PC super lent, recherche d'infection
Matheog
-
twobe -
twobe -
Bonjour à tous,
Mon PC rame à mort depuis quelques temps, je ne peux même plus écouter de musique sans que ça saute... J'ai nettoyé mon disque, je dispose de mémoire suffisante. Je pense donc qu'il s'agit d'une quelconque infection. Voici les différents logs que j'ai obtenu avec les logiciels recommandés. Je n'ai malheureusement rien détecté, je ne sais donc plus quoi faire.
Merci 1000 fois pour votre précieuse aide!!
Mathieu
Ccleaner
Détails des fichiers effacés
------------------------------------------------------------------------------------------
Fichiers Temporaires d'Internet Explorer (fichiers 2791) 36,1MB
Cookie:mathieu gosselin@247realmedia.com/(&H100001) 92 bytes
Cookie:mathieu gosselin@idregie.com/(&H100001) 566 bytes
Cookie:mathieu gosselin@rad.msn.com/(&H100001) 660 bytes
Cookie:mathieu gosselin@www.pixmania.com/source/prod/(&H100001) 105 bytes
Cookie:mathieu gosselin@edt02.net/(&H100001) 409 bytes
Cookie:mathieu gosselin@estat.com/(&H100001) 86 bytes
Cookie:mathieu gosselin@weborama.fr/(&H100001) 267 bytes
Cookie:mathieu gosselin@hotmail.msn.com/(&H100001) 70 bytes
Cookie:mathieu gosselin@bbc.co.uk/(&H100001) 330 bytes
Cookie:mathieu gosselin@ad.yieldmanager.com/(&H100001) 399 bytes
Cookie:mathieu gosselin@surfline.112.2o7.net/(&H100001) 124 bytes
Cookie:mathieu gosselin@sdv.fr/(&H100001) 360 bytes
Cookie:mathieu gosselin@surfline.com/(&H100001) 87 bytes
Cookie:mathieu gosselin@ebooking.aegeanair.com/(&H100001) 367 bytes
Cookie:mathieu gosselin@google.fr/(&H100001) 130 bytes
Cookie:mathieu gosselin@yahoo.com/(&H100001) 169 bytes
Cookie:mathieu gosselin@rad.microsoft.com/(&H100001) 750 bytes
Cookie:mathieu gosselin@live.com/(&H100001) 348 bytes
Cookie:mathieu gosselin@liberation.fr/(&H100001) 260 bytes
Cookie:mathieu gosselin@msn.com/(&H100001) 430 bytes
Cookie:mathieu gosselin@aegeanair.com/(&H100001) 358 bytes
Cookie:mathieu gosselin@atdmt.com/(&H100001) 100 bytes
Cookie:mathieu gosselin@m.webtrends.com/(&H100001) 186 bytes
Cookie:mathieu gosselin@www.commentcamarche.net/(&H100001) 115 bytes
Cookie:mathieu gosselin@login.live.com/(&H100001) 183 bytes
Cookie:mathieu gosselin@dailymotion.com/(&H100001) 85 bytes
Cookie:mathieu gosselin@eulerian.net/(&H100001) 437 bytes
Cookie:mathieu gosselin@lecool.com/(&H100001) 331 bytes
Cookie:mathieu gosselin@microsoft.com/(&H100001) 386 bytes
Cookie:mathieu gosselin@www.smartadserver.com/(&H100001) 412 bytes
Cookie:mathieu gosselin@ssl-hints.netflame.cc/(&H100001) 162 bytes
Cookie:mathieu gosselin@i2as.idregie.com/(&H100001) 107 bytes
Cookie:mathieu gosselin@symantec.com/(&H100001) 109 bytes
Cookie:mathieu gosselin@kontera.com/(&H100001) 169 bytes
Cookie:mathieu gosselin@www.sur-la-toile.com/(&H100001) 179 bytes
Cookie:mathieu gosselin@doubleclick.net/(&H100001) 89 bytes
Cookie:mathieu gosselin@messenger.msn.com/(&H100001) 95 bytes
Cookie:mathieu gosselin@cybermonitor.com/(&H100001) 94 bytes
Cookie:mathieu gosselin@imrworldwide.com/cgi-bin(&H100001) 226 bytes
Cookie:mathieu gosselin@tracking.lsfinteractive.com/(&H100001) 134 bytes
Cookie:mathieu gosselin@kiteclubcabarete.com/(&H100001) 411 bytes
Cookie:mathieu gosselin@xiti.com/(&H100001) 100 bytes
Cookie:mathieu gosselin@www.pixmania.com/(&H100001) 1,46KB
Cookie:mathieu gosselin@c.msn.com/(&H100001) 67 bytes
Cookie:mathieu gosselin@mybloglog.com/(&H100001) 93 bytes
Cookie:mathieu gosselin@lemonde.fr/(&H100001) 541 bytes
Cookie:mathieu gosselin@bitdefender.com/(&H100001) 133 bytes
Cookie:mathieu gosselin@lefigaro.fr/(&H100001) 258 bytes
Cookie:mathieu gosselin@bluestreak.com/(&H100001) 729 bytes
Cookie:mathieu gosselin@trafiz.net/(&H100001) 571 bytes
