Virus

Résolu/Fermé
blackcat9 Messages postés 25 Date d'inscription mardi 28 août 2007 Statut Membre Dernière intervention 12 septembre 2007 - 28 août 2007 à 19:56
blackcat9 Messages postés 25 Date d'inscription mardi 28 août 2007 Statut Membre Dernière intervention 12 septembre 2007 - 12 sept. 2007 à 14:11
Bonjours!voila moi aussi je suis victime du virus j'ai essaier plein de conseil mais il reste toujours!
pouvez vous m'aidez s'il vous lpait?!!
voila mon rapport HijackThis le reste est sur virus via msn besoin d aide#0
merci d'avance!

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:15:14, on 28/08/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\perfmon.exe
C:\WINDOWS\system32\PhnxCDSvr.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\Phoenix Technologies\cME\RPro\ XP\VBPTASK.EXE
C:\Program Files\Phoenix Technologies\cME\Guard\Guard.exe
C:\Program Files\Lexmark 2300 Series\lxcgmon.exe
C:\WINDOWS\wt\updater\wcmdmgr.exe
C:\Program Files\Lexmark 2300 Series\ezprint.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\SetPoint.exe
C:\WINDOWS\system32\lxcgcoms.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\MessengerSkinner\MessengerSkinner.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
C:\Program Files\SAGEM WiFi manager\WLANUTL.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Java\jre1.5.0_11\bin\jucheck.exe
C:\Program Files\Windows NT\Accessoires\wordpad.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\ALEXAN~1\LOCALS~1\Temp\Rar$EX00.610\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [RestoreIT!] "C:\Program Files\Phoenix Technologies\cME\RPro\ XP\VBPTASK.EXE" VBStart
O4 - HKLM\..\Run: [Guard] "C:\Program Files\Phoenix Technologies\cME\Guard\Guard.exe" /background
O4 - HKLM\..\Run: [wcmdmgr] C:\WINDOWS\wt\updater\wcmdmgrl.exe -launch
O4 - HKLM\..\Run: [lxcgmon.exe] "C:\Program Files\Lexmark 2300 Series\lxcgmon.exe"
O4 - HKLM\..\Run: [EzPrint] "C:\Program Files\Lexmark 2300 Series\ezprint.exe"
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [LXCGCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCGtime.dll,_RunDLLEntry@16
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SetPoint.exe] C:\WINDOWS\SetPoint.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [WOOKIT] C:\Program Files\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [messengerskinner] C:\Program Files\MessengerSkinner\MessengerSkinner.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Dial-Messenger.lnk = C:\Program Files\Dial-Messenger\Dial-Messenger.exe
O4 - Global Startup: ATI CATALYST System Tray.lnk = C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: (no name) - {1A93C934-025B-4c3a-B38E-9654A7003239} - C:\Program Files\GamesBar\oberontb.dll (file missing)
O9 - Extra 'Tools' menuitem: GamesBar - {1A93C934-025B-4c3a-B38E-9654A7003239} - C:\Program Files\GamesBar\oberontb.dll (file missing)
O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe
O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/default.aspx
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: lxcg_device - Unknown owner - C:\WINDOWS\system32\lxcgcoms.exe
O23 - Service: Performance Monitor - Unknown owner - C:\WINDOWS\perfmon.exe
O23 - Service: Phoenix VCD Service (PhnxVCDService) - Phoenix Technologies Ltd. - C:\WINDOWS\system32\PhnxCDSvr.exe

End of file - 9654 bytes
A voir également:

49 réponses

!^^![ME] Messages postés 4744 Date d'inscription dimanche 10 juin 2007 Statut Contributeur Dernière intervention 1 mars 2020 395
28 août 2007 à 20:01
0
blackcat9 Messages postés 25 Date d'inscription mardi 28 août 2007 Statut Membre Dernière intervention 12 septembre 2007
28 août 2007 à 22:13
euh je suis desoler mais y a pas plus facile?!stp
0
!^^![ME] Messages postés 4744 Date d'inscription dimanche 10 juin 2007 Statut Contributeur Dernière intervention 1 mars 2020 395
28 août 2007 à 22:29
non ya pas plus facile...
alors tu le fait ou pas?
en plus je te promet c'est pâs du tout compliké
@+
0
blackcat9 Messages postés 25 Date d'inscription mardi 28 août 2007 Statut Membre Dernière intervention 12 septembre 2007
28 août 2007 à 22:37
oui ok mais pour ad aware je ne voit pas se qu'il faut faire!
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
!^^![ME] Messages postés 4744 Date d'inscription dimanche 10 juin 2007 Statut Contributeur Dernière intervention 1 mars 2020 395
28 août 2007 à 22:39
bha tu lance le scan et tu post le log:
https://forums.cnetfrance.fr
0
blackcat9 Messages postés 25 Date d'inscription mardi 28 août 2007 Statut Membre Dernière intervention 12 septembre 2007
28 août 2007 à 22:43
par contre j'ai deja fiat le "f secure" sa me donne sa!


Result: 85 malware found
Stealth_application (hidden item)
C:\WINDOWS\SYSTEM32\AUKDOIN.EXE (Submitted)
Tracking Cookie (spyware)
System (Disinfected)
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
System
Trojan-Downloader.Win32.Small.fee (virus)
C:\WINDOWS\PERFMON.EXE (Renamed & Submitted)
C:\DOCUMENTS AND SETTINGS\TIFFANY\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\EPSZU7SZ\BACKUP[1].ZIP (Renamed & Submitted)
0
Lyonnais92 Messages postés 25159 Date d'inscription vendredi 23 juin 2006 Statut Contributeur sécurité Dernière intervention 16 septembre 2016 1 536
28 août 2007 à 22:48
Bonsoir,

la référence des premiers posts de blackcat9 :

virus via msn besoin d aide#0

post 61 et suivants.

MSNFix a éradiqué l'infection concernée.

Bonne suite.
0
!^^![ME] Messages postés 4744 Date d'inscription dimanche 10 juin 2007 Statut Contributeur Dernière intervention 1 mars 2020 395
28 août 2007 à 22:50
donc que dois je en conclure?
0
blackcat9 Messages postés 25 Date d'inscription mardi 28 août 2007 Statut Membre Dernière intervention 12 septembre 2007
28 août 2007 à 22:53
coucou lyonnaise92
tu veut dire que MNSfix la enlever?!car pourtant j'ai toujours le virus!!!
0
!^^![ME] Messages postés 4744 Date d'inscription dimanche 10 juin 2007 Statut Contributeur Dernière intervention 1 mars 2020 395
28 août 2007 à 22:54
tu parle de quel virus?fait les procedures et post les rapports et on verra si tu est clean!
0
blackcat9 Messages postés 25 Date d'inscription mardi 28 août 2007 Statut Membre Dernière intervention 12 septembre 2007
28 août 2007 à 22:57
oui mais je ne comprneds vraiment rien a ad ware sa me met une autres versio que c'elle sur la page que tu ma donner!
0
blackcat9 Messages postés 25 Date d'inscription mardi 28 août 2007 Statut Membre Dernière intervention 12 septembre 2007
28 août 2007 à 23:17
voila je crois avoir compris voici le rapport de ad ware!!(enfin j'espere!)




