Bonjour, Je poste ci-dessous un rapport Hijackthis, si quelqu'un pouvait me dire si je suis infecté ou non... Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 05:42:33, on 01/04/2009 Platform: Windows Vista SP1 (WinNT 6.00.1905) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\Windows\System32\smss.exe C:\Windows\system32\csrss.exe C:\Windows\system32\csrss.exe C:\Windows\system32\wininit.exe C:\Windows\system32\winlogon.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\SLsvc.exe C:\Windows\system32\svchost.exe C:\Windows\System32\spoolsv.exe C:\Program Files\Avira\AntiVir PersonalEdition Premium\sched.exe C:\Windows\system32\svchost.exe C:\Program Files\Ashampoo\Ashampoo AntiSpyWare 2\AntiSpyWareService.exe C:\Windows\system32\aestsrv.exe C:\Program Files\Avira\AntiVir PersonalEdition Premium\avguard.exe C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Avira\AntiVir PersonalEdition Premium\avesvc.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Windows\system32\taskeng.exe C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Windows\System32\svchost.exe C:\Windows\system32\svchost.exe C:\Windows\System32\svchost.exe C:\Windows\system32\SearchIndexer.exe C:\Program Files\Avira\AntiVir PersonalEdition Premium\avmailc.exe C:\Program Files\Avira\AntiVir PersonalEdition Premium\AVWEBGRD.EXE C:\Windows\System32\rundll32.exe C:\Windows\SOUNDMAN.EXE C:\Program Files\Avira\AntiVir PersonalEdition Premium\avgnt.exe C:\Program Files\Ashampoo\Ashampoo AntiSpyWare 2\AntiSpyWare2Guard.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Windows\ehome\ehtray.exe C:\Program Files\Druide\Antidote\Gestionnaire Antidote.exe C:\Program Files\DAEMON Tools Lite\daemon.exe C:\Users\JB\AppData\Local\wmemc.exe C:\Windows\ehome\ehmsas.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\Windows\system32\wuauclt.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Users\JB\Desktop\HiJackThis.exe C:\Windows\system32\wbem\wmiprvse.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.fr/?gws_rd=ssl R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.google.fr/?gws_rd=ssl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.google.fr/?gws_rd=ssl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.fr/?gws_rd=ssl R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.fr/toolbar/ie8/sidebar.html R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Vista Ultimate Edition R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhost O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [NVHotkey] rundll32.exe C:\Windows\system32\nvHotkey.dll,Start O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Premium\avgnt.exe" /min O4 - HKLM\..\Run: ['Ashampoo AntiSpyWare 2 Guard'] C:\Program Files\Ashampoo\Ashampoo AntiSpyWare 2\AntiSpyWare2Guard.exe O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QT Lite\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [Ashampoo AntiSpyWare 2 Guard] C:\Program Files\Ashampoo\Ashampoo AntiSpyWare 2\AntiSpyWare2Guard.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [Gestionnaire Antidote.exe] C:\Program Files\Druide\Antidote\Gestionnaire Antidote.exe O4 - HKCU\..\Run: [Free Download Manager] "C:\Program Files\Free Download Manager\fdm.exe" -autorun O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun O4 - HKCU\..\Run: [wmemc] "c:\users\jb\appdata\local\wmemc.exe" wmemc O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU') O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Tout télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm O8 - Extra context menu item: Télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm O8 - Extra context menu item: Télécharger la sélection avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm O8 - Extra context menu item: Télécharger la vidéo avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL O9 - Extra button: Correcteur - {F7C8E5F6-B6D1-45db-8D91-2BCFA5DF11A9} - C:\Program Files\Druide\Antidote\Internet Explorer\7\Antidote K - IE 7.htm (HKCU) O9 - Extra button: Dictionnaires - {F9B969E8-58D0-4dd9-AC8A-EE2336FF8F65} - C:\Program Files\Druide\Antidote\Internet Explorer\7\Antidote D - IE 7.htm (HKCU) O9 - Extra button: Guides - {FA089E36-3F1B-4c51-9A1A-C4E7012483AF} - C:\Program Files\Druide\Antidote\Internet Explorer\7\Antidote G - IE 7.htm (HKCU) O10 - Broken Internet access because of LSP provider 'c:\windows\system32\pnrpnsp.dll' missing O13 - Gopher Prefix: O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O23 - Service: Ashampoo AntiSpyWare 2 Service (AASW2_Service) - Unknown owner - C:\Program Files\Ashampoo\Ashampoo AntiSpyWare 2\AntiSpyWareService.exe O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\system32\aestsrv.exe O23 - Service: Avira AntiVir Premium MailGuard (AntiVirMailService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Premium\avmailc.exe O23 - Service: Planificateur Avira AntiVir Premium (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Premium\sched.exe O23 - Service: Avira AntiVir Premium Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Premium\avguard.exe O23 - Service: Avira AntiVir Premium WebGuard (antivirwebservice) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Premium\AVWEBGRD.EXE O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Service d'assistance Avira AntiVir Premium MailGuard (AVEService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Premium\avesvc.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe

Voici pour le rapport AD-REMOVER: ------- LOGFILE OF AD-REMOVER 1.1.2.5 | ONLY XP/VISTA ------- Updated by C_XX on 01/04/2009 at 20:00 Contact: AdRemover.contact@gmail.com Website: http://pagesperso-orange.fr/FindyKill.Ad.Remover/ Start at: 21:08:08, Thu 02/04/2009 | Boot mode: Normal Boot Option: SCAN | Executed from: C:\Program Files\Ad-remover\Ad-remover.bat Operating System: Microsoft® Windows Vista™ Ultimate Service Pack 1 (version 6.0.6001) Computer Name: PC-DE-JB- Current User: JB - Administrator Drive(s): - C:\ (File System: NTFS) - D:\ (File System: NTFS) - E:\ (File System: FAT32) System Drive: C:\ Windows Directory: C:\Windows\ System Directory: C:\Windows\System32\ --- Running Processes: 62 +-----------------| Boonty/Boonty Games Elements Found: . . +-----------------| Eorezo Elements Found: . +-----------------| Infected Poker Softwares Elements Found: . +-----------------| FunWebProducts/MyWay/MyWebSearch Elements Found: . . +-----------------| It's TV Elements Found: . +-----------------| Sweetim Elements Found: . ============ Other Adwares Found ============ . . +-----------------| Added Scan: ---- Mozilla FireFox Version 3.0.8 ---- ProfilePath: 25cyefkq.default (JB) . Prefs.js: Browser.Search.SelectedEngine: "DAEMON Search" . . . . . ---- Internet Explorer Version 8.0.6001.18702 ---- +-[HKEY_CURRENT_USER\..\Internet Explorer\Main] Search Page: hxxp://www.google.fr Start page: hxxp://www.google.fr/ +-[HKEY_USERS\S-1-5-21-219990615-1400524559-151755446-1001\..\Internet Explorer\Main] Search Page: hxxp://www.google.fr Start page: hxxp://www.google.fr/ +-[HKEY_LOCAL_MACHINE\..\Internet Explorer\Main] Default_Page_URL: hxxp://www.google.fr Default_Search_URL: hxxp://www.google.fr Search Page: hxxp://www.google.fr Start page: hxxp://www.msn.com/ +-[HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS] Tabs: hxxp://ieframe.dll/tabswelcome.htm +---------------------------------------------------------------------------+ 2054 Byte(s) - C:\Ad-Report-Scan-02.04.2009.log 0 File(s) - C:\Program Files\Ad-remover\TOOLS\BACKUP 0 File(s) - C:\Program Files\Ad-remover\TOOLS\QUARANTINE End at: 21:20:03 | 02/04/2009 . +-----------------| E.O.F - 59 Lines .

//HELP\\ Infecté ou non ?

Réponse 41 / 50

Utilisateur anonyme

ok salut pour ton UAC fais ceci tu deras le menage apres :

---> Double-clique sur OTMoveIt3.exe afin de le lancer.

---> Copie (Ctrl+C) le texte suivant ci-dessous :

:processes
explorer.exe

:reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=1
"EnableInstallerDetection"=1
"FilterAdministratorToken"=0

:commands
[purity]
[emptytemp]
[start explorer]
[reboot]

---> Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.

