Sujet Précédent Sujet Suivant

Trojan horse TR/Crypt.FKM.Gen : help !!!

Fermé
batistes Messages postés 2 Date d'inscription lundi 3 septembre 2007 Statut Membre Dernière intervention 5 avril 2022 - 3 sept. 2007 à 14:17
wincpp Messages postés 24 Date d'inscription lundi 4 août 2008 Statut Membre Dernière intervention 9 septembre 2009 - 30 août 2009 à 05:40
Bonjour, habitué à désinfecter mon ordi seul, je me trouve aujourd'hui devant "du compliqué" qui dépasse mes faibles connaissances en la matière...un trojan du nom de Trojan horse TR/Crypt.FKM.Gen qui pourrit mon ordi depuis quelques jours...

N'ayant trouvé aucun antivirus capable de faire une desinfection automatique, je me retrouve ici pour trouver l'expert qui pourra m'aider à virer ceci....Je pense que j'ai chopé le virus en téléchargeant sur emule un fichier corrompu...ou en ouvrant un email !!!

Voici le résultat ci-dessous d'un scan avec anti personal

Merci d'avance....Yann


Scanning for 1042518 virus strains and unwanted programs.

Licensed to: Avira AntiVir PersonalEdition Classic
Serial number: 0000149996-ADJIE-0001
Platform: Windows XP
Windows version: (Service Pack 1) [5.1.2600]
Username: yann
Computer name: HOME-DKYE8PIQ8W

Version information:
BUILD.DAT : 247 14437 Bytes 10/05/2007 11:55:00
AVSCAN.EXE : 7.0.4.15 282664 Bytes 20/04/2007 11:37:14
AVSCAN.DLL : 7.0.4.4 33832 Bytes 27/03/2007 11:31:54
LUKE.DLL : 7.0.4.11 143400 Bytes 27/03/2007 11:26:04
LUKERES.DLL : 7.0.4.0 10280 Bytes 19/03/2007 11:18:59
ANTIVIR0.VDF : 6.35.0.1 7371264 Bytes 31/05/2006 13:08:58
ANTIVIR1.VDF : 6.39.0.129 7251968 Bytes 10/07/2007 09:48:46
ANTIVIR2.VDF : 6.39.1.74 1637376 Bytes 02/09/2007 09:48:46
ANTIVIR3.VDF : 6.39.1.77 9728 Bytes 03/09/2007 09:48:46
AVEWIN32.DLL : 7.4.1.66 2789888 Bytes 03/09/2007 09:48:48
AVWINLL.DLL : 1.0.0.7 14376 Bytes 26/02/2007 09:36:26
AVPREF.DLL : 7.0.2.1 24616 Bytes 27/03/2007 11:31:50
AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 12:16:24
AVPACK32.DLL : 7.3.0.15 360488 Bytes 03/09/2007 09:48:49
AVREG.DLL : 7.0.1.2 31784 Bytes 15/03/2007 08:05:08
AVEVTLOG.DLL : 7.0.0.18 86056 Bytes 27/03/2007 11:16:05
AVARKT.DLL : 1.0.0.17 278568 Bytes 02/05/2007 10:32:26
NETNT.DLL : 7.0.0.0 7720 Bytes 08/03/2007 10:09:42
RCIMAGE.DLL : 7.0.1.15 2228264 Bytes 13/03/2007 09:46:18
RCTEXT.DLL : 7.0.45.0 86056 Bytes 19/03/2007 11:42:42

Configuration settings for the scan:
Jobname..........................: Local Hard Disks
Configuration file...............: C:\Program Files\AntiVir PersonalEdition Classic\alldiscs.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: off
Scan boot sector.................: on
Boot sectors.....................: D:,
Scan memory......................: on
Process scan.....................: on
Scan registry....................: on
Search for rootkits..............: off
Scan all files...................: Intelligent file selection
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Macro heuristic..................: on
File heuristic...................: medium

Start of the scan: lundi 3 septembre 2007 12:40

The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'aoltray.exe' - '1' Module(s) have been scanned
Scan process 'bgnwksdiu.exe' - '1' Module(s) have been scanned
Module is infected -> 'C:\WINDOWS\System32\bgnwksdiu.exe'
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'qttask.exe' - '1' Module(s) have been scanned
Scan process 'uwdf.exe' - '1' Module(s) have been scanned
Scan process 'wmiprvse.exe' - '1' Module(s) have been scanned
Scan process 'aolsoftware.exe' - '1' Module(s) have been scanned
Scan process 'AOLDial.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'CALMAIN.exe' - '1' Module(s) have been scanned
Scan process 'wanmpsvc.exe' - '1' Module(s) have been scanned
Scan process 'wdfmgr.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'nvsvc32.exe' - '1' Module(s) have been scanned
Scan process 'MDM.EXE' - '1' Module(s) have been scanned
Scan process 'SAgent2.exe' - '1' Module(s) have been scanned
Scan process 'AOLacsd.exe' - '1' Module(s) have been scanned
Scan process 'alg.exe' - '1' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
Process 'bgnwksdiu.exe' has been terminated
C:\WINDOWS\System32\bgnwksdiu.exe
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!