Infections Found
Family Id Name Category TAI
725 Tracking Cookie DataMiner 3
[600000179] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat atdmt.com AA002 /
[600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat estat.com e /
[600000144] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat doubleclick.net id /
[600000173] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat bluestreak.com id /
[600000061] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat web.tickle.com NSC_xfc_iuuq /
[600000199] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat fe.lea.lycos.fr NGUserID /
[600000234] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat tradedoubler.com TD_UNIQUE_IMP /
[600000409] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat server.iad.liveperson.net HumanClickKEY /hc/84147668
[600000409] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat server.iad.liveperson.net HumanClickID /hc/84147668
[600000396] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat espoirdesanges.blogtrafic.com StatsVisite /
[600000513] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat 3.adbrite.com hit_counter_39294 /mb/
[600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat smartadserver.com TestIfCookieP /
[600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat smartadserver.com pbw /
[600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat smartadserver.com pid /
[600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat smartadserver.com pbwmaj /
[600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat www6.addfreestats.com NC1U /cgi-bin
[600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat www3.addfreestats.com NC1U /cgi-bin
[600000119] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat fr.kelkoo.com kelkooID /
[600000119] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat voyages.kelkoo.fr kelkooID /
[600000225] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat weborama.fr AFFICHE_W /
[600000225] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat weborama.fr wbo_temps_reel /
[600000199] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat oascentral.lycos.com flashInstalled /
[600000523] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat webstats4u.com w4u_cid /
[600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat www4.addfreestats.com NC1U /cgi-bin
[600000049] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat rave910.tripod.com flashInstalled /
[600000049] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat rave910.tripod.com ym_pop_freq_expiration152329 /
[600000049] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat rave910.tripod.com ym_pop_freq152329 /
[600000513] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat 4.adbrite.com hit_counter_62105 /mb/
[600000513] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat ads.adbrite.com hit_counter_37775 /mb/
[600000190] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat www.googleadservices.com Conversion /pagead/conversion/1072425527/
[600000523] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat webstat.extra.hu pmv_ck_12876 /lib/phpmv2/
[600000049] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat alinacrazy4tom.tripod.com flashInstalled /
[600000049] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat alinacrazy4tom.tripod.com ym_pop_freq_expiration67698 /
[600000049] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat alinacrazy4tom.tripod.com ym_pop_freq67698 /
[600000199] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat multimania.lycos.fr lycosUpdate /
[600000598] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat www.sims2.gamersunity.de user_id /
[600000598] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat www.sims2.gamersunity.de user_name /
[600000598] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat www.sims2.gamersunity.de user_pw /
[600000598] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat www.sims2.gamersunity.de pkSITE /
[600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat www5.addfreestats.com NC1U /cgi-bin
[600000523] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat m1.webstats4u.com w4u_tv /
[600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\tiffany\Cookies\index.dat www1.addfreestats.com NC1U /cgi-bin
[600000187] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat advertising.com ACID /
[600000187] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat advertising.com F1 /
[600000187] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat advertising.com BASE /
[600000187] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat advertising.com ROLL /
[600000363] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat fl01.ct2.comclick.com comTrackIdSurfeur /
[600000363] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat fl01.ct2.comclick.com CKA /
[600000363] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat fl01.ct2.comclick.com CKA_SIZE /
[600000363] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat fl01.ct2.comclick.com CLK /
[600000363] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat fl01.ct2.comclick.com CLK_SIZE /
[600000179] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat atdmt.com AA002 /
[600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat msnaccountservices.112.2o7.net s_vi /
[600000173] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat bluestreak.com id /
[600000144] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat doubleclick.net id /
[600000199] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat ads.multimania.lycos.fr DXPERT /
[600000199] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat ads.multimania.lycos.fr DXPERTRICH /
[600000046] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat www.vegasred.com SaneID /
[600000476] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat statcounter.com session_2114047 /
[600000449] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat adultfriendfinder.com ffadult_tr /
[600000449] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat adultfriendfinder.com HISTORY /
[600000084] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat rambler.ru ruid /
[600000173] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat iv2.bluestreak.com IONVIEW_ID /
[600000083] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat 247realmedia.com RMID /
[600000083] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat 247realmedia.com OAX /
[600000083] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat 247realmedia.com virgmbanjuly /
[600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat www.smartadserver.com TestIfCookieP /
[600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat www.smartadserver.com pbw /
[600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat www.smartadserver.com pid /
[600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat estat.com e /
[600000460] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat ad.yieldmanager.com uid /
[600000460] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat ad.yieldmanager.com pv1 /
[600000460] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat ad.yieldmanager.com ih /
[600000460] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat ad.yieldmanager.com bh /
[600000165] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat casinotropez.com banner_23627de_cpacp1_N_profile_source:source-N000FRH2Z-FBREQFcAAJ /
[600000478] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat www.jackpotmadness.com JackpotFactory /
[600000171] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat bs.serving-sys.com eyeblaster /
[600000225] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat weborama.fr AFFICHE_W /
[600000225] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat weborama.fr oo136131 /
[600000225] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat weborama.fr wous /
[600000225] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat weborama.fr aimfarcapping /
[600000050] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat tribalfusion.com ANON_ID /
[600000068] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat statse.webtrendslive.com ACOOKIE /
[600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat opodo.122.2o7.net s_vi /
[600000295] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat adtech.de CfP /
[600000295] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat adtech.de JEB2 /
[600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat fnac.112.2o7.net s_vi /
[600000093] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat ads.pointroll.com PRID /
[600000093] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat ads.pointroll.com PRimp /
[600000093] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat ads.pointroll.com PRpb /
[600000093] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat ads.pointroll.com PRaf /
[600000093] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat ads.pointroll.com fq873B1620077138714 /
[600000199] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat fe.lea.lycos.fr NGUserID /
[600000165] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat www.casinotropez.com TRACK /
[600000165] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat www.casinotropez.com SaneID /
[600000457] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat adopt.euroclick.com LO /
[600000457] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat adopt.euroclick.com UI /
[600000457] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat adopt.euroclick.com NSC_mc-bepqu.fvspdmjdl.dpn-iuuq /
[600000199] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat membres.lycos.fr PHPSESSID /lehavredepaix/
[600000138] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat fastclick.net pluto /
[600000138] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat fastclick.net pjw /
[600000138] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat fastclick.net m1 /
[600000138] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat fastclick.net adv_ic /
[600000138] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat fastclick.net m6 /
[600000447] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat apmebf.com S /
[600000447] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat apmebf.com LCLK /
[600000101] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat overture.com CMUserData /
[600000101] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat overture.com UserData /
[600000234] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat tradedoubler.com TD_UNIQUE_IMP /
[600000234] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat tradedoubler.com TD_PIC /
[600000234] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat tradedoubler.com TradeDoublerGUID /
[600000234] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat tradedoubler.com TD_EH_0 /
[600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat incredimailltd.112.2o7.net s_vi /
[600000269] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat hotlog.ru ID /
[600000114] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat www.business.lbn.ru uid /
[600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat msnportal.112.2o7.net s_vi /
[600000276] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat www.etracker.de etcnt_26328 /
[600000276] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat www.etracker.de etcnt_40683 /
[600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat ehg-dig.hitbox.com DM5103154GMWV6 /
[600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat ehg-dig.hitbox.com DM5103083LCAV6 /
[600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat ehg-dig.hitbox.com DM510528MBFCV6 /
[600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat ehg-dig.hitbox.com DM530126L7MZV6 /
[600000000] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat zedo.com ZEDOIDX /
[600000000] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat zedo.com ZEDOIDA /
[600000000] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat zedo.com geo /
[600000000] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat zedo.com FFcat /
[600000000] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat zedo.com FFad /
[600000000] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat zedo.com PCA319390 /
[600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat 2o7.net s_vi_hngx7Fkdhox7B /
[600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat 2o7.net s_vi_x7Frubx7Fx7Ewqx7Dux7Euhdvb /
[600000164] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat centrport.net CPID /
[600000190] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat www.googleadservices.com Conversion /pagead/conversion/1067541087/
[600000491] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat roiservice.com msid932937107000022 /
[600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat adserver.aol.fr CfP /
[600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat adserver.aol.fr JEB2 /
[600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat smartadserver.com pt /
[600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat smartadserver.com pid /
[600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat smartadserver.com pbwmaj /
[600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat smartadserver.com pbw /
[600000408] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat serving-sys.com A2 /
[600000408] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat serving-sys.com B2 /
[600000408] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat serving-sys.com C3 /
[600000408] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat serving-sys.com D3 /
[600000408] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat serving-sys.com E2 /
[600000263] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat mediaplex.com svid /
[600000263] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat mediaplex.com mojo2 /
[600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat hitbox.com CTG /
[600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat hitbox.com WSS_GW /
[600000644] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat ad.top1.adbn.ru uid /
[600000114] Browser: Internet Explorer Cookie: C:\Documents and Settings\alexandra\Cookies\index.dat business.lbn.ru uid /
[600000199] Browser: Internet Explorer Cookie: C:\Documents and Settings\Elisabeth\Cookies\index.dat fe.lea.lycos.fr NGUserID /
[600000199] Browser: Internet Explorer Cookie: C:\Documents and Settings\Elisabeth\Cookies\index.dat multimania.lycos.fr lycosUpdate /
[600000491] Browser: Internet Explorer Cookie: C:\Documents and Settings\Elisabeth\Cookies\index.dat roiservice.com msid932363107236315 /
[600000447] Browser: Internet Explorer Cookie: C:\Documents and Settings\Elisabeth\Cookies\index.dat apmebf.com S /
[600000447] Browser: Internet Explorer Cookie: C:\Documents and Settings\Elisabeth\Cookies\index.dat apmebf.com LCLK /
[600000449] Browser: Internet Explorer Cookie: C:\Documents and Settings\Elisabeth\Cookies\index.dat adultfriendfinder.com ffadult_tr /
[600000449] Browser: Internet Explorer Cookie: C:\Documents and Settings\Elisabeth\Cookies\index.dat adultfriendfinder.com HISTORY /
[600000199] Browser: Internet Explorer Cookie: C:\Documents and Settings\Elisabeth\Cookies\index.dat ads.multimania.lycos.fr DXPERT /
