32\SearchIndexer.exe
   1  C:\Windows\System32\SecurityHealthService.exe
   1  C:\Windows\System32\SecurityHealthSystray.exe
   1  C:\Windows\System32\services.exe
   1  C:\Windows\System32\sihost.exe
   1  C:\Windows\System32\smartscreen.exe
   1  C:\Windows\System32\smss.exe
   1  C:\Windows\System32\spoolsv.exe
  84  C:\Windows\System32\svchost.exe
   1  C:\Windows\System32\taskhostw.exe
   1  C:\Windows\System32\wbem\unsecapp.exe
   2  C:\Windows\System32\wbem\WmiPrvSE.exe
   1  C:\Windows\System32\wininit.exe
   1  C:\Windows\System32\winlogon.exe
   1  C:\Windows\System32\wlanext.exe
   1  C:\Windows\System32\WUDFHost.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
   1  C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
   1  C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\SearchHost.exe
   1  C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe

O2 - HKLM\..\BHO: Bitdefender Anti-tracker - {159ff5d5-55f1-4d2f-b706-767a55f77abb} - C:\Program Files\Bitdefender\Bitdefender Security App\bdtrackerstbie.dll (sign: 'Bitdefender SRL')
O2-32 - HKLM\..\BHO: Bitdefender Anti-tracker - {159ff5d5-55f1-4d2f-b706-767a55f77abb} - C:\Program Files\Bitdefender\Bitdefender Security App\antispam32\bdtrackerstbie.dll (sign: 'Bitdefender SRL')
O4 - ActiveSetup: HKLM\..\{8A69D345-D564-463c-AFF1-A69D9E530F96}: [StubPath] = C:\Program Files\Google\Chrome\Application\120.0.6099.217\Installer\chrmstp.exe --configure-user-settings --verbose-logging --system-level --channel=stable (sign: 'Google LLC')
O4 - ActiveSetup: HKLM\..\{9459C573-B17A-45AE-9F64-1857B5D58CEE}: [StubPath] = C:\Program Files (x86)\Microsoft\Edge\Application\120.0.2210.121\Installer\setup.exe --configure-user-settings --verbose-logging --system-level --msedge (sign: 'Microsoft')
O4 - Autorun.inf: F:\autorun.inf - open - sources\SetupError.exe x64 (file missing)
O4 - HKCU\..\Run: [MicrosoftEdgeAutoLaunch_402C34858CEE81A60EE6FBAACA80D5D8] = C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe --no-startup-window --win-session-start (sign: 'Microsoft')
O4 - HKCU\..\Run: [OneDrive] = C:\Users\dupot\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background (sign: 'Microsoft')
O4 - HKLM\..\Run: [Bdagent] = C:\Program Files\Bitdefender\Bitdefender Security App\bdagent.exe (sign: 'Bitdefender SRL')
O4 - HKLM\..\Run: [BdVpnApp] = C:\Program Files\Bitdefender\Bitdefender VPN\BdVpnApp.exe startup (sign: 'Bitdefender SRL')
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations] = C:\Windows\system32\spool\DRIVERS\W32X86\3\New\PrintConfig.dll -> C:\Windows\system32\spool\DRIVERS\W32X86\3\PrintConfig.dll (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations] = C:\Windows\system32\spool\DRIVERS\x64\3\New\PrintConfig.dll -> C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll (file missing)
O4 - HKU\S-1-5-19\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Local service') (sign: 'Microsoft')
O4 - HKU\S-1-5-20\..\Run: [OneDriveSetup] = C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'Network service') (sign: 'Microsoft')
O7 - KnownFolder: C:\Users\dupot\Desktop (folder missing)
O7 - KnownFolder: C:\Users\dupot\Pictures (folder missing)
O9 - Button: HKLM\..\{159ff5d5-55f1-4d2f-b706-767a55f77abb}: Bitdefender Anti-tracker - C:\Program Files\Bitdefender\Bitdefender Security App\bdtrackerstbie.dll (sign: 'Bitdefender SRL')
O9-32 - Button: HKLM\..\{159ff5d5-55f1-4d2f-b706-767a55f77abb}: Bitdefender Anti-tracker - C:\Program Files\Bitdefender\Bitdefender Security App\antispam32\bdtrackerstbie.dll (sign: 'Bitdefender SRL')
O17 - DHCP DNS 1: 192.168.1.1
O22 - Tasks: (damaged) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:aemarebackup.dll -f:BackupMareData (user missing) (sign: 'Microsoft')
O22 - Tasks: (damaged) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun (user missing) (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\DetectHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},DetectHardwareChange - C:\Windows\System32\Autopilot.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\RemediateHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},RemediateHardwareChange - C:\Windows\System32\Autopilot.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\MdmDiagnosticsCleanup - C:\Windows\system32\MdmDiagnosticsTool.exe /clean (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\Windows\system32\ProvTool.exe /turn 5 /source ProvRetryTask (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\Windows\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\Shell\ThemeAssetTask_SyncFODState - {3BC5DD7D-EA3B-428C-B9B6-0723DB6A1057} - C:\Windows\System32\Windows.UI.Immersive.dll (sign: 'Microsoft')
