jcld1

bonsoir Je m'excuse de ne pas toujours pouvoir suivre mais je n'ai pas été la de la journée Je viens d'effectué la désinstallation eoRezo J'ai toujours mon oeuf qui me pond des noms d'oiseau à chaque dossier. Ce matin j'ai enfin pu installer mon anti virus Securitoo et son parefeu de Wanadoo jusqu'à présent il se bloquai à l'entrée des codes Wanadoo je vais effectuer un scan pour voir s'il trouve quelque chose jcld

bonjour scan effectué aucun virus trouvé impossible de faire un copier collé le clic droit n'avait aucun effet?, il y a bien encore des virus?,, mon oeuf est toujours la jcld

bonsoir enfin le rapport PANDA Il avait supprimé 5 virus la première fois , la plus rien de trouver en virus Incident Status Location Spyware:Cookie/2o7.net Not disinfected C:\Documents and Settings\LE DU\Cookies\le du@2o7[2].txt Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\LE DU\Cookies\le du@advertising[1].txt Spyware:Cookie/Falkag Not disinfected C:\Documents and Settings\LE DU\Cookies\le du@as1.falkag[1].txt Spyware:Cookie/Bluestreak Not disinfected C:\Documents and Settings\LE DU\Cookies\le du@bluestreak[1].txt Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\LE DU\Cookies\le du@doubleclick[1].txt Spyware:Cookie/Tribalfusion Not disinfected C:\Documents and Settings\LE DU\Cookies\le du@tribalfusion[1].txt Spyware:Cookie/Weborama Not disinfected C:\Documents and Settings\LE DU\Cookies\le du@weborama[1].txt Spyware:Cookie/myaffiliateprogram Not disinfected C:\Documents and Settings\LE DU\Cookies\le du@www.myaffiliateprogram[1].txt Spyware:Cookie/Xiti Not disinfected C:\Documents and Settings\LE DU\Cookies\le du@xiti[1].txt Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064724.MOZ[] Spyware:Cookie/Ask Not disinfected C:\RECYCLER\NPROTECT\00064727.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064728.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064729.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064730.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064731.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064732.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064740.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064741.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064742.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064743.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064744.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064745.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064746.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064747.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064749.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064752.MOZ[] Spyware:Cookie/Belnk Not disinfected C:\RECYCLER\NPROTECT\00064753.MOZ[] Spyware:Cookie/Ccbill Not disinfected C:\RECYCLER\NPROTECT\00064754.MOZ[] Spyware:Cookie/Ask Not disinfected C:\RECYCLER\NPROTECT\00064756.MOZ[] Spyware:Cookie/Ask Not disinfected C:\RECYCLER\NPROTECT\00064757.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064767.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064768.MOZ[] Spyware:Cookie/DomainSponsor Not disinfected C:\RECYCLER\NPROTECT\00064769.MOZ[] Spyware:Cookie/DomainSponsor Not disinfected C:\RECYCLER\NPROTECT\00064770.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064771.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064773.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064774.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064775.MOZ[] Spyware:Cookie/Sexsuche Not disinfected C:\RECYCLER\NPROTECT\00064776.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064777.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064778.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064779.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064780.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064781.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064782.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064784.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064790.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064791.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064792.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064800.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064801.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064802.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064803.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064805.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064806.MOZ[] Spyware:Cookie/Sexsuche Not disinfected C:\RECYCLER\NPROTECT\00064807.MOZ[] Spyware:Cookie/Sexsuche Not disinfected C:\RECYCLER\NPROTECT\00064808.MOZ[] Spyware:Cookie/Sexsuche Not disinfected C:\RECYCLER\NPROTECT\00064813.MOZ[] Spyware:Cookie/Sexsuche Not disinfected C:\RECYCLER\NPROTECT\00064821.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064822.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064824.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064825.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064826.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064827.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064829.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064860.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064861.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064862.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064864.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064865.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064866.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064867.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064868.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064869.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064878.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064879.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064880.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064881.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064882.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064883.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064884.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064885.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064886.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064887.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064888.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064889.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064890.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064891.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064893.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064894.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064895.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064896.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064897.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064898.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064899.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064900.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064902.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064909.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064910.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064913.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064914.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064915.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064916.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064917.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064918.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064919.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064920.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064921.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064922.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064923.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064925.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064926.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064927.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064928.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064929.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064930.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064931.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064932.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064933.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064934.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064936.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064937.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064938.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064939.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064940.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064941.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064942.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064943.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064944.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064945.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064953.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064957.MOZ[] Spyware:Cookie/DomainSponsor Not disinfected C:\RECYCLER\NPROTECT\00064959.MOZ[] Spyware:Cookie/Xiti Not disinfected C:\RECYCLER\NPROTECT\00064961.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064962.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064963.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064964.MOZ[] Spyware:Cookie/DomainSponsor Not disinfected C:\RECYCLER\NPROTECT\00064965.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064966.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064967.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064968.MOZ[] Spyware:Cookie/DomainSponsor Not disinfected C:\RECYCLER\NPROTECT\00064970.MOZ[] Spyware:Cookie/Searchportal Not disinfected C:\RECYCLER\NPROTECT\00064971.MOZ[] Spyware:Cookie/Ccbill Not disinfected C:\RECYCLER\NPROTECT\00064974.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064976.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064977.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064979.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064980.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064982.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064985.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064986.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064987.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064988.MOZ[] Spyware:Cookie/Searchportal Not disinfected C:\RECYCLER\NPROTECT\00064990.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064991.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00064999.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00065000.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00065002.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00065006.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00065009.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00065010.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00065011.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00065013.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00065014.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00065015.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00065016.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00065017.MOZ[] Spyware:Cookie/adultfriendfinder Not disinfected C:\RECYCLER\NPROTECT\00065018.MOZ[]

