Se connecter / S'enregistrer
Votre question

cid effacé probleme tjr pas regler infection récurrente

Tags :
  • Sécurité
Dernière réponse : dans Sécurité et virus
12 Mai 2008 01:32:52

bonjour atous voila mon problemes cid infeste mon pc malgré qu il n y soit plus voila mon rapport lop sd



-----------------------[ Lop S&D 4.2.0-8 XP/Vista ]---------------------

[ Windows XP (NT 5.1) Build 2600, Service Pack 3 ]
[ USER : auchan ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 12/05/2008 | 1:22:22,50 ] [ PC : YOUR-E7F2723B7A ]
[ MAJ : 11-05-2008 | 18:25 ]

-------------[ Listing des dossiers dans Application Data ]------------


[20/04/2008|10:23] C:\DOCUME~1\Adrien\APPLIC~1\Adobe
[13/11/2006|20:53] C:\DOCUME~1\Adrien\APPLIC~1\AVG7
[08/04/2008|21:52] C:\DOCUME~1\Adrien\APPLIC~1\Coallinklicense
[27/03/2006|09:48] C:\DOCUME~1\Adrien\APPLIC~1\desktop.ini
[07/02/2007|18:56] C:\DOCUME~1\Adrien\APPLIC~1\Google
[11/05/2006|10:35] C:\DOCUME~1\Adrien\APPLIC~1\Identities
[13/11/2006|21:06] C:\DOCUME~1\Adrien\APPLIC~1\Macromedia
[13/11/2006|21:06] C:\DOCUME~1\Adrien\APPLIC~1\Microsoft
[05/03/2008|10:47] C:\DOCUME~1\Adrien\APPLIC~1\Mozilla
[01/05/2008|19:49] C:\DOCUME~1\Adrien\APPLIC~1\Real

[16/02/2008|20:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[28/10/2006|11:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[11/05/2008|22:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg7
[25/02/2007|14:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[27/03/2006|09:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[11/05/2008|22:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[28/10/2006|12:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[07/04/2007|22:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[02/04/2008|22:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log
[11/05/2006|10:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[04/05/2008|14:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\live 64 math does
[12/05/2008|00:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[11/05/2006|02:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[15/09/2006|15:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[11/05/2006|10:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[11/05/2006|10:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[11/05/2008|22:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[28/10/2006|12:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[13/09/2006|15:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint
[21/09/2006|18:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[20/09/2006|19:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[12/05/2008|00:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

[05/04/2008|22:59] C:\DOCUME~1\auchan\APPLIC~1\Adobe
[12/10/2006|14:45] C:\DOCUME~1\auchan\APPLIC~1\AdobeUM
[28/10/2006|11:53] C:\DOCUME~1\auchan\APPLIC~1\AOL
[25/10/2006|09:52] C:\DOCUME~1\auchan\APPLIC~1\ArcSoft
[26/04/2007|21:02] C:\DOCUME~1\auchan\APPLIC~1\AVG7
[04/05/2008|14:05] C:\DOCUME~1\auchan\APPLIC~1\Coallinklicense
[13/09/2006|14:00] C:\DOCUME~1\auchan\APPLIC~1\CyberLink
[27/03/2006|09:48] C:\DOCUME~1\auchan\APPLIC~1\desktop.ini
[27/02/2008|22:49] C:\DOCUME~1\auchan\APPLIC~1\dvdcss
[01/01/2007|21:51] C:\DOCUME~1\auchan\APPLIC~1\Google
[13/09/2006|15:34] C:\DOCUME~1\auchan\APPLIC~1\Help
[02/06/2007|21:23] C:\DOCUME~1\auchan\APPLIC~1\HP
[30/09/2007|14:30] C:\DOCUME~1\auchan\APPLIC~1\HPSU_48BitScanUpdate.log
[11/05/2006|10:35] C:\DOCUME~1\auchan\APPLIC~1\Identities
[02/05/2008|12:01] C:\DOCUME~1\auchan\APPLIC~1\Image Zone Express
[02/11/2006|22:11] C:\DOCUME~1\auchan\APPLIC~1\InstallShield
[02/11/2006|22:12] C:\DOCUME~1\auchan\APPLIC~1\InstallShield Installation Information
[26/09/2006|10:25] C:\DOCUME~1\auchan\APPLIC~1\Leadertech
[05/04/2008|23:07] C:\DOCUME~1\auchan\APPLIC~1\LimeWire
[21/03/2008|08:34] C:\DOCUME~1\auchan\APPLIC~1\Macromedia
[25/02/2007|12:48] C:\DOCUME~1\auchan\APPLIC~1\Media Player Classic
[08/01/2008|22:30] C:\DOCUME~1\auchan\APPLIC~1\Microsoft
[10/03/2007|09:22] C:\DOCUME~1\auchan\APPLIC~1\Mozilla
[15/09/2006|18:25] C:\DOCUME~1\auchan\APPLIC~1\MSNInstaller
[12/05/2008|00:54] C:\DOCUME~1\auchan\APPLIC~1\OpenOffice.org2
[30/09/2007|14:33] C:\DOCUME~1\auchan\APPLIC~1\PatchUpdate_HP_CounterReport_Update_HPSU.log
[02/05/2008|11:21] C:\DOCUME~1\auchan\APPLIC~1\Printer Info Cache
[11/05/2008|22:58] C:\DOCUME~1\auchan\APPLIC~1\Real
[26/09/2006|10:26] C:\DOCUME~1\auchan\APPLIC~1\Sonic
[26/10/2006|10:56] C:\DOCUME~1\auchan\APPLIC~1\Sun
[28/10/2006|12:05] C:\DOCUME~1\auchan\APPLIC~1\Symantec
[15/09/2006|15:56] C:\DOCUME~1\auchan\APPLIC~1\Template
[30/09/2007|14:11] C:\DOCUME~1\auchan\APPLIC~1\Update_HP_RedboxHprblog_HPSU.log
[25/02/2007|13:54] C:\DOCUME~1\auchan\APPLIC~1\vlc
[15/09/2006|15:55] C:\DOCUME~1\auchan\APPLIC~1\wklnhst.dat
[13/09/2006|15:30] C:\DOCUME~1\auchan\APPLIC~1\You've Got Pictures Screensaver

