Fenêtre publicitaire s'ouvrant seule help me!
Résolu
Loco13110
Messages postés
11
Statut
Membre
-
Loco13110 Messages postés 11 Statut Membre -
Loco13110 Messages postés 11 Statut Membre -
Bonjour,
J'ai un gros soucis de page internet qui s'ouvre seule.Je n'en peux plus.Dès que je navigue sur firefox ou que je me conecte avec un programme sur internet mon pc à des légers bugs et des pages publicitaires s'ouvrent seules.
Par exemple lorsque je regarde une vidéo sur youtube, un légers bug et une page souvent en rapport avec ce que je regarde.J'ai constaté en regardant sur d'autre post qu'on demande souvent un rapport HjackThis.Le voici:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:30:44, on 08/10/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Vista Drive Icon\DrvIcon.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Documents and Settings\Tony Rodriguez\Mes documents\telechargement\custom\vista-tooltip\VisualToolTip.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
D:\Program Files\x86\LogMeInSystray.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
D:\Program Files\x86\LMIGuardian.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
D:\Program Files\Steam\Steam.exe
C:\Program Files\Mumble\dbus-daemon.exe
C:\Documents and Settings\Tony Rodriguez\Bureau\HiJackThis.exe
C:\Program Files\Mumble\mumble.exe
C:\Program Files\Mozilla Firefox\firefox.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.01net.com/telecharger/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.01net.com/telecharger/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:8100
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O2 - BHO: (no name) - {67521749-f324-42f6-a1eb-2a4a9d5a9798} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.509.6972\swg.dll
O3 - Toolbar: QT Breadcrumbs Address Bar - {af83e43c-dd2b-4787-826b-31b17dee52ed} - mscoree.dll (file missing)
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [DrvIcon] C:\Program Files\Vista Drive Icon\DrvIcon.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [VisualTooltip] C:\Documents and Settings\Tony Rodriguez\Mes documents\telechargement\custom\vista-tooltip\VisualToolTip.exe
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [LogMeIn GUI] "D:\Program Files\x86\LogMeInSystray.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [messengerskinner] C:\Program Files\MessengerSkinner\MessengerSkinner.exe
O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [RocketDock] "C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [TransBar] C:\Documents and Settings\Tony Rodriguez\Local Settings\Application Data\AKSoftware\TransBar\TransBar.exe /s
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [DriverUpdaterPro] C:\Program Files\XPC Tools\Driver Updater Pro\DriverUpdaterPro.exe -t
O4 - HKCU\..\Run: [ambuvkm] c:\windows\system32\ambuvkm.exe ambuvkm
O4 - HKCU\..\Run: [bzwxxaoeu] c:\windows\system32\bzwxxaoeu.exe bzwxxaoeu
O4 - HKCU\..\Run: [ksuysoic] c:\windows\system32\ksuysoic.exe ksuysoic
O4 - HKCU\..\Run: [ayieikcg] c:\windows\system32\ayieikcg.exe ayieikcg
O4 - HKCU\..\Run: [cmgiukc] c:\windows\system32\cmgiukc.exe cmgiukc
O4 - HKCU\..\Run: [ekaoe] c:\windows\system32\ekaoe.exe ekaoe
O4 - HKCU\..\Run: [cqcwk] "c:\windows\system32\cqcwk.exe" cqcwk
O4 - HKCU\..\Run: [ooaau] "c:\windows\system32\ooaau.exe" ooaau
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: Rainmeter.lnk = C:\Program Files\Rainmeter\Rainmeter.exe
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
O4 - Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe
O4 - Startup: Y'z Shadow.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {DFB5BCF1-06AE-4ABB-BFA8-1E228F41C50A} (CamfrogWEB Advanced Unicode Control) - https://www.bobtv.fr/download/cfweb_www.bobtv.fr-download_instmodule.exe
O20 - Winlogon Notify: dumn32 - dumn32.dll (file missing)
O23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: InstallShield Licensing Service - Macrovision - C:\Program Files\Fichiers communs\InstallShield Shared\Service\InstallShield Licensing Service.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O24 - Desktop Component 0: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/Mafia%20gitane.jpg
O24 - Desktop Component 1: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/Mes%20photos/328269589.jpg
O24 - Desktop Component 10: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/Skyblog%20les%20aigues01/338438527.jpg
O24 - Desktop Component 11: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/Mafia%20Gitana.bmp