[600000190] Browser: Internet Explorer Cookie: C:\Documents and Settings\Elisabeth\Cookies\index.dat www.googleadservices.com Conversion /pagead/conversion/1071420007/
[600000144] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat doubleclick.net id /
[600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat fr.sitestat.com s1 /bayard/la-croix/
[600000199] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat fe.lea.lycos.fr NGUserID /
[600000263] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat mediaplex.com svid /
[600000263] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat mediaplex.com mojo2 /
[600000461] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat ad.uk.tangozebra.com TZID /a
[600000295] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat adtech.de CfP /
[600000295] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat adtech.de JEB2 /
[600000179] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat atdmt.com AA002 /
[600000119] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat kelkoo.fr kelkooCountry /
[600000119] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat kelkoo.fr kelkooID /
[600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat fr.sitestat.com s1 /becquet/becquet/
[600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat sevenloadgmbh.112.2o7.net s_vi /
[600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat estat.com e /
[600000390] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat www.buycentral.fr fpc1000227723453 /
[600000083] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat real.com Edition /
[600000083] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat real.com RNsites /
[600000119] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat fr.kelkoo.com kelkooID /
[600000276] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat www.etracker.de etcnt_26328 /
[600000276] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat www.etracker.de etcnt_81121 /
[600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat adserver.futura-sciences.com phpAds_blockAd[66] /
[600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat adserver.futura-sciences.com phpAds_newCap[61eb78ea8ea6a389cf9030a00eb87c3f] /
[600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat adserver.futura-sciences.com phpAds_capAd[66] /
[600000076] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat sexlist.com TSLID165009 /
[600000076] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat sexlist.com TSLID189532 /
[600000128] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat gostats.com sessionID /
[600000128] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat gostats.com visitorID /
[600000128] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat gostats.com 4.260659.ever /
[600000128] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat gostats.com 4.260659.today /
[600000247] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat sextracker.com DYNGFX_ST287652 /
[600000425] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat indexstats.com itvisitorid10001852322309 /
[600000425] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat indexstats.com itsessionid10001852322309 /
[600000447] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat apmebf.com S /
[600000447] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat apmebf.com LCLK /
[600000293] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat adviva.net ansv4_uid /
[600000122] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat instadia.net UID /
[600000165] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat www.casinotropez.com SaneID /
[600000165] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat www.casinotropez.com TRACK /
[600000138] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat media.fastclick.net NSC_mc-dnfejb-tujdl`.bo.tow /
[600000478] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat www.jackpotmadness.com JackpotFactory /
[600000403] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat stat.dealtime.com VOTF /
[600000488] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat indextools.com itvisitorid1000227723453 /
[600000488] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat indextools.com itsessionid1000227723453 /
[600000199] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat multimania.lycos.fr lycosUpdate /
[600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat fr.sitestat.com s1 /renault-group/renault-be/
[600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat ehg-chrysler.hitbox.com DM5403081FBEV6 /
[600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat adserver.aol.fr CfP /
[600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat adserver.aol.fr JEB2 /
[600000046] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat www.vegasred.com TRACK /
[600000046] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat www.vegasred.com SaneID /
[600000234] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat tradedoubler.com TradeDoublerGUID /
[600000234] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat tradedoubler.com TD_EH_0 /
[600000234] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat tradedoubler.com TD_PIC /
[600000234] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat tradedoubler.com TD_UNIQUE_IMP /
[600000350] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat banner.goldenpalace.com banner_click /
[600000350] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat banner.goldenpalace.com banner_exiturl /
[600000171] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat bs.serving-sys.com eyeblaster /
[600000408] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat serving-sys.com A2 /
[600000408] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat serving-sys.com B2 /
[600000408] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat serving-sys.com C3 /
[600000408] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat serving-sys.com D3 /
[600000408] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat serving-sys.com E2 /
[600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat viamtvcom.112.2o7.net s_vi /
[600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat fr.sitestat.com c1 /renault-group/
[600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat stats1.reliablestats.com siteID /
[600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat stats1.reliablestats.com siteAID_fr_systemdoctor /
[600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat stats1.reliablestats.com siteLID_fr_systemdoctor /
[600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat stats1.reliablestats.com siteLP_fr_systemdoctor /
[600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat stats1.reliablestats.com siteAID_fr_winantispyware /
[600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat stats1.reliablestats.com siteLID_fr_winantispyware /
[600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat stats1.reliablestats.com siteLP_fr_winantispyware /
[600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat stats1.reliablestats.com tid /
[600000173] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat bluestreak.com id /
[600000073] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat specificclick.net dmc /
[600000073] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat specificclick.net dmk /
[600000073] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat specificclick.net smc /
[600000073] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat specificclick.net smk /
[600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat ehg-cogemag.hitbox.com DM561002ANMZV6 /
[600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat fr.sitestat.com c1 /bayard/
[600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat fr.sitestat.com s1 /conrad/conrad-public/
[600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat fr.sitestat.com c1 /conrad/
[600000199] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat ads.multimania.lycos.fr DXPERT /
[600000199] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat ads.multimania.lycos.fr DXPERTRICH /
[600000199] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat ads.multimania.lycos.fr DXPERTSMALL /
[600000119] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat kelkoo.com kelkooCountry /
[600000555] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat insightexpressai.com IXAICampaignCounter656 /
[600000555] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat insightexpressai.com IXAIControlCounter656 /
[600000555] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat insightexpressai.com IXAIBannerCounter19570 /
[600000555] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat insightexpressai.com IXAIBanners656 /
[600000555] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat insightexpressai.com IXAILastHit656 /
[600000555] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat insightexpressai.com IXAIFirstHit656 /
[600000085] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat questionmarket.com BS1 /
[600000085] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat questionmarket.com ES /
[600000225] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat weborama.fr AFFICHE_W /
[600000225] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat weborama.fr wous /
[600000225] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat weborama.fr aimfarcapping /
[600000190] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat adserv.free6.com phpAds_geoInfo /
[600000101] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat overture.com ConvData /
[600000101] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat overture.com UserData /
[600000101] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat overture.com CMUserData /
[600000460] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat ad.yieldmanager.com uid /
[600000460] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat ad.yieldmanager.com pv1 /
[600000460] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat ad.yieldmanager.com ih /
[600000460] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat ad.yieldmanager.com bh /
[600000460] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat ad.yieldmanager.com vuday1 /
[600000138] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat fastclick.net pluto /
[600000138] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat fastclick.net m2 /
[600000165] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat casinotropez.com serial /
[600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat smartadserver.com pt /
[600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat smartadserver.com pid /
[600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat smartadserver.com pbwmaj /
[600000001] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat smartadserver.com pbw /
[600000247] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat counter5.sextracker.com CID287652 /
[600000173] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat iv2.bluestreak.com IONVIEW_ID /
[600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat ehg-france24.hitbox.com DM561030OEDZV6 /
[600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat ehg-france24.hitbox.com DM56112721ZSV6 /
[600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat ehg-warnerbrothers.hitbox.com DM5507284INBV6 /
[600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat ehg-warnerbrothers.hitbox.com DM5504074JEWV6 /
[600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat ehg-warnerbrothers.hitbox.com DM55021471CAV6 /
[600000363] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat fl01.ct2.comclick.com comTrackIdSurfeur /
[600000363] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat fl01.ct2.comclick.com CKA /
[600000363] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat fl01.ct2.comclick.com CKA_SIZE /
[600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat ehg-telecomitalia.hitbox.com DM56062648VEV6 /
[600000190] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat www.googleadservices.com Conversion /pagead/conversion/1061854669/
[600000031] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat www.cibleclick.com CIDENT_ID /
[600000031] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat www.cibleclick.com CIBLE_CLICK_BAN /
[600000083] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat 247realmedia.com RMID /
[600000083] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat 247realmedia.com RMFD /
[600000083] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat 247realmedia.com RMFM /
[600000476] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat statcounter.com session_501144 /
[600000476] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat statcounter.com session_702595 /
[600000476] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat statcounter.com session_1423786 /
[600000187] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat advertising.com ACID /
[600000187] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat advertising.com C2 /
[600000187] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat advertising.com BASE /
[600000187] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat advertising.com F1 /
[600000187] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat advertising.com ROLL /
[600000190] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat www.googleadservices.com Conversion /pagead/conversion/1071416564/
[600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat hitbox.com CTG /
[600000126] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat hitbox.com WSS_GW /
[600000415] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat revsci.net NETID01 /
[600000415] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat revsci.net NETSEGS_K05540 /
[600000415] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat revsci.net rsi_cls_1000000 /
[600000415] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat revsci.net rsi_segs_1000000 /
[600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat 2o7.net s_vi_ickeybezlxx /
[600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat 2o7.net s_vi_xxdxxiodx7Fxxx7Eiixx /
[600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat 2o7.net s_vi_atamox7Ecaihem /
[600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat 2o7.net s_vi_x60mjx7Dx60axxnankx60x60ix7D /
[600000449] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat adultfriendfinder.com ffadult_tr /
[600000449] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat adultfriendfinder.com HISTORY /
[600000449] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat adultfriendfinder.com REFERRAL_URL /
[600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat aolfr.122.2o7.net s_vi /
[600000000] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat zedo.com ZEDOIDX /
[600000000] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat zedo.com ZEDOIDA /
[600000000] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat zedo.com geo /
[600000000] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat zedo.com FFcat /
[600000000] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat zedo.com FFad /

