abbdiver

Apparemment, le problème est résolu. Merci beaucoup.

LIEN de téléchargement : http://www.sendspace.com/file/nyd4jz Fichier de OTMoveIt3 ========== FILES ========== C:\DOCUME~1\Francois\APPLIC~1\META FLAG POP moved successfully. C:\Program Files\META FLAG POP moved successfully. C:\WINDOWS\tasks\842CD407B14352D7.job moved successfully. ========== COMMANDS ========== User's Temp folder emptied. User's Temporary Internet Files folder emptied. User's Internet Explorer cache folder emptied. Local Service Temp folder emptied. File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot. Local Service Temporary Internet Files folder emptied. Windows Temp folder emptied. Java cache emptied. File delete failed. C:\Documents and Settings\Francois\Local Settings\Application Data\Mozilla\Firefox\Profiles\ehlbb80b.default\Cache\_CACHE_001_ scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Francois\Local Settings\Application Data\Mozilla\Firefox\Profiles\ehlbb80b.default\Cache\_CACHE_002_ scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Francois\Local Settings\Application Data\Mozilla\Firefox\Profiles\ehlbb80b.default\Cache\_CACHE_003_ scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Francois\Local Settings\Application Data\Mozilla\Firefox\Profiles\ehlbb80b.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Francois\Local Settings\Application Data\Mozilla\Firefox\Profiles\ehlbb80b.default\urlclassifier3.sqlite scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Francois\Local Settings\Application Data\Mozilla\Firefox\Profiles\ehlbb80b.default\XUL.mfl scheduled to be deleted on reboot. FireFox cache emptied. Temp folders emptied. OTMoveIt3 by OldTimer - Version 1.0.7.2 log created on 12052008_113346 Files moved on Reboot... File move failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be moved on reboot. C:\Documents and Settings\Francois\Local Settings\Application Data\Mozilla\Firefox\Profiles\ehlbb80b.default\Cache\_CACHE_001_ moved successfully. C:\Documents and Settings\Francois\Local Settings\Application Data\Mozilla\Firefox\Profiles\ehlbb80b.default\Cache\_CACHE_002_ moved successfully. C:\Documents and Settings\Francois\Local Settings\Application Data\Mozilla\Firefox\Profiles\ehlbb80b.default\Cache\_CACHE_003_ moved successfully. C:\Documents and Settings\Francois\Local Settings\Application Data\Mozilla\Firefox\Profiles\ehlbb80b.default\Cache\_CACHE_MAP_ moved successfully. C:\Documents and Settings\Francois\Local Settings\Application Data\Mozilla\Firefox\Profiles\ehlbb80b.default\urlclassifier3.sqlite moved successfully. C:\Documents and Settings\Francois\Local Settings\Application Data\Mozilla\Firefox\Profiles\ehlbb80b.default\XUL.mfl moved successfully. D'autre op ?

ok. toutes les opérations ont été réalisées. voici les fichiers demandés : ----------------- LopR.txt ----------------- --------------------\\ Lop S&D 4.2.4-9c XP/Vista Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3 X86-based PC ( Uniprocessor Free : Intel® Pentium® 4 CPU 2.80GHz ) BIOS : BIOS Date: 05/14/04 15:30:28 NR146 BIOS Rev: 1.08 USER : Francois ( Administrator ) BOOT : Normal boot Antivirus : AVG Anti-Virus 8.0 (Activated) A:\ (USB) C:\ (Local Disk) - NTFS - Total:37 Go (Free:24 Go) D:\ (CD or DVD) E:\ (CD or DVD) "C:\Lop SD" ( MAJ : 01-11-2008|16:30 ) Option : [2] ( 05/12/2008|10:10 ) \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Send acid copy bin\Mfcd dent.exe Supprime! - C:\DOCUME~1\Francois\Cookies\francois@partypoker[1].txt Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Send acid copy bin \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ --------------------\\ Listing des dossiers dans APPLIC~1 [03/09/2004|05:34] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities [03/12/2008|18:40] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft [03/09/2004|05:34] C:\DOCUME~1\ADMINI~1\APPLIC~1\Sun [03/12/2008|18:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg8 [10/07/2008|08:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Emjysoft [01/12/2008|09:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google [09/07/2008|13:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft [03/09/2004|05:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI [04/12/2008|14:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy [09/09/2004|15:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec [06/11/2008|18:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage [23/10/2008|11:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller [03/09/2004|05:34] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities [03/09/2004|05:34] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft [03/09/2004|05:34] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Sun [01/12/2008|11:12] C:\DOCUME~1\Francois\APPLIC~1\Adobe [02/12/2008|14:28] C:\DOCUME~1\Francois\APPLIC~1\AdobeUM [10/07/2008|08:02] C:\DOCUME~1\Francois\APPLIC~1\Emjysoft [28/10/2008|17:45] C:\DOCUME~1\Francois\APPLIC~1\Google [12/04/2006|17:12] C:\DOCUME~1\Francois\APPLIC~1\Help [03/09/2004|05:34] C:\DOCUME~1\Francois\APPLIC~1\Identities [12/10/2005|16:12] C:\DOCUME~1\Francois\APPLIC~1\Macromedia [03/12/2008|18:47] C:\DOCUME~1\Francois\APPLIC~1\META FLAG POP [03/12/2008|17:37] C:\DOCUME~1\Francois\APPLIC~1\Microsoft [09/09/2004|15:04] C:\DOCUME~1\Francois\APPLIC~1\Microsoft Web Folders [04/12/2008|09:40] C:\DOCUME~1\Francois\APPLIC~1\Mozilla [25/07/2008|14:33] C:\DOCUME~1\Francois\APPLIC~1\Search Settings [03/09/2004|05:34] C:\DOCUME~1\Francois\APPLIC~1\Sun [05/03/2007|18:32] C:\DOCUME~1\Francois\APPLIC~1\VadeRetro [03/12/2008|18:40] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft [03/12/2008|18:40] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks [05/12/2008 10:00][--ah-----] C:\WINDOWS\tasks\842CD407B14352D7.job [05/12/2008 09:53][--ah-----] C:\WINDOWS\tasks\SA.DAT [24/04/2003 03:00][-rah-----] C:\WINDOWS\tasks\desktop.ini --------------------\\ Listing des dossiers dans C:\Program Files [30/09/2008|17:30] C:\Program Files\Acro Software [03/09/2004|05:34] C:\Program Files\Adobe [03/09/2004|05:34] C:\Program Files\Analog Devices [19/10/2007|08:55] C:\Program Files\ANI [15/12/2006|08:44] C:\Program Files\AutoCAD LT 98 [03/12/2008|18:41] C:\Program Files\AVG [16/07/2008|17:10] C:\Program Files\CCleaner [03/09/2004|05:34] C:\Program Files\Common Files [03/09/2004|05:34] C:\Program Files\Compaq [03/09/2004|05:34] C:\Program Files\ComPlus Applications [19/10/2007|08:55] C:\Program Files\D-Link [09/07/2008|13:23] C:\Program Files\Fichiers communs [28/07/2008|08:36] C:\Program Files\Free Easy Burner [03/12/2008|14:42] C:\Program Files\Google [30/09/2008|17:32] C:\Program Files\GPLGS [03/12/2008|17:37] C:\Program Files\Hewlett-Packard [03/12/2008|15:57] C:\Program Files\InstallShield Installation Information [15/10/2008|08:24] C:\Program Files\Internet Explorer [03/09/2004|05:34] C:\Program Files\Java [09/09/2008|02:02] C:\Program Files\Messenger [23/11/2008|22:37] C:\Program Files\META FLAG POP [09/09/2004|15:29] C:\Program Files\microsoft frontpage [09/07/2008|13:24] C:\Program Files\Microsoft Office [09/09/2004|15:06] C:\Program Files\Microsoft Visual Studio [08/09/2008|09:16] C:\Program Files\Movie Maker [05/12/2008|09:57] C:\Program Files\Mozilla Firefox [03/09/2004|05:34] C:\Program Files\MSN [03/09/2004|05:34] C:\Program Files\MSN Gaming Zone [28/07/2008|08:38] C:\Program Files\MSXML 4.0 [08/09/2008|09:11] C:\Program Files\NetMeeting [08/09/2008|09:11] C:\Program Files\Outlook Express [06/05/2008|16:34] C:\Program Files\Pinnacle [25/07/2008|14:33] C:\Program Files\Search Settings [03/09/2004|05:34] C:\Program Files\Services en ligne [04/12/2008|11:39] C:\Program Files\Spybot - Search & Destroy [03/12/2008|17:59] C:\Program Files\Symantec [09/09/2004|15:52] C:\Program Files\Symantec_Client_Security [04/12/2008|12:20] C:\Program Files\Trend Micro [14/07/2005|02:00] C:\Program Files\Uninstall Information [03/12/2008|14:41] C:\Program Files\Windows Live [08/09/2008|09:17] C:\Program Files\Windows Media Player [08/09/2008|09:11] C:\Program Files\Windows NT [03/09/2004|05:34] C:\Program Files\WindowsUpdate [03/09/2004|05:34] C:\Program Files\xerox [10/10/2008|17:25] C:\Program Files\Yahoo! --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs [09/09/2004|14:56] C:\Program Files\Fichiers communs\Adobe [09/09/2004|15:06] C:\Program Files\Fichiers communs\Designer [03/12/2008|10:41] C:\Program Files\Fichiers communs\InstallShield [03/09/2004|05:34] C:\Program Files\Fichiers communs\Java [03/12/2008|18:41] C:\Program Files\Fichiers communs\Microsoft Shared [03/09/2004|05:34] C:\Program