petitef

coucou j ai reussi le scan cette fois j ai fait enregistrer sous mais ca a pas enregistré une page vierge j ai du faire une fausse manipulation desolee.Que je me souvienne il y avait 4 infections ainsi que 32 cookies de supprimés dois je refaire le scan stp?

j ai fait la procédure pour scanner mais ca ne demarre pas.En desactivant avast window ne m alerte pas du manque d antivirus sur mon pc est ce que securitoo qui entre en conflit?

il l est pourtant

bjour je n arrive meme pas a telecharger les activex j ai coché aux bons endroits j étais sous internet explorer pourtant......et sinon je pense avoir desistallé securitoo ......pour les activex j ressayerai j ai essayé 7 fois hier lol :-?et pourtant a louverture de chaque page une fenetre explorer s ouvre et me demande si j autorise activex et plugs in

kik bruce lee ben j ai regardé pour securitoo f secure ne se trouve pas dans ajouts suppression. Et depuis hier j essaie d aller voir mes mails dans hotmail mais la page ne s ouvre pas,et lorsque je vais sur yahoo mon code n est pas reconnu cela a t il voir avec les manipulations que j ai faites? Mais la question est mon ordinateur est donc tout propre?pourrais tu me conseiller pour l optimiser s il te plait?

bonjour bruce. alors je na i pas reussi l etape5 concernant fxhotbar exe il dit il analyse un pti moment et dit qu il n y a pas de fxhotbar dans l ordinateur;pour le reste quelle utilisation dois je faire de ewidoo?dois je t envoyer un autre rapport?dois je faire un log hijackthis tous les jours?ah sinon j ai été effacé securitoo dans programe files et j ai desactivé le pare feu windows,g mis kerio a la place et la mise a jour est en automatique.MERCI DE TON AIDE c sympa:)