9999 MRU Object MRU Object 0
[1] MRU Path: C:\Documents and Settings\tiffany\Recent Count: 182
[3] MRU Registry Key: S-1-5-21-1715900527-798527331-3715252053-1008\Software\Microsoft\Internet Explorer\TypedURLs Count: 25


Quarantined Objects
Family Id Name Category TAI

Removed Objects
Family Id Name Category TAI
725 Tracking Cookie DataMiner 3
[600000350] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat banner.goldenpalace.com banner_exiturl /
[600000171] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat bs.serving-sys.com eyeblaster /
[600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat stats1.reliablestats.com siteAID_fr_systemdoctor /
[600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat stats1.reliablestats.com siteLID_fr_systemdoctor /
[600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat stats1.reliablestats.com siteLP_fr_systemdoctor /
[600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat stats1.reliablestats.com siteAID_fr_winantispyware /
[600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat stats1.reliablestats.com siteLID_fr_winantispyware /
[600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat stats1.reliablestats.com siteLP_fr_winantispyware /
[600000142] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat stats1.reliablestats.com tid /
[600000173] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat bluestreak.com id /
[600000073] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat specificclick.net dmc /
[600000073] Browser: Internet Explorer Cookie: C:\Documents and Settings\super titi\Cookies\index.dat specificclick.net dmk /

