Bonjour,
Voici mon probleme: depuis peu, le processus explorer.exe m'empeche l'accès a certains sites (recherche google, myspace, etc) mais pas la totalité du web non plus. Pour y avoir acces je dois fermer le processus explorer.exe et de nouveau j'ai accès a tous les sites. En relançant explorer, j'ai le problème qui revient.
Voici le rapport hijackthis
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:33:03, on 13/06/2008
Platform: Windows XP SP3, v.5512 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.20772)
Boot mode: Normal
Running processes:
G:\WINDOWS\System32\smss.exe
G:\WINDOWS\system32\winlogon.exe
G:\WINDOWS\system32\services.exe
G:\WINDOWS\system32\lsass.exe
G:\WINDOWS\system32\svchost.exe
G:\WINDOWS\System32\svchost.exe
G:\WINDOWS\system32\spoolsv.exe
G:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
G:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
G:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
G:\Program Files\Digidesign\Drivers\MMERefresh.exe
G:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S30RP1.EXE
G:\Program Files\CDBurnerXP\NMSAccessU.exe
G:\WINDOWS\system32\nvsvc32.exe
G:\WINDOWS\system32\svchost.exe
G:\WINDOWS\system32\RUNDLL32.EXE
G:\WINDOWS\RTHDCPL.EXE
G:\Program Files\SyncroSoft\Pos\H2O\cledx.exe
G:\Program Files\Taskix\Taskix32.exe
G:\Program Files\iTunes\iTunesHelper.exe
G:\WINDOWS\System32\WScript.exe
G:\WINDOWS\system32\wscript.exe
G:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe
G:\WINDOWS\system32\rundll32.exe
G:\WINDOWS\system32\Rundll32.exe
G:\Program Files\DAEMON Tools Lite\daemon.exe
G:\Program Files\WinRoll\winroll.exe
G:\Program Files\LClock\lclock.exe
E:\Program Files\iSproggler\iSproggler.exe
G:\Program Files\iPod\bin\iPodService.exe
G:\Program Files\Windows Live\Messenger\msnmsgr.exe
G:\Program Files\iTunes\iTunes.exe
G:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceHelper.exe
G:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\distnoted.exe
G:\WINDOWS\explorer.exe
I:\setup.exe
G:\WINDOWS\system32\MSIEXEC.EXE
G:\WINDOWS\system32\msiexec.exe
G:\Program Files\Mozilla Firefox\firefox.exe
G:\Program Files\HiJackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Favoris
O2 - BHO: {42e80324-45ad-852a-9084-67f4575c2ec3} - {3ce2c575-4f76-4809-a258-da5442308e24} - G:\WINDOWS\system32\nmahharu.dll
O2 - BHO: (no name) - {C4167BAF-F2A6-485B-A60C-F07E6334D0B7} - G:\WINDOWS\system32\jkkKaxxx.dll (file missing)
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE G:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE G:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [DigidesignMMERefresh] G:\Program Files\Digidesign\Drivers\MMERefresh.exe
O4 - HKLM\..\Run: [H2O] G:\Program Files\SyncroSoft\Pos\H2O\cledx.exe
O4 - HKLM\..\Run: [Taskix] G:\Program Files\Taskix\Taskix32.exe start
O4 - HKLM\..\Run: [Vistadrv] G:\Program Files\VistaDriveStatus\vsdrv.exe
O4 - HKLM\..\Run: [iTunesHelper] "G:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [MS32DLL] G:\WINDOWS\.MS32DLL.dll.vbs
O4 - HKLM\..\Run: [winboot] wscript.exe /E:vbs G:\WINDOWS\boot.ini
O4 - HKLM\..\Run: [XboxStat] "G:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun
O4 - HKLM\..\Run: [f054f508] rundll32.exe "G:\WINDOWS\system32\swyauqox.dll",b
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [BMeb497f79] Rundll32.exe "G:\WINDOWS\system32\aooeiwpo.dll",s
O4 - HKCU\..\Run: [DAEMON Tools Lite] "G:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [TransBar] G:\Program Files\TransBar\TransBar.exe /s
O4 - HKCU\..\Run: [WinRoll] "G:\Program Files\WinRoll\winroll.exe"
O4 - HKCU\..\Run: [LClock] G:\Program Files\LClock\lclock.exe
O4 - HKCU\..\Run: [iSproggler] "E:\Program Files\iSproggler\iSproggler.exe"
O4 - HKCU\..\Run: [EPSON Stylus DX4000 Series] G:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIBEE.EXE /FU "G:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\E_S87E.tmp" /EF "HKCU"
O4 - HKUS\S-1-5-18\..\Run: [EPSON Stylus DX4000 Series] G:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIBEE.EXE /FU "G:\WINDOWS\TEMP\E_S872.tmp" /EF "HKCU" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [EPSON Stylus DX4000 Series] G:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIBEE.EXE /FU "G:\WINDOWS\TEMP\E_S872.tmp" /EF "HKCU" (User 'Default user')
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - G:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - G:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {D8089245-3211-40F6-819B-9E5E92CD61A2} (FlashXControl Object) - https://signin2.valueactive.com/Register/Branding/olr3313/OCX/v1018/flashax.cab
O16 - DPF: {F7EDBBEA-1AD2-4EBF-AA07-D453CC29EE65} (Flash Casino Helper Object) - https://spinpalace.microgaming.com/frspinpalace/FlashAX2.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{FEC1F22B-5769-4A22-8809-A1E5AA0AFDEC}: NameServer = 212.27.53.252,212.27.54.252
O23 - Service: Avira AntiVir Personal – Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - G:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal – Free Antivirus Guard (AntiVirService) - Avira GmbH - G:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - G:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - G:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Digidesign MME Refresh Service (DigiRefresh) - Digidesign, A Division of Avid Technology, Inc. - G:\Program Files\Digidesign\Drivers\MMERefresh.exe
O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - G:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S30RP1.EXE
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - G:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - G:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NMSAccessU - Unknown owner - G:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - G:\WINDOWS\system32\nvsvc32.exe
Afficher la suite
13 juin 2008 à 11:44