hi Efwis,
Just got the logs from my father....He told me had heaps of problems with Ewido, seems like after founding 39 errors, it couldn't finish normaly, he had to reboot the computer...you will find here the first ewido log then the second one followed by the hijackthis log.
Thanks again , sorry my father did install ewido in french ....so the log is ...if any trouble translating few words, let me know.
cherres again,
Pierre
---------------------------------------------------------
ewido security suite - First scan report
---------------------------------------------------------
+ done on the : 18:45:18, 10/05/2005
+ Somme de contrôle: 89F7873F
+ Date des signatures: 10/05/2005
+ Version du moteur de recherche: v3.0
+ Temps: 40 min
+ Fichiers scannés: 120261
+ Vitesse: 49.04 Fichiers/Secondes
+ Fichers infectés: 39
+ Fichiers supprimés: 39
+ Fichiers mis en quarantaine: 39
+ Fichiers ne pouvant pas être ouverts: 0
+ Fichiers ne pouvant pas être nettoyés: 0
+ Liés: Oui
+ Cryptés: Oui
+ Archives: Oui
+ Elements scannés:
C:\
D:\
E:\
F:\
G:\
+ Résultats du scan:
C:\Documents and Settings\Jean-Claude.JEAN-QLVOBZA2UQ\Local Settings\Temp\temp.fr1C66\istsvc.exe -> TrojanDownloader.IstBar -> Nettoyer et sauvegarder
C:\Documents and Settings\Jean-Claude.JEAN-QLVOBZA2UQ\Local Settings\Temporary Internet Files\Content.IE5\XG8JXTGH\DVD_Region-Free_Lite_v3[1].6.2.2 (www.crack.cd).zip/imr.exe -> TrojanDownloader.INService.et -> Nettoyer et sauvegarder
C:\Documents and Settings\Jean-Claude.JEAN-QLVOBZA2UQ\Cookies\jean-claude@xiti[2].txt -> Spyware.Tracking-Cookie -> Nettoyer et sauvegarder
C:\Documents and Settings\Jean-Claude.JEAN-QLVOBZA2UQ\Cookies\jean-claude@xiti[1].txt -> Spyware.Tracking-Cookie -> Nettoyer et sauvegarder
C:\Documents and Settings\Jean-Claude.JEAN-QLVOBZA2UQ\Cookies\
[email protected][1].txt -> Spyware.Tracking-Cookie -> Nettoyer et sauvegarder
C:\Documents and Settings\Jean-Claude.JEAN-QLVOBZA2UQ\Cookies\
[email protected][1].txt -> Spyware.Tracking-Cookie -> Nettoyer et sauvegarder
C:\Documents and Settings\Jean-Claude.JEAN-QLVOBZA2UQ\Cookies\jean-claude@burstnet[2].txt -> Spyware.Tracking-Cookie -> Nettoyer et sauvegarder
C:\Documents and Settings\Jean-Claude.JEAN-QLVOBZA2UQ\Cookies\
[email protected][1].txt -> Spyware.Tracking-Cookie -> Nettoyer et sauvegarder
C:\Documents and Settings\Jean-Claude.JEAN-QLVOBZA2UQ\Cookies\jean-claude@geocities[1].txt -> Spyware.Tracking-Cookie -> Nettoyer et sauvegarder
C:\Documents and Settings\Jean-Claude.JEAN-QLVOBZA2UQ\Cookies\
[email protected][1].txt -> Spyware.Tracking-Cookie -> Nettoyer et sauvegarder
C:\Documents and Settings\gestion systeme\Cookies\gestion
[email protected][1].txt -> Spyware.Tracking-Cookie -> Nettoyer et sauvegarder
C:\Documents and Settings\gestion systeme\Cookies\gestion systeme@geocities[2].txt -> Spyware.Tracking-Cookie -> Nettoyer et sauvegarder
C:\Documents and Settings\gestion systeme\Cookies\gestion systeme@xiti[1].txt -> Spyware.Tracking-Cookie -> Nettoyer et sauvegarder
C:\Documents and Settings\gestion systeme\Cookies\gestion
[email protected][1].txt -> Spyware.Tracking-Cookie -> Nettoyer et sauvegarder
C:\Documents and Settings\gestion systeme\Cookies\gestion
[email protected][2].txt -> Spyware.Tracking-Cookie -> Nettoyer et sauvegarder
C:\Documents and Settings\gestion systeme\Cookies\gestion
[email protected][1].txt -> Spyware.Tracking-Cookie -> Nettoyer et sauvegarder
C:\Documents and Settings\gestion systeme\Cookies\gestion
[email protected][2].txt -> Spyware.Tracking-Cookie -> Nettoyer et sauvegarder
C:\Documents and Settings\gestion systeme\Cookies\gestion
