Sujet Précédent Sujet Suivant

Magiccontrol agent

Résolu
kelly150 Messages postés 2 Statut Membre -  
 salwa -
bonjour je n'arrive pas a supprimer magiccontrol agent avec spybot
quelqu'un peu maider
merci d'avance
A voir également:

15 réponses

Réponse 1 / 15
salwa
 
bonjour suis la methode de christopher

infecte par magiccontrol agent

@+++++
0
kelly150 Messages postés 2 Statut Membre
 
bonjour et tou d'abord merci du coup de main c cool
g fait la methode de christopher et le resultat et le meme il et toujour la
0
Réponse 2 / 15
salwa
 
bonjour suis les procedure de ce lien http://perso.numericable.fr/~altshift/Info/proc%E9dureIA.html

si tu as des questions n'hesite pas

a+++
0
Réponse 3 / 15
kelly150
 
ok merci
mais je suis pas tres douer et j'ai pas tou compris ta pas une autre solution par azzard
0
Réponse 4 / 15
salwa
 
bonjour malheureusement on peu pas faire dans la simplicité avec ce genre de merde :/

c pas grave on va proceder etap par etape :)

Télécharge F-Secure Blacklight : https://www.f-secure.com/en
- Clic en bas sur "I accept"
- Dans la nouvelle fenêtre, clic sur le bouton en haut du tableau Download.
- Lance-le en double-cliquant sur le fichier blbeta.exe
- Accepte la licence, et clique enfin sur "Scan"
- Poste le rapport qui a été créé dans le fichier fsbl-bxxxx.log en l'ouvrant avec le bloc-note.

@++++
0
kelly150
 
salut
j'ai fait se que tu ma dit et voila le resultat

11/25/06 16:29:43 [Info]: BlackLight Engine 1.0.47 initialized
11/25/06 16:29:43 [Info]: OS: 5.1 build 2600 (Service Pack 2)
11/25/06 16:29:43 [Note]: 7019 4
11/25/06 16:29:43 [Note]: 7005 0
11/25/06 16:29:46 [Note]: 7006 0
11/25/06 16:29:46 [Note]: 7011 1936
11/25/06 16:29:46 [Note]: 7026 0
11/25/06 16:29:46 [Note]: 7026 0
11/25/06 16:29:53 [Note]: FSRAW library version 1.7.1020
11/25/06 16:38:01 [Note]: 7007 0
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 15
salwa
 
re telecharge hijackthis et colle le resultat ici :

http://www.infos-du-net.com/telecharger/HijackThis.html
demo :
http://pageperso.aol.fr/balltrap34/demohijack.htm

@++++
0
KELLY150
 
VOILA SE QUE SA DONNE

Logfile of HijackThis v1.99.1
Scan saved at 20:56:27, on 26/11/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\mdm.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\WgaTray.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\TechCity Solutions\AliceSAV\AliceAgent.exe
C:\Program Files\Microsoft IntelliType Pro\type32.exe
C:\Program Files\Microsoft IntelliPoint\point32.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\DOCUME~1\Kelly\LOCALS~1\Temp\Rar$EX00.453\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://portail.free.fr/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.fr/keyword/%s
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Favoris
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [EPSON Stylus DX3800 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE /P26 "EPSON Stylus DX3800 Series" /O6 "USB001" /M "Stylus DX3800"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [AliceSAV] C:\Program Files\TechCity Solutions\AliceSAV\AliceAgent.exe
O4 - HKLM\..\Run: [type32] "C:\Program Files\Microsoft IntelliType Pro\type32.exe"
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\point32.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [MailSkinner] c:\program files\mailskinner\mailskinner.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [messengerskinner] C:\Program Files\MessengerSkinner\MessengerSkinner.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Alice ADSL - {88E56811-A863-4AA4-BC54-308E29469F59} - https://portail.free.fr/ (file missing) (HKCU)
O14 - IERESET.INF: START_PAGE_URL=https://portail.free.fr/
O16 - DPF: {C45B1500-7B63-47C2-AB25-C28CB46AFDEE} (MediaBar) - http://sib1.od2.com/common/musicmanager/installation/MusicManagerPlugin.CAB
O18 - Protocol: bw+0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
0
Réponse 6 / 15
salwa
 
ree coche ces lignes dans hijack ensuite clique sur fix checked

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Favoris

O18 - Protocol: bw+0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {E0707585-C60F-46EA-8846-78E81A31F1E8} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

ensuite execute ces antispyware

(1) ad-aware version 1.06

(ici) http://www.florensac-chasse-trap.com/ section virus/logiciel de securite
voir demo
http://pageperso.aol.fr/balltrap34/adwseflash.zip
***

ps : un grand merci a balltrap pour les lien :)

