Ralentissement sous vista
tkotw
Messages postés
28
Statut
Membre
-
fse26 Messages postés 29 Statut Membre -
fse26 Messages postés 29 Statut Membre -
Bonjour à toutes et à tous,
Comme le titre l'indique j'ai d'énormes problèmes de ralentissement sous vista (oui je sais c'est du suicide d'avoir vista ;) ). En ouvrant la fenêtre de processus je vois que de multiples "svchost.exe" s'affichent prenant entre 60 mo et 5 mo (bien entendu impossible de les fermer définitivement). J'ai fait différentes analyses avec avira, et ad-aware rien... je nettoie le pc réguliérement avec ccleaner en 35 passes pour être sur que tout ce qui est inutile soit viré. Bref ça sent le trojan ou le virus ou je sais pas quoi et je suis bloqué. De plus, un étrange dossier "tracing" est apparu dans les documents, il comprend un dossier vide ainsi que un exécutable d'un pois de 0ko (mais bien sur) qui ne peut être suprrimé et l'antivirus dit que tout est normal...
J'ai 3gb de RAM donc ça suffit pour que vista tourne (a peu prés) normalement. Je suis sous un ordinateur portable qui n'a pas eu de problèmes jusqu'à maintenant. Mes connaissances en informatique étant très limitées je me permet de poster le rapport hijack this et de laisser mon problème à vos mains expertes!
Je veut préciser au niveau de ce rapport que les processus indiqués par hijackthis sont bien inférieurs à ceux affichés. ne sachant pas comment poster des imprimécran des processus je ne peut pas vous donner plus de précision. Merci d'avance pour vos réponses!
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:57:16, on 18/05/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18226)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Windows\System32\rundll32.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Program Files\Lavasoft\Ad-Aware\Ad-Aware.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://format.packardbell.com/cgi-bin/redirect/?country=FR&range=AD&phase=8&key=IESTART
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - (no file)
O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O3 - Toolbar: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - (no file)
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [Ad-Watch] C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - (no file)
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Unknown owner - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe (file missing)
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
Comme le titre l'indique j'ai d'énormes problèmes de ralentissement sous vista (oui je sais c'est du suicide d'avoir vista ;) ). En ouvrant la fenêtre de processus je vois que de multiples "svchost.exe" s'affichent prenant entre 60 mo et 5 mo (bien entendu impossible de les fermer définitivement). J'ai fait différentes analyses avec avira, et ad-aware rien... je nettoie le pc réguliérement avec ccleaner en 35 passes pour être sur que tout ce qui est inutile soit viré. Bref ça sent le trojan ou le virus ou je sais pas quoi et je suis bloqué. De plus, un étrange dossier "tracing" est apparu dans les documents, il comprend un dossier vide ainsi que un exécutable d'un pois de 0ko (mais bien sur) qui ne peut être suprrimé et l'antivirus dit que tout est normal...
J'ai 3gb de RAM donc ça suffit pour que vista tourne (a peu prés) normalement. Je suis sous un ordinateur portable qui n'a pas eu de problèmes jusqu'à maintenant. Mes connaissances en informatique étant très limitées je me permet de poster le rapport hijack this et de laisser mon problème à vos mains expertes!
Je veut préciser au niveau de ce rapport que les processus indiqués par hijackthis sont bien inférieurs à ceux affichés. ne sachant pas comment poster des imprimécran des processus je ne peut pas vous donner plus de précision. Merci d'avance pour vos réponses!
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:57:16, on 18/05/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18226)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Windows\System32\rundll32.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Program Files\Lavasoft\Ad-Aware\Ad-Aware.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://format.packardbell.com/cgi-bin/redirect/?country=FR&range=AD&phase=8&key=IESTART
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - (no file)
O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O3 - Toolbar: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - (no file)
