Problème fenêtre popup CiD

Fermé
davidb82 Messages postés 2 Date d'inscription dimanche 20 mai 2007 Statut Membre Dernière intervention 23 mai 2007 - 20 mai 2007 à 11:06
Séb08 Messages postés 16502 Date d'inscription dimanche 13 novembre 2005 Statut Contributeur Dernière intervention 17 février 2023 - 23 mai 2007 à 22:43
Bonjour, j'ai un petit problème sur un pc. J'ai des fenêtres de pubs CiD qui s'ouvre intempestivement. J'ai consulté plusieurs forum et je n'est pas trouvé de réponse. J'ai fait un scan en ligne avec bit defender et avec hijack this dont voici les rapports.
Qu'il y a t-il d'anormal et que doit je faire pour supprimer ce spyware. J'ai désinstaller MSN live sponsor et messenger mais les fenêtre s'ouvrent toujours. Que faire??? Merci d'avance pour vos réponse.

Logfile of HijackThis v1.99.1
Scan saved at 10:46:45, on 20/05/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
c:\progra~1\intern~1\iexplore.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\slserv.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Inventel\Gateway\wlancfg.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Java\jre1.5.0_10\bin\jucheck.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\hijackthis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?FORM=TOOLBR&cc=fr&toHttps=1&redig=4527FFF1C12746FC9EDB535C75E80ECC
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.free.fr/freebox/index.html
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/ycomp/defaults/su/*https://fr.yahoo.com/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\RunServices: [RegisterDropHandler] C:\Program Files\ScannerU\TBRIDGE\BIN\RegisterDropHandler.EXE
O4 - HKCU\..\Run: [boltmags] C:\DOCUME~1\Gaelle\APPLIC~1\STUPID~1\Kind meet road.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O14 - IERESET.INF: START_PAGE_URL=https://www.free.fr/freebox/index.html
O16 - DPF: {1D6711C8-7154-40BB-8380-3DEA45B69CBF} -
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Kodak Camera Connection Software (KodakCCS) - Eastman Kodak Company - C:\WINDOWS\system32\drivers\KodakCCS.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Inventel - C:\Program Files\Inventel\Gateway\wlancfg.exe

BitDefender Online Scanner



Scan report generated at: Sun, May 20, 2007 - 10:29:48





Scan path: A:\;C:\;D:\;E:\;F:\;G:\;







Statistics

Time
00:44:23

Files
196291

Folders
4208

Boot Sectors
5

Archives
1530

Packed Files
17636




Results

Identified Viruses
1

Infected Files
10

Suspect Files
0

Warnings
0

Disinfected
0

Deleted Files
9




Engines Info

Virus Definitions
507291

Engine build
AVCORE v1.0 (build 2397) (i386) (Feb 8 2007 14:24:08)

Scan plugins
14

Archive plugins
38

Unpack plugins
6

E-mail plugins
6

System plugins
1




Scan Settings

First Action
Disinfect

Second Action
Delete

Heuristics
Yes

Enable Warnings
Yes

Scanned Extensions
*;

Exclude Extensions


Scan Emails
Yes

Scan Archives
Yes

Scan Packed
Yes

Scan Files
Yes

Scan Boot
Yes




Scanned File
Status

C:\Documents and Settings\All Users\Application Data\Mess bone poll 64\2 find.exe
Infected with: Trojan.FatObfus.Gen

C:\Documents and Settings\All Users\Application Data\Mess bone poll 64\2 find.exe
Disinfection failed

C:\Documents and Settings\All Users\Application Data\Mess bone poll 64\2 find.exe
Deleted

C:\Documents and Settings\All Users\Application Data\Mess bone poll 64\Poke two.exe
Infected with: Trojan.FatObfus.Gen

C:\Documents and Settings\All Users\Application Data\Mess bone poll 64\Poke two.exe
Disinfection failed

C:\Documents and Settings\All Users\Application Data\Mess bone poll 64\Poke two.exe
Deleted