O22 - Tasks: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\Windows\system32\usoclient.exe StartMaintenanceWork (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:aeinv.dll -f:UpdateSoftwareInventoryW invsvc (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:aemarebackup.dll -f:BackupMareData (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\MareBackup - C:\Windows\system32\compattelrunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - C:\Windows\system32\sc.exe start InventorySvc (sign: '')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\Windows\system32\rundll32.exe C:\Windows\system32\PcaSvc.dll,PcaPatchSdbTask (sign: 'Microsoft')
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\SdbinstMergeDbTask - C:\Windows\system32\sdbinst.exe -mm (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\AppListBackup\BackupNonMaintenance - {E0DCC2CC-3354-45F2-8914-519E07809082} - C:\Windows\system32\AppListBackupLauncher.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\AppxDeploymentClient\UCPD velocity - C:\Windows\system32\UCPDMgr.exe (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\CloudRestore\Backup - {722D0F89-B69C-4700-AE8C-4A44350E4876},$(Arg0) - C:\Windows\System32\CloudRestoreLauncher.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\ConsentUX\UnifiedConsent\UnifiedConsentSyncTask - {82AA0895-198A-4C1B-B2D1-C16894218AFB} - C:\Windows\System32\unifiedconsent.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Input\InputSettingsRestoreDataAvailable - {378EAB97-EFD6-4ED5-9AD9-E64A6AA1E6FA},InputSettingsRestoreDataAvailable - C:\Windows\System32\InputCloudStore.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\Input\syncpensettings - {3ECEE215-83F5-4123-A592-74F1FE4C3D59},SYNC_PEN_SETTINGS - C:\Windows\System32\SettingsHandlers_Pen.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\InstallService\RestoreDevice - {7F019157-05C8-473F-8664-2BA04A090DC8} - C:\Windows\System32\InstallServiceTasks.dll (sign: 'Microsoft')
O22 - Tasks: \Microsoft\Windows\UpdateOrchestrator\USO_UxBroker - C:\Windows\system32\MusNotification.exe (file missing)
O22 - Tasks: \Microsoft\Windows\WindowsUpdate\Refresh Group Policy Cache - {07369A67-07A6-4608-ABEA-379491CB7C46} - C:\Windows\System32\UpdatePolicy.dll (sign: 'Microsoft')
O22 - Tasks: ASUS Update Checker 2.0 - C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_49b621720141a009\ASUSSoftwareManager\AsusUpdateChecker.exe (sign: 'ASUSTeK COMPUTER INC.')
O22 - Tasks: ATK Package 36D18D69AFC3 - C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHotkeyExec64.exe -CancelShutdown (sign: 'ASUSTek Computer Inc.')
O22 - Tasks: Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 - C:\Program Files\Bitdefender Agent\27.0.1.266\WatchDog.exe repair (sign: 'Bitdefender SRL')
O22 - Tasks: GoogleUpdateTaskMachineCore{29C8138E-C5BA-4E58-9F75-94F7FA40D9B6} - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c (sign: 'Google LLC')
O22 - Tasks: GoogleUpdateTaskMachineUA{745CBA97-D445-4C51-A1C9-2C0996EF7986} - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler (sign: 'Google LLC')
O22 - Tasks: OneDrive Reporting Task-S-1-5-21-2549950930-3523448292-3408751197-1001 - C:\Users\dupot\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (sign: 'Microsoft')
O22 - Tasks: RtkAudUService64_BG - C:\Windows\system32\RtkAudUService64.exe -background (sign: 'Realtek Semiconductor Corp.')
O23 - Service R2: ASLDR Service - (ASLDRService) - C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsLdrSrv64.exe (sign: 'ASUSTek Computer Inc.')
O23 - Service R2: ASUS App Service - (AsusAppService) - C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_49b621720141a009\AsusAppService\AsusAppService.exe (sign: 'ASUSTeK COMPUTER INC.')
