Bonjour Depuis que mon conjoint a clique sur un lien msn pourri il a chopé des saloperies, grave a antivir j'en ai supprimé pas mal mais le probleme de base persiste, au demarrage de la session windows il y a le message lsass.exe éditeur inconnu voulez vous l'executer, que je clique sur oui ou non il ne se passe rien... Et je n'ai plus de connexion a internet, les ip et passrelle sont remise a blanc systematiquement a chaque reboot, meme si je les rentre manuellement. Pas sur qu'il y ait un lien direct, j'aimerais avoir quelques eclaircissements. Par avance, merci Configuration: / Indeterminable Indeterminable

Lsass.exe editeur inconnu

Réponse 21 / 42

australienne

Bonjour

Voici le rapport

All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
No active process named iexplore.exe was found!
No active process named firefox.exe was found!
Process msnmsgr.exe killed successfully!
No active process named Teatimer.exe was found!
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\DXDllRegExe deleted successfully.
ADS D:\vac2005-91.JPG:KAVICHS deleted successfully.
ADS D:\vac2005-9.JPG:KAVICHS deleted successfully.
ADS D:\vac2005-8.JPG:KAVICHS deleted successfully.
ADS D:\vac2005-7.JPG:KAVICHS deleted successfully.
ADS D:\vac2005-6.JPG:KAVICHS deleted successfully.
ADS D:\vac2005-5.JPG:KAVICHS deleted successfully.
ADS D:\vac2005-4.JPG:KAVICHS deleted successfully.
ADS D:\vac2005-3.JPG:KAVICHS deleted successfully.
ADS D:\vac2005-2.JPG:KAVICHS deleted successfully.
ADS D:\vac2005-1.JPG:KAVICHS deleted successfully.
ADS D:\titreg2.gif:KAVICHS deleted successfully.
ADS D:\text1.swf:KAVICHS deleted successfully.
ADS D:\tel urgences.doc:KAVICHS deleted successfully.
ADS D:\server2.met:KAVICHS deleted successfully.
ADS D:\server.met:KAVICHS deleted successfully.
ADS D:\rosie.jpg:KAVICHS deleted successfully.
ADS D:\rmxv3.exe:KAVICHS deleted successfully.
ADS D:\release_notes.txt:KAVICHS deleted successfully.
ADS D:\psa2se_fre.exe:KAVICHS deleted successfully.
ADS D:\plot.log:KAVICHS deleted successfully.
ADS D:\onciale.jpg:KAVICHS deleted successfully.
ADS D:\navigation.htm:KAVICHS deleted successfully.
ADS D:\navfla.htm:KAVICHS deleted successfully.
ADS D:\nav.swf:KAVICHS deleted successfully.
ADS D:\nav.swd:KAVICHS deleted successfully.
ADS D:\nav.htm:KAVICHS deleted successfully.
ADS D:\mp10setup.exe:KAVICHS deleted successfully.
ADS D:\menu.swf:KAVICHS deleted successfully.
ADS D:\menu.html:KAVICHS deleted successfully.
ADS D:\menu.fla:KAVICHS deleted successfully.
ADS D:\mainttest1.html:KAVICHS deleted successfully.
ADS D:\mainttest0.html:KAVICHS deleted successfully.
ADS D:\maintest.html:KAVICHS deleted successfully.
ADS D:\main.htm:KAVICHS deleted successfully.
ADS D:\LECTMD10.EXE:KAVICHS deleted successfully.
ADS D:\LECOURTAIS.pdf:KAVICHS deleted successfully.
ADS D:\jeroboam.zip:KAVICHS deleted successfully.
ADS D:\jeanmichel.tif:KAVICHS deleted successfully.
ADS D:\index.html:KAVICHS deleted successfully.
ADS D:\index.htm:KAVICHS deleted successfully.
ADS D:\he2.pdf:KAVICHS deleted successfully.
ADS D:\frameset.htm:KAVICHS deleted successfully.
ADS D:\Flash8-fr.exe:KAVICHS deleted successfully.
ADS D:\Fireworks8-fr.exe:KAVICHS deleted successfully.
ADS D:\feuille.html:KAVICHS deleted successfully.
ADS D:\Fetes%20SV.pdf:KAVICHS deleted successfully.
ADS D:\EnvoiFTP_V105.exe:KAVICHS deleted successfully.
ADS D:\Dreamweaver8-fr.exe:KAVICHS deleted successfully.
ADS D:\DivXPlay.exe:KAVICHS deleted successfully.
ADS D:\credit-rachat2.fla:KAVICHS deleted successfully.
ADS D:\contact-24817.htm:KAVICHS deleted successfully.
ADS D:\caution.rtf:KAVICHS deleted successfully.
ADS D:\cadeaux koclicko brio1.doc:KAVICHS deleted successfully.
ADS D:\cadeaux koclicko brio.doc:KAVICHS deleted successfully.
ADS D:\button1.swf:KAVICHS deleted successfully.
ADS D:\bl.gif:KAVICHS deleted successfully.
ADS D:\bl.bmp:KAVICHS deleted successfully.
ADS D:\Au revoir et bon vent.ppt:KAVICHS deleted successfully.
ADS D:\antonin2.gif:KAVICHS deleted successfully.
ADS D:\AdbeRdr60_fra_full.exe:KAVICHS deleted successfully.
ADS D:\3ivx.zip:KAVICHS deleted successfully.
ADS D:\000000-20050125-SN025175997SCRIFV1114900000000514d1df337463fb720f0fce1c9b3ddbe.pdf:KAVICHS deleted successfully.
ADS D:\000000-20050111-SN011104497SCRIFV111490000000065407b2ef3849600003eb40937807a5e.pdf:KAVICHS deleted successfully.
ADS D:\(pas de sujet).eml:KAVICHS deleted successfully.
ADS C:\Program Files\RngInterstitial.dll:KAVICHS deleted successfully.
ADS D:\WinDVD7.exe:KAVICHS deleted successfully.
ADS D:\vlc-0.8.4a-win32.exe:KAVICHS deleted successfully.
ADS D:\Studio10_5_full.exe:KAVICHS deleted successfully.
ADS D:\roulet_mandat_revenus_identite.pdf:KAVICHS deleted successfully.
ADS D:\roulet_hebergeur2.pdf:KAVICHS deleted successfully.
ADS D:\roulet_hebergeur1.pdf:KAVICHS deleted successfully.
ADS D:\roulet_crd.pdf:KAVICHS deleted successfully.
ADS D:\Raccourci vers Inforad_Manager_2_0_full_setup.lnk:KAVICHS deleted successfully.
