Me revoilà avec mon pb. En fait c'est "svchost.exe" qui fait des siennes. C'est ce fichier qui me bouffe 58% du CPU et qui me bloque le système. Toujours rien au niveau vrius ou autres.
S'il y a des pros parmi vous, qui peuvent m'aider, je joint un rapport de ce fichier lorsqu'il "s'active". Merci d'avance pour vos soluc, parce que là, moi, je vais péter les plombs !Voilà la bête...
 
 
 
Process PID CPU Description Company Name
winlogon.exe 556  Application d'ouverture de session Windows NT Microsoft Corporation
wdfmgr.exe 1248  Windows User Mode Driver Manager Microsoft Corporation
System Idle Process 0 47  
System 4 1  
svchost.exe 788  Generic Host Process for Win32 Services Microsoft Corporation
svchost.exe 812 48 Generic Host Process for Win32 Services Microsoft Corporation
svchost.exe 876  Generic Host Process for Win32 Services Microsoft Corporation
svchost.exe 900  Generic Host Process for Win32 Services Microsoft Corporation
svchost.exe 1224  Generic Host Process for Win32 Services Microsoft Corporation
SuperCopier.exe 256  Remplacement de la copie de fichiers de l'explorateur SFX TEAM
spoolsv.exe 940  Spooler SubSystem App Microsoft Corporation
smss.exe 480  Windows NT Session Manager Microsoft Corporation
SMax4PNP.exe 1972  SMax4PNP MFC Application Analog Devices, Inc.
SMAgent.exe 1184  SoundMAX service agent component Analog Devices, Inc.
services.exe 600 1 Applications Services et Contrôleur Microsoft Corporation
procexp.exe 1708 1 Sysinternals Process Explorer Sysinternals
PQV2iSvc.exe 1444  V2i Protector Service Module PowerQuest Corporation
pinmenu.exe 516  PROMT Integrator PROject MT, Ltd.
nvsvc32.exe 1100  NVIDIA Driver Helper Service, Version 56.72 NVIDIA Corporation
msnmsgr.exe 204  MSN Messenger Microsoft Corporation
lsass.exe 612  LSA Shell (Export Version) Microsoft Corporation
Interrupts n/a 1 Hardware Interrupts  
gearsec.exe 1060  gearsec GEAR Software
explorer.exe 1764  Explorateur Windows Microsoft Corporation
DPCs n/a 4 Deferred Procedure Calls  
csrss.exe 532  Client Server Runtime Process Microsoft Corporation
AvpM.exe 1076  KAV Monitor main module Kaspersky Labs.
avpcc.exe 1032  KL Control Centre Kaspersky Labs.
avpcc.exe 212  KL Control Centre Kaspersky Labs.
antipub.exe 312    
ADSL Autoconnect.exe 1636  ADSLAutoconnect  
ADSL Autoconnect.exe 264  ADSLAutoconnect  
acrotray.exe 496  AcroTray Adobe Systems Inc.
 
