Probleme pour supprimer un cheval de troie [Résolu/Fermé]

jojo2A - 2 oct. 2007 à 23:48 - Dernière réponse : dorgane 17963 Messages postés dimanche 29 octobre 2006Date d'inscriptionContributeurStatut 15 novembre 2017 Dernière intervention
- 3 oct. 2007 à 00:57
Bonjour,

Mon SCAN DISK MC AFEE a détecté Valera[1] à l'endroit suivant :
pathname : C:\Documents and Settings\Emmanuel\Local Settings\Temporary Internet Files\Content.IE5\8T7TRTNR\valera[1]
Detected as : Generic.dx
et ne peut le supprimer.

1. J'ai fait tourner ccleaner, AVG anti spyware 7.5 et Hijack This

le rapport Hijack This est ci-dessous.
Logfile of HijackThis v1.99.1
Scan saved at 11:15:34, on 01/10/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16512)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Dell Network Assistant\hnm_svc.exe
C:\Program Files\Network Associates\Common Framework\FrameworkService.exe
C:\Program Files\Network Associates\VirusScan\mcshield.exe
C:\Program Files\Network Associates\VirusScan\vstskmgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Dell\Media Experience\DMXLauncher.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\autoclk.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE
C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe
C:\Program Files\Fichiers communs\Network Associates\TalkBack\tbmon.exe
C:\WINDOWS\stsystra.exe
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\Program Files\Mightyfax\MFNTCTL.EXE
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\AcroRd32.exe
C:\Program Files\Hijackthis Version Française\hijackthis vf.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.fr/ig/dell?hl=fr&client=dell-row&channel=fr&ibd=4061205
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://recherche.neuf.fr/ie/default.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://recherche.neuf.fr/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://recherche.neuf.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://recherche.neuf.fr/ie/default.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.fr/ig/dell?hl=fr&client=dell-row&channel=fr&ibd=4061205
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://127.0.0.1:4664/first_usage&s=7fwcgwUmrRuRI-Fs6tuNY7nvbtw
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: (no name) - {6AA8C575-A74C-4B5D-8BC7-13AE0B866F71} - C:\WINDOWS\system32\mljgh.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: (no name) - {8CEFE835-8EBF-420F-AFA2-807008E32917} - C:\WINDOWS\system32\cbxxusp.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: CBrowserHelperObject Object - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\BAE\BAE.dll
O2 - BHO: (no name) - {CF46BFB3-2ACC-441b-B82B-36B9562C7FF1} - C:\WINDOWS\system32\mypyrlbj.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [autoclk] autoclk.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ShStatEXE] "C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE" /STANDALONE
O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe" /StartedFromRunKey
O4 - HKLM\..\Run: [Network Associates Error Reporting Service] "C:\Program Files\Fichiers communs\Network Associates\TalkBack\tbmon.exe"
O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [SearchIndexer] rundll32.exe "C:\WINDOWS\system32\fejthkdh.dll",sitypnow
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: MightyFAX Controller.lnk = C:\Program Files\Mightyfax\MFNTCTL.EXE
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/FacebookPhotoUploader.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O17 - HKLM\System\CCS\Services\Tcpip\..\{96F54127-7CFA-4432-875A-2E2F9A05E776}: NameServer = 86.64.145.140,84.103.237.140
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O20 - Winlogon Notify: cbxxusp - C:\WINDOWS\SYSTEM32\cbxxusp.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Advanced Networking Service (hnmsvc) - SingleClick Systems - C:\Program Files\Dell Network Assistant\hnm_svc.exe
O23 - Service: Sony SPTI Service for DVE (ICDSPTSV) - Sony Corporation - C:\WINDOWS\system32\IcdSptSv.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: McAfee Framework Service (McAfeeFramework) - Network Associates, Inc. - C:\Program Files\Network Associates\Common Framework\FrameworkService.exe
O23 - Service: Network Associates McShield (McShield) - Network Associates, Inc. - C:\Program Files\Network Associates\VirusScan\mcshield.exe
O23 - Service: Network Associates Task Manager (McTaskManager) - Network Associates, Inc. - C:\Program Files\Network Associates\VirusScan\vstskmgr.exe
Configuration: Windows XP
Internet Explorer 7.0


