TR/CRYPT.XPACK.GEN Fermé

Question

Bonjour,

Ma mère vient de m'envoyer un email (comme je lui avais démandé) car depuis quelque temps son ordi lui "disait" qu'il y a un  virus (?) appelé TR/CRYPT.XPACK.GEN.

Cependant, elle vient de faire un analyse du disque dur avec son anti virus et... "rien". Voila le rapport:

------------------------------------------------------------------------------------------
AntiVir PersonalEdition Classic
Report file date: 2008-04-06  11:08

Scanning for 1181183 virus strains and unwanted programs.

Licensed to:      Avira AntiVir PersonalEdition Classic
Serial number:    0000149996-ADJIE-0001
Platform:         Windows XP
Windows version:  (Service Pack 2)  [5.1.2600]
Username:         SYSTEM
Computer name:    GROSPC

Version information:
BUILD.DAT    : 270           15603 Bytes  2007-09-19 13:32:00
AVSCAN.EXE   : 7.0.6.1      290856 Bytes  2007-08-23 13:16:29
AVSCAN.DLL   : 7.0.6.0       49192 Bytes  2007-08-16 12:23:51
LUKE.DLL     : 7.0.5.3      147496 Bytes  2007-08-14 15:32:47
LUKERES.DLL  : 7.0.6.1       10280 Bytes  2007-08-21 12:35:20
ANTIVIR0.VDF : 6.40.0.0    11030528 Bytes  2007-07-18 14:27:15
ANTIVIR1.VDF : 7.0.3.2     5447168 Bytes  2008-03-07 17:30:22
ANTIVIR2.VDF : 7.0.3.85     434176 Bytes  2008-03-27 19:26:46
ANTIVIR3.VDF : 7.0.3.121    189952 Bytes  2008-04-04 14:50:40
AVEWIN32.DLL : 7.6.0.81    3424768 Bytes  2008-04-05 14:50:40
AVWINLL.DLL  : 1.0.0.7       14376 Bytes  2007-02-26 10:36:26
AVPREF.DLL   : 7.0.2.2       25640 Bytes  2007-07-18 07:39:17
AVREP.DLL    : 7.0.0.1      155688 Bytes  2007-04-16 13:16:24
AVPACK32.DLL : 7.6.0.3      360488 Bytes  2008-01-15 20:57:46
AVREG.DLL    : 7.0.1.6       30760 Bytes  2007-07-18 07:17:06
AVARKT.DLL   : 1.0.0.20     278568 Bytes  2007-08-28 12:26:33
AVEVTLOG.DLL : 7.0.0.20      86056 Bytes  2007-07-18 07:10:18
NETNT.DLL    : 7.0.0.0        7720 Bytes  2007-03-08 11:09:42
RCIMAGE.DLL  : 7.0.1.30    2342952 Bytes  2007-08-07 12:38:13
RCTEXT.DLL   : 7.0.62.0      86056 Bytes  2007-08-21 12:50:37
SQLITE3.DLL  : 3.3.17.1     339968 Bytes  2007-07-23 09:37:21

Configuration settings for the scan:
Jobname..........................: Complete system scan
Configuration file...............: c:\program files\avira\antivir personaledition classic\sysscan.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: off
Scan boot sector.................: on
Boot sectors.....................: D:, 
Scan memory......................: on
Process scan.....................: on
Scan registry....................: on
Search for rootkits..............: off
Scan all files...................: Intelligent file selection
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Macro heuristic..................: on
File heuristic...................: medium

Start of the scan: 2008-04-06  11:08

The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'emule.exe' - '1' Module(s) have been scanned
Scan process 'wmiprvse.exe' - '1' Module(s) have been scanned
Scan process 'WLLoginProxy.exe' - '1' Module(s) have been scanned
Scan process 'soffice.bin' - '1' Module(s) have been scanned
Scan process 'soffice.exe' - '1' Module(s) have been scanned
Scan process 'PopFilter.exe' - '1' Module(s) have been scanned
Scan process 'ImApp.exe' - '1' Module(s) have been scanned
Scan process 'hpqtra08.exe' - '1' Module(s) have been scanned
Scan process 'TeaTimer.exe' - '1' Module(s) have been scanned
Scan process 'ctfmon.exe' - '1' Module(s) have been scanned
Scan process 'qttask.exe' - '1' Module(s) have been scanned
Scan process 'FirewallGUI.exe' - '1' Module(s) have been scanned
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'dragdiag.exe' - '1' Module(s) have been scanned
Scan process 'VProperty.exe' - '1' Module(s) have been scanned
Scan process 'atiptaxx.exe' - '1' Module(s) have been scanned
Scan process 'hpcmpmgr.exe' - '1' Module(s) have been scanned
Scan process 'hpwuSchd.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'ati2evxx.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'alg.exe' - '1' Module(s) have been scanned
Scan process 'winvnc4.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'SMAgent.exe' - '1' Module(s) have been scanned
Scan process 'mdm.exe' - '1' Module(s) have been scanned
Scan process 'guard.exe' - '1' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'netdde.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'FWService.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'ati2evxx.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
45 processes with 45 modules were scanned

