Sujet Précédent Sujet Suivant

Virus flighter

KAPI21500 Messages postés 560 Statut Membre -  
 Utilisateur anonyme -
Bonjour,
j'ai 2 anti virus (virus flighter et avira) mais je n'arrive pas à supprimer le premier.je ne le trouve nul par.ou dois je chercher et comment l'eliminer
A voir également:

109 réponses

Précédent
Réponse 41 / 109
Utilisateur anonyme
 
tu as desinstallé Everest ?

desinstalle Norman s'il apparait encore dans ajout/suppression
0
Réponse 42 / 109
KAPI21500 Messages postés 560 Statut Membre 85
 
je 'nai pas desinstalle everest
0
Réponse 43 / 109
jacques.gache Messages postés 34829 Statut Contributeur sécurité 1 618
 
gen-hackman bonjour, merci d'être passé par ici @+
0
KAPI21500 Messages postés 560 Statut Membre 85
 
oui,merci beaucoup.il m'a aider a enlever quelque saloperies sur mon pc
0
Réponse 44 / 109
jacques.gache Messages postés 34829 Statut Contributeur sécurité 1 618
 
oui il a surtout réussi à te virer ton VIRUSfighter !!!
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 45 / 109
KAPI21500 Messages postés 560 Statut Membre 85
 
non,pas encore.il est toujours dans securité.
je viens de télécharger pc securite test et le resultat est:

virus:test des protections antivirus:30%(protection moyenne
0
Réponse 46 / 109
KAPI21500 Messages postés 560 Statut Membre 85
 
en fait,c'est + de la pub pour acheter viruskeeper qu'autre chose
0
Réponse 47 / 109
jacques.gache Messages postés 34829 Statut Contributeur sécurité 1 618
 
c'est bizare comme tu dis En fait,c'est + de la pub pour acheter viruskeeper qu'autre chose
cela me fait pense à un rogue tu vas passer smitfraudfix pour voir si il trouve quelque chose

Ouvre ce lien (merci a S!RI pour ce programme). http://siri.urz.free.fr/Fix/SmitfraudFix.php

le mieux serait que tu désactives tes protections résidente "anti-virus et anti-spyware"
le temps d'installer smitfraudfix et de faire l'analyse.

Process.exe est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus, ect...) comme étant un RiskTool. Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus. Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.

et télécharge SmitfraudFix.exe.

Regarde le tuto

Double-clique sur SmitfraudFix.exe (Sous Vista, il faut cliquer droit sur SmitfraudFix et choisir Exécuter en tant qu'administrateur).

Exécute le en choisissant l’option 1

il va générer un rapport

Copie/colle le sur le poste stp.

une petites démo en vidéo :http://pagesperso-orange.fr/rginformatique/section%20virus/smitfraudfix.htm
0
Réponse 48 / 109
KAPI21500 Messages postés 560 Statut Membre 85
 
il ne me reste plus que cette ligne que je n'arrive pas a trouver ni a erradiquer
0
Réponse 49 / 109
KAPI21500 Messages postés 560 Statut Membre 85
 
14/05/2009 ---- 19:39:00,48

----------------------------------
§§§§§§ [VIRUSfighter] §§§§§§
----------------------------------
[X] Registre

-------------- [ ] rapide
-- Fichier --- [ ] disque systeme
------------- [X] complete

********************
[Registre]
********************

[HKEY_USERS\S-1-5-21-3417162932-52292693-2583154986-1007\Software\Google\Google Earth Plus\UsageStatistics]
"loginDiagInfo"="ver=4.2.0205.5730&err=1&errc=8&stsc=-1073741812&hl=fr&gl=FR&cook=0&hist=1&lastHttpErr=1_12029&httpErr-0=1_12029&httpErr-1=1_12029&httpErr-2=1_12029&geErrMap-0=1_3&errCodeMap-0=12029_3&ntKH1=-1073741812&ntNS=-1073741812&ntGO=-1073741812&ntSU=-1073741812&ntKH2=-1073741812&prox=1&av=VIRUSfighter_ver._5.90&avv=5.90"

*******************
[Fichier]
*******************

*********************
[Même date]
*********************

Aucun fichier créé à la même date détecté

Outil Aide Diagnostic By !aur3n7 Version 1.1
----------------------------------
§§§§§ Fin Rapport §§§§§
----------------------------------
0
Réponse 50 / 109
KAPI21500 Messages postés 560 Statut Membre 85
 