j'ai toujours des disfonctionnement je viens de desinstaller spy doctoqui me m'etait des alertes sur active x du fait de son ouverture j'ai l'oeuf quand je crée un nouveau dossier sur le bureau avec un nom d'oiseau attribué je ne peux accéder à firefox j'ai des problèmes pour copier coller mes resultats de scan il ne sont pas pris et mon systeme se bloque je refait un scan panda en espèrant pouvoir faire la sauvegarde jcld

bonjour j'ai réussi à effectuer un scan complet avec PANDA mais malheureusement mon accès internet à été bloqué et je n'ai pu récupérer celui-ci car il était demandé de se connecter à internet 5 virus ont été detectés et détruits, 185 logiciels espions ont été détectés existe- t- il un moyen de retrouver le scan de PANDA avant d'avoir été obligé de redémarrer pour avoir accès à internet et avant que je refasse un scan PANDA. je commence à désespérer jcld dans le dossier favoris forum ou j'ai sauvegarder ebulon et d'autres sites j'ai un C dans un carré bleu avec comme indication de site index??? avec toutes mes excuses, mes je fais des fixations, c C est un forum que j'ai sauvegardé sans savoir qu'elle représentation il avait. car actuellement quand je veux créer un nouveau dossier sur le bureau j'ai un oeuf jaune de représenté à gauche de la ligne et un titre d'oiseau m'est donné directement

