Sujet Précédent Sujet Suivant

Probleme de virus

Fermé
arnold12760 Messages postés 582 Date d'inscription samedi 7 février 2009 Statut Membre Dernière intervention 19 décembre 2013 - 16 avril 2009 à 14:25
 Utilisateur anonyme - 17 avril 2009 à 11:15
Bonjour,
j'ai telecharger quelque programme ces derniers temps.. (Nero, Devil my cry,....)
et jai quelque soucis car j'ai remarqué plein d'alerte de mon antivirus (NOD32,spybot) de virus. alor jai fai des scan ou il y avait des virus qui ont etai effacer MAIS environ 6virus ou l'antivirus dis (ce ne sont aps des type de fichier que l'on peut effacer). Voici le resultat du scan fait par NOD32

Scan Log
Version of virus signature database: 4012 (20090416)
Date: 16/04/2009 Time: 11:48:27
Scanned disks, folders and files: D:\
D:\pagefile.sys - error opening [4]
D:\Documents and Settings\LocalService\NTUSER.DAT - error opening [4]
D:\Documents and Settings\LocalService\ntuser.dat.LOG - error opening [4]
D:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat - error opening [4]
D:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG - error opening [4]
D:\Documents and Settings\NetworkService\NTUSER.DAT - error opening [4]
D:\Documents and Settings\NetworkService\ntuser.dat.LOG - error opening [4]
D:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat - error opening [4]
D:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG - error opening [4]
D:\Documents and Settings\xX_Styl3_Xx\NTUSER.DAT - error opening [4]
D:\Documents and Settings\xX_Styl3_Xx\ntuser.dat.LOG - error opening [4]
D:\Documents and Settings\xX_Styl3_Xx\Application Data\LimeWire\browser\xulrunner\chrome\comm.manifest » MIME - is OK (internal scanning not performed)
D:\Documents and Settings\xX_Styl3_Xx\Application Data\LimeWire\browser\xulrunner\chrome\limewire.manifest » MIME - is OK (internal scanning not performed)
D:\Documents and Settings\xX_Styl3_Xx\Application Data\LimeWire\browser\xulrunner\chrome\pippki.manifest » MIME - is OK (internal scanning not performed)
D:\Documents and Settings\xX_Styl3_Xx\Application Data\LimeWire\browser\xulrunner\chrome\toolkit.manifest » MIME - is OK (internal scanning not performed)
D:\Documents and Settings\xX_Styl3_Xx\Application Data\Skype\style12760\dc.lock - error opening [4]
D:\Documents and Settings\xX_Styl3_Xx\Application Data\Skype\style12760\main.lock - error opening [4]
D:\Documents and Settings\xX_Styl3_Xx\Local Settings\Application Data\Google\Toolbar History\counters - error opening [4]
D:\Documents and Settings\xX_Styl3_Xx\Local Settings\Application Data\Identities\{8ADB82FA-245F-4B7F-BC76-1AC885DF0790}\Microsoft\Outlook Express\Boîte de réception.dbx » DBX - is OK (internal scanning not performed)
D:\Documents and Settings\xX_Styl3_Xx\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat - error opening [4]
D:\Documents and Settings\xX_Styl3_Xx\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG - error opening [4]
D:\Documents and Settings\xX_Styl3_Xx\Local Settings\Temp\etilqs_zHaDCVkesKzlUQfrhHUu - error opening [4]
D:\Documents and Settings\xX_Styl3_Xx\Local Settings\Temp\etilqs_zHaDCVkesKzlUQfrhHUu-journal - error opening [4]
D:\Documents and Settings\xX_Styl3_Xx\Mes documents\Nero-6.6.1.15a.exe » RAR » Nero\CDI\CDI_VCD.CFG » MIME - is OK (internal scanning not performed)
D:\Documents and Settings\xX_Styl3_Xx\Mes documents\Nero-6.6.1.15a.exe » RAR » setup\Eula_esm.txt » MIME - is OK (internal scanning not performed)
D:\Documents and Settings\xX_Styl3_Xx\Mes documents\Nero-6.6.1.15a.exe » RAR » setup\Eula_esp.txt » MIME - is OK (internal scanning not performed)
D:\Documents and Settings\xX_Styl3_Xx\Mes documents\Nero-6.6.1.15a.exe » RAR » setup\Eula_fra.txt » MIME - is OK (internal scanning not performed)
D:\Documents and Settings\xX_Styl3_Xx\Mes documents\Nero-6.6.1.15a.exe » RAR » setup\Eula_frc.txt » MIME - is OK (internal scanning not performed)
D:\Documents and Settings\xX_Styl3_Xx\Mes documents\Nero-6.6.1.15a.exe » RAR » setup\Eula_ita.txt » MIME - is OK (internal scanning not performed)
D:\Documents and Settings\xX_Styl3_Xx\Mes documents\Nero-6.6.1.15a.exe » RAR » setup\Eula_ptg.txt » MIME - is OK (internal scanning not performed)
D:\Documents and Settings\xX_Styl3_Xx\Mes documents\Nero-6.6.1.15a.exe » RAR » Toolbar.exe - Win32/Toolbar.AskSBar application - was a part of the deleted object
D:\Documents and Settings\xX_Styl3_Xx\Mes documents\requiem_bloodymare_client_complet.zip » ZIP » data3.cab - archive damaged
D:\Documents and Settings\xX_Styl3_Xx\Mes documents\RohanBloodFeud_Global.exe - error opening [4]
D:\Documents and Settings\xX_Styl3_Xx\Mes documents\Downloads\Nero\Nero-6.6.0.15.exe » RAR » Nero\CDI\CDI_VCD.CFG » MIME - is OK (internal scanning not performed)
