webriton64

Bonjour, goodmorning, gutentag, bongiorno, buones dia, salam, egunon ( ça c'est du basque),nǐ hăo( pour les chinois),shalom, dzień dobry ( pour les amateurs de Vodka), sawubona (pour les internautes zoulous). En fait c'est pour la reine de la politesse et merci au fait de m'avoir aidé

Bonjour , je vous jons donc le raport combofix , depuis l'analyse je ne peux plus afficher certaines pages web ( pour aller sur le forum zebulon j'ai du prendre un autre pc ) merci donc de m'aider ou de me dire comment restaurer avant analyse car là je suis un peu dans le caca merci d'avance omboFix 08-05-15.3 - eric 2008-05-18 9:25:49.1 - NTFSx86 Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.539 [GMT 2:00] Endroit: K:\telecharger\ComboFix.exe * Création d'un nouveau point de restauration * Resident AV is active AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !! . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . C:\Program Files\autorun.inf C:\RECYCLER\dir C:\WINDOWS\cookies.ini C:\WINDOWS\pskt.ini C:\WINDOWS\system32\ardbxmps.ini C:\WINDOWS\system32\iunguaqk.ini C:\WINDOWS\system32\lhntjcit.ini C:\WINDOWS\system32\lravpcxj.ini C:\WINDOWS\system32\lRuwyyxx.ini C:\WINDOWS\system32\lRuwyyxx.ini2 C:\WINDOWS\system32\mcrh.tmp C:\WINDOWS\system32\xxxblunj.ini C:\WINDOWS\system32\xxxblunj.ini2 C:\WINDOWS\system32\xxxblunj.tmp . ((((((((((((((((((((((((((((( Fichiers cr‚‚s 2008-04-18 to 2008-05-18 )))))))))))))))))))))))))))))))))))) . 2008-05-18 09:34 . 2008-05-18 09:34 294 ---hs---- C:\WINDOWS\system32\xxxblunj.ini 2008-05-18 09:25 . 2008-05-18 09:25 1,024 --ah----- C:\WINDOWS\system32\config\systemprofile\ntuser.dat.LOG 2008-05-17 21:54 . 2008-05-17 21:54 <REP> d-------- C:\Program Files\Lavasoft 2008-05-17 21:54 . 2008-05-17 21:55 <REP> d-------- C:\Documents and Settings\All Users.WINDOWS\Application Data\Lavasoft 2008-05-17 21:53 . 2008-05-17 21:53 <REP> d-------- C:\Program Files\Fichiers communs\Wise Installation Wizard 2008-05-17 19:16 . 2008-05-17 22:22 <REP> d-------- C:\Program Files\a-squared Anti-Malware 2008-05-17 18:30 . 1996-08-20 20:37 15,840 --a------ C:\WINDOWS\system32\Machnm1.exe 2008-05-17 18:30 . 2005-09-25 16:37 5,632 --a------ C:\WINDOWS\system32\Machnm64.sys 2008-05-17 18:30 . 2008-05-17 18:30 3,120 --a------ C:\WINDOWS\system32\118290.54 2008-05-17 18:30 . 2008-05-17 18:30 3,120 --a------ C:\WINDOWS\118294.78 2008-05-17 18:30 . 2003-08-13 00:27 2,304 --a------ C:\WINDOWS\system32\Machnm32.sys 2008-05-17 18:29 . 2008-05-17 18:30 <REP> d-------- C:\Program Files\Defenza 2008-05-17 17:58 . 2008-05-17 17:58 134,144 --a------ C:\WINDOWS\system32\vkribrga.dll 2008-05-17 17:56 . 2008-05-17 17:56 116,224 --a------ C:\WINDOWS\system32\jnulbxxx.dll 2008-05-17 17:55 . 2008-05-17 17:55 125,952 --a------ C:\WINDOWS\system32\huclhapc.dll 2008-05-17 17:05 . 2008-05-17 17:05 134,144 --a------ C:\WINDOWS\system32\bjfobgtk.dll 2008-05-17 17:03 . 2008-05-17 17:03 125,952 --a------ C:\WINDOWS\system32\vpyrfeox.dll 2008-05-17 12:12 . 2008-05-17 12:12 <REP> d-------- C:\Program Files\AIDA32 - Enterprise System Information 2008-05-17 12:03 . 2008-05-17 12:03 134,144 --a------ C:\WINDOWS\system32\hrbswsmc.dll 2008-05-17 12:03 . 2008-05-17 12:03 116,224 --------- C:\WINDOWS\system32\ticjtnhl.dll 2008-05-17 11:49 . 2008-05-17 11:49 125,952 --a------ C:\WINDOWS\system32\vrytmxet.dll 2008-05-17 11:48 . 2008-05-17 11:48 371,712 --------- C:\WINDOWS\system32\xxyywuRl.dll 2008-05-17 11:39 . 2008-05-17 11:39 370,176 --a------ C:\WINDOWS\system32\tuvWmMFV.dll.vir 2008-05-17 11:17 . 2008-05-17 11:17 134,144 --a------ C:\WINDOWS\system32\ccmihawb.dll 2008-05-17 11:13 . 2008-05-17 11:13 125,952 --a------ C:\WINDOWS\system32\xhpgqlld.dll 2008-05-17 10:50 . 2008-05-17 10:50 <REP> d-------- C:\Program Files\Trend Micro 2008-05-17 09:31 . 