Start scanning boot sectors:
Boot sector 'C:\'
      [NOTE]      No virus was found!
Boot sector 'D:\'
      [NOTE]      No virus was found!

Starting to scan the registry.
The registry was scanned ( '40' files ).


Starting the file scan:

Begin scan in 'C:\'
C:\pagefile.sys
      [WARNING]   The file could not be opened!
Begin scan in 'D:\' <DONNEES>
D:\Power Translator 7\Pw7.ace
  [0] Archive type: ACE
  --> Iris\DRIVERS\HP\WINNT\C2522\DISK1
      [WARNING]   Error creating the file
  --> Iris\READIRIS\LAYOUT.BIN
      [WARNING]   No further files can be extracted from this archive. The archive will be closed
      [WARNING]   No further files can be extracted from this archive. The archive will be closed


End of the scan: 2008-04-06  11:49
Used time: 40:34 min

The scan has been done completely.

   5524 Scanning directories
 298109 Files were scanned
      0 viruses and/or unwanted programs were found
      0 Files were classified as suspicious:
      0 files were deleted
      0 files were repaired
      0 files were moved to quarantine
      0 files were renamed
      1 Files cannot be scanned
 298109 Files not concerned
   2775 Archives were scanned
     16 Warnings
      6 Notes

------------------------------------------------------------------------------------------


Je lui ai démandé dionc aussi de m'envoyer un rapport HiJackThis. Le voila:

------------------------------------------------------------------------------------------
Logfile of HijackThis v1.99.1
Scan saved at 12:32, on 2008-04-06
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\PC Tools Firewall Plus\FWService.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\system32
etdde.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\RealVNC\VNC4\WinVNC4.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
D:\util\HP\HP Software Update\HPWuSchd.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Philips ToUcam Camera\VProperty.exe
C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
D:\UTIL\HP\Digital Imaging\bin\hpqtra08.exe
C:\PROGRA~1\INCRED~1\bin\IMApp.exe
D:\UTIL\Popup Ad Filter\PopFilter.exe
C:\Program Files\OpenOffice.org 2.3\program\soffice.exe
C:\Program Files\OpenOffice.org 2.3\program\soffice.BIN
C:\Program Files\eMule\mes documents\emule.exe
C:\util\WinRAR\WinRAR.exe
C:\DOCUME~1\PARENTS\LOCALS~1\Temp\Rar$EX01.219\HijackThis.exe
C:\DOCUME~1\PARENTS\LOCALS~1\Temp\Rar$EX01.516\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://mystart.magentic.com/english/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Systran40perso.IEPlugIn - {D3919E86-D6A5-11D6-AC3E-00B0D094B576} - d:\util\Systran Espagnol\4_0\Personal\IEPlugIn.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [HP Software Update] "D:\util\HP\HP Software Update\HPWuSchd.exe"
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [ToUcamVProperty] C:\Program Files\Philips ToUcam Camera\VProperty.exe
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [00PCTFW] "C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe" -s
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - Startup: OpenOffice.org 2.3.lnk = C:\Program Files\OpenOffice.org 2.3\program\quickstart.exe
O4 - Startup: Raccourci vers PopFilter.lnk = D:\UTIL\Popup Ad Filter\PopFilter.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = D:\UTIL\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\UTIL\MICROS~1\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{1872FCF6-BDBC-4F97-8674-BA5A205B24D1}: NameServer = 195.238.2.22 195.238.2.21
O17 - HKLM\System\CS1\Services\Tcpip\..\{1872FCF6-BDBC-4F97-8674-BA5A205B24D1}: NameServer = 195.238.2.22 195.238.2.21
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: PC Tools Firewall Plus (PCToolsFirewallPlus) - PC Tools - C:\Program Files\PC Tools Firewall Plus\FWService.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: VNC Server Version 4 (WinVNC4) - Unknown owner - C:\Program Files\RealVNC\VNC4\WinVNC4.exe" -service (file missing)

------------------------------------------------------------------------------------------

Est-ce que vous pourriez m'aider? Car je n'y comprends pas grand chose!

