Bonjour à toutes & tous et aux "désinfectionneurs" en particulier, avec remerciements anticipés pour leur aide & conseils.
Quelques lenteurs dans le chargement des programmes au départ et dans l'affichage. Après avoir lu les recommandations au sujet de "mon PC rame" dans Libellules et exécuté certaines opérations, pas de changement.
Avec Aida32 sous carte mère / BIOS une recommandation : mettre le bios à jour par ce message : Problèmes et suggestions : Suggestion Le BIOS système a plus de 2 ans. Mettez-le à jour si nécessaire. Mais après avoir lu les diverses rubriques à ce sujet je ne pense pas que cela soit nécessaire.
Alors, svp, une petite analyse en premier avec HJT pour voir merci :
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 05:53:39, on 26.06.2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16850)
Boot mode: Normal
Running processes:
E:\WINDOWS\System32\smss.exe
E:\WINDOWS\system32\winlogon.exe
E:\WINDOWS\system32\services.exe
E:\WINDOWS\system32\lsass.exe
E:\WINDOWS\system32\svchost.exe
E:\Program Files\Panda Software\Panda Internet Security 2007\pavsrv51.exe
E:\Program Files\Panda Software\Panda Internet Security 2007\AVENGINE.EXE
E:\WINDOWS\system32\svchost.exe
E:\Program Files\Panda Software\Panda Internet Security 2007\TPSrv.exe
E:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
E:\WINDOWS\Explorer.EXE
E:\WINDOWS\system32\CTHELPER.EXE
E:\LOGITECH ITOUCH\MouseWare\system\em_exec.exe
E:\Program Files\Panda Software\Panda Internet Security 2007\APVXDWIN.EXE
E:\WINDOWS\system32\spoolsv.exe
D:\00 - FLASH 32 - XP 2006\Flash32.exe
E:\Program Files\Java\jre6\bin\jusched.exe
E:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
E:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
E:\Program Files\Google\Update\GoogleUpdate.exe
E:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe
E:\WINDOWS\system32\ctfmon.exe
E:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
E:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
E:\WINDOWS\system32\CAPRPCSK.EXE
E:\Z - NOUVELLE INSTALL XP\HDD LIFE - EX\HDDlife.exe
E:\Program Files\Panda Software\Panda Internet Security 2007\PsCtrls.exe
E:\Program Files\Panda Software\Panda Internet Security 2007\PavFnSvr.exe
G:\X - DESK 95S\XDESK95.EXE
D:\022-WE~1\Webshots\Webshots.scr
E:\Program Files\Panda Software\Panda Internet Security 2007\AntiSpam\pskmssvc.exe
e:\program files\panda software\panda internet security 2007\firewall\PSHOST.EXE
E:\WINDOWS\system32\spool\drivers\w32x86\3\CAPPSWK.EXE
E:\Program Files\Panda Software\Panda Internet Security 2007\psimsvc.exe
C:\0-REFLECT COPY DISC IMAGE\ReflectService.exe
E:\WINDOWS\system32\svchost.exe
E:\WINDOWS\System32\TUProgSt.exe
E:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
E:\Program Files\Panda Software\Panda Internet Security 2007\SRVLOAD.EXE
E:\WINDOWS\System32\svchost.exe
E:\Program Files\Panda Software\Panda Internet Security 2007\WebProxy.exe
E:\WINDOWS\system32\wuauclt.exe
E:\Program Files\Panda Software\Panda Internet Security 2007\PavBckPT.exe
G:\BXNEWF~1\BXNEWF~1\bxExpHelper.exe
E:\WINDOWS\system32\ntvdm.exe
E:\Program Files\Mozilla Firefox\firefox.exe
E:\Program Files\Mozilla Thunderbird\thunderbird.exe
G:\AIDA 32\AIDA32 - Personal System Information\aida32.bin
E:\Z - NOUVELLE INSTALL XP\HIJACKJTHIS 2008 04 13\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://webmail.infomaniak.ch/login.php
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://webmail.infomaniak.ch/login.php
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - E:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - E:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - (no file)
O2 - BHO: bxNewFolder - {51C8BCA8-2524-4523-BF09-738C4EEBFC58} - G:\BXNEWF~1\BXNEWF~1\BXNEWF~1.DLL
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - E:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - E:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Copernic Agent - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} - E:\Z-NOUV~1\COPERN~1\COPERN~1\COPERN~1.DLL
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - H:\VEOH VIDEO\Veoh\Plugins\reg\VeohToolbar.dll
O3 - Toolbar: Veoh Web Player Video Finder - {0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - E:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - E:\Program Files\AskBarDis\bar\bin\askBar.dll
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [CAPON] E:\WINDOWS\system32\Spool\Drivers\w32x86\3\CAPONN.EXE
O4 - HKLM\..\Run: [Ptipbmf] "rundll32.exe" ptipbmf.dll,SetWriteCacheMode
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [APVXDWIN] "E:\Program Files\Panda Software\Panda Internet Security 2007\APVXDWIN.EXE" /s
O4 - HKLM\..\Run: [SCANINICIO] "E:\Program Files\Panda Software\Panda Internet Security 2007\Inicio.exe"
O4 - HKLM\..\Run: [StartCCC] "E:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [Flash32] D:\00 - FLASH 32 - XP 2006\Flash32.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "E:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "E:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [TkBellExe] "E:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [ctfmon.exe] E:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [SAFE8] "F:\STEGANOS SAFES 8 WIN XP - 2007 09 02\SAFE8.exe" -firstboot (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [SAFE8] "F:\STEGANOS SAFES 8 WIN XP - 2007 09 02\SAFE8.exe" -firstboot (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\ctfmon.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\ctfmon.exe (User 'Default user')
O4 - Startup: HDDlife.lnk = E:\Z - NOUVELLE INSTALL XP\HDD LIFE - EX\HDDlife.exe
O4 - Startup: Webshots.lnk = D:\022 - WEBSHOTS FOR XP - 2006\Webshots\Launcher.exe
O4 - Startup: XDESK95.lnk = ?