ADS D:\pilat_revenus.pdf:KAVICHS deleted successfully.
ADS D:\pilat_identite_logement.pdf:KAVICHS deleted successfully.
ADS D:\pilat_crd.pdf:KAVICHS deleted successfully.
ADS D:\pilat_complements.pdf:KAVICHS deleted successfully.
ADS D:\pilat_bque_mr.pdf:KAVICHS deleted successfully.
ADS D:\pilat_bque_mme_2.pdf:KAVICHS deleted successfully.
ADS D:\pilat_bque_mme_1.pdf:KAVICHS deleted successfully.
ADS D:\octobre2006 174 bis.jpg:KAVICHS deleted successfully.
ADS D:\Numériser.jpg:KAVICHS deleted successfully.
ADS D:\nizier_taxhab_compl.pdf:KAVICHS deleted successfully.
ADS D:\nizier_solde_compl.pdf:KAVICHS deleted successfully.
ADS D:\nizier_revenus.zip:KAVICHS deleted successfully.
ADS D:\nizier_revenus.pdf:KAVICHS deleted successfully.
ADS D:\nizier_is_compl.pdf:KAVICHS deleted successfully.
ADS D:\nizier_identite_logement.pdf:KAVICHS deleted successfully.
ADS D:\nizier_crd.pdf:KAVICHS deleted successfully.
ADS D:\nizier_banque_mr.pdf:KAVICHS deleted successfully.
ADS D:\nizier_banque_mme.pdf:KAVICHS deleted successfully.
ADS D:\Maximusdvd1.2.ZIP:KAVICHS deleted successfully.
ADS D:\mathiot_revenus.pdf:KAVICHS deleted successfully.
ADS D:\mathiot_identite_logement.pdf:KAVICHS deleted successfully.
ADS D:\mathiot_crd.pdf:KAVICHS deleted successfully.
ADS D:\mathiot_comptes.pdf:KAVICHS deleted successfully.
ADS D:\MakeMPEG4Free.exe:KAVICHS deleted successfully.
ADS D:\mails senateurs.sxw:KAVICHS deleted successfully.
ADS D:\loup garouj.doc:KAVICHS deleted successfully.
ADS D:\Inforad_Manager_2_0_full_setup.exe:KAVICHS deleted successfully.
ADS D:\FELIZ2006.pps:KAVICHS deleted successfully.
ADS D:\Dossier - ROULET.xls:KAVICHS deleted successfully.
ADS D:\Dossier - PILAT.xls:KAVICHS deleted successfully.
ADS D:\Dossier - MATHIOT.xls:KAVICHS deleted successfully.
ADS D:\Dossier - CHARLERY.xls:KAVICHS deleted successfully.
ADS D:\directx_9c_oct05sdk_redist.exe:KAVICHS deleted successfully.
ADS D:\dessins.pdf:KAVICHS deleted successfully.
ADS D:\coca.pdf:KAVICHS deleted successfully.
ADS D:\charlery_revenus.pdf:KAVICHS deleted successfully.
ADS D:\charlery_identite_logement.pdf:KAVICHS deleted successfully.
ADS D:\charlery_crd.pdf:KAVICHS deleted successfully.
ADS D:\charlery_banque2.pdf:KAVICHS deleted successfully.
ADS D:\charlery_banque1.pdf:KAVICHS deleted successfully.
ADS D:\chapu.pdf:KAVICHS deleted successfully.
ADS D:\cassandra&antonin.jpg:KAVICHS deleted successfully.
ADS D:\30avril&divers.ncd:KAVICHS deleted successfully.
ADS D:\-20060411-IT101183668II4VAA30100-oHh9djHJ.pdf:KAVICHS deleted successfully.
ADS D:\-20060411-IT101183658II4VAA08171-Lfi_JUUl.pdf:KAVICHS deleted successfully.
ADS D:\-20060406-IT096132468II4VAA30100-ioEfDKmR.pdf:KAVICHS deleted successfully.
ADS D:\-20060406-IT096132458II4VAA08171-5JdBnqdP.pdf:KAVICHS deleted successfully.
ADS D:\desktop.ini:KAVICHS deleted successfully.
ADS C:\vm404.log:KAVICHS deleted successfully.
ADS C:\syss.txt:KAVICHS deleted successfully.
ADS C:\rlog.txt:KAVICHS deleted successfully.
ADS C:\_Sid.txt:KAVICHS deleted successfully.
ADS c:\Program Files\HP\hpcoretech\hpcmpmgr.exe:KAVICHS deleted successfully.
ADS C:\Program Files\Fichiers communs\Autodesk Shared\Service\AdskScSrv.exe:KAVICHS deleted successfully.
ADS D:\RealPlayer10-5GOLD.exe:KAVICHS deleted successfully.
ADS D:\R_U_S_H_.TXT:KAVICHS deleted successfully.
ADS D:\LOGICIEL.TXT:KAVICHS deleted successfully.
ADS D:\LECTME~1.ZIP:KAVICHS deleted successfully.
ADS D:\LECTME~1.HTM:KAVICHS deleted successfully.
ADS D:\LECTME~1.GIF:KAVICHS deleted successfully.
ADS D:\LECTMD10.RSH:KAVICHS deleted successfully.
ADS D:\kav5.0.225_winwks_full_fr.exe:KAVICHS deleted successfully.
ADS D:\INSTAL~1.TXT:KAVICHS deleted successfully.
ADS D:\FILE_ID.DIZ:KAVICHS deleted successfully.
ADS D:\eMule0.46c-Installer.exe:KAVICHS deleted successfully.
ADS D:\daemon341.exe:KAVICHS deleted successfully.
ADS D:\AUTORISE.TXT:KAVICHS deleted successfully.
ADS D:\AUTEUR.TXT:KAVICHS deleted successfully.
ADS D:\AFASHLP.TXT:KAVICHS deleted successfully.
ADS D:\AFAS_ID.TXT:KAVICHS deleted successfully.
ADS D:\AFAS.HLP:KAVICHS deleted successfully.
ADS C:\lewl2.html:KAVICHS deleted successfully.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe Reader Speed Launcher deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\HP Component Manager deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\TkBellExe deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\\"AntiVirusOverride"|1 /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\\"FirewallOverride"|1 /E : value set successfully!
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files\Fichiers communs\KAV Shared Files\avpupd.exe deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\daniel meyers\Application Data\erase_me025754.exe deleted successfully.
========== FILES ==========
C:\WINDOWS\Lfaqia.exe moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: All Users.WINDOWS