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [Ad-Watch] C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - (no file)
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Unknown owner - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe (file missing)
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
A voir également:
- Ralentissement sous vista
- Ralentissement pc - Guide
- Windows vista - Télécharger - Divers Utilitaires
- Clé windows vista - Guide
- Windows Vista SP1 - Télécharger - Divers Utilitaires
- Pdf vista - Télécharger - PDF
4 réponses
L'analyse complète d'ad-aware venant de s'achever je vous ajoute le rapport obtenu... je sais pas si ça peut aider
Logfile created: 18/05/2009 14:15:22
Lavasoft Ad-Aware version: 8.0.4
Extended engine version: 8.1
User performing scan: Bastien
*********************** Definitions database information ***********************
Lavasoft definition file: 144.0
Extended engine definition file: 8.1
******************************** Scan results: *********************************
Scan profile name: Analyse complète (ID: full)
Objects scanned: 130520
Objects detected: 10
Type Detected
==========================
Processes.......: 0
Registry entries: 0
Hostfile entries: 0
Files...........: 0
Folders.........: 0
LSPs............: 0
Cookies.........: 10
Browser hijacks.: 0
MRU objects.....: 0
Removed items:
Description: *pointroll* Family Name: Cookies Clean status: Success Item ID: 408826 Family ID: 0
Description: *ads.pointroll* Family Name: Cookies Clean status: Success Item ID: 408927 Family ID: 0
Description: *pointroll* Family Name: Cookies Clean status: Success Item ID: 408826 Family ID: 0
Description: *ads.pointroll* Family Name: Cookies Clean status: Success Item ID: 408927 Family ID: 0
Description: *adserver* Family Name: Cookies Clean status: Success Item ID: 408737 Family ID: 0
Description: *adserv* Family Name: Cookies Clean status: Success Item ID: 408921 Family ID: 0
Description: *adserve* Family Name: Cookies Clean status: Success Item ID: 409020 Family ID: 0
Description: *doubleclick* Family Name: Cookies Clean status: Success Item ID: 408875 Family ID: 0
Description: *bs.serving-sys* Family Name: Cookies Clean status: Success Item ID: 408902 Family ID: 0
Description: *serving-sys* Family Name: Cookies Clean status: Success Item ID: 409130 Family ID: 0
Scan and cleaning complete: Finished correctly after 11023 seconds
*********************************** Settings ***********************************
Scan profile:
ID: full, enabled:1, value: Analyse complète
ID: scancriticalareas, enabled:1, value: true
ID: scanrunningapps, enabled:1, value: true
ID: scanregistry, enabled:1, value: true
ID: scanlsp, enabled:1, value: true
ID: scanads, enabled:1, value: true
ID: scanhostsfile, enabled:1, value: true
ID: scanmru, enabled:1, value: true
ID: scanbrowserhijacks, enabled:1, value: true
ID: scantrackingcookies, enabled:1, value: true
ID: closebrowsers, enabled:1, value: false
ID: folderstoscan, enabled:1, value: C:\
ID: scanrootkits, enabled:1, value: true
ID: usespywareheuristics, enabled:1, value: true
ID: extendedengine, enabled:0, value: true
ID: useheuristics, enabled:0, value: true
ID: heuristicslevel, enabled:0, value: mild, domain: medium,mild,strict
ID: filescanningoptions, enabled:1
ID: archives, enabled:1, value: true
ID: onlyexecutables, enabled:1, value: false
ID: skiplargerthan, enabled:1, value: 20480
Scan global:
ID: global, enabled:1
ID: addtocontextmenu, enabled:1, value: true
ID: playsoundoninfection, enabled:1, value: false
ID: soundfile, enabled:0, value: *to be filled in automatically*\alert.wav
Scheduled scan settings:
<Empty>
Update settings:
ID: updates, enabled:1
ID: launchthreatworksafterscan, enabled:1, value: normal, domain: normal,off,silently
ID: displaystatus, enabled:1, value: false
ID: deffiles, enabled:1, value: downloadandinstall, domain: dontcheck,downloadandinstall
ID: autodetectproxy, enabled:1, value: false
ID: useautoconfigscript, enabled:1, value: false
ID: autoconfigurl, enabled:0, value:
ID: useproxy, enabled:1, value: false
ID: proxyserver, enabled:0, value:
ID: softwareupdates, enabled:1, value: downloadandinstall, domain: dontcheck,downloadandinstall
ID: licenseandinfo, enabled:1, value: downloadandinstall, domain: dontcheck,downloadandinstall
ID: schedules, enabled:1, value: true
ID: updatedaily, enabled:1, value: Daily
ID: time, enabled:1, value: Mon May 18 03:32:00 2009
ID: frequency, enabled:1, value: daily, domain: daily,monthly,once,systemstart,weekly
ID: weekdays, enabled:1