---> Clique maintenant sur le bouton MoveIt! puis ferme OTMoveIt3.

Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur YES.

---> Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
Le nom du rapport correspond au moment de sa création : date_heure.log

ensuite :

Étant donné que je navigue avec Firefox, par défaut, l'antiSpy de la barre Yahoo, suffit t-elle ?

non il vaut mieux un vrai antispy (spybot, spywareterminetor[sans le Crawler Toolbar ni le ClamAV],Superantispyware pour scanner de temps en temps [ou la version Pro avec resident ].....)

Réponse 42 / 50

Lucinda

Salut,
Voilà pour le rapport:

========== PROCESSES ==========
Process explorer.exe killed successfully.
========== REGISTRY ==========
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\\"ConsentPromptBehaviorUser"|1 /E : value set successfully!
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\\"EnableInstallerDetection"|1 /E : value set successfully!
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\\"FilterAdministratorToken"|0 /E : value set successfully!
========== COMMANDS ==========
File delete failed. C:\Users\JB\AppData\Local\Temp\Rar$EX02.172\Circle_Dock_v0.9.2_downarchive\Circle Dock v0.9.2 Alpha 8 (NEW)\System\Icons\My Documents.png scheduled to be deleted on reboot.
File delete failed. C:\Users\JB\AppData\Local\Temp\Rar$EX02.172\Circle_Dock_v0.9.2_downarchive\Circle Dock v0.9.2 Alpha 8 (NEW)\System\Icons\Windows Logo.png scheduled to be deleted on reboot.
File delete failed. C:\Users\JB\AppData\Local\Temp\Rar$EX02.172\Circle_Dock_v0.9.2_downarchive\Circle Dock v0.9.2 Alpha 8 (NEW)\System\Background\Circle.png scheduled to be deleted on reboot.
File delete failed. C:\Users\JB\AppData\Local\Temp\Rar$EX02.172\Circle_Dock_v0.9.2_downarchive\Circle Dock v0.9.2 Alpha 8 (NEW)\AMS.Profile.dll scheduled to be deleted on reboot.
File delete failed. C:\Users\JB\AppData\Local\Temp\Rar$EX02.172\Circle_Dock_v0.9.2_downarchive\Circle Dock v0.9.2 Alpha 8 (NEW)\CircleDock.exe scheduled to be deleted on reboot.
File delete failed. C:\Users\JB\AppData\Local\Temp\Rar$EX02.172\Circle_Dock_v0.9.2_downarchive\Circle Dock v0.9.2 Alpha 8 (NEW)\GlobalMouseKeyboardHook.dll scheduled to be deleted on reboot.
File delete failed. C:\Users\JB\AppData\Local\Temp\Rar$EX02.172\Circle_Dock_v0.9.2_downarchive\Circle Dock v0.9.2 Alpha 8 (NEW)\Interop.Shell32.dll scheduled to be deleted on reboot.
File delete failed. C:\Users\JB\AppData\Local\Temp\Rar$EX02.172\Circle_Dock_v0.9.2_downarchive\Circle Dock v0.9.2 Alpha 8 (NEW)\Orbit.Hook.dll scheduled to be deleted on reboot.
File delete failed. C:\Users\JB\AppData\Local\Temp\Rar$EX02.172\Circle_Dock_v0.9.2_downarchive\Circle Dock v0.9.2 Alpha 8 (NEW)\Orbit.Interop.Win32.dll scheduled to be deleted on reboot.
File delete failed. C:\Users\JB\AppData\Local\Temp\etilqs_zGrcN1eYEiRiy0hVsYEH scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Internet Explorer cache folder emptied.
Windows Temp folder emptied.
File delete failed. C:\Users\JB\AppData\Local\Mozilla\Firefox\Profiles\25cyefkq.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. C:\Users\JB\AppData\Local\Mozilla\Firefox\Profiles\25cyefkq.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. C:\Users\JB\AppData\Local\Mozilla\Firefox\Profiles\25cyefkq.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. C:\Users\JB\AppData\Local\Mozilla\Firefox\Profiles\25cyefkq.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. C:\Users\JB\AppData\Local\Mozilla\Firefox\Profiles\25cyefkq.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
File delete failed. C:\Users\JB\AppData\Local\Mozilla\Firefox\Profiles\25cyefkq.default\XUL.mfl scheduled to be deleted on reboot.
FireFox cache emptied.
Temp folders emptied.
Explorer started successfully