C:\Documents and Settings\All Users\Application Data\Mess bone poll 64\view else.exe
Infected with: Trojan.FatObfus.Gen

C:\Documents and Settings\All Users\Application Data\Mess bone poll 64\view else.exe
Disinfection failed

C:\Documents and Settings\All Users\Application Data\Mess bone poll 64\view else.exe
Delete failed

C:\Documents and Settings\All Users\Application Data\Mess bone poll 64\Wipebash.exe
Infected with: Trojan.FatObfus.Gen

C:\Documents and Settings\All Users\Application Data\Mess bone poll 64\Wipebash.exe
Disinfection failed

C:\Documents and Settings\All Users\Application Data\Mess bone poll 64\Wipebash.exe
Deleted

C:\Documents and Settings\Gaelle\Application Data\STUPID SEEK REAL\kawqhfay.exe
Infected with: Trojan.FatObfus.Gen

C:\Documents and Settings\Gaelle\Application Data\STUPID SEEK REAL\kawqhfay.exe
Disinfection failed

C:\Documents and Settings\Gaelle\Application Data\STUPID SEEK REAL\kawqhfay.exe
Deleted

C:\Documents and Settings\Gaelle\Application Data\STUPID SEEK REAL\lhlefrpf.exe
Infected with: Trojan.FatObfus.Gen

C:\Documents and Settings\Gaelle\Application Data\STUPID SEEK REAL\lhlefrpf.exe
Disinfection failed

C:\Documents and Settings\Gaelle\Application Data\STUPID SEEK REAL\lhlefrpf.exe
Deleted

C:\Documents and Settings\Gaelle\Application Data\STUPID SEEK REAL\lwhnlpss.exe
Infected with: Trojan.FatObfus.Gen

C:\Documents and Settings\Gaelle\Application Data\STUPID SEEK REAL\lwhnlpss.exe
Disinfection failed

C:\Documents and Settings\Gaelle\Application Data\STUPID SEEK REAL\lwhnlpss.exe
Deleted

C:\Documents and Settings\Gaelle\Application Data\STUPID SEEK REAL\Mail four rect help.exe
Infected with: Trojan.FatObfus.Gen

C:\Documents and Settings\Gaelle\Application Data\STUPID SEEK REAL\Mail four rect help.exe
Disinfection failed

C:\Documents and Settings\Gaelle\Application Data\STUPID SEEK REAL\Mail four rect help.exe
Deleted

C:\Documents and Settings\Gaelle\Application Data\STUPID SEEK REAL\savedalerule.exe
Infected with: Trojan.FatObfus.Gen

C:\Documents and Settings\Gaelle\Application Data\STUPID SEEK REAL\savedalerule.exe
Disinfection failed

C:\Documents and Settings\Gaelle\Application Data\STUPID SEEK REAL\savedalerule.exe
Deleted

C:\Documents and Settings\Gaelle\Application Data\STUPID SEEK REAL\xqiijxux.exe
Infected with: Trojan.FatObfus.Gen

C:\Documents and Settings\Gaelle\Application Data\STUPID SEEK REAL\xqiijxux.exe
Disinfection failed

C:\Documents and Settings\Gaelle\Application Data\STUPID SEEK REAL\xqiijxux.exe
Deleted

2 réponses

Séb08 Messages postés 16502 Date d'inscription dimanche 13 novembre 2005 Statut Contributeur Dernière intervention 17 février 2023 1 428
20 mai 2007 à 12:36
slt,

regarde par là

comment bloquer les fenetres cid

et là

popups ouverture de fenetres internet publicitaires pop up
0
davidb82 Messages postés 2 Date d'inscription dimanche 20 mai 2007 Statut Membre Dernière intervention 23 mai 2007
23 mai 2007 à 20:40
Merci je vais faire ça dans le week end merci.
0
Séb08 Messages postés 16502 Date d'inscription dimanche 13 novembre 2005 Statut Contributeur Dernière intervention 17 février 2023 1 428
23 mai 2007 à 22:43
ok

a+
0