Files\Fichiers communs\MSSoap [03/09/2004|05:34] C:\Program Files\Fichiers communs\ODBC [03/09/2004|05:34] C:\Program Files\Fichiers communs\Services [03/09/2004|05:34] C:\Program Files\Fichiers communs\SpeechEngines [12/10/2005|16:12] C:\Program Files\Fichiers communs\SWF Studio [03/12/2008|17:59] C:\Program Files\Fichiers communs\Symantec Shared [03/12/2008|17:55] C:\Program Files\Fichiers communs\System [20/06/2008|16:36] C:\Program Files\Fichiers communs\WindowsLiveInstaller --------------------\\ Process ( 26 Processes ) ... OK ! --------------------\\ Recherche avec S_Lop Aucun fichier / dossier Lop trouvé ! --------------------\\ Recherche de Fichiers / Dossiers Lop Aucun fichier / dossier Lop trouvé ! --------------------\\ Verification du Registre ..... OK ! --------------------\\ Verification du fichier Hosts Fichier Hosts PROPRE --------------------\\ Recherche de fichiers avec Catchme catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-12-05 10:11:53 Windows 5.1.2600 Service Pack 3 NTFS scanning hidden processes ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden files: 146 --------------------\\ Recherche d'autres infections Aucune autre infection trouvée ! [F:9][D:0]-> C:\DOCUME~1\Francois\Cookies [F:6][D:4]-> C:\DOCUME~1\Francois\LOCALS~1\TEMPOR~1\content.IE5 1 - "C:\Lop SD\LopR_1.txt" - 05/12/2008|10:09 - Option : [1] 2 - "C:\Lop SD\LopR_2.txt" - 05/12/2008|10:12 - Option : [2] --------------------\\ Fin du rapport a 10:12:45 --------------- TB.txt en fin de scan --------------- -----------\\ ToolBar S&D 1.2.6 XP/Vista Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3 X86-based PC ( Uniprocessor Free : Intel® Pentium® 4 CPU 2.80GHz ) BIOS : BIOS Date: 05/14/04 15:30:28 NR146 BIOS Rev: 1.08 USER : Francois ( Administrator ) BOOT : Normal boot Antivirus : AVG Anti-Virus 8.0 (Activated) A:\ (USB) C:\ (Local Disk) - NTFS - Total:37 Go (Free:24 Go) D:\ (CD or DVD) E:\ (CD or DVD) "C:\ToolBar SD" ( MAJ : 04-12-2008|20:40 ) Option : [1] ( 05/12/2008|10:15 ) -----------\\ Recherche de Fichiers / Dossiers ... C:\DOCUME~1\Francois\APPLIC~1\Search Settings C:\DOCUME~1\Francois\APPLIC~1\Search Settings\kb127 C:\DOCUME~1\Francois\APPLIC~1\Search Settings\kb127\res C:\DOCUME~1\Francois\APPLIC~1\Search Settings\kb127\temp C:\DOCUME~1\Francois\APPLIC~1\Search Settings\kb127\temp\ws-14214.log C:\DOCUME~1\Francois\APPLIC~1\Search Settings\kb127\temp\ws-14216.log C:\DOCUME~1\Francois\APPLIC~1\Search Settings\kb127\temp\ws-14217.log C:\Program Files\Search Settings C:\Program Files\Search Settings\kb127 C:\Program Files\Search Settings\SearchSettings.exe C:\Program Files\Search Settings\kb127\res C:\Program Files\Search Settings\kb127\SearchSettingsRes409.dll C:\Program Files\Search Settings\kb127\temp -----------\\ [..\Internet Explorer\Main] [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Local Page"="C:\\WINDOWS\\system32\\blank.htm" "Start Page"="http://www.google.fr/"'>http://www.google.fr/" "Search Page"="http://www.google.com"'>http://www.google.com" "Search Bar"="http://www.google.com/ie"'>http://www.google.com/ie" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"'>http://go.microsoft.com/fwlink/?LinkId=69157"'>http://go.microsoft.com/fwlink/?LinkId=69157" "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"'>http://go.microsoft.com/fwlink/?LinkId=54896"'>http://go.microsoft.com/fwlink/?LinkId=54896"'>http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" "Search Bar"="http://go.compaq.com/1Q00CDT/040C/bl8.asp"'>http://go.compaq.com/1Q00CDT/040C/bl8.asp" --------------------\\ Recherche d'autres infections Aucune autre infection trouvée ! 1 - "C:\ToolBar SD\TB_1.txt" - 05/12/2008|10:15 - Option : [1] -----------\\ Fin du rapport a 10:15:38,81 ---------------- TB.txt après option 2 suppression ---------------- -----------\\ ToolBar S&D 1.2.6 XP/Vista Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3 X86-based PC ( Uniprocessor Free : Intel® Pentium® 4 CPU 2.80GHz ) BIOS : BIOS Date: 05/14/04 15:30:28 NR146 BIOS Rev: 1.08 USER : Francois ( Administrator ) BOOT : Normal boot Antivirus : AVG Anti-Virus 8.0 (Activated) A:\ (USB) C:\ (Local Disk) - NTFS - Total:37 Go (Free:24 Go) D:\ (CD or DVD) E:\ (CD or DVD) "C:\ToolBar SD" ( MAJ : 04-12-2008|20:40 ) Option : [2] ( 05/12/2008|10:17 ) -----------\\ SUPPRESSION Supprime! - C:\DOCUME~1\Francois\APPLIC~1\Search Settings\kb127 Supprime! - C:\Program Files\Search Settings\kb127 Supprime! - C:\Program Files\Search Settings\SearchSettings.exe Supprime! - C:\DOCUME~1\Francois\APPLIC~1\Search Settings Supprime! - C:\Program Files\Search Settings -----------\\ Recherche de Fichiers / Dossiers ... -----------\\ [..