User: daniel meyers
->Temp folder emptied: 35167 bytes
->Temporary Internet Files folder emptied: 565556421 bytes
->Java cache emptied: 5346150 bytes
->FireFox cache emptied: 4093183 bytes
->Google Chrome cache emptied: 6053393 bytes
->Flash cache emptied: 1591062 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Default User.WINDOWS
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 41 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 582335 bytes
->Flash cache emptied: 264 bytes

User: LocalService.AUTORITE NT
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 81169 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 402 bytes

User: NetworkService.AUTORITE NT
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 219805 bytes
->Flash cache emptied: 405 bytes

User: Victorine
->Temp folder emptied: 904565812 bytes
->Temporary Internet Files folder emptied: 99984227 bytes
->Java cache emptied: 355762 bytes
->Flash cache emptied: 1136881 bytes

User: victorine meyers
->Temp folder emptied: 424617507 bytes
->Temporary Internet Files folder emptied: 38782552 bytes
->Java cache emptied: 2059870 bytes
->Flash cache emptied: 9582113 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 3072 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 483 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 23934834 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 1 992,00 mb

OTL by OldTimer - Version 3.2.1.1 log created on 04222010_113300

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...

Réponse 22 / 42

australienne

All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
No active process named iexplore.exe was found!
No active process named firefox.exe was found!
Process msnmsgr.exe killed successfully!
No active process named Teatimer.exe was found!
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\DXDllRegExe deleted successfully.
ADS D:\vac2005-91.JPG:KAVICHS deleted successfully.
ADS D:\vac2005-9.JPG:KAVICHS deleted successfully.
ADS D:\vac2005-8.JPG:KAVICHS deleted successfully.
ADS D:\vac2005-7.JPG:KAVICHS deleted successfully.
ADS D:\vac2005-6.JPG:KAVICHS deleted successfully.
ADS D:\vac2005-5.JPG:KAVICHS deleted successfully.
ADS D:\vac2005-4.JPG:KAVICHS deleted successfully.
ADS D:\vac2005-3.JPG:KAVICHS deleted successfully.
ADS D:\vac2005-2.JPG:KAVICHS deleted successfully.
ADS D:\vac2005-1.JPG:KAVICHS deleted successfully.
ADS D:\titreg2.gif:KAVICHS deleted successfully.
ADS D:\text1.swf:KAVICHS deleted successfully.
ADS D:\tel urgences.doc:KAVICHS deleted successfully.
ADS D:\server2.met:KAVICHS deleted successfully.
ADS D:\server.met:KAVICHS deleted successfully.
ADS D:\rosie.jpg:KAVICHS deleted successfully.
ADS D:\rmxv3.exe:KAVICHS deleted successfully.
ADS D:\release_notes.txt:KAVICHS deleted successfully.
ADS D:\psa2se_fre.exe:KAVICHS deleted successfully.
ADS D:\plot.log:KAVICHS deleted successfully.
ADS D:\onciale.jpg:KAVICHS deleted successfully.
ADS D:\navigation.htm:KAVICHS deleted successfully.
ADS D:\navfla.htm:KAVICHS deleted successfully.
ADS D:\nav.swf:KAVICHS deleted successfully.
ADS D:\nav.swd:KAVICHS deleted successfully.
ADS D:\nav.htm:KAVICHS deleted successfully.
ADS D:\mp10setup.exe:KAVICHS deleted successfully.
ADS D:\menu.swf:KAVICHS deleted successfully.
ADS D:\menu.html:KAVICHS deleted successfully.
ADS D:\menu.fla:KAVICHS deleted successfully.
ADS D:\mainttest1.html:KAVICHS deleted successfully.
ADS D:\mainttest0.html:KAVICHS deleted successfully.
ADS D:\maintest.html:KAVICHS deleted successfully.
ADS D:\main.htm:KAVICHS deleted successfully.
ADS D:\LECTMD10.EXE:KAVICHS deleted successfully.
ADS D:\LECOURTAIS.pdf:KAVICHS deleted successfully.
ADS D:\jeroboam.zip:KAVICHS deleted successfully.
ADS D:\jeanmichel.tif:KAVICHS deleted successfully.
ADS D:\index.html:KAVICHS deleted successfully.
ADS D:\index.htm:KAVICHS deleted successfully.
ADS D:\he2.pdf:KAVICHS deleted successfully.
ADS D:\frameset.htm:KAVICHS deleted successfully.
ADS D:\Flash8-fr.exe:KAVICHS deleted successfully.
ADS D:\Fireworks8-fr.exe:KAVICHS deleted successfully.
ADS D:\feuille.html:KAVICHS deleted successfully.
ADS D:\Fetes%20SV.pdf:KAVICHS deleted successfully.
ADS D:\EnvoiFTP_V105.exe:KAVICHS deleted successfully.
ADS D:\Dreamweaver8-fr.exe:KAVICHS deleted successfully.
ADS D:\DivXPlay.exe:KAVICHS deleted successfully.
ADS D:\credit-rachat2.fla:KAVICHS deleted successfully.
ADS D:\contact-24817.htm:KAVICHS deleted successfully.
ADS D:\caution.rtf:KAVICHS deleted successfully.
ADS D:\cadeaux koclicko brio1.doc:KAVICHS deleted successfully.
ADS D:\cadeaux koclicko brio.doc:KAVICHS deleted successfully.
ADS D:\button1.swf:KAVICHS deleted successfully.
ADS D:\bl.gif:KAVICHS deleted successfully.
ADS D:\bl.bmp:KAVICHS deleted successfully.
ADS D:\Au revoir et bon vent.ppt:KAVICHS deleted successfully.
ADS D:\antonin2.gif:KAVICHS deleted successfully.
ADS D:\AdbeRdr60_fra_full.exe:KAVICHS deleted successfully.
ADS D:\3ivx.zip:KAVICHS deleted successfully.
ADS D:\000000-20050125-SN025175997SCRIFV1114900000000514d1df337463fb720f0fce1c9b3ddbe.pdf:KAVICHS deleted successfully.
ADS D:\000000-20050111-SN011104497SCRIFV111490000000065407b2ef3849600003eb40937807a5e.pdf:KAVICHS deleted successfully.
ADS D:\(pas de sujet).eml:KAVICHS deleted successfully.
ADS C:\Program Files\RngInterstitial.dll:KAVICHS deleted successfully.
ADS D:\WinDVD7.exe:KAVICHS deleted successfully.
