fenetre cidFermé

Question

Bonjour,
J'ai des fenetre publicitaire cid qui s'ouvre, comment les supprimé et je crois que j'ai du nettoyage a faire sur mon ordi. Quelqu'un peut m'aider et que doit je vous transmet comme rapport pour avoir de l'aide et quel lien pour faire les rapport.

Ja'i tester avec plusieurs chose, mais on ne me trouve rien.

Merci d'avance pour votre aide

cgui33 · Answer

Salut 
Va voir ici : 
Comment bloquer les fenêtres CiD ? 

A+

green day · Answer

Salut

Télécharge ceci : 

Lien : http://www.commentcamarche.net/telecharger/telecharger 159 hijackthis

Démo : http://pageperso.aol.fr/balltrap34/demohijack.htm 

Choisir l'option "do a scan and a logfile", et faire un copier/coller du rapport ainsi générer sur le forum. 

++

nonog · Answer

Voilà mon rapport ,

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:17:39, on 06/01/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Labtec\Desktop\V5.1\moffice.exe
C:\Program Files\Labtec\Desktop\V5.1\kbdap32a.exe
C:\WINDOWS\VM_STI.EXE
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Labtec\Desktop\V5.1\MOUSE32A.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer optimisé pour MSN
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - C:\WINDOWS\system32\BhoECart.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [FLMOFFICE4DMOUSE] C:\Program Files\Labtec\Desktop\V5.1\moffice.exe
O4 - HKLM\..\Run: [OFFICEKB] C:\Program Files\Labtec\Desktop\V5.1\kbdap32a.exe
O4 - HKLM\..\Run: [Monitor] C:\WINDOWS\PixArt\PAC207\Monitor.exe
O4 - HKLM\..\Run: [BigDogPath] C:\WINDOWS\VM_STI.EXE VIMICRO USB PC Camera
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
O4 - HKLM\..\Run: [clock blue jugs wait] C:\Documents and Settings\All Users\Application Data\internet settings clock blue\Wma eq.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [EPSON Stylus DX4400 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATICAE.EXE /FU "C:\WINDOWS\TEMP\E_SA6.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner.exe" /AUTO
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: PacificPoker4 - {94EDF7B4-4272-4af3-8F8B-4E2F68E225B7} - D:\PROGRA~1\PACIFI~1\pacificpoker.exe
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - 
O16 - DPF: {45A0A292-ECC6-4D8F-9EA9-A4BD411D24C1} (king.com) - http://fr.midas.games.yahoo.net/ctl/kingcomie.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {C4925E65-7A1E-11D2-8BB4-00A0C9CC72C3} (Virtools WebPlayer Class) - http://a532.g.akamai.net/...
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

green day · Answer

Tu peux bien évidement commencer par le lien que t'a mis Cgui ! :-)

nonog · Answer

Ben enfait j'avais déja regardé ce lien et je pense que les fenetre étai bien du au faite que j'avais télécharger msn plus mais je les désinstaller et toujours pareil pour les autres option j'avais essayer de faire mais cela na pas virer les fenetre, il y en a moin mais il y en a encore.

green day · Answer

ok,

    * Faire un clic droit sur ce lien : http://perso.orange.fr/il.mafioso/Navifix/Navilog1.zip
    * Enregistrez la cible (du lien) sous... et enregistrez-le sur le bureau.
    * Faire un clic droit sur navilog1.zip et choisir "tout extraire"
    * Double-cliquez sur navilog1.bat
    * Arriver au menu principal, choisir l'option 1 et valider.
    * Patientez jusqu'au message : Analyse Termine le ...
    * Le rapport sera en outre sauvegardé à la racine du disque (fixnavi.txt), poste le stp

++

nonog · Answer

Bon voilà le rapport,

Search Navipromo version 3.3.9 commencé le 06/01/2008 à 22:46:37,79

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!