O8 - Extra context menu item: &Clean Traces - E:\Z - NOUVELLE INSTALL XP\DAP DOWNLOAD ACCELERATOR 2007 01 11\DAP\Privacy Package\dapcleanerie.htm
O8 - Extra context menu item: &Download with &DAP - E:\Z - NOUVELLE INSTALL XP\DAP DOWNLOAD ACCELERATOR 2007 01 11\DAP\dapextie.htm
O8 - Extra context menu item: Chercher avec Copernic Agent - res://E:\Z - NOUVELLE INSTALL XP\C O P E R N I C\Copernic Agent\CopernicAgentExt.rdl/INTEGRATION_MENU_SEARCHEXT
O8 - Extra context menu item: Download &all with DAP - E:\Z - NOUVELLE INSTALL XP\DAP DOWNLOAD ACCELERATOR 2007 01 11\DAP\dapextie2.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://E:\Z-OFFI~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - E:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - E:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - E:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - E:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - E:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windows ... 7702637781
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 9551891031
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - E:\LOGITECH ITOUCH\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O23 - Service: a2AntiMalware - - (no file)
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - E:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - E:\Program Files\Fichiers communs\Acronis\Schedule2\schedul2.exe
O23 - Service: Apple Mobile Device - Apple Inc. - E:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: ATI Smart - Unknown owner - E:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Service Google Update (gupdate1c9ae9620415610) (gupdate1c9ae9620415610) - Google Inc. - E:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - E:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - E:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Panda Software Controller - Panda Software International - E:\Program Files\Panda Software\Panda Internet Security 2007\PsCtrls.exe
O23 - Service: Panda Function Service (PAVFNSVR) - Panda Software International - E:\Program Files\Panda Software\Panda Internet Security 2007\PavFnSvr.exe
O23 - Service: Panda anti-virus service (PAVSRV) - Panda Software International - E:\Program Files\Panda Software\Panda Internet Security 2007\pavsrv51.exe
O23 - Service: Pml Driver HPZ12 - HP - E:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Panda Antispam Engine (pmshellsrv) - Panda Software International - E:\Program Files\Panda Software\Panda Internet Security 2007\AntiSpam\pskmssvc.exe
O23 - Service: Panda Host Service (PSHost) - Panda Software International - e:\program files\panda software\panda internet security 2007\firewall\PSHOST.EXE
O23 - Service: Panda IManager Service (PSIMSVC) - Panda Software International - E:\Program Files\Panda Software\Panda Internet Security 2007\psimsvc.exe
O23 - Service: Macrium Reflect Image Mounting Service (ReflectService) - Unknown owner - C:\0-REFLECT COPY DISC IMAGE\ReflectService.exe
O23 - Service: Panda TPSrv (TPSrv) - Panda Software International - E:\Program Files\Panda Software\Panda Internet Security 2007\TPSrv.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - E:\WINDOWS\System32\TuneUpDefragService.exe
O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - E:\WINDOWS\System32\TUProgSt.exe
--
End of file - 11808 bytes
Pour complément : Programmes au démarrage (je ne sais pas si c'est utile, dans tous les cas je ne vois que des programmes que j'utilise en permanence) :
Elément,Valeur,Section,Enabled,Description,Company
"Adobe Reader Speed Launcher",""E:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"","Registre - Démarrage machine","1","Adobe Acrobat SpeedLauncher (Adobe Acrobat)","Adobe Systems Incorporated"
"APVXDWIN",""E:\Program Files\Panda Software\Panda Internet Security 2007\APVXDWIN.EXE" /s","Registre - Démarrage machine","1","Platinum permanent protection (Panda Internet Security 2007)","Panda Software International"
"CAPON","E:\WINDOWS\system32\Spool\Drivers\w32x86\3\CAPONN.EXE","Registre - Démarrage machine","1","Canon Advanced Printing Technology Printer Driver (Canon Advanced Printing Technology)","CANON INC."