O24 - Desktop Component 12: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/338643618.jpg
O24 - Desktop Component 13: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Mafia%20Gitana.bmp
O24 - Desktop Component 14: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Mafia%20Gitana2.0.bmp
O24 - Desktop Component 15: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/les%20aigues.JPG
O24 - Desktop Component 16: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/Studio88/IMG_0002.jpg
O24 - Desktop Component 17: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/425395734.gif
O24 - Desktop Component 18: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Mafia%20Gitana2..bmp
O24 - Desktop Component 19: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/les%20aigues%2002.JPG
O24 - Desktop Component 2: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/338438527.jpg
O24 - Desktop Component 20: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Los%20primos.jpg
O24 - Desktop Component 21: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/445385705.jpg
O24 - Desktop Component 22: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Droite.gif
O24 - Desktop Component 3: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/2234552.jpg
O24 - Desktop Component 4: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/425395734.gif
O24 - Desktop Component 5: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mafia%20gitane.jpg
O24 - Desktop Component 6: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/338643618.jpg
O24 - Desktop Component 7: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Mafia%20Gitana.bmp
O24 - Desktop Component 8: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/Los%20primos.jpg
O24 - Desktop Component 9: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/338643618.jpg
J'ai un gros soucis de page internet qui s'ouvre seule.Je n'en peux plus.Dès que je navigue sur firefox ou que je me conecte avec un programme sur internet mon pc à des légers bugs et des pages publicitaires s'ouvrent seules.
Par exemple lorsque je regarde une vidéo sur youtube, un légers bug et une page souvent en rapport avec ce que je regarde.J'ai constaté en regardant sur d'autre post qu'on demande souvent un rapport HjackThis.Le voici:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:30:44, on 08/10/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Vista Drive Icon\DrvIcon.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Documents and Settings\Tony Rodriguez\Mes documents\telechargement\custom\vista-tooltip\VisualToolTip.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
D:\Program Files\x86\LogMeInSystray.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
D:\Program Files\x86\LMIGuardian.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
D:\Program Files\Steam\Steam.exe
C:\Program Files\Mumble\dbus-daemon.exe
C:\Documents and Settings\Tony Rodriguez\Bureau\HiJackThis.exe
C:\Program Files\Mumble\mumble.exe
C:\Program Files\Mozilla Firefox\firefox.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.01net.com/telecharger/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.01net.com/telecharger/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:8100
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O2 - BHO: (no name) - {67521749-f324-42f6-a1eb-2a4a9d5a9798} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.509.6972\swg.dll
O3 - Toolbar: QT Breadcrumbs Address Bar - {af83e43c-dd2b-4787-826b-31b17dee52ed} - mscoree.dll (file missing)
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [DrvIcon] C:\Program Files\Vista Drive Icon\DrvIcon.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [VisualTooltip] C:\Documents and Settings\Tony Rodriguez\Mes documents\telechargement\custom\vista-tooltip\VisualToolTip.exe
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [LogMeIn GUI] "D:\Program Files\x86\LogMeInSystray.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [messengerskinner] C:\Program Files\MessengerSkinner\MessengerSkinner.exe
O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [RocketDock] "C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [TransBar] C:\Documents and Settings\Tony Rodriguez\Local Settings\Application Data\AKSoftware\TransBar\TransBar.exe /s
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [DriverUpdaterPro] C:\Program Files\XPC Tools\Driver Updater Pro\DriverUpdaterPro.exe -t
O4 - HKCU\..\Run: [ambuvkm] c:\windows\system32\ambuvkm.exe ambuvkm