OTMoveIt3 by OldTimer - Version 1.0.10.0 log created on 04032009_235412

Files moved on Reboot...
C:\Users\JB\AppData\Local\Temp\Rar$EX02.172\Circle_Dock_v0.9.2_downarchive\Circle Dock v0.9.2 Alpha 8 (NEW)\System\Icons\My Documents.png moved successfully.
C:\Users\JB\AppData\Local\Temp\Rar$EX02.172\Circle_Dock_v0.9.2_downarchive\Circle Dock v0.9.2 Alpha 8 (NEW)\System\Icons\Windows Logo.png moved successfully.
C:\Users\JB\AppData\Local\Temp\Rar$EX02.172\Circle_Dock_v0.9.2_downarchive\Circle Dock v0.9.2 Alpha 8 (NEW)\System\Background\Circle.png moved successfully.
DllUnregisterServer procedure not found in C:\Users\JB\AppData\Local\Temp\Rar$EX02.172\Circle_Dock_v0.9.2_downarchive\Circle Dock v0.9.2 Alpha 8 (NEW)\AMS.Profile.dll
C:\Users\JB\AppData\Local\Temp\Rar$EX02.172\Circle_Dock_v0.9.2_downarchive\Circle Dock v0.9.2 Alpha 8 (NEW)\AMS.Profile.dll NOT unregistered.
C:\Users\JB\AppData\Local\Temp\Rar$EX02.172\Circle_Dock_v0.9.2_downarchive\Circle Dock v0.9.2 Alpha 8 (NEW)\AMS.Profile.dll moved successfully.
C:\Users\JB\AppData\Local\Temp\Rar$EX02.172\Circle_Dock_v0.9.2_downarchive\Circle Dock v0.9.2 Alpha 8 (NEW)\CircleDock.exe moved successfully.
DllUnregisterServer procedure not found in C:\Users\JB\AppData\Local\Temp\Rar$EX02.172\Circle_Dock_v0.9.2_downarchive\Circle Dock v0.9.2 Alpha 8 (NEW)\GlobalMouseKeyboardHook.dll
C:\Users\JB\AppData\Local\Temp\Rar$EX02.172\Circle_Dock_v0.9.2_downarchive\Circle Dock v0.9.2 Alpha 8 (NEW)\GlobalMouseKeyboardHook.dll NOT unregistered.
C:\Users\JB\AppData\Local\Temp\Rar$EX02.172\Circle_Dock_v0.9.2_downarchive\Circle Dock v0.9.2 Alpha 8 (NEW)\GlobalMouseKeyboardHook.dll moved successfully.
DllUnregisterServer procedure not found in C:\Users\JB\AppData\Local\Temp\Rar$EX02.172\Circle_Dock_v0.9.2_downarchive\Circle Dock v0.9.2 Alpha 8 (NEW)\Interop.Shell32.dll
C:\Users\JB\AppData\Local\Temp\Rar$EX02.172\Circle_Dock_v0.9.2_downarchive\Circle Dock v0.9.2 Alpha 8 (NEW)\Interop.Shell32.dll NOT unregistered.
C:\Users\JB\AppData\Local\Temp\Rar$EX02.172\Circle_Dock_v0.9.2_downarchive\Circle Dock v0.9.2 Alpha 8 (NEW)\Interop.Shell32.dll moved successfully.
DllUnregisterServer procedure not found in C:\Users\JB\AppData\Local\Temp\Rar$EX02.172\Circle_Dock_v0.9.2_downarchive\Circle Dock v0.9.2 Alpha 8 (NEW)\Orbit.Hook.dll
C:\Users\JB\AppData\Local\Temp\Rar$EX02.172\Circle_Dock_v0.9.2_downarchive\Circle Dock v0.9.2 Alpha 8 (NEW)\Orbit.Hook.dll NOT unregistered.
C:\Users\JB\AppData\Local\Temp\Rar$EX02.172\Circle_Dock_v0.9.2_downarchive\Circle Dock v0.9.2 Alpha 8 (NEW)\Orbit.Hook.dll moved successfully.
DllUnregisterServer procedure not found in C:\Users\JB\AppData\Local\Temp\Rar$EX02.172\Circle_Dock_v0.9.2_downarchive\Circle Dock v0.9.2 Alpha 8 (NEW)\Orbit.Interop.Win32.dll
C:\Users\JB\AppData\Local\Temp\Rar$EX02.172\Circle_Dock_v0.9.2_downarchive\Circle Dock v0.9.2 Alpha 8 (NEW)\Orbit.Interop.Win32.dll NOT unregistered.
C:\Users\JB\AppData\Local\Temp\Rar$EX02.172\Circle_Dock_v0.9.2_downarchive\Circle Dock v0.9.2 Alpha 8 (NEW)\Orbit.Interop.Win32.dll moved successfully.
File C:\Users\JB\AppData\Local\Temp\etilqs_zGrcN1eYEiRiy0hVsYEH not found!
C:\Users\JB\AppData\Local\Mozilla\Firefox\Profiles\25cyefkq.default\Cache\_CACHE_001_ moved successfully.
C:\Users\JB\AppData\Local\Mozilla\Firefox\Profiles\25cyefkq.default\Cache\_CACHE_002_ moved successfully.
C:\Users\JB\AppData\Local\Mozilla\Firefox\Profiles\25cyefkq.default\Cache\_CACHE_003_ moved successfully.
C:\Users\JB\AppData\Local\Mozilla\Firefox\Profiles\25cyefkq.default\Cache\_CACHE_MAP_ moved successfully.
C:\Users\JB\AppData\Local\Mozilla\Firefox\Profiles\25cyefkq.default\urlclassifier3.sqlite moved successfully.
C:\Users\JB\AppData\Local\Mozilla\Firefox\Profiles\25cyefkq.default\XUL.mfl moved successfully.

