[Résolu] PC lent et bizarre

Accélérer son PC et résoudre les problèmes de lenteur PC et Windows

Modérateur : Mods Windows

PatMalek
Informaticien
Informaticien
Messages : 360
Inscription : 13 juin 2007 16:00

[Résolu] PC lent et bizarre

Message par PatMalek »

Bonjour,
Depuis quelques temps mon PC est bizarre ...
- il est plus lent que d’habitude
- régulièrement la barre de lancement rapide est disparue quand je démarre
- et ce matin plusieurs fois, impossible de nous servir du PC: au démarrage il y avait juste le fond d'écran et rien d'autres (plus les raccourci sur le bureau, etc ...)

Là par miracle il remarche un peu ...
Si quelqu'un pouvait m'aider .

Merci beaucoup d'avance.

Pat

Avatar de l’utilisateur
nam1962
Amateur Expert
Amateur Expert
Messages : 182
Inscription : 01 mars 2014 21:34
Contact :

Re: PC lent et bizarre

Message par nam1962 »

Perso, tout ordi avec ces symptômes, je le bascule en Xubuntu.
Sinon passe un Malwarebyte et un Ccleaner pour voir..
Almanet doLys, Linux, open source et fintechs :
Xubuntu - Manjaro unstable - OpenSUSE tumbleweed - Debian - MXLinux
54 convertis GNU/Linux IRL (leur ai pas donné le choix, aussi...).

Avatar de l’utilisateur
SkyTech
Geek à longue barbe
Geek à longue barbe
Messages : 35604
Inscription : 03 août 2008 14:52
Localisation : Picardie (80)

Re: PC lent et bizarre

Message par SkyTech »

Bonjour,

Peut-être ton disque dur qui fatigue avec ce type de symptômes aléatoires.
  • Menu Démarrer, clique sur exécuter
  • Tape cmd et valide avec ok
  • Dans l'invite qui s'ouvre, copie et colle cette ligne

    Code : Tout sélectionner

    chkdsk c: /F/R
Tape sur entrée , dans une fenêtre noir il va te demander si tu veut le faire au redémarrage, tape o (oui), tape sur entrée et redémarre, au redémarrage un écran bleu va s'afficher avec étape 1 sur 5... , c'est normal, il va rester pendant 1h ou 2h.

&

Télécharge Report_CHDSK.exe de Laddy sur ton bureau
Double-Clic dessus pour l'exécuter.
Le rapport va s'ouvrir dans le bloc-note.
Si ce n'est pas le cas, le rapport nommé RapportCHK_DD-MM-AAAA.txt se trouve sur ton bureau.
Poste-le dans ta prochaine réponse.

---
nam1962 a écrit :Perso, tout ordi avec ces symptômes, je le bascule en Xubuntu.
Sinon passe un Malwarebyte et un Ccleaner pour voir..
Xubuntu n'est pas une mauvaise idée.
Mais passé un coup de CCleaner pour voir bof :) nettoyeur-defragmenteur-sert-rien-t26069.html

PatMalek
Informaticien
Informaticien
Messages : 360
Inscription : 13 juin 2007 16:00

Re: PC lent et bizarre

Message par PatMalek »

Merci pour ton aide SkyTech.
Voici:
Report_CHKDSK v1.0 BY Laddy
Début le 03/03/2014 à 08:56:53.
OS : Microsoft Windows XP Service Pack 3
Utilisateur JAMIP : Administrateur
Lancement: D:\Downloads\Report_CHKDSK.exe


########## [EVENTLOG CHKDSK]


SourceName = Winlogon
TimeGenerated = 03/03/2014 08:53:47
Message = Vérification du système de fichiers sur C:
Le type du système de fichiers est NTFS.
Le nom de volume est Système.

Une vérification de disque a été planifiée.
Windows va maintenant vérifier le disque.
Nettoyage en cours de petites incohérences sur le lecteur.
Nettoyage en cours de 115 entrées d'index inutilisées à partir de l'index $SII du fichier 0x9.
Nettoyage en cours de 115 entrées d'index inutilisées à partir de l'index $SDH du fichier 0x9.
Nettoyage en cours de 115 descripteurs de sécurité non utilisés.
CHKDSK vérifie le journal USN...
Vérification du journal USN terminée.
CHKDSK est en train de vérifier les données du fichier (étape 4 de 5)...
La vérification des données du fichier est terminée.
CHKDSK est en train de vérifier l'espace libre (étape 5 de 5)...
La vérification de l'espace libre est terminée.

51199120 Ko d'espace disque au total.
46633556 Ko dans 83788 fichiers.
30920 Ko dans 12344 index.
0 Ko dans des secteurs défectueux.
213100 Ko utilisés par le système.
65536 Ko occupés par le fichier journal.
4321544 Ko disponibles sur le disque.

4096 octets dans chaque unité d'allocation.
12799780 unités d'allocation au total sur le disque.
1080386 unités d'allocation disponibles sur le disque.

Informations internes :
a0 9d 01 00 90 77 01 00 25 1b 02 00 00 00 00 00 .....w..%.......
f7 00 00 00 02 00 00 00 d6 05 00 00 00 00 00 00 ................
a2 6a a5 07 00 00 00 00 e8 cd ee 2d 00 00 00 00 .j.........-....
a8 0f ae 08 00 00 00 00 14 7e 24 41 03 00 00 00 .........~$A....
8c 50 e2 3b 00 00 00 00 e2 af 00 c4 03 00 00 00 .P.;............
99 9e 36 00 00 00 00 00 30 39 07 00 4c 47 01 00 ..6.....09..LG..
00 00 00 00 00 50 49 1e 0b 00 00 00 38 30 00 00 .....PI.....80..

Windows a terminé la vérification de votre disque.
Veuillez patienter pendant le redémarrage de votre ordinateur.


###########################################################################



########## ENDOF 08:56:55

Avatar de l’utilisateur
SkyTech
Geek à longue barbe
Geek à longue barbe
Messages : 35604
Inscription : 03 août 2008 14:52
Localisation : Picardie (80)

Re: PC lent et bizarre

Message par SkyTech »

Bonjour,

Rien à signaler côté disque dur.

Pour voir :

* Télécharge >> OTL <<sur ton bureau.

* Fait un double-clic sur l'icône d'OTL pour le lancer
/!\ pour Vista/Seven fais un clic-droit sur l'icône d'OTL et choisis "Exécuter en tant qu'administrateur"

* Assure toi d'avoir fermé toutes les applications en court de fonctionnement.

* Quand la fenêtre d'OTL apparaît, assure toi que dans la section "Rapport" (en haut à droite) la case "Rapport minimal" soit cochée.

* Copies et colles le contenue de cette citation dans la partie inférieure d'OTL "Personnalisation"
netsvcs
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%temp%\*.exe /s
%SYSTEMDRIVE%\*.exe
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
/md5start
explorer.exe
winlogon.exe
wininit.exe
/md5stop
HKEY_LOCAL_MACHINE\SYSTEM\SYSTEM\CurrentControlSet\Services\lanmanserver\parameters /s
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems /s
CREATERESTOREPOINT
nslookup http://www.google.fr /c
SAVEMBR:0
hklm\software\clients\startmenuinternet|command /rs
hklm\software\clients\startmenuinternet|command /64 /rs

* Cliques sur l'icône "Analyse" (en haut à gauche) .
* Laisse le scan aller à son terme sans te servir du PC
* A la fin du scan un ou deux rapports vont s'ouvrir "OTL.Txt" et ( ou ) "Extras.Txt"( dans certains cas).
* Copie et colle le ou les rapports dans ta réponse stp...
* Au cas où, tu peux les retrouver dans le dossier C:\OTL ou sur ton bureau en fonction des cas rencontrés

PS : Si le rapport est trop long pour être poster sur un message, tu peux utiliser un hébergeur : http://pjjoint.malekal.com/index.php?lang=fr

PatMalek
Informaticien
Informaticien
Messages : 360
Inscription : 13 juin 2007 16:00

Re: PC lent et bizarre

Message par PatMalek »


PatMalek
Informaticien
Informaticien
Messages : 360
Inscription : 13 juin 2007 16:00

Re: PC lent et bizarre

Message par PatMalek »

Voici en 2 morceaux (pas réussi avec le lien):

OTL logfile created on: 04/03/2014 13:25:14 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = D:\Downloads
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

2.00 Gb Total Physical Memory | 1.40 Gb Available Physical Memory | 70.01% Memory free
3.84 Gb Paging File | 2.60 Gb Available in Paging File | 67.74% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 48.83 Gb Total Space | 1.23 Gb Free Space | 2.52% Space Free | Partition Type: NTFS
Drive D: | 416.93 Gb Total Space | 14.95 Gb Free Space | 3.59% Space Free | Partition Type: NTFS
Drive Z: | 228.26 Gb Total Space | 143.67 Gb Free Space | 62.94% Space Free | Partition Type: NTFS

Computer Name: ORDI_SALON | User Name: JAMIP | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - D:\Downloads\OTL (1).exe (OldTimer Tools)
PRC - C:\Documents and Settings\JAMIP\Application Data\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
PRC - C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe (Check Point Software Technologies LTD)
PRC - C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe (Check Point Software Technologies LTD)
PRC - C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation)
PRC - C:\Program Files\CheckPoint\ZoneAlarm\ZAPrivacyService.exe (Check Point Software Technologies, Ltd.)
PRC - C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe (Nokia)
PRC - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.)
PRC - C:\Documents and Settings\JAMIP\Local Settings\Application Data\Akamai\netsession_win.exe (Akamai Technologies, Inc.)
PRC - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (Nokia)
PRC - C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe (Nokia)
PRC - C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrv.exe (Nokia)
PRC - C:\Program Files\Cisco\Cisco Secure Desktop\Storage.exe (Cisco Systems, Inc.)
PRC - C:\Program Files\Fichiers communs\EPSON\EPW!3 SSRP\E_S50ST7.EXE (SEIKO EPSON CORPORATION)
PRC - C:\Program Files\Fichiers communs\EPSON\EPW!3 SSRP\E_S50RP7.EXE (SEIKO EPSON CORPORATION)
PRC - C:\Program Files\PrtScr\PrtScr.exe (FireStarter)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Canon\CAL\CALMAIN.exe (Canon Inc.)