O4 - HKCU\..\Run: [bzwxxaoeu] c:\windows\system32\bzwxxaoeu.exe bzwxxaoeu
O4 - HKCU\..\Run: [ksuysoic] c:\windows\system32\ksuysoic.exe ksuysoic
O4 - HKCU\..\Run: [ayieikcg] c:\windows\system32\ayieikcg.exe ayieikcg
O4 - HKCU\..\Run: [cmgiukc] c:\windows\system32\cmgiukc.exe cmgiukc
O4 - HKCU\..\Run: [ekaoe] c:\windows\system32\ekaoe.exe ekaoe
O4 - HKCU\..\Run: [cqcwk] "c:\windows\system32\cqcwk.exe" cqcwk
O4 - HKCU\..\Run: [ooaau] "c:\windows\system32\ooaau.exe" ooaau
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: Rainmeter.lnk = C:\Program Files\Rainmeter\Rainmeter.exe
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
O4 - Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe
O4 - Startup: Y'z Shadow.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {DFB5BCF1-06AE-4ABB-BFA8-1E228F41C50A} (CamfrogWEB Advanced Unicode Control) - https://www.bobtv.fr/download/cfweb_www.bobtv.fr-download_instmodule.exe
O20 - Winlogon Notify: dumn32 - dumn32.dll (file missing)
O23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: InstallShield Licensing Service - Macrovision - C:\Program Files\Fichiers communs\InstallShield Shared\Service\InstallShield Licensing Service.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O24 - Desktop Component 0: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/Mafia%20gitane.jpg
O24 - Desktop Component 1: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/Mes%20photos/328269589.jpg
O24 - Desktop Component 10: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/Skyblog%20les%20aigues01/338438527.jpg
O24 - Desktop Component 11: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/Mafia%20Gitana.bmp
O24 - Desktop Component 12: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/338643618.jpg
O24 - Desktop Component 13: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Mafia%20Gitana.bmp
O24 - Desktop Component 14: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Mafia%20Gitana2.0.bmp
O24 - Desktop Component 15: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/les%20aigues.JPG
O24 - Desktop Component 16: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/Studio88/IMG_0002.jpg
O24 - Desktop Component 17: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/425395734.gif
O24 - Desktop Component 18: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Mafia%20Gitana2..bmp
O24 - Desktop Component 19: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/les%20aigues%2002.JPG
O24 - Desktop Component 2: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/338438527.jpg
O24 - Desktop Component 20: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Los%20primos.jpg
O24 - Desktop Component 21: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/445385705.jpg
O24 - Desktop Component 22: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Droite.gif
O24 - Desktop Component 3: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/2234552.jpg
O24 - Desktop Component 4: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/425395734.gif
O24 - Desktop Component 5: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mafia%20gitane.jpg
O24 - Desktop Component 6: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/338643618.jpg
O24 - Desktop Component 7: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Mafia%20Gitana.bmp
O24 - Desktop Component 8: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/Los%20primos.jpg
O24 - Desktop Component 9: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/338643618.jpg
A voir également:
- Fenêtre publicitaire s'ouvrant seule help me!
- Sms publicitaire - Guide
- Fenetre windows - Guide
- Ouvrir une fenêtre de navigation privée - Guide
- Fenêtre hors écran windows 11 - Guide
- Comment imprimer un tableau excel sur une seule page - Guide
25 réponses
Voilà et désolé du retard:
-------------- UsbFix V1.001 ---------------
* User : Tony Rodriguez - FRAGUA
* Outils mis a jours le 10/10/2008 par Chiquitine29
* Recherche effectuée à 10:27:16 le 12/10/2008
* Windows Xp - Internet Explorer 7.0.5730.11
----------------------------------------------
+- Informations :
C: - Lecteur fixe
D: - Lecteur fixe
K: - Lecteur amovible
L: - Lecteur amovible
+- Suppression des cles de registre...
Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ab4a3a21-1671-11dc-b83d-000fea439ea6}\Shell\AutoRun\command
Supprimé ! - HKEY_USERS\S-1-5-21-1348510804-3702521773-3662252127-1006\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ab4a3a21-1671-11dc-b83d-000fea439ea6}\Shell\AutoRun\command
+- Suppression des cles de registre effectuee !