33 processes with 32 modules were scanned

Start scanning boot sectors:
Boot sector 'C:\'
[NOTE] No virus was found!
Boot sector 'D:\'
[NOTE] No virus was found!

Starting to scan the registry.
C:\WINDOWS\system32\bgnwksdiu.exe
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\WINDOWS\system32\bgnwksdiu.exe
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen

The registry was scanned ( '11' files ).


Starting the file scan:

Begin scan in 'C:\'
C:\hiberfil.sys
[WARNING] The file could not be opened!
C:\pagefile.sys
[WARNING] The file could not be opened!
C:\rswulgazg.exe
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[INFO] The file was moved to '4752e53b.qua'!
C:\Documents and Settings\All Users\Application Data\AOL\UserProfiles\All Users\toaster\aol.activeupdate\ActiveUpdate\fr-FR\ActiveUpdate.zip
[0] Archive type: ZIP
--> OB3EDHn.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[INFO] The file was moved to '474fe53b.qua'!
C:\Documents and Settings\All Users\Application Data\AOL\UserProfiles\All Users\toaster\aol.CCU\toaster\fr-FR\toaster.zip
[0] Archive type: ZIP
--> Bpy35jN.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[INFO] The file was moved to '473ce54a.qua'!
C:\Documents and Settings\yann\Application Data\hidires\flec003.exe
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '4740e57a.qua'!
C:\Documents and Settings\yann\Application Data\hidires\hidr.exe
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '473fe57e.qua'!
C:\Documents and Settings\yann\Application Data\hidires\m_hook.sys
[DETECTION] Contains signature of the rootkit RKIT/Bagle.GL
[WARNING] The file was ignored!
C:\Documents and Settings\yann\Application Data\VideoEgg\Publisher\2817\resources\gid326\cid1094\AOL1\images\skin.zip
[0] Archive type: ZIP
--> Yw4WtYn.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[INFO] The file was moved to '4744e5a7.qua'!
C:\Documents and Settings\yann\Mes documents\070714Klein60ans011.zip
[0] Archive type: ZIP
--> MEl2JGf.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Adobe\Adobe Bridge\browser\skin\standard_skin.zip
[0] Archive type: ZIP
--> k7kVc8X.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Adobe\Adobe Bridge\browser\skin\windows_skin.zip
[0] Archive type: ZIP
--> bS6KkC6.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Adobe\Adobe Help Center\AdobeHelpData\Packages\AdobeHelpCenter_1.0_de-de.zip
[0] Archive type: ZIP
--> o40IgF0.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Adobe\Adobe Help Center\AdobeHelpData\Packages\AdobeHelpCenter_1.0_en-us.zip
[0] Archive type: ZIP
--> Vu08JeS.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Adobe\Adobe Help Center\AdobeHelpData\Packages\AdobeHelpCenter_1.0_fr-fr.zip
[0] Archive type: ZIP
--> h1JO430.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Adobe\Adobe Help Center\AdobeHelpData\Packages\AdobeHelpCenter_1.0_ja-jp.zip
[0] Archive type: ZIP
--> m2V5E60.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Adobe\Adobe Help Center\AdobeHelpData\Packages\Photoshop_9.0_fr-fr.zip
[0] Archive type: ZIP
--> OF1867f.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Adobe\Adobe Help Center\Browser\skin\standard_skin.zip
[0] Archive type: ZIP
--> p8kr1li.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Adobe\Adobe Help Center\Browser\skin\windows_skin.zip
[0] Archive type: ZIP
--> xYimj0m.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Adobe\Adobe Help Center\Required\help\AdobeHelpCenter_1.0_de-de.zip
[0] Archive type: ZIP
--> k8wMdUm.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Adobe\Adobe Help Center\Required\help\AdobeHelpCenter_1.0_en-us.zip
[0] Archive type: ZIP
--> sm5F1CW.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Adobe\Adobe Help Center\Required\help\AdobeHelpCenter_1.0_fr-fr.zip
[0] Archive type: ZIP
--> bH80h.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Adobe\Adobe Help Center\Required\help\AdobeHelpCenter_1.0_ja-jp.zip
[0] Archive type: ZIP
--> IBD06dk.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Cool2000\Quick Start\CE2Kquick.zip
[0] Archive type: ZIP
--> DT11w3o.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Fichiers communs\AOL\1169587693\ee\services\bfts\ver2_14_5_6\resources\en-US\bfts.zip
[0] Archive type: ZIP
--> j1L440o.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Fichiers communs\AOL\1169587693\ee\services\bfts\ver2_14_5_6\resources\fr-FR\bfts.zip
[0] Archive type: ZIP
--> uE8Ko1w.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Fichiers communs\AOL\1169587693\ee\services\computerCheckupUI\Ver4_0_40_4\resources\en-US\toaster.zip
[0] Archive type: ZIP
--> s7WOi8E.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Fichiers communs\AOL\1169587693\ee\services\computerCheckupUI\Ver4_0_40_4\resources\fr-FR\toaster.zip
[0] Archive type: ZIP