2. Ensuite j'ai fait analyser sur www.virustotal.com les fichiers qui me semblaient suspects : C:\WINDOWS\autoclk.exe , mypyrlbj.dll ,: C:\WINDOWS\system32\mljgh.dll et C:\WINDOWS\system32\cbxxusp.dll
virustotal donne des resultats pour les 4 fichiers (1 seul resultat pour C:\WINDOWS\autoclk.exe)

que faire? Comment les supprimer (j'ai essayé de supprimer mypyrlbj.dll mais j'echoue (pop-up "acces refusé") ??? ci-dessous les resultats de l'ananlyse virustotal.

Merci d'avance

Fichier mypyrlbj.dll reçu le 2007.10.01 12:33:02 (CET)
Résultat: 26/32 (81.25%)

Antivirus Version Dernière mise à jour Résultat
AhnLab-V3 2007.10.1.0 2007.10.01 Win-Trojan/Virtumod.69140
AntiVir 7.6.0.18 2007.10.01 TR/BHO.AKY
Authentium 4.93.8 2007.10.01 W32/Trojan.BWAD
Avast 4.7.1043.0 2007.09.30 Win32:Vundo-gen49
AVG 7.5.0.488 2007.10.01 BHO.AKY
BitDefender 7.2 2007.10.01 Adware.Virtumonde.GGC
CAT-QuickHeal 9.00 2007.09.29 Trojan.ConHook.Gen
ClamAV 0.91.2 2007.10.01 Trojan.BHO-1045
DrWeb 4.33 2007.10.01 Trojan.Virtumod
eSafe 7.0.15.0 2007.09.30 Suspicious Trojan/Worm
eTrust-Vet 31.2.5176 2007.10.01 Win32/Darksma!generic
Ewido 4.0 2007.09.30 -
FileAdvisor 1 2007.10.01 -
Fortinet 3.11.0.0 2007.10.01 -
F-Prot 4.3.2.48 2007.10.01 W32/Trojan.BWAD
F-Secure 6.70.13030.0 2007.10.01 W32/Vundo.dam
Ikarus T3.1.1.12 2007.10.01 Trojan.Virtumod
Kaspersky 7.0.0.125 2007.10.01 -
McAfee 5130 2007.09.28 -
Microsoft 1.2803 2007.10.01 -
NOD32v2 2562 2007.10.01 a variant of Win32/BHO.G
Norman 5.80.02 2007.09.28 W32/Vundo.dam
Panda 9.0.0.4 2007.10.01 Spyware/Virtumonde
Prevx1 V2 2007.10.01 Malware.Gen
Rising 19.43.00.00 2007.10.01 Trojan.Win32.Agent.waf
Sophos 4.22.0 2007.10.01 Virtumundo
Sunbelt 2.2.907.0 2007.10.01 VIPRE.Suspicious
Symantec 10 2007.10.01 Trojan Horse
TheHacker 6.2.6.075 2007.10.01 Trojan/BHO.bd
VBA32 3.12.2.4 2007.10.01 Trojan.Virtumod
VirusBuster 4.3.26:9 2007.09.30 Adware.Vundo.P.Gen
Webwasher-Gateway 6.0.1 2007.10.01 Trojan.BHO.AKY
Information additionnelle
File size: 69184 bytes
MD5: 8e9dcdff9f9df0a4bb8c546e4e0d5262
SHA1: 65d5282041c0ed6aad545dcc6f0f1d227f84ab2b
Prevx info: http://fileinfo.prevx.com/fileinfo.asp?PX5=4EA6ECA040FFCE530ECA01DD62F1E800A1AA3E6F
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.