ADS D:\vlc-0.8.4a-win32.exe:KAVICHS deleted successfully.
ADS D:\Studio10_5_full.exe:KAVICHS deleted successfully.
ADS D:\roulet_mandat_revenus_identite.pdf:KAVICHS deleted successfully.
ADS D:\roulet_hebergeur2.pdf:KAVICHS deleted successfully.
ADS D:\roulet_hebergeur1.pdf:KAVICHS deleted successfully.
ADS D:\roulet_crd.pdf:KAVICHS deleted successfully.
ADS D:\Raccourci vers Inforad_Manager_2_0_full_setup.lnk:KAVICHS deleted successfully.
ADS D:\pilat_revenus.pdf:KAVICHS deleted successfully.
ADS D:\pilat_identite_logement.pdf:KAVICHS deleted successfully.
ADS D:\pilat_crd.pdf:KAVICHS deleted successfully.
ADS D:\pilat_complements.pdf:KAVICHS deleted successfully.
ADS D:\pilat_bque_mr.pdf:KAVICHS deleted successfully.
ADS D:\pilat_bque_mme_2.pdf:KAVICHS deleted successfully.
ADS D:\pilat_bque_mme_1.pdf:KAVICHS deleted successfully.
ADS D:\octobre2006 174 bis.jpg:KAVICHS deleted successfully.
ADS D:\Numériser.jpg:KAVICHS deleted successfully.
ADS D:\nizier_taxhab_compl.pdf:KAVICHS deleted successfully.
ADS D:\nizier_solde_compl.pdf:KAVICHS deleted successfully.
ADS D:\nizier_revenus.zip:KAVICHS deleted successfully.
ADS D:\nizier_revenus.pdf:KAVICHS deleted successfully.
ADS D:\nizier_is_compl.pdf:KAVICHS deleted successfully.
ADS D:\nizier_identite_logement.pdf:KAVICHS deleted successfully.
ADS D:\nizier_crd.pdf:KAVICHS deleted successfully.
ADS D:\nizier_banque_mr.pdf:KAVICHS deleted successfully.
ADS D:\nizier_banque_mme.pdf:KAVICHS deleted successfully.
ADS D:\Maximusdvd1.2.ZIP:KAVICHS deleted successfully.
ADS D:\mathiot_revenus.pdf:KAVICHS deleted successfully.
ADS D:\mathiot_identite_logement.pdf:KAVICHS deleted successfully.
ADS D:\mathiot_crd.pdf:KAVICHS deleted successfully.
ADS D:\mathiot_comptes.pdf:KAVICHS deleted successfully.
ADS D:\MakeMPEG4Free.exe:KAVICHS deleted successfully.
ADS D:\mails senateurs.sxw:KAVICHS deleted successfully.
ADS D:\loup garouj.doc:KAVICHS deleted successfully.
ADS D:\Inforad_Manager_2_0_full_setup.exe:KAVICHS deleted successfully.
ADS D:\FELIZ2006.pps:KAVICHS deleted successfully.
ADS D:\Dossier - ROULET.xls:KAVICHS deleted successfully.
ADS D:\Dossier - PILAT.xls:KAVICHS deleted successfully.
ADS D:\Dossier - MATHIOT.xls:KAVICHS deleted successfully.
ADS D:\Dossier - CHARLERY.xls:KAVICHS deleted successfully.
ADS D:\directx_9c_oct05sdk_redist.exe:KAVICHS deleted successfully.
ADS D:\dessins.pdf:KAVICHS deleted successfully.
ADS D:\coca.pdf:KAVICHS deleted successfully.
ADS D:\charlery_revenus.pdf:KAVICHS deleted successfully.
ADS D:\charlery_identite_logement.pdf:KAVICHS deleted successfully.
ADS D:\charlery_crd.pdf:KAVICHS deleted successfully.
ADS D:\charlery_banque2.pdf:KAVICHS deleted successfully.
ADS D:\charlery_banque1.pdf:KAVICHS deleted successfully.
ADS D:\chapu.pdf:KAVICHS deleted successfully.
ADS D:\cassandra&antonin.jpg:KAVICHS deleted successfully.
ADS D:\30avril&divers.ncd:KAVICHS deleted successfully.
ADS D:\-20060411-IT101183668II4VAA30100-oHh9djHJ.pdf:KAVICHS deleted successfully.
ADS D:\-20060411-IT101183658II4VAA08171-Lfi_JUUl.pdf:KAVICHS deleted successfully.
ADS D:\-20060406-IT096132468II4VAA30100-ioEfDKmR.pdf:KAVICHS deleted successfully.
ADS D:\-20060406-IT096132458II4VAA08171-5JdBnqdP.pdf:KAVICHS deleted successfully.
ADS D:\desktop.ini:KAVICHS deleted successfully.
ADS C:\vm404.log:KAVICHS deleted successfully.
ADS C:\syss.txt:KAVICHS deleted successfully.
ADS C:\rlog.txt:KAVICHS deleted successfully.
ADS C:\_Sid.txt:KAVICHS deleted successfully.
ADS c:\Program Files\HP\hpcoretech\hpcmpmgr.exe:KAVICHS deleted successfully.
ADS C:\Program Files\Fichiers communs\Autodesk Shared\Service\AdskScSrv.exe:KAVICHS deleted successfully.
ADS D:\RealPlayer10-5GOLD.exe:KAVICHS deleted successfully.
ADS D:\R_U_S_H_.TXT:KAVICHS deleted successfully.
ADS D:\LOGICIEL.TXT:KAVICHS deleted successfully.
ADS D:\LECTME~1.ZIP:KAVICHS deleted successfully.
ADS D:\LECTME~1.HTM:KAVICHS deleted successfully.
ADS D:\LECTME~1.GIF:KAVICHS deleted successfully.
ADS D:\LECTMD10.RSH:KAVICHS deleted successfully.
ADS D:\kav5.0.225_winwks_full_fr.exe:KAVICHS deleted successfully.
ADS D:\INSTAL~1.TXT:KAVICHS deleted successfully.
ADS D:\FILE_ID.DIZ:KAVICHS deleted successfully.
ADS D:\eMule0.46c-Installer.exe:KAVICHS deleted successfully.
ADS D:\daemon341.exe:KAVICHS deleted successfully.
ADS D:\AUTORISE.TXT:KAVICHS deleted successfully.
ADS D:\AUTEUR.TXT:KAVICHS deleted successfully.
ADS D:\AFASHLP.TXT:KAVICHS deleted successfully.
ADS D:\AFAS_ID.TXT:KAVICHS deleted successfully.
ADS D:\AFAS.HLP:KAVICHS deleted successfully.
ADS C:\lewl2.html:KAVICHS deleted successfully.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe Reader Speed Launcher deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\HP Component Manager deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\TkBellExe deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\\"AntiVirusOverride"|1 /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\\"FirewallOverride"|1 /E : value set successfully!
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files\Fichiers communs\KAV Shared Files\avpupd.exe deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\daniel meyers\Application Data\erase_me025754.exe deleted successfully.
========== FILES ==========
C:\WINDOWS\Lfaqia.exe moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: All Users.WINDOWS

