Virus msn messenger (mes photos de vacances)
aloa78
-
aloa78 -
aloa78 -
Bonjour,
J'ai le virus sur msn messenger : j'ai reçu d'une amie "voici mes photos de vacances". Naïvement j'ai téléchargé et c'était un virus.
J'ai fait un scan SDfix selon quelques conseils glanés sur ce forum.
Maintenant j'ai le rapport mais je ne sais pas quoi faire ensuite!
Quelqu'un pourrait-il m'aider s'il vous plaît???
Merci d'avance.
SDFix: Version 1.107
Run by elise on 01/10/2007 at 20:06
Microsoft Windows XP [version 5.1.2600]
Running From: E:\DOCUME~1\elise\Bureau\SDFix
Safe Mode:
Checking Services:
Name:
kprof
poof
gnaymlyy
ImagePath:
\??\E:\WINDOWS\System32\kprof
\??\E:\WINDOWS\System32\poof
E:\WINDOWS\system32\bqxmyiwytv.exe /service
kprof - Deleted
poof - Deleted
gnaymlyy - Deleted
Restoring Windows Registry Values
Restoring Windows Default Hosts File
Rebooting...
Normal Mode:
Checking Files:
Trojan Files Found:
E:\WINDOWS\SYSTEM32\SETUP_~1.EXE - Deleted
E:\WINDOWS\Downloaded Program Files\UDC6V_0001_D19M0709NetInstaller.exe - Deleted
E:\WINDOWS\svchost.ini - Deleted
E:\WINDOWS\system32\i - Deleted
E:\WINDOWS\system32\koos.exe - Deleted
E:\WINDOWS\system32\setup_30252.exe - Deleted
Removing Temp Files...
ADS Check:
E:\WINDOWS
No streams found.
E:\WINDOWS\system32
No streams found.
E:\WINDOWS\system32\svchost.exe
No streams found.
E:\WINDOWS\system32\ntoskrnl.exe
No streams found.
Final Check:
Remaining Services:
------------------
Authorized Application Key Export:
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"E:\\Program Files\\eMule\\emule.exe"="E:\\Program Files\\eMule\\emule.exe:*:Enabled:eMule"
"E:\\Program Files\\MSN Messenger\\msnmsgr.exe"="E:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"E:\\Program Files\\MSN Messenger\\livecall.exe"="E:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"E:\\Program Files\\MSN Messenger\\msnmsgr.exe"="E:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"E:\\Program Files\\MSN Messenger\\livecall.exe"="E:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
Remaining Files:
---------------
File Backups: - E:\DOCUME~1\elise\Bureau\SDFix\backups\backups.zip
Files with Hidden Attributes:
Fri 8 Dec 2006 8 ..SHR --- "E:\WINDOWS\system32\E9DF2F88BB.sys"
Fri 8 Dec 2006 1,682 A.SH. --- "E:\WINDOWS\system32\KGyGaAvL.sys"
Fri 28 Sep 2007 60,928 ..SHR --- "E:\WINDOWS\system32\wscsvc.exe"
Mon 1 Jan 2007 4,348 ..SH. --- "E:\Documents and Settings\All Users\DRM\DRMv1.bak"
Mon 10 Sep 2007 400 A.SH. --- "E:\Documents and Settings\All Users\DRM\v2ks.bla.bak"
Mon 10 Sep 2007 48 A.SH. --- "E:\Documents and Settings\All Users\DRM\v2ks.sec.bak"
Mon 10 Sep 2007 400 A.SH. --- "E:\Documents and Settings\All Users\DRM\v3ks.bla.bak"
Thu 22 Feb 2007 412,160 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL0032.tmp"
Wed 21 Feb 2007 74,240 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL0322.tmp"
Thu 22 Feb 2007 409,600 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL0419.tmp"
Mon 19 Feb 2007 43,520 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL0485.tmp"
Thu 22 Feb 2007 414,208 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL0486.tmp"
Thu 22 Feb 2007 415,744 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL0535.tmp"
Mon 19 Feb 2007 44,544 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL0563.tmp"
Thu 22 Feb 2007 87,552 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL0600.tmp"
Wed 21 Feb 2007 62,976 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL0697.tmp"