ID: monday, enabled:1, value: false
ID: tuesday, enabled:1, value: false
ID: wednesday, enabled:1, value: false
ID: thursday, enabled:1, value: false
ID: friday, enabled:1, value: false
ID: saturday, enabled:1, value: false
ID: sunday, enabled:1, value: false
ID: monthly, enabled:1, value: 1, minvalue: 1, maxvalue: 31
ID: scanprofile, enabled:1, value:
ID: auto_deal_with_infections, enabled:1, value: false
ID: updateweekly, enabled:1, value: Weekly
ID: time, enabled:1, value: Mon May 18 03:32:00 2009
ID: frequency, enabled:1, value: weekly, domain: daily,monthly,once,systemstart,weekly
ID: weekdays, enabled:1
ID: monday, enabled:1, value: true
ID: tuesday, enabled:1, value: false
ID: wednesday, enabled:1, value: false
ID: thursday, enabled:1, value: false
ID: friday, enabled:1, value: false
ID: saturday, enabled:1, value: false
ID: sunday, enabled:1, value: false
ID: monthly, enabled:1, value: 1, minvalue: 1, maxvalue: 31
ID: scanprofile, enabled:1, value:
ID: auto_deal_with_infections, enabled:1, value: false
Appearance settings:
ID: appearance, enabled:1
ID: skin, enabled:1, value: default.egl, reglocation: HKEY_LOCAL_MACHINE\SOFTWARE\Lavasoft\Ad-Aware\Resource
ID: showtrayicon, enabled:1, value: true
ID: language, enabled:1, value: fr, reglocation: HKEY_LOCAL_MACHINE\SOFTWARE\Lavasoft\Ad-Aware\Language
Realtime protection settings:
ID: realtime, enabled:1
ID: processprotection, enabled:1, value: true
ID: registryprotection, enabled:0, value: true
ID: networkprotection, enabled:0, value: true
ID: loadatstartup, enabled:1, value: true
ID: usespywareheuristics, enabled:0, value: true
ID: extendedengine, enabled:0, value: true
ID: useheuristics, enabled:0, value: true
ID: heuristicslevel, enabled:0, value: strict, domain: medium,mild,strict
ID: infomessages, enabled:1, value: onlyimportant, domain: display,dontnotify,onlyimportant
****************************** System information ******************************
Computer name: GREIL
Processor name: Intel(R) Core(TM)2 Duo CPU T8100 @ 2.10GHz
Processor identifier: x86 Family 6 Model 23 Stepping 6
Raw info: processorarchitecture 0, processortype 586, processorlevel 6, processor revision 5894, number of processors 2
Physical memory available: 2312503296 bytes
Physical memory total: 3210420224 bytes
Virtual memory available: 2016116736 bytes
Virtual memory total: 2147352576 bytes
Memory load: 27%
Microsoft Windows Vista Home Premium Edition, 32-bit Service Pack 1 (build 6001)
Windows startup mode:
Running processes:
PID: 480 name: C:\Windows\System32\smss.exe owner: SYSTEM domain: AUTORITE NT
PID: 608 name: C:\Windows\System32\csrss.exe owner: SYSTEM domain: AUTORITE NT
PID: 660 name: C:\Windows\System32\wininit.exe owner: SYSTEM domain: AUTORITE NT
PID: 672 name: C:\Windows\System32\csrss.exe owner: SYSTEM domain: AUTORITE NT
PID: 708 name: C:\Windows\System32\services.exe owner: SYSTEM domain: AUTORITE NT
PID: 736 name: C:\Windows\System32\winlogon.exe owner: SYSTEM domain: AUTORITE NT
PID: 756 name: C:\Windows\System32\lsass.exe owner: SYSTEM domain: AUTORITE NT
PID: 768 name: C:\Windows\System32\lsm.exe owner: SYSTEM domain: AUTORITE NT
PID: 916 name: C:\Windows\System32\svchost.exe owner: SYSTEM domain: AUTORITE NT
PID: 996 name: C:\Windows\System32\svchost.exe owner: SERVICE RÉSEAU domain: AUTORITE NT
PID: 1040 name: C:\Windows\System32\svchost.exe owner: SYSTEM domain: AUTORITE NT
PID: 1124 name: C:\Windows\System32\svchost.exe owner: SERVICE LOCAL domain: AUTORITE NT
PID: 1152 name: C:\Windows\System32\svchost.exe owner: SYSTEM domain: AUTORITE NT
PID: 1164 name: C:\Windows\System32\svchost.exe owner: SYSTEM domain: AUTORITE NT
PID: 1300 name: C:\Windows\System32\SLsvc.exe owner: SERVICE RÉSEAU domain: AUTORITE NT
PID: 1420 name: C:\Windows\System32\svchost.exe owner: SERVICE LOCAL domain: AUTORITE NT
PID: 1552 name: C:\Windows\System32\svchost.exe owner: SERVICE RÉSEAU domain: AUTORITE NT
PID: 1704 name: C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe owner: SYSTEM domain: AUTORITE NT
PID: 1788 name: C:\Windows\System32\spoolsv.exe owner: SYSTEM domain: AUTORITE NT
PID: 1812 name: C:\Program Files\Avira\AntiVir Desktop\sched.exe owner: SYSTEM domain: AUTORITE NT
PID: 1824 name: C:\Windows\System32\svchost.exe owner: SERVICE LOCAL domain: AUTORITE NT
PID: 416 name: C:\Program Files\Avira\AntiVir Desktop\avguard.exe owner: SYSTEM domain: AUTORITE NT
PID: 908 name: C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe owner: SYSTEM domain: AUTORITE NT