Logfile of HijackThis v1.99.1 Scan saved at 19:12:23, on 09/05/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\Program Files\Securitoo\av_fw\Common\FSMA32.EXE C:\Program Files\Securitoo\av_fw\Common\FSMB32.EXE C:\WINDOWS\System32\FTRTSVC.exe C:\WINDOWS\System32\nvsvc32.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Securitoo\av_fw\Common\FCH32.EXE C:\Program Files\Securitoo\av_fw\Common\FAMEH32.EXE C:\WINDOWS\Explorer.EXE C:\Program Files\Phoenix Technologies Ltd\RecoverPro_XP\VBPTASK.EXE C:\WINDOWS\system32\RunDll32.exe C:\WINDOWS\AGRSMMSG.exe C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9CE.EXE C:\WINDOWS\System32\LVCOMSX.EXE C:\Program Files\Logitech\Video\LogiTray.exe C:\Program Files\Microsoft Works\WksSb.exe C:\Program Files\Real\RealPlayer\RealPlay.exe C:\PROGRA~1\Ahead\NEROTO~1\DRIVES~1.EXE C:\Program Files\Securitoo\av_fw\Common\FSM32.EXE C:\Program Files\Securitoo\av_fw\FSGUI\ispnews.exe C:\PROGRA~1\Wanadoo\TaskBarIcon.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\MessengerPlus! 3\MsgPlus.exe C:\Program Files\HbTools\Bin\4.7.7.0\HbtWeatherOnTray.exe C:\Program Files\HbTools\Bin\4.7.7.0\HbtOEAddOn.exe C:\Program Files\Securitoo\av_fw\FSGUI\fsguiexe.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\wkcalrem.exe C:\Program Files\Logitech\Video\FxSvr2.exe C:\Program Files\HbTools\Bin\4.7.7.0\HbtSrv.exe C:\Program Files\WinRAR\WinRAR.exe C:\DOCUME~1\RAZANA~1\LOCALS~1\Temp\Rar$EX02.297\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.wanadoo.fr/go/page_recherche/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.unika.com R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://resultsmaster.com/SmartOffers/Servi...omeLeftPane.htm R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: ShprRprts - {2A8A997F-BB9F-48F6-AA2B-2762D50F9289} - C:\Program Files\ShopperReports\Bin\2.0.0\ShprRprt.dll O2 - BHO: HbTools - {74CC49F7-EB32-4A08-B204-948962A6E3DB} - C:\Program Files\HbTools\Bin\4.7.7.0\HbtHostIE.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: H&otbar - {74CC49F7-EB32-4A08-B204-948962A6E3DB} - C:\Program Files\HbTools\Bin\4.7.7.0\HbtHostIE.dll O4 - HKLM\..\Run: [schedulingAgent] mstinit.exe /firstlogon O4 - HKLM\..\Run: [RestoreIT!] "C:\Program Files\Phoenix Technologies Ltd\RecoverPro_XP\VBPTASK.EXE" VBStart O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAudPropShortcut.exe O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe O4 - HKLM\..\Run: [fenaffiche] C:\Program Files\FenAffiche\Fenpowernet.exe O4 - HKLM\..\Run: [EPSON Stylus Photo RX420 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9CE.EXE /P31 "EPSON Stylus Photo RX420 Series" /O6 "USB001" /M "Stylus Photo RX420" O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe O4 - HKLM\..\Run: [WorksFUD] C:\Program Files\Microsoft Works\wkfud.exe O4 - HKLM\..\Run: [Microsoft Works Portfolio] C:\Program Files\Microsoft Works\WksSb.exe /AllUsers O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Microsoft Works\WkDetect.exe O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [Nero DriveSpeed] C:\PROGRA~1\Ahead\NEROTO~1\DRIVES~1.EXE O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Securitoo\av_fw\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Securitoo\av_fw\Common\FSM32.EXE" /splash O4 - HKLM\..\Run: [F-Secure Startup Wizard] "C:\Program Files\Securitoo\av_fw\FSGUI\FSSW.EXE" /reboot O4 - HKLM\..\Run: [News Service] "C:\Program Files\Securitoo\av_fw\FSGUI\ispnews.exe" O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" O4 - HKLM\..\Run: [WeatherOnTray] C:\Program Files\HbTools\Bin\4.7.7.0\HbtWeatherOnTray.exe O4 - HKLM\..\Run: [HbTools] C:\Program Files\HbTools\Bin\4.7.7.0\HbtOEAddOn.exe O4 - HKLM\..\Run: [thvtkpii] C:\WINDOWS\system32\qeemganf.exe O4 - HKLM\..\Run: [Media Gateway] C:\Program Files\Media Gateway\MediaGateway.