(2) AVG anti spyware
https://www.01net.com/telecharger/
Copier/coller le rapport entier sur le forum.

-tutoriel http://www.kachouri.com/tuto/tuto-161-avg-anti-spyware-75-pour-votre-securite.html

supprime les fichiers temporaire et cookies avec ceci :

Ccleaner
https://www.malekal.com/tutoriel-ccleaner/
***

netoie la base de registre avec ca:

regcleaner
https://forums.cnetfrance.fr

apres tt ca tu me dit si spybot te detect tjr magiccontrol
:) bonne chance

@+++
0
kelly150
 
bonsoir c long mais j'en vien a bout et je te remercie encor de ton aide
voici le rapport



---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 19:21:08 27/11/2006

+ Résultat de l'analyse:



HKU\S-1-5-21-2052111302-1993962763-839522115-1003\Software\Internet Security -> Adware.IntCodec : Ignoré.
:mozilla.34:C:\Documents and Settings\Kelly\Application Data\Mozilla\Firefox\Profiles\zfvjflff.default\cookies.txt -> TrackingCookie.247realmedia : Ignoré.
:mozilla.35:C:\Documents and Settings\Kelly\Application Data\Mozilla\Firefox\Profiles\zfvjflff.default\cookies.txt -> TrackingCookie.247realmedia : Ignoré.
:mozilla.36:C:\Documents and Settings\Kelly\Application Data\Mozilla\Firefox\Profiles\zfvjflff.default\cookies.txt -> TrackingCookie.247realmedia : Ignoré.
:mozilla.37:C:\Documents and Settings\Kelly\Application Data\Mozilla\Firefox\Profiles\zfvjflff.default\cookies.txt -> TrackingCookie.247realmedia : Ignoré.
:mozilla.38:C:\Documents and Settings\Kelly\Application Data\Mozilla\Firefox\Profiles\zfvjflff.default\cookies.txt -> TrackingCookie.247realmedia : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@247realmedia[1].txt -> TrackingCookie.247realmedia : Ignoré.
:mozilla.127:C:\Documents and Settings\Kelly\Application Data\Mozilla\Firefox\Profiles\zfvjflff.default\cookies.txt -> TrackingCookie.2o7 : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@2o7[1].txt -> TrackingCookie.2o7 : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@metacafe.122.2o7[1].txt -> TrackingCookie.2o7 : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@notrefamille.112.2o7[1].txt -> TrackingCookie.2o7 : Ignoré.
:mozilla.47:C:\Documents and Settings\Kelly\Application Data\Mozilla\Firefox\Profiles\zfvjflff.default\cookies.txt -> TrackingCookie.Adbrite : Ignoré.
:mozilla.48:C:\Documents and Settings\Kelly\Application Data\Mozilla\Firefox\Profiles\zfvjflff.default\cookies.txt -> TrackingCookie.Adbrite : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@adbrite[1].txt -> TrackingCookie.Adbrite : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@redir.adengage[2].txt -> TrackingCookie.Adengage : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@rotator.adjuggler[1].txt -> TrackingCookie.Adjuggler : Ignoré.
:mozilla.53:C:\Documents and Settings\Kelly\Application Data\Mozilla\Firefox\Profiles\zfvjflff.default\cookies.txt -> TrackingCookie.Adtech : Ignoré.
:mozilla.54:C:\Documents and Settings\Kelly\Application Data\Mozilla\Firefox\Profiles\zfvjflff.default\cookies.txt -> TrackingCookie.Adtech : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@adtech[2].txt -> TrackingCookie.Adtech : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@bluestreak[1].txt -> TrackingCookie.Bluestreak : Ignoré.
:mozilla.62:C:\Documents and Settings\Kelly\Application Data\Mozilla\Firefox\Profiles\zfvjflff.default\cookies.txt -> TrackingCookie.Com : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@com[1].txt -> TrackingCookie.Com : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : Ignoré.
:mozilla.10:C:\Documents and Settings\Kelly\Application Data\Mozilla\Firefox\Profiles\zfvjflff.default\cookies.txt -> TrackingCookie.Doubleclick : Ignoré.
:mozilla.87:C:\Documents and Settings\Kelly\Application Data\Mozilla\Firefox\Profiles\zfvjflff.default\cookies.txt -> TrackingCookie.Estat : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@estat[1].txt -> TrackingCookie.Estat : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@as-eu.falkag[1].txt -> TrackingCookie.Falkag : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@as1.falkag[1].txt -> TrackingCookie.Falkag : Ignoré.
:mozilla.88:C:\Documents and Settings\Kelly\Application Data\Mozilla\Firefox\Profiles\zfvjflff.default\cookies.txt -> TrackingCookie.Findwhat : Ignoré.