PID: 900 name: C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe owner: SYSTEM domain: AUTORITE NT
PID: 1504 name: C:\Windows\System32\taskeng.exe owner: SYSTEM domain: AUTORITE NT
PID: 1392 name: C:\Windows\System32\IoctlSvc.exe owner: SYSTEM domain: AUTORITE NT
PID: 808 name: C:\Windows\System32\svchost.exe owner: SERVICE RÉSEAU domain: AUTORITE NT
PID: 1936 name: C:\Windows\System32\svchost.exe owner: SERVICE LOCAL domain: AUTORITE NT
PID: 364 name: C:\Windows\System32\svchost.exe owner: SYSTEM domain: AUTORITE NT
PID: 1480 name: C:\Windows\System32\SearchIndexer.exe owner: SYSTEM domain: AUTORITE NT
PID: 2360 name: C:\Windows\System32\wbem\unsecapp.exe owner: SYSTEM domain: AUTORITE NT
PID: 2472 name: C:\Windows\System32\wbem\WmiPrvSE.exe owner: SYSTEM domain: AUTORITE NT
PID: 3180 name: C:\Windows\System32\taskeng.exe owner: Bastien domain: Greil
PID: 3932 name: C:\Windows\System32\dwm.exe owner: Bastien domain: Greil
PID: 2848 name: C:\Windows\explorer.exe owner: Bastien domain: Greil
PID: 3988 name: C:\Program Files\Synaptics\SynTP\SynTPEnh.exe owner: Bastien domain: Greil
PID: 1324 name: C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe owner: Bastien domain: Greil
PID: 2384 name: C:\Program Files\Avira\AntiVir Desktop\avgnt.exe owner: Bastien domain: Greil
PID: 1560 name: C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe owner: Bastien domain: Greil
PID: 376 name: C:\Program Files\Windows Live\Messenger\msnmsgr.exe owner: Bastien domain: Greil
PID: 2740 name: C:\Windows\System32\rundll32.exe owner: Bastien domain: Greil
PID: 3396 name: C:\Windows\System32\SearchProtocolHost.exe owner: SYSTEM domain: AUTORITE NT
PID: 3688 name: C:\Windows\System32\SearchFilterHost.exe owner: SYSTEM domain: AUTORITE NT
PID: 2440 name: C:\Windows\System32\wuauclt.exe owner: Bastien domain: Greil
PID: 3608 name: C:\Program Files\CCleaner\CCleaner.exe owner: Bastien domain: Greil
PID: 1540 name: C:\Program Files\Lavasoft\Ad-Aware\Ad-Aware.exe owner: Bastien domain: Greil
Startup items:
Name: JMB36X IDE Setup
imagepath: C:\Windows\RaidTool\xInsIDE.exe
Name: SynTPEnh
imagepath: C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
Name: NvSvc
imagepath: RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
Name: IAAnotif
imagepath: "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
Name: avgnt
imagepath: "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
Name: Ad-Watch
imagepath: C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
Name: WebCheck
imagepath: {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
Name: {8C7461EF-2B13-11d2-BE35-3078302C2030}
imagepath: Component Categories cache daemon
Name:
imagepath: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
Bootexecute items:
Name:
imagepath: autocheck autochk *
Running services:
Name: AeLookupSvc
displayname: Expérience d’application
Name: AntiVirSchedulerService
displayname: Avira AntiVir Planificateur
Name: AntiVirService
displayname: Avira AntiVir Guard
Name: AudioEndpointBuilder
displayname: Générateur de points de terminaison du service Audio Windows
Name: Audiosrv
displayname: Audio Windows
Name: BFE
displayname: Moteur de filtrage de base
Name: BITS
displayname: Service de transfert intelligent en arrière-plan
Name: CryptSvc
displayname: Services de chiffrement
Name: DcomLaunch
displayname: Lanceur de processus serveur DCOM
Name: Dhcp
displayname: Client DHCP
Name: Dnscache
displayname: Client DNS
Name: DPS
displayname: Service de stratégie de diagnostic
Name: EapHost
displayname: Protocole EAP (Extensible Authentication Protocol)
Name: EMDMgmt
displayname: Service ReadyBoost
Name: Eventlog
displayname: Journal d’événements Windows
Name: EventSystem
displayname: Système d'événement COM+
Name: gpsvc
displayname: Client de stratégie de groupe
Name: hidserv
displayname: Accès du périphérique d'interface utilisateur
Name: IAANTMON
displayname: Intel(R) Matrix Storage Event Monitor
Name: IKEEXT
displayname: Modules de génération de clés IKE et AuthIP
Name: iphlpsvc
displayname: Assistance IP
Name: KeyIso
displayname: Isolation de clé CNG
Name: KtmRm
displayname: Service KtmRm pour Distributed Transaction Coordinator
Name: LanmanServer
displayname: Serveur
Name: LanmanWorkstation
displayname: Station de travail
Name: Lavasoft Ad-Aware Service
displayname: Lavasoft Ad-Aware Service
Name: lmhosts
displayname: Assistance NetBIOS sur TCP/IP
Name: MMCSS
displayname: Planificateur de classes multimédias
Name: MpsSvc
displayname: Pare-feu Windows
Name: Nero BackItUp Scheduler 3