J'ai un probleme pour telecharger SmitfraudFix : la DLL systeme user 32.dll a été repositionner en mémoire.le repositionnement a été fait car la DLL C:\windows\systeme\shell32.dll occupait une zone d'adresse rservée pour les DLL systeme de windows NT
0
Réponse 51 / 109
jacques.gache Messages postés 34829 Statut Contributeur sécurité 1 618
 
bon la écoute je vois pas ce qui se passe je vais MP gen-hackman pour qu'il passes car la perso je sature !!!
0
Réponse 52 / 109
KAPI21500 Messages postés 560 Statut Membre 85
 
merci tout de meme pour ton aide
0
Réponse 53 / 109
Utilisateur anonyme
 
tu peux relancer OAD avec ceci ?:

Norman
0
Réponse 54 / 109
KAPI21500 Messages postés 560 Statut Membre 85
 
14/05/2009 ---- 21:27:22,17

----------------------------------
§§§§§§ [Norman] §§§§§§
----------------------------------
[X] Registre

-------------- [ ] rapide
-- Fichier --- [ ] disque systeme
------------- [X] complete

********************
[Registre]
********************

[HKEY_LOCAL_MACHINE\SOFTWARE\Norman Data Defense Systems]

[HKEY_LOCAL_MACHINE\SOFTWARE\Norman Data Defense Systems\NIU]

[HKEY_LOCAL_MACHINE\SOFTWARE\Norman Data Defense Systems\NIU]
"Files1_Url"="download.norman.no/nvc/2008-01-31/files1.txt"

[HKEY_LOCAL_MACHINE\SOFTWARE\Norman Data Defense Systems\Nvc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Norman Data Defense Systems\Nvc\Ninfo]

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_ELOGGERSVC6\0000]
"DeviceDesc"="Norman eLogger service 6"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NIPSVC\0000]
"DeviceDesc"="Norman API-hooking helper"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_NJEEVES]

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]
"Service"="Norman NJeeves"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]
"DeviceDesc"="Norman NJeeves"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_ZANDA]

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_ZANDA\0000]

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_ZANDA\0000]
"Service"="Norman ZANDA"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_ZANDA\0000]
"DeviceDesc"="Norman ZANDA"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NVCOAS\0000]
"DeviceDesc"="Norman Virus Control on-access component"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NVCSCHEDULER\0000]
"DeviceDesc"="Norman Virus Control Scheduler"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Eventlog\Application\NormanNPT]

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_ELOGGERSVC6\0000]
"DeviceDesc"="Norman eLogger service 6"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NIPSVC\0000]
"DeviceDesc"="Norman API-hooking helper"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_NJEEVES]

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]
"Service"="Norman NJeeves"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]
"DeviceDesc"="Norman NJeeves"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_ZANDA]

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_ZANDA\0000]

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_ZANDA\0000]
"Service"="Norman ZANDA"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_ZANDA\0000]
"DeviceDesc"="Norman ZANDA"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NVCOAS\0000]
"DeviceDesc"="Norman Virus Control on-access component"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NVCSCHEDULER\0000]
"DeviceDesc"="Norman Virus Control Scheduler"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\eLoggerSvc6]
"DisplayName"="Norman eLogger service 6"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Eventlog\Application\NormanNPT]

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Norman NJeeves]

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Norman NJeeves]
"DisplayName"="Norman NJeeves"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Norman NJeeves\Security]

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Norman ZANDA]

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Norman ZANDA]
"DisplayName"="Norman ZANDA"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Norman ZANDA\Security]

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\nvcoas]
"DisplayName"="Norman Virus Control on-access component"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\NVCScheduler]
"DisplayName"="Norman Virus Control Scheduler"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_ELOGGERSVC6\0000]
"DeviceDesc"="Norman eLogger service 6"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NIPSVC\0000]
"DeviceDesc"="Norman API-hooking helper"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_NJEEVES]

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]
"Service"="Norman NJeeves"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]
"DeviceDesc"="Norman NJeeves"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_ZANDA]

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_ZANDA\0000]