Fichier autoclk.exe reçu le 2007.10.01 12:27:47 (CET)
Résultat: 1/32 (3.13%)

Antivirus Version Dernière mise à jour Résultat
AhnLab-V3 2007.10.1.0 2007.10.01 -
AntiVir 7.6.0.18 2007.10.01 -
Authentium 4.93.8 2007.10.01 -
Avast 4.7.1043.0 2007.09.30 -
AVG 7.5.0.488 2007.10.01 -
BitDefender 7.2 2007.10.01 -
CAT-QuickHeal 9.00 2007.09.29 -
ClamAV 0.91.2 2007.10.01 -
DrWeb 4.33 2007.10.01 -
eSafe 7.0.15.0 2007.09.30 -
eTrust-Vet 31.2.5176 2007.10.01 -
Ewido 4.0 2007.09.30 -
FileAdvisor 1 2007.10.01 -
Fortinet 3.11.0.0 2007.10.01 -
F-Prot 4.3.2.48 2007.10.01 -
F-Secure 6.70.13030.0 2007.10.01 -
Ikarus T3.1.1.12 2007.10.01 -
Kaspersky 7.0.0.125 2007.10.01 -
McAfee 5130 2007.09.28 -
Microsoft 1.2803 2007.10.01 -
NOD32v2 2562 2007.10.01 -
Norman 5.80.02 2007.09.28 -
Panda 9.0.0.4 2007.10.01 -
Prevx1 V2 2007.10.01 -
Rising 19.43.00.00 2007.10.01 -
Sophos 4.22.0 2007.10.01 -
Sunbelt 2.2.907.0 2007.10.01 Trojan.KillReg
Symantec 10 2007.10.01 -
TheHacker 6.2.6.075 2007.10.01 -
VBA32 3.12.2.4 2007.10.01 -
VirusBuster 4.3.26:9 2007.09.30 -
Webwasher-Gateway 6.0.1 2007.10.01 -
Information additionnelle
File size: 143360 bytes
MD5: aebc034888efd533001b741e172e6463
SHA1: 8f3418c33a92d62774ed9d91a6ee8dc1773a566a


Fichier mljgh.dll reçu le 2007.10.01 12:46:11 (CET)
Résultat: 14/32 (43.75%)

Antivirus Version Dernière mise à jour Résultat
AhnLab-V3 2007.10.1.0 2007.10.01 -
AntiVir 7.6.0.18 2007.10.01 TR/Dldr.ConHook.Gen
Authentium 4.93.8 2007.10.01 -
Avast 4.7.1043.0 2007.09.30 -
AVG 7.5.0.488 2007.10.01 Lop.DO
BitDefender 7.2 2007.10.01 DeepScan:Generic.Virtumonde.1.FE9FC11C
CAT-QuickHeal 9.00 2007.09.29 -
ClamAV 0.91.2 2007.10.01 -
DrWeb 4.33 2007.10.01 -
eSafe 7.0.15.0 2007.09.30 Suspicious Trojan/Worm
eTrust-Vet 31.2.5176 2007.10.01 Win32/Vundo!generic
Ewido 4.0 2007.09.30 -
FileAdvisor 1 2007.10.01 -
Fortinet 3.11.0.0 2007.10.01 -
F-Prot 4.3.2.48 2007.10.01 -
F-Secure 6.70.13030.0 2007.10.01 W32/Vundo.dam
Ikarus T3.1.1.12 2007.10.01 Generic.Virtumonde.1
Kaspersky 7.0.0.125 2007.10.01 -
McAfee 5130 2007.09.28 -
Microsoft 1.2803 2007.10.01 -
NOD32v2 2562 2007.10.01 -
Norman 5.80.02 2007.09.28 W32/Vundo.dam
Panda 9.0.0.4 2007.10.01 Suspicious file
Prevx1 V2 2007.10.01 Heuristic: Suspicious Self Modifying EXE
Rising 19.43.00.00 2007.10.01 -
Sophos 4.22.0 2007.10.01 Virtumundo
Sunbelt 2.2.907.0 2007.10.01 VIPRE.Suspicious
Symantec 10 2007.10.01 -
TheHacker 6.2.6.075 2007.10.01 -
VBA32 3.12.2.4 2007.10.01 -
VirusBuster 4.3.26:9 2007.09.30 Adware.Vundo.P.Gen
Webwasher-Gateway 6.0.1 2007.10.01 Trojan.Dldr.ConHook.Gen
Information additionnelle
File size: 244832 bytes
MD5: ec343e6cae4991768fed178128968b1a
SHA1: 34806615d19ab063f6936806f70550247d846bf6
packers: PecBundle, PECompact
Prevx info: http://fileinfo.prevx.com/fileinfo.asp?PX5=DB8372686087AD0DBC2C03F288B94C00062A98DE
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.


