virus magne2t/magne3t

Question

Salut,

J'ai Bitdefender 9 en antivirus je scanne mon disque dur une fois par semaine et à chaque fois il me trouve Magne2t et Magne3t.
Ils se trouvent dans HKEY_LOCAL_MACHINE\SOFTWARE\MAGNET et dans HKEY_CLASSES_ROOT\MAGNET.

Voilà, merci d'avance pour votre aide.

Danzig.

Afficher la suite

Regis59 · Answer

SalutPourrait on avoir le rapport complet de bitdefender stpa+

le roux · Answer

salut a tu trover la solusion pour magne3t et magne2t moi j'ai le mene prob je n'arrive pas a le suprimé . merci j'espere avoir de tes nouvelle a bientop.salut

magne2t · Answer

ça vien de Azureus :http://sourceforge.net/forum/forum.php?thread_id=1549702&forum_id=349817

Regis59 · Answer

Salut,Ok je verifie si ca vient de Azureus.a+

Regis59 · Answer

re,

Pour moi:

; NOTE: This file will be deleted when you close WordPad.
; You must manually save this file to a new location if you want to refer to it again later.
; (If you save the file with a .reg extension, you can use it to restore any Registry changes you make to these values.)

[HKEY_LOCAL_MACHINE\SOFTWARE\Azureus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Azureus]
@="C:\\Program Files\\Azureus"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.torrent]
@="Azureus"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Applications\Azureus.exe]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Applications\Azureus.exe\shell]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Applications\Azureus.exe\shell\open]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Applications\Azureus.exe\shell\open\command]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Applications\Azureus.exe\shell\open\command]
@="\"C:\\Program Files\\Azureus\\Azureus.exe\" \"%1\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Azureus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Azureus\Content Type]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Azureus\DefaultIcon]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Azureus\DefaultIcon]
@="C:\\Program Files\\Azureus\\Azureus.exe,0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Azureus\shell]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Azureus\shell\open]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Azureus\shell\open\command]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Azureus\shell\open\command]
@="\"C:\\Program Files\\Azureus\\Azureus.exe\" \"%1\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Azureus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Azureus]
"DisplayName"="Azureus"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Azureus]
"DisplayIcon"="C:\\Program Files\\Azureus\\Azureus.exe,0"

[HKEY_USERS\S-1-5-21-4246225693-548921057-1351250631-1003\Software\Azureus]

[HKEY_USERS\S-1-5-21-4246225693-548921057-1351250631-1003\Software\Azureus]
@="C:\\Program Files\\Azureus"

[HKEY_USERS\S-1-5-21-4246225693-548921057-1351250631-1003\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.torrent\OpenWithList]
"a"="Azureus.exe"

[HKEY_USERS\S-1-5-21-4246225693-548921057-1351250631-1003\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.torrent\OpenWithProgids]
"Azureus"=hex(0):

[HKEY_USERS\S-1-5-21-4246225693-548921057-1351250631-1003\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wmv\OpenWithList]
"h"="Azureus.exe"

[HKEY_USERS\S-1-5-21-4246225693-548921057-1351250631-1003\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Azureus]

[HKEY_USERS\S-1-5-21-4246225693-548921057-1351250631-1003\Software\Microsoft\Windows\ShellNoRoam\MUICache]
"C:\\Documents and Settings\\Propriétaire\\Mes documents\\Azureus_2.4.0.2_Win32.setup.exe"="Azureus_2.4.0.2_Win32.setup"

[HKEY_USERS\S-1-5-21-4246225693-548921057-1351250631-1003\Software\Microsoft\Windows\ShellNoRoam\MUICache]
"C:\\Program Files\\Azureus\\Azureus.exe"="Azureus"

A vous de tester pour voir.

petit coeur · Answer

bonjour,mon antivirus bullguard me detecte aussi
magne2t/magne3t
voici le rapport:
___________________________________________________________

BullGuard Scan Report
Scan Profile: "Analyse rapide"
___________________________________________________________

----[ System Info ]------------

OS Version: Microsoft Windows XP Professional - Service Pack 2 (Build 2600) [1 * x86 CPUs]
Physical memory: 448 MB
System up-time: 0 days, 03 hours, 08 minutes, 26 seconds
BullGuard up-time: 0 days, 03 hours, 07 minutes, 12 seconds
TopLayer Version: 7, 0, 0, 3
FileSpy5 Version: N/A
BdFileSpy Version: 2.2.0.45 built by: WinDDK
BsFileScan Version: 7, 0, 0, 15
Reconn Version: 1.1.0.5 built by: WinDDK
MailProxy Version: 7, 0, 0, 9
AntiVirus Version: 7, 0, 0, 23

----[ Scan Parameters ]------------

Folders to scan:
C:\
C:\windows
C:\windows\system32

Excluded folders:
None

Files to scan:
None

Scan type:
[ ] Scan all files
[o] Scan program files only
[ ] Scan custom extensions:

[ ] Exclude user extensions:

[ ] Scan boot sectors
[X] Scan packed files
[ ] Scan archives
[ ] Scan emails
[X] Scan running processes
[X] Scan registry
[X] Scan IE cookies
[ ] Enable heuristic detection

[ ] Scan default action
___________________________________________________________