Outil exécuté depuis C:\Program Files
avilog1
Mise à jour le 06.01.2008 à 20h00 par IL-MAFIOSO


Microsoft Windows XP [version 5.1.2600]
Internet Explorer : 7.0.5730.11 
Système de fichiers : NTFS

Executé en mode normal

*** Recherche Programmes installés ***




*** Recherche dossiers dans C:\WINDOWS ***



*** Recherche dossiers dans C:\Program Files ***



*** Recherche dossiers dans C:\DOCUME~1\ALLUSE~1\APPLIC~1 ***




*** Recherche dossiers dans "C:\Documents and Settings\Emanuelle\application data" *** 



*** Recherche dossiers dans "C:\Documents and Settings\Emanuelle\MENUDM~1\PROGRA~1" *** 


*** Recherche dossiers dans C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1 ***


*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
pour + d'infos : http://www.gmer.net

Aucun Fichier trouvé



*** Recherche avec GenericNaviSearch ***
!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
!!! A vérifier impérativement avant toute suppression manuelle !!!

* Recherche dans C:\WINDOWS\system32 *

* Recherche dans "C:\Documents and Settings\Emanuelle\local settings\application data" * 



*** Recherche fichiers *** 




*** Recherche clés spécifiques dans le Registre ***


*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Recherche nouveaux fichiers Instant Access :


2)Recherche Heuristique :

* Dans C:\WINDOWS\system32 :


* Dans "C:\Documents and Settings\Emanuelle\local settings\application data" : 


3)Recherche Certificats :

Certificat Egroup absent !

4)Recherche fichiers connus :



*** Analyse terminée le 06/01/2008 à 22:50:04,67 ***

cgui33 · Answer

salut

Avec HijackThis : 
Do a system scan only 
Coche ces lignes :

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.msn.com/ 
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.msn.com/ 
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/ 
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer optimisé pour MSN 
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) 
O4 - HKLM\..\Run: [Monitor] C:\WINDOWS\PixArt\PAC207\Monitor.exe 
O4 - HKLM\..\Run: [clock blue jugs wait] C:\Documents and Settings\All Users\Application Data\internet settings clock blue\Wma eq.exe 
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe 
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') 
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') 
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') 
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') 
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab 
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - 
O16 - DPF: {45A0A292-ECC6-4D8F-9EA9-A4BD411D24C1} (king.com) - http://fr.midas.games.yahoo.net/ctl/kingcomie.cab 
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab 
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab 
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab 
O16 - DPF: {C4925E65-7A1E-11D2-8BB4-00A0C9CC72C3} (Virtools WebPlayer Class) - http://a532.g.akamai.net/... 

Arrête toutes les autres applications en cours et :
Fix checked 

Redémarre ton PC et reposte un log 
Y'a encore des trucs à voir je pense
A+

nonog · Answer

je coche toute ces ligne, ca ne craint rien ? sa va les supprimer ?

green day · Answer

une minute ! :-)

 il faut procéder par étape !! il est préférable de fixer les lignes à la fin de la désinfection ...

je temps de mettre la main sur lopxp et je te le poste !

++

green day · Answer

hop la !

Télécharge ceci: (by Moe) :

https://www.cjoint.com/?mFqYzUdxhw

Double clic sur Lopxpsetup.exe pour lancer l'installation
Au menu, choisir l'option 1
Patienter jusqu'à que l'on demande d'appuyer sur une touche, appuyer !
Une rapport sera alors crée, à copie/colle en entier sur le forum.


@+

nonog · Answer

le voilà 

Search Navipromo version 3.3.9 commencé le 06/01/2008 à 22:46:37,79

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!

Outil exécuté depuis C:\Program Files
avilog1
Mise à jour le 06.01.2008 à 20h00 par IL-MAFIOSO


Microsoft Windows XP [version 5.1.2600]
Internet Explorer : 7.0.5730.11 
Système de fichiers : NTFS

Executé en mode normal

*** Recherche Programmes installés ***




*** Recherche dossiers dans C:\WINDOWS ***



*** Recherche dossiers dans C:\Program Files ***



*** Recherche dossiers dans C:\DOCUME~1\ALLUSE~1\APPLIC~1 ***




*** Recherche dossiers dans "C:\Documents and Settings\Emanuelle\application data" *** 



*** Recherche dossiers dans "C:\Documents and Settings\Emanuelle\MENUDM~1\PROGRA~1" *** 


*** Recherche dossiers dans C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1 ***


*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
pour + d'infos : http://www.gmer.net

Aucun Fichier trouvé



*** Recherche avec GenericNaviSearch ***
!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
!!! A vérifier impérativement avant toute suppression manuelle !!!