bonjour ci-joint dernier rapport hijackthis en mode normal après scn de Kapersky Logfile of HijackThis v1.99.1 Scan saved at 10:23:43, on 05/03/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\brsvc01a.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\brss01a.exe C:\Program Files\AntiVir PersonalEdition Classic\sched.exe C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe C:\WINDOWS\system32\Brmfrmps.exe C:\WINDOWS\system32\CascSvc.exe C:\Program Files\Cobian Backup 7\cbs.exe C:\WINDOWS\Explorer.EXE C:\Program Files\ewido anti-malware\ewidoctrl.exe C:\Program Files\Norton SystemWorks\Norton Ghost\GhostStartService.exe C:\Program Files\Spyware Doctor\sdhelp.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\wdfmgr.exe C:\WINDOWS\system32\wbem\wmiprvse.exe C:\Program Files\D-Tools\daemon.exe C:\WINDOWS\system32\LVCOMSX.EXE C:\Program Files\Logitech\Video\LogiTray.exe C:\Program Files\eoRezo\EoEngine.exe C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\Norton SystemWorks\Norton Ghost\GhostStartTrayApp.exe C:\Program Files\Messenger\msmsgs.exe C:\PROGRA~1\SPYWAR~1\swdoctor.exe C:\PROGRA~1\Livecom\APPLIC~1\Exe\Livecom.exe C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE C:\Program Files\Logitech\Video\FxSvr2.exe C:\PROGRA~1\Livecom\Toaster\Toaster.exe C:\PROGRA~1\Livecom\APPLIC~1\eConfv4\ftplayer.exe C:\WINDOWS\System32\alg.exe C:\WINDOWS\system32\wscntfy.exe C:\HjtackThis 2006\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr/ R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\Userinit.exe O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll O2 - BHO: EoBho Class - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033 O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe O4 - HKLM\..\Run: [EoEngine] "C:\Program Files\eoRezo\EoEngine.exe" O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [GhostStartTrayApp] C:\Program Files\Norton SystemWorks\Norton Ghost\GhostStartTrayApp.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [Livecom] "C:\PROGRA~1\Livecom\APPLIC~1\Exe\..\..\Launcher\Exe\SilentLauncher.exe" O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot O4 - HKCU\..\Run: [spyware Doctor] C:\PROGRA~1\SPYWAR~1\swdoctor.exe /Q O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar3.dll/cmwordtrans.html O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar3.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar3.dll/cmsimilar.html O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar3.dll/cmsearch.html O8 - Extra context menu item: Télécharger en utilisant Download &Express - C:\Program Files\Download Express\Add_Url.htm O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar3.dll/cmcache.html O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll O9 - Extra button: Girafa - {78A7D3B4-23E3-11D4-A682-0050DA502650} - C:\Program Files\Girafa\GirafaBar.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll O16 - DPF: {8EB3FF4E-86A1-4717-884D-7BA2D38272CB} (F-Secure Online Scanner) - http://www.securitoo.com/fra/pages/navol/fscax.cab O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing) O23 - Service: AntiVir Scheduler (AntiVirScheduler) - H+BEDV Datentechnik GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Service (AntiVirService) - H+BEDV Datentechnik GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Brother Popup Suspend service for Resource manager (brmfrmps) - Unknown owner - C:\WINDOWS\system32\Brmfrmps.exe" -service (file missing) O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe O23 - Service: Casc'ADSL (CascSvc) - Unknown owner - C:\WINDOWS\system32\CascSvc.exe O23 - Service: Cobian Backup 7 service (CobBackup7) - Luis Cobian - C:\Program Files\Cobian Backup 7\cbs.exe O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe O23 - Service: GhostStartService - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton Ghost\GhostStartService.exe O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Sandra Data Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2005.SR3\RpcDataSrv.exe O23 - Service: Sandra Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2005.SR3\RpcSandraSrv.exe O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Inventel - C:\Program Files\Inventel\Gateway\wlancfg.exe ci-joint s'il veut bien se copier le scan de mwav.log, l'autre sauvegarde n'étant plus présente? j'ai l'impression que comme je charge les résultats du pc au portable par une cle usb que je suis en train d'infecter mon portable j'ai du mal àchargerb par copier coller les fichiers jcld

avant d'effectuer tes opérations, j'effecrue un scan avec SPYWARE DOCTORqui s'esr affiché sur mon bureau du fait des activesX?? Je ne sais pas lesquels j'ai cochés ou décochés comme le scan de panda ne voulait pas se lancer peux tu me dire comment doivent etre mes actives X je reprendrais apres le scan de spyware doctor tes opérations je retrouve certaines fonctions que je n'avait plus: rechercher restauration du système en faisant une restauration est-il possible de résoudre mon problème???? encore merci pour ton aide jcld

impossibl de lancer le scan de PANDA mon PC ne veut rien savoir JCLD

Mon PC refuse de lancer le scan de PANDA??