:mozilla.190:C:\Documents and Settings\Kelly\Application Data\Mozilla\Firefox\Profiles\zfvjflff.default\cookies.txt -> TrackingCookie.Googleadservices : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@server.iad.liveperson[1].txt -> TrackingCookie.Liveperson : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@image.masterstats[1].txt -> TrackingCookie.Masterstats : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@overture[2].txt -> TrackingCookie.Overture : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@ads.pointroll[1].txt -> TrackingCookie.Pointroll : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@questionmarket[1].txt -> TrackingCookie.Questionmarket : Ignoré.
:mozilla.163:C:\Documents and Settings\Kelly\Application Data\Mozilla\Firefox\Profiles\zfvjflff.default\cookies.txt -> TrackingCookie.Reliablestats : Ignoré.
:mozilla.164:C:\Documents and Settings\Kelly\Application Data\Mozilla\Firefox\Profiles\zfvjflff.default\cookies.txt -> TrackingCookie.Reliablestats : Ignoré.
:mozilla.165:C:\Documents and Settings\Kelly\Application Data\Mozilla\Firefox\Profiles\zfvjflff.default\cookies.txt -> TrackingCookie.Reliablestats : Ignoré.
:mozilla.166:C:\Documents and Settings\Kelly\Application Data\Mozilla\Firefox\Profiles\zfvjflff.default\cookies.txt -> TrackingCookie.Reliablestats : Ignoré.
:mozilla.167:C:\Documents and Settings\Kelly\Application Data\Mozilla\Firefox\Profiles\zfvjflff.default\cookies.txt -> TrackingCookie.Reliablestats : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@revenue[2].txt -> TrackingCookie.Revenue : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@edge.ru4[2].txt -> TrackingCookie.Ru4 : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@serving-sys[1].txt -> TrackingCookie.Serving-sys : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@cs.sexcounter[2].txt -> TrackingCookie.Sexcounter : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@adopt.specificclick[1].txt -> TrackingCookie.Specificclick : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@statcounter[1].txt -> TrackingCookie.Statcounter : Ignoré.
:mozilla.175:C:\Documents and Settings\Kelly\Application Data\Mozilla\Firefox\Profiles\zfvjflff.default\cookies.txt -> TrackingCookie.Tradedoubler : Ignoré.
:mozilla.176:C:\Documents and Settings\Kelly\Application Data\Mozilla\Firefox\Profiles\zfvjflff.default\cookies.txt -> TrackingCookie.Tradedoubler : Ignoré.
:mozilla.177:C:\Documents and Settings\Kelly\Application Data\Mozilla\Firefox\Profiles\zfvjflff.default\cookies.txt -> TrackingCookie.Tradedoubler : Ignoré.
:mozilla.178:C:\Documents and Settings\Kelly\Application Data\Mozilla\Firefox\Profiles\zfvjflff.default\cookies.txt -> TrackingCookie.Tradedoubler : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@tribalfusion[1].txt -> TrackingCookie.Tribalfusion : Ignoré.
:mozilla.179:C:\Documents and Settings\Kelly\Application Data\Mozilla\Firefox\Profiles\zfvjflff.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.180:C:\Documents and Settings\Kelly\Application Data\Mozilla\Firefox\Profiles\zfvjflff.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.181:C:\Documents and Settings\Kelly\Application Data\Mozilla\Firefox\Profiles\zfvjflff.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.182:C:\Documents and Settings\Kelly\Application Data\Mozilla\Firefox\Profiles\zfvjflff.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@bnpparibas.weborama[1].txt -> TrackingCookie.Weborama : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@weborama[2].txt -> TrackingCookie.Weborama : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@yadro[2].txt -> TrackingCookie.Yadro : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Ignoré.
:mozilla.29:C:\Documents and Settings\Kelly\Application Data\Mozilla\Firefox\Profiles\zfvjflff.default\cookies.txt -> TrackingCookie.Zedo : Ignoré.
:mozilla.30:C:\Documents and Settings\Kelly\Application Data\Mozilla\Firefox\Profiles\zfvjflff.default\cookies.txt -> TrackingCookie.Zedo : Ignoré.
:mozilla.31:C:\Documents and Settings\Kelly\Application Data\Mozilla\Firefox\Profiles\zfvjflff.default\cookies.txt -> TrackingCookie.Zedo : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@c5.zedo[1].txt -> TrackingCookie.Zedo : Ignoré.
C:\Documents and Settings\Kelly\Cookies\kelly@zedo[1].txt -> TrackingCookie.Zedo : Ignoré.