[to top]
Listing of Running Processes
C:\WINDOWS\SYSTEM32\SMSS.EXE
c:\windows\system32\smss.exe
c:\windows\system32\ntdll.dll
C:\WINDOWS\SYSTEM32\CSRSS.EXE
c:\windows\system32\csrss.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\csrsrv.dll
c:\windows\system32\basesrv.dll
c:\windows\system32\winsrv.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\user32.dll
c:\windows\system32\sxs.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\ws2help.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\ole32.dll
C:\WINDOWS\SYSTEM32\WINLOGON.EXE
c:\windows\system32\winlogon.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\authz.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\nddeapi.dll
c:\windows\system32\profmap.dll
c:\windows\system32\netapi32.dll
c:\windows\system32\userenv.dll
c:\windows\system32\psapi.dll
c:\windows\system32\regapi.dll
c:\windows\system32\secur32.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\version.dll
c:\windows\system32\winsta.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\imagehlp.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\ws2help.dll
c:\windows\system32\msgina.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\comctl32.dll
c:\windows\system32\odbc32.dll
c:\windows\system32\comdlg32.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
c:\windows\system32\odbcint.dll
c:\windows\system32\shsvcs.dll
c:\windows\system32\sfc.dll
c:\windows\system32\sfc_os.dll
c:\windows\system32\ole32.dll
c:\windows\system32\apphelp.dll
c:\windows\system32\winscard.dll
c:\windows\system32\wtsapi32.dll
c:\windows\system32\sxs.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\winmm.dll
c:\windows\system32\ati2evxx.dll
c:\windows\system32\rsaenh.dll
c:\windows\system32\cscdll.dll
c:\windows\system32\wlnotify.dll
c:\windows\system32\winspool.drv
c:\windows\system32\mpr.dll
c:\windows\system32\wgalogon.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\samlib.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\comres.dll
c:\windows\system32\msv1_0.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\cscui.dll
c:\windows\system32\mprapi.dll
c:\windows\system32\activeds.dll
c:\windows\system32\adsldpc.dll
c:\windows\system32\atl.dll
c:\windows\system32\rtutils.dll
c:\windows\system32\wdmaud.drv
c:\windows\system32\msacm32.drv
c:\windows\system32\msacm32.dll
c:\windows\system32\midimap.dll
c:\windows\system32\xpsp2res.dll
C:\WINDOWS\SYSTEM32\SERVICES.EXE
c:\windows\system32\services.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\userenv.dll
c:\windows\system32\scesrv.dll
c:\windows\system32\authz.dll
c:\windows\system32\umpnpmgr.dll
c:\windows\system32\winsta.dll
c:\windows\system32\netapi32.dll
c:\windows\system32\ncobjapi.dll
c:\windows\system32\msvcp60.dll
c:\windows\system32\shimeng.dll
c:\windows\apppatch\acadproc.dll
c:\windows\system32\secur32.dll
c:\windows\system32\apphelp.dll
c:\windows\system32\version.dll
c:\windows\system32\eventlog.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\ws2help.dll
c:\windows\system32\psapi.dll
c:\windows\system32\wtsapi32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\ole32.dll
C:\WINDOWS\SYSTEM32\LSASS.EXE
c:\windows\system32\lsass.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\lsasrv.dll
c:\windows\system32\mpr.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\netapi32.dll
c:\windows\system32\ntdsapi.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\ws2help.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\secur32.dll
c:\windows\system32\samlib.dll
c:\windows\system32\samsrv.dll
c:\windows\system32\cryptdll.dll
c:\windows\system32\shimeng.dll
c:\windows\apppatch\acgenral.dll
c:\windows\system32\winmm.dll
c:\windows\system32\ole32.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\msacm32.dll
c:\windows\system32\version.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\userenv.dll
c:\windows\system32\uxtheme.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
c:\windows\system32\comctl32.dll
c:\windows\system32\msapsspc.dll
c:\windows\system32\msvcrt40.dll
c:\windows\system32\msprivs.dll
c:\windows\system32\kerberos.dll
c:\windows\system32\msv1_0.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\netlogon.dll
c:\windows\system32\w32time.dll
c:\windows\system32\msvcp60.dll
c:\windows\system32\schannel.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\wdigest.dll
c:\windows\system32\rsaenh.dll
c:\windows\system32\scecli.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\ipsecsvc.dll
c:\windows\system32\authz.dll
c:\windows\system32\oakley.dll
c:\windows\system32\winipsec.dll
c:\windows\system32\pstorsvc.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\hnetcfg.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\psbase.dll
c:\windows\system32\dssenh.dll
c:\windows\system32\cryptnet.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\sensapi.dll
c:\windows\system32\xpsp2res.dll
C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE
c:\windows\system32\ati2evxx.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\ole32.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\secur32.dll
c:\windows\system32\ati2edxx.dll
c:\windows\system32\uxtheme.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\ws2help.dll
C:\WINDOWS\SYSTEM32\SVCHOST.EXE
c:\windows\system32\svchost.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\shimeng.dll
c:\windows\apppatch\acgenral.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\winmm.dll
c:\windows\system32\ole32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\msacm32.dll
c:\windows\system32\version.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\userenv.dll
c:\windows\system32\uxtheme.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
c:\windows\system32\comctl32.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\samlib.dll
c:\windows\system32\rpcss.dll
c:\windows\system32\secur32.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\ws2help.dll
c:\windows\system32\xpsp2res.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\comres.dll
c:\windows\system32\termsrv.dll
c:\windows\system32\icaapi.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\imagehlp.dll
c:\windows\system32\authz.dll
c:\windows\system32\mstlsapi.dll
c:\windows\system32\activeds.dll
c:\windows\system32\adsldpc.dll
c:\windows\system32\netapi32.dll
c:\windows\system32\atl.dll
c:\windows\system32\regapi.dll
c:\windows\system32\rsaenh.dll
c:\windows\system32\apphelp.dll
c:\windows\system32\msi.dll
c:\windows\system32\wtsapi32.dll
c:\windows\system32\winsta.dll
c:\windows\system32\msv1_0.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\svchost.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\shimeng.dll
c:\windows\apppatch\acgenral.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\winmm.dll
c:\windows\system32\ole32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\msacm32.dll
c:\windows\system32\version.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\userenv.dll
c:\windows\system32\uxtheme.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
c:\windows\system32\comctl32.dll
c:\windows\system32\rpcss.dll
c:\windows\system32\secur32.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\ws2help.dll
c:\windows\system32\xpsp2res.dll
c:\windows\system32\rsaenh.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\hnetcfg.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\winrnr.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\rasadhlp.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\comres.dll
