no save
Identification
Assistance
Achat
News

Forum | virus/sécurité
détruire virus W32.proxad - help
Laurence, le sam. 17 sept. 2005 à 20:56:50
Quelle rapidité de réponse tu es vraiment formidable.
Merci Regis,
moi j'y comprend rien mais voici le log généré par hijackthis :
j'aimerai tellement pouvoir rendre service en retour...


Logfile of HijackThis v1.99.1
Scan saved at 20:49:55, on 17/09/2005
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINXP\System32\smss.exe
C:\WINXP\system32\csrss.exe
C:\WINXP\system32\winlogon.exe
C:\WINXP\system32\services.exe
C:\WINXP\system32\lsass.exe
C:\WINXP\system32\svchost.exe
C:\WINXP\System32\svchost.exe
C:\WINXP\System32\svchost.exe
C:\WINXP\System32\svchost.exe
C:\WINXP\Explorer.exe
C:\WINXP\system32\spoolsv.exe
C:\WINXP\System32\netddesrv.exe
C:\WINXP\exe82.exe
C:\Program Files\Winamp\winampa.exe
C:\WINXP\System32\LVCOMSX.EXE
C:\Program Files\AxBx\VirusKeeper 2005 Pro\VirusKeeper.exe
C:\WINXP\System32\ctfmon.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Spyware Doctor\swdoctor.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\WINXP\System32\svchost.exe
C:\WINXP\System32\wpabaln.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Dad\Menu Démarrer\Programmes\Démarrage\outpost.exe
C:\hijackthis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.cadremploi.fr/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
F2 - REG:system.ini: Shell=Explorer.exe C:\WINXP\Nail.exe
O1 - Hosts: 255.255.255.255 ar.atwola.com atdmt.com avp.ch avp.com avp.ru awaps.net ca.com dispatch.mcafee.com download.mcafee.com download.microsoft.com downloads.microsoft.com engine.awaps.net f-secure.com ftp.f-secure.com ftp.sophos.com go.microsoft.com liveupdate.symantec.com mast.mcafee.com mcafee.com msdn.microsoft.com my-etrust.com nai.com networkassociates.com office.microsoft.com phx.corporate-ir.net secure.nai.com securityresponse.symantec.com service1.symantec.com sophos.com spd.atdmt.com support.microsoft.com symantec.com update.symantec.com updates.symantec.com us.mcafee.com vil.nai.com viruslist.ru windowsupdate.microsoft.com www.avp.ch www.avp.com www.avp.ru www.awaps.net www.ca.com www.f-secure.com www.kaspersky.ru www.mcafee.com www.my-etrust.com www.nai.com www.networkassociates.com www.sophos.com www.symantec.com www.trendmicro.com www.viruslist.com www.viruslist.ru www3.ca.com
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll (file missing)
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINXP\System32\msdxm.ocx
O4 - HKLM\..\Run: [Windows Logon Application] C:\WINXP\System32\logon.exe
O4 - HKLM\..\Run: [PXNI] C:\WINXP\exe82.exe
O4 - HKLM\..\Run: [elif] C:\WINXP\exe82.exe
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [phicx] C:\WINXP\System32\tmdkvyleybs.exe
O4 - HKLM\..\Run: [seli] C:\WINXP\exe82.exe
O4 - HKLM\..\Run: [sctype] C:\WINXP\System32\fagiidj.exe
O4 - HKLM\..\Run: [Lyc2Qf] C:\WINXP\ndwlu.exe
O4 - HKLM\..\Run: [Worms-Killer] "c:\WINDOWS\wk6\data\starter.bat"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINXP\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [VirusKeeper] C:\Program Files\AxBx\VirusKeeper 2005 Pro\VirusKeeper.exe
O4 - HKLM\..\Run: [aOkzbsSmIfZ] C:\WINXP\System32\pgxtgyb.exe
O4 - HKLM\..\RunServices: [phicx] C:\WINXP\System32\tmdkvyleybs.exe
O4 - HKLM\..\RunServices: [aOkzbsSmIfZ] C:\WINXP\System32\pgxtgyb.exe
O4 - HKLM\..\RunServices: [Worms-Killer] "c:\WINDOWS\wk6\data\starter.bat"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINXP\System32\ctfmon.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Spyware Doctor] "C:\Program Files\Spyware Doctor\swdoctor.exe" /Q
O4 - Startup: AntiVir XP.LNK = C:\Program Files\AVPersonal\AVWIN.EXE
O4 - Startup: MVC.exe
O4 - Startup: outpost.exe
O4 - Global Startup: AVG Free Control Center.lnk = C:\Program Files\Grisoft\AVG Free\avgcc.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O4 - Global Startup: VirusKeeper 2005 Pro.lnk = C:\Program Files\AxBx\VirusKeeper 2005 Pro\vk_run.exe
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINXP\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINXP\web\related.htm
O15 - Trusted Zone: *.media-motor.net
O15 - Trusted Zone: *.popuppers.com
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {E7DBFB6C-113A-47CF-B278-F5C6AF4DE1BD} - http://download.abacast.com/download/files/abasetup156.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: NetDDE Server (NetDDEsrv) - Unknown owner - C:\WINXP\System32\netddesrv.exe
O23 - Service: Outpost Firewall Service (OutpostFirewall) - Agnitum - C:\Program Files\Agnitum\Outpost Firewall 1.0\outpost.exe
O23 - Service: System Startup Service (SvcProc) - Unknown owner - C:\WINXP\svcproc.exe
O23 - Service: Windows Time Sync (wservtime) - Unknown owner - C:\WINXP\csrs.exe (file missing)
Précédentregis59
sept. 05
regis59
sept. 05
Suivant
REPONSES
regis59
sept. 05
Laurence
sept. 05
regis59
sept. 05
inconnu
déc. 06
boulepate62
déc. 06
ben
nov. 07
asuke
janv. 08
Adrien
févr. 08
Version Web
Mentions légales (c)2009
Réalisé par RedShift
no save