Cookie:mathieu gosselin@sur-la-toile.com/(&H100001) 369 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@247realmedia[1].txt 92 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@bluestreak[1].txt 267 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@casalemedia[1].txt 98 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@cybermonitor[1].txt 94 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@doubleclick[1].txt 89 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@estat[1].txt 85 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@google[1].txt 130 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@kachouri[2].txt 355 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@lemonde[1].txt 385 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@liberation[2].txt 336 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@mediaplex[1].txt 85 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@sdv[1].txt 83 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@surfline.112.2o7[1].txt 124 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@surfline[1].txt 87 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@tradedoubler[1].txt 99 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@weborama[1].txt 89 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@www.commentcamarche[1].txt 114 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@www.smartadserver[2].txt 410 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@xiti[1].txt 106 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@yahoo[2].txt 160 bytes
Marqué pour l'effacement: C:\Documents and Settings\Mathieu Gosselin\Local Settings\Temporary Internet Files\Content.IE5\index.dat
Marqué pour l'effacement: C:\Documents and Settings\Mathieu Gosselin\Cookies\index.dat
C:\WINDOWS\TEMP\WGAErrLog.txt 255 bytes
C:\WINDOWS\TEMP\WGANotify.settings 409 bytes
C:\DOCUME~1\MATHIE~1\LOCALS~1\Temp\BIT44.tmp 17,1MB
C:\DOCUME~1\MATHIE~1\LOCALS~1\Temp\java_install_reg.log 416 bytes
C:\DOCUME~1\MATHIE~1\LOCALS~1\Temp\jusched.log 406 bytes
C:\DOCUME~1\MATHIE~1\LOCALS~1\Temp\MessengerCache\3Wc2FbIxjZQXR7kihn+mnxauxIRc= 22,14KB
C:\DOCUME~1\MATHIE~1\LOCALS~1\Temp\MessengerCache\JHYjhOhlfj4LhFUE50Gnas1r6bA= 2,08KB
C:\DOCUME~1\MATHIE~1\LOCALS~1\Temp\MessengerCache\vtemp3CV2FIRVLWBshMiEo2F0bOAE= 16,91KB
C:\DOCUME~1\MATHIE~1\LOCALS~1\Temp\MessengerCache\ZTbE6J8kl20dzoFo9bmIlpOOF90= 23,42KB
C:\DOCUME~1\MATHIE~1\LOCALS~1\Temp\VBE\MSForms.exd 0,14MB
C:\DOCUME~1\MATHIE~1\LOCALS~1\Temp\VBE\RefEdit.exd 14,69KB
C:\WINDOWS\system32\wbem\Logs\wbemess.log 41,88KB
C:\WINDOWS\system32\wbem\Logs\wmiprov.log 648 bytes
C:\Documents and Settings\Mathieu Gosselin\Application Data\Apple Computer\QuickTime\QTPlayerSession.xml 1,64KB
C:\Documents and Settings\Mathieu Gosselin\Application Data\Macromedia\Flash Player\#SharedObjects\57YNJQ8J\skype.com\#ui\preferences.sol 233 bytes
C:\Documents and Settings\Mathieu Gosselin\Application Data\Macromedia\Flash Player\#SharedObjects\57YNJQ8J\video.lequipe.fr\swf\p.swf\userPrefs.sol 68 bytes
C:\Documents and Settings\Mathieu Gosselin\Application Data\Macromedia\Flash Player\#SharedObjects\57YNJQ8J\www.pixmania.com\dev\gui_web\shopping\flashAS\Mac_180_150.swf\TestMovie_Config_Info.sol 341 bytes
C:\Documents and Settings\Mathieu Gosselin\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#video.lequipe.fr\settings.sol 86 bytes
C:\Documents and Settings\Mathieu Gosselin\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#www.pixmania.com\settings.sol 86 bytes
C:\Documents and Settings\Mathieu Gosselin\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\settings.sol 382 bytes
C:\Documents and Settings\Mathieu Gosselin\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\AnFade.jar-7f159050-6994daa4.idx 255 bytes