Réponse 43 / 50

gaga of xp Messages postés 1519 Date d'inscription Statut Membre Dernière intervention 128

hijackthis (voir tuto pour interprétaion ) mbam, je ne vois rien de meilleur pour les debs dont je fais partie

Réponse 44 / 50

Utilisateur anonyme

regarde pour ton UAC maintenant

Réponse 45 / 50

Lucinda

"Regarde pour ton UAC maintenant "

Que doit-je faire ?

Réponse 46 / 50

Utilisateur anonyme

voir si tu arrives a le laisser desactivé ce dont tu te plaignais il me semble non ?

Réponse 47 / 50

Lucinda

Ha, effectivement j'avais mal saisi...
Effectivement problème résolu ! Je peux enfin l'activer, et le désactiver à ma guise, sans passer par le mode sans échec. Plus aucun souci de restriction, de mise à jour, etc. même activé !
Merci bien !

Réponse 48 / 50

Utilisateur anonyme

ok ben faut pas oublier le menage maintenant !!

Réponse 49 / 50

Lucinda

Voilà donc le rapport TC: (Même si je pense ce n'est pas d'une grande utilité que je le poste, mais je le poste tout de même)

[ Rapport ToolsCleaner version 2.3.3 (par A.Rothstein & dj QUIOU) ]

--> Recherche:

C:\_OtMoveIt: trouvé !
C:\Users\JB\Desktop\OTMoveIt3.exe: trouvé !

---------------------------------
--> Suppression:

C:\Users\JB\Desktop\OTMoveIt3.exe: supprimé !
C:\_OtMoveIt: supprimé !

Corbeille vidée!
Fichiers temporaires nettoyés !

Par contre étant donné que j'ai déjà vérifier mes disques, et défragmentez, doit-je le refaire ?
J'imagine que non ?

Voilà, pour le reste tout à déjà été fait hier soir.

Réponse 50 / 50

Utilisateur anonyme

ok parfait :)

//HELP\\ Infecté ou non ? - Page 3

Discussions similaires

Newsletters