========== Modules (No Company Name) ==========

MOD - c:\Documents and Settings\JAMIP\Local Settings\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpno2lpg.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\8cd995f00848816e3ec49dc326e3d49b\System.ServiceProcess.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuratio#\f254328a10638e87223d401b39197c91\System.Configuration.Install.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\4b6e70acd99dc22e29b7fc8f9ac340c4\System.Configuration.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\7faf645dc46781225cb722edf9e1e738\System.Xml.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Core\159b4a6888004de346d499841ec088a7\System.Core.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\4b0455ae94e3cecca4bb3ba8c96828c9\System.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\dae02331a443fb52216ca83292cb2f21\mscorlib.ni.dll ()
MOD - C:\Documents and Settings\JAMIP\Application Data\Dropbox\bin\wxmsw28uh_vc.dll ()
MOD - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.FRA ()
MOD - C:\WINDOWS\assembly\GAC_MSIL\System.ServiceProcess.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.ServiceProcess.resources.dll ()
MOD - C:\Documents and Settings\JAMIP\Application Data\Dropbox\bin\libcef.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\phonon4.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\qjson.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\QtXmlPatterns4.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\QtXml4.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\QtWebKit4.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\QtSql4.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\QtScript4.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\QtOpenGL4.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\QtNetwork4.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\QtMultimediaKit1.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\QtGui4.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\QtDeclarative4.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\QtCore4.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\sqldrivers\qsqlite4.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\Imageformats\qjpeg4.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\Imageformats\qico4.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\Imageformats\qgif4.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\NService.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\CommonUpdateChecker.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\ssoengine.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\securestorage.dll ()
MOD - C:\Program Files\Fichiers communs\Apple\Apple Application Support\zlib1.dll ()
MOD - C:\Program Files\Fichiers communs\Apple\Apple Application Support\libxml2.dll ()
MOD - C:\Program Files\PrtScr\dsp_ipp.dll ()
MOD - C:\WINDOWS\system32\msdmo.dll ()
MOD - C:\Program Files\WinRAR\RarExt.dll ()
MOD - C:\WINDOWS\system32\dsnpstd2.dll ()


========== Services (SafeList) ==========

SRV - (AdobeFlashPlayerUpdateSvc) -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (vsmon) -- C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe (Check Point Software Technologies LTD)
SRV - (JavaQuickStarterService) -- C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation)
SRV - (SkypeUpdate) -- C:\Program Files\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (ZAPrivacyService) -- C:\Program Files\CheckPoint\ZoneAlarm\ZAPrivacyService.exe (Check Point Software Technologies, Ltd.)
SRV - (Apple Mobile Device) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.)
SRV - (ServiceLayer) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (Nokia)
SRV - (C-DillaCdaC11BA) -- C:\WINDOWS\system32\drivers\CDAC11BA.EXE (C-Dilla Ltd)
SRV - (TwingoStorageService) -- C:\Program Files\Cisco\Cisco Secure Desktop\Storage.exe (Cisco Systems, Inc.)
SRV - (KaraokeService) -- C:\WINDOWS\system32\KaraokeSer.exe (VIA Technologies, Inc.)
SRV - (nvUpdatusService) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation)
SRV - (odserv) -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE (Microsoft Corporation)
SRV - (EPSON_EB_RPCV4_04) -- C:\Program Files\Fichiers communs\EPSON\EPW!3 SSRP\E_S50ST7.EXE (SEIKO EPSON CORPORATION)
SRV - (EPSON_PM_RPCV4_04) -- C:\Program Files\Fichiers communs\EPSON\EPW!3 SSRP\E_S50RP7.EXE (SEIKO EPSON CORPORATION)
SRV - (nSvcIp) -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe ()
SRV - (ForceWare Intelligent Application Manager (IAM) -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe ()
SRV - (NMIndexingService) -- C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe (Nero AG)
SRV - (ose) -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (CCALib8) -- C:\Program Files\Canon\CAL\CALMAIN.exe (Canon Inc.)
SRV - (IDriverT) -- C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe (Macrovision Corporation)


========== Driver Services (SafeList) ==========

DRV - (xhunter1) -- C:\WINDOWS\xhunter1.sys File not found
DRV - (vtany) -- C:\WINDOWS\vtany.sys File not found
DRV - (CrystalSysInfo) -- C:\Program Files\MediaCoder\SysInfo.sys File not found
DRV - (Vsdatant) -- C:\WINDOWS\system32\vsdatant.sys (Check Point Software Technologies LTD)
DRV - (nmwcdnsu) -- C:\WINDOWS\system32\drivers\nmwcdnsu.sys (Nokia)
DRV - (nmwcdnsuc) -- C:\WINDOWS\system32\drivers\nmwcdnsuc.sys (Nokia)
DRV - (nmwcdc) -- C:\WINDOWS\system32\drivers\ccdcmbo.sys (Nokia)
DRV - (nmwcd) -- C:\WINDOWS\system32\drivers\ccdcmb.sys (Nokia)
DRV - (UsbserFilt) -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys (Nokia)
DRV - (upperdev) -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys (Nokia)
DRV - (pccsmcfd) -- C:\WINDOWS\system32\drivers\pccsmcfd.sys (Nokia)
DRV - (CdaC15BA) -- C:\WINDOWS\system32\drivers\CDAC15BA.SYS ()
DRV - (KLIF) -- C:\WINDOWS\system32\drivers\klif.sys (Kaspersky Lab)
DRV - (KL1) -- C:\WINDOWS\system32\drivers\kl1.sys (Kaspersky Lab ZAO)
DRV - (kl2) -- C:\WINDOWS\system32\drivers\kl2.sys (Kaspersky Lab ZAO)
DRV - (twingostoragedriver) -- C:\Program Files\Cisco\Cisco Secure Desktop\CSD8df3d.sys ()
DRV - (ggsemc) -- C:\WINDOWS\system32\drivers\ggsemc.sys (Sony Ericsson Mobile Communications)
DRV - (ggflt) -- C:\WINDOWS\system32\drivers\ggflt.sys (Sony Ericsson Mobile Communications)
DRV - (seehcri) -- C:\WINDOWS\system32\drivers\seehcri.sys (Sony Ericsson Mobile Communications)
DRV - (VIAHdAudAddService) -- C:\WINDOWS\system32\drivers\viahduaa.sys (VIA Technologies, Inc.)
DRV - (NVHDA) -- C:\WINDOWS\system32\drivers\nvhda32.sys (NVIDIA Corporation)
DRV - (nvnetbus) -- C:\WINDOWS\system32\drivers\nvnetbus.sys (NVIDIA Corporation)
DRV - (NVENETFD) -- C:\WINDOWS\system32\drivers\NVENETFD.sys (NVIDIA Corporation)
DRV - (nvgts) -- C:\WINDOWS\system32\drivers\nvgts.sys (NVIDIA Corporation)
DRV - (s0016unic) -- C:\WINDOWS\system32\drivers\s0016unic.sys (MCCI Corporation)
DRV - (s0016obex) -- C:\WINDOWS\system32\drivers\s0016obex.sys (MCCI Corporation)
DRV - (s0016nd5) -- C:\WINDOWS\system32\drivers\s0016nd5.sys (MCCI Corporation)
DRV - (s0016mdfl) -- C:\WINDOWS\system32\drivers\s0016mdfl.sys (MCCI Corporation)
DRV - (s0016mdm) -- C:\WINDOWS\system32\drivers\s0016mdm.sys (MCCI Corporation)
DRV - (s0016mgmt) -- C:\WINDOWS\system32\drivers\s0016mgmt.sys (MCCI Corporation)
DRV - (s0016bus) -- C:\WINDOWS\system32\drivers\s0016bus.sys (MCCI Corporation)
DRV - (AmdPPM) -- C:\WINDOWS\system32\drivers\AmdPPM.sys (Advanced Micro Devices)
DRV - (MTsensor) -- C:\WINDOWS\system32\drivers\ASACPI.sys ()
DRV - (snpstd2) -- C:\WINDOWS\system32\drivers\snpstd2.sys ()


========== Standard Registry (All) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearchdial.com/?f=1&a=te ... 703047&ir=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/ ... chcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/ ... chasst.htm
IE - HKLM\..\SearchScopes,DefaultScope =

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://search.zonealarm.com/?src=h [Binary data over 200 bytes]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearchdial.com/?f=1&a=te ... 703047&ir=
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 18 EB B8 DC 36 E4 CC 01 [binary data]
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation)
IE - HKCU\..\SearchScopes,DefaultScope = {47313964-D8A1-4E52-854E-5F34571B1C88}
IE - HKCU\..\SearchScopes\{47313964-D8A1-4E52-854E-5F34571B1C88}: "URL" = http://start.mysearchdial.com/results.p ... 703047&ir=
IE - HKCU\..\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}: "URL" = http://www.bing.com/search?FORM=UP21DF& ... -SearchBox
IE - HKCU\..\SearchScopes\{ACFEE283-4E1E-4E0F-8374-D99162B37040}: "URL" = http://www.google.com/search?hl=en&q={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>


