Sujet Précédent Sujet Suivant

Mon pc est devenu tres lent

Fermé
lingo - 4 juil. 2009 à 15:23
 lingo - 5 juil. 2009 à 01:23
Bonjour, bon voila mon pc est devenu tres tres lent est mon aintivirus avira antivir me trouve un virus tout les 5 minute et je croie que c'est a cause des site de boule que mon père fréquente


Logfile of random's system information tool 1.06 (written by random/random)
Run by dr.snake at 2009-07-04 14:15:20
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 20 GB (25%) free of 80 GB
Total RAM: 1023 MB (39% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:15:38, on 04/07/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16850)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Avira\AntiVir Desktop\avmailc.exe
C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\NetLimiter 2 Pro\nlsvc.exe
C:\Program Files\Raxco\PerfectDisk10\PDAgent.exe
C:\WINDOWS\system32\svchost.exe
C:\Documents and Settings\All Users\Application Data\Zwangi\zwangi115.exe
C:\WINDOWS\system32\Fast.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Raxco\PerfectDisk10\PDEngine.exe
C:\Program Files\NetLimiter 2 Pro\NLClient.exe
C:\Program Files\Zwangi\zwangi.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\SuperCopier2\SuperCopier2.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\DAEMON Tools Lite\daemon.exe
C:\Program Files\No-IP\DUC20.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Free Download Manager\fdm.exe
C:\Program Files\Avira\AntiVir Desktop\avscan.exe
C:\Downloads\Software\fsbl(1).exe
C:\Downloads\Software\RSIT.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\Trend Micro\HijackThis\dr.snake.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.ask.com/?o=13928&l=dis
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [TweakDUN] C:\Program Files\TweakDUN\tweakdun.exe splash
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [SuperCopier2.exe] C:\Program Files\SuperCopier2\SuperCopier2.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [ares] "D:\Program Files\Ares\Ares.exe" -h
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - S-1-5-18 Startup: No-IP DUC.lnk = C:\Program Files\No-IP\DUC20.exe (User 'SYSTEM')
O4 - S-1-5-18 Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe (User 'SYSTEM')
O4 - S-1-5-18 Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe (User 'SYSTEM')
O4 - S-1-5-18 Startup: UberIcon.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe (User 'SYSTEM')
O4 - S-1-5-18 Startup: Y'z Shadow.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe (User 'SYSTEM')
O4 - .DEFAULT Startup: No-IP DUC.lnk = C:\Program Files\No-IP\DUC20.exe (User 'Default user')
O4 - .DEFAULT Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe (User 'Default user')
O4 - .DEFAULT Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe (User 'Default user')
O4 - .DEFAULT Startup: UberIcon.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe (User 'Default user')
O4 - .DEFAULT Startup: Y'z Shadow.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe (User 'Default user')
O4 - Startup: No-IP DUC.lnk = C:\Program Files\No-IP\DUC20.exe
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
O4 - Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe
O4 - Startup: UberIcon.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe
O4 - Startup: Y'z Shadow.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Tout télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Télécharger la sélection avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Télécharger la vidéo avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scanner/sources/en/scan8/oscan8.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{A84DEE13-F978-42C7-A346-99B68ECA8135}: NameServer = 4.2.2.6 4.2.2.5
O23 - Service: Avira AntiVir MailGuard (AntiVirMailService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avmailc.exe
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Avira AntiVir WebGuard (AntiVirWebService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
O23 - Service: NetLimiter (nlsvc) - Locktime Software - C:\Program Files\NetLimiter 2 Pro\nlsvc.exe
O23 - Service: PDAgent - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk10\PDAgent.exe
O23 - Service: PDEngine - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk10\PDEngine.exe
O23 - Service: wampapache - Apache Software Foundation - c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe
O23 - Service: wampmysqld - Unknown owner - c:\wamp\bin\mysql\mysql5.1.32\bin\mysqld.exe
O23 - Service: Zwangi Service - Unknown owner - C:\Documents and Settings\All Users\Application Data\Zwangi\zwangi115.exe
A voir également:

2 réponses

Réponse 1 / 2
lingo
4 juil. 2009 à 15:59
Malwarebytes' Anti-Malware 1.38
Version de la base de données: 2297
Windows 5.1.2600 Service Pack 3

04/07/2009 14:58:31
mbam-log-2009-07-04 (14-58-31).txt

Type de recherche: Examen rapide
Eléments examinés: 100593
Temps écoulé: 9 minute(s), 6 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
0
Réponse 2 / 2
lingo
5 juil. 2009 à 01:23
voila le rapport du scan de bitdefender

BitDefender Online Scanner







Scan report generated at: Sat, Jul 04, 2009 - 22:25:14









Scan path: C:\;D:\;E:\;F:\;G:\;















