Se connecter / S'enregistrer
Votre question

PC trés lent - help...

Tags :
  • Sécurité
Dernière réponse : dans Sécurité et virus
10 Décembre 2011 09:52:13

bonjour à toutes et à tous,
je déplace ici un sujet que j'avais d'abord mis dans "config PC" ... puis dans "système d'exploitation" ... et enfin ici en espérant avoir plus de chances - je fais ci dessous un copier/coller de mes messages.
(je tâtonne maladroitement sans savoir ou poster le sujet en fait - désolé)

merci et à bientôt
ber32
------------------
1er post:
mon ordinateur est très lent depuis quelques temps - j'ai procédé à un nettoyage que je fais d'habitude en pareil situation (Ccleaner, Ad remover, défragmentation, scan avec antivir et spybot) mais je pense qu'il faut une intervention plus méthodique dans la mesure ou le ralentissement persiste...
Merci pour vos conseils.

ma configuration:
- netbook ACER AspireOne D255
- intel(R) Atom(TM), 1.66GHz, 0,99 Go de ram, CPU N450
- windows XP Home pack 3

2° post:
(...) dans l'attente j'ai vu un tuto avec OTL :
"Télécharge OTL (de OldTimer) sur ton Bureau- Double-clique sur OTL pour le lancer (Sous Vista/Win7, il faut cliquer droit sur OTL et choisir Exécuter en tant qu'administrateur) - Une fenêtre apparaît. Dans la section Output en haut de cette fenêtre, coche Minimal Output. Coche également les cases à côté de LOP Check et Purity Check. Enfin, clique sur le bouton Run Scan. Le scan ne prendra pas beaucoup de temps.
Une fois l'analyse terminée, deux fenêtres vont s'ouvrir dans le Bloc-notes : OTL.txt et Extras.txt. Ils se trouvent au même endroit que OTL (donc par défaut sur le Bureau)"

je mets ci dessous les résultats du scan ....

Autres pages sur : tres lent help

10 Décembre 2011 09:52:58

voici le rapport obtenu avec OTL - si quelqu'un a un conseil je le remercie d'avance
------------------

OTL logfile created on: 06/12/2011 19:35:26 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\Bernard\Bureau
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

1013,02 Mb Total Physical Memory | 215,68 Mb Available Physical Memory | 21,29% Memory free
2,38 Gb Paging File | 0,57 Gb Available in Paging File | 24,11% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 149,05 Gb Total Space | 104,02 Gb Free Space | 69,79% Space Free | Partition Type: NTFS

Computer Name: ACER-139C7E1 | User Name: Bernard | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Documents and Settings\Bernard\Bureau\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe (Lavasoft Limited)
PRC - C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe (Lavasoft Limited)
PRC - C:\Program Files\Nitro PDF\Reader 2\NitroPDFReaderDriverService2.exe (Nitro PDF Software)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Program Files\Uniblue\DriverScanner\dsmonitor.exe (Uniblue Systems Limited)
PRC - C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
PRC - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.)
PRC - C:\Program Files\Orange\mes contenus - mon disque\mounter.exe (F-Secure)
PRC - C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
PRC - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
PRC - C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
PRC - C:\Program Files\Launch Manager\dsiwmis.exe (Dritek System Inc.)
PRC - C:\Program Files\EgisTec MyWinLocker\x86\MWLService.exe (Egis Technology Inc.)
PRC - C:\Program Files\Acer\Acer VCM\RS_Service.exe (Acer Incorporated)
PRC - C:\Program Files\Acer\Acer Updater\UpdaterService.exe (Acer Group)
PRC - C:\Program Files\Avira\AntiVir Desktop\avshadow.exe (Avira GmbH)
PRC - C:\Program Files\Fichiers communs\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation)
PRC - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe (Intel Corporation)
PRC - C:\Program Files\SuperCopier2\SuperCopier2.exe (SFX TEAM)
PRC - C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer Networking Limited)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Microsoft Private Folder 1.0\PrfldSvc.exe ()


========== Modules (No Company Name) ==========

MOD - C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
MOD - C:\Documents and Settings\All Users\Application Data\Lavasoft\Ad-Aware\Defs\thorax.aaw ()
MOD - C:\Program Files\Lavasoft\Ad-Aware\Viprebridge.dll ()
MOD - C:\Program Files\Lavasoft\Ad-Aware\Vipre.dll ()
MOD - C:\Program Files\Lavasoft\Ad-Aware\RPAPI.dll ()
MOD - C:\Documents and Settings\All Users\Application Data\Lavasoft\Ad-Aware\Defs\Extended\libMachoUniv.dll ()
MOD - C:\Documents and Settings\All Users\Application Data\Lavasoft\Ad-Aware\Defs\Extended\libBase64.dll ()
MOD - C:\Program Files\Mozilla Firefox\mozjs.dll ()
MOD - C:\Program Files\Avira\AntiVir Desktop\sqlite3.dll ()
MOD - C:\Program Files\Orange\mes contenus - mon disque\mes contenus - mon disque Context.dll ()
MOD - C:\WINDOWS\system32\custmon32.dll ()
MOD - C:\Program Files\Microsoft Private Folder 1.0\PrfldSvc.exe ()
MOD - C:\Program Files\WinRAR\RarExt.dll ()
MOD - C:\WINDOWS\system32\prnmnt.dll ()