========== FireFox ==========

FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@checkpoint.com/FFApi: C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\npFFApi.dll File not found
FF - HKLM\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll File not found
FF - HKLM\Software\MozillaPlugins\@nokia.com/EnablerPlugin: C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF - HKLM\Software\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Documents and Settings\JAMIP\Application Data\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O1DPlugin: C:\Documents and Settings\JAMIP\Application Data\Mozilla\plugins\npo1d.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Documents and Settings\JAMIP\Application Data\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\JAMIP\Local Settings\Application Data\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\JAMIP\Local Settings\Application Data\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2011/10/06 10:30:15 | 000,000,000 | ---D | M]

[2012/02/16 04:40:10 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions

O1 HOSTS File: ([2004/08/05 12:00:00 | 000,000,790 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (mysearchdial Helper Object) - {EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD} - C:\Program Files\Mysearchdial\1.8.21.0\bh\mysearchdial.dll (MySearchDial)
O3 - HKLM\..\Toolbar: (mysearchdial Toolbar) - {3004627E-F8E9-4E8B-909D-316753CBA923} - C:\Program Files\Mysearchdial\1.8.21.0\mysearchdialTlbr.dll (MySearchDial)
O3 - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
O3 - HKCU\..\Toolbar\ShellBrowser: (&Adresse) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (&Adresse) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (&Liens) - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Fichiers communs\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [IntelliPoint] C:\Program Files\Microsoft IntelliPoint\ipoint.exe (Microsoft Corporation)
O4 - HKLM..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre7\bin\jusched.exe" File not found
O4 - HKLM..\Run: [ZoneAlarm] C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe (Check Point Software Technologies LTD)
O4 - HKCU..\Run: [Akamai NetSession Interface] C:\Documents and Settings\JAMIP\Local Settings\Application Data\Akamai\netsession_win.exe (Akamai Technologies, Inc.)
O4 - HKCU..\Run: [Google Update] C:\Documents and Settings\JAMIP\Local Settings\Application Data\Google\Update\GoogleUpdate.exe (Google Inc.)
O4 - HKCU..\Run: [GoogleChromeAutoLaunch_064A0CF039E09F6657A757F50755262F] C:\Documents and Settings\JAMIP\Local Settings\Application Data\Google\Chrome\Application\chrome.exe (Google Inc.)
O4 - HKCU..\Run: [NokiaSuite.exe] C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe (Nokia)
O4 - HKCU..\Run: [PrtScr by FireStarter] C:\Program Files\PrtScr\PrtScr.exe (FireStarter)
O4 - HKCU..\Run: [Skype] C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Microsoft Office Outlook.lnk = C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE (Microsoft Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Nouveau Document texte.txt ()
O4 - Startup: C:\Documents and Settings\JAMIP\Menu Démarrer\Programmes\Démarrage\Dropbox.lnk = C:\Documents and Settings\JAMIP\Application Data\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O9 - Extra 'Tools' menuitem : Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre7\bin\jp2iexp.dll ()
O9 - Extra Button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\WINDOWS\system32\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)
O16 - DPF: {2AB1C516-6654-4D3A-B3D6-2185BBCEB409} https://wastis-eu.st.com/+CSCOL+/csvrloader32.cab (Reg Error: Key error.)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://www.update.microsoft.com/microso ... 9953423984 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microso ... 9953410343 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 10.45.2)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_37)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 10.45.2)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{33F3B71D-29CF-49BA-A6A8-49936A2D1518}: DhcpNameServer = 192.168.0.254
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\WINDOWS\system32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Fichiers communs\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\sysimage {76E67A63-06E9-11D2-A840-006008059382} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\wia {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\Class Install Handler {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\lzdhtml {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/webviewhtml {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UIHost - (logonui.exe) - C:\WINDOWS\System32\logonui.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\WINDOWS\System32\sysdm.cpl (Microsoft Corporation)
O20 - Winlogon\Notify\crypt32chain: DllName - (crypt32.dll) - C:\WINDOWS\System32\crypt32.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cryptnet: DllName - (cryptnet.dll) - C:\WINDOWS\System32\cryptnet.dll (Microsoft Corporation)
O20 - Winlogon\Notify\cscdll: DllName - (cscdll.dll) - C:\WINDOWS\System32\cscdll.dll (Microsoft Corporation)
O20 - Winlogon\Notify\dimsntfy: DllName - (%SystemRoot%\System32\dimsntfy.dll) - C:\WINDOWS\system32\dimsntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\ScCertProp: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\Schedule: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\sclgntfy: DllName - (sclgntfy.dll) - C:\WINDOWS\System32\sclgntfy.dll (Microsoft Corporation)
O20 - Winlogon\Notify\SensLogn: DllName - (WlNotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\termsrv: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O20 - Winlogon\Notify\wlballoon: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll (Microsoft Corporation)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {438755C2-A8BA-11D1-B96B-00A0C90312E1} - Pré-chargeur Browseui - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Démon de cache des catégories de composant - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\JAMIP\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\JAMIP\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msapsspc.dll) - C:\WINDOWS\System32\msapsspc.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (schannel.dll) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (digest.dll) - C:\WINDOWS\System32\digest.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (msnsspc.dll) - C:\WINDOWS\System32\msnsspc.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\WINDOWS\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\WINDOWS\System32\wdigest.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011/10/01 04:42:04 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2014/02/27 21:38:35 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files
[2014/02/27 09:27:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\JAMIP\Application Data\Mozilla
[2014/02/27 07:40:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\JAMIP\Local Settings\Application Data\Skype
[2014/02/27 07:40:15 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Skype
[2014/02/27 07:40:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Skype
[2014/02/27 07:40:14 | 000,000,000 | R--D | C] -- C:\Program Files\Skype
[2014/02/25 19:08:28 | 000,000,000 | R--D | C] -- D:\Dropbox
[2014/02/25 19:07:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\JAMIP\Application Data\DropboxMaster
[2014/02/25 19:07:19 | 000,000,000 | ---D | C] -- C:\Program Files\Dropbox
[2014/02/25 19:07:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\JAMIP\Menu Démarrer\Programmes\Dropbox
[2014/02/25 18:13:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\JAMIP\Application Data\Dropbox
[2014/02/17 13:49:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Check Point
[2014/02/17 13:30:30 | 000,000,000 | ---D | C] -- C:\Program Files\Check Point Software Technologies LTD
[2014/02/14 08:07:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\MySearchDial
[2014/02/09 16:56:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\JAMIP\Local Settings\Application Data\Microsoft Help
[2014/02/09 12:53:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Ubisoft
[2014/02/09 12:46:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\JAMIP\Menu Démarrer\Programmes\Ubisoft
[2014/02/09 11:20:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\JAMIP\Local Settings\Application Data\Apple
[2014/02/08 17:48:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\JAMIP\Local Settings\Application Data\Ubisoft Game Launcher
[2014/02/08 16:07:52 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\JAMIP\InstallAnywhere
[2014/02/08 14:06:26 | 000,092,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WING.DLL
[2014/02/08 14:06:26 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WING32.DLL
[2014/02/08 13:58:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2014/02/06 21:49:47 | 000,000,000 | ---D | C] -- D:\Nokia Suite
[2014/02/05 13:31:31 | 000,000,000 | ---D | C] -- C:\Softland
[2014/02/04 21:10:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Softland
[2014/02/04 21:10:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\JAMIP\Application Data\Softland
[2014/02/04 21:10:06 | 000,024,384 | ---- | C] (Softland) -- C:\WINDOWS\System32\dopdfmn7.dll
[2014/02/04 21:10:06 | 000,021,312 | ---- | C] (Softland) -- C:\WINDOWS\System32\dopdfmi7.dll
[2014/02/04 21:10:02 | 001,700,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\GdiPlus.dll
[2014/02/04 21:10:02 | 000,000,000 | ---D | C] -- C:\Program Files\Softland
[2014/02/04 21:10:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\doPDF 7
[2014/02/04 21:06:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\JAMIP\Application Data\mysearchdial
[2014/02/04 21:06:44 | 000,000,000 | ---D | C] -- C:\Program Files\Mysearchdial
[2014/02/04 21:00:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\JAMIP\Application Data\PDF Architect
[2014/02/04 20:55:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\JAMIP\Application Data\pdfforge
[2014/02/04 20:55:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\PDFCreator
[2014/02/04 20:54:59 | 000,137,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSMAPI32.OCX
[2014/02/04 20:54:59 | 000,095,416 | ---- | C] (pdfforge GmbH) -- C:\WINDOWS\System32\pdfcmon.dll
[2014/02/04 20:54:58 | 000,141,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSCMCFR.DLL
[2014/02/04 20:54:58 | 000,119,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\VB6FR.DLL
[2014/02/04 20:54:58 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSCC2FR.DLL
[2014/02/04 20:54:58 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSMPIDE.DLL
[2014/02/04 20:54:58 | 000,000,000 | ---D | C] -- C:\Program Files\PDFCreator
[2014/02/02 15:51:49 | 000,000,000 | ---D | C] -- D:\Ubisoft
[2014/02/02 15:51:49 | 000,000,000 | ---D | C] -- D:\temp
[1 C:\Program Files\*.tmp files -> C:\Program Files\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2014/03/04 13:26:00 | 000,001,148 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1085031214-179605362-682003330-1005UA.job
[2014/03/04 13:14:30 | 000,000,432 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{1C137512-06FB-4AD6-8EDA-2C50DFC28EC7}.job
[2014/03/04 13:07:00 | 000,000,416 | ---- | M] () -- C:\WINDOWS\tasks\At2.job
[2014/03/04 13:07:00 | 000,000,410 | ---- | M] () -- C:\WINDOWS\tasks\At1.job
[2014/03/04 13:02:31 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2014/03/04 12:46:00 | 000,001,002 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2014/03/04 11:29:37 | 000,092,160 | ---- | M] () -- C:\Documents and Settings\JAMIP\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2014/03/04 11:29:37 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2014/03/04 09:30:56 | 000,002,307 | ---- | M] () -- C:\Documents and Settings\JAMIP\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2014/03/04 08:27:12 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2014/03/01 15:53:04 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2014/03/01 15:26:01 | 000,001,096 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1085031214-179605362-682003330-1005Core.job
[2014/02/28 09:15:32 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2014/02/25 19:08:28 | 000,001,001 | ---- | M] () -- C:\Documents and Settings\JAMIP\Bureau\Dropbox.lnk
[2014/02/25 19:07:43 | 000,001,031 | ---- | M] () -- C:\Documents and Settings\JAMIP\Menu Démarrer\Programmes\Démarrage\Dropbox.lnk
[2014/02/20 22:46:19 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2014/02/20 22:46:19 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2014/02/17 13:50:12 | 000,417,569 | ---- | M] () -- C:\WINDOWS\System32\vsconfig.xml
[2014/02/12 22:54:05 | 000,504,004 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
[2014/02/12 22:54:05 | 000,435,832 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2014/02/12 22:54:05 | 000,082,026 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
[2014/02/12 22:54:05 | 000,068,728 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2014/02/12 22:46:55 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2014/02/09 13:33:46 | 000,001,731 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Driver San Francisco.lnk
[2014/02/09 12:47:24 | 000,000,861 | ---- | M] () -- C:\Documents and Settings\JAMIP\Bureau\Uplay.lnk
[2014/02/08 14:01:24 | 000,000,228 | -HS- | M] () -- C:\boot.ini
[2014/02/06 03:55:32 | 000,174,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ie4uinit.exe
[2014/02/06 03:55:32 | 000,174,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ie4uinit.exe
[2014/02/06 00:20:01 | 000,920,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wininet.dll
[2014/02/06 00:20:00 | 000,759,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vgx.dll
[2014/02/06 00:19:56 | 001,216,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\urlmon.dll
[2014/02/06 00:19:53 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\url.dll
[2014/02/06 00:19:53 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\url.dll
[2014/02/06 00:19:52 | 000,206,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\occache.dll
[2014/02/06 00:19:51 | 000,611,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mstime.dll
[2014/02/06 00:19:51 | 000,611,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstime.dll
[2014/02/06 00:19:49 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtmled.dll
[2014/02/06 00:19:47 | 006,021,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll
[2014/02/06 00:19:30 | 000,630,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msfeeds.dll
[2014/02/06 00:19:30 | 000,630,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2014/02/06 00:19:30 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msfeedsbs.dll
[2014/02/06 00:19:30 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2014/02/06 00:19:29 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\licmgr10.dll
[2014/02/06 00:19:29 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\licmgr10.dll
[2014/02/06 00:19:29 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\jsproxy.dll
[2014/02/06 00:19:29 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsproxy.dll
[2014/02/06 00:19:28 | 001,469,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcpl.cpl
[2014/02/06 00:19:28 | 001,469,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcpl.cpl
[2014/02/06 00:19:28 | 000,522,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsdbgui.dll
[2014/02/06 00:19:26 | 002,006,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2014/02/06 00:19:19 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iepeers.dll
[2014/02/06 00:19:19 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iepeers.dll
[2014/02/06 00:19:18 | 011,113,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2014/02/06 00:18:50 | 000,743,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll
[2014/02/06 00:18:45 | 000,387,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iedkcs32.dll
[2014/02/06 00:18:45 | 000,387,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedkcs32.dll
[2014/02/06 00:18:44 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\corpol.dll
[2014/02/06 00:18:44 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\corpol.dll
[2014/02/05 23:25:25 | 000,385,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\html.iec
[2014/02/04 21:49:22 | 000,000,999 | ---- | M] () -- D:\pdfcreator.lnk
[2014/02/04 21:07:20 | 000,000,043 | ---- | M] () -- C:\Documents and Settings\JAMIP\Application Data\WB.CFG
[2014/02/04 20:55:02 | 000,000,713 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\PDFCreator.lnk
[1 C:\Program Files\*.tmp files -> C:\Program Files\*.tmp -> ]