[email protected][2].txt -> Spyware.Tracking-Cookie -> Nettoyer et sauvegarder
C:\Documents and Settings\gestion systeme\.jpi_cache\jar\1.0\ar3.jar-f30ee60-58b1a0c8.zip/Gummy.class -> Trojan.Java.Femad -> Nettoyer et sauvegarder
C:\System Volume Information\_restore{458AA821-61D2-4C15-B731-75FF26D46EC6}\RP208\A0057579.exe -> Spyware.Apropos -> Nettoyer et sauvegarder
C:\System Volume Information\_restore{458AA821-61D2-4C15-B731-75FF26D46EC6}\RP208\A0057580.dll -> TrojanDownloader.Apropo.w -> Nettoyer et sauvegarder
C:\System Volume Information\_restore{458AA821-61D2-4C15-B731-75FF26D46EC6}\RP208\A0057624.exe -> Spyware.Apropos.i -> Nettoyer et sauvegarder
C:\System Volume Information\_restore{458AA821-61D2-4C15-B731-75FF26D46EC6}\RP208\A0057630.exe -> TrojanDownloader.Apropo.r -> Nettoyer et sauvegarder
C:\System Volume Information\_restore{458AA821-61D2-4C15-B731-75FF26D46EC6}\RP208\A0057633.dll -> Spyware.Apropos.f -> Nettoyer et sauvegarder
C:\System Volume Information\_restore{458AA821-61D2-4C15-B731-75FF26D46EC6}\RP220\A0060691.EXE -> TrojanDownloader.IstBar -> Nettoyer et sauvegarder
C:\System Volume Information\_restore{458AA821-61D2-4C15-B731-75FF26D46EC6}\RP221\A0060751.exe -> TrojanDownloader.IstBar.ij -> Nettoyer et sauvegarder
C:\System Volume Information\_restore{458AA821-61D2-4C15-B731-75FF26D46EC6}\RP221\A0060754.exe -> Spyware.PowerScan.d -> Nettoyer et sauvegarder
C:\System Volume Information\_restore{458AA821-61D2-4C15-B731-75FF26D46EC6}\RP221\A0060770.EXE -> TrojanDownloader.IstBar -> Nettoyer et sauvegarder
C:\System Volume Information\_restore{458AA821-61D2-4C15-B731-75FF26D46EC6}\RP223\A0061585.dll -> Spyware.Sahat.l -> Nettoyer et sauvegarder
C:\System Volume Information\_restore{458AA821-61D2-4C15-B731-75FF26D46EC6}\RP223\A0061586.exe -> TrojanDownloader.IstBar -> Nettoyer et sauvegarder
C:\System Volume Information\_restore{458AA821-61D2-4C15-B731-75FF26D46EC6}\RP223\A0061813.exe -> Spyware.Sahat.s -> Nettoyer et sauvegarder
C:\System Volume Information\_restore{458AA821-61D2-4C15-B731-75FF26D46EC6}\RP224\A0061998.exe -> TrojanDownloader.IstBar -> Nettoyer et sauvegarder
C:\Programmes Perso\gravures DVD\DVD_Region-Free_Lite_v3[1].6.2.2 (www.crack.cd).zip/imr.exe -> TrojanDownloader.INService.et -> Nettoyer et sauvegarder
C:\Programmes Perso\gravures DVD\DVD_Region-Free_Lite_v3[1].6.2.2 (www.crack.cd)\imr.exe -> TrojanDownloader.INService.et -> Nettoyer et sauvegarder
D:\System Volume Information\_restore{54CC10E1-AEA8-489B-85FA-B90CC523185E}\RP8\A0000241.exe -> Worm.Padobot.m -> Nettoyer et sauvegarder
D:\System Volume Information\_restore{12EEE9B3-BD79-49DC-8DA0-727AE79C4AE6}\RP19\A0018073.exe -> Spyware.BargainBuddy.a -> Nettoyer et sauvegarder
D:\archives-sécurité\Utilitaires\setupneoaudio.exe -> Spyware.BargainBuddy.a -> Nettoyer et sauvegarder
F:\System Volume Information\_restore{12EEE9B3-BD79-49DC-8DA0-727AE79C4AE6}\RP19\A0018224.exe -> Spyware.BargainBuddy.a -> Nettoyer et sauvegarder
F:\Utilitaires\Néo-Audio\setupneoaudio.exe -> Spyware.BargainBuddy.a -> Nettoyer et sauvegarder
Logfile of HijackThis v1.99.1
Scan saved at 21:49:41, on 10/05/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\ewido\security suite\ewidoctrl.exe
C:\Program Files\ewido\security suite\ewidoguard.exe
C:\Program Files\Norton SystemWorks\Norton Antivirus\navapsvc.exe
C:\PROGRA~1\NORTON~1\NORTON~2\NPROTECT.EXE
C:\Program Files\Kerio\Personal Firewall\persfw.exe
C:\PROGRA~1\NORTON~1\NORTON~2\SPEEDD~1\NOPDB.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Norton SystemWorks\Norton Antivirus\SAVScan.exe
C:\ATI-CPanel\atiptaxx.exe