D:\Documents and Settings\xX_Styl3_Xx\Mes documents\Downloads\Nero\Nero-6.6.0.15.exe » RAR » setup\Eula_esp.txt » MIME - is OK (internal scanning not performed)
D:\Documents and Settings\xX_Styl3_Xx\Mes documents\Downloads\Nero\Nero-6.6.0.15.exe » RAR » setup\Eula_fra.txt » MIME - is OK (internal scanning not performed)
D:\Documents and Settings\xX_Styl3_Xx\Mes documents\Downloads\Nero\Nero-6.6.0.15.exe » RAR » setup\Eula_ita.txt » MIME - is OK (internal scanning not performed)
D:\Documents and Settings\xX_Styl3_Xx\Mes documents\Downloads\Nero\Nero-6.6.0.15.exe » RAR » setup\Eula_ptg.txt » MIME - is OK (internal scanning not performed)
D:\Documents and Settings\xX_Styl3_Xx\Mes documents\Downloads\Nero\NVE-3.1.0.14.exe » RAR » NeroVision\NeroFiles\CDI\CDI_VCD.CFG » MIME - is OK (internal scanning not performed)
D:\Documents and Settings\xX_Styl3_Xx\Mes documents\Downloads\Nero\NVE-3.1.0.14.exe » RAR » Setup\Eula_esp.txt » MIME - is OK (internal scanning not performed)
D:\Documents and Settings\xX_Styl3_Xx\Mes documents\Downloads\Nero\NVE-3.1.0.14.exe » RAR » Setup\Eula_fra.txt » MIME - is OK (internal scanning not performed)
D:\Documents and Settings\xX_Styl3_Xx\Mes documents\Downloads\Nero\NVE-3.1.0.14.exe » RAR » Setup\Eula_ita.txt » MIME - is OK (internal scanning not performed)
D:\Documents and Settings\xX_Styl3_Xx\Mes documents\Downloads\Nero\NVE-3.1.0.14.exe » RAR » Setup\Eula_ptg.txt » MIME - is OK (internal scanning not performed)
D:\Documents and Settings\xX_Styl3_Xx\Mes documents\Downloads\ZoneAlarm® Internet Security Suite 2009+Keygen[h33t]MasterUploader\Setup\zaSUITE_Setup_en.exe » WISE » Windows6.0-KB929547-v2-x64.msu » CAB » WSUSSCAN.cab - archive damaged - the file could not be extracted.
D:\Documents and Settings\xX_Styl3_Xx\Mes documents\Downloads\ZoneAlarm® Internet Security Suite 2009+Keygen[h33t]MasterUploader\Setup\zaSUITE_Setup_en.exe » WISE » Windows6.0-KB929547-v2-x64.msu » CAB » Windows6.0-KB929547-v2-x64.cab - archive damaged - the file could not be extracted.
D:\Documents and Settings\xX_Styl3_Xx\Mes documents\Downloads\ZoneAlarm® Internet Security Suite 2009+Keygen[h33t]MasterUploader\Setup\zaSUITE_Setup_en.exe » WISE » Windows6.0-KB929547-v2-x64.msu » CAB » Windows6.0-KB929547-v2-x64-pkgProperties.txt - archive damaged - the file could not be extracted.
D:\Documents and Settings\xX_Styl3_Xx\Mes documents\Downloads\ZoneAlarm® Internet Security Suite 2009+Keygen[h33t]MasterUploader\Setup\zaSUITE_Setup_en.exe » WISE » Windows6.0-KB929547-v2-x64.msu » CAB » Windows6.0-KB929547-v2-x64.xml - archive damaged - the file could not be extracted.
D:\Documents and Settings\xX_Styl3_Xx\Mes documents\meboy\Mini games\Sonic The Hedgehog (part 1).jar » ZIP » manual_0.txt » MIME - is OK (internal scanning not performed)
D:\Documents and Settings\xX_Styl3_Xx\Mes documents\meboy\Mini games\Sonic The Hedgehog (part 1).jar » ZIP » manual_2.txt » MIME - is OK (internal scanning not performed)
D:\Documents and Settings\xX_Styl3_Xx\Mes documents\meboy\Mini games\Sonic The Hedgehog (part 1).jar » ZIP » manual_3.txt » MIME - is OK (internal scanning not performed)
D:\Documents and Settings\xX_Styl3_Xx\Mes documents\meboy\Mini games\Sonic The Hedgehog (part 1).jar » ZIP » manual_4.txt » MIME - is OK (internal scanning not performed)
D:\Program Files\Electronic Arts\Crytek\Crysis\Game\GameData.pak » ZIP » Libs/CryHttp/index.mhtml » MIME - is OK (internal scanning not performed)
D:\Program Files\Electronic Arts\Crytek\Crysis\Game\Levels\harbor\terraintexture.pak » ZIP » tile5_6.raw - incorrect CRC checksum, the file may be damaged
D:\Program Files\Electronic Arts\Crytek\Crysis\Game\Levels\ice\terraintexture.pak » ZIP » tile2_4.raw - incorrect CRC checksum, the file may be damaged
D:\Program Files\Electronic Arts\Crytek\Crysis\Game\Levels\ice\terraintexture.pak » ZIP » tile2_5.raw - incorrect CRC checksum, the file may be damaged
D:\Program Files\Electronic Arts\Crytek\Crysis\Game\Levels\rescue\terraintexture.pak » ZIP » tile2_5.raw - incorrect CRC checksum, the file may be damaged
D:\Program Files\Electronic Arts\Crytek\Crysis\Game\Levels\rescue\terraintexture.pak » ZIP » tile6_2.raw - incorrect CRC checksum, the file may be damaged
D:\Program Files\Electronic Arts\Crytek\Crysis\Game\Levels\rescue\terraintexture.pak » ZIP » tile6_3.raw - incorrect CRC checksum, the file may be damaged
D:\Program Files\Electronic Arts\Crytek\Crysis\Game\Levels\rescue\terraintexture.pak » ZIP » tile4_4.raw - incorrect CRC checksum, the file may be damaged
D:\Program Files\Electronic Arts\Crytek\Crysis\Game\Levels\village\terraintexture.pak » ZIP » tile4_2.raw - incorrect CRC checksum, the file may be damaged