User: daniel meyers
->Temp folder emptied: 35167 bytes
->Temporary Internet Files folder emptied: 565556421 bytes
->Java cache emptied: 5346150 bytes
->FireFox cache emptied: 4093183 bytes
->Google Chrome cache emptied: 6053393 bytes
->Flash cache emptied: 1591062 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Default User.WINDOWS
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 41 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 582335 bytes
->Flash cache emptied: 264 bytes

User: LocalService.AUTORITE NT
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 81169 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 402 bytes

User: NetworkService.AUTORITE NT
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 219805 bytes
->Flash cache emptied: 405 bytes

User: Victorine
->Temp folder emptied: 904565812 bytes
->Temporary Internet Files folder emptied: 99984227 bytes
->Java cache emptied: 355762 bytes
->Flash cache emptied: 1136881 bytes

User: victorine meyers
->Temp folder emptied: 424617507 bytes
->Temporary Internet Files folder emptied: 38782552 bytes
->Java cache emptied: 2059870 bytes
->Flash cache emptied: 9582113 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 3072 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 483 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 23934834 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 1 992,00 mb

OTL by OldTimer - Version 3.2.1.1 log created on 04222010_113300

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...

Réponse 23 / 42

Utilisateur anonyme

salut :

Imprime ces instructions car il faudra fermer toutes les fenêtres et applications lors de l'installation et de l'analyse.

▶ Télécharge :

Malwarebytes

ou :

Malwarebytes

▶ Installe le ( choisis bien "francais" ; ne modifie pas les paramètres d'installe ) et mets le à jour .

(NB : Si tu as un message d'erreur t'indiquant qu'il te manque "COMCTL32.OCX" lors de l'installe, alors télécharge le ici : COMCTL32.OCX

▶ Potasses le Tuto pour te familiariser avec le prg :

( cela dit, il est très simple d'utilisation ).

relance malwarebytes en suivant scrupuleusement ces consignes :

! Déconnecte toi et ferme toutes applications en cours !

▶ Lance Malwarebyte's .

Fais un examen dit "Complet" .

▶ Laisse le programme travailler ( et ne rien faire d'autre avec le PC durant le scan ).
▶ à la fin tu cliques sur "résultat" .
▶ Vérifie que tous les objets infectés soient validés, puis clique sur " suppression " .

▶ Note : si il faut redémarrer ton PC pour finir le nettoyage, fais le !

▶ Poste le rapport sauvegardé après la suppression des objets infectés (dans l'onglet "rapport/log"de Malwarebytes, le dernier en date)

Réponse 24 / 42

australienne

bonjour

Apres une semaine d'absence voici donc ce que cela donne :