Merci d'avance,

PhotoMartin

booddha · Answer

Selon le rapport et selon moi, ta mère n'a pas d'infection qui se lance. Ce que détecte Antivir est peut-être dormant au fond de la machine. Je te passe une procédure à lui faire faire pour installer un anti spyware ce que n'est pas Antivir dans sa version gratuite ================ AVG ANTI-SPYWARE =================== Gratuit Merci à ep44 pour ce mode explicatif Télécharger: AVG-AntiSpyware • Installer • Le lancer • Click : Mise à jour ------ • Redémarrer en mode Sans Échec (le démarrage peut prendre plusieurs minutes) • Attention, pas d’accès à internet dans ce mode. Enregistrer ou imprimer les consignes. • Relancer le Pc et tapoter la touche F8 ( ou F5 pour certains) , jusqu’à l’apparition des inscriptions avec choix de démarrage • Avec les touches « flèches », sélectionner Mode sans échec ==> entrée ==>nom utilisateur habituel ------- • Dans ANALYSE ( en forme de loupe ) <<===== I M P O R T A N T • Paramètres ==> sous COMMENT REAGIR==>click sur Actions recommandées ==>Quarantaine • Click : Analyse complète du système En fin de scan ( qui est assez long) • Clic Appliquer toutes les actions <== ceci Très important • Clic Sauvegarder rapport puis Enregistrer sous et choisir bureau ------- • Relancer la machine en mode normal • Copier/coller le rapport ici (Ne surveillera plus le PC en arrière-plan dans 30 jours mais pourra servir à faire des scans et supprimer les infections) --------------------------------------- Elle peut aussi pour compléter passer ceci ================== MalwareBytes ===================== Telecharger MalwareBytes Le Tutorial Attention à ce que l'option Perform Full Scan soit cochée Ne pas oublier de supprimer tout ce que MalwaresByte trouve. Bouton Remove Selected après avoir tout sélectionné Poster le rapport et un nouveau rapport HiJackThis Mais il serait plus simple qu'elle s'inscrive ici qu'on la prenne en main en direct.

photomartin · Answer

Bonjour, merci pour ce message.. je l'ai transmis à ma mère et voila ce qu'elle m'a envoyé après avoir fait tout:

-------------------------------------------------------------------------------------------------
Malwarebytes' Anti-Malware 1.10
Version de la base de données: 598

Type de recherche: Examen complet (A:\|C:\|D:\|)
Eléments examinés: 99886
Temps écoulé: 34 minute(s), 6 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
-------------------------------------------------------------------------------------------------

+

-------------------------------------------------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse

 + Créé à:	12:04 2008-04-08



 + Résultat de l'analyse:	


:mozilla.168:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.169:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.170:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.171:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.172:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.26:C:\Documents and Settings\ENFANTS\Application Data\Mozilla\Firefox\Profiles\s8q7n6oa.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.327:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.

C:\Documents and Settings\ENFANTS\Cookies\enfants@2o7[2].txt -> TrackingCookie.2o7 : Nettoyé.

C:\Documents and Settings\ENFANTS\Cookies\enfants@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.

:mozilla.175:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.

C:\Documents and Settings\ENFANTS\Cookies\enfants@media.adrevolver[1].txt -> TrackingCookie.Adrevolver : Nettoyé.

:mozilla.114:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.

:mozilla.426:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.

:mozilla.15:C:\Documents and Settings\ENFANTS\Application Data\Mozilla\Firefox\Profiles\s8q7n6oa.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.

:mozilla.326:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.

C:\Documents and Settings\ENFANTS\Cookies\enfants@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.

C:\Documents and Settings\ENFANTS\Cookies\enfants@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyé.

:mozilla.437:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.

:mozilla.438:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.

:mozilla.439:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.

C:\Documents and Settings\ENFANTS\Cookies\enfants@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé.

:mozilla.113:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Estat : Nettoyé.

:mozilla.267:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.287:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.350:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.351:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.353:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.393:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.409:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.

:mozilla.34:C:\Documents and Settings\ENFANTS\Application Data\Mozilla\Firefox\Profiles\s8q7n6oa.default\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé.

:mozilla.35:C:\Documents and Settings\ENFANTS\Application Data\Mozilla\Firefox\Profiles\s8q7n6oa.default\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé.

:mozilla.167:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Netflame : Nettoyé.

:mozilla.48:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.

:mozilla.233:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.

:mozilla.234:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.

:mozilla.244:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.

:mozilla.245:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.

:mozilla.246:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.