Process: svchost.exe Pid: 812
 
Type Name
Desktop \Default
Directory \Windows
Directory \BaseNamedObjects
Directory \KnownDlls
Event \BaseNamedObjects\crypt32LogoffEvent
Event \BaseNamedObjects\WBEM_ESS_OPEN_FOR_BUSINESS
Event \BaseNamedObjects\EVENT_READYROOT/CIMV2SCM EVENT PROVIDER
Event \BaseNamedObjects\EVENT_READYROOT/CIMV2WMI SELF-INSTRUMENTATION EVENT PROVIDER
Event \BaseNamedObjects\EVENT_READYROOT/CIMV2STANDARD NON-COM EVENT PROVIDER
Event \BaseNamedObjects\EVENT_READYROOT/CIMV2PROVIDERSUBSYSTEM
Event \BaseNamedObjects\DHCPNEWIPADDRESS
Event \BaseNamedObjects\ShellHWDetection'sEvent
Event \BaseNamedObjects\userenv:  User Profile setup event
Event \BaseNamedObjects\CGenericServiceManager__Init
Event \BaseNamedObjects\ShellHWDetection'sEvent
Event \BaseNamedObjects\ShellHWDetectionInitCompleted
Event \BaseNamedObjects\WkssvcToAgentStartEvent
Event \BaseNamedObjects\WkssvcToAgentStopEvent
Event \BaseNamedObjects\AgentToWkssvcEvent
Event \BaseNamedObjects\wkssvc:  MUP finished initializing event
Event \Device\DmControl\VxKernel2VoldEvent
Event \BaseNamedObjects\ReSyncKernel
Event \Security\TRKWKS_EVENT
Event \BaseNamedObjects\WINMGMT_COREDLL_CANSHUTDOWN
Event \LanmanServerAnnounceEvent
Event \BaseNamedObjects\SC_AutoStartComplete
Event \BaseNamedObjects\WINMGMT_REGISTRATION_DONE
Event \BaseNamedObjects\WINMGMT_COREDLL_LOADED
Event \BaseNamedObjects\WINMGMT_COREDLL_UNLOADED
Event \BaseNamedObjects\WINMGMT_PROVIDER_CANSHUTDOWN
Event \BaseNamedObjects\WINMGMT_MARSHALLING_SERVER_TERMINATE
Event \BaseNamedObjects\WINMGMT_NEED_REGISTRATION
Event \BaseNamedObjects\WMI_SysEvent_LodCtr
Event \BaseNamedObjects\WMI_SysEvent_UnLodCtr
Event \BaseNamedObjects\WMI_RevAdap_Set
Event \BaseNamedObjects\WMI_RevAdap_ACK
Event \BaseNamedObjects\WMI_ProcessIdleTasksStart
Event \BaseNamedObjects\WMI_ProcessIdleTasksComplete
Event \BaseNamedObjects\W32TIME_NAMED_EVENT_SYSTIME_NOT_CORRECT
Event \BaseNamedObjects\userenv: Machine Group Policy has been applied
Event \BaseNamedObjects\SENS Started Event
Event \BaseNamedObjects\--.-mailslot-53cb31a0-UnimodemNotifyTSP
Event \BaseNamedObjects\TermSrvReadyEvent
Event \BaseNamedObjects\__SkwatRASChecker__
Event \BaseNamedObjects\WBEM_ESS_OPEN_FOR_BUSINESS
Event \BaseNamedObjects\WINMGMT_PROVIDER_CANSHUTDOWN
Event \BaseNamedObjects\WBEM_ESS_OPEN_FOR_BUSINESS
Event \BaseNamedObjects\WBEM_ESS_OPEN_FOR_BUSINESS
Event \BaseNamedObjects\WinMMConsoleAudioEvent
Event \BaseNamedObjects\ReconEvent
Event \BaseNamedObjects\TermSrv:  machine GP event
Event \BaseNamedObjects\RasAutodialNewLogonUser
Event \BaseNamedObjects\RasAutodialLogoffUser
Event \BaseNamedObjects\RasAutodialLogoffUserDone
Event \BaseNamedObjects\RasAutoDialSharedConnectionEvent
Event \BaseNamedObjects\DINPUTWINMM
File C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.0.0_x-ww_1382d70a
File \Device\NamedPipe\ROUTER
File C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.0.0_x-ww_1382d70a
File \Device\NamedPipe\ssdpsrv
File \Device\NamedPipe\AudioSrv
File \Device\Tcp
File \Device\NamedPipe\PIPE_EVENTROOT\CIMV2SCM EVENT PROVIDER
File \Device\NamedPipe\PIPE_EVENTROOT\CIMV2SCM EVENT PROVIDER
File \Device\NamedPipe\AudioSrv
File \Device\Tcp
File \Device\Ip
File \Device\Ip
File \Device\Ip
File \Device\NamedPipe\DhcpClient
File \Device\Ip
File \Device\NamedPipe\ntsvcs
File \Device\WMIDataDevice
File \Device\WMIDataDevice
File C:\WINDOWS\Registration\R00000000000f.clb
File \Device\NamedPipe\AudioSrv
File \Device\NamedPipe\AudioSrv
File \Device\NamedPipe\svcctl
File \Device\LanmanRedirector
File \Device\LanmanDatagramReceiver
File \Device\NamedPipe\wkssvc
File C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.0.0_x-ww_1382d70a
File C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.0.0_x-ww_1382d70a
File \Device\KsecDD
File \Device\NamedPipe\keysvc
File \Device\NamedPipe\keysvc
File C:\WINDOWS\PCHEALTH\HELPCTR\BATCH