[27/03/2006|09:48] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[11/05/2006|10:35] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[10/10/2007|07:53] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[11/05/2006|02:54] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[28/10/2006|12:22] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
[20/12/2006|22:34] C:\DOCUME~1\LOCALS~1\APPLIC~1\Help
[29/12/2006|22:46] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[12/07/2007|07:59] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

[12/05/2008 01:00][--ah-----] C:\WINDOWS\tasks\AC496FF69A92E71E.job
[12/05/2008 00:23][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 23:00][-rah-----] C:\WINDOWS\tasks\desktop.ini

AC496FF69A92E71E.job <--> c:\docume~1\auchan\applic~1\coalli~1\Mpegsitemail.exe

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[16/02/2008|20:37] C:\Program Files\Adobe
[07/04/2007|00:07] C:\Program Files\Ahead
[06/01/2007|19:48] C:\Program Files\ArcSoft
[11/05/2008|22:29] C:\Program Files\CCleaner
[11/05/2006|03:33] C:\Program Files\CONEXANT
[06/01/2007|20:03] C:\Program Files\Digital Video
[08/05/2008|11:28] C:\Program Files\eMule
[10/03/2007|13:10] C:\Program Files\ffdsasetts.reg
[10/03/2007|13:10] C:\Program Files\ffdssetts.reg
[10/03/2007|13:10] C:\Program Files\ffdsvsetts.reg
[12/05/2008|00:07] C:\Program Files\Fichiers communs
[13/04/2008|22:58] C:\Program Files\Free Easy Burner
[11/05/2008|23:05] C:\Program Files\Google
[28/10/2006|12:22] C:\Program Files\Grisoft
[11/05/2006|03:18] C:\Program Files\Hewlett-Packard
[30/10/2007|21:34] C:\Program Files\Hp
[26/10/2006|15:31] C:\Program Files\HPQ
[22/05/2007|07:56] C:\Program Files\IncrediMail
[12/05/2008|00:20] C:\Program Files\InstallShield Installation Information
[11/05/2006|02:45] C:\Program Files\Intel
[26/02/2008|21:49] C:\Program Files\InterActual
[09/04/2008|20:30] C:\Program Files\Internet Explorer
[11/05/2006|10:35] C:\Program Files\Java
[13/04/2008|22:42] C:\Program Files\Magentic
[11/05/2007|03:02] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[27/10/2006|09:46] C:\Program Files\microsoft frontpage
[11/05/2006|02:55] C:\Program Files\Microsoft Office
[11/05/2006|02:55] C:\Program Files\Microsoft Works
[11/05/2008|23:55] C:\Program Files\Movie Maker
[12/05/2008|00:40] C:\Program Files\Mozilla Firefox
[10/03/2007|13:10] C:\Program Files\mpc1.reg
[10/03/2007|13:10] C:\Program Files\mpc2.reg
[10/03/2007|13:10] C:\Program Files\mpc3.reg
[10/03/2007|13:10] C:\Program Files\mpc4.reg
[10/03/2007|13:10] C:\Program Files\mpc5.reg
[10/03/2007|13:10] C:\Program Files\mpc6.reg
[10/03/2007|13:10] C:\Program Files\mpc7.reg
[15/09/2006|18:24] C:\Program Files\MSN