D:\Program Files\Fichiers communs\Microsoft Shared\MSInfo\msinfo32.exe - a variant of Win32/Virut.NBK virus - error while deleting
D:\Program Files\Google\Google Earth\res\flightsim\controller\genius_maxfighter_f16u.ini » MIME - is OK (internal scanning not performed)
D:\Program Files\Google\Google Earth\res\flightsim\controller\logitech_attack3.ini » MIME - is OK (internal scanning not performed)
D:\Program Files\Google\Google Earth\res\flightsim\controller\logitech_extreme_3d.ini » MIME - is OK (internal scanning not performed)
D:\Program Files\Google\Google Earth\res\flightsim\controller\logitech_force_3d.ini » MIME - is OK (internal scanning not performed)
D:\Program Files\Google\Google Earth\res\flightsim\controller\logitech_freedom.ini » MIME - is OK (internal scanning not performed)
D:\Program Files\Google\Google Earth\res\flightsim\controller\saitek_cyborg_evo.ini » MIME - is OK (internal scanning not performed)
D:\Program Files\Google\Google Earth\res\flightsim\controller\saitek_x52.ini » MIME - is OK (internal scanning not performed)
D:\Program Files\Google\Google Earth\res\flightsim\controller\speed_link_black_hawk.ini » MIME - is OK (internal scanning not performed)
D:\Program Files\Google\Google Earth\res\flightsim\controller\speed_link_black_widow.ini » MIME - is OK (internal scanning not performed)
D:\Program Files\Google\Google Earth\res\flightsim\controller\speed_link_cougar_flightstick.ini » MIME - is OK (internal scanning not performed)
D:\Program Files\Google\Google Earth\res\flightsim\controller\speed_link_dark_tornado.ini » MIME - is OK (internal scanning not performed)
D:\Program Files\Google\Google Earth\res\flightsim\controller\xbox_360.ini » MIME - is OK (internal scanning not performed)
D:\Program Files\Java\jre6\lib\resources.jar » ZIP » com/sun/org/apache/xerces/internal/impl/msg/XIncludeMessages.properties » MIME - is OK (internal scanning not performed)
D:\Program Files\Java\jre6\lib\resources.jar » ZIP » com/sun/xml/internal/fastinfoset/resources/ResourceBundle.properties » MIME - is OK (internal scanning not performed)
D:\Program Files\Java\jre6\lib\resources.jar » ZIP » javax/xml/bind/Messages.properties » MIME - is OK (internal scanning not performed)
D:\Program Files\Java\jre6\lib\deploy\ffjcext.zip » ZIP » {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}/chrome.manifest » MIME - is OK (internal scanning not performed)
D:\Program Files\Java\jre6\lib\deploy\jqs\ff\chrome.manifest » MIME - is OK (internal scanning not performed)
D:\Program Files\LimeWire\lib\additional_resources.jar » ZIP » xulrunner-win32.zip » ZIP » xulrunner/chrome/comm.manifest » MIME - is OK (internal scanning not performed)
D:\Program Files\LimeWire\lib\additional_resources.jar » ZIP » xulrunner-win32.zip » ZIP » xulrunner/chrome/pippki.manifest » MIME - is OK (internal scanning not performed)
D:\Program Files\LimeWire\lib\additional_resources.jar » ZIP » xulrunner-win32.zip » ZIP » xulrunner/chrome/toolkit.manifest » MIME - is OK (internal scanning not performed)
D:\Program Files\LimeWire\lib\additional_resources.jar » ZIP » xulrunner-win32.zip » ZIP » xulrunner/chrome/limewire.manifest » MIME - is OK (internal scanning not performed)
D:\Program Files\MediaCoder\xulapp\benchmark\chrome\chrome.manifest » MIME - is OK (internal scanning not performed)
D:\Program Files\MediaCoder\xulapp\chrome\chrome.manifest » MIME - is OK (internal scanning not performed)
D:\Program Files\MediaCoder\xulapp\mcex\chrome\chrome.manifest » MIME - is OK (internal scanning not performed)
D:\Program Files\MediaCoder\xulapp\report\chrome\chrome.manifest » MIME - is OK (internal scanning not performed)
D:\Program Files\MediaCoder\xulapp\wizard\chrome\chrome.manifest » MIME - is OK (internal scanning not performed)
D:\Program Files\MediaCoder\xulplayer\chrome\chrome.manifest » MIME - is OK (internal scanning not performed)
D:\Program Files\MediaCoder\xulrunner\chrome\comm.manifest » MIME - is OK (internal scanning not performed)
D:\Program Files\MediaCoder\xulrunner\chrome\pippki.manifest » MIME - is OK (internal scanning not performed)
D:\Program Files\MediaCoder\xulrunner\chrome\toolkit.manifest » MIME - is OK (internal scanning not performed)
D:\Program Files\MSN\MSNCoreFiles\Install\MSN9Components\Msncli.exe » CAB » license.txt » MIME - is OK (internal scanning not performed)