File \Device\NamedPipe\SECLOGON
File \Device\NamedPipe\SECLOGON
File N:
File M:
File O:
File P:
File Q:
File C:
File D:
File E:
File F:
File G:
File H:
File I:
File J:
File \Device\NamedPipe\trkwks
File \Device\NamedPipe\trkwks
File P:\$Extend\$ObjId
File P:\System Volume Information\tracking.log
File C:\WINDOWS\system32\wbem\mof
File \Device\LanmanServer
File O:\$Extend\$ObjId
File \Device\NamedPipe\srvsvc
File \Device\NamedPipe\srvsvc
File \Device\NamedPipe\srvsvc
File \Device\NamedPipe\ntsvcs
File \Device\NamedPipe\net\NtControlPipe3
File M:\$Extend\$ObjId
File O:\System Volume Information\tracking.log
File \Device\NamedPipe\tapsrv
File \Device\NamedPipe\tapsrv
File N:\$Extend\$ObjId
File N:\System Volume Information\tracking.log
File \Device\NamedPipe\W32TIME
File \Device\NamedPipe\W32TIME
File M:\System Volume Information\tracking.log
File \Device\LanmanDatagramReceiver
File \Device\Afd\Endpoint
File \Device\NamedPipe\browser
File Q:\$Extend\$ObjId
File \Device\NamedPipe\ROUTER
File \Device\NamedPipe\browser
File \Device\NamedPipe\ROUTER
File \Device\NamedPipe\svcctl
File C:\WINDOWS\Debug\NetSetup.LOG
File Q:\System Volume Information\tracking.log
File \Device\NamedPipe\EVENTLOG
File \Device\NdisWan
File C:\$Extend\$ObjId
File C:\System Volume Information\tracking.log
File E:\$Extend\$ObjId
File D:\System Volume Information\tracking.log
File D:\$Extend\$ObjId
File F:\$Extend\$ObjId
File E:\System Volume Information\tracking.log
File C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.0.0_x-ww_1382d70a
File G:\$Extend\$ObjId
File F:\System Volume Information\tracking.log
File G:\System Volume Information\tracking.log
File H:\$Extend\$ObjId
File H:\System Volume Information\tracking.log
File \Device\Mailslot\53cb31a0\UnimodemNotifyTSP
File I:\$Extend\$ObjId
File I:\System Volume Information\tracking.log
File J:\$Extend\$ObjId
File \Device\NdisTapi
File \Device\NdisTapi
File J:\System Volume Information\tracking.log
File \Device\NDProxy
File \Device\NDProxy
File C:\WINDOWS\system32\h323log.txt
File \Device\NamedPipe\ROUTER
File \Device\NamedPipe\ROUTER
File \Device\NamedPipe\wkssvc
File \Device\WANARP
File \Device\NamedPipe\wkssvc
File \Device\NamedPipe\AudioSrv
File \Device\NamedPipe\ROUTER
File \Device\KSENUM#00000001\{9B365890-165F-11D0-A195-0020AFD156E4}
File C:\WINDOWS\system32
File \Device\Udp
File \Device\Tcp
File \Device\Afd\Endpoint
File \Device\Udp
File \Device\NamedPipe\ROUTER
File \Device\NamedPipe\ROUTER
File \Device\NamedPipe\AudioSrv
File C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA
File C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR
File \Device\Afd\Endpoint
File C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.0.0_x-ww_1382d70a
File \Device\RasAcd
File C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.0.0_x-ww_1382d70a
File \Device\Termdd
File \Device\Termdd
File \Device\NamedPipe\ntsvcs
File \Device\NamedPipe\Ctx_WinStation_API_service
File \Device\NamedPipe\Ctx_WinStation_API_service
File \Device\Termdd
File \Device\Termdd
File \Device\NamedPipe\svcctl
Job \BaseNamedObjects\WmiProviderSubSystemHostJob
Key HKU\.DEFAULT\Software\Microsoft\Windows NT\CurrentVersion\Network\Location Awareness
Key HKLM\SOFTWARE\Microsoft\Tracing\RASDLG
Key HKU\.DEFAULT\Software\Microsoft\Windows NT\CurrentVersion\Network\Location Awareness
Key HKLM\SYSTEM\ControlSet001\Services\Tcpip\Linkage
Key HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters
Key HKLM\SYSTEM\ControlSet001\Services\NetBT\Parameters\Interfaces
Key HKLM\SYSTEM\ControlSet001\Services\NetBT\Parameters
Key HKLM\SYSTEM\ControlSet001\Services\WinSock2\Parameters\Protocol_Catalog9
Key HKLM\SYSTEM\ControlSet001\Services\WinSock2\Parameters\NameSpace_Catalog5
Key HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters
Key HKLM\SYSTEM\ControlSet001\Services\Dhcp\Parameters