[11/05/2006|10:35] C:\Program Files\MSN Gaming Zone
[18/11/2006|23:38] C:\Program Files\MSXML 4.0
[11/05/2008|23:50] C:\Program Files\NetMeeting
[11/05/2006|10:35] C:\Program Files\Online Services
[25/02/2007|13:30] C:\Program Files\OpenOffice.org 2.1
[11/05/2008|23:50] C:\Program Files\Outlook Express
[13/09/2006|15:29] C:\Program Files\QuickTime
[13/09/2006|15:29] C:\Program Files\Real
[10/03/2007|13:09] C:\Program Files\Satsuki Decoder Pack
[10/03/2007|13:09] C:\Program Files\satsukidecodersettings.ini
[11/05/2006|03:09] C:\Program Files\Services en ligne
[11/05/2006|10:35] C:\Program Files\Sonic
[28/10/2006|12:29] C:\Program Files\Spybot - Search & Destroy
[11/05/2008|22:55] C:\Program Files\Symantec
[11/05/2006|02:56] C:\Program Files\Synaptics
[19/12/2006|21:42] C:\Program Files\Uninstall Information
[25/02/2007|12:43] C:\Program Files\VideoLAN
[13/09/2006|15:29] C:\Program Files\Viewpoint
[12/05/2008|00:08] C:\Program Files\Windows Live
[11/05/2008|23:02] C:\Program Files\Windows Live Toolbar
[19/12/2006|21:48] C:\Program Files\Windows Media Connect 2
[11/05/2008|23:50] C:\Program Files\Windows Media Player
[11/05/2008|23:50] C:\Program Files\Windows NT
[27/10/2006|09:46] C:\Program Files\xerox
[01/11/2006|18:42] C:\Program Files\Yahoo!

------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

[16/02/2008|20:37] C:\Program Files\Fichiers communs\Adobe
[28/10/2006|11:53] C:\Program Files\Fichiers communs\AOL
[25/10/2006|09:48] C:\Program Files\Fichiers communs\ArcSoft
[07/04/2007|21:56] C:\Program Files\Fichiers communs\Hewlett-Packard
[11/05/2006|10:35] C:\Program Files\Fichiers communs\HP
[11/05/2006|02:52] C:\Program Files\Fichiers communs\InstallShield
[11/05/2006|10:35] C:\Program Files\Fichiers communs\Java
[11/05/2006|03:18] C:\Program Files\Fichiers communs\LightScribe
[12/05/2008|00:07] C:\Program Files\Fichiers communs\Microsoft Shared
[11/05/2006|10:35] C:\Program Files\Fichiers communs\MSSoap
[13/09/2006|15:29] C:\Program Files\Fichiers communs\Nullsoft
[11/05/2008|22:59] C:\Program Files\Fichiers communs\Real
[11/05/2006|10:35] C:\Program Files\Fichiers communs\Services
[11/05/2006|10:35] C:\Program Files\Fichiers communs\Sonic Shared
[11/05/2006|10:35] C:\Program Files\Fichiers communs\SpeechEngines
[11/05/2006|10:35] C:\Program Files\Fichiers communs\SureThing Shared
[11/05/2008|22:55] C:\Program Files\Fichiers communs\Symantec Shared
[11/05/2008|23:50] C:\Program Files\Fichiers communs\System
[11/05/2006|10:35] C:\Program Files\Fichiers communs\TiVo Shared
[12/05/2008|00:07] C:\Program Files\Fichiers communs\WindowsLiveInstaller

---------------------------[ Process ]--------------------------

... 48

iexplore.exe ~ [2904]
iexplore.exe ~ [3044]