2008-05-17 09:31 0 --a------ C:\WINDOWS\system32\mapisvc.inf 2008-05-17 09:30 . 2008-05-17 11:58 <REP> d-------- C:\Program Files\ESET 2008-05-17 09:30 . 2008-05-17 09:30 512,096 --a------ C:\WINDOWS\system32\drivers\amon.sys 2008-05-17 09:30 . 2008-05-17 09:30 298,104 --a------ C:\WINDOWS\system32\imon.dll 2008-05-17 09:30 . 2008-05-17 09:30 15,424 --a------ C:\WINDOWS\system32\drivers\nod32drv.sys 2008-05-16 20:18 . 2008-02-22 02:33 69,632 --a------ C:\WINDOWS\system32\javacpl.cpl 2008-05-16 17:01 . 2008-05-16 17:01 135,680 --a------ C:\WINDOWS\system32\huymanfd.dll 2008-05-16 16:50 . 2008-05-16 16:50 125,952 --a------ C:\WINDOWS\system32\yjqohwxa.dll 2008-05-16 08:39 . 2008-05-17 17:48 109,825 --a------ C:\WINDOWS\BM0b1c7661.xml 2008-05-15 20:36 . 2008-05-17 11:39 701,175 --a------ C:\WINDOWS\system32\VFMmWvut.ini2.vir 2008-05-15 20:36 . 2008-05-17 11:41 701,175 --ahs---- C:\WINDOWS\system32\VFMmWvut.ini.vir 2008-05-15 20:31 . 2008-05-15 20:31 56,320 --a------ C:\WINDOWS\system32\xxyxVmlK.dll 2008-05-15 10:38 . 2008-05-15 10:38 <REP> d-------- C:\Program Files\Neuf 2008-05-08 14:51 . 2008-05-08 14:51 151 --a------ C:\WINDOWS\PhotoSnapViewer.INI 2008-05-07 18:58 . 2004-08-30 14:25 438,272 --a------ C:\WINDOWS\system32\vp6vfw.dll 2008-05-07 18:58 . 2004-12-10 10:06 327,680 --a------ C:\WINDOWS\system32\vp6dec.ax 2008-05-07 18:58 . 2007-04-12 15:01 118,832 --a------ C:\WINDOWS\system32\SHW32.DLL 2008-04-30 13:21 . 2008-04-30 13:21 <REP> d-------- C:\Program Files\HDDGURU LLF Tool 2008-04-23 17:12 . 2008-04-23 17:12 <REP> d-------- C:\Program Files\KONAMI 2008-04-21 08:38 . 2008-04-21 08:38 <REP> d-------- C:\Program Files\Apple Software Update . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2008-05-17 17:08 --------- d-----w C:\Program Files\hp deskjet 920c series 2008-05-17 16:29 --------- d--h--w C:\Program Files\InstallShield Installation Information 2008-05-17 09:45 --------- d---a-w C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP 2008-05-16 21:13 --------- d-----w C:\Program Files\Opera 2008-05-16 18:18 --------- d-----w C:\Program Files\Java 2008-05-08 13:29 --------- d-----w C:\Documents and Settings\eric.ERIC-7663B89913\Application Data\LimeWire 2008-04-23 14:38 --------- d-----w C:\Documents and Settings\eric.ERIC-7663B89913\Application Data\F4 2008-04-21 11:44 --------- d-----w C:\Program Files\Micro Application 2008-04-20 09:56 --------- d-----w C:\Program Files\eMule 2008-04-13 16:17 --------- d-----w C:\Program Files\Canal 2008-04-13 16:16 --------- d-----w C:\Program Files\Fichiers communs\Adobe AIR 2008-04-09 15:06 --------- d-----w C:\Program Files\iTunes 2008-04-09 15:06 --------- d-----w C:\Program Files\iPod 2008-04-09 15:04 --------- d-----w C:\Program Files\QuickTime 2008-04-06 11:16 413,696 ----a-w C:\WINDOWS\system32\wrap_oal.dll 2008-04-06 11:16 110,592 ----a-w C:\WINDOWS\system32\OpenAL32.dll 2008-04-06 11:16 --------- d-----w C:\Program Files\OpenAL 2008-04-03 15:15 --------- d-----w C:\Documents and Settings\eric.ERIC-7663B89913\Application Data\foobar2000 2008-03-28 10:51 --------- d-----w C:\Documents and Settings\eric.ERIC-7663B89913\Application Data\FileOpen 2008-03-28 10:47 --------- d-----w C:\Documents and Settings\All Users.WINDOWS\Application Data\FileOpen 2008-03-28 10:46 --------- d-----w C:\Program Files\FileOpen 2008-03-20 08:09 1,845,376 ----a-w C:\WINDOWS\system32\win32k.sys 2008-03-19 12:29 --------- d-----w C:\Documents and Settings\eric.ERIC-7663B89913\Application Data\Microsoft Corporation 2008-03-19 12:29 --------- d-----w C:\Documents and Settings\All Users.WINDOWS\Application Data\Microsoft Corporation 2008-03-14 19:28 593,272 ----a-w C:\WINDOWS\system32\SpoonUninstall.exe 2008-03-13 11:33 878,080 ----a-w C:\WINDOWS\system32\iconv.dll 2008-03-13 11:33 721,920 ----a-w C:\WINDOWS\system32\libxml2.dll 2008-03-13 