PatMalek
Informaticien
Informaticien
Messages : 360
Inscription : 13 juin 2007 16:00

Re: PC lent et bizarre

Message par PatMalek »

========== Files Created - No Company Name ==========

[2014/02/25 19:08:28 | 000,001,001 | ---- | C] () -- C:\Documents and Settings\JAMIP\Bureau\Dropbox.lnk
[2014/02/25 19:07:43 | 000,001,031 | ---- | C] () -- C:\Documents and Settings\JAMIP\Menu Démarrer\Programmes\Démarrage\Dropbox.lnk
[2014/02/14 08:07:07 | 000,000,416 | ---- | C] () -- C:\WINDOWS\tasks\At2.job
[2014/02/09 12:53:30 | 000,001,731 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Driver San Francisco.lnk
[2014/02/09 12:46:58 | 000,000,861 | ---- | C] () -- C:\Documents and Settings\JAMIP\Bureau\Uplay.lnk
[2014/02/08 14:01:22 | 000,000,799 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Microsoft Office Outlook.lnk
[2014/02/05 21:07:04 | 000,000,090 | ---- | C] () -- C:\Documents and Settings\NetworkService\Application Data\WB.CFG
[2014/02/04 21:49:22 | 000,000,999 | ---- | C] () -- D:\pdfcreator.lnk
[2014/02/04 21:10:06 | 000,007,549 | ---- | C] () -- C:\WINDOWS\System32\dopdf7.ctm
[2014/02/04 21:07:20 | 000,000,043 | ---- | C] () -- C:\Documents and Settings\JAMIP\Application Data\WB.CFG
[2014/02/04 21:07:14 | 000,000,410 | ---- | C] () -- C:\WINDOWS\tasks\At1.job
[2014/02/04 20:55:02 | 000,000,713 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\PDFCreator.lnk
[2014/01/19 07:15:08 | 000,286,720 | ---- | C] () -- C:\WINDOWS\vsnpstd2.exe
[2014/01/19 07:15:08 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\dsnpstd2.dll
[2014/01/19 07:15:08 | 000,015,541 | ---- | C] () -- C:\WINDOWS\snpstd2.ini
[2014/01/19 07:15:03 | 000,334,080 | ---- | C] () -- C:\WINDOWS\System32\drivers\snpstd2.sys
[2014/01/19 07:15:00 | 000,061,440 | ---- | C] ( ) -- C:\WINDOWS\System32\csnpstd2.dll
[2014/01/19 07:15:00 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\rsnpstd2.dll
[2014/01/19 07:15:00 | 000,036,864 | ---- | C] ( ) -- C:\WINDOWS\System32\vsnpstd2.dll
[2014/01/19 07:14:57 | 000,020,480 | ---- | C] () -- C:\WINDOWS\usnpstd2.exe
[2014/01/10 21:38:37 | 000,038,433 | ---- | C] () -- C:\Documents and Settings\JAMIP\Application Data\Microsoft Excel 97-2003.ADR
[2014/01/10 21:38:34 | 000,000,028 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2013/11/20 09:25:46 | 000,583,776 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2013/03/16 20:26:57 | 000,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2012/10/11 17:39:30 | 000,138,056 | ---- | C] () -- C:\Documents and Settings\JAMIP\Application Data\PnkBstrK.sys
[2012/10/11 17:14:38 | 000,000,207 | ---- | C] () -- C:\WINDOWS\disneysy.ini
[2012/10/11 05:30:01 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2011/11/09 22:40:35 | 000,000,579 | ---- | C] () -- C:\Documents and Settings\JAMIP\Local Settings\Application Data\Images.fl
[2011/10/24 13:05:04 | 000,092,160 | ---- | C] () -- C:\Documents and Settings\JAMIP\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/10/03 21:03:59 | 000,000,106 | ---- | C] () -- C:\Documents and Settings\JAMIP\default.pls
[2011/10/01 04:48:17 | 006,553,600 | -H-- | C] () -- C:\Documents and Settings\JAMIP\NTUSER.bak

========== ZeroAccess Check ==========

[2011/10/04 18:53:41 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2011/06/21 19:19:04 | 001,510,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009/02/09 11:53:55 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008/04/13 18:33:50 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== Custom Scans ==========