displayname: Nero BackItUp Scheduler 3
Name: Netman
displayname: Connexions réseau
Name: netprofm
displayname: Service Liste des réseaux
Name: NlaSvc
displayname: Connaissance des emplacements réseau
Name: nsi
displayname: Service Interface du magasin réseau
Name: PcaSvc
displayname: Service de l’Assistant Compatibilité des programmes
Name: PLFlash DeviceIoControl Service
displayname: PLFlash DeviceIoControl Service
Name: PlugPlay
displayname: Plug-and-Play
Name: PolicyAgent
displayname: Agent de stratégie IPsec
Name: ProfSvc
displayname: Service de profil utilisateur
Name: ProtectedStorage
displayname: Emplacement protégé
Name: RpcSs
displayname: Appel de procédure distante (RPC)
Name: SamSs
displayname: Gestionnaire de comptes de sécurité
Name: Schedule
displayname: Planificateur de tâches
Name: seclogon
displayname: Ouverture de session secondaire
Name: SENS
displayname: Service de notification d’événements système
Name: ShellHWDetection
displayname: Détection matériel noyau
Name: slsvc
displayname: Licence du logiciel
Name: Spooler
displayname: Spouleur d'impression
Name: SSDPSRV
displayname: Découverte SSDP
Name: stisvc
displayname: Acquisition d'image Windows (WIA)
Name: SysMain
displayname: Superfetch
Name: TabletInputService
displayname: Service Panneau de saisie Tablet PC
Name: TermService
displayname: Services Terminal Server
Name: Themes
displayname: Thèmes
Name: TrkWks
displayname: Client de suivi de lien distribué
Name: UxSms
displayname: Gestionnaire de sessions du Gestionnaire de fenêtrage
Name: W32Time
displayname: Horloge Windows
Name: WdiSystemHost
displayname: Hôte système de diagnostics
Name: WebClient
displayname: WebClient
Name: WerSvc
displayname: Service de rapport d'erreurs Windows
Name: WinDefend
displayname: Windows Defender
Name: Winmgmt
displayname: Infrastructure de gestion Windows
Name: Wlansvc
displayname: Service de configuration automatique WLAN
Name: WPDBusEnum
displayname: Service Énumérateur d’appareil mobile
Name: wscsvc
displayname: Centre de sécurité
Name: WSearch
displayname: Windows Search
Name: wuauserv
displayname: Windows Update
Name: wudfsvc
displayname: Windows Driver Foundation - Infrastructure de pilote mode-utilisateur
Logfile created: 18/05/2009 14:15:22
Lavasoft Ad-Aware version: 8.0.4
Extended engine version: 8.1
User performing scan: Bastien
*********************** Definitions database information ***********************
Lavasoft definition file: 144.0
Extended engine definition file: 8.1
******************************** Scan results: *********************************
Scan profile name: Analyse complète (ID: full)
Objects scanned: 130520
Objects detected: 10
Type Detected
==========================
Processes.......: 0
Registry entries: 0
Hostfile entries: 0
Files...........: 0
Folders.........: 0
LSPs............: 0
Cookies.........: 10
Browser hijacks.: 0
MRU objects.....: 0
Removed items:
Description: *pointroll* Family Name: Cookies Clean status: Success Item ID: 408826 Family ID: 0
Description: *ads.pointroll* Family Name: Cookies Clean status: Success Item ID: 408927 Family ID: 0
Description: *pointroll* Family Name: Cookies Clean status: Success Item ID: 408826 Family ID: 0
Description: *ads.pointroll* Family Name: Cookies Clean status: Success Item ID: 408927 Family ID: 0
Description: *adserver* Family Name: Cookies Clean status: Success Item ID: 408737 Family ID: 0
Description: *adserv* Family Name: Cookies Clean status: Success Item ID: 408921 Family ID: 0
Description: *adserve* Family Name: Cookies Clean status: Success Item ID: 409020 Family ID: 0
Description: *doubleclick* Family Name: Cookies Clean status: Success Item ID: 408875 Family ID: 0
Description: *bs.serving-sys* Family Name: Cookies Clean status: Success Item ID: 408902 Family ID: 0
Description: *serving-sys* Family Name: Cookies Clean status: Success Item ID: 409130 Family ID: 0
Scan and cleaning complete: Finished correctly after 11023 seconds
*********************************** Settings ***********************************
Scan profile:
ID: full, enabled:1, value: Analyse complète
ID: scancriticalareas, enabled:1, value: true
ID: scanrunningapps, enabled:1, value: true
ID: scanregistry, enabled:1, value: true
ID: scanlsp, enabled:1, value: true
ID: scanads, enabled:1, value: true
ID: scanhostsfile, enabled:1, value: true
ID: scanmru, enabled:1, value: true
ID: scanbrowserhijacks, enabled:1, value: true
ID: scantrackingcookies, enabled:1, value: true
ID: closebrowsers, enabled:1, value: false