"CDBurn","{fbeb8a05-beee-4442-804e-409d6c4515e9}|%SystemRoot%\system32\SHELL32.dll","Registre - Machine ShellServiceObjects","1","DLL commune du shell Windows (Système d'exploitation Microsoft® Windows®)","Microsoft Corporation"
"ctfmon.exe","E:\WINDOWS\system32\ctfmon.exe","Registre - Démarrage utilisateur courant","1","CTF Loader (Microsoft® Windows® Operating System)","Microsoft Corporation"
"CTFMON.EXE","E:\WINDOWS\system32\ctfmon.exe","Registre - Démarrage utilisateur par défaut","1","CTF Loader (Microsoft® Windows® Operating System)","Microsoft Corporation"
"CTHelper","CTHELPER.EXE","Registre - Démarrage machine","1","CtHelper Application","Creative Technology Ltd"
"Flash32","D:\00 - FLASH 32 - XP 2006\Flash32.exe","Registre - Démarrage machine","1","Flash 32 (Logipole Flash 32)","Jean Piquemal"
"HDDlife.lnk","E:\Z - NOUVELLE INSTALL XP\HDD LIFE - EX\HDDlife.exe","Démarrage - Utilisateur courant","1","HDDlife executable file (HDDlife)","BinarySense, Ltd."
"Logitech Utility","Logi_MwX.Exe","Registre - Démarrage machine","1","Logitech Launcher Application (MouseWare)","Logitech Inc."
"PostBootReminder","{7849596a-48ea-486e-8937-a2a3009f31a9}|%SystemRoot%\system32\SHELL32.dll","Registre - Machine ShellServiceObjects","1","DLL commune du shell Windows (Système d'exploitation Microsoft® Windows®)","Microsoft Corporation"
"Ptipbmf",""rundll32.exe" ptipbmf.dll,SetWriteCacheMode","Registre - Démarrage machine","1","ptipbmf DLL (fasttraktype Dynamic Link Library)","Promise Technology, Inc."
"SCANINICIO",""E:\Program Files\Panda Software\Panda Internet Security 2007\Inicio.exe"","Registre - Démarrage machine","1","Inicio Programado (Panda Platinum 2006 Internet Security)","Panda Software International"
"Shell","Explorer.exe","Registre - Machine Shell Value","1","Explorateur Windows (Système d'exploitation Microsoft® Windows®)","Microsoft Corporation"
"StartCCC",""E:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"","Registre - Démarrage machine","1","",""
"SunJavaUpdateSched",""E:\Program Files\Java\jre6\bin\jusched.exe"","Registre - Démarrage machine","1","Java(TM) Platform SE binary (Java(TM) Platform SE 6 U11)","Sun Microsystems, Inc."
"System","","Registre - Machine System Value","1","",""
"SysTray","{35CEC8A3-2BE6-11D2-8773-92E220524153}|E:\WINDOWS\system32\stobject.dll","Registre - Machine ShellServiceObjects","1","Objet du service d'environnement Systray (Système d'exploitation Microsoft® Windows®)","Microsoft Corporation"
"TkBellExe",""E:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot","Registre - Démarrage machine","1","RealNetworks Scheduler (RealPlayer (32-bit) )","RealNetworks, Inc."
"Userinit","E:\WINDOWS\system32\userinit.exe,","Registre - Machine Userinit Value","1","Application d'ouverture de session Userinit (Système d'exploitation Microsoft® Windows®)","Microsoft Corporation"
"VmApplet","rundll32 shell32,Control_RunDLL "sysdm.cpl"","Registre - Machine VmApplet Value","1","Application Système du Panneau de configuration (Système d'exploitation Microsoft® Windows®)","Microsoft Corporation"
"WebCheck","{E6FB5E20-DE35-11CF-9C87-00AA005127ED}|E:\WINDOWS\system32\webcheck.dll","Registre - Machine ShellServiceObjects","1","Web Site Monitor (Windows® Internet Explorer)","Microsoft Corporation"
"Webshots.lnk","D:\022 - WEBSHOTS FOR XP - 2006\Webshots\Launcher.exe /t","Démarrage - Utilisateur courant","1","",""
"WPDShServiceObj","{AAA288BA-9A4C-45B0-95D7-94D524869DB5}|E:\WINDOWS\system32\WPDShServiceObj.dll","Registre - Machine ShellServiceObjects","1","Windows Portable Device Shell Service Object (Microsoft® Windows® Operating System)","Microsoft Corporation"
"XDESK95.lnk","G:\X - DESK 95S\XDESK95.EXE","Démarrage - Utilisateur courant","1","Personal Time & Data Organizer","Applied Micros Pty Limited"
"","","Registre - Démarrage utilisateur courant","0","",
Grand merci !