c:\windows\system32\msi.dll
c:\windows\system32\svchost.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\shimeng.dll
c:\windows\apppatch\acgenral.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\winmm.dll
c:\windows\system32\ole32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\msacm32.dll
c:\windows\system32\version.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\userenv.dll
c:\windows\system32\uxtheme.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
c:\windows\system32\comctl32.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\samlib.dll
c:\windows\system32\xpsp2res.dll
c:\windows\system32\shsvcs.dll
c:\windows\system32\winsta.dll
c:\windows\system32\netapi32.dll
c:\windows\system32\dhcpcsvc.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\ws2help.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\secur32.dll
c:\windows\system32\rsaenh.dll
c:\windows\system32\wzcsvc.dll
c:\windows\system32\rtutils.dll
c:\windows\system32\wmi.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\wtsapi32.dll
c:\windows\system32\esent.dll
c:\windows\system32\atl.dll
c:\windows\system32\rastls.dll
c:\windows\system32\cryptui.dll
c:\windows\system32\wintrust.dll
c:\windows\system32\imagehlp.dll
c:\windows\system32\wininet.dll
c:\windows\system32\mprapi.dll
c:\windows\system32\activeds.dll
c:\windows\system32\adsldpc.dll
c:\windows\system32\setupapi.dll
c:\windows\system32\rasapi32.dll
c:\windows\system32\rasman.dll
c:\windows\system32\tapi32.dll
c:\windows\system32\schannel.dll
c:\windows\system32\winscard.dll
c:\windows\system32\raschap.dll
c:\windows\system32\msv1_0.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\comres.dll
c:\windows\system32\msvcp60.dll
c:\windows\system32\wzcsapi.dll
c:\windows\system32\schedsvc.dll
c:\windows\system32\ntdsapi.dll
c:\windows\system32\msidle.dll
c:\windows\system32\audiosrv.dll
c:\windows\system32\wkssvc.dll
c:\windows\system32\cryptsvc.dll
c:\windows\system32\certcli.dll
c:\windows\system32\ersvc.dll
c:\windows\system32\es.dll
c:\windows\pchealth\helpctr\binaries\pchsvc.dll
c:\windows\system32\srvsvc.dll
c:\windows\system32\netman.dll
c:\windows\system32\netshell.dll
c:\windows\system32\credui.dll
c:\windows\system32\hnetcfg.dll
c:\windows\system32\seclogon.dll
c:\windows\system32\sens.dll
c:\windows\system32\srsvc.dll
c:\windows\system32\powrprof.dll
c:\windows\system32\trkwks.dll
c:\windows\system32\w32time.dll
c:\windows\system32\wbem\wmisvc.dll
c:\windows\system32\vssapi.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\wuauserv.dll
c:\windows\system32\browser.dll
c:\windows\system32\wuaueng.dll
c:\windows\system32\winspool.drv
c:\windows\system32\winhttp.dll
c:\windows\system32\cabinet.dll
c:\windows\system32\mspatcha.dll
c:\windows\system32\wscsvc.dll
c:\windows\system32\msi.dll
c:\windows\system32\wbem\wbemcomn.dll
c:\windows\system32\wbem\wbemcore.dll
c:\windows\system32\wbem\esscli.dll
c:\windows\system32\wbem\fastprox.dll
c:\windows\system32\wbem\wbemsvc.dll
c:\windows\system32\wbem\wmiutils.dll
c:\windows\system32\wbem\repdrvfs.dll
c:\windows\system32\sxs.dll
c:\windows\system32\comsvcs.dll
c:\windows\system32\colbact.dll
c:\windows\system32\mtxclu.dll
c:\windows\system32\wsock32.dll
c:\windows\system32\clusapi.dll
c:\windows\system32\resutils.dll
c:\windows\system32\wbem\wmiprvsd.dll
c:\windows\system32\ncobjapi.dll
c:\windows\system32\ipnathlp.dll
c:\windows\system32\authz.dll
c:\windows\system32\wbem\wbemess.dll
c:\windows\system32\wbem\ncprov.dll
c:\windows\system32\sfc.dll
c:\windows\system32\sfc_os.dll
c:\windows\system32\rasadhlp.dll
c:\windows\system32\netcfgx.dll
c:\windows\system32\upnp.dll
c:\windows\system32\ssdpapi.dll
c:\windows\system32\rasmans.dll
c:\windows\system32\winipsec.dll
c:\windows\system32\tapisrv.dll
c:\windows\system32\psapi.dll
c:\windows\system32\rastapi.dll
c:\windows\system32\unimdm.tsp
c:\windows\system32\uniplat.dll
c:\windows\system32\kmddsp.tsp
c:\windows\system32\ndptsp.tsp
c:\windows\system32\ipconf.tsp
c:\windows\system32\h323.tsp
c:\windows\system32\hidphone.tsp
c:\windows\system32\hid.dll
c:\windows\system32\rasppp.dll
c:\windows\system32\ntlsapi.dll
c:\windows\system32\kerberos.dll
c:\windows\system32\cryptdll.dll
c:\windows\system32\rasdlg.dll
c:\windows\system32\apphelp.dll
c:\windows\system32\advpack.dll
c:\windows\system32\qmgr.dll
c:\windows\system32\mpr.dll
c:\windows\system32\shfolder.dll
c:\windows\system32\catsrvut.dll
c:\windows\system32\catsrv.dll
c:\windows\system32\mfcsubs.dll
c:\windows\system32\urlmon.dll
c:\windows\system32\wups2.dll
c:\windows\system32\svchost.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\shimeng.dll
c:\windows\apppatch\acgenral.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\winmm.dll
c:\windows\system32\ole32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\msacm32.dll
c:\windows\system32\version.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\userenv.dll
c:\windows\system32\uxtheme.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
c:\windows\system32\comctl32.dll
c:\windows\system32\dnsrslvr.dll
c:\windows\system32\dnsapi.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\ws2help.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\hnetcfg.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\svchost.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\rpcrt4.dll
c:\windows\system32\shimeng.dll
c:\windows\apppatch\acgenral.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\winmm.dll
c:\windows\system32\ole32.dll
c:\windows\system32\msvcrt.dll
c:\windows\system32\oleaut32.dll
c:\windows\system32\msacm32.dll
c:\windows\system32\version.dll
c:\windows\system32\shell32.dll
c:\windows\system32\shlwapi.dll
c:\windows\system32\userenv.dll
c:\windows\system32\uxtheme.dll
c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
c:\windows\system32\comctl32.dll
c:\windows\system32\ntmarta.dll
c:\windows\system32\wldap32.dll
c:\windows\system32\samlib.dll
c:\windows\system32\xpsp2res.dll
c:\windows\system32\lmhsvc.dll
c:\windows\system32\iphlpapi.dll
c:\windows\system32\ws2_32.dll
c:\windows\system32\ws2help.dll
c:\windows\system32\webclnt.dll
c:\windows\system32\wininet.dll
c:\windows\system32\crypt32.dll
c:\windows\system32\msasn1.dll
c:\windows\system32\secur32.dll
c:\windows\system32\wsock32.dll
c:\windows\system32\ssdpsrv.dll
c:\windows\system32\hnetcfg.dll
c:\windows\system32\clbcatq.dll
c:\windows\system32\comres.dll
c:\windows\system32\mswsock.dll
c:\windows\system32\wshtcpip.dll
c:\windows\system32\upnphost.dll
c:\windows\system32\winhttp.dll
c:\windows\system32\ssdpapi.dll
c:\windows\system32\netapi32.dll
C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST4\ASWUPDSV.EXE
c:\program files\alwil software\avast4\aswupdsv.exe
c:\windows\system32\ntdll.dll
c:\windows\system32\kernel32.dll
c:\program files\alwil software\avast4\aswcmns.dll
c:\program files\alwil software\avast4\aswcmnos.dll
c:\windows\system32\user32.dll
c:\windows\system32\gdi32.dll
c:\windows\system32\advapi32.dll
c:\windows\system32\rp
0
blackcat9 Messages postés 25 Date d'inscription mardi 28 août 2007 Statut Membre Dernière intervention 12 septembre 2007
28 août 2007 à 23:48
voila navifix (ou un truk comme sa).voila je crois que c'est bon! que dois-je faire maintenant?