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\Money Express.exe" O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM= O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - Global Startup: Rappels du Calendrier Microsoft Works.lnk = ? O8 - Extra context menu item: &Recherche AOL Toolbar - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML O8 - Extra context menu item: &Traduire à partir de l'anglais - res://C:\Program Files\Google\GoogleToolbar1.dll/cmwordtrans.html O8 - Extra context menu item: Pages liées - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html O8 - Extra context menu item: Recherche &Google - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html O9 - Extra button: Organise-notes - {9455301C-CF6B-11D3-A266-00C04F689C50} - C:\Program Files\Fichiers communs\Microsoft Shared\Reference 2001\EROProj.dll O9 - Extra button: ShopperReports - Compare product prices - {946B3E9E-E21A-49c8-9F63-900533FAFE14} - C:\Program Files\ShopperReports\Bin\2.0.0\ShprRprt.dll O9 - Extra button: ShopperReports - Compare travel rates - {946B3E9E-E21A-49c8-9F63-900533FAFE15} - C:\Program Files\ShopperReports\Bin\2.0.0\ShprRprt.dll O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.wanadoo.fr (file missing) (HKCU) O14 - IERESET.INF: START_PAGE_URL=http://www.unika.com O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.imgfarm.com/images/nocache/funwe...up1.0.0.8-2.cab O16 - DPF: {8FCDF9D9-A28B-480F-8C3D-581F119A8AB8} - http://static.zangocash.com/cab/Zango/ie/bridge-c356.cab O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O20 - AppInit_DLLs: MsgPlusLoader.dll O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\Common\FSMA32.EXE O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe et ewidoo --------------------------------------------------------- ewido anti-malware - Rapport de scan --------------------------------------------------------- + Créé le: 23:15:08, 09/05/2006 + Somme de contrôle: D9231C17 + Résultats du scan: HKLM\SOFTWARE\SCom -> Dialer.Generic : Nettoyer et sauvegarder HKLM\SOFTWARE\SCom\Dialers -> Dialer.Generic : Nettoyer et sauvegarder HKU\S-1-5-21-1045717066-3251961888-4270008046-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{21B4ACC4-8874-4AEC-AEAC-F567A249B4D4} -> Adware.ZangoSearch : Nettoyer et sauvegarder HKU\S-1-5-21-1045717066-3251961888-4270008046-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EA0D26BD-9029-431A-86E0-83152D67828A} -> Adware.180Solutions : Nettoyer et sauvegarder HKU\S-1-5-21-1045717066-3251961888-4270008046-1006\Software\SCom -> Dialer.Generic : Nettoyer et sauvegarder HKU\S-1-5-21-1045717066-3251961888-4270008046-1006\Software\SCom\Dialers -> Dialer.Generic : Nettoyer et sauvegarder HKU\S-1-5-21-1045717066-3251961888-4270008046-1006\Software\SCom\Dialers\Gay_Sexy_fr -> Dialer.Generic : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@247realmedia[2].txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@2o7[2].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@adopt.euroclick[2].txt -> TrackingCookie.Euroclick : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@ads.addynamix[2].txt -> TrackingCookie.Addynamix : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@ads.pointroll[1].txt -> TrackingCookie.Pointroll : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@adtech[2].txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@advertising[2].txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@as1.falkag[2].txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@c.enhance[1].txt -> TrackingCookie.Enhance : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@casalemedia[2].txt -> TrackingCookie.Casalemedia : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@casinopays[1].txt -> TrackingCookie.Casinopays : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@counter.hitslink[2].txt -> TrackingCookie.Hitslink : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@crbanner.casinopays[2].txt -> TrackingCookie.Casinopays : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@ehg-ads.hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@estat[1].txt -> TrackingCookie.Estat : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@fastclick[2].txt -> TrackingCookie.Fastclick : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@overture[2].txt -> TrackingCookie.Overture : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@perf.overture[1].txt -> TrackingCookie.Overture : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@tribalfusion[1].txt -> TrackingCookie.Tribalfusion : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@valueclick[2].txt -> TrackingCookie.Valueclick : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@weborama[1].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@zedo[1].txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder C:\Program Files\hijackthis\hijackthis\backups\backup-20060509-221028-690.dll -> Adware.WinAD : Nettoyer et sauvegarder ::Fin du rapport vala vala y a des choz k g pa pu faire