========== Win32 Services (SafeList) ==========

SRV - (HidServ) -- File not found
SRV - (AppMgmt) -- File not found
SRV - (Lavasoft Ad-Aware Service) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe (Lavasoft Limited)
SRV - (NitroReaderDriverReadSpool2) -- C:\Program Files\Nitro PDF\Reader 2\NitroPDFReaderDriverService2.exe (Nitro PDF Software)
SRV - (AntiVirWebService) -- C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE (Avira GmbH)
SRV - (AntiVirService) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
SRV - (Apple Mobile Device) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.)
SRV - (DokanMounter) -- C:\Program Files\Orange\mes contenus - mon disque\mounter.exe (F-Secure)
SRV - (AntiVirSchedulerService) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
SRV - (DsiWMIService) -- C:\Program Files\Launch Manager\dsiwmis.exe (Dritek System Inc.)
SRV - (MWLService) -- C:\Program Files\EgisTec MyWinLocker\x86\MWLService.exe (Egis Technology Inc.)
SRV - (RS_Service) -- C:\Program Files\Acer\Acer VCM\RS_Service.exe (Acer Incorporated)
SRV - (Updater Service) -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe (Acer Group)
SRV - (osppsvc) -- C:\Program Files\Fichiers communs\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation)
SRV - (ose) -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (IAANTMON) Intel(R) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe (Intel Corporation)
SRV - (odserv) -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE (Microsoft Corporation)
SRV - (prfldsvc) -- C:\Program Files\Microsoft Private Folder 1.0\PrfldSvc.exe ()
SRV - (IDriverT) -- C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe (Macrovision Corporation)


========== Driver Services (SafeList) ==========

DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.)
DRV - (Monfilt) -- C:\WINDOWS\system32\drivers\Monfilt.sys (Creative Technology Ltd.)
DRV - (Ambfilt) -- C:\WINDOWS\system32\drivers\Ambfilt.sys (Creative)
DRV - (egxfilter) -- C:\WINDOWS\system32\drivers\egxfilter.sys ()
DRV - (AR5416) -- C:\WINDOWS\system32\drivers\athw.sys (Atheros Communications, Inc.)
DRV - (Lbd) -- C:\WINDOWS\system32\DRIVERS\Lbd.sys (Lavasoft AB)
DRV - (Lavasoft Kernexplorer) -- C:\Program Files\Lavasoft\Ad-Aware\kernexplorer.sys ()
DRV - (avipbb) -- C:\WINDOWS\system32\drivers\avipbb.sys (Avira GmbH)
DRV - (avgntflt) -- C:\WINDOWS\system32\drivers\avgntflt.sys (Avira GmbH)
DRV - (Dokan) -- C:\WINDOWS\system32\drivers\dokan.sys (Windows (R) Win 7 DDK provider)
DRV - (ssmdrv) -- C:\WINDOWS\system32\drivers\ssmdrv.sys (Avira GmbH)
DRV - (avgio) -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys (Avira GmbH)
DRV - (EUCR) -- C:\WINDOWS\system32\drivers\EUCR6SK.sys (ENE Technology Inc.)
DRV - (L1c) -- C:\WINDOWS\system32\drivers\l1c51x86.sys (Atheros Communications, Inc.)
DRV - (S6000KNT) -- C:\WINDOWS\system32\drivers\S6000KNT.sys (Windows (R) Win 7 DDK provider)
DRV - (epmntdrv) -- C:\WINDOWS\system32\epmntdrv.sys ()
DRV - (EuGdiDrv) -- C:\WINDOWS\system32\EuGdiDrv.sys ()
DRV - (PCAMPR5) -- C:\WINDOWS\system32\pcampr5.sys (Printing Communications Assoc., Inc. (PCAUSA))
DRV - (PCANDIS5) -- C:\WINDOWS\system32\pcandis5.sys (Printing Communications Assoc., Inc. (PCAUSA))
DRV - (mwlPSDVDisk) -- C:\WINDOWS\system32\drivers\mwlPSDVDisk.sys (Egis Incorporated.)
DRV - (mwlPSDFilter) -- C:\WINDOWS\system32\drivers\mwlPSDFilter.sys (Egis Incorporated.)
DRV - (mwlPSDNServ) -- C:\WINDOWS\system32\drivers\mwlPSDNserv.sys (Egis Incorporated.)
DRV - (Prvflder) -- C:\WINDOWS\system32\drivers\prvflder.sys (Windows (R) 2000 DDK provider)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search bar = http://search.msn.com/spbasic.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
IE - HKCU\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - No CLSID value found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "http://search.babylon.com/?babsrc=HP_ss&affID=100474&mn..."
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: C:\PROGRAM FILES\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nitropdf.com/NitroPDF: C:\Program Files\Nitro PDF\Reader 2\npnitromozilla.dll ( )
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Bernard\Local Settings\Application Data\Google\Update\1.3.21.53\npGoogleUpdate3.dll File not found
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Bernard\Local Settings\Application Data\Google\Update\1.3.21.53\npGoogleUpdate3.dll File not found