--> cjU5ILi.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Fichiers communs\AOL\1169587693\ee\services\softwareUpdate\ver2_14_9_3\resources\en-US\ActiveUpdate.zip
[0] Archive type: ZIP
--> DR5PLQP.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Fichiers communs\AOL\1169587693\ee\services\softwareUpdate\ver2_14_9_3\resources\fr-FR\ActiveUpdate.zip
[0] Archive type: ZIP
--> GbT2vTs.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Fichiers communs\AOL\1169587693\ee\services\toaster\ver2_26_1_1\resources\en-US\credits.zip
[0] Archive type: ZIP
--> s0jlQd2.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Fichiers communs\AOL\1169587693\ee\services\toaster\ver2_26_1_1\resources\en-US\sample.zip
[0] Archive type: ZIP
--> jTYIhRb.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Fichiers communs\AOL\1169587693\ee\services\toaster\ver2_26_1_1\resources\fr-FR\credits.zip
[0] Archive type: ZIP
--> kQscG1v.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Fichiers communs\AOL\1169587693\ee\services\toaster\ver2_26_1_1\resources\fr-FR\sample.zip
[0] Archive type: ZIP
--> v7p8O.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Macromedia\Dreamweaver 8\Configuration\Third Party Source Code\JavaScript Interpreter\javascript15.zip
[0] Archive type: ZIP
--> Dx3EtT8.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Macromedia\Dreamweaver 8\Configuration\Third Party Source Code\Sablotron\Sablot-0.70-MACR.zip
[0] Archive type: ZIP
--> C5mv0BM.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Macromedia\Dreamweaver 8\Tutorial_assets\Extending\extending_dw.zip
[0] Archive type: ZIP
--> v7s0v7F.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Sony\ACID Pro 5.0\acid50.zip
[0] Archive type: ZIP
--> cT8jgIb.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Sony\Shared Plug-Ins\File Formats\AC3\ac3plug.zip
[0] Archive type: ZIP
--> T.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Sony\Shared Plug-Ins\File Formats\MCMPEG\mcplug.zip
[0] Archive type: ZIP
--> wSS5J5M.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Sony\Shared Plug-Ins\File Formats\MP3\mp3plug.zip
[0] Archive type: ZIP
--> fMwug57.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Windows Media Player\npdrmv2.zip
[0] Archive type: ZIP
--> tGw7C3N.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\Windows Media Player\npds.zip
[0] Archive type: ZIP
--> Ke6jjYC.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\Program Files\WinZip\EXAMPLE.zip
[0] Archive type: ZIP
--> cNVulm7.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\WINDOWS\java\Packages\1BBFHVND.zip
[0] Archive type: ZIP
--> gdRc258.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\WINDOWS\java\Packages\93DBV5NP.zip
[0] Archive type: ZIP
--> B4KNje4.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\WINDOWS\java\Packages\EZ5ZFZHN.zip
[0] Archive type: ZIP
--> b52m0TB.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\WINDOWS\java\Packages\MKFXNDBR.zip
[0] Archive type: ZIP
--> EOXXM32.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\WINDOWS\java\Packages\NJD7NTRV.zip
[0] Archive type: ZIP
--> i32S2vv.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\WINDOWS\java\Packages\P3LFB9FN.zip
[0] Archive type: ZIP
--> PE50635.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\WINDOWS\java\Packages\SQ3R7TF7.zip
[0] Archive type: ZIP
--> g762v5P.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\WINDOWS\java\Packages\VPZRN1ZX.zip
[0] Archive type: ZIP
--> o16W3s7.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\WINDOWS\system32\.exe
[DETECTION] Contains code of the Windows virus W32/Virut.Gen
[WARNING] The file was ignored!
C:\WINDOWS\system32\algs.exe
[DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Agent.apf.2 Backdoor server programs
[WARNING] The file was ignored!
C:\WINDOWS\system32\bgnwksdiu.exe
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\WINDOWS\system32\hgkpmij32.exe
[DETECTION] Contains signature of the worm WORM/SdBo.100864.22
[WARNING] The file was ignored!
C:\WINDOWS\system32\irdvxc.exe
[DETECTION] Contains code of the Windows virus W32/Virut.Gen
[WARNING] The file was ignored!
C:\WINDOWS\system32\Isass.exe
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[WARNING] The file was ignored!
C:\WINDOWS\system32\mmdmm.exe
[DETECTION] Is the Trojan horse TR/Crypt.PCMM.Gen
[WARNING] The file was ignored!
C:\WINDOWS\system32\xyawkumay.exe
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
C:\WINDOWS\system32\drivers\core.sys
[WARNING] The file could not be opened!
Begin scan in 'D:\' <BACKUP>
D:\rswulgazg.exe
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!
D:\TOOLS\NeroBurningRom\FreeDB\FreeDB.zip
[0] Archive type: ZIP
--> Rf7i6.gif .scr
[DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
[WARNING] The file was ignored!