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_ZANDA\0000]
"Service"="Norman ZANDA"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_ZANDA\0000]
"DeviceDesc"="Norman ZANDA"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NVCOAS\0000]
"DeviceDesc"="Norman Virus Control on-access component"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NVCSCHEDULER\0000]
"DeviceDesc"="Norman Virus Control Scheduler"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Eventlog\Application\NormanNPT]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ELOGGERSVC6\0000]
"DeviceDesc"="Norman eLogger service 6"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NIPSVC\0000]
"DeviceDesc"="Norman API-hooking helper"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_NJEEVES]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]
"Service"="Norman NJeeves"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]
"DeviceDesc"="Norman NJeeves"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_ZANDA]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_ZANDA\0000]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_ZANDA\0000]
"Service"="Norman ZANDA"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_ZANDA\0000]
"DeviceDesc"="Norman ZANDA"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NVCOAS\0000]
"DeviceDesc"="Norman Virus Control on-access component"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NVCSCHEDULER\0000]
"DeviceDesc"="Norman Virus Control Scheduler"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\NormanNPT]

[HKEY_USERS\.DEFAULT\Software\Norman Data Defense Systems]

[HKEY_USERS\.DEFAULT\Software\Norman Data Defense Systems\NIU]

[HKEY_USERS\S-1-5-21-3417162932-52292693-2583154986-1007\Software\BillP Studios\WinPatrol\Services]
"Norman eLogger service 6"="700"

[HKEY_USERS\S-1-5-21-3417162932-52292693-2583154986-1007\Software\BillP Studios\WinPatrol\Services]
"Norman NJeeves"="700"

[HKEY_USERS\S-1-5-21-3417162932-52292693-2583154986-1007\Software\BillP Studios\WinPatrol\Services]
"Norman ZANDA"="700"

[HKEY_USERS\S-1-5-21-3417162932-52292693-2583154986-1007\Software\BillP Studios\WinPatrol\Services]
"Norman Virus Control on-access component"="700"

[HKEY_USERS\S-1-5-21-3417162932-52292693-2583154986-1007\Software\BillP Studios\WinPatrol\Services]
"Norman Virus Control Scheduler"="700"

[HKEY_USERS\S-1-5-18\Software\Norman Data Defense Systems]

[HKEY_USERS\S-1-5-18\Software\Norman Data Defense Systems\NIU]

*******************
[Fichier]
*******************

*********************
[Même date]
*********************

Aucun fichier créé à la même date détecté

Outil Aide Diagnostic By !aur3n7 Version 1.1
----------------------------------
§§§§§ Fin Rapport §§§§§
----------------------------------
0
Réponse 55 / 109
Utilisateur anonyme
 
---> Désactive ton antivirus le temps de la manipulation car OTMoveIt3 est détecté comme une infection à tort.

---> Télécharge OTMoveIt3 (OldTimer) sur ton Bureau :

---> Double-clique sur OTMoveIt3.exe afin de le lancer.

---> Copie (Ctrl+C) le texte suivant ci-dessous :



