Did you see this picture, it's hilarious!!!!!
Have I shown you this new picture of my cat
Hey, check out this great photo from my trip to England!
Ajoute la ligne suivante sur HijackThis :
O4 - HKLM\..\Run: [Windows Console] wkssvc.exe
Hijack le fichier HOSTS de Windows pour empécher les mises à jour des antivirus.
File PIC006.JPG-www.photoshare.com received on 02.08.2008 11:32:26 (CET)
Current status: Loading ... queued waiting scanning finished NOT FOUND STOPPED
Result: 13/32 (40.63%)
Antivirus Version Last Update Result
AhnLab-V3 2008.2.6.10 2008.02.05 -
AntiVir 7.6.0.62 2008.02.08 TR/Dropper.Sramler.G.2
Authentium 4.93.8 2008.02.08 -
Avast 4.7.1098.0 2008.02.07 -
AVG 7.5.0.516 2008.02.07 -
BitDefender 7.2 2008.02.08 MemScan:Trojan.Dropper.Sramler.G
CAT-QuickHeal 9.00 2008.02.04 Win32.Backdoor.Rbot.bmr
ClamAV 0.92 2008.02.08 PUA.Packed.Themida
DrWeb 4.44.0.09170 2008.02.08 -
eSafe 7.0.15.0 2008.01.28 -
eTrust-Vet 31.3.5521 2008.02.08 -
Ewido 4.0 2008.02.07 -
FileAdvisor 1 2008.02.08 -
Fortinet 3.14.0.0 2008.02.08 -
F-Prot 4.4.2.54 2008.02.07 -
F-Secure 6.70.13260.0 2008.02.08 Email-Worm.Win32.Anker.x
Ikarus T3.1.1.20 2008.02.08 Generic.Sdbot
Kaspersky 7.0.0.125 2008.02.08 Email-Worm.Win32.Anker.x
McAfee 5225 2008.02.07 -
Microsoft 1.3204 2008.02.07 -
NOD32v2 2858 2008.02.08 Win32/IRCBot.ADK
Norman 5.80.02 2008.02.07 -
Panda 9.0.0.4 2008.02.07 -
Prevx1 V2 2008.02.08 Heuristic: Suspicious Self Modifying EXE
Rising 20.29.22.00 2008.01.30 -
Sophos 4.26.0 2008.02.08 Sus/ComPack
Sunbelt 2.2.907.0 2008.02.08 VIPRE.Suspicious
Symantec 10 2008.02.08 -
TheHacker 6.2.9.212 2008.02.07 W32/Behav-Heuristic-064
VBA32 3.12.6.0 2008.02.07 -
VirusBuster 4.3.26:9 2008.02.07 -
Webwasher-Gateway 6.6.2 2008.02.08 Trojan.Dropper.Sramler.G.2
Additional information
File size: 846848 bytes
MD5: 41cfdfe939a302390088a825352f58e9
SHA1: 9e1ab2945992d6f5ee56b8f3f5b3416501bcffb3
PEiD: Themida/WinLicense V1.8.0.2 + -> Oreans Technologies
packers: Themida