O23 - Service R2: ASUS HID Access Sevice - (AsHidService) - C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\AsHidSrv64.exe (sign: 'ASUSTek Computer Inc.')
O23 - Service R2: ASUS Link Near - (ASUSLinkNear) - C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_49b621720141a009\ASUSLinkNear\AsusLinkNear.exe (sign: 'ASUSTeK COMPUTER INC.')
O23 - Service R2: ASUS Link Remote - (ASUSLinkRemote) - C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_49b621720141a009\ASUSLinkRemote\AsusLinkRemote.exe (sign: 'ASUSTeK COMPUTER INC.')
O23 - Service R2: ASUS Optimization - (ASUSOptimization) - C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_49b621720141a009\AsusOptimization\AsusOptimization.exe (sign: 'ASUSTeK COMPUTER INC.')
O23 - Service R2: ASUS Software Manager - (ASUSLiveUpdateAgent) - C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_49b621720141a009\ASUSSoftwareManager\AsusSoftwareManager.exe (sign: 'ASUSTeK COMPUTER INC.')
O23 - Service R2: ASUS Switch - (ASUSSwitch) - C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_49b621720141a009\ASUSSwitch\AsusSwitch.exe (sign: 'ASUSTeK COMPUTER INC.')
O23 - Service R2: ASUS System Analysis - (ASUSSystemAnalysis) - C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_49b621720141a009\ASUSSystemAnalysis\AsusSystemAnalysis.exe (sign: 'ASUSTeK COMPUTER INC.')
O23 - Service R2: ASUS System Diagnosis - (ASUSSystemDiagnosis) - C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_49b621720141a009\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe (sign: 'ASUSTeK COMPUTER INC.')
O23 - Service R2: Bitdefender Agent RedLine Service - (bdredline_agent) - C:\Program Files\Bitdefender Agent\redline\bdredline.exe (sign: 'Bitdefender SRL')
O23 - Service R2: Bitdefender App Service - (BDAppSrv) - C:\Program Files\Bitdefender\Bitdefender Security App\bdservicehost.exe "settings/services/configs/bdappsrv_config.json" (sign: 'Bitdefender SRL')
O23 - Service R2: Bitdefender Auxiliary Service - (BDAuxSrv) - C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe "settings/services/configs/bdauxsrv_config.json" (sign: 'Bitdefender SRL')
O23 - Service R2: Bitdefender Desktop Update Service - (UPDATESRV) - C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe /service (sign: 'Bitdefender SRL')
O23 - Service R2: Bitdefender Product Agent Service - (ProductAgentService) - C:\Program Files\Bitdefender Agent\ProductAgentService.exe (sign: 'Bitdefender SRL')
O23 - Service R2: Bitdefender Protected Service - (BDProtSrv) - C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe "settings\services\configs\bdprotsrv_config.json" (sign: 'Bitdefender SRL')
O23 - Service R2: Bitdefender RedLine Service - (bdredline) - C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe (sign: 'Bitdefender SRL')
O23 - Service R2: Bitdefender Safepay Service - (BDSafepaySrv) - C:\Program Files\Bitdefender\Bitdefender Security App\Safepay\bdservicehost.exe "settings/services/configs/bdsafepaysrv_config.json" (sign: 'Bitdefender SRL')
O23 - Service R2: Bitdefender Virus Shield - (VSSERV) - C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe "settings/services/configs/bdshieldsrv_config.json" (sign: 'Bitdefender SRL')
O23 - Service R2: Intel Bluetooth Service - (ibtsiva) - C:\Windows\System32\ibtsiva.exe (sign: 'Intel(R) Wireless Connectivity Solutions')
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000  (sign: 'NVIDIA Corporation')
O23 - Service R2: Realtek Audio Universal Service - (RtkAudioUniversalService) - C:\Windows\System32\RtkAudUService64.exe (sign: 'Realtek Semiconductor Corp.')
O23 - Service R2: Service Bitdefender VPN - (bdvpnservice) - C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnservice.exe "service" (sign: 'Bitdefender SRL')
O23 - Service R3: Intel® PROSet/Wireless Service - (PIEServiceNew) - C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_6c1db4160fc7f113\Intel_PIE_Service.exe (sign: 'Intel Corporation')
O23 - Service R3: Service de base de Bitdefender VPN - (AfVpnService) - C:\Program Files\Bitdefender\Bitdefender VPN\UnifiedSDK.Service\UnifiedSDK.Service.exe -LL None (sign: 'Get Aura Inc')
O23 - Service S2: AsusROGLSLService Download ROGLSLoader - (AsusROGLSLService) - C:\Program Files (x86)\ASUS\AsusROGLSLService\AsusROGLSLService.exe -runservice (sign: 'ASUSTeK COMPUTER INC.')
