Se connecter avec
S'enregistrer | Connectez-vous
Votre question

Pop UP CID intempestifs

Tags :
Dernière réponse : dans Sécurité et virus
Partagez
1 Février 2008 11:42:44

Bonjour, je poste ce message car depuis un mois et demi maintenant, lorsque je navigue sur le Web ( utilisant Firefox dernière version existante), je me retrouve assailli de pop-ups débutants par Cid dans la barre de titre de la fenêtre s'ouvrant sous IE. J'ai réalisé déjà plusieurs scans de ma machine en utilisant différents antivirus gratuis sur le net et différents scans anti-spywares, anti-malwares mais ce popup continue de me pourrir mon temps de navigation :s.
Je voudrais donc avoir de l'aide afin de me débarasser définitivement de ce popup et éviter d'avoir à faire un formatage de ma machine :s


Note : J'ai installé Live Messenger Plus mais sans son sponsor par conséquent ce n'st pas du à celui-ci
Config :
OS > Windows Vista

Autres pages sur : pop cid intempestifs

1 Février 2008 16:51:50

Salut,

1)Poste un rapport Hijackthis en suivant ce tuto :
http://www.infos-du-net.com/forum/271838-11-tuto-utilis...



2)Désactive tes protections résidentes ( Antivirus , ... ) tu les réactivera après le scan

Comme tu as Vista, Fais ceci en + :

Désactive le contrôle des comptes utilisateurs (tu le réactiveras après ta désinfection):

- Va dans démarrer puis panneau de configuration
- Double Clique sur l'icône "Comptes d'utilisateurs"
- Clique ensuite sur désactiver et valide.

Télécharge Lop S&D [:eric_71:17] < ici

Double-clique dessus pour lancer l'installation
Puis double-clique sur le raccourci Lop S&D présent sur ton bureau
Séléctionne la langue souhaitée , puis choisis l'Option 1 ( Recherche )
Patiente jusqu'à la fin du scan
Poste le rapport généré ( C:\lopR.txt )

( Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide )

3)Réactive le contrôle des comptes utilisateurs et tes protections. On le désactivera à nouveau + tard.
8 Mars 2008 17:52:02

08/03/2008 a 17:41:33,56

*** Recherche des fichiers dans C:

*** Recherche des fichiers dans C:\WINDOWS\
C:\WINDOWS\ALCXMNTR.EXE FOUND

*** Recherche des fichiers dans C:\WINDOWS\system32
"C:\WINDOWS\Downloaded Program Files\CONFLICT.1" FOUND
"C:\Documents and Settings\Compaq_Propri‚taire\Application Data\ezpinst.exe" FOUND

*** Recherche des fichiers dans C:\Program Files
"C:\Program Files\Adverts\" FOUND
"C:\Program Files\AskTBar\" FOUND
"C:\Program Files\funwebproducts\" FOUND
"C:\Program Files\MyWebSearch\" FOUND
*** Fin du rapport !
19 Septembre 2008 13:21:26


--------------------\\ Lop S&D 4.2.4-3 XP/Vista


"H:\Lop SD" ( MAJ : 14-09-2008|22:40 )
Option : [1] ( 19/09/2008|13:18 )

--------------------\\ Listing des dossiers dans APPLIC~1

[07/03/2007|14:41] H:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[08/03/2007|15:59] H:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[10/07/2007|01:43] H:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[10/07/2007|01:42] H:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[09/01/2008|20:26] H:\DOCUME~1\ALLUSE~1\APPLIC~1\erreurchasseur
[14/08/2007|23:02] H:\DOCUME~1\ALLUSE~1\APPLIC~1\FLEXnet
[06/07/2007|20:01] H:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[05/09/2008|19:58] H:\DOCUME~1\ALLUSE~1\APPLIC~1\Grid Blue Memo Site
[21/10/2007|16:27] H:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[31/05/2008|11:32] H:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
[21/03/2008|17:48] H:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[07/03/2007|14:41] H:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[20/03/2007|23:03] H:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
[17/10/2007|00:14] H:\DOCUME~1\ALLUSE~1\APPLIC~1\Nero
[20/03/2007|21:23] H:\DOCUME~1\ALLUSE~1\APPLIC~1\NVIDIA
[12/03/2007|22:01] H:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[09/03/2007|17:24] H:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[09/01/2008|20:25] H:\DOCUME~1\ALLUSE~1\APPLIC~1\SalesMon
[07/03/2008|21:57] H:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[07/03/2007|17:47] H:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[10/10/2007|10:23] H:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[25/11/2007|15:54] H:\DOCUME~1\ALLUSE~1\APPLIC~1\Webroot
[05/07/2007|19:25] H:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[06/07/2007|01:00] H:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[11/07/2007|23:18] H:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
[11/07/2007|23:17] H:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[15/07/2007|13:04] H:\DOCUME~1\ALLUSE~1\APPLIC~1\YAHOO
[22/07/2007|19:41] H:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo!