:processes
explorer.exe

:files
C:\Program Files\Norman
C:\VIRUSfighter

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Norman Data Defense Systems]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Norman Data Defense Systems\NIU]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Norman Data Defense Systems\NIU]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Norman Data Defense Systems\Nvc]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Norman Data Defense Systems\Nvc\Ninfo]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_ELOGGERSVC6\0000]
"DeviceDesc"=""
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NIPSVC\0000]
"DeviceDesc"=""
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_NJEEVES]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_ZANDA]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_ZANDA\0000]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_ZANDA\0000]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_ZANDA\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NVCOAS\0000]
"DeviceDesc"=""
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NVCSCHEDULER\0000]
"DeviceDesc"=""
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Eventlog\Application\NormanNPT]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_ELOGGERSVC6\0000]
"DeviceDesc"=""
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NIPSVC\0000]
"DeviceDesc"=""
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_NJEEVES]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_ZANDA]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_ZANDA\0000]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_ZANDA\0000]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_ZANDA\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NVCOAS\0000]
"DeviceDesc"=""
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NVCSCHEDULER\0000]
"DeviceDesc"=""
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\eLoggerSvc6]
"DisplayName"=""
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Eventlog\Application\NormanNPT]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Norman NJeeves]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Norman NJeeves]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Norman NJeeves\Security]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Norman ZANDA]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Norman ZANDA]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Norman ZANDA\Security]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\nvcoas]
"DisplayName"=""
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\NVCScheduler]
"DisplayName"=""
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_ELOGGERSVC6\0000]
"DeviceDesc"=""
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NIPSVC\0000]
"DeviceDesc"=""
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_NJEEVES]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_ZANDA]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_ZANDA\0000]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_ZANDA\0000]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_ZANDA\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NVCOAS\0000]
"DeviceDesc"=""
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NVCSCHEDULER\0000]
"DeviceDesc"=""
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Eventlog\Application\NormanNPT]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ELOGGERSVC6\0000]
"DeviceDesc"=""
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NIPSVC\0000]
"DeviceDesc"=""
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_NJEEVES]
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_ZANDA]
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_ZANDA\0000]
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_ZANDA\0000]
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_ZANDA\0000]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NVCOAS\0000]
"DeviceDesc"=""
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NVCSCHEDULER\0000]
"DeviceDesc"=""
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\NormanNPT]
[-HKEY_USERS\.DEFAULT\Software\Norman Data Defense Systems]
[-HKEY_USERS\.DEFAULT\Software\Norman Data Defense Systems\NIU]
[HKEY_USERS\S-1-5-21-3417162932-52292693-2583154986-1007\Software\BillP Studios\WinPatrol\Services]
"Norman eLogger service 6"=-
[HKEY_USERS\S-1-5-21-3417162932-52292693-2583154986-1007\Software\BillP Studios\WinPatrol\Services]
"Norman NJeeves"=-
[HKEY_USERS\S-1-5-21-3417162932-52292693-2583154986-1007\Software\BillP Studios\WinPatrol\Services]
"Norman ZANDA"=-
[HKEY_USERS\S-1-5-21-3417162932-52292693-2583154986-1007\Software\BillP Studios\WinPatrol\Services]
"Norman Virus Control on-access component"=-
[HKEY_USERS\S-1-5-21-3417162932-52292693-2583154986-1007\Software\BillP Studios\WinPatrol\Services]
"Norman Virus Control Scheduler"=-
[-HKEY_USERS\S-1-5-18\Software\Norman Data Defense Systems]
[-HKEY_USERS\S-1-5-18\Software\Norman Data Defense Systems\NIU]

:commands
[purity]
[emptytemp]
[start explorer]
[reboot]



---> Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.

---> Clique maintenant sur le bouton MoveIt! puis ferme OTMoveIt3.

Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur YES.

---> Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
Le nom du rapport correspond au moment de sa création : date_heure.log
0
Réponse 56 / 109
KAPI21500 Messages postés 560 Statut Membre 85
 