_________

All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
No active process named iexplore.exe was found!
No active process named firefox.exe was found!
Process msnmsgr.exe killed successfully!
No active process named Teatimer.exe was found!
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\DXDllRegExe deleted successfully.
ADS D:\vac2005-91.JPG:KAVICHS deleted successfully.
ADS D:\vac2005-9.JPG:KAVICHS deleted successfully.
ADS D:\vac2005-8.JPG:KAVICHS deleted successfully.
ADS D:\vac2005-7.JPG:KAVICHS deleted successfully.
ADS D:\vac2005-6.JPG:KAVICHS deleted successfully.
ADS D:\vac2005-5.JPG:KAVICHS deleted successfully.
ADS D:\vac2005-4.JPG:KAVICHS deleted successfully.
ADS D:\vac2005-3.JPG:KAVICHS deleted successfully.
ADS D:\vac2005-2.JPG:KAVICHS deleted successfully.
ADS D:\vac2005-1.JPG:KAVICHS deleted successfully.
ADS D:\titreg2.gif:KAVICHS deleted successfully.
ADS D:\text1.swf:KAVICHS deleted successfully.
ADS D:\tel urgences.doc:KAVICHS deleted successfully.
ADS D:\server2.met:KAVICHS deleted successfully.
ADS D:\server.met:KAVICHS deleted successfully.
ADS D:\rosie.jpg:KAVICHS deleted successfully.
ADS D:\rmxv3.exe:KAVICHS deleted successfully.
ADS D:\release_notes.txt:KAVICHS deleted successfully.
ADS D:\psa2se_fre.exe:KAVICHS deleted successfully.
ADS D:\plot.log:KAVICHS deleted successfully.
ADS D:\onciale.jpg:KAVICHS deleted successfully.
ADS D:\navigation.htm:KAVICHS deleted successfully.
ADS D:\navfla.htm:KAVICHS deleted successfully.
ADS D:\nav.swf:KAVICHS deleted successfully.
ADS D:\nav.swd:KAVICHS deleted successfully.
ADS D:\nav.htm:KAVICHS deleted successfully.
ADS D:\mp10setup.exe:KAVICHS deleted successfully.
ADS D:\menu.swf:KAVICHS deleted successfully.
ADS D:\menu.html:KAVICHS deleted successfully.
ADS D:\menu.fla:KAVICHS deleted successfully.
ADS D:\mainttest1.html:KAVICHS deleted successfully.
ADS D:\mainttest0.html:KAVICHS deleted successfully.
ADS D:\maintest.html:KAVICHS deleted successfully.
ADS D:\main.htm:KAVICHS deleted successfully.
ADS D:\LECTMD10.EXE:KAVICHS deleted successfully.
ADS D:\LECOURTAIS.pdf:KAVICHS deleted successfully.
ADS D:\jeroboam.zip:KAVICHS deleted successfully.
ADS D:\jeanmichel.tif:KAVICHS deleted successfully.
ADS D:\index.html:KAVICHS deleted successfully.
ADS D:\index.htm:KAVICHS deleted successfully.
ADS D:\he2.pdf:KAVICHS deleted successfully.
ADS D:\frameset.htm:KAVICHS deleted successfully.
ADS D:\Flash8-fr.exe:KAVICHS deleted successfully.
ADS D:\Fireworks8-fr.exe:KAVICHS deleted successfully.
ADS D:\feuille.html:KAVICHS deleted successfully.
ADS D:\Fetes%20SV.pdf:KAVICHS deleted successfully.
ADS D:\EnvoiFTP_V105.exe:KAVICHS deleted successfully.
ADS D:\Dreamweaver8-fr.exe:KAVICHS deleted successfully.
ADS D:\DivXPlay.exe:KAVICHS deleted successfully.
ADS D:\credit-rachat2.fla:KAVICHS deleted successfully.
ADS D:\contact-24817.htm:KAVICHS deleted successfully.
ADS D:\caution.rtf:KAVICHS deleted successfully.
ADS D:\cadeaux koclicko brio1.doc:KAVICHS deleted successfully.
ADS D:\cadeaux koclicko brio.doc:KAVICHS deleted successfully.
ADS D:\button1.swf:KAVICHS deleted successfully.
ADS D:\bl.gif:KAVICHS deleted successfully.
ADS D:\bl.bmp:KAVICHS deleted successfully.
ADS D:\Au revoir et bon vent.ppt:KAVICHS deleted successfully.
ADS D:\antonin2.gif:KAVICHS deleted successfully.
ADS D:\AdbeRdr60_fra_full.exe:KAVICHS deleted successfully.
ADS D:\3ivx.zip:KAVICHS deleted successfully.
ADS D:\000000-20050125-SN025175997SCRIFV1114900000000514d1df337463fb720f0fce1c9b3ddbe.pdf:KAVICHS deleted successfully.
ADS D:\000000-20050111-SN011104497SCRIFV111490000000065407b2ef3849600003eb40937807a5e.pdf:KAVICHS deleted successfully.
ADS D:\(pas de sujet).eml:KAVICHS deleted successfully.
ADS C:\Program Files\RngInterstitial.dll:KAVICHS deleted successfully.
ADS D:\WinDVD7.exe:KAVICHS deleted successfully.
ADS D:\vlc-0.8.4a-win32.exe:KAVICHS deleted successfully.
ADS D:\Studio10_5_full.exe:KAVICHS deleted successfully.
ADS D:\roulet_mandat_revenus_identite.pdf:KAVICHS deleted successfully.
ADS D:\roulet_hebergeur2.pdf:KAVICHS deleted successfully.
ADS D:\roulet_hebergeur1.pdf:KAVICHS deleted successfully.
ADS D:\roulet_crd.pdf:KAVICHS deleted successfully.
ADS D:\Raccourci vers Inforad_Manager_2_0_full_setup.lnk:KAVICHS deleted successfully.
ADS D:\pilat_revenus.pdf:KAVICHS deleted successfully.
ADS D:\pilat_identite_logement.pdf:KAVICHS deleted successfully.
ADS D:\pilat_crd.pdf:KAVICHS deleted successfully.
ADS D:\pilat_complements.pdf:KAVICHS deleted successfully.
ADS D:\pilat_bque_mr.pdf:KAVICHS deleted successfully.
ADS D:\pilat_bque_mme_2.pdf:KAVICHS deleted successfully.
ADS D:\pilat_bque_mme_1.pdf:KAVICHS deleted successfully.
ADS D:\octobre2006 174 bis.jpg:KAVICHS deleted successfully.
ADS D:\Numériser.jpg:KAVICHS deleted successfully.
ADS D:\nizier_taxhab_compl.pdf:KAVICHS deleted successfully.
ADS D:\nizier_solde_compl.pdf:KAVICHS deleted successfully.
ADS D:\nizier_revenus.zip:KAVICHS deleted successfully.
ADS D:\nizier_revenus.pdf:KAVICHS deleted successfully.
ADS D:\nizier_is_compl.pdf:KAVICHS deleted successfully.
ADS D:\nizier_identite_logement.pdf:KAVICHS deleted successfully.
ADS D:\nizier_crd.pdf:KAVICHS deleted successfully.
ADS D:\nizier_banque_mr.pdf:KAVICHS deleted successfully.
ADS D:\nizier_banque_mme.pdf:KAVICHS deleted successfully.
ADS D:\Maximusdvd1.2.ZIP:KAVICHS deleted successfully.
ADS D:\mathiot_revenus.pdf:KAVICHS deleted successfully.
ADS D:\mathiot_identite_logement.pdf:KAVICHS deleted successfully.
ADS D:\mathiot_crd.pdf:KAVICHS deleted successfully.
ADS D:\mathiot_comptes.pdf:KAVICHS deleted successfully.
ADS D:\MakeMPEG4Free.exe:KAVICHS deleted successfully.
ADS D:\mails senateurs.sxw:KAVICHS deleted successfully.
ADS D:\loup garouj.doc:KAVICHS deleted successfully.
ADS D:\Inforad_Manager_2_0_full_setup.exe:KAVICHS deleted successfully.
ADS D:\FELIZ2006.pps:KAVICHS deleted successfully.
ADS D:\Dossier - ROULET.xls:KAVICHS deleted successfully.
ADS D:\Dossier - PILAT.xls:KAVICHS deleted successfully.
ADS D:\Dossier - MATHIOT.xls:KAVICHS deleted successfully.
ADS D:\Dossier - CHARLERY.xls:KAVICHS deleted successfully.
ADS D:\directx_9c_oct05sdk_redist.exe:KAVICHS deleted successfully.
ADS D:\dessins.pdf:KAVICHS deleted successfully.
ADS D:\coca.pdf:KAVICHS deleted successfully.
ADS D:\charlery_revenus.pdf:KAVICHS deleted successfully.
ADS D:\charlery_identite_logement.pdf:KAVICHS deleted successfully.
ADS D:\charlery_crd.pdf:KAVICHS deleted successfully.
ADS D:\charlery_banque2.pdf:KAVICHS deleted successfully.
ADS D:\charlery_banque1.pdf:KAVICHS deleted successfully.
ADS D:\chapu.pdf:KAVICHS deleted successfully.
ADS D:\cassandra&antonin.jpg:KAVICHS deleted successfully.
ADS D:\30avril&divers.ncd:KAVICHS deleted successfully.
ADS D:\-20060411-IT101183668II4VAA30100-oHh9djHJ.pdf:KAVICHS deleted successfully.
ADS D:\-20060411-IT101183658II4VAA08171-Lfi_JUUl.pdf:KAVICHS deleted successfully.
ADS D:\-20060406-IT096132468II4VAA30100-ioEfDKmR.pdf:KAVICHS deleted successfully.
ADS D:\-20060406-IT096132458II4VAA08171-5JdBnqdP.pdf:KAVICHS deleted successfully.
ADS D:\desktop.ini:KAVICHS deleted successfully.
ADS C:\vm404.log:KAVICHS deleted successfully.
ADS C:\syss.txt:KAVICHS deleted successfully.
ADS C:\rlog.txt:KAVICHS deleted successfully.
ADS C:\_Sid.txt:KAVICHS deleted successfully.
ADS c:\Program Files\HP\hpcoretech\hpcmpmgr.exe:KAVICHS deleted successfully.
ADS C:\Program Files\Fichiers communs\Autodesk Shared\Service\AdskScSrv.exe:KAVICHS deleted successfully.
ADS D:\RealPlayer10-5GOLD.exe:KAVICHS deleted successfully.
ADS D:\R_U_S_H_.TXT:KAVICHS deleted successfully.
ADS D:\LOGICIEL.TXT:KAVICHS deleted successfully.
ADS D:\LECTME~1.ZIP:KAVICHS deleted successfully.
ADS D:\LECTME~1.HTM:KAVICHS deleted successfully.
ADS D:\LECTME~1.GIF:KAVICHS deleted successfully.
ADS D:\LECTMD10.RSH:KAVICHS deleted successfully.
ADS D:\kav5.0.225_winwks_full_fr.exe:KAVICHS deleted successfully.
ADS D:\INSTAL~1.TXT:KAVICHS deleted successfully.
ADS D:\FILE_ID.DIZ:KAVICHS deleted successfully.
ADS D:\eMule0.46c-Installer.exe:KAVICHS deleted successfully.
ADS D:\daemon341.exe:KAVICHS deleted successfully.
ADS D:\AUTORISE.TXT:KAVICHS deleted successfully.
ADS D:\AUTEUR.TXT:KAVICHS deleted successfully.
ADS D:\AFASHLP.TXT:KAVICHS deleted successfully.
ADS D:\AFAS_ID.TXT:KAVICHS deleted successfully.
ADS D:\AFAS.HLP:KAVICHS deleted successfully.
ADS C:\lewl2.html:KAVICHS deleted successfully.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe Reader Speed Launcher deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\HP Component Manager deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\TkBellExe deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\\"AntiVirusOverride"|1 /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\\"FirewallOverride"|1 /E : value set successfully!
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files\Fichiers communs\KAV Shared Files\avpupd.exe deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Documents and Settings\daniel meyers\Application Data\erase_me025754.exe deleted successfully.
========== FILES ==========
C:\WINDOWS\Lfaqia.exe moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: All Users.WINDOWS

