salut, voila j ai un probleme, j ai un virus, nommé backdoor.ranky
il est dans system32 et se nomme fqqe.exe et fqeb.exe
 
seulement impossible de le supprimer...
 
qqu peut m aider?
j ai deja essayer antivirus.com mais ca marche po

Dans le gestionnaire des tâches, regarde si une tâche est active portant le même non. Si oui, essaye de la terminer, puis essaye de supprimer le fichier dans le dossier system32

D'après Virus Encyclopedia sur le site de Trend Micro :
(http://www.trendmicro.com/vinfo/virusencyclo/)
 
This procedure terminates the running malware process from memory. You will need the name(s) of the file(s) detected earlier.
 
   1. Open Windows Task Manager.
      On Windows 95/98/ME systems, press
      CTRL+ALT+DELETE
      On Windows NT/2000/XP systems, press
      CTRL+SHIFT+ESC, then click the Processes tab.
   2. In the list of running programs*, locate the malware file or files detected earlier.
   3. Select one of the detected files, then press either the End Task or the End Process button, depending on the version of Windows on your system.
   4. Do the same for all detected malware files in the list of running processes.
   5. To check if the malware process has been terminated, close Task Manager, and then open it again.
   6. Close Task Manager.  
 
*NOTE: On systems running Windows 95/98/ME, Task Manager may not show certain processes. You may use a third party process viewer to terminate the malware process. Otherwise, continue with the next procedure, noting additional instructions.
 
Removing Autostart Entries from the Registry
 
Removing autostart entries from registry prevents the malware from executing during startup. This is also an effective way to terminate its process. In this procedure, you will need the name/s of the file/s detected earlier.
 
   1. Open Registry Editor. Click Start>Run, type Regedit then hit Enter.
   2. In the left panel, double click the following:
      HKEY_LOCAL_MACHINE>Software>Microsoft>
      Windows>CurrentVersion>Run
   3. In the right panel, locate and delete the entry or entries whose data value is the malware path and file name of the file/s detected earlier.
   4. Again in the left panel, double click the following:
      HKEY_CURRENT_USER>Software>Microsoft>
      Windows>CurrentVersion>Run
   5. In the right panel, locate and delete the entry or entries whose data value is the malware path and filename of the file/s detected earlier.
   6. Close Registry Editor.
 
NOTE: If you were not able to terminate the malware process from memory as described in the previous procedure, restart your system.