< %ALLUSERSPROFILE%\Application Data\*. >
[2013/12/06 17:18:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\188F1432-103A-4ffb-80F1-36B633C5C9E1
[2012/10/13 05:35:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ABBYY
[2011/10/02 21:22:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Adobe
[2011/10/03 11:53:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ahead
[2011/10/25 12:34:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Apple
[2011/12/15 13:35:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Apple Computer
[2012/10/20 12:32:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BVRP Software
[2011/11/22 12:46:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\CheckPoint
[2013/01/15 17:47:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Electronic Arts
[2012/10/13 06:08:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\EPSON
[2011/11/09 08:33:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Google
[2012/10/11 07:10:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Kaspersky SDK
[2011/10/01 05:22:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2013/12/27 08:02:02 | 000,000,000 | --SD | M] -- C:\Documents and Settings\All Users\Application Data\Microsoft
[2014/01/15 14:16:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Microsoft Help
[2011/10/03 11:52:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Nero
[2013/12/27 07:58:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Nokia
[2013/12/27 07:56:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NokiaInstallerCache
[2011/10/01 05:06:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NVIDIA
[2011/10/01 05:06:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NVIDIA Corporation
[2013/01/15 17:47:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Origin
[2013/12/27 08:02:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Suite
[2012/10/21 11:19:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Regressi
[2014/02/27 07:40:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Skype
[2012/10/20 12:37:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sony Ericsson
[2011/12/12 20:57:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sun
[2013/12/28 23:41:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TomTom
[2012/10/13 06:11:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\UDL
[2011/10/01 05:27:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
[2011/10/25 12:35:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2012/10/21 11:19:15 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{74E9B3B4-EF23-4AE9-98CA-1BBF7BF6AC61}

< %ALLUSERSPROFILE%\Application Data\*.exe /s >
[2011/05/16 08:48:06 | 002,925,742 | ---- | M] (Evariste ) -- C:\Documents and Settings\All Users\Application Data\{74E9B3B4-EF23-4AE9-98CA-1BBF7BF6AC61}\regressi.exe
[2012/08/21 13:01:28 | 001,977,816 | ---- | M] (GEAR Software, Inc.) -- C:\Documents and Settings\All Users\Application Data\188F1432-103A-4ffb-80F1-36B633C5C9E1\GEARDIFx.exe
[2012/08/21 13:01:22 | 000,115,672 | ---- | M] (GEAR Software, Inc.) -- C:\Documents and Settings\All Users\Application Data\188F1432-103A-4ffb-80F1-36B633C5C9E1\x86\DifXInst32.exe
[2012/01/03 08:37:53 | 000,320,456 | ---- | M] (Adobe Systems Incorporated) -- C:\Documents and Settings\All Users\Application Data\Adobe\ARM\Reader_10.1.1\20371\AcrobatUpdater.exe
[2012/01/03 08:37:53 | 000,843,712 | ---- | M] (Adobe Systems Incorporated) -- C:\Documents and Settings\All Users\Application Data\Adobe\ARM\Reader_10.1.1\20371\AdobeARM.exe
[2012/01/03 08:37:53 | 000,320,456 | ---- | M] (Adobe Systems Incorporated) -- C:\Documents and Settings\All Users\Application Data\Adobe\ARM\Reader_10.1.1\20371\AdobeARMHelper.exe
[2012/01/03 08:37:53 | 000,320,456 | ---- | M] (Adobe Systems Incorporated) -- C:\Documents and Settings\All Users\Application Data\Adobe\ARM\Reader_10.1.1\20371\ReaderUpdater.exe
[2011/09/05 22:51:05 | 001,560,520 | ---- | M] (Adobe Systems Incorporated) -- C:\Documents and Settings\All Users\Application Data\Adobe\Setup\{AC76BA86-7AD7-1036-7B44-AA1000000001}\setup.exe
[2013/12/06 17:09:52 | 000,077,136 | ---- | M] (Apple Inc.) -- C:\Documents and Settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 11.1.3.8\SetupAdmin.exe
[2013/12/26 22:19:35 | 106,320,416 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\{EDB188F5-D8E8-42EE-89E0-F212DA48CB81}\Installer.exe
[2013/12/27 07:56:39 | 000,125,288 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\{EDB188F5-D8E8-42EE-89E0-F212DA48CB81}\Installer\InstallerService.exe
[2013/12/27 07:56:39 | 000,053,096 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\{EDB188F5-D8E8-42EE-89E0-F212DA48CB81}\Installer\InstallerServiceExec.exe
[2013/12/27 07:56:39 | 000,053,608 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\{EDB188F5-D8E8-42EE-89E0-F212DA48CB81}\Installer\IsPinned.exe
[2013/12/27 07:56:46 | 000,046,144 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\{EDB188F5-D8E8-42EE-89E0-F212DA48CB81}\Installer\CommonCustomActions\pcswpc.exe
[2013/12/27 07:56:46 | 000,047,616 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\{EDB188F5-D8E8-42EE-89E0-F212DA48CB81}\Installer\CommonCustomActions\RepairMplatform.exe
[2013/12/27 07:56:46 | 000,077,824 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\{EDB188F5-D8E8-42EE-89E0-F212DA48CB81}\Installer\CommonCustomActions\Run_XML6_SP1.exe
[2013/12/27 07:56:46 | 000,038,912 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\{EDB188F5-D8E8-42EE-89E0-F212DA48CB81}\Installer\CommonCustomActions\WMF11Runx86.exe
[2013/12/27 07:56:47 | 012,212,040 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\All Users\Application Data\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\{EDB188F5-D8E8-42EE-89E0-F212DA48CB81}\Installer\CommonCustomActions\WMFDist11-WindowsXP-X86-ENU.exe
[2011/09/10 13:36:00 | 000,195,904 | ---- | M] (NVIDIA Corporation) -- C:\Documents and Settings\All Users\Application Data\NVIDIA\Updatus\WLMerger.exe

< %APPDATA%\*. >
[2014/02/08 15:59:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JAMIP\Application Data\Adobe
[2013/01/16 18:08:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JAMIP\Application Data\Aeria Games & Entertainment
[2011/12/02 22:45:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JAMIP\Application Data\Ahead
[2013/03/31 22:38:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JAMIP\Application Data\Apple Computer
[2014/02/08 15:59:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JAMIP\Application Data\avidemux
[2012/10/11 07:18:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JAMIP\Application Data\CheckPoint
[2011/10/26 07:25:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JAMIP\Application Data\Cisco
[2014/03/04 08:29:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JAMIP\Application Data\Dropbox
[2014/02/25 19:08:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JAMIP\Application Data\DropboxMaster
[2014/02/09 21:33:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JAMIP\Application Data\Epson
[2012/01/18 13:50:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JAMIP\Application Data\Google
[2011/10/04 19:10:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JAMIP\Application Data\Leadertech
[2011/10/01 05:27:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JAMIP\Application Data\Macromedia
[2014/02/17 13:49:47 | 000,000,000 | --SD | M] -- C:\Documents and Settings\JAMIP\Application Data\Microsoft
[2011/11/16 14:34:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JAMIP\Application Data\Mindscape
[2014/02/27 09:27:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JAMIP\Application Data\Mozilla
[2014/02/13 22:51:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JAMIP\Application Data\mysearchdial
[2014/03/04 08:31:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JAMIP\Application Data\Nokia
[2013/12/27 08:05:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JAMIP\Application Data\Nokia Suite
[2011/12/28 08:26:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JAMIP\Application Data\NVIDIA
[2011/11/09 22:51:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JAMIP\Application Data\ObviousIdea
[2013/12/31 15:12:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JAMIP\Application Data\OpenOffice.org
[2014/02/08 15:59:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JAMIP\Application Data\Origin
[2013/12/27 08:04:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JAMIP\Application Data\PC Suite
[2014/02/10 21:06:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JAMIP\Application Data\PDF Architect
[2014/02/04 20:55:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JAMIP\Application Data\pdfforge
[2012/10/21 11:19:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JAMIP\Application Data\Regressi
[2011/10/04 19:16:18 | 000,000,000 | RH-D | M] -- C:\Documents and Settings\JAMIP\Application Data\SecuROM
[2014/02/28 10:17:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JAMIP\Application Data\Skype
[2014/02/04 21:10:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JAMIP\Application Data\Softland
[2011/12/12 20:53:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JAMIP\Application Data\Sun
[2013/12/28 23:40:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JAMIP\Application Data\TomTom
[2011/12/19 12:40:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JAMIP\Application Data\vlc

< %APPDATA%\*.exe /s >
[2014/02/01 00:16:26 | 032,179,440 | ---- | M] (Dropbox, Inc.) -- C:\Documents and Settings\JAMIP\Application Data\Dropbox\bin\Dropbox.exe
[2014/02/01 00:17:50 | 000,244,640 | ---- | M] (Dropbox, Inc.) -- C:\Documents and Settings\JAMIP\Application Data\Dropbox\bin\DropboxUninstaller.exe
[2014/02/01 00:16:30 | 000,143,648 | ---- | M] (Dropbox, Inc.) -- C:\Documents and Settings\JAMIP\Application Data\Dropbox\bin\DropboxUpdateHelper.exe
[2013/04/12 15:10:43 | 000,117,248 | ---- | M] () -- C:\Documents and Settings\JAMIP\Application Data\mysearchdial\UpdateProc\UpdateTask.exe