ID: folderstoscan, enabled:1, value: C:\
ID: scanrootkits, enabled:1, value: true
ID: usespywareheuristics, enabled:1, value: true
ID: extendedengine, enabled:0, value: true
ID: useheuristics, enabled:0, value: true
ID: heuristicslevel, enabled:0, value: mild, domain: medium,mild,strict
ID: filescanningoptions, enabled:1
ID: archives, enabled:1, value: true
ID: onlyexecutables, enabled:1, value: false
ID: skiplargerthan, enabled:1, value: 20480
Scan global:
ID: global, enabled:1
ID: addtocontextmenu, enabled:1, value: true
ID: playsoundoninfection, enabled:1, value: false
ID: soundfile, enabled:0, value: *to be filled in automatically*\alert.wav
Scheduled scan settings:
<Empty>
Update settings:
ID: updates, enabled:1
ID: launchthreatworksafterscan, enabled:1, value: normal, domain: normal,off,silently
ID: displaystatus, enabled:1, value: false
ID: deffiles, enabled:1, value: downloadandinstall, domain: dontcheck,downloadandinstall
ID: autodetectproxy, enabled:1, value: false
ID: useautoconfigscript, enabled:1, value: false
ID: autoconfigurl, enabled:0, value:
ID: useproxy, enabled:1, value: false
ID: proxyserver, enabled:0, value:
ID: softwareupdates, enabled:1, value: downloadandinstall, domain: dontcheck,downloadandinstall
ID: licenseandinfo, enabled:1, value: downloadandinstall, domain: dontcheck,downloadandinstall
ID: schedules, enabled:1, value: true
ID: updatedaily, enabled:1, value: Daily
ID: time, enabled:1, value: Mon May 18 03:32:00 2009
ID: frequency, enabled:1, value: daily, domain: daily,monthly,once,systemstart,weekly
ID: weekdays, enabled:1
ID: monday, enabled:1, value: false
ID: tuesday, enabled:1, value: false
ID: wednesday, enabled:1, value: false
ID: thursday, enabled:1, value: false
ID: friday, enabled:1, value: false
ID: saturday, enabled:1, value: false
ID: sunday, enabled:1, value: false
ID: monthly, enabled:1, value: 1, minvalue: 1, maxvalue: 31
ID: scanprofile, enabled:1, value:
ID: auto_deal_with_infections, enabled:1, value: false
ID: updateweekly, enabled:1, value: Weekly
ID: time, enabled:1, value: Mon May 18 03:32:00 2009
ID: frequency, enabled:1, value: weekly, domain: daily,monthly,once,systemstart,weekly
ID: weekdays, enabled:1
ID: monday, enabled:1, value: true
ID: tuesday, enabled:1, value: false
ID: wednesday, enabled:1, value: false
ID: thursday, enabled:1, value: false
ID: friday, enabled:1, value: false
ID: saturday, enabled:1, value: false
ID: sunday, enabled:1, value: false
ID: monthly, enabled:1, value: 1, minvalue: 1, maxvalue: 31
ID: scanprofile, enabled:1, value:
ID: auto_deal_with_infections, enabled:1, value: false
Appearance settings:
ID: appearance, enabled:1
ID: skin, enabled:1, value: default.egl, reglocation: HKEY_LOCAL_MACHINE\SOFTWARE\Lavasoft\Ad-Aware\Resource
ID: showtrayicon, enabled:1, value: true
ID: language, enabled:1, value: fr, reglocation: HKEY_LOCAL_MACHINE\SOFTWARE\Lavasoft\Ad-Aware\Language
Realtime protection settings:
ID: realtime, enabled:1
ID: processprotection, enabled:1, value: true
ID: registryprotection, enabled:0, value: true
ID: networkprotection, enabled:0, value: true
ID: loadatstartup, enabled:1, value: true
ID: usespywareheuristics, enabled:0, value: true
ID: extendedengine, enabled:0, value: true
ID: useheuristics, enabled:0, value: true
ID: heuristicslevel, enabled:0, value: strict, domain: medium,mild,strict
ID: infomessages, enabled:1, value: onlyimportant, domain: display,dontnotify,onlyimportant
****************************** System information ******************************
Computer name: GREIL
Processor name: Intel(R) Core(TM)2 Duo CPU T8100 @ 2.10GHz
Processor identifier: x86 Family 6 Model 23 Stepping 6
Raw info: processorarchitecture 0, processortype 586, processorlevel 6, processor revision 5894, number of processors 2
Physical memory available: 2312503296 bytes
Physical memory total: 3210420224 bytes
Virtual memory available: 2016116736 bytes
Virtual memory total: 2147352576 bytes
Memory load: 27%
Microsoft Windows Vista Home Premium Edition, 32-bit Service Pack 1 (build 6001)
Windows startup mode:
Running processes:
PID: 480 name: C:\Windows\System32\smss.exe owner: SYSTEM domain: AUTORITE NT
PID: 608 name: C:\Windows\System32\csrss.exe owner: SYSTEM domain: AUTORITE NT
PID: 660 name: C:\Windows\System32\wininit.exe owner: SYSTEM domain: AUTORITE NT
PID: 672 name: C:\Windows\System32\csrss.exe owner: SYSTEM domain: AUTORITE NT
PID: 708 name: C:\Windows\System32\services.exe owner: SYSTEM domain: AUTORITE NT