[07/03/2007|14:41] H:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[17/03/2007|17:43] H:\DOCUME~1\LOCALS~1\APPLIC~1\Ahead
[24/08/2007|23:35] H:\DOCUME~1\LOCALS~1\APPLIC~1\Google
[04/09/2007|17:51] H:\DOCUME~1\LOCALS~1\APPLIC~1\Help
[07/03/2007|14:41] H:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[17/11/2007|16:04] H:\DOCUME~1\LOCALS~1\APPLIC~1\Real

[09/03/2007|21:14] H:\DOCUME~1\ADMIN\APPLIC~1\Adobe
[11/03/2007|22:54] H:\DOCUME~1\ADMIN\APPLIC~1\AdobeUM
[07/03/2007|18:03] H:\DOCUME~1\ADMIN\APPLIC~1\Ahead
[03/10/2007|22:55] H:\DOCUME~1\ADMIN\APPLIC~1\AlMAdinahMushaf
[15/03/2008|00:10] H:\DOCUME~1\ADMIN\APPLIC~1\Antispyware
[10/07/2007|01:44] H:\DOCUME~1\ADMIN\APPLIC~1\Apple Computer
[02/10/2007|13:45] H:\DOCUME~1\ADMIN\APPLIC~1\BSplayer
[02/10/2007|13:45] H:\DOCUME~1\ADMIN\APPLIC~1\BSplayer Pro
[15/03/2007|22:49] H:\DOCUME~1\ADMIN\APPLIC~1\Datalayer
[11/03/2007|10:12] H:\DOCUME~1\ADMIN\APPLIC~1\dvdcss
[09/01/2008|20:31] H:\DOCUME~1\ADMIN\APPLIC~1\erreurchasseur
[05/09/2008|19:58] H:\DOCUME~1\ADMIN\APPLIC~1\Exit soft
[06/07/2007|20:01] H:\DOCUME~1\ADMIN\APPLIC~1\Google
[15/03/2007|12:32] H:\DOCUME~1\ADMIN\APPLIC~1\Help
[07/03/2007|13:02] H:\DOCUME~1\ADMIN\APPLIC~1\Identities
[05/10/2007|01:02] H:\DOCUME~1\ADMIN\APPLIC~1\ivivo
[08/03/2007|17:29] H:\DOCUME~1\ADMIN\APPLIC~1\Lavasoft
[12/03/2007|22:07] H:\DOCUME~1\ADMIN\APPLIC~1\Leadertech
[08/03/2007|17:39] H:\DOCUME~1\ADMIN\APPLIC~1\Macromedia
[07/03/2007|14:41] H:\DOCUME~1\ADMIN\APPLIC~1\Microsoft
[08/03/2007|17:42] H:\DOCUME~1\ADMIN\APPLIC~1\Mozilla
[20/03/2007|23:03] H:\DOCUME~1\ADMIN\APPLIC~1\MSN6
[17/10/2007|00:19] H:\DOCUME~1\ADMIN\APPLIC~1\Nero
[11/03/2007|23:58] H:\DOCUME~1\ADMIN\APPLIC~1\Nokia
[14/10/2007|23:51] H:\DOCUME~1\ADMIN\APPLIC~1\Nokia Multimedia Player
[27/12/2007|20:31] H:\DOCUME~1\ADMIN\APPLIC~1\Orbit
[11/10/2007|02:28] H:\DOCUME~1\ADMIN\APPLIC~1\PC Suite
[09/07/2007|09:36] H:\DOCUME~1\ADMIN\APPLIC~1\Real
[02/08/2008|22:33] H:\DOCUME~1\ADMIN\APPLIC~1\shamela
[07/03/2008|21:58] H:\DOCUME~1\ADMIN\APPLIC~1\Skype
[07/03/2008|22:03] H:\DOCUME~1\ADMIN\APPLIC~1\skypePM
[03/10/2007|15:54] H:\DOCUME~1\ADMIN\APPLIC~1\Sony
[26/10/2007|21:38] H:\DOCUME~1\ADMIN\APPLIC~1\StarOffice8
[08/03/2007|17:35] H:\DOCUME~1\ADMIN\APPLIC~1\Sun
[08/03/2007|18:16] H:\DOCUME~1\ADMIN\APPLIC~1\Symantec
[08/03/2007|17:42] H:\DOCUME~1\ADMIN\APPLIC~1\Talkback
[08/03/2007|17:23] H:\DOCUME~1\ADMIN\APPLIC~1\vlc
[07/03/2007|17:12] H:\DOCUME~1\ADMIN\APPLIC~1\Webroot
[21/10/2007|00:27] H:\DOCUME~1\ADMIN\APPLIC~1\Windows Desktop Search
[03/09/2007|01:43] H:\DOCUME~1\ADMIN\APPLIC~1\WinRAR
[22/07/2007|19:36] H:\DOCUME~1\ADMIN\APPLIC~1\Yahoo!