< %temp%\*.exe /s >
[2012/10/01 17:44:51 | 000,912,880 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\jre-6u37-windows-i586-iftw.exe
[2013/02/16 06:00:49 | 000,897,448 | ---- | M] (Oracle Corporation) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\jre-7u15-windows-i586-iftw.exe
[2013/10/08 19:27:49 | 000,915,368 | ---- | M] (Oracle Corporation) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\jre-7u45-windows-i586-iftw.exe
[2012/11/22 15:36:58 | 001,189,760 | ---- | M] (Check Point Software Technologies) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\Uninstall.exe
[563 C:\DOCUME~1\JAMIP\LOCALS~1\Temp\*.tmp files -> C:\DOCUME~1\JAMIP\LOCALS~1\Temp\*.tmp -> ]
[2013/01/14 19:08:24 | 000,563,664 | ---- | M] (Google Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\CRX_DF399A9B283A\ChromeRecovery.exe
[2013/01/14 19:08:24 | 000,765,280 | ---- | M] (Google Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\CRX_DF399A9B283A\GoogleUpdateSetup.exe
[2011/11/14 11:23:02 | 000,123,392 | ---- | M] (Flexera Software) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362237766\Windows\DriverPatch104.exe
[2011/11/14 11:23:02 | 000,117,560 | ---- | M] () -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362237766\Windows\resource\remove.exe
[2011/11/14 11:23:02 | 000,233,784 | ---- | M] () -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362237766\Windows\resource\win64_32.exe
[2011/11/14 11:23:02 | 000,123,704 | ---- | M] () -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362237766\Windows\resource\win64_32_x64.exe
[2011/11/14 11:23:02 | 000,053,728 | ---- | M] () -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362237766\Windows\resource\ZGWin32LaunchHelper.exe
[2011/11/14 11:23:42 | 000,033,056 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362237766\Windows\resource\jre\bin\java-rmi.exe
[2011/11/14 11:23:42 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362237766\Windows\resource\jre\bin\java.exe
[2011/11/14 11:23:42 | 000,059,168 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362237766\Windows\resource\jre\bin\javacpl.exe
[2011/11/14 11:23:42 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362237766\Windows\resource\jre\bin\javaw.exe
[2011/11/14 11:23:42 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362237766\Windows\resource\jre\bin\javaws.exe
[2011/11/14 11:23:42 | 000,079,648 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362237766\Windows\resource\jre\bin\jbroker.exe
[2011/11/14 11:23:42 | 000,022,816 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362237766\Windows\resource\jre\bin\jp2launcher.exe
[2011/11/14 11:23:42 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362237766\Windows\resource\jre\bin\jqs.exe
[2011/11/14 11:23:42 | 000,055,072 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362237766\Windows\resource\jre\bin\jqsnotify.exe
[2011/11/14 11:23:42 | 000,386,872 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362237766\Windows\resource\jre\bin\jucheck.exe
[2011/11/14 11:23:42 | 000,055,072 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362237766\Windows\resource\jre\bin\jureg.exe
[2011/11/14 11:23:42 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362237766\Windows\resource\jre\bin\jusched.exe
[2011/11/14 11:23:42 | 000,033,568 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362237766\Windows\resource\jre\bin\keytool.exe
[2011/11/14 11:23:42 | 000,033,568 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362237766\Windows\resource\jre\bin\kinit.exe
[2011/11/14 11:23:42 | 000,033,568 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362237766\Windows\resource\jre\bin\klist.exe
[2011/11/14 11:23:42 | 000,033,568 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362237766\Windows\resource\jre\bin\ktab.exe
[2011/11/14 11:23:42 | 000,033,568 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362237766\Windows\resource\jre\bin\orbd.exe
[2011/11/14 11:23:42 | 000,033,568 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362237766\Windows\resource\jre\bin\pack200.exe
[2011/11/14 11:23:42 | 000,033,568 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362237766\Windows\resource\jre\bin\policytool.exe
[2011/11/14 11:23:42 | 000,033,568 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362237766\Windows\resource\jre\bin\rmid.exe
[2011/11/14 11:23:42 | 000,033,568 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362237766\Windows\resource\jre\bin\rmiregistry.exe
[2011/11/14 11:23:42 | 000,033,568 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362237766\Windows\resource\jre\bin\servertool.exe
[2011/11/14 11:23:42 | 000,018,208 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362237766\Windows\resource\jre\bin\ssvagent.exe
[2011/11/14 11:23:42 | 000,033,568 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362237766\Windows\resource\jre\bin\tnameserv.exe
[2011/11/14 11:23:42 | 000,132,896 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362237766\Windows\resource\jre\bin\unpack200.exe
[2011/11/14 11:23:02 | 000,123,392 | ---- | M] (Flexera Software) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362238027\Windows\DriverPatch104.exe
[2011/11/14 11:23:02 | 000,117,560 | ---- | M] () -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362238027\Windows\resource\remove.exe
[2011/11/14 11:23:02 | 000,233,784 | ---- | M] () -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362238027\Windows\resource\win64_32.exe
[2011/11/14 11:23:02 | 000,123,704 | ---- | M] () -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362238027\Windows\resource\win64_32_x64.exe
[2011/11/14 11:23:02 | 000,053,728 | ---- | M] () -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362238027\Windows\resource\ZGWin32LaunchHelper.exe
[2011/11/14 11:23:42 | 000,033,056 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362238027\Windows\resource\jre\bin\java-rmi.exe
[2011/11/14 11:23:42 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362238027\Windows\resource\jre\bin\java.exe
[2011/11/14 11:23:42 | 000,059,168 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362238027\Windows\resource\jre\bin\javacpl.exe
[2011/11/14 11:23:42 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362238027\Windows\resource\jre\bin\javaw.exe
[2011/11/14 11:23:42 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362238027\Windows\resource\jre\bin\javaws.exe
[2011/11/14 11:23:42 | 000,079,648 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362238027\Windows\resource\jre\bin\jbroker.exe
[2011/11/14 11:23:42 | 000,022,816 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362238027\Windows\resource\jre\bin\jp2launcher.exe
[2011/11/14 11:23:42 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362238027\Windows\resource\jre\bin\jqs.exe
[2011/11/14 11:23:42 | 000,055,072 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362238027\Windows\resource\jre\bin\jqsnotify.exe
[2011/11/14 11:23:42 | 000,386,872 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362238027\Windows\resource\jre\bin\jucheck.exe
[2011/11/14 11:23:42 | 000,055,072 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362238027\Windows\resource\jre\bin\jureg.exe
[2011/11/14 11:23:42 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362238027\Windows\resource\jre\bin\jusched.exe
[2011/11/14 11:23:42 | 000,033,568 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362238027\Windows\resource\jre\bin\keytool.exe
[2011/11/14 11:23:42 | 000,033,568 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362238027\Windows\resource\jre\bin\kinit.exe
[2011/11/14 11:23:42 | 000,033,568 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362238027\Windows\resource\jre\bin\klist.exe
[2011/11/14 11:23:42 | 000,033,568 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362238027\Windows\resource\jre\bin\ktab.exe
[2011/11/14 11:23:42 | 000,033,568 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362238027\Windows\resource\jre\bin\orbd.exe
[2011/11/14 11:23:42 | 000,033,568 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362238027\Windows\resource\jre\bin\pack200.exe
[2011/11/14 11:23:42 | 000,033,568 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362238027\Windows\resource\jre\bin\policytool.exe
[2011/11/14 11:23:42 | 000,033,568 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362238027\Windows\resource\jre\bin\rmid.exe
[2011/11/14 11:23:42 | 000,033,568 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362238027\Windows\resource\jre\bin\rmiregistry.exe
[2011/11/14 11:23:42 | 000,033,568 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362238027\Windows\resource\jre\bin\servertool.exe
[2011/11/14 11:23:42 | 000,018,208 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362238027\Windows\resource\jre\bin\ssvagent.exe
[2011/11/14 11:23:42 | 000,033,568 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362238027\Windows\resource\jre\bin\tnameserv.exe
[2011/11/14 11:23:42 | 000,132,896 | ---- | M] (Sun Microsystems, Inc.) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\I1362238027\Windows\resource\jre\bin\unpack200.exe
[2014/02/04 21:06:24 | 004,201,928 | ---- | M] (Softland ) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\is42483369\1648649_stp.EXE
[2013/08/15 17:44:28 | 000,011,264 | ---- | M] () -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\is42483369\1648728_stp\wajam_validate.exe
[2014/01/23 10:46:30 | 002,234,640 | ---- | M] (Setup © ) -- C:\DOCUME~1\JAMIP\LOCALS~1\Temp\is42483369\1648765_stp\Mysearchdial.exe

< %SYSTEMDRIVE%\*.exe >

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >
[2011/10/01 06:31:28 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
[2011/10/01 06:31:28 | 001,069,056 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
[2011/10/01 06:31:28 | 000,446,464 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav

< MD5 for: EXPLORER.EXE >
[2008/04/13 18:34:04 | 001,037,824 | ---- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- C:\WINDOWS\explorer.exe
[2008/04/13 18:34:04 | 001,037,824 | ---- | M] (Microsoft Corporation) MD5=F2317622D29F9FF0F88AEECD5F60F0DD -- C:\WINDOWS\system32\dllcache\explorer.exe

< MD5 for: WINLOGON.EXE >
[2008/04/13 18:34:30 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=DD73D6B9F6B4CB630CF35B438B540174 -- C:\WINDOWS\system32\dllcache\winlogon.exe
[2008/04/13 18:34:30 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=DD73D6B9F6B4CB630CF35B438B540174 -- C:\WINDOWS\system32\winlogon.exe

< HKEY_LOCAL_MACHINE\SYSTEM\SYSTEM\CurrentControlSet\Services\lanmanserver\parameters /s >

< HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems /s >
"Debug" =
"Kmode" = %SystemRoot%\system32\win32k.sys -- [2013/10/30 03:51:58 | 001,879,168 | ---- | M] (Microsoft Corporation)
"Optional" = Posix [binary data]
"Posix" = %SystemRoot%\system32\psxss.exe
"Required" = DebugWindows [binary data]
"Windows" = %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems\CSRSS]
"CsrSrvSharedSectionBase" = 2137980928