voici:
========== PROCESSES ==========
Process explorer.exe killed successfully.
========== FILES ==========
File/Folder C:\Program Files\Norman not found.
File/Folder C:\VIRUSfighter not found.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Norman Data Defense Systems\\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Norman Data Defense Systems\NIU\\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Norman Data Defense Systems\NIU\\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Norman Data Defense Systems\Nvc\\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Norman Data Defense Systems\Nvc\Ninfo\\ not found.
Unable to set value : HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_ELOGGERSVC6\0000\\"DeviceDesc"|"" /E!
Unable to set value : HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NIPSVC\0000\\"DeviceDesc"|"" /E!
Unable to delete registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_NJEEVES\\ .
Unable to delete registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_NJEEVES\0000\\ .
Unable to delete registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_NJEEVES\0000\\ .
Unable to delete registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_NJEEVES\0000\\ .
Unable to delete registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_ZANDA\\ .
Unable to delete registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_ZANDA\0000\\ .
Unable to delete registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_ZANDA\0000\\ .
Unable to delete registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_ZANDA\0000\\ .
Unable to set value : HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NVCOAS\0000\\"DeviceDesc"|"" /E!
Unable to set value : HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NVCSCHEDULER\0000\\"DeviceDesc"|"" /E!
Registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Eventlog\Application\NormanNPT\\ deleted successfully.
Unable to set value : HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_ELOGGERSVC6\0000\\"DeviceDesc"|"" /E!
Unable to set value : HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NIPSVC\0000\\"DeviceDesc"|"" /E!
Unable to delete registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_NJEEVES\\ .
Unable to delete registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_NJEEVES\0000\\ .
Unable to delete registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_NJEEVES\0000\\ .
Unable to delete registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_NJEEVES\0000\\ .
Unable to delete registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_ZANDA\\ .
Unable to delete registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_ZANDA\0000\\ .
Unable to delete registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_ZANDA\0000\\ .
Unable to delete registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_ZANDA\0000\\ .
Unable to set value : HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NVCOAS\0000\\"DeviceDesc"|"" /E!
Unable to set value : HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NVCSCHEDULER\0000\\"DeviceDesc"|"" /E!
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\eLoggerSvc6\\"DisplayName"|"" /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Eventlog\Application\NormanNPT\\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Norman NJeeves\\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Norman NJeeves\\ not found.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Norman NJeeves\Security\\ not found.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Norman ZANDA\\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Norman ZANDA\\ not found.
Registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Norman ZANDA\Security\\ not found.
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\nvcoas\\"DisplayName"|"" /E : value set successfully!
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\NVCScheduler\\"DisplayName"|"" /E : value set successfully!
Unable to set value : HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_ELOGGERSVC6\0000\\"DeviceDesc"|"" /E!
Unable to set value : HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NIPSVC\0000\\"DeviceDesc"|"" /E!
Unable to delete registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_NJEEVES\\ .
Unable to delete registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_NJEEVES\0000\\ .
Unable to delete registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_NJEEVES\0000\\ .
Unable to delete registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_NJEEVES\0000\\ .
Unable to delete registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_ZANDA\\ .
Unable to delete registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_ZANDA\0000\\ .
Unable to delete registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_ZANDA\0000\\ .
Unable to delete registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_ZANDA\0000\\ .
Unable to set value : HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NVCOAS\0000\\"DeviceDesc"|"" /E!
Unable to set value : HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NVCSCHEDULER\0000\\"DeviceDesc"|"" /E!
Registry key HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Eventlog\Application\NormanNPT\\ deleted successfully.
Unable to set value : HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ELOGGERSVC6\0000\\"DeviceDesc"|"" /E!
Unable to set value : HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NIPSVC\0000\\"DeviceDesc"|"" /E!
Unable to delete registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_NJEEVES\\ .
Unable to delete registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_NJEEVES\0000\\ .
Unable to delete registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_NJEEVES\0000\\ .
Unable to delete registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_NJEEVES\0000\\ .
Unable to delete registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_ZANDA\\ .
Unable to delete registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_ZANDA\0000\\ .
Unable to delete registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_ZANDA\0000\\ .
Unable to delete registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_ZANDA\0000\\ .
Unable to set value : HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NVCOAS\0000\\"DeviceDesc"|"" /E!
Unable to set value : HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NVCSCHEDULER\0000\\"DeviceDesc"|"" /E!
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\NormanNPT\\ not found.
Registry key HKEY_USERS\.DEFAULT\Software\Norman Data Defense Systems\\ deleted successfully.
Registry key HKEY_USERS\.DEFAULT\Software\Norman Data Defense Systems\NIU\\ not found.
Registry value HKEY_USERS\S-1-5-21-3417162932-52292693-2583154986-1007\Software\BillP Studios\WinPatrol\Services\\Norman eLogger service 6 deleted successfully.
Registry value HKEY_USERS\S-1-5-21-3417162932-52292693-2583154986-1007\Software\BillP Studios\WinPatrol\Services\\Norman NJeeves deleted successfully.
Registry value HKEY_USERS\S-1-5-21-3417162932-52292693-2583154986-1007\Software\BillP Studios\WinPatrol\Services\\Norman ZANDA deleted successfully.
Registry value HKEY_USERS\S-1-5-21-3417162932-52292693-2583154986-1007\Software\BillP Studios\WinPatrol\Services\\Norman Virus Control on-access component deleted successfully.
Registry value HKEY_USERS\S-1-5-21-3417162932-52292693-2583154986-1007\Software\BillP Studios\WinPatrol\Services\\Norman Virus Control Scheduler deleted successfully.
Registry key HKEY_USERS\S-1-5-18\Software\Norman Data Defense Systems\\ not found.
Registry key HKEY_USERS\S-1-5-18\Software\Norman Data Defense Systems\NIU\\ not found.
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\thierry\LOCALS~1\Temp\etilqs_wxHit6sNUHFgCEAccfLd scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Internet Explorer cache folder emptied.
File delete failed. C:\Documents and Settings\thierry\Local Settings\Temporary Internet Files\Content.IE5\JLAZ4M7O\banner[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\thierry\Local Settings\Temporary Internet Files\Content.IE5\JLAZ4M7O\downbanner[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\thierry\Local Settings\Temporary Internet Files\Content.IE5\JLAZ4M7O\downbanner[2].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\thierry\Local Settings\Temporary Internet Files\Content.IE5\DXTRZV1D\banner[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\thierry\Local Settings\Temporary Internet Files\Content.IE5\DXTRZV1D\banner[2].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\thierry\Local Settings\Temporary Internet Files\Content.IE5\CG0CNDW0\downbanner[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\thierry\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
User's Temporary Internet Files folder emptied.
Local Service Temp folder emptied.
Local Service Temporary Internet Files folder emptied.
Network Service Temp folder emptied.
Network Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_13c.dat scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
File delete failed. C:\Documents and Settings\thierry\Local Settings\Application Data\Mozilla\Firefox\Profiles\r4n71rw8.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\thierry\Local Settings\Application Data\Mozilla\Firefox\Profiles\r4n71rw8.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\thierry\Local Settings\Application Data\Mozilla\Firefox\Profiles\r4n71rw8.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\thierry\Local Settings\Application Data\Mozilla\Firefox\Profiles\r4n71rw8.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\thierry\Local Settings\Application Data\Mozilla\Firefox\Profiles\r4n71rw8.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\thierry\Local Settings\Application Data\Mozilla\Firefox\Profiles\r4n71rw8.default\XUL.mfl scheduled to be deleted on reboot.
FireFox cache emptied.
Temp folders emptied.
Explorer started successfully