O23 - Service S2: Google Update Service (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc (sign: 'Google LLC')
O23 - Service S2: Intel(R) PROSet/Wireless Event Log - (EvtEng) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe (sign: 'Intel Corporation')
O23 - Service S3: Armoury Live Update - (ArmouryLiveUpdate) - C:\Windows\System32\DriverStore\FileRepository\rogms.inf_amd64_94d9766656ff6011\ArmouryLiveUpdate.exe (sign: 'ASUSTeK Computer Inc.')
O23 - Service S3: Google Chrome Elevation Service (GoogleChromeElevationService) - (GoogleChromeElevationService) - C:\Program Files\Google\Chrome\Application\120.0.6099.217\elevation_service.exe (sign: 'Google LLC')
O23 - Service S3: Google Update Service (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc (sign: 'Google LLC')
O23 - Service S3: Wireless PAN DHCP Server - (MyWiFiDHCPDNS) - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (file missing)
O23 - Driver R1: atc - C:\Windows\system32\DRIVERS\atc.sys (sign: 'Microsoft' - Bitdefender S.R.L. Bucharest, ROMANIA)
O23 - Driver R1: ATKWMIACPI Driver - (ATKWMIACPIIO) - C:\Windows\System32\DriverStore\FileRepository\atkwmiacpiio.inf_amd64_30ffacb41f78f352\atkwmiacpi64.sys (sign: 'ASUSTeK Computer Inc.')
O23 - Driver R1: bdvpn_netfilter - C:\Windows\system32\drivers\bdvpn_netfilter.sys (+safe mode) (sign: 'Pango Inc.')
O23 - Driver R1: Gemma - C:\Windows\system32\DRIVERS\gemma.sys (sign: 'Microsoft' - BitDefender S.R.L. Bucharest, ROMANIA)
O23 - Driver R2: BdDci Service - (BdDci) - C:\Windows\system32\DRIVERS\bddci.sys (sign: 'Microsoft' - Bitdefender)
O23 - Driver R2: Trufos - (trufos) - C:\Windows\system32\DRIVERS\trufos.sys (+safe mode) (sign: 'Microsoft' - Bitdefender)
O23 - Driver R3: ___ Pilote de carte Intel(R) Wireless pour Windows 10 64 bits  - (Netwtw08) - C:\Windows\System32\drivers\Netwtw08.sys (+safe mode) (sign: 'Intel Wireless Driver')
O23 - Driver R3: ASUS Touch Service - (AsusPTPDrv) - C:\Windows\System32\drivers\AsusPTPFilter.sys (sign: 'ASUSTek Computer Inc.')
O23 - Driver R3: ASUS Wireless Radio Control - (HIDSwitch) - C:\Windows\System32\drivers\AsRadioControl.sys (sign: 'ASUSTeK COMPUTER INC.')
O23 - Driver R3: AsusSAIO - C:\Windows\System32\DriverStore\FileRepository\asussci.inf_amd64_49b621720141a009\ASUSSystemAnalysis\AsusSAIO.sys (sign: 'ASUSTeK COMPUTER INC.')
O23 - Driver R3: Intel(R) Wireless Bluetooth(R) - (ibtusb) - C:\Windows\System32\DriverStore\FileRepository\ibtusb.inf_amd64_1b91fc9202104b28\ibtusb.sys (+safe mode) (sign: 'Intel Corporation')
O23 - Driver R3: nvlddmkm - C:\Windows\System32\DriverStore\FileRepository\nvam.inf_amd64_2dd4c250764257ac\nvlddmkm.sys (sign: 'NVIDIA Corporation')
O23 - Driver R3: ROG Keyboard - (ROGKB) - C:\Windows\System32\DriverStore\FileRepository\rogkb.inf_amd64_9c19fffb5d62d536\ROGKB.sys (sign: 'ASUSTeK Computer Inc.')
O23 - Driver R3: ROG Mouse - (ROGMS) - C:\Windows\System32\DriverStore\FileRepository\rogms.inf_amd64_94d9766656ff6011\ROGMS.sys (sign: 'ASUSTeK Computer Inc.')
O23 - Driver R3: Service for NVIDIA High Definition Audio Driver - (NVHDA) - C:\Windows\system32\drivers\nvhda64v.sys (sign: 'NVIDIA Corporation')
O23 - Driver R3: Service for Realtek HD Audio (WDM) - (IntcAzAudAddService) - C:\Windows\system32\drivers\RTKVHD64.sys (sign: 'Realtek Semiconductor Corp.')
O23 - Driver R3: vlflt - C:\Windows\system32\DRIVERS\vlflt.sys (sign: 'Microsoft' - Bitdefender)
O23 - Driver S3: bdprivmon - C:\Windows\system32\DRIVERS\bdprivmon.sys (sign: 'Microsoft' - Bitdefender SRL)
O23 - Driver S3: bduefiscan - C:\Windows\system32\DRIVERS\bduefiscan.sys (sign: 'Microsoft' - Bitdefender)
O23 - Driver S3: Ignisv2 - C:\Windows\system32\DRIVERS\ignisv2.sys (+safe mode) (sign: 'Microsoft' - Bitdefender)
O23 - Driver S3: Intel(R) Serial IO GPIO Controller Driver - (iaLPSSi_GPIO) - C:\Windows\System32\drivers\iaLPSSi_GPIO.sys (sign: 'Intel Corporation - Client Components Group')
O23 - Driver S3: NVIDIA Stereoscopic 3D USB driver - (NvStUSB) - C:\Windows\System32\drivers\nvstusb.sys (+safe mode) (sign: 'NVIDIA Corporation')
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service:  'Ignisv2'
O23 - Dependency: Microsoft Service Group 'NDIS' contains unknown service:  'Netwtw08'