[17/03/2007|12:52] H:\DOCUME~1\USER1\APPLIC~1\Adobe
[13/03/2007|20:32] H:\DOCUME~1\USER1\APPLIC~1\Ahead
[14/09/2007|12:52] H:\DOCUME~1\USER1\APPLIC~1\Apple Computer
[05/10/2007|18:54] H:\DOCUME~1\USER1\APPLIC~1\Babylon
[09/12/2007|23:22] H:\DOCUME~1\USER1\APPLIC~1\BSplayer
[05/09/2008|23:42] H:\DOCUME~1\USER1\APPLIC~1\Exit soft
[03/09/2007|17:01] H:\DOCUME~1\USER1\APPLIC~1\Google
[08/03/2007|18:08] H:\DOCUME~1\USER1\APPLIC~1\Identities
[12/07/2007|22:20] H:\DOCUME~1\USER1\APPLIC~1\Macromedia
[17/03/2007|12:44] H:\DOCUME~1\USER1\APPLIC~1\Media Player Classic
[07/03/2007|14:41] H:\DOCUME~1\USER1\APPLIC~1\Microsoft
[17/03/2007|12:44] H:\DOCUME~1\USER1\APPLIC~1\Mozilla
[20/03/2008|20:28] H:\DOCUME~1\USER1\APPLIC~1\MSN6
[17/10/2007|18:57] H:\DOCUME~1\USER1\APPLIC~1\Nero
[13/03/2007|20:20] H:\DOCUME~1\USER1\APPLIC~1\Nokia Multimedia Player
[13/03/2007|19:42] H:\DOCUME~1\USER1\APPLIC~1\PC Suite
[09/07/2007|11:39] H:\DOCUME~1\USER1\APPLIC~1\Real
[17/03/2007|12:44] H:\DOCUME~1\USER1\APPLIC~1\Talkback
[29/09/2007|13:10] H:\DOCUME~1\USER1\APPLIC~1\VersionTracker Pro
[08/08/2007|18:04] H:\DOCUME~1\USER1\APPLIC~1\vlc
[03/09/2007|17:01] H:\DOCUME~1\USER1\APPLIC~1\Yahoo!