OTMoveIt3 by OldTimer - Version 1.0.11.0 log created on 05142009_214909

Files moved on Reboot...
File C:\DOCUME~1\thierry\LOCALS~1\Temp\etilqs_wxHit6sNUHFgCEAccfLd not found!
C:\Documents and Settings\thierry\Local Settings\Temporary Internet Files\Content.IE5\JLAZ4M7O\banner[1].htm moved successfully.
C:\Documents and Settings\thierry\Local Settings\Temporary Internet Files\Content.IE5\JLAZ4M7O\downbanner[1].htm moved successfully.
C:\Documents and Settings\thierry\Local Settings\Temporary Internet Files\Content.IE5\JLAZ4M7O\downbanner[2].htm moved successfully.
C:\Documents and Settings\thierry\Local Settings\Temporary Internet Files\Content.IE5\DXTRZV1D\banner[1].htm moved successfully.
C:\Documents and Settings\thierry\Local Settings\Temporary Internet Files\Content.IE5\DXTRZV1D\banner[2].htm moved successfully.
C:\Documents and Settings\thierry\Local Settings\Temporary Internet Files\Content.IE5\CG0CNDW0\downbanner[1].htm moved successfully.
File C:\WINDOWS\temp\Perflib_Perfdata_13c.dat not found!
C:\Documents and Settings\thierry\Local Settings\Application Data\Mozilla\Firefox\Profiles\r4n71rw8.default\Cache\_CACHE_001_ moved successfully.
C:\Documents and Settings\thierry\Local Settings\Application Data\Mozilla\Firefox\Profiles\r4n71rw8.default\Cache\_CACHE_002_ moved successfully.
C:\Documents and Settings\thierry\Local Settings\Application Data\Mozilla\Firefox\Profiles\r4n71rw8.default\Cache\_CACHE_003_ moved successfully.
C:\Documents and Settings\thierry\Local Settings\Application Data\Mozilla\Firefox\Profiles\r4n71rw8.default\Cache\_CACHE_MAP_ moved successfully.
C:\Documents and Settings\thierry\Local Settings\Application Data\Mozilla\Firefox\Profiles\r4n71rw8.default\urlclassifier3.sqlite moved successfully.
C:\Documents and Settings\thierry\Local Settings\Application Data\Mozilla\Firefox\Profiles\r4n71rw8.default\XUL.mfl moved successfully.
0
Réponse 57 / 109
KAPI21500 Messages postés 560 Statut Membre 85
 
je viens de faire un autre AOD et voici :
14/05/2009 ---- 22:08:46,17

----------------------------------
§§§§§§ [Norman] §§§§§§
----------------------------------
[X] Registre