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/10/07 13:48:21 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/08/25 14:06:50 | 000,000,000 | ---D | M]

[2011/03/22 21:31:40 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Bernard\Application Data\Mozilla\Extensions
[2011/10/30 13:08:08 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Bernard\Application Data\Mozilla\Firefox\Profiles\f6ydca0a.default\extensions
[2011/03/25 13:57:16 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Bernard\Application Data\Mozilla\Firefox\Profiles\f6ydca0a.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011/09/18 14:40:53 | 000,000,000 | ---D | M] ("Xmarks") -- C:\Documents and Settings\Bernard\Application Data\Mozilla\Firefox\Profiles\f6ydca0a.default\extensions\foxmarks@kei.com
[2011/10/07 13:52:28 | 000,000,000 | ---D | M] (Zotero) -- C:\Documents and Settings\Bernard\Application Data\Mozilla\Firefox\Profiles\f6ydca0a.default\extensions\zotero@chnm.gmu.edu
[2011/06/20 09:34:30 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/10/02 12:15:54 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2011/04/05 10:54:57 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
() (No name found) -- C:\DOCUMENTS AND SETTINGS\BERNARD\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\F6YDCA0A.DEFAULT\EXTENSIONS\{5C655500-E712-41E7-9349-CE462F844B19}.XPI
() (No name found) -- C:\DOCUMENTS AND SETTINGS\BERNARD\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\F6YDCA0A.DEFAULT\EXTENSIONS\{64161300-E22B-11DB-8314-0800200C9A66}.XPI
() (No name found) -- C:\DOCUMENTS AND SETTINGS\BERNARD\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\F6YDCA0A.DEFAULT\EXTENSIONS\{9AA46F4F-4DC7-4C06-97AF-5035170634FE}.XPI
[2011/04/05 10:54:41 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011/10/07 13:48:20 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011/04/05 10:54:40 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2011/10/07 13:48:10 | 000,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml
[2011/10/07 13:48:10 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2011/10/07 13:48:10 | 000,001,822 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml
[2011/10/07 13:48:10 | 000,001,154 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml
[2011/10/07 13:48:10 | 000,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml
[2011/10/07 13:48:10 | 000,000,956 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:o  riginalQueryForSuggestion}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Bernard\Local Settings\Application Data\Google\Chrome\Application\11.0.696.68\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Java Deployment Toolkit 6.0.240.7 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U24 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.0.50917.0\npctrl.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Bernard\Local Settings\Application Data\Google\Chrome\Application\11.0.696.68\pdf.dll
CHR - plugin: Google Gears 0.5.33.0 (Enabled) = C:\Documents and Settings\Bernard\Local Settings\Application Data\Google\Chrome\Application\11.0.696.68\gears.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Bernard\Local Settings\Application Data\Google\Update\1.2.183.39\npGoogleOneClick8.dll
CHR - plugin: Windows Live\u00AE Photo Gallery (Enabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin

O1 HOSTS File: ([2008/04/14 13:00:00 | 000,000,790 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (CmjBrowserHelperObject Object) - {6FE6A929-59D1-4763-91AD-29B61CFFB35B} - C:\Program Files\Mindjet\MindManager 9\Mm8InternetExplorer.dll (Mindjet)
O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer Networking Limited)
O4 - HKCU..\Run: [SuperCopier2.exe] C:\Program Files\SuperCopier2\SuperCopier2.exe (SFX TEAM)
O4 - Startup: C:\Documents and Settings\Bernard\Menu Démarrer\Programmes\Démarrage\OneNote 2010 - Capture d’écran et lancement.lnk = C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: &Envoyer à OneNote - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O8 - Extra context menu item: Add to Evernote 4.0 - C:\Program Files\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041)
O8 - Extra context menu item: Download Video on This Page - C:\Program Files\Tomato\FLV Player\MDIEEx.dll (Tomato)
O8 - Extra context menu item: Download Video This Links To - C:\Program Files\Tomato\FLV Player\MDIEEx.dll (Tomato)
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html File not found
O9 - Extra Button: Download Video - {11F19C45-9675-488A-A8E0-8E8234DC245D} - C:\Program Files\Tomato\FLV Player\MDIEEx.dll (Tomato)
O9 - Extra 'Tools' menuitem : Download Video on This Page - {11F19C45-9675-488A-A8E0-8E8234DC245D} - C:\Program Files\Tomato\FLV Player\MDIEEx.dll (Tomato)
O9 - Extra Button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Envoyer à Mindjet MindManager - {2F72393D-2472-4F82-B600-ED77F354B7FF} - C:\Program Files\Mindjet\MindManager 9\Mm8InternetExplorer.dll (Mindjet)
O9 - Extra Button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: @C:\Program Files\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041)
O9 - Extra 'Tools' menuitem : @C:\Program Files\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041)
O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-wind... (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-wind... (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-wind... (Java Plug-in 1.6.0_24)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2E0D4AFD-86C1-4FB4-ACAF-E360572C96A6}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Acer\Acer VCM\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O22 - SharedTaskScheduler: {1984DD45-52CF-49cd-AB77-18F378FEA264} - FencesShellExt - C:\Program Files\Fences\FencesMenu.dll (Stardock)
O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Bernard\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Bernard\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/08/16 03:13:24 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{d588106c-c078-11e0-a3e3-5cac4c069ec0}\Shell - "" = AutoRun
O33 - MountPoints2\{d588106c-c078-11e0-a3e3-5cac4c069ec0}\Shell\AutoRun\command - "" = D:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/12/06 19:29:38 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Bernard\Bureau\OTL.exe
[2011/12/05 15:46:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernard\Application Data\Nitro PDF
[2011/12/05 15:43:22 | 000,026,408 | ---- | C] (Nitro PDF Software) -- C:\WINDOWS\System32\nitrolocalmon2.dll
[2011/12/05 15:43:22 | 000,017,704 | ---- | C] (Nitro PDF Software) -- C:\WINDOWS\System32\nitrolocalui2.dll
[2011/12/05 15:43:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Nitro PDF
[2011/12/05 15:42:47 | 000,000,000 | ---D | C] -- C:\Program Files\Nitro PDF
[2011/12/05 15:42:23 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Nitro PDF
[2011/12/05 15:40:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernard\Application Data\Downloaded Installations
[2011/12/04 21:20:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Microsoft Office
[2011/12/04 17:48:15 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Bernard\Recent
[2011/11/29 10:20:25 | 000,000,000 | ---D | C] -- C:\Program Files\Cardiris 3 LE
[2011/11/29 10:16:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Applications I.R.I.S
[2011/11/29 10:16:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\LHSP
[2011/11/29 10:15:24 | 000,000,000 | ---D | C] -- C:\Program Files\IRISPen Executive 6
[2011/11/29 10:15:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernard\Menu Démarrer\Programmes\Applications I.R.I.S
[2011/11/20 12:37:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernard\Local Settings\Application Data\IsolatedStorage
[2011/11/20 12:32:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\NVivo 7
[2011/11/20 12:31:16 | 000,000,000 | ---D | C] -- C:\Program Files\QSR
[2011/11/20 12:31:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\NVivo 7 Samples
[2011/11/20 12:27:37 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Business Objects
[2011/11/20 12:25:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Microsoft SQL Server 2005
[2011/11/20 12:12:52 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 6.0
[2011/11/20 12:02:49 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server
[2011/11/20 11:57:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernard\Menu Démarrer\Programmes\Ad-Remover
[2011/11/20 11:57:40 | 000,000,000 | ---D | C] -- C:\Program Files\Ad-Remover
[2011/11/17 10:50:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernard\Bureau\schémas méthodo - web
[2011/11/16 14:05:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernard\Application Data\Bookin
[2011/11/10 12:01:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernard\Local Settings\Application Data\CUSTPDF Writer
[2011/11/10 12:01:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\SmartDraw 2007
[2011/11/10 12:00:44 | 000,000,000 | ---D | C] -- C:\Program Files\SmartDraw 2007
[2011/11/10 08:54:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernard\Application Data\SmartDraw
[2011/11/10 08:49:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernard\Menu Démarrer\Programmes\SmartDraw 2008
[2011/11/10 08:46:16 | 000,000,000 | ---D | C] -- C:\Program Files\SmartDraw 2008
[2011/11/10 08:43:49 | 000,000,000 | ---D | C] -- C:\Temp
[2011/11/08 08:52:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bernard\Menu Démarrer\Programmes\PAST Toolkit
[2011/11/08 08:52:04 | 000,000,000 | ---D | C] -- C:\Program Files\VennDiagramPlotter