[14/03/2007|18:46] H:\DOCUME~1\USER2\APPLIC~1\Adobe
[05/09/2008|22:11] H:\DOCUME~1\USER2\APPLIC~1\Exit soft
[11/08/2007|12:40] H:\DOCUME~1\USER2\APPLIC~1\Google
[24/03/2007|12:07] H:\DOCUME~1\USER2\APPLIC~1\Help
[08/03/2007|18:09] H:\DOCUME~1\USER2\APPLIC~1\Identities
[22/03/2007|17:13] H:\DOCUME~1\USER2\APPLIC~1\Lavasoft
[14/03/2007|18:46] H:\DOCUME~1\USER2\APPLIC~1\Leadertech
[06/07/2007|15:13] H:\DOCUME~1\USER2\APPLIC~1\Macromedia
[27/05/2007|09:36] H:\DOCUME~1\USER2\APPLIC~1\Media Player Classic
[07/03/2007|14:41] H:\DOCUME~1\USER2\APPLIC~1\Microsoft
[18/12/2007|18:06] H:\DOCUME~1\USER2\APPLIC~1\Mozilla
[12/09/2008|13:53] H:\DOCUME~1\USER2\APPLIC~1\MSN6
[17/10/2007|07:09] H:\DOCUME~1\USER2\APPLIC~1\Nero
[28/05/2007|10:19] H:\DOCUME~1\USER2\APPLIC~1\Nokia
[03/01/2008|17:05] H:\DOCUME~1\USER2\APPLIC~1\Orbit
[12/03/2007|18:51] H:\DOCUME~1\USER2\APPLIC~1\PC Suite
[12/07/2007|22:17] H:\DOCUME~1\USER2\APPLIC~1\Real
[14/04/2008|14:45] H:\DOCUME~1\USER2\APPLIC~1\Skype
[11/02/2008|12:42] H:\DOCUME~1\USER2\APPLIC~1\Sun
[01/10/2007|14:47] H:\DOCUME~1\USER2\APPLIC~1\VersionTracker Pro
[14/09/2008|20:55] H:\DOCUME~1\USER2\APPLIC~1\Windows Desktop Search
[02/04/2008|22:46] H:\DOCUME~1\USER2\APPLIC~1\WinRAR
[11/08/2007|12:40] H:\DOCUME~1\USER2\APPLIC~1\Yahoo!

[05/07/2007|15:54] H:\DOCUME~1\INVITگ\APPLIC~1\Adobe
[11/07/2007|09:05] H:\DOCUME~1\INVITگ\APPLIC~1\Apple Computer
[07/07/2007|10:01] H:\DOCUME~1\INVITگ\APPLIC~1\Google
[05/07/2007|19:00] H:\DOCUME~1\INVITگ\APPLIC~1\Help
[08/03/2007|18:10] H:\DOCUME~1\INVITگ\APPLIC~1\Identities
[22/05/2007|19:16] H:\DOCUME~1\INVITگ\APPLIC~1\Macromedia
[23/03/2007|20:50] H:\DOCUME~1\INVITگ\APPLIC~1\Media Player Classic
[07/03/2007|14:41] H:\DOCUME~1\INVITگ\APPLIC~1\Microsoft
[21/07/2007|21:41] H:\DOCUME~1\INVITگ\APPLIC~1\Mozilla
[11/07/2007|09:04] H:\DOCUME~1\INVITگ\APPLIC~1\MSN6
[06/11/2007|20:20] H:\DOCUME~1\INVITگ\APPLIC~1\Nero
[23/03/2007|21:19] H:\DOCUME~1\INVITگ\APPLIC~1\Nokia
[12/03/2007|21:32] H:\DOCUME~1\INVITگ\APPLIC~1\PC Suite
[10/07/2007|18:28] H:\DOCUME~1\INVITگ\APPLIC~1\Real
[22/07/2007|01:13] H:\DOCUME~1\INVITگ\APPLIC~1\Sun
[30/09/2007|09:34] H:\DOCUME~1\INVITگ\APPLIC~1\VersionTracker Pro
[22/07/2007|14:29] H:\DOCUME~1\INVITگ\APPLIC~1\vlc
[22/07/2007|19:16] H:\DOCUME~1\INVITگ\APPLIC~1\Yahoo!


--------------------\\ Tâches planifiées dans H:\WINDOWS\tasks

[19/09/2008 13:00][--ah-----] H:\WINDOWS\tasks\AED47ABF906BEED3.job
[19/09/2008 13:00][--ah-----] H:\WINDOWS\tasks\B94C145E932B861E.job
[16/09/2008 21:43][--a------] H:\WINDOWS\tasks\AppleSoftwareUpdate.job
[19/09/2008 03:00][--a------] H:\WINDOWS\tasks\Antispyware Scheduled Scan.job
[18/09/2008 19:55][--ah-----] H:\WINDOWS\tasks\User_Feed_Synchronization-{C4491E0A-C5B2-4B76-8487-D4FFA65EC508}.job
[19/09/2008 13:15][--ah-----] H:\WINDOWS\tasks\User_Feed_Synchronization-{E28D1466-14DA-4C55-80F2-CD772981E353}.job
[19/09/2008 07:54][--ah-----] H:\WINDOWS\tasks\SA.DAT
[28/09/2001 13:00][---h-----] H:\WINDOWS\tasks\desktop.ini