* Recherche dans C:\WINDOWS\system32 *

* Recherche dans "C:\Documents and Settings\Emanuelle\local settings\application data" * 



*** Recherche fichiers *** 




*** Recherche clés spécifiques dans le Registre ***


*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Recherche nouveaux fichiers Instant Access :


2)Recherche Heuristique :

* Dans C:\WINDOWS\system32 :


* Dans "C:\Documents and Settings\Emanuelle\local settings\application data" : 


3)Recherche Certificats :

Certificat Egroup absent !

4)Recherche fichiers connus :



*** Analyse terminée le 06/01/2008 à 22:50:04,67 ***

green day · Answer

Ce n'est pas navilog, mais un nouveau programme lopxp !

nonog · Answer

Alors je coche les lignes de Cgui33 ou pas ?

Je veut surtout pas faire de bétise jchui un pro

green day · Answer

fais ceci stp :

Télécharge ceci: (by Moe) :

https://www.cjoint.com/?mFqYzUdxhw

Double clic sur Lopxpsetup.exe pour lancer l'installation
Au menu, choisir l'option 1
Patienter jusqu'à que l'on demande d'appuyer sur une touche, appuyer !
Une rapport sera alors crée, à copie/colle en entier sur le forum.


@+

nonog · Answer

green ces pas ca que je devait faire ? j'ai suivi ton lien !

green day · Answer

Lol ! ce n'est pas navillog mais un autre programme différent !

à télécharger à nouveau ! :)

nonog · Answer

j'arrive pas a le posté

green day · Answer

?? un message d'erreur ou problème technique ??

nonog · Answer

ben je le poste et sa fait comme si il était mis mais il apparait pas il est très long

nonog · Answer

je vais essayer en plusieur fois

<code>
Rapport Lopxp fait le 06/01/2008 à 23:46:41
Exécuté dans : C:\Program Files\Lopxp


Liste des processus actifs :

PID : 544 C:\WINDOWS\System32\smss.exe
PID : 592 C:\WINDOWS\system32\csrss.exe
PID : 616 C:\WINDOWS\system32\winlogon.exe
PID : 660 C:\WINDOWS\system32\services.exe
PID : 672 C:\WINDOWS\system32\lsass.exe
PID : 828 C:\WINDOWS\system32\svchost.exe
PID : 904 C:\WINDOWS\system32\svchost.exe
PID : 1000 C:\WINDOWS\System32\svchost.exe
PID : 1040 C:\WINDOWS\system32\svchost.exe
PID : 1176 C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PID : 1308 C:\Program Files\Alwil Software\Avast4\ashServ.exe
PID : 1608 C:\WINDOWS\system32\spoolsv.exe
PID : 1692 C:\WINDOWS\Explorer.EXE
PID : 1940 C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
PID : 1948 C:\Program Files\Labtec\Desktop\V5.1\moffice.exe
PID : 1956 C:\Program Files\Labtec\Desktop\V5.1\kbdap32a.exe
PID : 1972 C:\WINDOWS\VM_STI.EXE
PID : 1984 C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
PID : 2008 C:\WINDOWS\system32\ctfmon.exe
PID : 200 C:\WINDOWS\system32\svchost.exe
PID : 232 C:\Program Files\Labtec\Desktop\V5.1\MOUSE32A.EXE
PID : 300 C:\Program Files\Internet Explorer\IEXPLORE.EXE
PID : 512 C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
PID : 268 C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
PID : 1384 C:\WINDOWS\System32\alg.exe
PID : 280 C:\Program Files\Mozilla Firefox\firefox.exe
PID : 3624 C:\Program Files\MSN Messenger\msnmsgr.exe
PID : 3832 C:\Program Files\MSN Messenger\usnsvc.exe
PID : 2736 C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
PID : 3740 C:\WINDOWS\system32\cmd.exe
PID : 3704 C:\Program Files\Lopxp	ools\pv.exe

___________________________________________________________________________

[Tâches planifiées]


Aucune tâche planifiée détecté.