C:\Documents and Settings\Mathieu Gosselin\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\AnFade.jar-7f159050-6994daa4.zip 29,74KB
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\logfile.txt 1,00KB
------------------------------------------------------------------------------------------
Bit Defender: aucun virus détecté
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 16:06:52 17/05/2007
+ Résultat de l'analyse:
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@247realmedia[1].txt -> TrackingCookie.247realmedia : Aucune action entreprise.
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@surfline.112.2o7[1].txt -> TrackingCookie.2o7 : Aucune action entreprise.
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@bluestreak[1].txt -> TrackingCookie.Bluestreak : Aucune action entreprise.
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@doubleclick[1].txt -> TrackingCookie.Doubleclick : Aucune action entreprise.
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@mediaplex[1].txt -> TrackingCookie.Mediaplex : Aucune action entreprise.
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@weborama[1].txt -> TrackingCookie.Weborama : Aucune action entreprise.
Fin du rapport
Logfile of HijackThis v1.99.1
Scan saved at 14:24:38, on 18/05/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16441)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Network Associates\Common Framework\FrameworkService.exe
C:\Program Files\Network Associates\VirusScan\Mcshield.exe
C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\lotus\notes\ntmulti.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe
C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE
C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe
C:\Program Files\Fichiers communs\Network Associates\TalkBack\TBMon.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\HP\QuickPlay\QPService.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\hpq\Shared\HPQTOA~1.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.buoyweather.com/wxnav6.jsp?region=ME&program=nww3BW1&grb=wna&latitude=21.25&longitude=-86.75&zone=-6&units=e
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [eabconfg.cpl] C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe /Start
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [RecGuard] C:\Windows\SMINST\RecGuard.exe
O4 - HKLM\..\Run: [ShStatEXE] "C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE" /STANDALONE
O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe" /StartedFromRunKey
O4 - HKLM\..\Run: [Network Associates Error Reporting Service] "C:\Program Files\Fichiers communs\Network Associates\TalkBack\TBMon.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe -CheckReg
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O14 - IERESET.INF: START_PAGE_URL=https://www8.hp.com/fr/fr/home.html
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: McAfee Framework Service (McAfeeFramework) - Network Associates, Inc. - C:\Program Files\Network Associates\Common Framework\FrameworkService.exe
O23 - Service: Network Associates McShield (McShield) - Network Associates, Inc. - C:\Program Files\Network Associates\VirusScan\Mcshield.exe
O23 - Service: Network Associates Task Manager (McTaskManager) - Network Associates, Inc. - C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe
O23 - Service: Multi-user Cleanup Service - IBM Corp - C:\Program Files\lotus\notes\ntmulti.exe
Mon PC rame à mort depuis quelques temps, je ne peux même plus écouter de musique sans que ça saute... J'ai nettoyé mon disque, je dispose de mémoire suffisante. Je pense donc qu'il s'agit d'une quelconque infection. Voici les différents logs que j'ai obtenu avec les logiciels recommandés. Je n'ai malheureusement rien détecté, je ne sais donc plus quoi faire.