Thu 22 Feb 2007 415,744 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL0835.tmp"
Thu 22 Feb 2007 414,720 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL1130.tmp"
Thu 22 Feb 2007 415,744 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL1347.tmp"
Thu 22 Feb 2007 415,744 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL1361.tmp"
Wed 21 Feb 2007 71,680 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL1653.tmp"
Wed 21 Feb 2007 64,512 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL1668.tmp"
Thu 22 Feb 2007 409,600 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL1713.tmp"
Thu 22 Feb 2007 414,720 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL1714.tmp"
Wed 21 Feb 2007 65,024 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL1737.tmp"
Thu 22 Feb 2007 412,160 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL1838.tmp"
Wed 21 Feb 2007 67,072 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL2068.tmp"
Thu 22 Feb 2007 415,744 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL2148.tmp"
Thu 22 Feb 2007 415,744 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL2444.tmp"
Thu 22 Feb 2007 415,744 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL2776.tmp"
Wed 21 Feb 2007 64,512 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL3219.tmp"
Mon 19 Feb 2007 45,056 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL3341.tmp"
Thu 22 Feb 2007 409,600 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL3568.tmp"
Thu 22 Feb 2007 413,184 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL3581.tmp"
Thu 22 Feb 2007 415,744 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL3628.tmp"
Wed 21 Feb 2007 64,512 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL3884.tmp"
Wed 21 Feb 2007 65,024 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL3885.tmp"
Thu 22 Feb 2007 412,672 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL3899.tmp"
Mon 19 Feb 2007 44,544 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL4101.tmp"
Mon 1 Oct 2007 0 A.SH. --- "E:\Documents and Settings\All Users\DRM\Cache\Indiv01.tmp"
Mon 13 Aug 2007 79,360 A..H. --- "E:\Documents and Settings\elise\Bureau\Mes cours 6Šme\~WRL3997.tmp"
Mon 1 Jan 2007 4,348 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\Ma musique\Sauvegarde de la licence\drmv1key.bak"
Mon 10 Sep 2007 20 A..H. --- "E:\Documents and Settings\elise.old\Mes documents\Ma musique\Sauvegarde de la licence\drmv1lic.bak"
Mon 10 Sep 2007 400 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\Ma musique\Sauvegarde de la licence\drmv2key.bak"
Mon 10 Sep 2007 1,536 A..H. --- "E:\Documents and Settings\elise.old\Mes documents\Ma musique\Sauvegarde de la licence\drmv2lic.bak"
Finished!
J'ai le virus sur msn messenger : j'ai reçu d'une amie "voici mes photos de vacances". Naïvement j'ai téléchargé et c'était un virus.
J'ai fait un scan SDfix selon quelques conseils glanés sur ce forum.
Maintenant j'ai le rapport mais je ne sais pas quoi faire ensuite!
Quelqu'un pourrait-il m'aider s'il vous plaît???
Merci d'avance.
SDFix: Version 1.107
Run by elise on 01/10/2007 at 20:06
Microsoft Windows XP [version 5.1.2600]
Running From: E:\DOCUME~1\elise\Bureau\SDFix
Safe Mode:
Checking Services:
Name:
kprof
poof
gnaymlyy
ImagePath:
\??\E:\WINDOWS\System32\kprof
\??\E:\WINDOWS\System32\poof
E:\WINDOWS\system32\bqxmyiwytv.exe /service
kprof - Deleted
poof - Deleted
gnaymlyy - Deleted
Restoring Windows Registry Values
Restoring Windows Default Hosts File
Rebooting...