========== Files - Modified Within 30 Days ==========

[2011/12/06 19:48:12 | 000,528,222 | ---- | M] (Bandoo Media Inc. ) -- C:\Documents and Settings\Bernard\Bureau\iLividSetupV1.exe.part
[2011/12/06 19:45:00 | 000,001,156 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-840360825-3833581854-4065617495-1006UA.job
[2011/12/06 19:30:45 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Bernard\Bureau\OTL.exe
[2011/12/06 19:19:16 | 000,001,058 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011/12/06 16:32:18 | 001,024,996 | ---- | M] () -- C:\Documents and Settings\Bernard\Bureau\Bau Castagnac - Rapport_DPVI.Amiraux Simplon.nov 2007.pdf
[2011/12/06 09:13:04 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2011/12/06 09:06:57 | 000,000,941 | ---- | M] () -- C:\Documents and Settings\Bernard\Menu Démarrer\Programmes\Démarrage\OneNote 2010 - Capture d’écran et lancement.lnk
[2011/12/06 09:02:52 | 000,000,486 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2011/12/06 09:02:40 | 000,000,466 | ---- | M] () -- C:\WINDOWS\tasks\SDMsgUpdate (SD).job
[2011/12/06 09:01:44 | 000,001,054 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011/12/06 09:01:41 | 000,000,264 | ---- | M] () -- C:\WINDOWS\tasks\DriverScanner.job
[2011/12/06 09:01:32 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/12/06 09:01:30 | 1062,301,696 | -HS- | M] () -- C:\hiberfil.sys
[2011/12/04 17:45:50 | 000,000,064 | ---- | M] () -- C:\WINDOWS\System32\rp_stats.dat
[2011/12/04 17:45:50 | 000,000,044 | ---- | M] () -- C:\WINDOWS\System32\rp_rules.dat
[2011/11/29 10:18:07 | 000,001,644 | ---- | M] () -- C:\Documents and Settings\Bernard\Bureau\IRISPen Executive 6.lnk
[2011/11/28 12:37:05 | 000,620,112 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
[2011/11/28 12:37:05 | 000,523,538 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/11/28 12:37:05 | 000,129,730 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
[2011/11/28 12:37:05 | 000,103,790 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/11/27 14:10:43 | 000,073,624 | -H-- | M] () -- C:\WINDOWS\System32\mlfcache.dat
[2011/11/26 22:17:23 | 000,026,624 | ---- | M] () -- C:\Documents and Settings\Bernard\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/11/26 19:59:50 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/11/25 08:45:00 | 000,001,104 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-840360825-3833581854-4065617495-1006Core.job
[2011/11/20 12:46:35 | 000,347,400 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/11/15 08:24:47 | 000,414,368 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2011/11/08 11:30:52 | 000,003,679 | ---- | M] () -- C:\Documents and Settings\Bernard\.ganttproject
[2011/11/08 11:07:35 | 000,000,792 | ---- | M] () -- C:\Documents and Settings\Bernard\Bureau\projet-processus.mmap_.lnk
[2011/11/08 10:43:31 | 000,010,141 | ---- | M] () -- C:\Documents and Settings\Bernard\Bureau\suivi pole inclusion.gan
[2011/11/06 20:41:40 | 000,001,552 | ---- | M] () -- C:\Documents and Settings\Bernard\Application Data\Microsoft\Internet Explorer\Quick Launch\CCleaner.lnk