Key HKLM\SYSTEM\ControlSet001\Services\Dhcp\Parameters\Options
Key HKLM\SYSTEM\ControlSet001\Services
Key HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters\DNSRegisteredAdapters
Key HKLM
Key HKLM\SOFTWARE\Microsoft\Tracing\EAPOL
Key HKLM\SOFTWARE\Microsoft\Tracing\RASTLS
Key HKLM\SOFTWARE\Microsoft\Tracing\RASCHAP
Key HKCR
Key HKLM\SOFTWARE\Microsoft\COM3
Key HKU
Key HKCR
Key HKU
Key HKLM\SOFTWARE\Microsoft\COM3
Key HKLM\SOFTWARE\Microsoft\COM3
Key HKCR\CLSID
Key HKCR
Key HKLM\SOFTWARE\Microsoft\COM3
Key HKU
Key HKLM\SOFTWARE\Microsoft\COM3
Key HKLM\SOFTWARE\Microsoft\COM3
Key HKCR\CLSID
Key HKCR
Key HKLM\SYSTEM\ControlSet001\Services\lanmanworkstation\parameters
Key HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings
Key HKLM\SOFTWARE\Microsoft\Tracing\tapisrv
Key HKLM\SYSTEM\ControlSet001\Services\lanmanserver\parameters
Key HKLM\SYSTEM\ControlSet001\Services\Browser\Parameters
Key HKLM\SOFTWARE\Microsoft\EventSystem\{26c409cc-ae86-11d1-b616-00805fc79216}
Key HKLM\SOFTWARE\Microsoft\EventSystem\{26c409cc-ae86-11d1-b616-00805fc79216}\EventClasses
Key HKLM\SOFTWARE\Microsoft\EventSystem\{26c409cc-ae86-11d1-b616-00805fc79216}\Subscriptions
Key HKLM\SYSTEM\Setup
Key HKU\.DEFAULT\Software\Microsoft\Windows\ShellNoRoam
Key HKU\.DEFAULT\Software\Microsoft\Windows\ShellNoRoam\MUICache
Key HKLM\SOFTWARE\Microsoft\COM3
Key HKLM\SOFTWARE\Microsoft\Tracing\RASTAPI
Key HKLM\SOFTWARE\Microsoft\Tracing\tapi32
Key HKU\.DEFAULT
Key HKLM\SOFTWARE\Microsoft\Tracing\KMDDSP
Key HKLM\SOFTWARE\Microsoft\Tracing\NDPTSP
Key HKLM\SOFTWARE\Microsoft\Tracing\conftsp
Key HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\H323TSP
Key HKLM\SOFTWARE\Microsoft\Tracing\RASMAN
Key HKLM\SOFTWARE\Microsoft\Tracing\PPP
Key HKLM\SOFTWARE\Microsoft\Tracing\BAP
Key HKLM\SYSTEM\ControlSet001\Services\RasMan\PPP
Key HKLM\SOFTWARE\Microsoft\Tracing\RASSPAP
Key HKLM\SOFTWARE\Microsoft\Tracing\RASPAP
Key HKLM\SOFTWARE\Microsoft\Tracing\RASEAP
Key HKLM\SOFTWARE\Microsoft\Tracing\RASCCP
Key HKLM\SOFTWARE\Microsoft\Tracing\RASBACP
Key HKCU\Software\Microsoft\RAS Autodial
Key HKLM\SOFTWARE\Microsoft\Tracing\RASIPHLP
Key HKLM\SOFTWARE\Microsoft\Tracing\RASIPCP
Key HKU
Key HKLM\SYSTEM\ControlSet001\Control\Nls\Language Groups
Key HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\{BCE9A4EC-7786-4563-962B-C58427622436}
Key HKLM\SYSTEM\ControlSet001\Control\Nls\Locale
Key HKLM\SYSTEM\ControlSet001\Control\Nls\Locale\Alternate Sorts
Key HKLM\SYSTEM\ControlSet001\Control\Terminal Server\Licensing Core
Key HKLM\SYSTEM\ControlSet001\Services\TermService\Parameters
Key HKLM\SOFTWARE\Microsoft\Tracing\RASAUTO
Key HKLM\SYSTEM\ControlSet001\Control\Terminal Server
Key HKLM\SOFTWARE\Policies
Key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32
Key HKCU
Key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Network\Location Awareness
KeyedEvent \KernelObjects\CritSecOutOfMemoryEvent
Mutant \NlsCacheMutant
Mutant \BaseNamedObjects\RasPbFile
Mutant \BaseNamedObjects\RasPbFile
Mutant \BaseNamedObjects\WINMGMT_MARSHALLING_SERVER
Mutant \BaseNamedObjects\WINMGMT_KEEP_NEW_CLIENTS_AT_BAY
Mutant \BaseNamedObjects\ShimCacheMutex
Mutant \BaseNamedObjects\RAS_MO_02
Mutant \BaseNamedObjects\RAS_MO_01
Mutant \BaseNamedObjects\WINMGMT_ACTIVE
Mutant \BaseNamedObjects\746bbf3569adEncrypt
Port \RPC Control\wzcsvc
Port \RPC Control\OLE3
Port \RPC Control\keysvc
Port \RPC Control\trkwks
Port \XactSrvLpcPort
Port \RPC Control\tapsrvlpc
Port \RPC Control\senssvc
Port \ThemeApiPort
Port \RPC Control\IcaApi
Port \FusApiPort
Port \SmSsWinStationApiPort
Process <Non-existent Process>(168)
Process winlogon.exe(556)
Process winlogon.exe(556)
Process svchost.exe(812)
Process msnmsgr.exe(204)
Process nvsvc32.exe(1100)
Process procexp.exe(1708)
Process svchost.exe(812)
Process winlogon.exe(556)
Process ADSL Autoconnect.exe(1636)
Process explorer.exe(1764)