< nslookup http://www.google.fr /c >
Serveur : UnKnown
Address: 192.168.0.254

< hklm\software\clients\startmenuinternet|command /rs >
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\chrome.exe\shell\open\command\\: "C:\Documents and Settings\JAMIP\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" [2014/03/02 03:35:27 | 000,859,464 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ShowIconsCommand: "C:\Documents and Settings\JAMIP\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" --show-icons [2014/03/02 03:35:27 | 000,859,464 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\HideIconsCommand: "C:\Documents and Settings\JAMIP\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" --hide-icons [2014/03/02 03:35:27 | 000,859,464 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ReinstallCommand: "C:\Documents and Settings\JAMIP\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" --make-default-browser [2014/03/02 03:35:27 | 000,859,464 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\shell\open\command\\: "C:\Documents and Settings\JAMIP\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" [2014/03/02 03:35:27 | 000,859,464 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\WINDOWS\system32\ie4uinit.exe" -reinstall [2014/02/06 03:55:32 | 000,174,592 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -hide [2014/02/06 03:55:32 | 000,174,592 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -show [2014/02/06 03:55:32 | 000,174,592 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" -extoff [2009/03/08 13:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2009/03/08 13:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation)

< hklm\software\clients\startmenuinternet|command /64 /rs >
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\chrome.exe\shell\open\command\\: "C:\Documents and Settings\JAMIP\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" [2014/03/02 03:35:27 | 000,859,464 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ShowIconsCommand: "C:\Documents and Settings\JAMIP\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" --show-icons [2014/03/02 03:35:27 | 000,859,464 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\HideIconsCommand: "C:\Documents and Settings\JAMIP\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" --hide-icons [2014/03/02 03:35:27 | 000,859,464 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ReinstallCommand: "C:\Documents and Settings\JAMIP\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" --make-default-browser [2014/03/02 03:35:27 | 000,859,464 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\shell\open\command\\: "C:\Documents and Settings\JAMIP\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" [2014/03/02 03:35:27 | 000,859,464 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\WINDOWS\system32\ie4uinit.exe" -reinstall [2014/02/06 03:55:32 | 000,174,592 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -hide [2014/02/06 03:55:32 | 000,174,592 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -show [2014/02/06 03:55:32 | 000,174,592 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" -extoff [2009/03/08 13:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2009/03/08 13:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation)

< End of report >

Avatar de l’utilisateur
SkyTech
Geek à longue barbe
Geek à longue barbe
Messages : 35604
Inscription : 03 août 2008 14:52
Localisation : Picardie (80)

Re: PC lent et bizarre

Message par SkyTech »

Bonjour,
O3 - HKLM\..\Toolbar: (mysearchdial Toolbar) - {3004627E-F8E9-4E8B-909D-316753CBA923} - C:\Program Files\Mysearchdial\1.8.21.0\mysearchdialTlbr.dll (MySearchDial)
Des logiciels additionnels sont proposés (barre d'outils, adwares) via l'installation de logiciel par éditeurs.
L'éditeur touche de l'argent à chaque installation réussie de ces additionnels tiers (un genre de sponsoring).
Seulement certains éditeurs, abusent, pour gagner plus d'argent, ils redistribuent des logiciels libres développés par des bénévoles en y ajoutant ces logiciels additionnels.
Des pubs trompeuses peuvent aussi être utilisés pour faire installer ces logiciels.

Outre le fait que les procédés sont discutables, l'accumulation de ces programmes additionnels non essentiels concourent à ralentir considérablement l'ordinateur (peux aussi faire planter les navigateurs WEB).
Certains font aussi du tracking anonymes (récupérations des thématiques de sites visités).

Tu as la même chose avec les barres d'outils :
Les barres d'outils sont là pour t'affilier à un service (moteur de recherche de Yahoo! ou Google), ça rajoute des fonctionnalités mais en général les navigateurs les ont par défaut.
De plus, elles enregistrent les sites que tu visites pour les transmettre (tracking) à faire de la publicité ciblée, c'est pas super niveau protection de la vie privée.
Plusieurs toolbars ralentissent le PC et peuvent faire planter les navigateurs WEB.
Au final, il est pas conseillé d'en utiliser.

Lire :
Les PUPs/LPIs : https://www.malekal.com/2011/07/27/detec ... d-program/


Téléchargez AdwCleaner( d'Xplode ) sur votre bureau.
Lancez le, cliquez sur [Scanner], patiente, puis sur [Nettoyer] puis patientez le temps de la suppression.
Un redédmarrage sera demandé, accepté.
Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt
Poste le rapport.

PS : Si le rapport est trop long pour être poster sur un message, tu peux utiliser un hébergeur : http://pjjoint.malekal.com/index.php?lang=fr

---

Désactive aussi Java Quick Starter :

Panneau de configuration (de Windows) > Java > Avancé > Divers > Décocher Java Quick Starter.

---

Télécharge HiJackThis de Merijn sur ton bureau.
  • Procède à son installation.
  • Une fois l'installation achevée, lance le via son icône sur le bureau ou bien via Démarrer>Tout les Programmes>HijackThis>Hijackthis
  • Clique sur "Do a system scan and save a logfile".
  • Le rapport s'affiche dans le bloc-note à présent.
  • Copie colle son contenu dans ton prochain message sur le forum.
Note: Tu peut t'aider de ce tutorial si tu rencontre un problème: Guide sur HiJackThis

PatMalek
Informaticien
Informaticien
Messages : 360
Inscription : 13 juin 2007 16:00

Re: PC lent et bizarre

Message par PatMalek »

ADW:
# AdwCleaner v3.020 - Rapport créé le 05/03/2014 à 08:46:08
# Mis à jour le 27/02/2014 par Xplode
# Système d'exploitation : Microsoft Windows XP Service Pack 3 (32 bits)
# Nom d'utilisateur : JAMIP - ORDI_SALON
# Exécuté depuis : D:\Downloads\adwcleaner (1).exe
# Option : Nettoyer

***** [ Services ] *****


***** [ Fichiers / Dossiers ] *****

Dossier Supprimé : C:\Program Files\Mysearchdial
Dossier Supprimé : C:\WINDOWS\system32\AI_RecycleBin
[!] Dossier Supprimé : C:\Documents and Settings\NetworkService\Application Data\Mysearchdial
Dossier Supprimé : C:\Documents and Settings\JAMIP\Application Data\CheckPoint\ZoneAlarm LTD Toolbar
[!] Dossier Supprimé : C:\Documents and Settings\JAMIP\Application Data\Mysearchdial
Dossier Supprimé : C:\Documents and Settings\JAMIP\Application Data\pdfforge
Fichier Supprimé : C:\DOCUME~1\JAMIP\LOCALS~1\Temp\Uninstall.exe

***** [ Raccourcis ] *****


***** [ Registre ] *****

Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\Complitly.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Clé Supprimée : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr
Clé Supprimée : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1
Clé Supprimée : HKLM\SOFTWARE\Classes\driverscanner
Clé Supprimée : HKLM\SOFTWARE\Classes\esrv.mysearchdialesrvc
Clé Supprimée : HKLM\SOFTWARE\Classes\esrv.mysearchdialesrvc.1
Clé Supprimée : HKLM\SOFTWARE\Classes\mysearchdial.mysearchdialappCore
Clé Supprimée : HKLM\SOFTWARE\Classes\mysearchdial.mysearchdialappCore.1
Clé Supprimée : HKLM\SOFTWARE\Classes\mysearchdial.mysearchdialdskBnd
Clé Supprimée : HKLM\SOFTWARE\Classes\mysearchdial.mysearchdialdskBnd.1
Clé Supprimée : HKLM\SOFTWARE\Classes\mysearchdial.mysearchdialHlpr
Clé Supprimée : HKLM\SOFTWARE\Classes\mysearchdial.mysearchdialHlpr.1
Clé Supprimée : HKLM\SOFTWARE\Classes\Prod.cap
Clé Supprimée : HKLM\SOFTWARE\Classes\ScriptHost.Tool
Clé Supprimée : HKLM\SOFTWARE\Classes\ScriptHost.Tool.1
Clé Supprimée : HKLM\SOFTWARE\MozillaPlugins\@checkpoint.com/FFApi
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{C292AD0A-C11F-479B-B8DB-743E72D283B0}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{19D2F415-D58B-46BC-9390-C03DCBC21EB2}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{3004627E-F8E9-4E8B-909D-316753CBA923}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{4ED063C9-4A0B-4B44-A9DC-23AFF424A0D3}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{6E45F3E8-2683-4824-A6BE-08108022FB36}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{9F0F16DD-4E76-4049-A9B1-7A91E48F0323}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{C358B3D0-B911-41E3-A276-E7D43A6BA56D}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{D40753C7-8A59-4C1F-BE88-C300F4624D5B}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{F4288797-CB12-49CE-9DF8-7CDFA1143BEA}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{212C2C4F-C845-4FBC-9561-C833A13D8DCE}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{3C5D1D57-16C8-473C-A552-37B8D88596FE}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{4A115D8A-6A7B-4C72-92B1-2E2D01F36979}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{99DF8440-814E-497F-BDDD-FB93E9E9DF96}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{C292AD0A-C11F-479B-B8DB-743E72D283B0}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{25A3A431-30BB-47C8-AD6A-E1063801134F}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3004627E-F8E9-4E8B-909D-316753CBA923}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{25A3A431-30BB-47C8-AD6A-E1063801134F}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3004627E-F8E9-4E8B-909D-316753CBA923}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{219046AE-358F-4CF1-B1FD-2B4DE83642A8}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{83CAD530-387D-40FD-82EA-B9E863D92A9B}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{3004627E-F8E9-4E8B-909D-316753CBA923}]
Valeur Supprimée : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\Windows Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe]
Valeur Supprimée : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [D:\Downloads\SweetImSetup.exe]
Valeur Supprimée : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Documents and Settings\JAMIP\Local Settings\Temp\SweetIMReinstall\SweetImSetup.exe]
Clé Supprimée : HKCU\Software\bbrs_002.tb
Clé Supprimée : HKCU\Software\Blabbers
Clé Supprimée : HKCU\Software\caphyon
Clé Supprimée : HKCU\Software\InstallCore
Clé Supprimée : HKCU\Software\mysearchdial
Clé Supprimée : HKCU\Software\SearchCore for Browsers
Clé Supprimée : HKLM\Software\InstallCore
Clé Supprimée : HKLM\Software\mysearchdial
Clé Supprimée : HKLM\Software\Uniblue
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\mysearchdial
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ZoneAlarm LTD Toolbar
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{C2F8CA82-2BD9-4513-B2D1-08A47914C1DA}_is1
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\mysearchdial