merci encore ne pouvant plus utiliser mon pc infecté car je ne peux plus accéder à "ajouter ma réponse " j'utilise par chance mon portable ci-joint rapport EWwido --------------------------------------------------------- ewido anti-malware - Rapport de scan --------------------------------------------------------- + Créé le: 20:15:17, 03/03/2006 + Somme de contrôle: 1520793D + Résultats du scan: C:\Documents and Settings\LE DU\Cookies\le du@casinotropez[1].txt -> TrackingCookie.Casinotropez : Nettoyer et sauvegarder C:\Documents and Settings\LE DU\Cookies\le du@overture[2].txt -> TrackingCookie.Overture : Nettoyer et sauvegarder ::Fin du rapport j'ai toujours mon virus que puis-je faire jcld

bonjour un très grand soulagement et un grand merci j'ai retrouvé mes logiciels je vais t'envoyer le rapport Ewido jcld

bonsoir j'ai fais une grosse erreur en utilisant jv16 j'ai bien lancé le scan outils nettoyeur de registre, mais le rapport était décalé et je ne voyais pas les ronds d'entrée vert et rouge j'ai effacer la liste des logiciels installés sauf 1 qui était en rouge C07ft5Y Je n'ai donc plus rien en liste de logiciels dans le panneau de configuration j'ai vidé la poubelle je pense qu'il n'y a rien à faire pour retrouver cette liste je n'ai donc plus qu'a tous réinstaller??? peux tu me confirmer cela avant que je réinstalle tout merci quand meme pour votre aide très efficace, je n'ai qu'un peu de regret car j'aurais du réinstaller windows du fait des virus si je n'avais eu votre aide j'ai encore des virus le mal est moindre il aurait fallu encore insister continuer à nous aider merci bonsoir

je suis perdu pour placer ma réponse suite a ton rapport je l'ai mis a 2 endroit j'ai effectué en grande partie la procédure que tu m'as décrite mais pendant la correction du scan Ewido le système s'est bloqué sur l'écran de veille et j'ai du arreter et redémarrer. j'avais 20415 fichiers infectés et il y en a environ 16000 qui ont été corrigé je compte recommencé demain soir et j'aurais besoin d'explications sur certains points que je n'ai pu exécuter car je ne savais pas quoi faire partie 1 et 2 aucun problème, j'ai effectué "fix cheched", puis ok et hijackThis is about remove.... 3 ok 4 ok plus de fichier en gras 5 ok sauf pour exécuter "cdm" j'ai eu un fond noir avec ecrit c:\documents and setting\LEDU> je n'avais pas de ligne CODE et j'ai tapé "sc delete....la réponse a été: le service spécifié n'existe pasen tant que service installé???? me préciser ce qui doit etre fait 6 ok pour Easycleaner "inutiles" et "registre" seul problème il m'a été refusé d'effacer un fichier sur 1251 c:\Documents and Setting\LEDU\Temp\~DF1EFD.tmp??? "échec easycleanersur 1 fichier peut etre en cours d'utilisation" par contre je ne sais pas comment utiliser Jv16 powertools me préciser ce qu'il faut faire? 91 entrées sur REGISTRE supprimées ensuite étant en sans échec je n'ai pas compris le nettoyage selon le tuto http://www.zebulon...... que doit-on faire??? 7 ok ok pour le scan mais à la correction le système a été bloqué sur écran de veille 16000 fichiers avaient été corrigés sur 20415 trouvé une très grande partie était sur Mozilla je te met un rapport hijackthis nota: j'ai trouvé je pense cematin en allant sur http...;base de registre l'utilisation de jv16 par contre pour reg cleaner et reg seeker je cherche Logfile of HijackThis v1.99.1 Scan saved at 01:17:40, on 03/03/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\brsvc01a.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\brss01a.exe C:\Program Files\AntiVir PersonalEdition Classic\sched.exe C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe C:\WINDOWS\system32\Brmfrmps.exe C:\WINDOWS\system32\CascSvc.exe C:\Program Files\Cobian Backup 7\cbs.exe C:\Program Files\ewido anti-malware\ewidoctrl.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Inventel\Gateway\wlancfg.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\wscntfy.exe C:\Program Files\D-Tools\daemon.exe C:\WINDOWS\system32\LVCOMSX.EXE C:\Program Files\Logitech\Video\LogiTray.exe C:\Program Files\eoRezo\EoEngine.exe C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Logitech\Video\FxSvr2.exe C:\PROGRA~1\Livecom\APPLIC~1\Exe\Livecom.exe C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE C:\PROGRA~1\Livecom\Toaster\Toaster.exe C:\PROGRA~1\Livecom\APPLIC~1\eConfv4\ftplayer.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\HjtackThis 2006\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\Userinit.exe O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: EoBho Class - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033 O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe O4 - HKLM\..\Run: [EoEngine] "C:\Program Files\eoRezo\EoEngine.exe" O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [Livecom] "C:\PROGRA~1\Livecom\APPLIC~1\Exe\..\..\Launcher\Exe\SilentLauncher.exe" O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar3.dll/cmwordtrans.html O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar3.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar3.dll/cmsimilar.html O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar3.dll/cmsearch.html O8 - Extra context menu item: Télécharger en utilisant Download &Express - C:\Program Files\Download Express\Add_Url.htm O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar3.dll/cmcache.html O9 - Extra button: Girafa - {78A7D3B4-23E3-11D4-A682-0050DA502650} - C:\Program Files\Girafa\GirafaBar.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll O16 - DPF: {8EB3FF4E-86A1-4717-884D-7BA2D38272CB} (F-Secure Online Scanner) - http://www.securitoo.com/fra/pages/navol/fscax.cab O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing) O23 - Service: AntiVir Scheduler (AntiVirScheduler) - H+BEDV Datentechnik GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Service (AntiVirService) - H+BEDV Datentechnik GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Brother Popup Suspend service for Resource manager (brmfrmps) - Unknown owner - C:\WINDOWS\system32\Brmfrmps.exe" -service (file missing) O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe

Avec toutes mes excuses mais je n'ai pas trop l'habitude de manipuler et je suis très concentré pour ne pas faire d'erreur merci pour votre aide salutations Logfile of HijackThis v1.99.1 Scan saved at 22:06:30, on 01/03/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Ahead\InCD\InCDsrv.exe C:\WINDOWS\system32\brsvc01a.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\brss01a.exe C:\Program Files\AntiVir PersonalEdition Classic\sched.exe C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe C:\WINDOWS\system32\Brmfrmps.exe C:\WINDOWS\system32\CascSvc.exe C:\Program Files\Cobian Backup 7\cbs.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\svchost.exe C:\Program Files\Inventel\Gateway\wlancfg.exe C:\Program Files\Visage\PDF Printer\vspdfprsrv.exe C:\Program Files\Picasa2\PicasaMediaDetector.exe C:\Program Files\D-Tools\daemon.exe C:\WINDOWS\system32\LVCOMSX.EXE C:\Program Files\Logitech\Video\LogiTray.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe C:\Program Files\Cobian Backup 7\cobui.exe C:\Program Files\eoRezo\EoEngine.exe C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\Acceleration Software\Anti-Virus\stopsignav.exe C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\CyberLink DVD Solution\Multimedia Launcher\PowerBar.exe C:\Program Files\Free Download Manager\fdm.exe C:\PROGRA~1\Livecom\APPLIC~1\Exe\Livecom.exe C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE C:\Program Files\Logitech\Video\FxSvr2.exe C:\PROGRA~1\Livecom\Toaster\Toaster.exe C:\PROGRA~1\Livecom\APPLIC~1\eConfv4\ftplayer.exe C:\Program Files\iPod\bin\iPodService.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\ESTsoft\ALZip\ALZip.exe C:\Documents and Settings\LE DU\Local Settings\Temp\_AZTMP4_\HijackThis.exe C:\WINDOWS\system32\NOTEPAD.EXE C:\Program Files\ESTsoft\ALZip\ALZip.exe C:\Program Files\ESTsoft\ALZip\ALZip.exe C:\Documents and Settings\LE DU\Local Settings\Temp\_AZTMP5_\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr/ R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\Userinit.exe O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: (no name) - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - (no file) O2 - BHO: EoBho Class - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [vspdfprsrv.exe] C:\Program Files\Visage\PDF Printer\vspdfprsrv.exe O4 - HKLM\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033 O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe" O4 - HKLM\..\Run: [Cobian Backup 7 Interface] "C:\Program Files\Cobian Backup 7\cobui.exe" -service O4 - HKLM\..\Run: [EoEngine] "C:\Program Files\eoRezo\EoEngine.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [stopSignSsTsMon] Rundll32.exe "C:\Program Files\Acceleration Software\Anti-Virus\sstsmon.dll",VerifyStatus O4 - HKLM\..\Run: [webscan] "C:\Program Files\Acceleration Software\Anti-Virus\stopsignav.exe" -k O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [PowerBar] "C:\Program Files\CyberLink DVD Solution\Multimedia Launcher\PowerBar.exe" /AtBootTime O4 - HKCU\..\Run: [Free Download Manager] C:\Program Files\Free Download Manager\fdm.exe -autorun O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe O4 - HKCU\..\Run: [Livecom] "C:\PROGRA~1\Livecom\APPLIC~1\Exe\..\..\Launcher\Exe\SilentLauncher.exe" O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar3.dll/cmwordtrans.html O8 - Extra context menu item: Download all by Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm O8 - Extra context menu item: Download by Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm O8 - Extra context menu item: Download selected by Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm O8 - Extra context menu item: Download web site by Free Download Manager - file://C:\Program Files\Free Download Manager\dlpage.htm O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar3.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar3.dll/cmsimilar.html O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar3.dll/cmsearch.html O8 - Extra context menu item: Télécharger en utilisant Download &Express - C:\Program Files\Download Express\Add_Url.htm O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar3.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Girafa - {78A7D3B4-23E3-11D4-A682-0050DA502650} - C:\Program Files\Girafa\GirafaBar.dll O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1129461501242 O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2005111...all/xscan53.cab O18 - Protocol: bw+0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw+0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: bwg0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwg0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: offline-8876480 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing) O23 - Service: AntiVir Scheduler (AntiVirScheduler) - H+BEDV Datentechnik GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Service (AntiVirService) - H+BEDV Datentechnik GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Brother Popup Suspend service for Resource manager (brmfrmps) - Unknown owner - C:\WINDOWS\system32\Brmfrmps.exe" -service (file missing) O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe O23 - Service: Casc'ADSL (CascSvc) - Unknown owner - C:\WINDOWS\system32\CascSvc.exe O23 - Service: Cobian Backup 7 service (CobBackup7) - Luis Cobian - C:\Program Files\Cobian Backup 7\cbs.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: InCD Helper (InCDsrv) - Ahead Software AG - C:\Program Files\Ahead\InCD\InCDsrv.exe O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Sandra Data Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2005.SR3\RpcDataSrv.exe O23 - Service: Sandra Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2005.SR3\RpcSandraSrv.exe O23 - Service: ScriptBlocking Service (SBService) - Unknown owner - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe (file missing) O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Inventel - C:\Program Files\Inventel\Gateway\wlancfg.exe