___________________________________________________________________________

[Listing des dossiers Application Data]


cr: Date Création | mo: Date Modification -=- Nom Court (8.3) -= Nom Long 


+- C:\Documents and Settings\All Users\Application Data

cr: 02/01/2008 13:12:27 | mo: 02/01/2008 13:12:27 -=- Avira -----= Avira
cr: 28/08/2007 20:18:38 | mo: 28/08/2007 20:18:45 -=- EPSON -----= EPSON
cr: 03/01/2008 22:52:59 | mo: 03/01/2008 22:52:59 -=- Grisoft ---= Grisoft
cr: 21/12/2007 20:50:33 | mo: 06/01/2008 13:46:49 -=- INTERN~1 --= internet settings clock blue
cr: 24/08/2007 16:08:56 | mo: 06/01/2008 21:41:57 -=- MICROS~1 --= Microsoft
cr: 06/01/2008 19:24:17 | mo: 06/01/2008 19:24:18 -=- TEMP ------= TEMP
cr: 28/08/2007 20:26:13 | mo: 28/08/2007 20:26:13 -=- UDL -------= UDL
cr: 08/09/2007 09:05:18 | mo: 08/09/2007 09:05:18 -=- WINDOW~2 --= Windows Genuine Advantage
cr: 06/09/2007 18:26:29 | mo: 06/01/2008 21:26:24 -=- WLINST~1 --= WLInstaller


+- C:\Documents and Settings\Emanuelle\Application Data

cr: 28/08/2007 22:14:36 | mo: 30/11/2007 20:20:03 -=- EPSON -----= EPSON
cr: 24/08/2007 21:55:24 | mo: 24/08/2007 21:55:24 -=- IDENTI~1 --= Identities
cr: 28/08/2007 20:20:30 | mo: 28/08/2007 20:20:30 -=- INSTAL~1 --= InstallShield
cr: 06/01/2008 21:46:37 | mo: 06/01/2008 21:46:37 -=- LIVE-P~1 --= Live-Prod
cr: 24/08/2007 15:40:45 | mo: 30/09/2007 16:06:12 -=- MACROM~1 --= Macromedia
cr: 24/08/2007 14:37:28 | mo: 27/12/2007 19:42:23 -=- MICROS~1 --= Microsoft
cr: 24/08/2007 15:12:24 | mo: 24/08/2007 15:12:24 -=- MICROS~2 --= Microsoft Web Folders
cr: 24/08/2007 15:05:01 | mo: 24/08/2007 15:05:01 -=- Mozilla ---= Mozilla
cr: 05/10/2007 21:29:20 | mo: 05/10/2007 21:29:20 -=- OMP -------= OMP
cr: 05/09/2007 20:21:40 | mo: 05/09/2007 20:21:40 -=- Sun -------= Sun
cr: 14/10/2007 18:55:29 | mo: 14/10/2007 18:55:29 -=- Talkback --= Talkback
cr: 24/08/2007 15:08:02 | mo: 24/08/2007 15:08:02 -=- vlc -------= vlc
cr: 24/08/2007 15:18:37 | mo: 06/09/2007 21:22:28 -=- XnView ----= XnView


+- C:\Documents and Settings\Emanuelle\Local Settings\Application Data

cr: 24/08/2007 21:55:24 | mo: 24/08/2007 21:55:24 -=- IDENTI~1 --= Identities
cr: 05/01/2008 16:16:34 | mo: 05/01/2008 16:16:45 -=- king.com --= king.com
cr: 24/08/2007 14:37:28 | mo: 03/01/2008 22:47:11 -=- MICROS~1 --= Microsoft
cr: 24/08/2007 15:05:01 | mo: 24/08/2007 15:05:01 -=- Mozilla ---= Mozilla
cr: 23/10/2007 19:07:28 | mo: 23/10/2007 19:07:28 -=- WMTOOL~1 --= WMTools Downloaded Files
cr: 24/08/2007 15:01:10 | mo: 24/08/2007 15:01:10 -=- {3248F~1 --= {3248F0A6-6813-11D6-A77B-00B0D0150060}
cr: 24/08/2007 19:29:06 | mo: 05/12/2007 10:05:13 -=- GDIPFONTCACHEV1.DAT

nonog · Answer

___________________________________________________________________________

[Listing du dossier Program Files]