Fin du rapport
0
Réponse 7 / 15
salwa
 
c bizzare que avg antispyware n'a pas supprimé ce qu'il a trouvé faut le parametrais correctement en suivant les instruction du tutorial que je t'ai donné

sinon apart ca esque spybot te le detect tjr?

@+++
0
Réponse 8 / 15
kelly150
 
ok j'ai bien reverifier les paramettre et relance une analyse
a plus
0
Réponse 9 / 15
kelly150
 
je suis desoler de te dire que spybot detecte toujour magiccontrol agent
et j'ai bien verifier les parametre
0
salwa
 
au fait as tu utilisé regcleaner comme indiqué plus haut?

essay ceci

telecharge ça:
http://download.bleepingcomputer.com/sUBs/combofix.exe

appuyes sur "Y" pour continuer

Attends quelques minutes..un rapport va s'ouvrir enregistre son contenu, puis copie et colle le sur ici stp

@++
0
kelly150
 
jai bien fait tou se que tu ma conseiler et je ten remerci encore
je te dit quoi des que jai fait se que tu me dit
0
kelly150
 
desoler mais il se passe rien
0
Réponse 10 / 15
salwa
 
quand tu double clike sur combofix quesqui se passe? esqu'il y'a un message d'erreur?

@++++
0
kelly150
 
qaund je double clic il y a une fenetre noir et des ecriture qui apparer 2sec et plus rien

je vien de finir toute les analyse en mode sans echec et tou et ok
1 fois : fichiers infecter 2eme fois pour verifier non probleme
0
salwa > kelly150
 
oui c normal qu'une fenetre apparais apres il faut appuiyé sur la touche "y" pour commencer le scan

apres quelque minute il va te generé un rapport , tu copie/ colle le rapport ici

je vien de finir toute les analyse en mode sans echec et tou et ok
1 fois : fichiers infecter 2eme fois pour verifier non probleme


esque ca veut dire que spybot ne trouve plus magiccontrol? si c le cas alors tu peu zapper la manip de combofix :p


@+++
0
kelly150 > kelly150
 
je suis desoler mais il ny a aucun rapport qui aparer juste une fenetre noir avec quelque ligne mais elle se referme aussitot
et jai toujour magic control agent et les page de pub apparaise toujour toute seul
0
Réponse 11 / 15
salwa
 
ok on va deployé les grand moyen :)

ouvre hijackthis / coche et fix cette lignes

O4 - HKCU\..\Run: [MailSkinner] c:\program files\mailskinner\mailskinner.exe

si tu connais pas ce programe (mailskinner) je te conseille de le desinstallé dans ajout/supression de programe