Logfile of HijackThis v1.99.1 Scan saved at 10:36:53, on 01/03/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Ahead\InCD\InCDsrv.exe C:\WINDOWS\system32\brsvc01a.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\brss01a.exe C:\Program Files\AntiVir PersonalEdition Classic\sched.exe C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe C:\WINDOWS\system32\Brmfrmps.exe C:\WINDOWS\system32\CascSvc.exe C:\Program Files\Cobian Backup 7\cbs.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Inventel\Gateway\wlancfg.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Visage\PDF Printer\vspdfprsrv.exe C:\Program Files\Picasa2\PicasaMediaDetector.exe C:\Program Files\D-Tools\daemon.exe C:\WINDOWS\system32\LVCOMSX.EXE C:\Program Files\Logitech\Video\LogiTray.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe C:\Program Files\Cobian Backup 7\cobui.exe C:\Program Files\eoRezo\EoEngine.exe C:\Program Files\Logitech\Video\FxSvr2.exe C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\Acceleration Software\Anti-Virus\stopsignav.exe C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\CyberLink DVD Solution\Multimedia Launcher\PowerBar.exe C:\Program Files\Free Download Manager\fdm.exe C:\PROGRA~1\Livecom\APPLIC~1\Exe\Livecom.exe C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE C:\WINDOWS\System32\svchost.exe C:\PROGRA~1\Livecom\Toaster\Toaster.exe C:\PROGRA~1\Livecom\APPLIC~1\eConfv4\ftplayer.exe C:\Program Files\ESTsoft\ALZip\ALZip.exe C:\Documents and Settings\LE DU\Local Settings\Temp\_AZTMP1_\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr/ R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\Userinit.exe O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: (no name) - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - (no file) O2 - BHO: EoBho Class - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [vspdfprsrv.exe] C:\Program Files\Visage\PDF Printer\vspdfprsrv.exe O4 - HKLM\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033 O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe" O4 - HKLM\..\Run: [Cobian Backup 7 Interface] "C:\Program Files\Cobian Backup 7\cobui.exe" -service O4 - HKLM\..\Run: [EoEngine] "C:\Program Files\eoRezo\EoEngine.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [stopSignSsTsMon] Rundll32.exe "C:\Program Files\Acceleration Software\Anti-Virus\sstsmon.dll",VerifyStatus O4 - HKLM\..\Run: [webscan] "C:\Program Files\Acceleration Software\Anti-Virus\stopsignav.exe" -k O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [PowerBar] "C:\Program Files\CyberLink DVD Solution\Multimedia Launcher\PowerBar.exe" /AtBootTime O4 - HKCU\..\Run: [Free Download Manager] C:\Program Files\Free Download Manager\fdm.exe -autorun O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe O4 - HKCU\..\Run: [Livecom] "C:\PROGRA~1\Livecom\APPLIC~1\Exe\..\..\Launcher\Exe\SilentLauncher.exe" O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar3.dll/cmwordtrans.html O8 - Extra context menu item: Download all by Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm O8 - Extra context menu item: Download by Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm O8 - Extra context menu item: Download selected by Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm O8 - Extra context menu item: Download web site by Free Download Manager - file://C:\Program Files\Free Download Manager\dlpage.htm O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar3.