D:\Program Files\VirginMega\VirginMegaPremium\Maintenance.mht » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\ALBERON\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\Artifact\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\Bandar\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\BERINGIA\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\Bloc\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\BlocHalloween\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\BlueStorm\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\CADORO\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\Cantumira\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\Cloud_Forest\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\ColdCave\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\Conturas\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\Crater\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\DarkGlow\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\Decay\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\Disturm\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\Emblem\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\Engrene\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\GRUNDEL\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\Harbor_ELIA\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\Harbor_IDA\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\Havana\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\Karaqum\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\KHALI\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\KHYBER\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\MARIEN\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\Montana\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\Nerbil\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\Odyssey\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\Ohara\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\Pargona\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\Pargona_East\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\PAROHO\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\Ravello\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\Ravello_2nd_st\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\RedClover\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\RustyNails\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\Thamugadi\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\Velruf\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\Vitious\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\Winter_Forest\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\Xauen\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\XMarien\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\XVelruf\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\Maps\Zakhar\ControlPointTemplate.dat » MIME - is OK (internal scanning not performed)
D:\Program Files\WarRock\System\WarRock.exe - a variant of Win32/Packed.Themida application - cleaned by deleting - quarantined [1]
D:\Program Files\World of Warcraft\WoW-BurningCrusade-frFR-Full-Installer\Installer.app\Contents\Resources\listfile » MIME - is OK (internal scanning not performed)
D:\WINDOWS\$hf_mig$\KB898461\update\eula.txt » MIME - is OK (internal scanning not performed)
D:\WINDOWS\ServicePackFiles\i386\msncli.exe » CAB » license.txt » MIME - is OK (internal scanning not performed)
D:\WINDOWS\SoftwareDistribution\EventCache\{25B340B1-5CBE-4729-92B5-4EC2913DE7FF}.bin - error opening [4]
D:\WINDOWS\system32\cmd.exe - a variant of Win32/Virut.NBK virus - error while deleting
D:\WINDOWS\system32\drwtsn32.exe - a variant of Win32/Virut.NBK virus - error while deleting
D:\WINDOWS\system32\dwwin.exe - a variant of Win32/Virut.NBK virus - error while deleting
D:\WINDOWS\system32\logon.scr - a variant of Win32/Virut.NBK virus - error while deleting
D:\WINDOWS\system32\mshearts.exe - a variant of Win32/Virut.NBK virus - error while deleting
D:\WINDOWS\system32\mspaint.exe - a variant of Win32/Virut.NBK virus - error while deleting
D:\WINDOWS\system32\Adobe\uninstaller.exe » NSIS - archive damaged
D:\WINDOWS\system32\CatRoot2\edb.log - error opening [4]
D:\WINDOWS\system32\CatRoot2\edbtmp.log - error opening [4]
D:\WINDOWS\system32\CatRoot2\tmp.edb - error opening [4]
D:\WINDOWS\system32\config\default - error opening [4]
D:\WINDOWS\system32\config\default.LOG - error opening [4]
D:\WINDOWS\system32\config\SAM - error opening [4]
D:\WINDOWS\system32\config\SAM.LOG - error opening [4]
D:\WINDOWS\system32\config\SECURITY - error opening [4]
D:\WINDOWS\system32\config\SECURITY.LOG - error opening [4]
D:\WINDOWS\system32\config\software - error opening [4]
D:\WINDOWS\system32\config\software.LOG - error opening [4]
D:\WINDOWS\system32\config\system - error opening [4]
D:\WINDOWS\system32\config\system.LOG - error opening [4]
Number of scanned objects: 347547
Number of threats found: 9
Number of cleaned objects: 2
Time of completion: 14:20:26 Total scanning time: 9119 sec (02:31:59)