Télécharge Brute Force Uninstaller (de Merijn) ici:
http://www.merijn.org/files/bfu.zip
Créé un nouveau dossier directement à la racine de ton disque dur ou l'endroit qui te convient, nomme ce dossier BFU.
Décompresse le fichier téléchargé dans ce nouveau dossier (par exemple C:\BFU)

Ensuite, télécharge EGDACCESS.bfu (de Metallica) :

Fais un clik droit ici : http://metallica.geekstogo.com/EGDACCESS.bfu et choisis "Enregistrer la cible sous..." afin de télécharger EGDACCESS.bfu (de Metallica). Sauvegarde dans le dossier créé (C:\BFU). **Note : si tu utlises Internet Explorer ; lors de la sauvegarde, assure-toi que le champs "Type :" affiche "Tous les fichiers". Tu dois maintenant avoir deux fichiers dans le dossier C:\BFU : EGDACCESS.bfu et BFU.exe (très important).

Lance "Brute Force Uninstaller" en double-cliquant BFU.exe (Dans le dossier C:\BFU)
- Clique sur le petit dossier jaune, et clique sur : EGDACCESS.bfu
- Coches la case Show log after script ends
- Clique sur Execute pour que le fix fasse son boulot :-)

Attends que le message Complete script execution apparaîsse et clique sur OK.
Un rapport va s'afficher dans la fenetre du programme, copie et colle dans le bloc-notes, puis sauvegardes le, poste le ici

Clique Exit pour fermer le programme BFU.

@+++++
0
Réponse 12 / 15
kelly150
 
elle ny est pas ta ligne

Logfile of HijackThis v1.99.1
Scan saved at 12:59:03, on 29/11/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\mdm.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\WINDOWS\system32\WgaTray.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\TechCity Solutions\AliceSAV\AliceAgent.exe
C:\Program Files\Microsoft IntelliType Pro\type32.exe
C:\Program Files\Microsoft IntelliPoint\point32.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\Kelly\LOCALS~1\Temp\Rar$EX00.172\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://portail.free.fr/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.fr/keyword/%s
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Favoris
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [EPSON Stylus DX3800 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACE.EXE /P26 "EPSON Stylus DX3800 Series" /O6 "USB001" /M "Stylus DX3800"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [AliceSAV] C:\Program Files\TechCity Solutions\AliceSAV\AliceAgent.exe
O4 - HKLM\..\Run: [type32] "C:\Program Files\Microsoft IntelliType Pro\type32.exe"
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\point32.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Alice ADSL - {88E56811-A863-4AA4-BC54-308E29469F59} - https://portail.free.fr/ (file missing) (HKCU)
O14 - IERESET.INF: START_PAGE_URL=https://portail.free.fr/
O16 - DPF: {C45B1500-7B63-47C2-AB25-C28CB46AFDEE} (MediaBar) - http://sib1.od2.com/common/musicmanager/installation/MusicManagerPlugin.CAB
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
0
Réponse 13 / 15
salwa
 
bonjour la lignes etait presente dans le log hijack du message numero 8

ESque tu as fait la manip avec brut force? esqu'il t'a generé un raport?

@+++
0
kelly150
 
voi sa avec un ami cette apreme et te tien au courant

merci
0
Réponse 14 / 15
KELLY150
 
c ok
mon ami a fait la manipulation que tu a indiquer plus d'autre quil connaisait et a parament c bon .il a quan meme passer l'apres midi decu
je tennai a te remerci car ton coup de main ma bcp aider
jespere ne plus avoir de probleme
salut a toi
kelly
0
Réponse 15 / 15
salwa
 
de rien :) n'oublie pas d'indiqué ton sujet comme resolu

@++++
0

Discussions similaires

QuickShare c'est quoi ce truc
edelweiss2604 -
edelweiss2604 -

41 réponses
Agent web de "Avast!" désactivé
Zurling -
Malekal_morte- -

1 réponse
Quelles sont les applis à supprimer?
Melissa -
Melissa -

2 réponses
Agent web qui se désactive tout seul.
Lucifarian -
MPMP10 -

6 réponses
Boucle sur la première diapositive d'une présentation
ND83 -
ndubau -

3 réponses