+- Suppression des fichiers :
----------! Fin du rapport !----------
-------------- UsbFix V1.001 ---------------
* User : Tony Rodriguez - FRAGUA
* Outils mis a jours le 10/10/2008 par Chiquitine29
* Recherche effectuée à 10:27:16 le 12/10/2008
* Windows Xp - Internet Explorer 7.0.5730.11
----------------------------------------------
+- Informations :
C: - Lecteur fixe
D: - Lecteur fixe
K: - Lecteur amovible
L: - Lecteur amovible
+- Suppression des cles de registre...
Supprimé ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ab4a3a21-1671-11dc-b83d-000fea439ea6}\Shell\AutoRun\command
Supprimé ! - HKEY_USERS\S-1-5-21-1348510804-3702521773-3662252127-1006\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ab4a3a21-1671-11dc-b83d-000fea439ea6}\Shell\AutoRun\command
+- Suppression des cles de registre effectuee !
+- Suppression des fichiers :
----------! Fin du rapport !----------
Télécharge random's system information tool (RSIT) par random/random et sauvegarde-le sur le Bureau.
http://images.malwareremoval.com/random/RSIT.exe
Double-clique sur RSIT.exe afin de lancer RSIT.
Clique Continue à l'écran Disclaimer.
Si l'outil HIjackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.
Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (<<qui sera affiché)
ainsi que de info.txt (<<qui sera réduit dans la Barre des Tâches).
NB : Les rapports sont sauvegardés dans le dossier C:\rsit
http://images.malwareremoval.com/random/RSIT.exe
Double-clique sur RSIT.exe afin de lancer RSIT.
Clique Continue à l'écran Disclaimer.
Si l'outil HIjackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.
Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (<<qui sera affiché)
ainsi que de info.txt (<<qui sera réduit dans la Barre des Tâches).
NB : Les rapports sont sauvegardés dans le dossier C:\rsit
Voilà:
(log.txt)
Logfile of random's system information tool 1.04 (written by random/random)
Run by Tony Rodriguez at 2008-10-12 20:04:08
Microsoft Windows XP Édition familiale Service Pack 2
System drive C: has 18 GB (24%) free of 74 GB
Total RAM: 1023 MB (44% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:04:10, on 12/10/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
D:\Program Files\x86\RaMaint.exe
D:\Program Files\x86\LogMeIn.exe
D:\Program Files\x86\LMIGuardian.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Vista Drive Icon\DrvIcon.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Documents and Settings\Tony Rodriguez\Mes documents\telechargement\custom\vista-tooltip\VisualToolTip.exe
C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
D:\Program Files\x86\LogMeInSystray.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
D:\Program Files\x86\LMIGuardian.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMIndexStoreSvr.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
D:\Program Files\Steam\Steam.exe
C:\Program Files\Mumble\dbus-daemon.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Tony Rodriguez\Bureau\RSIT.exe
C:\Program Files\trend micro\Tony Rodriguez.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:8100
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll
O3 - Toolbar: QT Breadcrumbs Address Bar - {af83e43c-dd2b-4787-826b-31b17dee52ed} - mscoree.dll (file missing)
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [DrvIcon] C:\Program Files\Vista Drive Icon\DrvIcon.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [VisualTooltip] C:\Documents and Settings\Tony Rodriguez\Mes documents\telechargement\custom\vista-tooltip\VisualToolTip.exe
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [LogMeIn GUI] "D:\Program Files\x86\LogMeInSystray.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [RocketDock] "C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [TransBar] C:\Documents and Settings\Tony Rodriguez\Local Settings\Application Data\AKSoftware\TransBar\TransBar.exe /s
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: Rainmeter.lnk = C:\Program Files\Rainmeter\Rainmeter.exe
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
O4 - Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe
O4 - Startup: Y'z Shadow.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {DFB5BCF1-06AE-4ABB-BFA8-1E228F41C50A} (CamfrogWEB Advanced Unicode Control) - https://www.bobtv.fr/download/cfweb_www.bobtv.fr-download_instmodule.exe
O23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: InstallShield Licensing Service - Macrovision - C:\Program Files\Fichiers communs\InstallShield Shared\Service\InstallShield Licensing Service.exe
O23 - Service: LogMeIn Maintenance Service (LMIMaint) - LogMeIn, Inc. - D:\Program Files\x86\RaMaint.exe
O23 - Service: LogMeIn - LogMeIn, Inc. - D:\Program Files\x86\LogMeIn.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O24 - Desktop Component 0: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/Mafia%20gitane.jpg
O24 - Desktop Component 1: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/Mes%20photos/328269589.jpg
O24 - Desktop Component 10: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/Skyblog%20les%20aigues01/338438527.jpg