-------------- [ ] rapide
-- Fichier --- [ ] disque systeme
------------- [X] complete

********************
[Registre]
********************

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_ELOGGERSVC6\0000]
"DeviceDesc"="Norman eLogger service 6"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NIPSVC\0000]
"DeviceDesc"="Norman API-hooking helper"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_NJEEVES]

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]
"Service"="Norman NJeeves"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]
"DeviceDesc"="Norman NJeeves"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_ZANDA]

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_ZANDA\0000]

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_ZANDA\0000]
"Service"="Norman ZANDA"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_ZANDA\0000]
"DeviceDesc"="Norman ZANDA"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NVCOAS\0000]
"DeviceDesc"="Norman Virus Control on-access component"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NVCSCHEDULER\0000]
"DeviceDesc"="Norman Virus Control Scheduler"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_ELOGGERSVC6\0000]
"DeviceDesc"="Norman eLogger service 6"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NIPSVC\0000]
"DeviceDesc"="Norman API-hooking helper"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_NJEEVES]

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]
"Service"="Norman NJeeves"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]
"DeviceDesc"="Norman NJeeves"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_ZANDA]

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_ZANDA\0000]

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_ZANDA\0000]
"Service"="Norman ZANDA"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_ZANDA\0000]
"DeviceDesc"="Norman ZANDA"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NVCOAS\0000]
"DeviceDesc"="Norman Virus Control on-access component"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NVCSCHEDULER\0000]
"DeviceDesc"="Norman Virus Control Scheduler"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_ELOGGERSVC6\0000]
"DeviceDesc"="Norman eLogger service 6"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NIPSVC\0000]
"DeviceDesc"="Norman API-hooking helper"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_NJEEVES]

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]
"Service"="Norman NJeeves"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]
"DeviceDesc"="Norman NJeeves"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_ZANDA]

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_ZANDA\0000]

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_ZANDA\0000]
"Service"="Norman ZANDA"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_ZANDA\0000]
"DeviceDesc"="Norman ZANDA"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NVCOAS\0000]
"DeviceDesc"="Norman Virus Control on-access component"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NVCSCHEDULER\0000]
"DeviceDesc"="Norman Virus Control Scheduler"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ELOGGERSVC6\0000]
"DeviceDesc"="Norman eLogger service 6"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NIPSVC\0000]
"DeviceDesc"="Norman API-hooking helper"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_NJEEVES]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]
"Service"="Norman NJeeves"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_NJEEVES\0000]
"DeviceDesc"="Norman NJeeves"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_ZANDA]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_ZANDA\0000]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_ZANDA\0000]
"Service"="Norman ZANDA"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_ZANDA\0000]
"DeviceDesc"="Norman ZANDA"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NVCOAS\0000]
"DeviceDesc"="Norman Virus Control on-access component"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NVCSCHEDULER\0000]
"DeviceDesc"="Norman Virus Control Scheduler"

*******************
[Fichier]
*******************

*********************
[Même date]
*********************

Aucun fichier créé à la même date détecté

Outil Aide Diagnostic By !aur3n7 Version 1.1
----------------------------------
§§§§§ Fin Rapport §§§§§
----------------------------------
0
Réponse 58 / 109
jacques.gache Messages postés 34829 Statut Contributeur sécurité 1 618
 
oui car je pense que c'est spybot qui as encore bloquer la modif du registre
KAPI21500tu devrais coller ce qui est en citation en desous dans le bloc notes car tu n'aura pas acces à internet en mode sans echec donsc si tu veux refaire otmoviet et pouvoir mettre le texte !!! 