========== Files Created - No Company Name ==========

[2011/12/06 19:28:32 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Bernard\Bureau\iLividSetupV1.exe
[2011/12/06 19:28:25 | 000,525,238 | ---- | C] () -- C:\Documents and Settings\Bernard\Bureau\iLividSetupV1.exe.part
[2011/12/06 16:32:08 | 001,024,996 | ---- | C] () -- C:\Documents and Settings\Bernard\Bureau\Bau Castagnac - Rapport_DPVI.Amiraux Simplon.nov 2007.pdf
[2011/12/05 15:43:16 | 000,001,872 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Nitro PDF Reader 2.lnk
[2011/11/29 10:18:07 | 000,001,644 | ---- | C] () -- C:\Documents and Settings\Bernard\Bureau\IRISPen Executive 6.lnk
[2011/11/27 14:10:43 | 000,073,624 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2011/11/10 12:01:01 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\custmon32.dll
[2011/11/10 08:54:25 | 000,000,466 | ---- | C] () -- C:\WINDOWS\tasks\SDMsgUpdate (SD).job
[2011/11/10 08:38:47 | 000,000,064 | ---- | C] () -- C:\WINDOWS\System32\rp_stats.dat
[2011/11/10 08:38:47 | 000,000,044 | ---- | C] () -- C:\WINDOWS\System32\rp_rules.dat
[2011/11/08 10:33:48 | 000,010,141 | ---- | C] () -- C:\Documents and Settings\Bernard\Bureau\suivi pole inclusion.gan
[2011/11/06 20:41:40 | 000,001,552 | ---- | C] () -- C:\Documents and Settings\Bernard\Application Data\Microsoft\Internet Explorer\Quick Launch\CCleaner.lnk
[2011/11/04 14:28:32 | 000,004,096 | -H-- | C] () -- C:\Documents and Settings\Bernard\Local Settings\Application Data\keyfile3.drm
[2011/11/01 15:08:19 | 000,140,800 | ---- | C] () -- C:\WINDOWS\System32\drivers\egxfilter.sys
[2011/09/28 15:49:33 | 000,000,198 | ---- | C] () -- C:\WINDOWS\Readiris.ini
[2011/07/21 16:38:53 | 000,000,091 | ---- | C] () -- C:\WINDOWS\BBW_INFO.INI
[2011/06/28 20:31:18 | 000,026,624 | ---- | C] () -- C:\Documents and Settings\Bernard\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/05/25 21:12:42 | 000,000,028 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2011/03/27 00:24:35 | 000,000,037 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2011/03/25 23:40:00 | 000,037,061 | ---- | C] () -- C:\Documents and Settings\Bernard\Application Data\Valeurs séparées par une virgule (Windows).ADR
[2011/03/25 23:35:45 | 000,037,057 | ---- | C] () -- C:\Documents and Settings\Bernard\Application Data\Valeurs séparées par une virgule (DOS).ADR
[2011/03/25 20:21:28 | 000,386,800 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2011/03/25 15:07:38 | 000,000,000 | ---- | C] () -- C:\WINDOWS\QuickInstall.INI
[2011/03/22 23:57:30 | 000,000,130 | ---- | C] () -- C:\Documents and Settings\Bernard\Local Settings\Application Data\fusioncache.dat
[2011/03/22 22:59:34 | 002,768,896 | ---- | C] () -- C:\WINDOWS\System32\GSDLL32.dll
[2011/03/22 22:59:34 | 000,126,976 | ---- | C] () -- C:\WINDOWS\System32\gswin32c.exe
[2011/03/22 22:59:34 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\PSConvert.exe
[2011/03/22 22:59:34 | 000,000,137 | ---- | C] () -- C:\WINDOWS\System32\psparam.ini
[2011/03/22 21:31:33 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2011/03/22 18:27:32 | 001,663,488 | ---- | C] () -- C:\WINDOWS\System32\BootMan.exe
[2011/03/22 18:27:32 | 000,014,848 | ---- | C] () -- C:\WINDOWS\System32\EuEpmGdi.dll
[2011/03/22 18:27:31 | 000,086,408 | ---- | C] () -- C:\WINDOWS\System32\setupempdrv03.exe
[2011/03/22 18:27:31 | 000,008,704 | ---- | C] () -- C:\WINDOWS\System32\epmntdrv.sys
[2011/03/22 18:27:31 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\EuGdiDrv.sys
[2011/03/22 18:07:41 | 000,000,154 | ---- | C] () -- C:\Documents and Settings\Bernard\Application Data\wklnhst.dat
[2010/09/02 20:50:43 | 000,076,288 | ---- | C] () -- C:\WINDOWS\System32\S6000DIF.dll
[2010/09/02 20:50:43 | 000,015,190 | ---- | C] () -- C:\WINDOWS\S6000Twn.ini
[2010/08/16 12:46:35 | 000,007,003 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2010/08/16 12:46:34 | 000,020,480 | ---- | C] () -- C:\WINDOWS\LauncheRyDiscCalc.exe
[2010/08/16 12:46:26 | 000,620,112 | ---- | C] () -- C:\WINDOWS\System32\perfh00C.dat
[2010/08/16 12:46:26 | 000,322,810 | ---- | C] () -- C:\WINDOWS\System32\perfi00C.dat
[2010/08/16 12:46:26 | 000,129,730 | ---- | C] () -- C:\WINDOWS\System32\perfc00C.dat
[2010/08/16 12:46:26 | 000,034,108 | ---- | C] () -- C:\WINDOWS\System32\perfd00C.dat
[2010/08/16 12:46:14 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2010/08/16 12:46:12 | 000,523,538 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2010/08/16 12:46:12 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2010/08/16 12:46:12 | 000,103,790 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2010/08/16 12:46:12 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2010/08/16 12:46:11 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2010/08/16 12:46:11 | 000,004,524 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2010/08/16 12:46:10 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2010/08/16 12:46:08 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2010/08/16 12:46:08 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2010/08/16 12:46:03 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2010/08/16 12:46:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
[2010/08/16 05:56:32 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2010/08/16 05:07:53 | 000,004,205 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010/08/16 05:07:05 | 000,347,400 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/08/16 04:47:33 | 000,361,808 | ---- | C] () -- C:\WINDOWS\EMCRI_E.dll
[2010/08/16 04:46:27 | 000,231,056 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTConvEQ.dat
[2010/08/16 04:46:27 | 000,030,856 | ---- | C] () -- C:\WINDOWS\System32\drivers\RtPCEE3.DAT
[2010/08/16 04:46:27 | 000,001,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\RtHdatEx.dat
[2010/08/16 04:46:27 | 000,000,712 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTEQEX0.dat
[2010/08/16 04:46:27 | 000,000,520 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTEQEX3.dat
[2010/08/16 04:46:27 | 000,000,520 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTEQEX2.dat
[2010/08/16 04:46:27 | 000,000,520 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTEQEX1.dat
[2010/08/16 04:46:27 | 000,000,520 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTEQEX0_old.dat
[2010/08/16 04:46:27 | 000,000,176 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTHDAEQ1.dat
[2010/08/16 04:46:27 | 000,000,024 | ---- | C] () -- C:\WINDOWS\System32\drivers\rtkhdaud.dat
[2010/08/16 03:16:29 | 000,032,768 | ---- | C] () -- C:\WINDOWS\AMove.exe
[2010/08/16 03:15:28 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2010/08/16 03:11:18 | 000,021,892 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010/08/16 03:10:22 | 000,003,712 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2008/05/26 22:23:32 | 000,016,698 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini
[2008/05/26 22:23:30 | 000,021,596 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini
[2008/05/26 22:23:28 | 000,016,036 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini
[2008/05/26 21:59:42 | 000,018,904 | ---- | C] () -- C:\WINDOWS\System32\structuredqueryschematrivial.bin
[2008/05/26 21:59:40 | 000,106,605 | ---- | C] () -- C:\WINDOWS\System32\structuredqueryschema.bin
[2001/10/28 02:42:30 | 000,116,224 | ---- | C] () -- C:\WINDOWS\System32\prnmnt.dll