bonjour. c entendu merci bocoup

--------------------------------------------------------- ewido anti-malware - Rapport de scan --------------------------------------------------------- hey c dur pour une premiere fois lol j vai dodo thanx + Créé le: 23:15:08, 09/05/2006 + Somme de contrôle: D9231C17 + Résultats du scan: HKLM\SOFTWARE\SCom -> Dialer.Generic : Nettoyer et sauvegarder HKLM\SOFTWARE\SCom\Dialers -> Dialer.Generic : Nettoyer et sauvegarder HKU\S-1-5-21-1045717066-3251961888-4270008046-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{21B4ACC4-8874-4AEC-AEAC-F567A249B4D4} -> Adware.ZangoSearch : Nettoyer et sauvegarder HKU\S-1-5-21-1045717066-3251961888-4270008046-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EA0D26BD-9029-431A-86E0-83152D67828A} -> Adware.180Solutions : Nettoyer et sauvegarder HKU\S-1-5-21-1045717066-3251961888-4270008046-1006\Software\SCom -> Dialer.Generic : Nettoyer et sauvegarder HKU\S-1-5-21-1045717066-3251961888-4270008046-1006\Software\SCom\Dialers -> Dialer.Generic : Nettoyer et sauvegarder HKU\S-1-5-21-1045717066-3251961888-4270008046-1006\Software\SCom\Dialers\Gay_Sexy_fr -> Dialer.Generic : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@247realmedia[2].txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@2o7[2].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@adopt.euroclick[2].txt -> TrackingCookie.Euroclick : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@ads.addynamix[2].txt -> TrackingCookie.Addynamix : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@ads.pointroll[1].txt -> TrackingCookie.Pointroll : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@adtech[2].txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@advertising[2].txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@as1.falkag[2].txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@c.enhance[1].txt -> TrackingCookie.Enhance : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@casalemedia[2].txt -> TrackingCookie.Casalemedia : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@casinopays[1].txt -> TrackingCookie.Casinopays : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@counter.hitslink[2].txt -> TrackingCookie.Hitslink : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@crbanner.casinopays[2].txt -> TrackingCookie.Casinopays : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@ehg-ads.hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@estat[1].txt -> TrackingCookie.Estat : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@fastclick[2].txt -> TrackingCookie.Fastclick : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@overture[2].txt -> TrackingCookie.Overture : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@perf.overture[1].txt -> TrackingCookie.Overture : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@tribalfusion[1].txt -> TrackingCookie.Tribalfusion : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@valueclick[2].txt -> TrackingCookie.Valueclick : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@weborama[1].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@zedo[1].txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder C:\Program Files\hijackthis\hijackthis\backups\backup-20060509-221028-690.dll -> Adware.WinAD : Nettoyer et sauvegarder ::Fin du rapport --------------------------------------------------------- ewido anti-malware - Rapport de scan --------------------------------------------------------- + Créé le: 23:15:08, 09/05/2006 + Somme de contrôle: D9231C17 + Résultats du scan: HKLM\SOFTWARE\SCom -> Dialer.Generic : Nettoyer et sauvegarder HKLM\SOFTWARE\SCom\Dialers -> Dialer.Generic : Nettoyer et sauvegarder HKU\S-1-5-21-1045717066-3251961888-4270008046-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{21B4ACC4-8874-4AEC-AEAC-F567A249B4D4} -> Adware.ZangoSearch : Nettoyer et sauvegarder HKU\S-1-5-21-1045717066-3251961888-4270008046-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EA0D26BD-9029-431A-86E0-83152D67828A} -> Adware.180Solutions : Nettoyer et sauvegarder HKU\S-1-5-21-1045717066-3251961888-4270008046-1006\Software\SCom -> Dialer.Generic : Nettoyer et sauvegarder HKU\S-1-5-21-1045717066-3251961888-4270008046-1006\Software\SCom\Dialers -> Dialer.Generic : Nettoyer et sauvegarder HKU\S-1-5-21-1045717066-3251961888-4270008046-1006\Software\SCom\Dialers\Gay_Sexy_fr -> Dialer.Generic : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@247realmedia[2].txt -> TrackingCookie.247realmedia : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@2o7[2].txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@adopt.euroclick[2].txt -> TrackingCookie.Euroclick : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@ads.addynamix[2].txt -> TrackingCookie.Addynamix : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@ads.pointroll[1].txt -> TrackingCookie.Pointroll : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@adtech[2].txt -> TrackingCookie.Adtech : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@advertising[2].txt -> TrackingCookie.Advertising : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@as1.falkag[2].txt -> TrackingCookie.Falkag : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@c.enhance[1].txt -> TrackingCookie.Enhance : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@casalemedia[2].txt -> TrackingCookie.Casalemedia : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@casinopays[1].txt -> TrackingCookie.Casinopays : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@counter.hitslink[2].txt -> TrackingCookie.Hitslink : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@crbanner.casinopays[2].txt -> TrackingCookie.Casinopays : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@ehg-ads.hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@estat[1].txt -> TrackingCookie.Estat : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@fastclick[2].txt -> TrackingCookie.Fastclick : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@overture[2].txt -> TrackingCookie.Overture : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@perf.overture[1].txt -> TrackingCookie.Overture : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@tribalfusion[1].txt -> TrackingCookie.Tribalfusion : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@valueclick[2].txt -> TrackingCookie.Valueclick : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@weborama[1].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder C:\Documents and Settings\razanaparany\Cookies\razanaparany@zedo[1].txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder C:\Program Files\hijackthis\hijackthis\backups\backup-20060509-221028-690.dll -> Adware.WinAD : Nettoyer et sauvegarder ::Fin du rapport le log