Statistics

Time


02:25:17

Files


356203

Folders


11207

Boot Sectors


0

Archives


4716

Packed Files


23145







Results

Identified Viruses


6

Infected Files


12

Suspect Files


0

Warnings


0

Disinfected


0

Deleted Files


10







Engines Info

Virus Definitions


3654091

Engine build


AVCORE v1.7 (build 8314.19) (i386) (Sep 29 2008 17:19:14)

Scan plugins


17

Archive plugins


45

Unpack plugins


7

E-mail plugins


6

System plugins


4







Scan Settings

First Action


Disinfect

Second Action


None

Heuristics


Yes

Enable Warnings


Yes

Scanned Extensions


*;

Exclude Extensions




Scan Emails


Yes

Scan Archives


Yes

Scan Packed


Yes

Scan Files


Yes

Scan Boot


Yes








Scanned File


Status

C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED\4aa0f0c0.qua


Infected with: Win32.Runouce.C@mm

C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED\4aa0f0c0.qua


Disinfection failed

C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED\4aaff0d0.qua


Infected with: Win32.Runouce.C@mm

C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED\4aaff0d0.qua


Disinfection failed

C:\Documents and Settings\kamel\Bureau\LOADER--kke--KAON ET CLONE.rar=>KKE+_1.0_setup.exe=>(Instyler o)=>(Instyler Module 7)


Infected with: Backdoor.Seed.P

C:\Documents and Settings\kamel\Bureau\LOADER--kke--KAON ET CLONE.rar=>KKE+_1.0_setup.exe=>(Instyler o)=>(Instyler Module 7)


Deleted

C:\Documents and Settings\kamel\Bureau\LOADER--kke--KAON ET CLONE.rar=>KKE+_1.0_setup.exe=>(Instyler o)


Update failed

C:\System Volume Information\_restore{C37CCF9F-9199-40B7-B211-378F901F4735}\RP265\A0122465.dll


Infected with: Trojan.Generic.1073761

C:\System Volume Information\_restore{C37CCF9F-9199-40B7-B211-378F901F4735}\RP265\A0122465.dll


Deleted

C:\System Volume Information\_restore{C37CCF9F-9199-40B7-B211-378F901F4735}\RP278\A0147172.dll


Infected with: Trojan.Generic.1073761

C:\System Volume Information\_restore{C37CCF9F-9199-40B7-B211-378F901F4735}\RP278\A0147172.dll


Deleted

C:\System Volume Information\_restore{C37CCF9F-9199-40B7-B211-378F901F4735}\RP282\A0154631.exe


Infected with: Trojan.Generic.1959230

C:\System Volume Information\_restore{C37CCF9F-9199-40B7-B211-378F901F4735}\RP282\A0154631.exe


Deleted

C:\System Volume Information\_restore{C37CCF9F-9199-40B7-B211-378F901F4735}\RP282\A0154635.dll


Infected with: Trojan.Generic.1073761

C:\System Volume Information\_restore{C37CCF9F-9199-40B7-B211-378F901F4735}\RP282\A0154635.dll


Deleted

D:\HANANE\Nouveau dossier (2)\GENERATED_MSN_Hijack.exe


Infected with: Worm.Generic.54134

D:\HANANE\Nouveau dossier (2)\GENERATED_MSN_Hijack.exe


Deleted

D:\Mes fichiers reçus\Mes documents\Downloads\Sims 2 NO CD Crack.exe=>(IExpress 0)=>SIMS21~1.EXE


Infected with: Trojan.Generic.1781653

D:\Mes fichiers reçus\Mes documents\Downloads\Sims 2 NO CD Crack.exe=>(IExpress 0)=>SIMS21~1.EXE


Deleted

D:\Mes fichiers reçus\Mes documents\Downloads\Sims 2 NO CD Crack.exe=>(IExpress 0)


Update failed

D:\System Volume Information\_restore{0088F4BC-2486-4703-8887-B148CD2DF176}\RP15\A0003265.exe


Infected with: Worm.Generic.54134

D:\System Volume Information\_restore{0088F4BC-2486-4703-8887-B148CD2DF176}\RP15\A0003265.exe


Deleted

D:\System Volume Information\_restore{0088F4BC-2486-4703-8887-B148CD2DF176}\RP9\A0001236.exe


Infected with: Worm.Generic.54134

D:\System Volume Information\_restore{0088F4BC-2486-4703-8887-B148CD2DF176}\RP9\A0001236.exe


Deleted

D:\System Volume Information\_restore{C37CCF9F-9199-40B7-B211-378F901F4735}\RP282\A0154649.exe


Infected with: Worm.Generic.54134

D:\System Volume Information\_restore{C37CCF9F-9199-40B7-B211-378F901F4735}\RP282\A0154649.exe


Deleted


s'il vous plais aider moi
0