:mozilla.265:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.

:mozilla.49:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.

:mozilla.50:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.

:mozilla.51:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.

:mozilla.52:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.

:mozilla.53:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.

:mozilla.54:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.

C:\Documents and Settings\ENFANTS\Cookies\enfants@bs.serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé.

C:\Documents and Settings\ENFANTS\Cookies\enfants@serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé.

:mozilla.16:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.

:mozilla.17:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.

:mozilla.257:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.

:mozilla.258:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.

:mozilla.348:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.

:mozilla.349:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.

:mozilla.421:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.

:mozilla.422:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.

:mozilla.126:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.

:mozilla.131:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.

:mozilla.132:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.

:mozilla.133:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.

C:\Documents and Settings\ENFANTS\Cookies\enfants@smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyé.

C:\Documents and Settings\ENFANTS\Cookies\enfants@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Nettoyé.

:mozilla.121:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.

:mozilla.122:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.

:mozilla.123:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.

C:\Documents and Settings\ENFANTS\Cookies\enfants@weborama[1].txt -> TrackingCookie.Weborama : Nettoyé.

C:\Documents and Settings\ENFANTS\Cookies\enfants@m.webtrends[2].txt -> TrackingCookie.Webtrends : Nettoyé.

C:\Documents and Settings\ENFANTS\Cookies\enfants@statse.webtrendslive[2].txt -> TrackingCookie.Webtrendslive : Nettoyé.

:mozilla.235:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.

:mozilla.236:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.

:mozilla.237:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.

:mozilla.242:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.

:mozilla.243:C:\Documents and Settings\PARENTS\Application Data\Mozilla\Firefox\Profiles\83y7gfwa.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.


Fin du rapport

-------------------------------------------------------------------------------------------------

+

-------------------------------------------------------------------------------------------------
Logfile of HijackThis v1.99.1
Scan saved at 13:22, on 2008-04-08
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\PC Tools Firewall Plus\FWService.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\system32
etdde.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\RealVNC\VNC4\WinVNC4.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
D:\util\HP\HP Software Update\HPWuSchd.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Philips ToUcam Camera\VProperty.exe
C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\System32\svchost.exe
D:\UTIL\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\OpenOffice.org 2.3\program\soffice.exe
D:\UTIL\Popup Ad Filter\PopFilter.exe
C:\PROGRA~1\INCRED~1\bin\IMApp.exe
C:\Program Files\OpenOffice.org 2.3\program\soffice.BIN
C:\util\WinRAR\WinRAR.exe
C:\DOCUME~1\PARENTS\LOCALS~1\Temp\Rar$EX01.796\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://mystart.magentic.com/english/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Systran40perso.IEPlugIn - {D3919E86-D6A5-11D6-AC3E-00B0D094B576} - d:\util\Systran Espagnol\4_0\Personal\IEPlugIn.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [HP Software Update] "D:\util\HP\HP Software Update\HPWuSchd.exe"
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [ToUcamVProperty] C:\Program Files\Philips ToUcam Camera\VProperty.exe
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [00PCTFW] "C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe" -s
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - Startup: OpenOffice.org 2.3.lnk = C:\Program Files\OpenOffice.org 2.3\program\quickstart.exe
O4 - Startup: Raccourci vers PopFilter.lnk = D:\UTIL\Popup Ad Filter\PopFilter.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = D:\UTIL\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\UTIL\MICROS~1\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{1872FCF6-BDBC-4F97-8674-BA5A205B24D1}: NameServer = 195.238.2.22 195.238.2.21
O17 - HKLM\System\CS1\Services\Tcpip\..\{1872FCF6-BDBC-4F97-8674-BA5A205B24D1}: NameServer = 195.238.2.22 195.238.2.21
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: PC Tools Firewall Plus (PCToolsFirewallPlus) - PC Tools - C:\Program Files\PC Tools Firewall Plus\FWService.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: VNC Server Version 4 (WinVNC4) - Unknown owner - C:\Program Files\RealVNC\VNC4\WinVNC4.exe" -service (file missing)

-------------------------------------------------------------------------------------------------

Qu'est-ce que vous en dites de ces rapports?

Merci encore une fois pour votre aide!

Martin

photomartin · Answer

Pas de nouvelles? 

Merci d'avance pour vos réponses   ;)

Martin

booddha · Answer

Hé bien d'après les rapports il semble qu'il n'y ai pas d'infection.

photomartin · Answer

Ok, merci  :)

Bon week-end


PhotoMartin

TR/CRYPT.XPACK.GEN

5 réponses

Discussions similaires