Search Navipromo version 2.0.9 commencé le 28/08/2007 à 23:30:06,93

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Poster ce rapport sur le forum pour le faire analyser !!!
!!! Ne pas lancer la partie désinfection sans l'avis d'un spécialiste !!!

Fix lancé depuis C:\Program Files\navilog1
Mise a jour le 20.08.2007 a 22h30 by IL-MAFIOSO

Executé en mode normal

*** Recherche Programmes installes ***


MessengerSkinner


*** Recherche dossiers dans C:\WINDOWS ***




*** Recherche dossiers dans C:\Program Files ***


C:\Program Files\MessengerSkinner trouvé !


*** Recherche dossiers dans C:\Documents and Settings\All Users\Application Data ***




*** Recherche dossiers dans C:\Documents and Settings\tiffany\Application Data ***



*** Recherche avec BlackLight Engine/F-secure ***
BlackLight Engine est un produit de F-secure, pour + d'infos :
https://www.f-secure.com/en

Fichier(s) caché(s) dans C:\WINDOWS\system32 :

c:\WINDOWS\system32\aukdoin.dat
C:\windows\system32\aukdoin.exe
c:\WINDOWS\system32\aukdoin_nav.dat
c:\WINDOWS\system32\aukdoin_navps.dat

Processus caché(s) dans C:\WINDOWS\system32 :

C:\windows\system32\aukdoin.exe


*** Recherche avec GenericNaviSearch ***
!!! Tous Ces résultats peuvent révéler des fichiers légitimes !!!
!!! A verifier impérativement avant toute suppression manuelle !!!

Fichiers trouvés :

C:\WINDOWS\system32\aukdoin.exe trouvé !

Fichiers suspects :

Aucun Fichier suspect trouvé !



*** Recherche fichiers ***


C:\WINDOWS\pack.epk trouvé !
C:\WINDOWS\system32\nvs2.inf trouvé !


*** Recherche cles registre ***


Recherche dans [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs]



Recherche dans [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage]



Recherche Clé Magic Control

HKEY_CURRENT_USER\Software\Lanconfig trouvé !


*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Recherche fichiers connus:


2)Recherche Heuristique :
*
C:\WINDOWS\system32\aukdoin.dat trouvé !
C:\WINDOWS\system32\kpnbtm.dat trouvé !
C:\WINDOWS\system32\ucjqxeflsh.dat trouvé !
**
C:\WINDOWS\system32\aukdoin.dat trouvé !
C:\WINDOWS\system32\kpnbtm.dat trouvé !
C:\WINDOWS\system32\ucjqxeflsh.dat trouvé !
***
****
C:\WINDOWS\system32\kpnbtm_navps.dat trouvé !
C:\WINDOWS\system32\ucjqxeflsh_navps.dat trouvé !
*****
******
*******
********
C:\WINDOWS\system32\alalaemava.exe trouvé !


3)Recherche Certificats :

Certificat Egroup trouvé !


*** Analyse Terminé le 28/08/2007 à 23:40:27,29 ***
0
Lyonnais92 Messages postés 25159 Date d'inscription vendredi 23 juin 2006 Statut Contributeur sécurité Dernière intervention 16 septembre 2016 1 536
29 août 2007 à 00:14
Re,

pour avancer !^^!ME

Double clique sur le raccourci Navilog1 présent sur le bureau et laisse-toi guider.
Au menu principal, choisis 2 et valide.

Le fix va t'informer qu'il va alors redémarrer ton PC
Ferme toutes les fenêtres ouvertes et enregistre tes documents personnels ouverts
Appuie sur une touche comme demandé.
(si ton Pc ne redémarre pas automatiquement, fais le toi même)
Au redémarrage de ton PC, choisis ta session habituelle.

Patiente jusqu'au message :
*** Nettoyage Termine le ..... ***
Le blocnote va s'ouvrir.
Sauvegarde le rapport de manière à le retrouver
Referme le blocnote. Ton bureau va réapparaitre

PS:Si ton bureau ne réapparait pas, fais CTRL+ALT+SUPP pour ouvrir le gestionnaire de tâches.
Puis rends-toi à l'onglet "processus". Clique en haut à gauche sur fichiers et choisis "exécuter"
Tape explorer et valide. Celà te fera apparaitre ton bureau.