Normal Mode:
Checking Files:
Trojan Files Found:
E:\WINDOWS\SYSTEM32\SETUP_~1.EXE - Deleted
E:\WINDOWS\Downloaded Program Files\UDC6V_0001_D19M0709NetInstaller.exe - Deleted
E:\WINDOWS\svchost.ini - Deleted
E:\WINDOWS\system32\i - Deleted
E:\WINDOWS\system32\koos.exe - Deleted
E:\WINDOWS\system32\setup_30252.exe - Deleted
Removing Temp Files...
ADS Check:
E:\WINDOWS
No streams found.
E:\WINDOWS\system32
No streams found.
E:\WINDOWS\system32\svchost.exe
No streams found.
E:\WINDOWS\system32\ntoskrnl.exe
No streams found.
Final Check:
Remaining Services:
------------------
Authorized Application Key Export:
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"E:\\Program Files\\eMule\\emule.exe"="E:\\Program Files\\eMule\\emule.exe:*:Enabled:eMule"
"E:\\Program Files\\MSN Messenger\\msnmsgr.exe"="E:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"E:\\Program Files\\MSN Messenger\\livecall.exe"="E:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"E:\\Program Files\\MSN Messenger\\msnmsgr.exe"="E:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"E:\\Program Files\\MSN Messenger\\livecall.exe"="E:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
Remaining Files:
---------------
File Backups: - E:\DOCUME~1\elise\Bureau\SDFix\backups\backups.zip
Files with Hidden Attributes:
Fri 8 Dec 2006 8 ..SHR --- "E:\WINDOWS\system32\E9DF2F88BB.sys"
Fri 8 Dec 2006 1,682 A.SH. --- "E:\WINDOWS\system32\KGyGaAvL.sys"
Fri 28 Sep 2007 60,928 ..SHR --- "E:\WINDOWS\system32\wscsvc.exe"
Mon 1 Jan 2007 4,348 ..SH. --- "E:\Documents and Settings\All Users\DRM\DRMv1.bak"
Mon 10 Sep 2007 400 A.SH. --- "E:\Documents and Settings\All Users\DRM\v2ks.bla.bak"
Mon 10 Sep 2007 48 A.SH. --- "E:\Documents and Settings\All Users\DRM\v2ks.sec.bak"
Mon 10 Sep 2007 400 A.SH. --- "E:\Documents and Settings\All Users\DRM\v3ks.bla.bak"
Thu 22 Feb 2007 412,160 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL0032.tmp"
Wed 21 Feb 2007 74,240 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL0322.tmp"
Thu 22 Feb 2007 409,600 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL0419.tmp"
Mon 19 Feb 2007 43,520 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL0485.tmp"
Thu 22 Feb 2007 414,208 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL0486.tmp"
Thu 22 Feb 2007 415,744 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL0535.tmp"
Mon 19 Feb 2007 44,544 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL0563.tmp"
Thu 22 Feb 2007 87,552 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL0600.tmp"
Wed 21 Feb 2007 62,976 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL0697.tmp"
Thu 22 Feb 2007 415,744 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL0835.tmp"
Thu 22 Feb 2007 414,720 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL1130.tmp"
Thu 22 Feb 2007 415,744 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL1347.tmp"
Thu 22 Feb 2007 415,744 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL1361.tmp"
Wed 21 Feb 2007 71,680 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL1653.tmp"
Wed 21 Feb 2007 64,512 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL1668.tmp"
Thu 22 Feb 2007 409,600 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL1713.tmp"
Thu 22 Feb 2007 414,720 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL1714.tmp"
Wed 21 Feb 2007 65,024 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL1737.tmp"
Thu 22 Feb 2007 412,160 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL1838.tmp"
Wed 21 Feb 2007 67,072 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL2068.tmp"
Thu 22 Feb 2007 415,744 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL2148.tmp"