O24 - Desktop Component 11: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/Mafia%20Gitana.bmp
O24 - Desktop Component 12: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/338643618.jpg
O24 - Desktop Component 13: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Mafia%20Gitana.bmp
O24 - Desktop Component 14: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Mafia%20Gitana2.0.bmp
O24 - Desktop Component 15: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/les%20aigues.JPG
O24 - Desktop Component 16: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/Studio88/IMG_0002.jpg
O24 - Desktop Component 17: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/425395734.gif
O24 - Desktop Component 18: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Mafia%20Gitana2..bmp
O24 - Desktop Component 19: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/les%20aigues%2002.JPG
O24 - Desktop Component 2: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/338438527.jpg
O24 - Desktop Component 20: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Los%20primos.jpg
O24 - Desktop Component 21: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/445385705.jpg
O24 - Desktop Component 22: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Droite.gif
O24 - Desktop Component 3: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/2234552.jpg
O24 - Desktop Component 4: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/425395734.gif
O24 - Desktop Component 5: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mafia%20gitane.jpg
O24 - Desktop Component 6: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/338643618.jpg
O24 - Desktop Component 7: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Mafia%20Gitana.bmp
O24 - Desktop Component 8: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/Los%20primos.jpg
O24 - Desktop Component 9: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/338643618.jpg
(log.txt)
Logfile of random's system information tool 1.04 (written by random/random)
Run by Tony Rodriguez at 2008-10-12 20:04:08
Microsoft Windows XP Édition familiale Service Pack 2
System drive C: has 18 GB (24%) free of 74 GB
Total RAM: 1023 MB (44% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:04:10, on 12/10/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
D:\Program Files\x86\RaMaint.exe
D:\Program Files\x86\LogMeIn.exe
D:\Program Files\x86\LMIGuardian.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Vista Drive Icon\DrvIcon.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Documents and Settings\Tony Rodriguez\Mes documents\telechargement\custom\vista-tooltip\VisualToolTip.exe
C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
D:\Program Files\x86\LogMeInSystray.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
D:\Program Files\x86\LMIGuardian.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMIndexStoreSvr.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
D:\Program Files\Steam\Steam.exe
C:\Program Files\Mumble\dbus-daemon.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Tony Rodriguez\Bureau\RSIT.exe
C:\Program Files\trend micro\Tony Rodriguez.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:8100
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll
O3 - Toolbar: QT Breadcrumbs Address Bar - {af83e43c-dd2b-4787-826b-31b17dee52ed} - mscoree.dll (file missing)
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [DrvIcon] C:\Program Files\Vista Drive Icon\DrvIcon.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [VisualTooltip] C:\Documents and Settings\Tony Rodriguez\Mes documents\telechargement\custom\vista-tooltip\VisualToolTip.exe
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [LogMeIn GUI] "D:\Program Files\x86\LogMeInSystray.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [RocketDock] "C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [TransBar] C:\Documents and Settings\Tony Rodriguez\Local Settings\Application Data\AKSoftware\TransBar\TransBar.exe /s
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: Rainmeter.lnk = C:\Program Files\Rainmeter\Rainmeter.exe
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
O4 - Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe
O4 - Startup: Y'z Shadow.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {DFB5BCF1-06AE-4ABB-BFA8-1E228F41C50A} (CamfrogWEB Advanced Unicode Control) - https://www.bobtv.fr/download/cfweb_www.bobtv.fr-download_instmodule.exe
O23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: InstallShield Licensing Service - Macrovision - C:\Program Files\Fichiers communs\InstallShield Shared\Service\InstallShield Licensing Service.exe
O23 - Service: LogMeIn Maintenance Service (LMIMaint) - LogMeIn, Inc. - D:\Program Files\x86\RaMaint.exe
O23 - Service: LogMeIn - LogMeIn, Inc. - D:\Program Files\x86\LogMeIn.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O24 - Desktop Component 0: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/Mafia%20gitane.jpg