PID: 736 name: C:\Windows\System32\winlogon.exe owner: SYSTEM domain: AUTORITE NT
PID: 756 name: C:\Windows\System32\lsass.exe owner: SYSTEM domain: AUTORITE NT
PID: 768 name: C:\Windows\System32\lsm.exe owner: SYSTEM domain: AUTORITE NT
PID: 916 name: C:\Windows\System32\svchost.exe owner: SYSTEM domain: AUTORITE NT
PID: 996 name: C:\Windows\System32\svchost.exe owner: SERVICE RÉSEAU domain: AUTORITE NT
PID: 1040 name: C:\Windows\System32\svchost.exe owner: SYSTEM domain: AUTORITE NT
PID: 1124 name: C:\Windows\System32\svchost.exe owner: SERVICE LOCAL domain: AUTORITE NT
PID: 1152 name: C:\Windows\System32\svchost.exe owner: SYSTEM domain: AUTORITE NT
PID: 1164 name: C:\Windows\System32\svchost.exe owner: SYSTEM domain: AUTORITE NT
PID: 1300 name: C:\Windows\System32\SLsvc.exe owner: SERVICE RÉSEAU domain: AUTORITE NT
PID: 1420 name: C:\Windows\System32\svchost.exe owner: SERVICE LOCAL domain: AUTORITE NT
PID: 1552 name: C:\Windows\System32\svchost.exe owner: SERVICE RÉSEAU domain: AUTORITE NT
PID: 1704 name: C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe owner: SYSTEM domain: AUTORITE NT
PID: 1788 name: C:\Windows\System32\spoolsv.exe owner: SYSTEM domain: AUTORITE NT
PID: 1812 name: C:\Program Files\Avira\AntiVir Desktop\sched.exe owner: SYSTEM domain: AUTORITE NT
PID: 1824 name: C:\Windows\System32\svchost.exe owner: SERVICE LOCAL domain: AUTORITE NT
PID: 416 name: C:\Program Files\Avira\AntiVir Desktop\avguard.exe owner: SYSTEM domain: AUTORITE NT
PID: 908 name: C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe owner: SYSTEM domain: AUTORITE NT
PID: 900 name: C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe owner: SYSTEM domain: AUTORITE NT
PID: 1504 name: C:\Windows\System32\taskeng.exe owner: SYSTEM domain: AUTORITE NT
PID: 1392 name: C:\Windows\System32\IoctlSvc.exe owner: SYSTEM domain: AUTORITE NT
PID: 808 name: C:\Windows\System32\svchost.exe owner: SERVICE RÉSEAU domain: AUTORITE NT
PID: 1936 name: C:\Windows\System32\svchost.exe owner: SERVICE LOCAL domain: AUTORITE NT
PID: 364 name: C:\Windows\System32\svchost.exe owner: SYSTEM domain: AUTORITE NT
PID: 1480 name: C:\Windows\System32\SearchIndexer.exe owner: SYSTEM domain: AUTORITE NT
PID: 2360 name: C:\Windows\System32\wbem\unsecapp.exe owner: SYSTEM domain: AUTORITE NT
PID: 2472 name: C:\Windows\System32\wbem\WmiPrvSE.exe owner: SYSTEM domain: AUTORITE NT
PID: 3180 name: C:\Windows\System32\taskeng.exe owner: Bastien domain: Greil
PID: 3932 name: C:\Windows\System32\dwm.exe owner: Bastien domain: Greil
PID: 2848 name: C:\Windows\explorer.exe owner: Bastien domain: Greil
PID: 3988 name: C:\Program Files\Synaptics\SynTP\SynTPEnh.exe owner: Bastien domain: Greil
PID: 1324 name: C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe owner: Bastien domain: Greil
PID: 2384 name: C:\Program Files\Avira\AntiVir Desktop\avgnt.exe owner: Bastien domain: Greil
PID: 1560 name: C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe owner: Bastien domain: Greil
PID: 376 name: C:\Program Files\Windows Live\Messenger\msnmsgr.exe owner: Bastien domain: Greil
PID: 2740 name: C:\Windows\System32\rundll32.exe owner: Bastien domain: Greil
PID: 3396 name: C:\Windows\System32\SearchProtocolHost.exe owner: SYSTEM domain: AUTORITE NT
PID: 3688 name: C:\Windows\System32\SearchFilterHost.exe owner: SYSTEM domain: AUTORITE NT
PID: 2440 name: C:\Windows\System32\wuauclt.exe owner: Bastien domain: Greil
PID: 3608 name: C:\Program Files\CCleaner\CCleaner.exe owner: Bastien domain: Greil
PID: 1540 name: C:\Program Files\Lavasoft\Ad-Aware\Ad-Aware.exe owner: Bastien domain: Greil
Startup items:
Name: JMB36X IDE Setup
imagepath: C:\Windows\RaidTool\xInsIDE.exe
Name: SynTPEnh
imagepath: C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
Name: NvSvc
imagepath: RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
Name: IAAnotif
imagepath: "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
Name: avgnt
imagepath: "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
Name: Ad-Watch
imagepath: C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
Name: WebCheck
imagepath: {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
Name: {8C7461EF-2B13-11d2-BE35-3078302C2030}
imagepath: Component Categories cache daemon
Name:
imagepath: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
Bootexecute items:
Name:
imagepath: autocheck autochk *
Running services:
Name: AeLookupSvc
displayname: Expérience d’application
Name: AntiVirSchedulerService
displayname: Avira AntiVir Planificateur
Name: AntiVirService