11:33 51,200 ----a-w C:\WINDOWS\system32\libexslt.dll 2008-03-13 11:33 150,016 ----a-w C:\WINDOWS\system32\libxslt.dll 2008-03-05 12:59 108,144 ----a-w C:\WINDOWS\system32\CmdLineExt.dll 2008-03-01 16:28 3,591,680 ----a-w C:\WINDOWS\system32\mshtml(2).dll 2008-03-01 12:58 826,368 ----a-w C:\WINDOWS\system32\wininet.dll 2008-03-01 12:58 826,368 ----a-w C:\WINDOWS\system32\wininet(3).dll 2008-03-01 12:58 1,159,680 ----a-w C:\WINDOWS\system32\urlmon(3).dll 2008-02-23 17:59 87,608 ----a-w C:\Documents and Settings\eric.ERIC-7663B89913\Application Data\ezpinst.exe 2008-02-23 17:59 47,360 ----a-w C:\Documents and Settings\eric.ERIC-7663B89913\Application Data\pcouffin.sys 2008-02-20 06:51 282,624 ----a-w C:\WINDOWS\system32\gdi32.dll 2008-02-20 05:35 45,568 ----a-w C:\WINDOWS\system32\dnsrslvr.dll 2005-09-12 21:36 12,814,336 ----a-w C:\Program Files\mp10setup.exe 2003-07-25 14:49 2,037,796 ----a-w C:\Program Files\SPR10.exe 2003-07-07 12:00 8,845 -c--a-w C:\Program Files\SETUP.APM . ((((((((((((((((((((((((((((((((( Point de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))) . . REGEDIT4 *Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2E0050D6-23B9-48B0-BCE3-68D34943BB90}] 2008-05-18 09:38 371712 --a------ C:\WINDOWS\system32\khfEUoNf.dll [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{703d9fb2-e497-4a04-93b0-449657f1ed42}] 2008-05-17 17:58 134144 --a------ C:\WINDOWS\system32\vkribrga.dll [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{89FDB4F6-8D15-4BE6-8E70-16C5D7531CD5}] 2008-05-17 11:48 371712 --------- C:\WINDOWS\system32\xxyywuRl.dll [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E23136A1-1AC4-4D1B-926F-5D537CFFF359}] 2008-05-15 20:31 56320 --a------ C:\WINDOWS\system32\xxyxVmlK.dll [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-05 14:00 15360] "DAEMON Tools Pro Agent"="C:\Program Files\DAEMON Tools Pro\DTProAgent.exe" [2007-09-06 15:08 136136] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "HPDJ Taskbar Utility"="C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe" [2001-11-19 16:37 196608] "Smapp"="C:\Program Files\Analog Devices\SoundMAX\SMTray.exe" [2003-05-05 08:57 143360] "SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [2008-02-22 04:25 144784] "nod32kui"="C:\Program Files\Eset\nod32kui.exe" [2008-05-17 09:30 949376] "082f45fd"="C:\WINDOWS\system32\jnulbxxx.dll" [2008-05-17 17:56 116224] "PCDAS"="C:\Program Files\Defenza\pcd-as.exe" [2006-12-15 10:47 1359872] "BM0b1c7661"="C:\WINDOWS\system32\bhwcxpkk.dll" [2008-05-18 09:40 125952] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-05 14:00 15360] [hkey_local_machine\software\microsoft\windows\currentversion\explorer\shellexecutehooks] "{E23136A1-1AC4-4D1B-926F-5D537CFFF359}"= C:\WINDOWS\system32\xxyxVmlK.dll [2008-05-15 20:31 56320] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\xxyxVmlK] xxyxVmlK.dll 2008-05-15 20:31 56320 C:\WINDOWS\system32\xxyxVmlK.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "msacm.avis"= ff_acm.acm [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Authentication Packages REG_MULTI_SZ msv1_0 C:\WINDOWS\system32\khfEUoNf [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] --a------ 2008-01-11 23:16 39792 C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] --a------ 2007-06-27 19:03 152872 C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Canal Widget] --a------ 2008-03-05 21:20 94720 C:\Program Files\Canal\Canal Widget\Launcher.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE] --a------ 2004-08-05 14:00 15360 C:\WINDOWS\system32\ctfmon.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Pro Agent] --a------ 2007-09-06 15:08 136136 C:\Program Files\DAEMON Tools Pro\DTProAgent.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ezShieldProtector for Px] --a------ 2002-08-20 11:29 40960 C:\WINDOWS\system32\ezSP_Px.