User: daniel meyers
->Temp folder emptied: 35167 bytes
->Temporary Internet Files folder emptied: 565556421 bytes
->Java cache emptied: 5346150 bytes
->FireFox cache emptied: 4093183 bytes
->Google Chrome cache emptied: 6053393 bytes
->Flash cache emptied: 1591062 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Default User.WINDOWS
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 41 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 582335 bytes
->Flash cache emptied: 264 bytes

User: LocalService.AUTORITE NT
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 81169 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 402 bytes

User: NetworkService.AUTORITE NT
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 219805 bytes
->Flash cache emptied: 405 bytes

User: Victorine
->Temp folder emptied: 904565812 bytes
->Temporary Internet Files folder emptied: 99984227 bytes
->Java cache emptied: 355762 bytes
->Flash cache emptied: 1136881 bytes

User: victorine meyers
->Temp folder emptied: 424617507 bytes
->Temporary Internet Files folder emptied: 38782552 bytes
->Java cache emptied: 2059870 bytes
->Flash cache emptied: 9582113 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 3072 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 483 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 23934834 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 1 992,00 mb

OTL by OldTimer - Version 3.2.1.1 log created on 04222010_113300

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...

Réponse 25 / 42

australienne

aaaah je n'avais pas vu la suite bon je fais cela de suite !

Je reviens

Réponse 26 / 42

australienne

par contre je vais tester mais je ne saurais pas mettre a jour puisque pas de connexion, en fait je telecharge depuis un autre pc et copie le fichier ou prog sur une cle usb...

je vais voir ce que cela donne

Réponse 27 / 42

Utilisateur anonyme

hello ok :)

Réponse 28 / 42

australienne

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Version de la base de données: 4052

Windows 5.1.2600 Service Pack 3
Internet Explorer 7.0.5730.13

02/05/2010 00:58:21
mbam-log-2010-05-02 (00-58-21).txt

Type d'examen: Examen complet (C:\|D:\|E:\|F:\|I:\|)
Elément(s) analysé(s): 287328
Temps écoulé: 12 heure(s), 10 minute(s), 7 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 1
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 1
Fichier(s) infecté(s): 17