Notes:
[1] Object has been deleted as it only contained the virus body.
[4] Object cannot be opened. It may be in use by another application or operating system.



J'ai mis en GRAS les virus qu'il narrive pas a Effacer, alor dite moi comment je peut les effacer svp

19 réponses

Réponse 1 / 19
Utilisateur anonyme
16 avril 2009 à 15:06
oulala salut :)


> Télécharge Dr Web CureIt sur ton Bureau :


- Double clique <drweb-cureit.exe> et ensuite clique sur <Analyse>;

- Clique <Ok> à l'invite de l'analyse rapide. S'il trouve des processus infectés alors clique le bouton <Oui>.
Note : une fenêtre s'ouvrira avec options pour "Commander" ou "50% de réduction" : Quitte en cliquant le "X".
- Lorsque le scan rapide est terminé, clique sur le menu <Options> puis <Changer la configuration> ; Choisis l'onglet <Scanner>, et décoche <Analyse heuristique>. Clique ensuite sur <Ok>.
- De retour à la fenêtre principale : clique pour activer <Analyse complète>
- Clique le bouton avec flèche verte sur la droite, et le scan débutera.
- Clique <Oui> pour tout à l'invite "Désinfecter ?" lorsqu'un fichier est détecté, et ensuite clique "Désinfecter".
- Lorsque le scan sera complété, regarde si tu peux cliquer sur l' icône, adjacente aux fichiers détectés (plusieurs feuilles l'une sur l'autre). Si oui, alors clique dessus et ensuite clique sur l'icône <Suivant>, au dessous, et choisis <Déplacer en quarantaine l'objet indésirable>.
- Du menu principal de l'outil, au haut à gauche, clique sur le menu <Fichier> et choisis <Enregistrer le rapport>. Sauvegarde le rapport sur ton Bureau. Ce dernier se nommera DrWeb.csv
- Ferme Dr.Web Cureit
- Redémarre ton ordi (important car certains fichiers peuvent être déplacés/réparés au redémarrage).
- Suite au redémarrage, poste (Copie/Colle) le contenu du rapport de Dr.Web dans ta prochaine réponse.
3
Réponse 2 / 19
buginformatik Messages postés 2163 Date d'inscription mardi 16 janvier 2007 Statut Contributeur Dernière intervention 21 avril 2011 54
16 avril 2009 à 15:08
--
~~ Faites nous confiance ~~
Mettez Toujours vos navigateurs internet à jour ! (IE7, Mozilla 3.0.6)
0
Réponse 3 / 19
Utilisateur anonyme
16 avril 2009 à 15:14
Mettez Toujours vos navigateurs internet à jour ! (IE7, Mozi­lla 3.0.6) ?? heu...

Mettez Toujours vos navigateurs internet à jour ! (IE8, Mozi­lla 3.0.8)

pas mieux comme ca ?
0
Réponse 4 / 19
arnold12760 Messages postés 582 Date d'inscription samedi 7 février 2009 Statut Membre Dernière intervention 19 décembre 2013 19
16 avril 2009 à 20:56
je suis entrain de faire le scan complet... Dsl pour le retard
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 19
Utilisateur anonyme
16 avril 2009 à 20:58
ok no souci :)
0
Réponse 6 / 19
arnold12760 Messages postés 582 Date d'inscription samedi 7 février 2009 Statut Membre Dernière intervention 19 décembre 2013 19
16 avril 2009 à 21:00
c normal que j'ai recu ce deroulement?