( B94C145E932B861E.job )=( h:\docume~1\admin\applic~1\exitso~1\waitstupidokay.exe )
( AED47ABF906BEED3.job )=( h:\docume~1\user2\applic~1\exitso~1\waitstupidokay.exe )

--------------------\\ Listing des dossiers dans H:\Program Files

[28/10/2007|14:08] H:\Program Files\3B Software
[08/03/2007|15:57] H:\Program Files\Adobe
[10/11/2007|13:59] H:\Program Files\Ahead
[15/03/2008|00:10] H:\Program Files\AntiSpywareApp
[18/05/2008|20:57] H:\Program Files\ARTICLES
[14/07/2007|01:43] H:\Program Files\AskTBar
[07/03/2007|13:21] H:\Program Files\ASUS
[13/08/2007|22:20] H:\Program Files\Athan
[05/10/2007|09:29] H:\Program Files\Babylon
[09/03/2007|18:10] H:\Program Files\Borland
[26/10/2007|22:37] H:\Program Files\Cache
[31/10/2007|19:43] H:\Program Files\CCleaner
[05/09/2008|19:57] H:\Program Files\Circle Developement
[09/03/2007|12:11] H:\Program Files\Common Files
[07/03/2007|12:55] H:\Program Files\ComPlus Applications
[18/05/2008|20:57] H:\Program Files\DATA
[09/03/2007|11:26] H:\Program Files\Disney Interactive
[24/10/2007|19:08] H:\Program Files\DJKSOFT
[21/03/2007|17:33] H:\Program Files\EPSON
[18/09/2008|16:39] H:\Program Files\Exit soft
[04/10/2007|02:03] H:\Program Files\Extension Changer
[11/07/2007|09:52] H:\Program Files\Far
[07/03/2007|14:41] H:\Program Files\Fichiers communs
[18/05/2008|20:57] H:\Program Files\font
[22/05/2007|19:16] H:\Program Files\Free
[05/07/2007|15:55] H:\Program Files\FreeDial
[09/03/2007|12:11] H:\Program Files\FUTURE HORIZONS
[01/01/2008|20:24] H:\Program Files\Future Horizons Company
[07/03/2007|13:21] H:\Program Files\GameFace Messenger
[06/07/2007|20:01] H:\Program Files\Google
[29/07/2007|07:38] H:\Program Files\Illustrate
[07/03/2007|13:11] H:\Program Files\InstallShield Installation Information
[07/03/2007|12:56] H:\Program Files\Internet Explorer
[08/03/2007|17:18] H:\Program Files\IrfanView
[10/08/2007|20:26] H:\Program Files\IslamicPlayer
[05/10/2007|01:01] H:\Program Files\iViVo
[08/03/2007|17:34] H:\Program Files\Java
[07/03/2007|12:55] H:\Program Files\Messenger
[21/03/2008|17:44] H:\Program Files\Messenger Plus! Live
[06/05/2007|00:45] H:\Program Files\Micro Application
[07/03/2007|12:58] H:\Program Files\microsoft frontpage
[29/12/2007|16:04] H:\Program Files\Microsoft LifeCam
[07/03/2007|16:55] H:\Program Files\Microsoft Office
[14/11/2007|23:07] H:\Program Files\Microsoft SQL Server Compact Edition
[07/03/2007|16:56] H:\Program Files\Microsoft Visual Studio
[27/08/2007|17:28] H:\Program Files\Mindscape
[15/09/2007|09:06] H:\Program Files\moshaf alsedeeq
[07/03/2007|12:56] H:\Program Files\Movie Maker
[08/03/2007|17:42] H:\Program Files\Mozilla Firefox
[15/07/2007|08:53] H:\Program Files\MSBuild
[07/03/2007|12:55] H:\Program Files\MSN
[07/03/2007|12:55] H:\Program Files\MSN Gaming Zone
[05/07/2007|16:01] H:\Program Files\MSXML 4.0
[15/07/2007|08:56] H:\Program Files\MSXML 6.0
[07/03/2007|15:29] H:\Program Files\Multimedia Card Reader
[09/03/2007|21:07] H:\Program Files\Musicmatch
[07/03/2007|13:15] H:\Program Files\My Company Name
[07/03/2007|17:47] H:\Program Files\NavNT
[07/03/2007|18:02] H:\Program Files\Nero
[07/03/2007|12:56] H:\Program Files\NetMeeting
[07/03/2007|12:56] H:\Program Files\Outlook Express
[08/03/2007|18:00] H:\Program Files\Paragon Software
[15/07/2007|14:41] H:\Program Files\PocketRAR
[09/03/2007|17:24] H:\Program Files\QuickTime
[12/07/2008|10:14] H:\Program Files\Quran Kareem
[07/10/2007|09:38] H:\Program Files\Quran_AR
[09/07/2007|09:40] H:\Program Files\Real
[16/02/2008|22:44] H:\Program Files\Real_SC
[07/03/2007|16:15] H:\Program Files\Realtek
[15/07/2007|08:49] H:\Program Files\Reference Assemblies
[09/03/2007|10:28] H:\Program Files\safeer
[07/03/2007|12:55] H:\Program Files\Services en ligne
[07/03/2008|21:57] H:\Program Files\Skype
[13/09/2007|15:14] H:\Program Files\SlySoft
[10/10/2007|01:29] H:\Program Files\Sony Setup
[22/10/2007|22:24] H:\Program Files\Sun
[07/03/2007|17:47] H:\Program Files\Symantec
[16/08/2008|00:14] H:\Program Files\The KMPlayer
[19/09/2008|01:43] H:\Program Files\Trend Micro
[07/03/2007|13:02] H:\Program Files\Uninstall Information
[18/05/2008|21:08] H:\Program Files\USERS
[19/09/2007|10:51] H:\Program Files\uTorrent
[07/03/2007|16:13] H:\Program Files\VIA
[08/03/2007|17:23] H:\Program Files\VideoLAN
[18/05/2008|20:57] H:\Program Files\WAVE
[07/03/2007|17:12] H:\Program Files\Webroot
[07/03/2007|17:11] H:\Program Files\Webteh
[07/03/2007|17:02] H:\Program Files\WinAce
[17/09/2007|18:31] H:\Program Files\Winamp
[06/08/2008|23:15] H:\Program Files\Winamp Remote
[21/10/2007|00:02] H:\Program Files\Windows Desktop Search
[11/07/2007|23:17] H:\Program Files\Windows Live
[12/07/2007|19:58] H:\Program Files\Windows Live Safety Center
[06/07/2007|01:00] H:\Program Files\Windows Live Toolbar
[13/07/2007|11:05] H:\Program Files\Windows Media Connect 2
[07/03/2007|12:56] H:\Program Files\Windows Media Player
[07/03/2007|12:55] H:\Program Files\Windows NT
[07/03/2007|12:55] H:\Program Files\WindowsUpdate
[11/07/2007|09:48] H:\Program Files\WinRAR
[07/03/2007|17:03] H:\Program Files\WinZip
[07/03/2007|12:58] H:\Program Files\xerox
[03/08/2008|11:22] H:\Program Files\XP Repair Pro 2007
[07/03/2007|17:05] H:\Program Files\xp-AntiSpy
[31/10/2007|19:43] H:\Program Files\Yahoo!