displayname: Avira AntiVir Guard
Name: AudioEndpointBuilder
displayname: Générateur de points de terminaison du service Audio Windows
Name: Audiosrv
displayname: Audio Windows
Name: BFE
displayname: Moteur de filtrage de base
Name: BITS
displayname: Service de transfert intelligent en arrière-plan
Name: CryptSvc
displayname: Services de chiffrement
Name: DcomLaunch
displayname: Lanceur de processus serveur DCOM
Name: Dhcp
displayname: Client DHCP
Name: Dnscache
displayname: Client DNS
Name: DPS
displayname: Service de stratégie de diagnostic
Name: EapHost
displayname: Protocole EAP (Extensible Authentication Protocol)
Name: EMDMgmt
displayname: Service ReadyBoost
Name: Eventlog
displayname: Journal d’événements Windows
Name: EventSystem
displayname: Système d'événement COM+
Name: gpsvc
displayname: Client de stratégie de groupe
Name: hidserv
displayname: Accès du périphérique d'interface utilisateur
Name: IAANTMON
displayname: Intel(R) Matrix Storage Event Monitor
Name: IKEEXT
displayname: Modules de génération de clés IKE et AuthIP
Name: iphlpsvc
displayname: Assistance IP
Name: KeyIso
displayname: Isolation de clé CNG
Name: KtmRm
displayname: Service KtmRm pour Distributed Transaction Coordinator
Name: LanmanServer
displayname: Serveur
Name: LanmanWorkstation
displayname: Station de travail
Name: Lavasoft Ad-Aware Service
displayname: Lavasoft Ad-Aware Service
Name: lmhosts
displayname: Assistance NetBIOS sur TCP/IP
Name: MMCSS
displayname: Planificateur de classes multimédias
Name: MpsSvc
displayname: Pare-feu Windows
Name: Nero BackItUp Scheduler 3
displayname: Nero BackItUp Scheduler 3
Name: Netman
displayname: Connexions réseau
Name: netprofm
displayname: Service Liste des réseaux
Name: NlaSvc
displayname: Connaissance des emplacements réseau
Name: nsi
displayname: Service Interface du magasin réseau
Name: PcaSvc
displayname: Service de l’Assistant Compatibilité des programmes
Name: PLFlash DeviceIoControl Service
displayname: PLFlash DeviceIoControl Service
Name: PlugPlay
displayname: Plug-and-Play
Name: PolicyAgent
displayname: Agent de stratégie IPsec
Name: ProfSvc
displayname: Service de profil utilisateur
Name: ProtectedStorage
displayname: Emplacement protégé
Name: RpcSs
displayname: Appel de procédure distante (RPC)
Name: SamSs
displayname: Gestionnaire de comptes de sécurité
Name: Schedule
displayname: Planificateur de tâches
Name: seclogon
displayname: Ouverture de session secondaire
Name: SENS
displayname: Service de notification d’événements système
Name: ShellHWDetection
displayname: Détection matériel noyau
Name: slsvc
displayname: Licence du logiciel
Name: Spooler
displayname: Spouleur d'impression
Name: SSDPSRV
displayname: Découverte SSDP
Name: stisvc
displayname: Acquisition d'image Windows (WIA)
Name: SysMain
displayname: Superfetch
Name: TabletInputService
displayname: Service Panneau de saisie Tablet PC
Name: TermService
displayname: Services Terminal Server
Name: Themes
displayname: Thèmes
Name: TrkWks
displayname: Client de suivi de lien distribué
Name: UxSms
displayname: Gestionnaire de sessions du Gestionnaire de fenêtrage
Name: W32Time
displayname: Horloge Windows
Name: WdiSystemHost
displayname: Hôte système de diagnostics
Name: WebClient
displayname: WebClient
Name: WerSvc
displayname: Service de rapport d'erreurs Windows
Name: WinDefend
displayname: Windows Defender
Name: Winmgmt
displayname: Infrastructure de gestion Windows
Name: Wlansvc
displayname: Service de configuration automatique WLAN
Name: WPDBusEnum
displayname: Service Énumérateur d’appareil mobile
Name: wscsvc
displayname: Centre de sécurité
Name: WSearch
displayname: Windows Search
Name: wuauserv
displayname: Windows Update
Name: wudfsvc
displayname: Windows Driver Foundation - Infrastructure de pilote mode-utilisateur
Le processus svchost.exe (svchost signifiant Service Host Process) est un processus générique de Windows 2000/XP servant d'hôtes pour les autres processus dont le fonctionnement repose sur des librairies dynamiques (DLLs). Il existe ainsi autant d'entrées svchost qu'il y a de processus qui l'utilisent. (source ccc.net)
Les ralentissements peuvent êtres dûs à plusieurs choses. Tu peux avoir un conflit logiciel par exemple deux antivirus installés et non compatibles entre eux. Après je ne pourrai pas en dire plus...
Les ralentissements peuvent êtres dûs à plusieurs choses. Tu peux avoir un conflit logiciel par exemple deux antivirus installés et non compatibles entre eux. Après je ne pourrai pas en dire plus...