End of the scan: lundi 3 septembre 2007 13:34
Used time: 54:13 min

The scan has been done completely.

5029 Scanning directories
260986 Files were scanned
63 viruses and/or unwanted programs were found
0 classified as suspicious:
0 files were deleted
0 files were repaired
6 files were moved to quarantine
0 files were renamed
3 Files cannot be scanned
260923 Files not concerned
1374 Archives were scanned
59 Warnings
17 Notes
0 Hidden objects were found
A voir également:

3 réponses

Réponse 1 / 3
legus Messages postés 77 Date d'inscription lundi 3 septembre 2007 Statut Membre Dernière intervention 3 octobre 2007 10
3 sept. 2007 à 14:19
Voila se qui arrive quand on utilise windows.......
3
Réponse 2 / 3
batistes Messages postés 2 Date d'inscription lundi 3 septembre 2007 Statut Membre Dernière intervention 5 avril 2022 2
3 sept. 2007 à 14:24
Merci pour ce superbe conseil....
2
Réponse 3 / 3
wincpp Messages postés 24 Date d'inscription lundi 4 août 2008 Statut Membre Dernière intervention 9 septembre 2009
30 août 2009 à 05:40
Salut.

Moi je sais comment supprimer ce cheval de troie (si c'est pas une variante) parce que je l'ai crée.

Mais comme je ne l'utilise plus et que j'en ai marre de voir des posts du genre: "Infecté par TR/Crypt.FKM.Gen aidez moi" je me suis dit que je donnerai la soluce à ce problème.

Mais avant tout j'ai été totalement stupéfait de mon virus. Il ne devrait pas résister autant. J'ai remarqué que dans les logs des antivirus le nom du virus n'apparaissait pas dans les fichiers scannés alors que c'est un simple fichier masqué à l'aide de la commande msdos "ATTRIB".

Mais bon voilà pour le supprimer il faut aller dans l'invite de commandes msdos et taper:

attrib -r -s -h -a %windir%\mwupdtt.exe & del/q /f %windir%\mwupdtt.exe

et appuyer sur ENTREE.

Mais souvent il y a un autre fichier qui contient le cheval de troie (ça doit être le fichier setup.exe dans le même répertoire). Donc pour le supprimer il faut refaire la commande précédente en remplaçant juste mwupdtt.exe par setup.exe et appuyer sur ENTREE et normalement vous ne devriez plus avoir de problèmes.

a+
0

Discussions similaires

Comment supprimer le virus Trojan
vitsou -
vitsou -

18 réponses
Aide pour un virus
cerise92700 -
MisteryBean -

41 réponses
Trojan impossible à supprimer!
Gridouu -
Malekal_morte- -

12 réponses
Sa veux dire koi??Subject: FW: Tr :FW: TR: TR
france22 -
ghano0666545160 -

12 réponses
Virus : trojan:win32/wacatac.h!ml
Alky09 -
bazfile -

8 réponses