--------------------\\ Listing des dossiers dans H:\Program Files\Fichiers communs

[09/07/2007|23:34] H:\Program Files\Fichiers communs\Adobe
[07/03/2007|18:02] H:\Program Files\Fichiers communs\Ahead
[07/03/2007|16:56] H:\Program Files\Fichiers communs\Designer
[21/03/2007|17:36] H:\Program Files\Fichiers communs\EPSON
[09/01/2008|20:25] H:\Program Files\Fichiers communs\ErreurChasseur
[07/03/2007|13:09] H:\Program Files\Fichiers communs\InstallShield
[22/10/2007|22:22] H:\Program Files\Fichiers communs\Java
[07/03/2007|14:41] H:\Program Files\Fichiers communs\Microsoft Shared
[07/03/2007|12:56] H:\Program Files\Fichiers communs\MSSoap
[13/07/2008|11:43] H:\Program Files\Fichiers communs\Nero
[11/10/2007|02:24] H:\Program Files\Fichiers communs\Nokia
[18/10/2007|21:24] H:\Program Files\Fichiers communs\NSV
[07/03/2007|14:41] H:\Program Files\Fichiers communs\ODBC
[11/10/2007|02:24] H:\Program Files\Fichiers communs\PCSuite
[09/07/2007|09:40] H:\Program Files\Fichiers communs\Real
[07/02/2008|23:31] H:\Program Files\Fichiers communs\Scanner
[07/03/2007|12:56] H:\Program Files\Fichiers communs\Services
[15/06/2008|23:27] H:\Program Files\Fichiers communs\Skype
[07/03/2007|14:41] H:\Program Files\Fichiers communs\SpeechEngines
[07/03/2007|17:47] H:\Program Files\Fichiers communs\Symantec Shared
[07/03/2007|12:56] H:\Program Files\Fichiers communs\System
[07/03/2007|17:12] H:\Program Files\Fichiers communs\Webroot Shared
[14/11/2007|22:51] H:\Program Files\Fichiers communs\WindowsLiveInstaller
[27/02/2008|16:24] H:\Program Files\Fichiers communs\xing shared