Merci 1000 fois pour votre précieuse aide!!
Mathieu
Ccleaner
Détails des fichiers effacés
------------------------------------------------------------------------------------------
Fichiers Temporaires d'Internet Explorer (fichiers 2791) 36,1MB
Cookie:mathieu gosselin@247realmedia.com/(&H100001) 92 bytes
Cookie:mathieu gosselin@idregie.com/(&H100001) 566 bytes
Cookie:mathieu gosselin@rad.msn.com/(&H100001) 660 bytes
Cookie:mathieu gosselin@www.pixmania.com/source/prod/(&H100001) 105 bytes
Cookie:mathieu gosselin@edt02.net/(&H100001) 409 bytes
Cookie:mathieu gosselin@estat.com/(&H100001) 86 bytes
Cookie:mathieu gosselin@weborama.fr/(&H100001) 267 bytes
Cookie:mathieu gosselin@hotmail.msn.com/(&H100001) 70 bytes
Cookie:mathieu gosselin@bbc.co.uk/(&H100001) 330 bytes
Cookie:mathieu gosselin@ad.yieldmanager.com/(&H100001) 399 bytes
Cookie:mathieu gosselin@surfline.112.2o7.net/(&H100001) 124 bytes
Cookie:mathieu gosselin@sdv.fr/(&H100001) 360 bytes
Cookie:mathieu gosselin@surfline.com/(&H100001) 87 bytes
Cookie:mathieu gosselin@ebooking.aegeanair.com/(&H100001) 367 bytes
Cookie:mathieu gosselin@google.fr/(&H100001) 130 bytes
Cookie:mathieu gosselin@yahoo.com/(&H100001) 169 bytes
Cookie:mathieu gosselin@rad.microsoft.com/(&H100001) 750 bytes
Cookie:mathieu gosselin@live.com/(&H100001) 348 bytes
Cookie:mathieu gosselin@liberation.fr/(&H100001) 260 bytes
Cookie:mathieu gosselin@msn.com/(&H100001) 430 bytes
Cookie:mathieu gosselin@aegeanair.com/(&H100001) 358 bytes
Cookie:mathieu gosselin@atdmt.com/(&H100001) 100 bytes
Cookie:mathieu gosselin@m.webtrends.com/(&H100001) 186 bytes
Cookie:mathieu gosselin@www.commentcamarche.net/(&H100001) 115 bytes
Cookie:mathieu gosselin@login.live.com/(&H100001) 183 bytes
Cookie:mathieu gosselin@dailymotion.com/(&H100001) 85 bytes
Cookie:mathieu gosselin@eulerian.net/(&H100001) 437 bytes
Cookie:mathieu gosselin@lecool.com/(&H100001) 331 bytes
Cookie:mathieu gosselin@microsoft.com/(&H100001) 386 bytes
Cookie:mathieu gosselin@www.smartadserver.com/(&H100001) 412 bytes
Cookie:mathieu gosselin@ssl-hints.netflame.cc/(&H100001) 162 bytes
Cookie:mathieu gosselin@i2as.idregie.com/(&H100001) 107 bytes
Cookie:mathieu gosselin@symantec.com/(&H100001) 109 bytes
Cookie:mathieu gosselin@kontera.com/(&H100001) 169 bytes
Cookie:mathieu gosselin@www.sur-la-toile.com/(&H100001) 179 bytes
Cookie:mathieu gosselin@doubleclick.net/(&H100001) 89 bytes
Cookie:mathieu gosselin@messenger.msn.com/(&H100001) 95 bytes
Cookie:mathieu gosselin@cybermonitor.com/(&H100001) 94 bytes
Cookie:mathieu gosselin@imrworldwide.com/cgi-bin(&H100001) 226 bytes
Cookie:mathieu gosselin@tracking.lsfinteractive.com/(&H100001) 134 bytes
Cookie:mathieu gosselin@kiteclubcabarete.com/(&H100001) 411 bytes
Cookie:mathieu gosselin@xiti.com/(&H100001) 100 bytes
Cookie:mathieu gosselin@www.pixmania.com/(&H100001) 1,46KB
Cookie:mathieu gosselin@c.msn.com/(&H100001) 67 bytes
Cookie:mathieu gosselin@mybloglog.com/(&H100001) 93 bytes
Cookie:mathieu gosselin@lemonde.fr/(&H100001) 541 bytes
Cookie:mathieu gosselin@bitdefender.com/(&H100001) 133 bytes
Cookie:mathieu gosselin@lefigaro.fr/(&H100001) 258 bytes
Cookie:mathieu gosselin@bluestreak.com/(&H100001) 729 bytes
Cookie:mathieu gosselin@trafiz.net/(&H100001) 571 bytes