Scan Statistics
___________________________________________________________

Scan started: Sunday, February 04, 2007 16:19:38
Scan duration: 0 days, 00 hours, 03 minutes, 23 seconds
Completion status: Successful

Total files scanned: 3706
Total files skipped: 0
Identified viruses: 2
Scan speed: 18.26 files/sec

___________________________________________________________

Infected Files
___________________________________________________________

----[ Infected Registry Entries ]------------

Malware: magne2t
<System>=>HKEY_CLASSES_ROOT\MAGNET
<System>=>HKEY_CLASSES_ROOT\MAGNET\DEFAULTICON
<System>=>HKEY_CLASSES_ROOT\MAGNET\SHELL
<System>=>HKEY_CLASSES_ROOT\MAGNET\SHELL\OPEN
<System>=>HKEY_CLASSES_ROOT\MAGNET\SHELL\OPEN\COMMAND

Malware: magne3t
<System>=>HKEY_LOCAL_MACHINE\SOFTWARE\MAGNET
<System>=>HKEY_LOCAL_MACHINE\SOFTWARE\MAGNET\HANDLERS

___________________________________________________________

Results after ROUND 0
___________________________________________________________

Scan started: Sunday, February 04, 2007 16:19:38
Scan duration: 0 days, 00 hours, 03 minutes, 23 seconds
Infections solved: 0
Infections left: 7
Viruses left: 2

----[ Registry Entries Still Infected ]------------

Malware: magne2t
<System>=>HKEY_CLASSES_ROOT\MAGNET
<System>=>HKEY_CLASSES_ROOT\MAGNET\DEFAULTICON
<System>=>HKEY_CLASSES_ROOT\MAGNET\SHELL
<System>=>HKEY_CLASSES_ROOT\MAGNET\SHELL\OPEN
<System>=>HKEY_CLASSES_ROOT\MAGNET\SHELL\OPEN\COMMAND

Malware: magne3t
<System>=>HKEY_LOCAL_MACHINE\SOFTWARE\MAGNET
<System>=>HKEY_LOCAL_MACHINE\SOFTWARE\MAGNET\HANDLERS

merci d'avance pour toute aide ;)

Regis59 · Answer

Salut

As tu spybot?

A+

Regis59 · Answer

Salut,

Lance ce scan en ligne: 
http://www.bitdefender.fr/scan8/ie.html  
Copie/colle le rapport
Aide en image : http://pageperso.aol.fr/rginformatique/mapage/defender.htm

A+

Regis59 · Answer

D'accord petit coeur (beau pseudo, j espere que ce pseudo est vrai lol)

a+

Regis59 · Answer

De rien mais ma question était:
Ce pseudo représente t il vraiment un petit coeur que tu as si adorable? mdr

Regis59 · Answer

Ah cool, célibataire? (tu l atendais la question nan?lol)

Regis59 · Answer

Rolalala comment tu te lances des fleurs.
Tu es pas celib? Bha t inquietes je suis pas jaloux lol

Regis59 · Answer

C'est tout ce que ca te fait?
Bha allez, assure sinon je t aide plus lol

Regis59 · Answer

Roooooooooo, pas sympa ca lol

si non,ne te tracasse pas je trouverai de l'aide ailleur
ce n'est pas un probléme ;)

Certes. Mais après, faut voir la qualité hihi Et la sympathie !! et tout le reste et la je suis imbattable mdr

J'atends le rapport hein (du coup je redeviens serieux, sniff)

t00z · Answer

re , g le meme probleme ,voila mon log ! quelqu un peut m aider ? merci

Logfile of Trend Micro HijackThis v2.0.0 (BETA)
Scan saved at 13:21:09, on 30/04/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\NVIDIA Corporation
Tune
TuneService.exe
C:\WINDOWS\system32\pctspk.exe
C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Inventel\Gateway\wlancfg.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
C:\Program Files\Softwin\BitDefender10\vsserv.exe
C:\Documents and Settings\Administrateur\Mes documents\HiJackThis_v2.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://melanthios-ana.com/zcvisitor/1624d318-3614-11eb-87b9-12a1ab6c324d/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=47f83760-f118-11ea-9bc8-0ac2bbf4ada7
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
R3 - URLSearchHook: &Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: (no name) - {e205b6c6-61cf-4633-a0bb-1bc94a71ad11} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [LSD_III] %systemroot%\LSD\end.cmd (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [LSD_III] %systemroot%\LSD\end.cmd (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [LSD_III] %systemroot%\LSD\end.cmd (User 'Default user')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O20 - Winlogon Notify: A3dxq - C:\WINDOWS\
O20 - Winlogon Notify: ftpdlg - C:\WINDOWS\
O20 - Winlogon Notify: winsys2freg - C:\WINDOWS\
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: nTune Service (nTuneService) - NVIDIA - C:\Program Files\NVIDIA Corporation
Tune
TuneService.exe
O23 - Service: PCTEL Speaker Phone (Pctspk) - Unknown owner - C:\WINDOWS\system32\pctspk.exe
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindService.exe
O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender10\vsserv.exe
O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Unknown owner - C:\Program Files\Inventel\Gateway\wlancfg.exe
O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe
O23 - Service: BitDefender Communicator (XCOMM) - SOFTWIN S.R.L - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe

Virus magne2t/magne3t

15 réponses

Votre réponse

Discussions similaires

Newsletters