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\SystemInit (Trojan.FakeAlert) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
C:\Program Files\Spyware Stormer (Rogue.SpywareStormer) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
C:\System Volume Information\_restore{EC485040-9E30-4418-AAE2-D0900DCC42C3}\RP1149\A0105865.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\UsbFix\Quarantine\C\DOCUME~1\DANIEL~1\LOCALS~1\Temp\Lmj.exe.UsbFix (Trojan.FraudPack) -> Quarantined and deleted successfully.
C:\UsbFix\Quarantine\C\DOCUME~1\DANIEL~1\LOCALS~1\Temp\Lmk.exe.UsbFix (Trojan.FraudPack) -> Quarantined and deleted successfully.
C:\UsbFix\Quarantine\C\DOCUME~1\DANIEL~1\LOCALS~1\Temp\Lml.exe.UsbFix (Trojan.FraudPack) -> Quarantined and deleted successfully.
C:\UsbFix\Quarantine\C\DOCUME~1\DANIEL~1\LOCALS~1\Temp\Lmm.exe.UsbFix (Trojan.FraudPack) -> Quarantined and deleted successfully.
C:\UsbFix\Quarantine\C\DOCUME~1\DANIEL~1\LOCALS~1\Temp\Lmn.exe.UsbFix (Trojan.FraudPack) -> Quarantined and deleted successfully.
C:\UsbFix\Quarantine\C\DOCUME~1\DANIEL~1\LOCALS~1\Temp\lssas.exe.UsbFix (Trojan.Agent) -> Quarantined and deleted successfully.
C:\UsbFix\Quarantine\C\RECYCLER\S-1-5-21-1715567821-299502267-682003330-1003.UsbFix\Dc10.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\UsbFix\Quarantine\C\RECYCLER\S-1-5-21-1715567821-299502267-682003330-1003.UsbFix\Dc11.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\UsbFix\Quarantine\C\RECYCLER\S-1-5-21-1715567821-299502267-682003330-1003.UsbFix\Dc12.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\UsbFix\Quarantine\C\RECYCLER\S-1-5-21-1715567821-299502267-682003330-1003.UsbFix\Dc13.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\UsbFix\Quarantine\C\RECYCLER\S-1-5-21-1715567821-299502267-682003330-1003.UsbFix\Dc14.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\UsbFix\Quarantine\C\RECYCLER\S-1-5-21-1715567821-299502267-682003330-1003.UsbFix\Dc7.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\UsbFix\Quarantine\C\RECYCLER\S-1-5-21-1715567821-299502267-682003330-1003.UsbFix\Dc8.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\UsbFix\Quarantine\C\RECYCLER\S-1-5-21-1715567821-299502267-682003330-1003.UsbFix\Dc9.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\UsbFix\Quarantine\C\WINDOWS\csrssm.exe.UsbFix (Trojan.Agent) -> Quarantined and deleted successfully.
C:\_OTL\MovedFiles\04222010_113300\C_WINDOWS\Lfaqia.exe (Trojan.FraudPack) -> Quarantined and deleted successfully.

Réponse 29 / 42

Utilisateur anonyme

hello explique un peu les soucis persistants

Réponse 30 / 42

australienne

Alors je rentre manuellement les adresses ip et passerelle mais aucune connexion ne se fait. Lorsque je vais sur status de la connexion tout est vierge et si je clique sur reparer ca me dit "echec de la demande de parametres TCP/IP de la connexion"

Réponse 31 / 42

Utilisateur anonyme

Alors je rentre manuellement les adresses ip et passerelle mais aucune connexion ne se fait.

tu peux eclaircir ca ?

Réponse 32 / 42

australienne

je ne mets pas en recherche automatique d'ip je les rentre moi meme

Réponse 33 / 42

Utilisateur anonyme

pour quelle raison ?

Utilisateur anonyme

en automatique , toutes les 24 h elle change seule ^^

Réponse 34 / 42

australienne

parce que meme en automatique ca marche pas lol donc je l'etais et la j'ai tente en manuelle marche pas mieux je pense que le virus a detraque un truc au niveau du tcp / ip

Réponse 35 / 42

Utilisateur anonyme

installe Internet Explorer 8

Réponse 36 / 42

australienne

erf je peux pas sans connexion, le pack d'install demande une connexion j'ai try avec plusieurs pack d'install mais rien a faire

Réponse 37 / 42

Utilisateur anonyme

normmalement il s'installe sans connection celui-ci

https://www.01net.com/telecharger/windows/Internet/navigateur/fiches/43564.html
?G3?-?@¢??@?(TM)©®?

Réponse 38 / 42

australienne

bon j'ai fini par trouver un pack et l'installer mais cela ne change en rien mon probleme lol

bon merci a toi je pense qu'il va me falloir tout reinstaller :s

en tout cas merci de ta patience et ta disponibilite !

Réponse 39 / 42

Utilisateur anonyme

attends j'ai pas dit mon dernier mot :

▶ Télécharge Dr Web CureIt sur ton Bureau :

▶ redemarre en mode sans échec

▶- Double clique (clic droit "en tant qu'admin" sous Vista) <drweb-cureit.exe> et ensuite clique sur <Analyse>;

▶- Clique <Ok> à l'invite de l'analyse rapide. S'il trouve des processus infectés alors clique le bouton <Oui>.

Note : une fenêtre s'ouvrira avec options pour "Commander" ou "50% de réduction" : Quitte en cliquant le "X".

▶- Lorsque le scan rapide est terminé, clique sur le menu <Options> puis <Changer la configuration> ; Choisis l'onglet <Scanner>, et décoche <Analyse heuristique>. Clique ensuite sur <Ok>.
▶- De retour à la fenêtre principale : clique pour activer <Analyse complète>
▶- Clique le bouton avec flèche verte sur la droite, et le scan débutera.
▶- Clique <Oui> pour tout à l'invite "Désinfecter ?" lorsqu'un fichier est détecté, et ensuite clique "Désinfecter".
▶- Lorsque le scan sera complété, regarde si tu peux cliquer sur l' icône, adjacente aux fichiers détectés (plusieurs feuilles l'une sur l'autre). Si oui, alors clique dessus et ensuite clique sur l'icône <Suivant>, au dessous, et choisis <Déplacer en quarantaine l'objet indésirable>.
▶- Du menu principal de l'outil, au haut à gauche, clique sur le menu <Fichier> et choisis <Enregistrer le rapport>. Sauvegarde le rapport sur ton Bureau. Ce dernier se nommera DrWeb.csv

▶-pour le rapport tu l enregistres sur ton bureau , tu clic droit dessus /envoyer vers / dossiers compresses

ensuite :

tu m'envoies l'archive comme ceci :

clique sur ce lien : http://www.cijoint.fr/

▶ Clique sur Parcourir et cherche le fichier ci-dessus.

▶ Clique sur Ouvrir.

▶ Clique sur "Cliquez ici pour déposer le fichier".

Un lien de cette forme :

http://www.cijoint.fr/cjlink.php?file=cjge368/cijSKAP5fU.txt

est ajouté dans la page.

▶ Copie ce lien dans ta réponse.

▶- Ferme Dr.Web Cureit
▶- Redémarre ton ordi (important car certains fichiers peuvent être déplacés/réparés au redémarrage).

Réponse 40 / 42

australienne

Bonjour

Bon j'essaie plusieurs fois mais il se bloque a environ 2/3 pendant l'analyse rapide. Fait 3 fois que je recommence.

Lsass.exe editeur inconnu

42 réponses

Votre réponse

Discussions similaires

Newsletters