O24 - Desktop Component 1: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/Mes%20photos/328269589.jpg
O24 - Desktop Component 10: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/Skyblog%20les%20aigues01/338438527.jpg
O24 - Desktop Component 11: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/Mafia%20Gitana.bmp
O24 - Desktop Component 12: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/338643618.jpg
O24 - Desktop Component 13: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Mafia%20Gitana.bmp
O24 - Desktop Component 14: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Mafia%20Gitana2.0.bmp
O24 - Desktop Component 15: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/les%20aigues.JPG
O24 - Desktop Component 16: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/Studio88/IMG_0002.jpg
O24 - Desktop Component 17: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/425395734.gif
O24 - Desktop Component 18: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Mafia%20Gitana2..bmp
O24 - Desktop Component 19: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/les%20aigues%2002.JPG
O24 - Desktop Component 2: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/338438527.jpg
O24 - Desktop Component 20: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Los%20primos.jpg
O24 - Desktop Component 21: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/445385705.jpg
O24 - Desktop Component 22: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Droite.gif
O24 - Desktop Component 3: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/2234552.jpg
O24 - Desktop Component 4: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/425395734.gif
O24 - Desktop Component 5: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mafia%20gitane.jpg
O24 - Desktop Component 6: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/338643618.jpg
O24 - Desktop Component 7: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Mafia%20Gitana.bmp
O24 - Desktop Component 8: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/Los%20primos.jpg
O24 - Desktop Component 9: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/338643618.jpg
COMMENT VALE PC ?
réouvre hijackthis
fais scan only
coches ces lignes :
O24 - Desktop Component 0: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/Mafia%20gitane.jpg
O24 - Desktop Component 1: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/Mes%20photos/328269589.jpg
O24 - Desktop Component 10: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/Skyblog%20les%20aigues01/338438527.jpg
O24 - Desktop Component 11: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/Mafia%20Gitana.bmp
O24 - Desktop Component 12: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/338643618.jpg
O24 - Desktop Component 13: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Mafia%20Gitana.bmp
O24 - Desktop Component 14: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Mafia%20Gitana2.0.bmp
O24 - Desktop Component 15: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/les%20aigues.JPG
O24 - Desktop Component 16: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/Studio88/IMG_0002.jpg
O24 - Desktop Component 17: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/425395734.gif
O24 - Desktop Component 18: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Mafia%20Gitana2..bmp
O24 - Desktop Component 19: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/les%20aigues%2002.JPG
O24 - Desktop Component 2: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/338438527.jpg
O24 - Desktop Component 20: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Los%20primos.jpg
O24 - Desktop Component 21: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/445385705.jpg
O24 - Desktop Component 22: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Droite.gif
O24 - Desktop Component 3: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/2234552.jpg
O24 - Desktop Component 4: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/425395734.gif
O24 - Desktop Component 5: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mafia%20gitane.jpg
O24 - Desktop Component 6: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/338643618.jpg
O24 - Desktop Component 7: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Mafia%20Gitana.bmp
O24 - Desktop Component 8: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/Los%20primos.jpg
O24 - Desktop Component 9: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/338643618.jpg
tu les coches et tuclic sur fix checked
ensuite refais un scan hijackthis , post le rapport et on termine
réouvre hijackthis
fais scan only
coches ces lignes :
O24 - Desktop Component 0: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/Mafia%20gitane.jpg
O24 - Desktop Component 1: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/Mes%20photos/328269589.jpg
O24 - Desktop Component 10: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/Skyblog%20les%20aigues01/338438527.jpg