Process explorer.exe(1764)
Process SMax4PNP.exe(1972)
Process ADSL Autoconnect.exe(1636)
Process avpcc.exe(212)
Process ADSL Autoconnect.exe(264)
Process acrotray.exe(496)
Process SuperCopier.exe(256)
Process antipub.exe(312)
Process pinmenu.exe(516)
Process winlogon.exe(556)
Process svchost.exe(812)
Process winlogon.exe(556)
Process csrss.exe(532)
Process explorer.exe(1764)
Section \BaseNamedObjects\__R_00000000000f_SMem__
Section \BaseNamedObjects\mmGlobalPnpInfo
Section \BaseNamedObjects\SENS Information Cache
Section \BaseNamedObjects\RotHintTable
Section \BaseNamedObjects\Wmi Provider Sub System Counters
Section \BaseNamedObjects\ShimSharedMemory
Semaphore \BaseNamedObjects\shell.{210A4BA0-3AEA-1069-A2D9-08002B30309D}
Thread svchost.exe(812): 1584
Thread svchost.exe(812): 1508
Thread svchost.exe(812): 1316
Thread svchost.exe(812): 1716
Thread svchost.exe(812): 2040
Thread svchost.exe(812): 1608
Thread svchost.exe(812): 1600
Thread svchost.exe(812): 1620
Thread svchost.exe(812): 1656
Thread svchost.exe(812): 1608
Thread svchost.exe(812): 1648
Thread svchost.exe(812): 120
Thread svchost.exe(812): 860
Thread svchost.exe(812): 872
Thread svchost.exe(812): 924
Thread svchost.exe(812): 932
Thread <Non-existent Process>(168): 1312
Thread svchost.exe(812): 932
Thread svchost.exe(812): 972
Thread svchost.exe(812): 976
Thread svchost.exe(812): 980
Thread svchost.exe(812): 988
Thread svchost.exe(812): 1084
Thread svchost.exe(812): 1092
Thread svchost.exe(812): 1072
Thread svchost.exe(812): 1332
Thread svchost.exe(812): 816
Thread svchost.exe(812): 988
Thread svchost.exe(812): 1276
Thread svchost.exe(812): 1292
Thread svchost.exe(812): 1412
Thread svchost.exe(812): 1416
Thread svchost.exe(812): 1056
Thread svchost.exe(812): 1416
Thread svchost.exe(812): 1356
Thread svchost.exe(812): 1292
Thread svchost.exe(812): 300
Thread svchost.exe(812): 1376
Thread svchost.exe(812): 1472
Thread svchost.exe(812): 1408
Thread svchost.exe(812): 956
Thread svchost.exe(812): 1480
Thread svchost.exe(812): 1480
Thread svchost.exe(812): 1484
Thread svchost.exe(812): 1496
Thread svchost.exe(812): 1500
Thread svchost.exe(812): 1500
Thread svchost.exe(812): 824
Thread svchost.exe(812): 1516
Thread svchost.exe(812): 828
Thread svchost.exe(812): 1520
Thread svchost.exe(812): 1524
Thread svchost.exe(812): 1528
Thread svchost.exe(812): 1528
Thread svchost.exe(812): 1628
Thread svchost.exe(812): 1408
Thread svchost.exe(812): 1356
Thread svchost.exe(812): 1356
Thread svchost.exe(812): 868
Thread svchost.exe(812): 1736
Thread explorer.exe(1764): 1864
Thread svchost.exe(812): 1532
Thread svchost.exe(812): 1632
Thread svchost.exe(812): 1632
Thread svchost.exe(812): 2004
Thread svchost.exe(812): 984
Thread svchost.exe(812): 1504
Thread svchost.exe(812): 1008
Thread svchost.exe(812): 860
Thread svchost.exe(812): 1044
Thread svchost.exe(812): 2040
Thread svchost.exe(812): 1116
Thread svchost.exe(812): 1056
Thread svchost.exe(812): 1304
Thread svchost.exe(812): 1308
Thread svchost.exe(812): 868
Thread svchost.exe(812): 1304
Thread svchost.exe(812): 1316
Thread svchost.exe(812): 1424
Thread svchost.exe(812): 1212
Thread svchost.exe(812): 1280
Thread svchost.exe(812): 1280
Thread svchost.exe(812): 1504
Thread svchost.exe(812): 1612
Thread svchost.exe(812): 1508
Token AUTORITE NT\SYSTEM
Token 14-M1HLRRTKP89O\Philip
Token AUTORITE NT\SYSTEM
Token 14-M1HLRRTKP89O\Philip
Token 14-M1HLRRTKP89O\Philip
Token 14-M1HLRRTKP89O\Philip
Token AUTORITE NT\SYSTEM
Token AUTORITE NT\SYSTEM
Token AUTORITE NT\SYSTEM
Token 14-M1HLRRTKP89O\Philip
Token 14-M1HLRRTKP89O\Philip
Token 14-M1HLRRTKP89O\Philip
Token 14-M1HLRRTKP89O\Philip
Token 14-M1HLRRTKP89O\Philip
WaitablePort \Security\TRKWKS_PORT
WaitablePort \NLAPrivatePort
WaitablePort \NLAPublicPort
WindowStation \Windows\WindowStations\Service-0x0-3e7$
WindowStation \Windows\WindowStations\Service-0x0-3e7$