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM] C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] --a------ 2008-03-30 10:36 267048 C:\Program Files\iTunes\iTunesHelper.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\L08FXLRD_79067140] C:\Program Files\Microsoft Etudes\Microsoft Encarta 2008 - Études DVD\EDICT.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS] --------- 2004-10-13 18:24 1694208 C:\Program Files\Messenger\msmsgs.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] --a------ 2007-03-01 15:57 153136 C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Orb] --a------ 2007-10-23 02:47 360448 C:\Program Files\Winamp Remote\bin\OrbTray.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE] --a------ 2008-01-20 09:05 217088 C:\Program Files\PowerISO\PWRISOVM.EXE [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] --a------ 2008-03-28 23:37 413696 C:\Program Files\QuickTime\QTTask.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer] --a------ 2007-08-31 16:46 1460560 C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] --a------ 2008-02-22 04:25 144784 C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrojanScanner] --a------ 2008-02-09 15:05 744528 d:\Program Files\Trojan Remover\Trjscan.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent] --a------ 2007-10-10 07:28 36352 C:\Program Files\Winamp\winampa.exe [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "D:\\Program Files\\BitLord\\BitLord.exe"= "C:\\Program Files\\Iomega Discovery\\Discovery.exe"= "C:\\Program Files\\RealVNC\\VNC4\\winvnc4.exe"= "C:\\Program Files\\eMule\\emule.exe"= "C:\\Program Files\\Winamp Remote\\bin\\Orb.exe"= "C:\\Program Files\\Winamp Remote\\bin\\OrbTray.exe"= "C:\\Program Files\\Winamp Remote\\bin\\OrbStreamerClient.exe"= "C:\\Program Files\\Omemo\\Omemo.exe"= "D:\\Program Files\\BitComet\\BitComet.exe"= "C:\\Program Files\\Bonjour\\mDNSResponder.exe"= "C:\\Program Files\\Valve\\hl.exe"= "\\\\Iomega-005C21\\NetHDD\\enr1\\trivial poursuite\\TPPCFrench.exe"= "C:\\Program Files\\iTunes\\iTunes.exe"= "C:\\Program Files\\KONAMI\\Pro Evolution Soccer 2008\\PES2008.exe"= R2 CanalPlus.VOD;CanalPlus.VOD;"C:\Program Files\Canal\Canal Widget\VOD\CanalPlus.VOD.exe" [2008-04-11 19:24] . Contenu du dossier 'Scheduled Tasks/Tƒches planifi‚es' "2008-05-15 21:39:02 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job" - C:\Program Files\Apple Software Update\SoftwareUpdate.exe . ************************************************************************** catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-05-18 09:33:34 Windows 5.1.2600 Service Pack 2 NTFS Balayage processus cach‚s ... Balayage cach‚ autostart entries ... Balayage des fichiers cach‚s ... C:\WINDOWS\system32\xxxblunj.ini 294 bytes Scan termin‚ avec succŠs Les fichiers cach‚s: 1 ************************************************************************** . --------------------- DLLs a charg‚ sous des processus courants --------------------- PROCESS: C:\WINDOWS\system32\winlogon.exe -> C:\WINDOWS\system32\xxyxVmlK.dll PROCESS: C:\WINDOWS\explorer.exe -> C:\WINDOWS\system32\xdcpvmdp.dll -> C:\WINDOWS\system32\bhwcxpkk.dll -> C:\WINDOWS\system32\khfEUoNf.dll . ------------------------ Other Running Processes ------------------------ . C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe C:\Program Files\a-squared Anti-Malware\a2service.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\ESET\nod32krn.exe C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe C:\Program Files\RealVNC\VNC4\winvnc4.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\Alliance MCA\SafeFax\faxtray.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\imapi.exe . ************************************************************************** . Temps d'accomplissement: 2008-05-18 9:42:28 - machine was rebooted ComboFix-quarantined-files.txt 2008-05-18 07:41:22 Pre-Run: 32,459,067,392 octets libres Post-Run: 32,637,702,144 octets libres 252 --- E O F --- 2008-04-17 19:32:13