O24 - Desktop Component 11: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/Mafia%20Gitana.bmp
O24 - Desktop Component 12: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/338643618.jpg
O24 - Desktop Component 13: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Mafia%20Gitana.bmp
O24 - Desktop Component 14: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Mafia%20Gitana2.0.bmp
O24 - Desktop Component 15: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/les%20aigues.JPG
O24 - Desktop Component 16: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/Studio88/IMG_0002.jpg
O24 - Desktop Component 17: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/425395734.gif
O24 - Desktop Component 18: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Mafia%20Gitana2..bmp
O24 - Desktop Component 19: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/les%20aigues%2002.JPG
O24 - Desktop Component 2: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/338438527.jpg
O24 - Desktop Component 20: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Los%20primos.jpg
O24 - Desktop Component 21: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/445385705.jpg
O24 - Desktop Component 22: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Droite.gif
O24 - Desktop Component 3: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/2234552.jpg
O24 - Desktop Component 4: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/425395734.gif
O24 - Desktop Component 5: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mafia%20gitane.jpg
O24 - Desktop Component 6: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/338643618.jpg
O24 - Desktop Component 7: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Mafia%20Gitana.bmp
O24 - Desktop Component 8: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/Los%20primos.jpg
O24 - Desktop Component 9: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/338643618.jpg
tu les coches et tuclic sur fix checked
ensuite refais un scan hijackthis , post le rapport et on termine
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Voilà:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:22:42, on 12/10/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
D:\Program Files\x86\RaMaint.exe
D:\Program Files\x86\LogMeIn.exe
D:\Program Files\x86\LMIGuardian.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Vista Drive Icon\DrvIcon.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Documents and Settings\Tony Rodriguez\Mes documents\telechargement\custom\vista-tooltip\VisualToolTip.exe
C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
D:\Program Files\x86\LogMeInSystray.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
D:\Program Files\x86\LMIGuardian.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMIndexStoreSvr.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
D:\Program Files\Steam\Steam.exe
C:\Program Files\Mumble\dbus-daemon.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Tony Rodriguez\Bureau\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:8100
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll
O3 - Toolbar: QT Breadcrumbs Address Bar - {af83e43c-dd2b-4787-826b-31b17dee52ed} - mscoree.dll (file missing)
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [DrvIcon] C:\Program Files\Vista Drive Icon\DrvIcon.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [VisualTooltip] C:\Documents and Settings\Tony Rodriguez\Mes documents\telechargement\custom\vista-tooltip\VisualToolTip.exe
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [LogMeIn GUI] "D:\Program Files\x86\LogMeInSystray.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [RocketDock] "C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [TransBar] C:\Documents and Settings\Tony Rodriguez\Local Settings\Application Data\AKSoftware\TransBar\TransBar.exe /s
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: Rainmeter.lnk = C:\Program Files\Rainmeter\Rainmeter.exe
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
O4 - Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe
O4 - Startup: Y'z Shadow.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {DFB5BCF1-06AE-4ABB-BFA8-1E228F41C50A} (CamfrogWEB Advanced Unicode Control) - https://www.bobtv.fr/download/cfweb_www.bobtv.fr-download_instmodule.exe
O23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: InstallShield Licensing Service - Macrovision - C:\Program Files\Fichiers communs\InstallShield Shared\Service\InstallShield Licensing Service.exe
O23 - Service: LogMeIn Maintenance Service (LMIMaint) - LogMeIn, Inc. - D:\Program Files\x86\RaMaint.exe
O23 - Service: LogMeIn - LogMeIn, Inc. - D:\Program Files\x86\LogMeIn.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O24 - Desktop Component 10: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/Skyblog%20les%20aigues01/338438527.jpg
O24 - Desktop Component 11: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/Mafia%20Gitana.bmp
O24 - Desktop Component 12: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/338643618.jpg