========== LOP Check ==========

[2010/08/16 05:06:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Acer
[2011/03/27 13:15:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Clarus
[2010/08/16 05:26:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\EgisTec IPS
[2011/03/27 11:13:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\eSobi
[2011/03/22 20:04:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Mindjet
[2011/12/05 15:43:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Nitro PDF
[2011/04/22 17:07:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Orange
[2011/04/21 07:59:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Partner
[2011/11/01 11:29:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2011/10/17 23:55:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{3C0AACBF-B491-4BE5-BAF9-AA46E0629E42}(2)
[2011/08/25 14:08:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2011/03/27 01:32:18 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{A3A26C56-02C3-4F76-A033-12EE2FB52AE6}
[2011/12/04 17:40:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernard\Application Data\Bookin
[2011/12/05 15:40:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernard\Application Data\Downloaded Installations
[2011/10/20 11:53:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernard\Application Data\Dropbox
[2011/03/27 11:13:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernard\Application Data\eSobi
[2011/06/14 13:26:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernard\Application Data\Foxit Software
[2011/04/08 11:07:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernard\Application Data\IRISPen
[2011/11/29 10:18:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernard\Application Data\IrisPen6
[2011/03/26 23:51:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernard\Application Data\Leadertech
[2010/09/02 21:00:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernard\Application Data\Liteon
[2011/12/05 15:46:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernard\Application Data\Nitro PDF
[2011/11/10 08:58:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernard\Application Data\SmartDraw
[2011/03/27 01:32:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernard\Application Data\Stardock
[2011/09/13 09:17:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernard\Application Data\Template
[2011/04/20 21:12:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernard\Application Data\Tomato
[2011/03/27 01:32:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernard\Application Data\TroubleshootingLog
[2011/11/01 14:48:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernard\Application Data\Uniblue
[2011/04/20 21:08:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernard\Application Data\VDownloader
[2011/05/20 09:19:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernard\Application Data\VSRevoGroup
[2011/03/26 10:34:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernard\Application Data\Windows Desktop Search
[2011/04/08 11:20:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernard\Application Data\Windows Live Writer
[2011/03/30 14:37:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bernard\Application Data\Windows Search
[2011/12/06 09:02:52 | 000,000,486 | ---- | M] () -- C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job
[2011/12/06 09:01:41 | 000,000,264 | ---- | M] () -- C:\WINDOWS\Tasks\DriverScanner.job
[2011/12/06 09:02:40 | 000,000,466 | ---- | M] () -- C:\WINDOWS\Tasks\SDMsgUpdate (SD).job