C:\Programmes Perso\Anti-virus\HijackThis.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\Norton SystemWorks\Password Manager\AcctMgr.exe
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe
C:\Program Files\HighCriteria\TotalRecorder\TotRecSched.exe
C:\Program Files\Daily Weather Forecast\weather.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\SAGEM\SAGEM F@st 800-908\dslmon.exe
C:\WINDOWS\system32\LVComS.exe
C:\Program Files\Messenger\msmsgs.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.google.fr/R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://freebox.free.fr/R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.02.3000.1002\en-xu\stmain.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton SystemWorks\Norton Antivirus\NavShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton SystemWorks\Norton Antivirus\NavShExt.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\ATI-CPanel\atiptaxx.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [AcctMgr] C:\Program Files\Norton SystemWorks\Password Manager\AcctMgr.exe /startup
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe"
O4 - HKLM\..\Run: [TotalRecorderScheduler] "C:\Program Files\HighCriteria\TotalRecorder\TotRecSched.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [Daily Weather Forecast] C:\Program Files\Daily Weather Forecast\weather.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LDM] \Program\
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-908\dslmon.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - SolidConverterPDF - (no file) (HKCU)
O12 - Plugin for .mid: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin2.dll
O12 - Plugin for .mov: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin.dll
O12 - Plugin for .mpeg: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin3.dll
O12 - Plugin for .mpg: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin3.dll
O14 - IERESET.INF: START_PAGE_URL=http://freebox.free.fr/
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) -
http://go.microsoft....467&clcid=0x409O17 - HKLM\System\CS1\Services\Tcpip\..\{1692C963-E0FC-4731-AE76-2CC68887DB60}: NameServer = 212.27.39.2 212.27.32.177
O18 - Protocol: bw+0 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {CAEC0833-232B-435E-8626-7F8925BF2925} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido\security suite\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido\security suite\ewidoguard.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton Antivirus\navapsvc.exe
O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\PROGRA~1\NORTON~1\NORTON~2\NPROTECT.EXE
O23 - Service: Kerio Personal Firewall (PersFw) - Kerio Technologies - C:\Program Files\Kerio\Personal Firewall\persfw.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton Antivirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Speed Disk service - Symantec Corporation - C:\PROGRA~1\NORTON~1\NORTON~2\SPEEDD~1\NOPDB.EXE
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
---------------------------------------------------------
ewido security suite - Last scan report
---------------------------------------------------------
+ done on the: 21:44:43, 10/05/2005
+ Somme de contrôle: EE4E0A5E
+ Date des signatures: 10/05/2005
+ Version du moteur de recherche: v3.0
+ Temps: 29 min
+ Fichiers scannés: 120331
+ Vitesse: 67.00 Fichiers/Secondes
+ Fichers infectés: 0
+ Fichiers supprimés: 0
+ Fichiers mis en quarantaine: 0
+ Fichiers ne pouvant pas être ouverts: 0
+ Fichiers ne pouvant pas être nettoyés: 0
+ Liés: Oui
+ Cryptés: Oui
+ Archives: Oui
+ Elements scannés:
C:\
D:\
E:\
F:\
G:\
+ Résultats du scan:
Pas de fichiers infectés trouvés!