Cookie:mathieu gosselin@sur-la-toile.com/(&H100001) 369 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@247realmedia[1].txt 92 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@bluestreak[1].txt 267 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@casalemedia[1].txt 98 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@cybermonitor[1].txt 94 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@doubleclick[1].txt 89 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@estat[1].txt 85 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@google[1].txt 130 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@kachouri[2].txt 355 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@lemonde[1].txt 385 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@liberation[2].txt 336 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@mediaplex[1].txt 85 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@sdv[1].txt 83 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@surfline.112.2o7[1].txt 124 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@surfline[1].txt 87 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@tradedoubler[1].txt 99 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@weborama[1].txt 89 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@www.commentcamarche[1].txt 114 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@www.smartadserver[2].txt 410 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@xiti[1].txt 106 bytes
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@yahoo[2].txt 160 bytes
Marqué pour l'effacement: C:\Documents and Settings\Mathieu Gosselin\Local Settings\Temporary Internet Files\Content.IE5\index.dat
Marqué pour l'effacement: C:\Documents and Settings\Mathieu Gosselin\Cookies\index.dat
C:\WINDOWS\TEMP\WGAErrLog.txt 255 bytes
C:\WINDOWS\TEMP\WGANotify.settings 409 bytes
C:\DOCUME~1\MATHIE~1\LOCALS~1\Temp\BIT44.tmp 17,1MB
C:\DOCUME~1\MATHIE~1\LOCALS~1\Temp\java_install_reg.log 416 bytes
C:\DOCUME~1\MATHIE~1\LOCALS~1\Temp\jusched.log 406 bytes
C:\DOCUME~1\MATHIE~1\LOCALS~1\Temp\MessengerCache\3Wc2FbIxjZQXR7kihn+mnxauxIRc= 22,14KB
C:\DOCUME~1\MATHIE~1\LOCALS~1\Temp\MessengerCache\JHYjhOhlfj4LhFUE50Gnas1r6bA= 2,08KB
C:\DOCUME~1\MATHIE~1\LOCALS~1\Temp\MessengerCache\vtemp3CV2FIRVLWBshMiEo2F0bOAE= 16,91KB
C:\DOCUME~1\MATHIE~1\LOCALS~1\Temp\MessengerCache\ZTbE6J8kl20dzoFo9bmIlpOOF90= 23,42KB
C:\DOCUME~1\MATHIE~1\LOCALS~1\Temp\VBE\MSForms.exd 0,14MB
C:\DOCUME~1\MATHIE~1\LOCALS~1\Temp\VBE\RefEdit.exd 14,69KB
C:\WINDOWS\system32\wbem\Logs\wbemess.log 41,88KB
C:\WINDOWS\system32\wbem\Logs\wmiprov.log 648 bytes
C:\Documents and Settings\Mathieu Gosselin\Application Data\Apple Computer\QuickTime\QTPlayerSession.xml 1,64KB
C:\Documents and Settings\Mathieu Gosselin\Application Data\Macromedia\Flash Player\#SharedObjects\57YNJQ8J\skype.com\#ui\preferences.sol 233 bytes
C:\Documents and Settings\Mathieu Gosselin\Application Data\Macromedia\Flash Player\#SharedObjects\57YNJQ8J\video.lequipe.fr\swf\p.swf\userPrefs.sol 68 bytes
C:\Documents and Settings\Mathieu Gosselin\Application Data\Macromedia\Flash Player\#SharedObjects\57YNJQ8J\www.pixmania.com\dev\gui_web\shopping\flashAS\Mac_180_150.swf\TestMovie_Config_Info.sol 341 bytes
C:\Documents and Settings\Mathieu Gosselin\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#video.lequipe.fr\settings.sol 86 bytes
C:\Documents and Settings\Mathieu Gosselin\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#www.pixmania.com\settings.sol 86 bytes
C:\Documents and Settings\Mathieu Gosselin\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\settings.sol 382 bytes
C:\Documents and Settings\Mathieu Gosselin\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\AnFade.jar-7f159050-6994daa4.idx 255 bytes
C:\Documents and Settings\Mathieu Gosselin\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\AnFade.jar-7f159050-6994daa4.zip 29,74KB
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\logfile.txt 1,00KB
------------------------------------------------------------------------------------------
