Message de propagation :
Ajoute la ligne suivante sur HijackThis :www.google.com please!
http://www.google.com
LOL! http://www.google.com
CHECK IT OUT! http://www.google.com
Scan du fichier :O4 - HKLM\..\Run: [Windows Update] C:\Program Files\Fichiers communs\System\msnsa32.exe
Complete scanning result of "rb.exe", processed in VirusTotal at 07/17/2008 09:10:26 (CET).
[ file data ]
* name..: rb.exe
* size..: 61855
* md5...: 9111970e0875e3acdd6893e2e20eab9c
* sha1..: 3fe261b3924ed098ec4cd01c95b9d384c0a741c0
* peid..: -
[ scan result ]
AhnLab-V3 2008.7.17.0/20080717 found [Win32/Processhijack.worm.18024]
AntiVir 7.8.0.68/20080717 found [TR/Dropper.Gen]
Authentium 5.1.0.4/20080716 found nothing
Avast 4.8.1195.0/20080717 found [Win32:Trojan-gen {Other}]
AVG 7.5.0.516/20080716 found nothing
BitDefender 7.2/20080717 found [BehavesLike:Win32.ProcessHijack]
CAT-QuickHeal 9.50/20080716 found nothing
ClamAV 0.93.1/20080717 found nothing
DrWeb 4.44.0.09170/20080717 found [FDOS.Atomix.37]
eSafe 7.0.17.0/20080716 found nothing
eTrust-Vet 31.6.5961/20080717 found nothing
Ewido 4.0/20080716 found nothing
F-Prot 4.4.4.56/20080716 found nothing
F-Secure 7.60.13501.0/20080717 found nothing
Fortinet 3.14.0.0/20080717 found nothing
GData 2.0.7306.1023/20080717 found [Win32:Trojan-gen ]
Ikarus T3.1.1.26.0/20080717 found [VirTool.Win32.Injector.b]
Kaspersky 7.0.0.125/20080717 found nothing
McAfee 5340/20080716 found nothing
Microsoft 1.3704/20080717 found [VirTool:Win32/Injector.gen!B]
NOD32v2 3274/20080717 found nothing
Norman 5.80.02/20080716 found [W32/Agent.GKGP]
Panda 9.0.0.4/20080716 found [Suspicious file]
Prevx1 V2/20080717 found nothing
Rising 20.53.30.00/20080717 found nothing
Sophos 4.31.0/20080717 found nothing
Sunbelt 3.1.1536.1/20080715 found nothing
Symantec 10/20080717 found nothing
TheHacker 6.2.96.381/20080716 found nothing
TrendMicro 8.700.0.1004/20080717 found nothing
VBA32 3.12.8.0/20080717 found [Trojan.Win32.Buzus.lvj]
VirusBuster 4.5.11.0/20080716 found nothing
Webwasher-Gateway 6.6.2/20080717 found [Trojan.Dropper.Gen]