O24 - Desktop Component 13: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Mafia%20Gitana.bmp
O24 - Desktop Component 14: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Mafia%20Gitana2.0.bmp
O24 - Desktop Component 15: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/les%20aigues.JPG
O24 - Desktop Component 16: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/Studio88/IMG_0002.jpg
O24 - Desktop Component 17: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/425395734.gif
O24 - Desktop Component 18: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Mafia%20Gitana2..bmp
O24 - Desktop Component 19: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/les%20aigues%2002.JPG
O24 - Desktop Component 20: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Los%20primos.jpg
O24 - Desktop Component 21: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/445385705.jpg
O24 - Desktop Component 22: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Droite.gif
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:22:42, on 12/10/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
D:\Program Files\x86\RaMaint.exe
D:\Program Files\x86\LogMeIn.exe
D:\Program Files\x86\LMIGuardian.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Vista Drive Icon\DrvIcon.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Documents and Settings\Tony Rodriguez\Mes documents\telechargement\custom\vista-tooltip\VisualToolTip.exe
C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
D:\Program Files\x86\LogMeInSystray.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
D:\Program Files\x86\LMIGuardian.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
C:\Program Files\Fichiers communs\Nero\Lib\NMIndexStoreSvr.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
D:\Program Files\Steam\Steam.exe
C:\Program Files\Mumble\dbus-daemon.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Tony Rodriguez\Bureau\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:8100
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll
O3 - Toolbar: QT Breadcrumbs Address Bar - {af83e43c-dd2b-4787-826b-31b17dee52ed} - mscoree.dll (file missing)
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [DrvIcon] C:\Program Files\Vista Drive Icon\DrvIcon.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [VisualTooltip] C:\Documents and Settings\Tony Rodriguez\Mes documents\telechargement\custom\vista-tooltip\VisualToolTip.exe
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [LogMeIn GUI] "D:\Program Files\x86\LogMeInSystray.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [RocketDock] "C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [TransBar] C:\Documents and Settings\Tony Rodriguez\Local Settings\Application Data\AKSoftware\TransBar\TransBar.exe /s
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: Rainmeter.lnk = C:\Program Files\Rainmeter\Rainmeter.exe
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
O4 - Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe
O4 - Startup: Y'z Shadow.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {DFB5BCF1-06AE-4ABB-BFA8-1E228F41C50A} (CamfrogWEB Advanced Unicode Control) - https://www.bobtv.fr/download/cfweb_www.bobtv.fr-download_instmodule.exe
O23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: InstallShield Licensing Service - Macrovision - C:\Program Files\Fichiers communs\InstallShield Shared\Service\InstallShield Licensing Service.exe
O23 - Service: LogMeIn Maintenance Service (LMIMaint) - LogMeIn, Inc. - D:\Program Files\x86\RaMaint.exe
O23 - Service: LogMeIn - LogMeIn, Inc. - D:\Program Files\x86\LogMeIn.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O24 - Desktop Component 10: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/Skyblog%20les%20aigues01/338438527.jpg
O24 - Desktop Component 11: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Bureau/Mes%20images/Images/V.L.G/Mafia%20Gitana.bmp
O24 - Desktop Component 12: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/338643618.jpg
O24 - Desktop Component 13: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Mafia%20Gitana.bmp
O24 - Desktop Component 14: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Mafia%20Gitana2.0.bmp
O24 - Desktop Component 15: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/les%20aigues.JPG
O24 - Desktop Component 16: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/Studio88/IMG_0002.jpg
O24 - Desktop Component 17: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/425395734.gif
O24 - Desktop Component 18: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Mafia%20Gitana2..bmp
O24 - Desktop Component 19: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/les%20aigues%2002.JPG
O24 - Desktop Component 20: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Los%20primos.jpg
O24 - Desktop Component 21: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/445385705.jpg
O24 - Desktop Component 22: (no name) - file:///C:/Documents%20and%20Settings/Tony%20Rodriguez/Mes%20documents/Mes%20images/Images/V.L.G/Droite.gif