\Internet Explorer\Main] [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Local Page"="C:\\WINDOWS\\system32\\blank.htm" "Start Page"="http://www.google.fr/" "Search Page"="http://www.google.com" "Search Bar"="http://www.google.com/ie" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Start Page"="http://www.msn.com/" "Search Bar"="http://go.compaq.com/1Q00CDT/040C/bl8.asp" --------------------\\ Recherche d'autres infections Aucune autre infection trouvée ! 1 - "C:\ToolBar SD\TB_1.txt" - 05/12/2008|10:15 - Option : [1] 2 - "C:\ToolBar SD\TB_2.txt" - 05/12/2008|10:18 - Option : [2] -----------\\ Fin du rapport a 10:18:05,76 --------------- Et enfin Hijackthis après tout cela --------------- Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 10:18:56, on 05/12/2008 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16735) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe C:\PROGRA~1\AVG\AVG8\avgam.exe C:\PROGRA~1\AVG\AVG8\avgrsx.exe C:\PROGRA~1\AVG\AVG8\avgnsx.exe C:\WINDOWS\Explorer.EXE C:\PROGRA~1\AVG\AVG8\avgtray.exe C:\WINDOWS\system32\ctfmon.exe C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\system32\taskmgr.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.compaq.com/1Q00CDT/040C/bl8.asp R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O1 - Hosts: 192.33.50.1 GTISERV O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user') O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_01\bin\npjpi142_01.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_01\bin\npjpi142_01.dll O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5co...b?1094217649593 O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll O20 - AppInit_DLLs: avgrsstx.dll O23 - Service: ANIWZCSd Service (ANIWZCSdService) - Alpha Networks Inc. - C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe -- End of file - 4298 bytes

Bonjour, sur mon poste, en réseau d'entreprise, fonctionnant sous Windows XP, des lenteurs très importantes m'ont alertées. Le gestionnaire des tâches/onglet Processus laisse apparaître 2 processus sous le nom "iexplorer", le premier utilisant en général près de 200 Mo de mémoire. J'ai déjà fait un CCleaner, mis à jour un nouvel antivirus (AVG), installer Spybot pour éviter de nouvelles installations frauduleuses. Le problème persiste. voici le log de Hijackthis v2.0.2. ----------------------------------------------- Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 09:11:00, on 05/12/2008 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16735) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\PROGRA~1\AVG\AVG8\avgtray.exe C:\WINDOWS\system32\ctfmon.exe C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\PROGRA~1\AVG\AVG8\avgam.exe C:\PROGRA~1\AVG\AVG8\avgrsx.exe C:\PROGRA~1\AVG\AVG8\avgnsx.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\WINDOWS\system32\taskmgr.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.compaq.com/1Q00CDT/040C/bl8.asp R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb127\SearchSettings.dll O1 - Hosts: 192.33.50.1 GTISERV O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb127\SearchSettings.dll O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe O4 - HKCU\..\Run: [dvd drive] C:\DOCUME~1\Francois\APPLIC~1\METAFL~1\barb setup hope.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user') O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_01\bin\npjpi142_01.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_01\bin\npjpi142_01.dll O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5co...b?1094217649593 O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll O20 - AppInit_DLLs: avgrsstx.dll O23 - Service: ANIWZCSd Service (ANIWZCSdService) - Alpha Networks Inc. - C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe -- End of file - 5059 bytes ------------------------------------------------ Merci de votre aide et du temps que vous voudrez bien consacrer à mon problème.