- Clique <Oui> pour tout à l'invite "Désinfecter ?" lorsqu'un fichier est détecté, et ensuite clique "Désinfecter".
0
Réponse 7 / 19
Utilisateur anonyme
16 avril 2009 à 21:09
bien oui il faut desinfecter les fichiers trouves non ? :)

je comprends pas ta question :(
0
Réponse 8 / 19
arnold12760 Messages postés 582 Date d'inscription samedi 7 février 2009 Statut Membre Dernière intervention 19 décembre 2013 19
16 avril 2009 à 21:25
euh je me suis trompé c enfaite "c normal que jai PAS recu ce deroulement"
0
Réponse 9 / 19
Utilisateur anonyme
16 avril 2009 à 21:28
rien n'a encore ete detecté non ?
0
Réponse 10 / 19
arnold12760 Messages postés 582 Date d'inscription samedi 7 février 2009 Statut Membre Dernière intervention 19 décembre 2013 19
16 avril 2009 à 21:39
nan 75/100 rien mais je croi que c vers la fin... parceque le rpoobleme est dans Windows/system32
0
Réponse 11 / 19
Utilisateur anonyme
16 avril 2009 à 22:52
ok ben a ce moment là tu pourras tester la commande :)
0
Réponse 12 / 19
arnold12760 Messages postés 582 Date d'inscription samedi 7 février 2009 Statut Membre Dernière intervention 19 décembre 2013 19
17 avril 2009 à 00:53
A0014054.exe;D:\System Volume Information\_restore{356FCC9C-845A-4672-BC6A-046A8AC88FE0}\RP105;Win32.Virut.56;Désinfecté.;
A0014057.exe;D:\System Volume Information\_restore{356FCC9C-845A-4672-BC6A-046A8AC88FE0}\RP105;Program.Ardamax;Irréparable.Quarantaine.;
A0014059.exe;D:\System Volume Information\_restore{356FCC9C-845A-4672-BC6A-046A8AC88FE0}\RP105;Trojan.KeyLogger.1438;Supprimé.;
voila
0
Réponse 13 / 19
arnold12760 Messages postés 582 Date d'inscription samedi 7 février 2009 Statut Membre Dernière intervention 19 décembre 2013 19
17 avril 2009 à 00:55
tjrs pas efficace je recoit des rapport de Virus etc...

et le plus chiiannt c D:/WINDOWS/System32/Cmd.exe

et quand jessaye d'allé manuelement pour l'effacer pas moyen parceque c Exe

aucun antivirus n'arrvie a les efacer
0
Réponse 14 / 19
Utilisateur anonyme
17 avril 2009 à 00:55
######## | XP _ Instal & recherche | #######


Telecharge et install UsbFix (de C_XX & Chiquitine29)

Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) susceptibles d avoir été infectés sans les ouvrir

# Double clic sur le raccourci UsbFix présent sur ton bureau .

# Choisi l option 1 ( Recherche )

# Laisse travailler l outil.

# Ensuite post le rapport UsbFix.txt qui apparaitra.

# Note : Le rapport UsbFix.txt est sauvegardé a la racine du disque. ( C:\UsbFix.txt )

( CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )

# Note : "Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.




0
Réponse 15 / 19
arnold12760 Messages postés 582 Date d'inscription samedi 7 février 2009 Statut Membre Dernière intervention 19 décembre 2013 19
17 avril 2009 à 10:37
il y a un probleme pendant le scan il y a toujour "SteelWerX CommanD Line Registry Editor" a rencontre un probleme Envoyer le rapport d'erreurs ou Ne pas envoyer. apres chaquee element il me demande ca
0
Réponse 16 / 19
arnold12760 Messages postés 582 Date d'inscription samedi 7 février 2009 Statut Membre Dernière intervention 19 décembre 2013 19
17 avril 2009 à 10:39
j'ai appui 1000x sur Ne pas envoyer et voila le resultat :D


############################## [ UsbFix V3.008 ]

# User : xX_Styl3_Xx (Administrateurs) # UNICORNI-FA3ACD
# Update on 13/04/09 by C_XX & Chiquitine29
# Start at: 10:34:54 | 17/04/2009

# Intel(R) Core(TM)2 CPU 6600 @ 2.40GHz
# Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 3
# Internet Explorer 7.0.5730.13
# Windows Firewall Status : Enabled
# AV : ESET NOD32 Antivirus 3.0 3.0 [ Enabled | Updated ]

# D:\ # Disque fixe local # 372,6 Go (306,37 Go free) # NTFS
# E:\ # Disque CD-ROM
# F:\ # Disque CD-ROM
# G:\ # Disque amovible
# H:\ # Disque amovible
# I:\ # Disque amovible
# J:\ # Disque amovible # 7,45 Go (365,5 Mo free) [KINGSTON] # FAT32
# K:\ # Disque amovible

############################## [ Processus actifs ]