Poste le rapport de navifix.

@+
0
!^^![ME] Messages postés 4744 Date d'inscription dimanche 10 juin 2007 Statut Contributeur Dernière intervention 1 mars 2020 395
29 août 2007 à 10:33
merci lyonnais...black t'a plus qu'a faire ca...
0
blackcat9 Messages postés 25 Date d'inscription mardi 28 août 2007 Statut Membre Dernière intervention 12 septembre 2007
29 août 2007 à 12:55
rebonojours!
merci de votre aides^^ voila le rapport!
Clean Navipromo version 2.0.9 commencé le 29/08/2007 à 12:45:57,95

Fix lancé depuis C:\Program Files\navilog1
Mise a jour le 20.08.2007 a 22h30 by IL-MAFIOSO

Mode suppression automatique avec prise en charge résultats Blacklight


*** Creation backups fichiers trouvés par Blacklight ***

Copie vers "C:\Program Files\navilog1\Backupnavi"


*** Suppression des fichiers trouvés avec Blacklight ***

c:\WINDOWS\system32\aukdoin.dat supprimé !
C:\windows\system32\aukdoin.exe supprimé !
c:\WINDOWS\system32\aukdoin_nav.dat supprimé !
c:\WINDOWS\system32\aukdoin_navps.dat supprimé !

** 2ème passage **

C:\WINDOWS\system32\aukdoin.exe absent !
C:\WINDOWS\system32\aukdoin.dat absent !
C:\WINDOWS\system32\aukdoin_nav.dat absent !
C:\WINDOWS\system32\aukdoin_navps.dat absent !
C:\WINDOWS\system32\aukdoin_navup.dat absent !
C:\WINDOWS\system32\aukdoin_navtmp.dat absent !
C:\WINDOWS\system32\aukdoin_m2s.xml absent !


C:\WINDOWS\prefetch\aukdoin*.pf trouvé !
Copie C:\WINDOWS\prefetch\aukdoin*.pf réalise avec succes !
C:\WINDOWS\prefetch\aukdoin*.pf supprimé !


*** Recherche avec GenericNaviSearch ***
!!! Ces résultats peuvent révéler des fichiers légitimes !!!
!!! A verifier impérativement avant toute suppression manuelle !!!

Fichiers trouvés supprimés avec backups :

Aucun Fichier trouvé !

Fichiers suspects :

Aucun Fichier suspect trouvé !


*** Suppression dossiers dans C:\WINDOWS ***


*** Suppression dossiers dans C:\Program Files ***

C:\Program Files\MessengerSkinner ...suppression...
C:\Program Files\MessengerSkinner supprimé !


*** Suppression dossiers dans C:\Documents and Settings\All Users\Application Data ***


*** Suppression dossiers dans C:\Documents and Settings\tiffany\Application Data ***



*** Suppression fichiers ***

C:\WINDOWS\pack.epk supprimé !
C:\WINDOWS\system32\nvs2.inf supprimé !

*** Suppression fichiers temporaires ***

Nettoyage contenu C:\WINDOWS\Temp effectué !
Nettoyage contenu C:\Documents and Settings\tiffany\Local Settings\Temp effectué !

*** Traitement Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Recherche fichiers connus:


2)Recherche et Suppression Heuristique :

*
C:\WINDOWS\System32\kpnbtm.dat trouvé !
Copie C:\WINDOWS\system32\kpnbtm.dat réalise avec succes !
C:\WINDOWS\system32\kpnbtm.dat supprimé !

C:\WINDOWS\System32\ucjqxeflsh.dat trouvé !
Copie C:\WINDOWS\system32\ucjqxeflsh.dat réalise avec succes !
C:\WINDOWS\system32\ucjqxeflsh.dat supprimé !

**
***
****
C:\WINDOWS\System32\kpnbtm_navps.dat trouvé !
Copie C:\WINDOWS\system32\kpnbtm_navps.dat réalise avec succes !
C:\WINDOWS\system32\kpnbtm_navps.dat supprimé !

C:\WINDOWS\System32\ucjqxeflsh_navps.dat trouvé !
Copie C:\WINDOWS\system32\ucjqxeflsh_navps.dat réalise avec succes !
C:\WINDOWS\system32\ucjqxeflsh_navps.dat supprimé !

*****
C:\WINDOWS\System32\kpnbtm_nav.dat trouvé !
Copie C:\WINDOWS\system32\kpnbtm_nav.dat réalise avec succes !
C:\WINDOWS\system32\kpnbtm_nav.dat supprimé !

C:\WINDOWS\System32\ucjqxeflsh_nav.dat trouvé !
Copie C:\WINDOWS\system32\ucjqxeflsh_nav.dat réalise avec succes !
C:\WINDOWS\system32\ucjqxeflsh_nav.dat supprimé !

******
*******
********
C:\WINDOWS\system32\alalaemava.exe trouvé !
Copie C:\WINDOWS\system32\alalaemava.exe réalise avec succes !
C:\WINDOWS\system32\alalaemava.exe supprimé !


3)Certificats :

Certificat Egroup supprimé !

*** Sauvegarde du registre vers dossier Backupnavi ***

sauvegarde du registre réalise avec succes !


*** Nettoyage registre ***

Nettoyage registre Ok


*** Nettoyage termine le 29/08/2007 à 12:51:26,65 ***
0
^^Marie^^ Messages postés 113901 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 3 275
29 août 2007 à 13:04
Salut ME

Attention ==> C:\DOCUME~1\ALEXAN~1\LOCALS~1\Temp\Rar$EX00.610\HijackThis.exe
Le log hitjakthis est mal placé
Il faut qu'il soit en C/:
0
!^^![ME] Messages postés 4744 Date d'inscription dimanche 10 juin 2007 Statut Contributeur Dernière intervention 1 mars 2020 395
29 août 2007 à 13:17
merci marie... black reinstaller hijackthis en :C et le renommer en test.exe
0
blackcat9 Messages postés 25 Date d'inscription mardi 28 août 2007 Statut Membre Dernière intervention 12 septembre 2007
29 août 2007 à 13:23
ok mais ou vous trouvez :c pasque moi j'ai c: mais je ne sais pas ou trouvez l'autre!
0
!^^![ME] Messages postés 4744 Date d'inscription dimanche 10 juin 2007 Statut Contributeur Dernière intervention 1 mars 2020 395
29 août 2007 à 13:26
fait comme ceci:
http://forum.telecharger.01net.com/microhebdo/questions_techniques_diverses/securite/tuto2_hijackthis_202_version_install-346620/messages-1.html
0