Bit Defender: aucun virus détecté
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 16:06:52 17/05/2007
+ Résultat de l'analyse:
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@247realmedia[1].txt -> TrackingCookie.247realmedia : Aucune action entreprise.
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@surfline.112.2o7[1].txt -> TrackingCookie.2o7 : Aucune action entreprise.
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@bluestreak[1].txt -> TrackingCookie.Bluestreak : Aucune action entreprise.
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@doubleclick[1].txt -> TrackingCookie.Doubleclick : Aucune action entreprise.
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@mediaplex[1].txt -> TrackingCookie.Mediaplex : Aucune action entreprise.
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Aucune action entreprise.
C:\Documents and Settings\Mathieu Gosselin\Cookies\mathieu_gosselin@weborama[1].txt -> TrackingCookie.Weborama : Aucune action entreprise.
Fin du rapport
Logfile of HijackThis v1.99.1
Scan saved at 14:24:38, on 18/05/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16441)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Network Associates\Common Framework\FrameworkService.exe
C:\Program Files\Network Associates\VirusScan\Mcshield.exe
C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\lotus\notes\ntmulti.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe
C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE
C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe
C:\Program Files\Fichiers communs\Network Associates\TalkBack\TBMon.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\HP\QuickPlay\QPService.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\hpq\Shared\HPQTOA~1.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.buoyweather.com/wxnav6.jsp?region=ME&program=nww3BW1&grb=wna&latitude=21.25&longitude=-86.75&zone=-6&units=e
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [eabconfg.cpl] C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe /Start
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [RecGuard] C:\Windows\SMINST\RecGuard.exe
O4 - HKLM\..\Run: [ShStatEXE] "C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE" /STANDALONE
O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe" /StartedFromRunKey
O4 - HKLM\..\Run: [Network Associates Error Reporting Service] "C:\Program Files\Fichiers communs\Network Associates\TalkBack\TBMon.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe -CheckReg
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O14 - IERESET.INF: START_PAGE_URL=https://www8.hp.com/fr/fr/home.html
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: McAfee Framework Service (McAfeeFramework) - Network Associates, Inc. - C:\Program Files\Network Associates\Common Framework\FrameworkService.exe
O23 - Service: Network Associates McShield (McShield) - Network Associates, Inc. - C:\Program Files\Network Associates\VirusScan\Mcshield.exe
O23 - Service: Network Associates Task Manager (McTaskManager) - Network Associates, Inc. - C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe
O23 - Service: Multi-user Cleanup Service - IBM Corp - C:\Program Files\lotus\notes\ntmulti.exe
A voir également:
- PC super lent, recherche d'infection
- Pc lent - Guide
- Reinitialiser pc - Guide
- Super copier pc - Télécharger - Gestion de fichiers
- Downloader for pc - Télécharger - Téléchargement & Transfert
- Double ecran pc - Guide
Merci beaucoup de votre réponse; néanmoins j'ai déjà utilisé ccleaner (cf log posté dans le premier message) et rien n'y fait.