D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\csrss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\system32\spoolsv.exe
D:\Program Files\Google\Update\GoogleUpdate.exe
D:\WINDOWS\Explorer.EXE
D:\WINDOWS\system32\RUNDLL32.EXE
D:\WINDOWS\RTHDCPL.EXE
D:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
D:\WINDOWS\system32\rundll32.exe
D:\Program Files\iTunes\iTunesHelper.exe
D:\Program Files\Java\jre6\bin\jusched.exe
D:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe
D:\WINDOWS\system32\svchost.exe
D:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
D:\Program Files\Bonjour\mDNSResponder.exe
D:\WINDOWS\system32\svchost.exe
D:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
D:\Program Files\Java\jre6\bin\jqs.exe
D:\Program Files\MSN Messenger\MsnMsgr.Exe
D:\Program Files\Skype\Phone\Skype.exe
D:\Program Files\JustVoip.com\JustVoip\JustVoip.exe
D:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe
D:\Program Files\uTorrent\uTorrent.exe
D:\WINDOWS\system32\nvsvc32.exe
D:\WINDOWS\system32\PnkBstrA.exe
D:\WINDOWS\system32\svchost.exe
D:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
D:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
D:\WINDOWS\system32\wbem\wmiapsrv.exe
D:\WINDOWS\System32\alg.exe
D:\Program Files\iPod\bin\iPodService.exe
D:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
D:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
D:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
D:\WINDOWS\system32\ctfmon.exe
D:\Program Files\Skype\Plugin Manager\skypePM.exe
D:\Program Files\Sierra\FEARCombat\FEARMP.EXE
D:\Program Files\Internet Explorer\iexplore.exe
D:\WINDOWS\system32\wbem\wmiprvse.exe

################## [ Registre # Startup ]


################## [ Informations ]

# Contenu de l'autorun J:\autorun.inf
[autorun]
open=WSCRIPT.EXE


# (!) Affichage des fichiers cachés non fonctionnel !

# -> ( Value | Good = 0x0 Bad = 0x1 )

# HKCU\SOFTWARE\...\Policies\System "DisableRegedit" = (0x0)
# HKCU\SOFTWARE\...\Policies\System "DisableRegistryTools" = (0x0)
# HKCU\SOFTWARE\...\Policies\System "DisableTaskMgr" = (0x0)

# HKLM\SOFTWARE\...\Policies\System "DisableRegedit" = (0x0)
# HKLM\SOFTWARE\...\Policies\System "DisableRegistryTools" = (0x0)
# HKLM\SOFTWARE\...\Policies\System "DisableTaskMgr" = (0x0)

################## [ Fichiers # Dossiers infectieux ]

Found ! J:\autorun.inf

################## [ Registre # Clés Run infectieuses ]

Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "Achitasin"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "Advanced DHTML Enable"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "antihost"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "as"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "ASocksrv"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "autoupdate"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "Batch32"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "CARPService" "
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "cftmonn"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "cmd32"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "CTEMON.EXE"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "df"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "DRIVESYS"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "DRIVESYS1"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "er"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "Explorer"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "FIXEDFON.FON"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "Framework Windows"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "FS6519"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "fucker"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "GMOGLFEO"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "Host Process for Windows Services"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "I downloaded pirated Software from P2P and now I post my Hijack log whining"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "IMJPMIG8.2"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "Install.exe"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "kernel32"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "KILLMS32DLL"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "Lany"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "loader.exe"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "lnternet Update"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "Macromedia"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "maskrider"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "mcafee"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MGT_reg" "
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "Microsoft" "
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "mmsass"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "ms32dll"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSConfigs" "
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSKernel32" "
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSN"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRAD0"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRAD1"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRAD2"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRAD3"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRAD4"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRAD5"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRAD6"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRAD7"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRAD8"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRAD9"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRADA"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRADB"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRADC"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRADD"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRADE"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRADF"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRADG"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRADH"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRADI"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRADJ"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRADK"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRADL"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRADM"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRADN"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRADO"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRADP"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRADQ"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRADR"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRADS"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRADT"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRADU"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRADV"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRADW"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRADX"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRADY"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRADZ"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MSRegInfo"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MsUpdate"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "MyMP3"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "nar"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "Nero Driver" "
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "officescan"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "Picture.jpg"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "Proyecto1"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "Pubnet"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "qw"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "r4n69424y"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "Raila Odinga"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "RavAV"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "recinfo49"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "regdiit"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "reginit"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "services"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "SpiderH"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "Spooler SubSystem App"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "startup"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "svchost"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "sysrest32.exe"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "System"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "System12"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "System64"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "Systemdir"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "SysDir"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "SysRes"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "System Updater Machine"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "ty"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "UC"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "UNICORNI-C74DB5"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "userd"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "V3M0"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "vbe"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "WillPolo"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "win32dll"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "Winamp"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "Winboot"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "winconfig"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "WinDebugger"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "Windows UDP Control Center"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "Windows UDP's Control Service"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "Windows Services 32"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "Windows\SysRes.vbs" "
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "WinExpress"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "WINFIX"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "winrun.dll"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "wintask"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "WintelUpdate"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "winudp64.exe"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "wscript32dll"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "zakariag"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "Zip"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\Run "zzzHPSETUP"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "amva"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "anhtaaa"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "antivirus 2007"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "Avg_AntiHost"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "avpa"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "BSserver"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "cbvcs"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "cdoosoft"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "Cognac"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "dorfgwe"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "ertyuop"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "EXPLORER.EXE"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "firewall 2008"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "hjdsdse"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "internet_explorer"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "Internet Security Service"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "jvsoft"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "jvvo"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "kamsoft"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "kava"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "kmmsoft"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "kxswsoft"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "kxva"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "kxvo"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "loader.exe"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "Microsoft Debug Manager"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "mmva"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "Mp3 player"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "MSFox"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "msiexec.exe"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "msn"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "MsServer"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "nhkletd"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "protect_autorun" "
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "Runonce"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "SpiderH"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "taso"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "tasoft"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "tava"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "vamsoft"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "Winboot"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "Windows"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "Windows Update"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "wsctf.exe"
Found ! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "Yahoo Messengger"
Found ! HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\\ "ENS-079256693B7"
Found ! HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\\ "Msn"
Found ! HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\\ "MsnConvert"
Found ! HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\\ "MsnHost"
Found ! HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\\ "MsnLoad"
Found ! HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\\ "MsnMessendger"
Found ! HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\\ "sys"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices\\ "DRam prosessor"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices\\ "Host Process for Windows Services"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices\\ "lnternet Update"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices\\ "mmsass"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices\\ "Nero Driver"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices\\ "System Updater Machine"
Found ! HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices\\ "Win32DLL"
Found ! HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\anhtaaa
Found ! HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cbvcs
Found ! HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cdoosoft
Found ! HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\dorfgwe
Found ! HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ertyuop
Found ! HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FrameWorkService
Found ! HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hjdsdse
Found ! HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\kava
Found ! HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\kamsoft
Found ! HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\kmmsoft
Found ! HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\kxswsoft
Found ! HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mmva
Found ! HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nhkletd
Found ! HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RavAV
Found ! HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\tava
Found ! HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vamsoft
Found ! HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run\\ "cbvcs"
Found ! HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run\\ "cdoosoft"
Found ! HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run\\ "kmmsoft"
Found ! HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run\\ "mmva"
Found ! HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run\\ "vamsoft"

################## [ Registre # Mountpoints2 ]

# -> Not Found !

################## [ ! Fin du rapport # UsbFix V3.008 ! ]
0
Réponse 17 / 19
Utilisateur anonyme
17 avril 2009 à 10:54
######## | Suppression | ########

Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) susceptibles d avoir été infectés sans les ouvrir

# Double clic sur le raccourci UsbFix présent sur ton bureau

# choisi l option 2 ( Suppression )

# Ton bureau disparaitra et le pc redémarrera .

# Au redémarrage , UsbFix scannera ton pc , laisse travailler l outil.

# Ensuite post le rapport UsbFix.txt qui apparaitra avec le bureau .

# Note : Le rapport UsbFix.txt est sauvegardé a la racine du disque.( C:\UsbFix.txt )

( CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )


######### | Désinstallation | #######


# Double clic sur le raccourci UsbFix présent sur ton bureau

# Choisi l option 3 ( Désinstaller ) ....
0
Réponse 18 / 19
arnold12760 Messages postés 582 Date d'inscription samedi 7 février 2009 Statut Membre Dernière intervention 19 décembre 2013 19
17 avril 2009 à 11:14
Enfait je crois que jai rtouver le probleme c mon antivirus qui est devenu fou!!!! il donne des alertes de virus a tous mes programme!!!!

-Je joue F.E.A.R Combat, il ferme il dit alerte D:Programme files/sierra/Fear.....
-JE joue Warrock il donne alerte et il efface Le programe Exe (alor je doi re installer le jeu.
-Il donne des alerte a le programe CMD.exe
-Sytem32
-Google
- il donne a tous je vais deinstaller l'antivirus
0
Réponse 19 / 19
Utilisateur anonyme
17 avril 2009 à 11:15
fais ce demandé au dessus
0

Discussions similaires

Est ce que le site tlauncher est dangereux ?
caribou -
bazfile -

1 réponse
4 virus en raison d’un porno ????
valou -
Bello040420 -

9 réponses
Comment savoir si j'ai attrapé un virus sur mon téléphone ?
Infolock -
bell -

66 réponses
Virus Altruistic
Mael03250 -
MisteryBean -

11 réponses
Supprimer notifications myavids.com sous Android.
Guy72 -
Liline -

7 réponses