***** [ Navigateurs ] *****

-\\ Internet Explorer v8.0.6001.18702

Paramètre Restauré : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Paramètre Restauré : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]

*************************

AdwCleaner[R0].txt - [7854 octets] - [05/03/2014 08:11:12]
AdwCleaner[S0].txt - [7459 octets] - [05/03/2014 08:46:08]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [7519 octets] ##########


HJ:
Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 08:55:16, on 05/03/2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
CHROME: 33.0.1750.146

Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Fichiers communs\EPSON\EPW!3 SSRP\E_S50ST7.EXE
C:\Program Files\Fichiers communs\EPSON\EPW!3 SSRP\E_S50RP7.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Cisco\Cisco Secure Desktop\Storage.exe
C:\Program Files\CheckPoint\ZoneAlarm\ZAPrivacyService.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Program Files\PrtScr\PrtScr.exe
C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe
C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Documents and Settings\JAMIP\Local Settings\Application Data\Akamai\netsession_win.exe
C:\Documents and Settings\JAMIP\Local Settings\Application Data\Akamai\netsession_win.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Documents and Settings\JAMIP\Application Data\Dropbox\bin\Dropbox.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrv.exe
C:\Documents and Settings\JAMIP\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\JAMIP\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
D:\Downloads\HijackThis (1).exe
C:\Documents and Settings\JAMIP\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O4 - HKLM\..\Run: [ZoneAlarm] "C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre7\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Fichiers communs\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [PrtScr by FireStarter] C:\Program Files\PrtScr\PrtScr.exe /Tray
O4 - HKCU\..\Run: [NokiaSuite.exe] C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe -tray
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_064A0CF039E09F6657A757F50755262F] "C:\Documents and Settings\JAMIP\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\JAMIP\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Documents and Settings\JAMIP\Local Settings\Application Data\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user')
O4 - Startup: Dropbox.lnk = C:\Documents and Settings\JAMIP\Application Data\Dropbox\bin\Dropbox.exe
O4 - Global Startup: Microsoft Office Outlook.lnk = C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE
O4 - Global Startup: Nouveau Document texte.txt
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre7\bin\jp2iexp.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre7\bin\jp2iexp.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O16 - DPF: {2AB1C516-6654-4D3A-B3D6-2185BBCEB409} - https://wastis-eu.st.com/+CSCOL+/csvrloader32.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/microso ... 9953423984
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 9953410343
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: C-DillaCdaC11BA - C-Dilla Ltd - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: EPSON V5 Service4(04) (EPSON_EB_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Fichiers communs\EPSON\EPW!3 SSRP\E_S50ST7.EXE
O23 - Service: EPSON V3 Service4(04) (EPSON_PM_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Fichiers communs\EPSON\EPW!3 SSRP\E_S50RP7.EXE
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: VIA Karaoke digital mixer Service (KaraokeService) - VIA Technologies, Inc. - C:\WINDOWS\system32\KaraokeSer.exe
O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: ForceWare IP service (nSvcIp) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\WINDOWS\system32\IoctlSvc.exe
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: Cisco Systems Secure Desktop (TwingoStorageService) - Cisco Systems, Inc. - C:\Program Files\Cisco\Cisco Secure Desktop\Storage.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe
O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe
O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe
O23 - Service: ZoneAlarm Privacy Service (ZAPrivacyService) - Check Point Software Technologies, Ltd. - C:\Program Files\CheckPoint\ZoneAlarm\ZAPrivacyService.exe

--
End of file - 10411 bytes

Avatar de l’utilisateur
SkyTech
Geek à longue barbe
Geek à longue barbe
Messages : 35604
Inscription : 03 août 2008 14:52
Localisation : Picardie (80)

Re: PC lent et bizarre

Message par SkyTech »

Bonjour,

Relance AdwCleaner et prends Désinstaller.


Relance HijackThis (clic droit dessus, Exécuter en tant qu'administrateur), coche ces lignes en rouge et clic sur Fix checked.

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Fichiers communs\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [PrtScr by FireStarter] C:\Program Files\PrtScr\PrtScr.exe /Tray
O4 - HKCU\..\Run: [NokiaSuite.exe] C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe -tray
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_064A0CF039E09F6657A757F50755262F] "C:\Documents and Settings\JAMIP\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\JAMIP\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Documents and Settings\JAMIP\Local Settings\Application Data\Akamai\netsession_win.exe"
O4 - Startup: Dropbox.lnk = C:\Documents and Settings\JAMIP\Application Data\Dropbox\bin\Dropbox.exe


---

Menu démarrer, exécuter, tape services.msc, entrée

Dans la fenêtre qui s'ouvre cherche :

Apple Mobile Device
C-DillaCdaC11BA
Canon Camera Access Library 8
EPSON V5 Service4(04)
EPSON V3 Service4(04)
ForceWare Intelligent Application Manager
InstallDriver Table Manager
VIA Karaoke digital mixer Service
NBService
ForceWare IP service
NVIDIA Update Service Daemon
PLFlash DeviceIoControl Service
ServiceLayer
Skype Updater


Double clique dessus, dans type de démarrage mets manuel.

Redémarre et poste un nouveau rapport HijackThis.

Comment se comporte le PC ?

PatMalek
Informaticien
Informaticien
Messages : 360
Inscription : 13 juin 2007 16:00

Re: PC lent et bizarre

Message par PatMalek »

Pas mal de services cités étaient déjà en manuel.
J'ai laissé canon car besoin qu'il se connecte dès que je branche mon appareil photo
Le PC a l'air bien, faut que je vois qq jours avant de me rendre bien compte.

voici le rapport:
Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 08:30:12, on 06/03/2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
CHROME: 33.0.1750.146

Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Cisco\Cisco Secure Desktop\Storage.exe
C:\Program Files\CheckPoint\ZoneAlarm\ZAPrivacyService.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE
D:\Downloads\HijackThis (1).exe

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O4 - HKLM\..\Run: [ZoneAlarm] "C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre7\bin\jusched.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user')
O4 - Global Startup: Microsoft Office Outlook.lnk = C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE
O4 - Global Startup: TODO.txt
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre7\bin\jp2iexp.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre7\bin\jp2iexp.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O16 - DPF: {2AB1C516-6654-4D3A-B3D6-2185BBCEB409} - https://wastis-eu.st.com/+CSCOL+/csvrloader32.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/microso ... 9953423984
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 9953410343
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: C-DillaCdaC11BA - C-Dilla Ltd - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: EPSON V5 Service4(04) (EPSON_EB_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Fichiers communs\EPSON\EPW!3 SSRP\E_S50ST7.EXE
O23 - Service: EPSON V3 Service4(04) (EPSON_PM_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Fichiers communs\EPSON\EPW!3 SSRP\E_S50RP7.EXE
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: VIA Karaoke digital mixer Service (KaraokeService) - VIA Technologies, Inc. - C:\WINDOWS\system32\KaraokeSer.exe
O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: ForceWare IP service (nSvcIp) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\WINDOWS\system32\IoctlSvc.exe
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: Cisco Systems Secure Desktop (TwingoStorageService) - Cisco Systems, Inc. - C:\Program Files\Cisco\Cisco Secure Desktop\Storage.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe
O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe
O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe
O23 - Service: ZoneAlarm Privacy Service (ZAPrivacyService) - Check Point Software Technologies, Ltd. - C:\Program Files\CheckPoint\ZoneAlarm\ZAPrivacyService.exe

--
End of file - 7882 bytes

Avatar de l’utilisateur
SkyTech
Geek à longue barbe
Geek à longue barbe
Messages : 35604
Inscription : 03 août 2008 14:52
Localisation : Picardie (80)

Re: PC lent et bizarre

Message par SkyTech »

OK j'attends ton retour :)

PatMalek
Informaticien
Informaticien
Messages : 360
Inscription : 13 juin 2007 16:00

Re: PC lent et bizarre

Message par PatMalek »

Bon, j'ai encore ma zone de lancement rapide (dans la barre d'outil en bas à gauche) qui a disparu.
A chaque fois je dois la réafficher et la réorganiser, c'est très pénible.
Je ne comprends pas

Avatar de l’utilisateur
SkyTech
Geek à longue barbe
Geek à longue barbe
Messages : 35604
Inscription : 03 août 2008 14:52
Localisation : Picardie (80)

Re: PC lent et bizarre

Message par SkyTech »

Bonjour,

Solution ici, à tester.

Répondre

Revenir à « Accélérer Windows et problème de lenteur PC »