désolé j"avais oublié bonjour mais pas merci et c'est pas la peine de faire le maitre ou maitresse d'ecole , ce n'était qu'un oubli mais apparemment minouu 88 est parfaite moi je suis imparfait désolé pour ceci

bonjour a tous Ayant plein de soucis avec mon pc j'ai souhaité reparer windows , mais que ce soit en bootant au démarrage ou bien windows en fonction j'ai le message suivant :erreur de copie de fichier: une erreur s'est produite lors de la copie du fichier a5r8q9dv.sys vers c:\$win-nt-bt\a5r8q9dv le fichier est absent. et là l'instalation s'arréte , je sais plus quoi faire merci d'avance pour votre aide

merci d'analyser ce rapport , j'ai de gros pb de connexions avec ie et firefox Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 14:01:40, on 5/17/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16640) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Canal\Canal Widget\VOD\CanalPlus.VOD.exe C:\Program Files\Eset\nod32krn.exe C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe C:\Program Files\RealVNC\VNC4\WinVNC4.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe C:\Program Files\Analog Devices\SoundMAX\SMTray.exe C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe C:\Program Files\Eset\nod32kui.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\DAEMON Tools Pro\DTProAgent.exe C:\Program Files\Alliance MCA\SafeFax\faxtray.exe C:\Program Files\Mozilla Firefox\firefox.exe D:\Program Files\BitLord\BitLord.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://go.microsoft.com/fwlink/?LinkId=54843 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O3 - Toolbar: SYSTRAN Toolbar - {95daa571-4def-4a6d-97d8-98a346672a24} - mscoree.dll (file missing) O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe O4 - HKLM\..\Run: [smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE O4 - HKLM\..\Run: [082f45fd] rundll32.exe "C:\WINDOWS\system32\ticjtnhl.dll",b O4 - HKLM\..\Run: [bM0b1c7661] Rundll32.exe "C:\WINDOWS\system32\vrytmxet.dll",s O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "C:\Program Files\DAEMON Tools Pro\DTProAgent.exe" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Lancement Application Fax.lnk = C:\Program Files\Alliance MCA\SafeFax\faxtray.exe O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Barre de recherche Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1202804099467 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: CanalPlus.VOD - Canal+ Active - C:\Program Files\Canal\Canal Widget\VOD\CanalPlus.VOD.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe O23 - Service: VNC Server Version 4 (WinVNC4) - RealVNC Ltd. - C:\Program Files\RealVNC\VNC4\WinVNC4.exe -- End of file - 6924 bytes

bonjour depuis quelque jour je n'est plus accée à l'invite de commande : "l'invite de commande a été desactivé par votre administrateur" JE suis l'administrateur et je ne me suis jamais bloqué l'accée à l'invite de commande... Merci d'avance pour votre aide. ( désactiver Logfile of HijackThis v1.99.1 Scan saved at 08:44:21, on 14/11/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.5700.0007) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe C:\WINDOWS\system32\cisvc.exe E:\Program Files\ZeroSpyware\FileDeleter.exe C:\WINDOWS\system32\oodag.exe C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\wdfmgr.exe C:\Program Files\RealVNC\VNC4\WinVNC4.