:processes 
explorer.exe 

:files 
C:\Program Files\Norman 
C:\VIRUSfighter 

:reg 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Norman Data Defense Systems] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Norman Data Defense Systems\NIU] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Norman Data Defense Systems\NIU] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Norman Data Defense Systems\Nvc] 
[-HKEY_LOCAL_MACHINE\SOFTWARE\Norman Data Defense Systems\Nvc\Ninfo] 
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_ELOGGERSVC6\0000] 
"DeviceDesc"="" 
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NIPSVC\0000] 
"DeviceDesc"="" 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_NJEEVES] 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_NJEEVES\0000] 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_NJEEVES\0000] 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_NJEEVES\0000] 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_ZANDA] 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_ZANDA\0000] 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_ZANDA\0000] 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NORMAN_ZANDA\0000] 
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NVCOAS\0000] 
"DeviceDesc"="" 
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_NVCSCHEDULER\0000] 
"DeviceDesc"="" 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Eventlog\Application\NormanNPT] 
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_ELOGGERSVC6\0000] 
"DeviceDesc"="" 
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NIPSVC\0000] 
"DeviceDesc"="" 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_NJEEVES] 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_NJEEVES\0000] 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_NJEEVES\0000] 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_NJEEVES\0000] 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_ZANDA] 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_ZANDA\0000] 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_ZANDA\0000] 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NORMAN_ZANDA\0000] 
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NVCOAS\0000] 
"DeviceDesc"="" 
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_NVCSCHEDULER\0000] 
"DeviceDesc"="" 
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\eLoggerSvc6] 
"DisplayName"="" 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Eventlog\Application\NormanNPT] 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Norman NJeeves] 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Norman NJeeves] 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Norman NJeeves\Security] 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Norman ZANDA] 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Norman ZANDA] 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Norman ZANDA\Security] 
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\nvcoas] 
"DisplayName"="" 
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\NVCScheduler] 
"DisplayName"="" 
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_ELOGGERSVC6\0000] 
"DeviceDesc"="" 
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NIPSVC\0000] 
"DeviceDesc"="" 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_NJEEVES] 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_NJEEVES\0000] 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_NJEEVES\0000] 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_NJEEVES\0000] 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_ZANDA] 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_ZANDA\0000] 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_ZANDA\0000] 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NORMAN_ZANDA\0000] 
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NVCOAS\0000] 
"DeviceDesc"="" 
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_NVCSCHEDULER\0000] 
"DeviceDesc"="" 
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\Eventlog\Application\NormanNPT] 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ELOGGERSVC6\0000] 
"DeviceDesc"="" 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NIPSVC\0000] 
"DeviceDesc"="" 
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_NJEEVES] 
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_NJEEVES\0000] 
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_NJEEVES\0000] 
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_NJEEVES\0000] 
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_ZANDA] 
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_ZANDA\0000] 
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_ZANDA\0000] 
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NORMAN_ZANDA\0000] 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NVCOAS\0000] 
"DeviceDesc"="" 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NVCSCHEDULER\0000] 
"DeviceDesc"="" 
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\NormanNPT] 
[-HKEY_USERS\.DEFAULT\Software\Norman Data Defense Systems] 
[-HKEY_USERS\.DEFAULT\Software\Norman Data Defense Systems\NIU] 
[HKEY_USERS\S-1-5-21-3417162932-52292693-2583154986-1007\Software\BillP Studios\WinPatrol\Services] 
"Norman eLogger service 6"=- 
[HKEY_USERS\S-1-5-21-3417162932-52292693-2583154986-1007\Software\BillP Studios\WinPatrol\Services] 
"Norman NJeeves"=- 
[HKEY_USERS\S-1-5-21-3417162932-52292693-2583154986-1007\Software\BillP Studios\WinPatrol\Services] 
"Norman ZANDA"=- 
[HKEY_USERS\S-1-5-21-3417162932-52292693-2583154986-1007\Software\BillP Studios\WinPatrol\Services] 
"Norman Virus Control on-access component"=- 
[HKEY_USERS\S-1-5-21-3417162932-52292693-2583154986-1007\Software\BillP Studios\WinPatrol\Services] 
"Norman Virus Control Scheduler"=- 
[-HKEY_USERS\S-1-5-18\Software\Norman Data Defense Systems] 
[-HKEY_USERS\S-1-5-18\Software\Norman Data Defense Systems\NIU] 

:commands 
[purity] 
[emptytemp] 
[start explorer] 
[reboot]
0
Réponse 59 / 109
KAPI21500 Messages postés 560 Statut Membre 85
 
merci pour la precision.lorsque je suis en mode ss echec,il n'y a pas sur le burreau: AOD ni OTmovilt
0
Réponse 60 / 109
Utilisateur anonyme
 
????????????? tu prends ta session ?
0

Discussions similaires

Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses
Désinstaller Softonic
Diguimette -
lilidurhone -

5 réponses
virus Artemis!
mabiche37 -
Malekal_morte- -

14 réponses
Message Apple virus !!
Souclik67 -
MPMP10 -

3 réponses