Fichier cbxxusp.dll reçu le 2007.10.01 12:44:09 (CET)
Résultat: 4/32 (12.5%)

Antivirus Version Dernière mise à jour Résultat
AhnLab-V3 2007.10.1.0 2007.10.01 -
AntiVir 7.6.0.18 2007.10.01 -
Authentium 4.93.8 2007.10.01 -
Avast 4.7.1043.0 2007.09.30 -
AVG 7.5.0.488 2007.10.01 Obfustat.QPU
BitDefender 7.2 2007.10.01 -
CAT-QuickHeal 9.00 2007.09.29 -
ClamAV 0.91.2 2007.10.01 -
DrWeb 4.33 2007.10.01 -
eSafe 7.0.15.0 2007.09.30 -
eTrust-Vet 31.2.5176 2007.10.01 -
Ewido 4.0 2007.09.30 -
FileAdvisor 1 2007.10.01 -
Fortinet 3.11.0.0 2007.10.01 -
F-Prot 4.3.2.48 2007.10.01 -
F-Secure 6.70.13030.0 2007.10.01 -
Ikarus T3.1.1.12 2007.10.01 -
Kaspersky 7.0.0.125 2007.10.01 -
McAfee 5130 2007.09.28 -
Microsoft 1.2803 2007.10.01 -
NOD32v2 2562 2007.10.01 -
Norman 5.80.02 2007.09.28 -
Panda 9.0.0.4 2007.10.01 -
Prevx1 V2 2007.10.01 SpywareQuake
Rising 19.43.00.00 2007.10.01 -
Sophos 4.22.0 2007.10.01 Virtumundo
Sunbelt 2.2.907.0 2007.10.01 -
Symantec 10 2007.10.01 -
TheHacker 6.2.6.075 2007.10.01 -
VBA32 3.12.2.4 2007.10.01 -
VirusBuster 4.3.26:9 2007.09.30 -
Webwasher-Gateway 6.0.1 2007.10.01 Win32.UPXpacked.gen (suspicious)
Afficher la suite 

3 réponses

dorgane 17963 Messages postés dimanche 29 octobre 2006Date d'inscriptionContributeurStatut 15 novembre 2017 Dernière intervention - 2 oct. 2007 à 23:51
+3
Utile
bonsoir,
Alors t'inquiète pas lol

Nous allons nettoyer t'es temporaire :
http://www.01net.com/...
Installe ca et fait un bon nettoyage !

Tu trouvera tout ici :
http://mickael.barroux.free.fr/securite/vundo.php
Cette réponse vous a-t-elle aidé ?  
+1
Utile
Bonjour,

J'ai fait ces manips et ça semble fonctionner.

Merci beaucoup pour ton aide!

a+
dorgane 17963 Messages postés dimanche 29 octobre 2006Date d'inscriptionContributeurStatut 15 novembre 2017 Dernière intervention - 3 oct. 2007 à 00:57
0
Utile
ok ;)
bonne fin de soirée.