--------------------\\ Process

( 46 Processes )

IEXPLORE.EXE ~ [PID:2520]
IEXPLORE.EXE ~ [PID:1628]
iexplore.exe ~ [PID:1008]

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

H:\DOCUME~1\ALLUSE~1\APPLIC~1\Grid Blue Memo Site
H:\DOCUME~1\ALLUSE~1\APPLIC~1\Grid Blue Memo Site\For anti.exe
H:\DOCUME~1\ALLUSE~1\APPLIC~1\Grid Blue Memo Site\Default Skip.exe
H:\DOCUME~1\ADMIN\APPLIC~1\exitso~1
H:\DOCUME~1\ADMIN\APPLIC~1\exitso~1\Bait Bike.exe
H:\DOCUME~1\ADMIN\APPLIC~1\exitso~1\eozqmlnt.exe
H:\DOCUME~1\ADMIN\APPLIC~1\exitso~1\SIZE BROWSE ACTIVE WAVE.exe
H:\DOCUME~1\ADMIN\APPLIC~1\exitso~1\wait stupid okay.exe
H:\DOCUME~1\USER1\APPLIC~1\exitso~1
H:\DOCUME~1\USER1\APPLIC~1\exitso~1\Bait Bike.exe
H:\DOCUME~1\USER2\APPLIC~1\exitso~1
H:\DOCUME~1\USER2\APPLIC~1\exitso~1\Bait Bike.exe
H:\DOCUME~1\USER2\APPLIC~1\exitso~1\atbssrul.exe
H:\DOCUME~1\USER2\APPLIC~1\exitso~1\SIZE BROWSE ACTIVE WAVE.exe
H:\DOCUME~1\USER2\APPLIC~1\exitso~1\wait stupid okay.exe
H:\Program Files\exitso~1
H:\Program Files\Circle Developement
H:\Program Files\Circle Developement\Uninstall.exe
H:\DOCUME~1\User2\Cookies\user2@advertising[2].txt
H:\DOCUME~1\User2\Cookies\user2@advertising[3].txt
H:\DOCUME~1\User2\Cookies\user2@casinoking[1].txt
H:\DOCUME~1\User2\Cookies\user2@banner.casinoking[2].txt
H:\DOCUME~1\User2\Cookies\user2@adopt.euroclick[1].txt
H:\WINDOWS\Tasks\B94C145E932B861E.job
H:\WINDOWS\Tasks\AED47ABF906BEED3.job

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Bolt spam"="H:\\DOCUME~1\\User2\\APPLIC~1\\EXITSO~1\\Bait Bike.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-19 13:20:30
Windows 5.1.2600 Service Pack 2 FAT NTAPI
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections

H:\WINDOWS\System32\nvs2.inf

H:\WINDOWS\System32\nekraixfmb.dat
H:\WINDOWS\System32\nekraixfmb_navps.dat
H:\WINDOWS\System32\nekraixfmb_nav.dat
==> EGDACCESS <==



[F:1168][D:35]-> H:\DOCUME~1\User2\LOCALS~1\Temp
[F:243][D:0]-> H:\DOCUME~1\User2\Cookies
[F:5670][D:9]-> H:\DOCUME~1\User2\LOCALS~1\TEMPOR~1\content.IE5
[F:4][D:0]-> H:\Recycled

1 - "H:\Lop SD\LopR_1.txt" - 19/09/2008|13:21 - Option : [1]

--------------------\\ Fin du rapport a 13:21:25
Tom's guide dans le monde
  • Allemagne
  • Italie
  • Irlande
  • Royaume Uni
  • Etats Unis
Suivre Tom's Guide
Inscrivez-vous à la Newsletter