bonjour j ai fait la procedure de predesinfection.resultat 8 virus et un trojan.je joins ici mon log hijackthis je vous prie d analyser l log s il vous Logfile of HijackThis v1.99.1 je suis novice Scan saved at 19:12:23, on 09/05/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\Program Files\Securitoo\av_fw\Common\FSMA32.EXE C:\Program Files\Securitoo\av_fw\Common\FSMB32.EXE C:\WINDOWS\System32\FTRTSVC.exe C:\WINDOWS\System32\nvsvc32.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Securitoo\av_fw\Common\FCH32.EXE C:\Program Files\Securitoo\av_fw\Common\FAMEH32.EXE C:\WINDOWS\Explorer.EXE C:\Program Files\Phoenix Technologies Ltd\RecoverPro_XP\VBPTASK.EXE C:\WINDOWS\system32\RunDll32.exe C:\WINDOWS\AGRSMMSG.exe C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9CE.EXE C:\WINDOWS\System32\LVCOMSX.EXE C:\Program Files\Logitech\Video\LogiTray.exe C:\Program Files\Microsoft Works\WksSb.exe C:\Program Files\Real\RealPlayer\RealPlay.exe C:\PROGRA~1\Ahead\NEROTO~1\DRIVES~1.EXE C:\Program Files\Securitoo\av_fw\Common\FSM32.EXE C:\Program Files\Securitoo\av_fw\FSGUI\ispnews.exe C:\PROGRA~1\Wanadoo\TaskBarIcon.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\MessengerPlus! 3\MsgPlus.exe C:\Program Files\HbTools\Bin\4.7.7.0\HbtWeatherOnTray.exe C:\Program Files\HbTools\Bin\4.7.7.0\HbtOEAddOn.exe C:\Program Files\Securitoo\av_fw\FSGUI\fsguiexe.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\wkcalrem.exe C:\Program Files\Logitech\Video\FxSvr2.exe C:\Program Files\HbTools\Bin\4.7.7.0\HbtSrv.exe C:\Program Files\WinRAR\WinRAR.exe C:\DOCUME~1\RAZANA~1\LOCALS~1\Temp\Rar$EX02.297\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.wanadoo.fr/go/page_recherche/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.unika.com R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://resultsmaster.com/SmartOffers/Servi...omeLeftPane.htm R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: ShprRprts - {2A8A997F-BB9F-48F6-AA2B-2762D50F9289} - C:\Program Files\ShopperReports\Bin\2.0.0\ShprRprt.dll O2 - BHO: HbTools - {74CC49F7-EB32-4A08-B204-948962A6E3DB} - C:\Program Files\HbTools\Bin\4.7.7.0\HbtHostIE.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: H&otbar - {74CC49F7-EB32-4A08-B204-948962A6E3DB} - C:\Program Files\HbTools\Bin\4.7.7.0\HbtHostIE.dll O4 - HKLM\..\Run: [schedulingAgent] mstinit.exe /firstlogon O4 - HKLM\..\Run: [RestoreIT!] "C:\Program Files\Phoenix Technologies Ltd\RecoverPro_XP\VBPTASK.EXE" VBStart O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAudPropShortcut.exe O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe O4 - HKLM\..\Run: [fenaffiche] C:\Program Files\FenAffiche\Fenpowernet.exe O4 - HKLM\..\Run: [EPSON Stylus Photo RX420 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9CE.EXE /P31 "EPSON Stylus Photo RX420 Series" /O6 "USB001" /M "Stylus Photo RX420" O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe O4 - HKLM\..\Run: [WorksFUD] C:\Program Files\Microsoft Works\wkfud.exe O4 - HKLM\..\Run: [Microsoft Works Portfolio] C:\Program Files\Microsoft Works\WksSb.exe /AllUsers O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Microsoft Works\WkDetect.exe O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [Nero DriveSpeed] C:\PROGRA~1\Ahead\NEROTO~1\DRIVES~1.EXE O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Securitoo\av_fw\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Securitoo\av_fw\Common\FSM32.EXE" /splash O4 - HKLM\..\Run: [F-Secure Startup Wizard] "C:\Program Files\Securitoo\av_fw\FSGUI\FSSW.EXE" /reboot O4 - HKLM\..\Run: [News Service] "C:\Program Files\Securitoo\av_fw\FSGUI\ispnews.exe" O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" O4 - HKLM\..\Run: [WeatherOnTray] C:\Program Files\HbTools\Bin\4.7.7.0\HbtWeatherOnTray.exe O4 - HKLM\..\Run: [HbTools] C:\Program Files\HbTools\Bin\4.7.7.0\HbtOEAddOn.exe O4 - HKLM\..\Run: [thvtkpii] C:\WINDOWS\system32\qeemganf.exe O4 - HKLM\..\Run: [Media Gateway] C:\Program Files\Media Gateway\MediaGateway.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\Money Express.exe" O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM= O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - Global Startup: Rappels du Calendrier Microsoft Works.lnk = ? O8 - Extra context menu item: &Recherche AOL Toolbar - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML O8 - Extra context menu item: &Traduire à partir de l'anglais - res://C:\Program Files\Google\GoogleToolbar1.dll/cmwordtrans.html O8 - Extra context menu item: Pages liées - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html O8 - Extra context menu item: Recherche &Google - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html O9 - Extra button: Organise-notes - {9455301C-CF6B-11D3-A266-00C04F689C50} - C:\Program Files\Fichiers communs\Microsoft Shared\Reference 2001\EROProj.dll O9 - Extra button: ShopperReports - Compare product prices - {946B3E9E-E21A-49c8-9F63-900533FAFE14} - C:\Program Files\ShopperReports\Bin\2.0.0\ShprRprt.dll O9 - Extra button: ShopperReports - Compare travel rates - {946B3E9E-E21A-49c8-9F63-900533FAFE15} - C:\Program Files\ShopperReports\Bin\2.0.0\ShprRprt.dll O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.wanadoo.fr (file missing) (HKCU) O14 - IERESET.INF: START_PAGE_URL=http://www.unika.com O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.imgfarm.com/images/nocache/funwe...up1.0.0.8-2.cab O16 - DPF: {8FCDF9D9-A28B-480F-8C3D-581F119A8AB8} - http://static.zangocash.com/cab/Zango/ie/bridge-c356.cab O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O20 - AppInit_DLLs: MsgPlusLoader.dll O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\Common\FSMA32.EXE O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe plait