+- C:\Program Files

cr: 24/08/2007 14:54:40 | mo: 24/08/2007 14:54:40 -=- ALWILS~1 --= Alwil Software
cr: 24/08/2007 15:06:57 | mo: 24/08/2007 15:07:00 -=- Audacity --= Audacity
cr: 31/10/2007 18:15:45 | mo: 31/10/2007 18:29:12 -=- Bank ------= Bank
cr: 01/12/2007 14:40:06 | mo: 01/12/2007 14:40:07 -=- CCleaner --= CCleaner
cr: 24/08/2007 14:19:18 | mo: 24/08/2007 14:19:18 -=- COMPLU~1 --= ComPlus Applications
cr: 29/08/2007 20:44:51 | mo: 17/09/2007 20:02:30 -=- COMPTE~1.0 --= Comptes et Budget Free V5.0
cr: 26/12/2007 18:23:03 | mo: 06/01/2008 14:24:19 -=- eMule -----= eMule
cr: 28/08/2007 20:15:05 | mo: 28/08/2007 20:23:21 -=- epson -----= epson
cr: 24/08/2007 16:09:45 | mo: 23/12/2007 19:19:45 -=- FICHIE~1 --= Fichiers communs
cr: 24/08/2007 15:06:14 | mo: 21/09/2007 23:10:47 -=- FOXITP~1 --= Foxit PDF
cr: 28/08/2007 20:22:50 | mo: 02/01/2008 14:10:57 -=- INSTAL~1 --= InstallShield Installation Information
cr: 24/08/2007 14:20:24 | mo: 12/12/2007 13:15:09 -=- INTERN~1 --= Internet Explorer
cr: 24/08/2007 15:01:29 | mo: 02/01/2008 13:07:35 -=- Java ------= Java
cr: 24/08/2007 19:07:31 | mo: 24/08/2007 19:07:31 -=- Labtec ----= Labtec
cr: 06/01/2008 21:45:23 | mo: 06/01/2008 21:48:15 -=- LIVEKI~1 --= LiveKillCleanMessenger
cr: 06/01/2008 23:11:43 | mo: 06/01/2008 23:46:42 -=- Lopxp -----= Lopxp
cr: 06/01/2008 13:44:32 | mo: 06/01/2008 20:54:36 -=- MESSEN~1 --= Messenger Plus! Live
cr: 24/08/2007 14:25:36 | mo: 24/08/2007 14:25:36 -=- MICROS~1 --= microsoft frontpage
cr: 24/08/2007 15:12:24 | mo: 24/08/2007 15:12:24 -=- MICROS~2 --= Microsoft Office
cr: 01/12/2007 18:19:19 | mo: 01/12/2007 18:19:19 -=- MICROS~4 --= Microsoft SQL Server Compact Edition
cr: 24/08/2007 15:15:07 | mo: 24/08/2007 15:15:07 -=- MICROS~3 --= Microsoft Visual Studio
cr: 24/08/2007 14:20:58 | mo: 24/08/2007 14:21:01 -=- MOVIEM~1 --= Movie Maker
cr: 24/08/2007 15:04:53 | mo: 06/01/2008 22:07:16 -=- MOZILL~1 --= Mozilla Firefox
cr: 06/01/2008 21:37:13 | mo: 06/01/2008 21:42:36 -=- MSNMES~1 --= MSN Messenger
cr: 03/01/2008 23:02:58 | mo: 06/01/2008 22:50:35 -=- Navilog1 --= Navilog1
cr: 24/08/2007 14:20:40 | mo: 24/08/2007 14:21:18 -=- NETMEE~1 --= NetMeeting
cr: 24/08/2007 14:20:36 | mo: 24/08/2007 15:53:20 -=- OUTLOO~1 --= Outlook Express
cr: 24/08/2007 14:56:01 | mo: 24/08/2007 14:56:08 -=- PDFCRE~1 --= PDFCreator
cr: 24/08/2007 15:03:55 | mo: 24/08/2007 15:37:17 -=- PHOTOF~1 --= PhotoFiltre
cr: 24/08/2007 14:22:23 | mo: 24/08/2007 14:22:23 -=- SERVIC~1 --= Services en ligne
cr: 24/08/2007 15:13:37 | mo: 24/08/2007 15:13:38 -=- SNAPSH~1 --= Snapshot Viewer
cr: 31/10/2007 18:21:21 | mo: 31/10/2007 18:21:21 -=- SOFTCH~1 --= SoftChris
cr: 06/01/2008 22:16:42 | mo: 06/01/2008 22:16:42 -=- TRENDM~1 --= Trend Micro
cr: 08/09/2007 09:28:03 | mo: 08/09/2007 09:28:03 -=- UNINST~1 --= Uninstall Information
cr: 24/08/2007 15:07:41 | mo: 24/08/2007 15:07:41 -=- VideoLAN --= VideoLAN
cr: 05/11/2007 22:19:55 | mo: 05/11/2007 22:19:55 -=- Vimicro ---= Vimicro
cr: 18/11/2007 14:56:34 | mo: 18/11/2007 14:57:41 -=- VIRTOO~1.5 ---= Virtools Web Player 3.5
cr: 29/12/2007 15:55:17 | mo: 29/12/2007 15:55:19 -=- VIRTUA~1 --= Virtualis
cr: 24/08/2007 19:29:37 | mo: 06/01/2008 21:34:34 -=- WI1F86~1 --= Windows Live
cr: 03/01/2008 21:24:44 | mo: 04/01/2008 21:20:34 -=- WIE5D0~1 --= Windows Live Safety Center
cr: 16/10/2007 10:18:12 | mo: 16/11/2007 23:23:56 -=- WI4DF6~1 --= Windows Media Connect 2
cr: 24/08/2007 14:19:04 | mo: 16/10/2007 10:18:11 -=- WINDOW~2 --= Windows Media Player
cr: 24/08/2007 14:18:27 | mo: 24/08/2007 14:18:52 -=- WINDOW~1 --= Windows NT
cr: 24/08/2007 14:22:28 | mo: 24/08/2007 14:22:28 -=- WINDOW~3 --= WindowsUpdate
cr: 24/08/2007 14:25:36 | mo: 24/08/2007 14:25:36 -=- xerox -----= xerox
cr: 24/08/2007 15:04:21 | mo: 24/08/2007 15:20:22 -=- XnView ----= XnView