--
End of file - Time spent: 25 sec. - 48282 bytes, CRC32: FFFFFFFF. Sign: ﷋걐
Malekal_morte
Messages : 116002
Inscription : 10 sept. 2005 13:57

Re: Possible virus restant sur mon ordinateur/Cheval de troie ?

par Malekal_morte »

Bonjour,

Pour vérifier cela :

Suis le tutoriel FRST. ( prends le temps de lire attentivement - tout y est bien expliqué ).

Attendre la fin du scan, un message indique que l'analyse est terminée.
Télécharge et lance le scan FRST,

Trois rapports FRST seront générés :
* FRST.txt
* Shortcut
* Additionnal.txt

Image

Envoie ces 3 rapports sur le site https://pjjoint.malekal.com/ et en retour donne les 3 liens pjjoint qui mènent aux rapports ici dans une nouvelle réponse afin que l'on puisse les consulter.
Tu peux aussi attacher les fichiers de rapports FRST dans une nouvelle réponse avec l'éditeur avancé.

Image

Ensuite en bas pièce-jointe.

Image

(Les liens bleus mènent à des tutoriels explicatifs pas à pas, clic dessus pour avoir les instructions plus précises à suivre).

NOTE : tu peux aussi envoyer les rapports sur https://pjjoint.malekal.com et donner les liens en retour.
Première règle élémentaire de sécurité : on réfléchit puis on clic et pas l'inverse - Les fichiers/programmes c'est comme les bonbons, quand ça vient d'un inconnu, on n'accepte pas !
Comment protéger son PC des virus
Windows 11 : Compatibilité, Configuration minimale requise, télécharger ISO et installer Windows 11

Comment demander de l'aide sur le forum
Evaluer le site malekal.com
Partagez malekal.com : n'hésitez pas à partager les articles qui vous plaisent sur la page Facebook du site.
  • Sujets similaires
    Réponses
    Vues
    Dernier message

Revenir à « Supprimer/Desinfecter les virus (Trojan, Adwares, Ransomwares, Backdoor, Spywares) »