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar3.dll/cmsimilar.html O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar3.dll/cmsearch.html O8 - Extra context menu item: Télécharger en utilisant Download &Express - C:\Program Files\Download Express\Add_Url.htm O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar3.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Girafa - {78A7D3B4-23E3-11D4-A682-0050DA502650} - C:\Program Files\Girafa\GirafaBar.dll O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1129461501242 O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2005111...all/xscan53.cab O18 - Protocol: bw+0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw+0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: bwg0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwg0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0s - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: offline-8876480 - {C7110D25-AB23-4FD4-BFA0-C6DD2EE6CEC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing) O23 - Service: AntiVir Scheduler (AntiVirScheduler) - H+BEDV Datentechnik GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Service (AntiVirService) - H+BEDV Datentechnik GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Brother Popup Suspend service for Resource manager (brmfrmps) - Unknown owner - C:\WINDOWS\system32\Brmfrmps.exe" -service (file missing) O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe O23 - Service: Casc'ADSL (CascSvc) - Unknown owner - C:\WINDOWS\system32\CascSvc.exe O23 - Service: Cobian Backup 7 service (CobBackup7) - Luis Cobian - C:\Program Files\Cobian Backup 7\cbs.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: InCD Helper (InCDsrv) - Ahead Software AG - C:\Program Files\Ahead\InCD\InCDsrv.exe O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Sandra Data Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2005.SR3\RpcDataSrv.exe O23 - Service: Sandra Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2005.SR3\RpcSandraSrv.exe O23 - Service: ScriptBlocking Service (SBService) - Unknown owner - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe (file missing) O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Inventel - C:\Program Files\Inventel\Gateway\wlancfg.exe

j'ai posé la question mais ayant trouvé ces informations je me permets de vous solliciter pour etre sur de ma manipulation je suis infecté par un virus worm mytob un scan par XOFF SPY me dit que le virus se trouve: - software\microsoft\windows\currentversion\run\windowssystem - \runservices\mindowssystem par "regedit" je trouve dans HKEY LOCAL MACHINE aux 2 adresses ci-dessus: "svchast2.exe" pour effacer il faut je crois se mettre en mode sans échec et effacer ces 2 lignes?? pouvez-vous me confirmer ceci ou y-a-t-il autre chose à faire si je sauvegarde par protection, regedit par la fonction "exporter" je maintien le virus dans ce fichier?? merci de votre réponse jcld1

J'ai désinstallé norton pour mettre SECURITOO et j'ai pris un virus qui m'empeche d'installer SECURITOO Après un scan avec XOFF SPY il m'indique que j'ai un WORM MyTob qui se situerai dans "registre key" à 2 endroits: - software\microsoft\windows\currentversion\run\windowssystem - \runservices\windowssystem je n'ai plus les fonctions rechercher, point de restauration, firefox,etc que dois-je faire pour supprimer le virus ci dessus sans etre obligé de tous réinstaller merci de me tuyauter jcld1