on t a dit section software, sinon google "antivirus online"

tros complexe pour moi desolé

Bonjour à tous,
 
Je reviens ici pour rectifier mes explications.
En effet, ce n'était pas non plus un manque de pâte thermique, comme je le pensais, qui me collait le merdier (bien que ça ne lui à pas fait de mal que j'en remette !). Non, c'était bien un ver; DOOM qu'il se nomme le cher petit. Très vicieux le gars. (pas MYDOOM, c'est pas le même).
Cette vermine s'injecte par le net, prend le nom d'un fichier indispensable à XP, en l'occurence "SVCHOST.EXE" et sème la panique à bord, du genre:
- Monte l'utilisation CPU à 50% et + et ne redescent plus. Donc, fait chauffer le proco.
- Modifie les barres de tâches quand ça lui chante.
- Empêche tous programmes de se lancer. Bref, rend le système complètement instable.
 
Apparement, tous ceux qui ont l'adsl ne le choppent pas et là, je ne sais pas pourquoi. Tant mieux pour eux. Et à priori, ceux qui n'ont pas l'adsl peuvent l'avoir mais ne s'active pas. Des porteurs sains en quelque sorte !
 
A l'origine, on doit avoir 4 fichiers SVCHOST qui tournent simultanément. Quand la vérole de DOOM est injectée, il en apparaît un 5ème. Bien évidement, faut-il s'en rendre compte. Mais impossible de savoir lequel est de trop et aussi si ce 5ème est "normal" ou non. Aucun anti-virus, même en ligne, n'est capable de le détecter. Pas plus d'ailleurs que des trucs genre SpywareGuard, Spybot et autres. Seul capable de le bloquer: NORTON anti-virus 2005, qui inclus maintenant dans cette nouvelle version, une détection de vers.
 
Voilà, pour ceux qui auraient les mêmes symptômes que moi, vous savez ce qu'il vous reste à faire: NAV2005 ! (je ne suis pas payé par eux pour la pub !)
Depuis, plus de problème de ce côté.
 
Merci encore pour votre aide.
@+++  Phil