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\PROGRA~1\ZONELA~1\ZONEAL~1\zlclient.exe C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb03.exe C:\Program Files\Anti-Blaxx\Anti-Blaxx.exe C:\Program Files\Java\jre1.5.0_05\bin\jusched.exe C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE C:\WINDOWS\system32\RunDll32.exe C:\Program Files\AXMA\Fax-internet\faxtray.exe C:\WINDOWS\system32\ZoneLabs\vsmon.exe C:\WINDOWS\system32\cidaemon.exe C:\WINDOWS\system32\cmd.exe C:\WINDOWS\system32\cidaemon.exe C:\WINDOWS\system32\ntvdm.exe C:\Program Files\Mozilla Firefox\firefox.exe E:\Program Files\BitLord\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\Program Files\Copernic Agent\CopernicAgentExt.rdl/INTEGRATION_BAND_SEARCHBAR_HTML R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=54729 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=552...cid={SUB_CLCID} R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: (no name) - {BE89472C-B803-4D1D-9A9A-0A63660E0FE3} - C:\PROGRA~1\COPERN~1\COPERN~1.DLL O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - E:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - E:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll O3 - Toolbar: Copernic Agent - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} - C:\Program Files\Copernic Agent\CopernicAgentExt.dll O4 - HKLM\..\Run: [Zone Labs Client] C:\PROGRA~1\ZONELA~1\ZONEAL~1\zlclient.exe O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb03.exe O4 - HKLM\..\Run: [Anti-Blaxx Manager] C:\Program Files\Anti-Blaxx\Anti-Blaxx.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_05\bin\jusched.exe O4 - HKLM\..\Run: [kav] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe" O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE" O4 - HKCU\..\Run: [ZSScheduler] RunDll32.exe "E:\Program Files\ZeroSpyware\ZSScheduler.dll", runScheduler E:\Program Files\ZeroSpyware\ O4 - Global Startup: Gestionnaire de lancement d'application fax.lnk = C:\Program Files\AXMA\Fax-internet\faxtray.exe O8 - Extra context menu item: Chercher avec Copernic Agent - res://C:\Program Files\Copernic Agent\CopernicAgentExt.rdl/INTEGRATION_MENU_SEARCHEXT O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll O9 - Extra button: (no name) - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\PROGRA~1\COPERN~1\COPERN~1.EXE O9 - Extra 'Tools' menuitem: Démarrer Copernic Agent - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\PROGRA~1\COPERN~1\COPERN~1.EXE O9 - Extra button: Antivirus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - E:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll O9 - Extra button: Créer un Favori de l'appareil mobile - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll O9 - Extra button: Copernic Agent - {688DC797-DC11-46A7-9F1B-445F4F58CE6E} - C:\PROGRA~1\COPERN~1\COPERN~1.EXE O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O11 - Options group: [iNTERNATIONAL] International* O16 - DPF: {05D96F71-87C6-11D3-9BE4-00902742D6E0} (QuickPlace Class) - http://can.esc-pau.fr/qp2.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1126560371845 O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2005111...all/xscan53.cab O20 - Winlogon Notify: klogon - C:\WINDOWS\system32\klogon.dll O20 - Winlogon Notify: PCANotify - C:\WINDOWS\SYSTEM32\PCANotify.dll O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Unknown owner - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe" -r (file missing) O23 - Service: pcAnywhere Host Service (awhost32) - Symantec Corporation - E:\Program Files\Symantec\pcAnywhere\awhost32.exe O23 - Service: ZeroSpyware FileDeleter (FileDeleter) - FBMSoftware - E:\Program Files\ZeroSpyware\FileDeleter.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - e:\Program Files\Spyware Doctor\sdhelp.exe O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe O23 - Service: VNC Server Version 4 (WinVNC4) - Unknown owner - C:\Program Files\RealVNC\VNC4\WinVNC4.exe" -service (file missing) l'acces à l'invite de commande" est bien sur non configuré