Thu 22 Feb 2007 415,744 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL2444.tmp"
Thu 22 Feb 2007 415,744 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL2776.tmp"
Wed 21 Feb 2007 64,512 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL3219.tmp"
Mon 19 Feb 2007 45,056 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL3341.tmp"
Thu 22 Feb 2007 409,600 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL3568.tmp"
Thu 22 Feb 2007 413,184 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL3581.tmp"
Thu 22 Feb 2007 415,744 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL3628.tmp"
Wed 21 Feb 2007 64,512 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL3884.tmp"
Wed 21 Feb 2007 65,024 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL3885.tmp"
Thu 22 Feb 2007 412,672 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL3899.tmp"
Mon 19 Feb 2007 44,544 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\~WRL4101.tmp"
Mon 1 Oct 2007 0 A.SH. --- "E:\Documents and Settings\All Users\DRM\Cache\Indiv01.tmp"
Mon 13 Aug 2007 79,360 A..H. --- "E:\Documents and Settings\elise\Bureau\Mes cours 6Šme\~WRL3997.tmp"
Mon 1 Jan 2007 4,348 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\Ma musique\Sauvegarde de la licence\drmv1key.bak"
Mon 10 Sep 2007 20 A..H. --- "E:\Documents and Settings\elise.old\Mes documents\Ma musique\Sauvegarde de la licence\drmv1lic.bak"
Mon 10 Sep 2007 400 ...H. --- "E:\Documents and Settings\elise.old\Mes documents\Ma musique\Sauvegarde de la licence\drmv2key.bak"
Mon 10 Sep 2007 1,536 A..H. --- "E:\Documents and Settings\elise.old\Mes documents\Ma musique\Sauvegarde de la licence\drmv2lic.bak"
Finished!
A voir également:
- Virus msn messenger (mes photos de vacances)
- Partage de photos - Guide
- Toutes mes photos - Guide
- Mode vacances vinted - Guide
- Msn messenger - Télécharger - Messagerie
- Google photos - Télécharger - Albums photo
6 réponses
Salut,
Avant ceci : désactivie ton antivirus et ferme complète msn.
lance msnfix :
http://sosvirus.changelog.fr/MSNFix.zip
lance : MSNFix.bat
ensuite touche R (pour rechercher)
Ensuite la touche qui correspond pour désinfecter.
Avant ceci : désactivie ton antivirus et ferme complète msn.
lance msnfix :
http://sosvirus.changelog.fr/MSNFix.zip
lance : MSNFix.bat
ensuite touche R (pour rechercher)
Ensuite la touche qui correspond pour désinfecter.
J'ai lancé Msn fix mais il ne détecte aucun virus!
Je ne sais pas si j'ai bien enlevé mon antivirus...
Comment faire?
Je ne sais pas si j'ai bien enlevé mon antivirus...
Comment faire?
J'ai eu le meme probleme il y a trois jours, j'ai suivi ce pas a pas et tout remarche!!
virus msn album photo zip
virus msn album photo zip
Merci pour ta réponse.
J'ai fait lancé MSNfix mais aucune erreur n'est détectée.
Si j'envoie mon rapport sur ce forum, quelqu'un va-t-il me répondre? Sinon ça sert à quoi de le mettre sur ce forum?
L'ordinateur ce n'est pas du tout mon domaine... :(
Merci d'avance...
J'ai fait lancé MSNfix mais aucune erreur n'est détectée.
Si j'envoie mon rapport sur ce forum, quelqu'un va-t-il me répondre? Sinon ça sert à quoi de le mettre sur ce forum?
L'ordinateur ce n'est pas du tout mon domaine... :(
Merci d'avance...
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Perso je ne saurais pas te répondre sur les rapport, mais quand je l'ai fait il y a 3 jours, j'ai juste stocké les rapport dans un dossier que j'ai mis sur mon bureau, au cas ou, et j'ai suivi toutes la procedure ( AVG, Ad aware, Spybot, Ccleaner) sans faire appel au forum, les tutos sont plutot bien fait. et apres le pc était nickel!!