----------------------[ Recherche avec S_Lop ]---------------------

C:\DOCUME~1\auchan\LOCALS~1\Temp\bis568.exe

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

C:\DOCUME~1\Adrien\APPLIC~1\Coallinklicense
C:\DOCUME~1\auchan\APPLIC~1\Coallinklicense
C:\DOCUME~1\auchan\APPLIC~1\Coallinklicense\4 platform rect browse.exe
C:\DOCUME~1\auchan\APPLIC~1\Coallinklicense\Find Chic Option.exe
C:\DOCUME~1\auchan\APPLIC~1\Coallinklicense\Mpeg site mail.exe
C:\DOCUME~1\auchan\APPLIC~1\Coallinklicense\wvomtfmt.exe
C:\DOCUME~1\ALLUSE~1\APPLIC~1\live 64 math does
C:\DOCUME~1\ALLUSE~1\APPLIC~1\live 64 math does\free second.exe
C:\DOCUME~1\Adrien\APPLIC~1\coalli~1
C:\DOCUME~1\auchan\APPLIC~1\coalli~1
C:\DOCUME~1\auchan\APPLIC~1\coalli~1\4 platform rect browse.exe
C:\DOCUME~1\auchan\APPLIC~1\coalli~1\Find Chic Option.exe
C:\DOCUME~1\auchan\APPLIC~1\coalli~1\Mpeg site mail.exe
C:\DOCUME~1\auchan\APPLIC~1\coalli~1\wvomtfmt.exe
C:\WINDOWS\Tasks\AC496FF69A92E71E.job

----------------------[ Verification du Registre ]----------------------

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Online bind"="C:\\DOCUME~1\\auchan\\APPLIC~1\\COALLI~1\\Find Chic Option.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts MODIFIE

127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 www.drivecleaner.com ## added by CiD
127.0.0.1 www.errorprotector.com ## added by CiD
127.0.0.1 www.errorsafe.com ## added by CiD
127.0.0.1 www.systemdoctor.com ## added by CiD
127.0.0.1 www.utils.winfixer.com ## added by CiD
127.0.0.1 www.win-anti-virus-pro.com ## added by CiD
127.0.0.1 www.win-virus-pro.com ## added by CiD
127.0.0.1 www.winantispam.com ## added by CiD
127.0.0.1 www.winantispy.com ## added by CiD
127.0.0.1 www.winantispyware.com ## added by CiD
127.0.0.1 www.winantivirus.com ## added by CiD
127.0.0.1 www.winantiviruspro.com ## added by CiD
127.0.0.1 www.windrivecleaner.com ## added by CiD
127.0.0.1 www.windrivesafe.com ## added by CiD
127.0.0.1 www.winfixer.com ## added by CiD
127.0.0.1 www.winfixer2006.com ## added by CiD
127.0.0.1 www.winsoftware.com ## added by CiD

-> 72 ( 70 ## added by CiD )

/!\ 1 Not 127.0.0.1 !!

----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-05-12 01:23:13
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

C:\WINDOWS\system32\nvs2.inf
! EGDACCESS !



/!\ [Fich:3024][Doss:43] C:\DOCUME~1\auchan\LOCALS~1\Temp
/!\ [Fich:25][Doss:0] C:\DOCUME~1\auchan\Cookies
/!\ [Fich:684][Doss:4] C:\DOCUME~1\auchan\TEMPOR~1\content.IE5

--------------------[ Fin du rapport a 1:23:37,76 ]----------------------
CORDIALEMENT DORCEL MERCI

Autres pages sur : cid efface probleme tjr regler infection recurrente

12 Mai 2008 11:47:35

Hello ,

Ouvre Spybot , clique sur l'onglet Mode et choisis Mode Avancé
Ne tiens pas compte de l'avertissement
En bas à gauche , clique sur Outils
Toujours dans la colonne de gauche , clique sur Résident ( pas dans la fenêtre centrale )
Et décoche l'option Resident "TeaTimer".......

----------------------------------------------------------

Relance Lop S&D

Choisis cette fois ci l'Option 2 ( Suppression + Hosts )
Ne ferme pas la fenêtre lors de la suppression !
Poste le rapport généré ( C:\lopR.txt )

( Si le Bureau ne réapparaît pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide )

Tom's guide dans le monde
  • Allemagne
  • Italie
  • Irlande
  • Royaume Uni
  • Etats Unis
Suivre Tom's Guide
Inscrivez-vous à la Newsletter
  • ajouter à twitter
  • ajouter à facebook
  • ajouter un flux RSS