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 143 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:CDFF58FE
@Alternate Data Stream - 121 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0B9176C0

< End of report >
10 Décembre 2011 11:23:11

pas de réponses : et je ne comprends pas pourquoi - je ne sais pas si ça vient de moi ou si le forum est inactif...
Bon, je mets quand même un rapport hijackthis ci dessous et après j'irai voir ailleurs pour chercher une solution (mais j'aimerai bien comprendre pourquoi ce silence - je dois "zapper" quelque chose...).

bon we,
ber32


10 Décembre 2011 11:24:06

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:13:46, on 10/12/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Orange\mes contenus - mon disque\mounter.exe
C:\Program Files\Launch Manager\dsiwmis.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Uniblue\DriverScanner\dsmonitor.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\Program Files\EgisTec MyWinLocker\x86\MWLService.exe
C:\Program Files\Nitro PDF\Reader 2\NitroPDFReaderDriverService2.exe
C:\Program Files\Microsoft Private Folder 1.0\PrfldSvc.exe
C:\Program Files\Acer\Acer VCM\RS_Service.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Acer\Acer Updater\UpdaterService.exe
C:\Program Files\SuperCopier2\SuperCopier2.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE
C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Microsoft Office\Office12\GROOVE.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\Bernard\Bureau\HiJackThis.exe
C:\WINDOWS\system32\SearchProtocolHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - (no file)
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: CmjBrowserHelperObject Object - {6FE6A929-59D1-4763-91AD-29B61CFFB35B} - C:\Program Files\Mindjet\MindManager 9\Mm8InternetExplorer.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKCU\..\Run: [SuperCopier2.exe] C:\Program Files\SuperCopier2\SuperCopier2.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: OneNote 2010 - Capture d’écran et lancement.lnk = C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE
O8 - Extra context menu item: &Envoyer à OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Add to Evernote 4.0 - res://C:\Program Files\Evernote\Evernote\EvernoteIE.dll/204
O8 - Extra context menu item: Download Video on This Page - res://C:\Program Files\Tomato\FLV Player\MDIEEx.dll/211
O8 - Extra context menu item: Download Video This Links To - res://C:\Program Files\Tomato\FLV Player\MDIEEx.dll/212
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
O8 - Extra context menu item: Tout télécharger avec BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: Télécharger avec BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O9 - Extra button: Download Video - {11F19C45-9675-488A-A8E0-8E8234DC245D} - res://C:\Program Files\Tomato\FLV Player\MDIEEx.dll/211 (file missing)
O9 - Extra 'Tools' menuitem: Download Video on This Page - {11F19C45-9675-488A-A8E0-8E8234DC245D} - res://C:\Program Files\Tomato\FLV Player\MDIEEx.dll/211 (file missing)
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: Envoyer à Mindjet MindManager - {2F72393D-2472-4F82-B600-ED77F354B7FF} - C:\Program Files\Mindjet\MindManager 9\Mm8InternetExplorer.dll
O9 - Extra button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @C:\Program Files\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra 'Tools' menuitem: @C:\Program Files\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll/206 (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Acer\Acer VCM\Skype4COM.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O22 - SharedTaskScheduler: FencesShellExt - {1984DD45-52CF-49cd-AB77-18F378FEA264} - C:\Program Files\Fences\FencesMenu.dll
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Avira AntiVir WebGuard (AntiVirWebService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: DokanMounter - F-Secure - C:\Program Files\Orange\mes contenus - mon disque\mounter.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files\Launch Manager\dsiwmis.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Service Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft Limited - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files\EgisTec MyWinLocker\x86\MWLService.exe
O23 - Service: NitroPDFReaderDriverCreatorReadSpool2 (NitroReaderDriverReadSpool2) - Nitro PDF Software - C:\Program Files\Nitro PDF\Reader 2\NitroPDFReaderDriverService2.exe
O23 - Service: Private Folder Service (prfldsvc) - Unknown owner - C:\Program Files\Microsoft Private Folder 1.0\PrfldSvc.exe
O23 - Service: Raw Socket Service (RS_Service) - Acer Incorporated - C:\Program Files\Acer\Acer VCM\RS_Service.exe
O23 - Service: Updater Service - Acer Group - C:\Program Files\Acer\Acer Updater\UpdaterService.exe

--
End of file - 11775 bytes
Tom's guide dans le monde
  • Allemagne
  • Italie
  • Irlande
  • Royaume Uni
  • Etats Unis
Suivre Tom's Guide
Inscrivez-vous à la Newsletter
  • ajouter à twitter
  • ajouter à facebook
  • ajouter un flux RSS