___________________________________________________________________________

[Recherche programmes connus, liés à CiD]


C:\Program Files\Messenger Plus! Live


___________________________________________________________________________

[Clés registre de démarrage]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
   clock blue jugs wait	REG_SZ         	C:\Documents and Settings\All Users\Application Data\internet settings clock blue\Wma eq.exe

___________________________________________________________________________

[Popups autorisés]


[-] Internet Explorer :

Aucune adresse détectée dans la liste des sites autorisés à émettre des Popups.

[-] Mozilla Firefox

host	popup	2	febay.it
host	popup	2	www.asecurevalue.com
host	popup	2	kmpads.com
host	popup	2	bernaolatwin.com
host	popup	2	www.acemedic.com
host	popup	2	www.seproger.com
host	popup	2	fileprotector.com
host	popup	2	ads.kw.revenue.net
host	popup	2	llibero.it
host	popup	2	www.malwarealarm.com
host	popup	2	zsvcompany.com
host	popup	2	mp3bearshare.com
host	popup	2	glbdf.org
host	popup	2	www.bestmanage4.org
host	popup	2	virusburst.com
host	popup	2	www.toolbar3.trafficgeneration.biz
host	popup	2	winshow.biz
host	popup	2	www.dbdecicated.com
host	popup	2	katasweb.it
host	popup	2	libsero.it
host	popup	2	wwww.2211.net
host	popup	2	www.fastpspdownloads.com
host	popup	2	securitywarnings.net
host	popup	2	rrenitalia.it
host	popup	2	fp.gad-network.com
host	popup	2	supeeva.it
host	popup	2	www.core.psyche-evolution.com
host	popup	2	site-entrance.net
host	popup	2	x-webdesign.com
host	popup	2	spereva.it
host	popup	2	prostactive.com
host	popup	2	wm.buhartes.info
host	popup	2	www.tuttograis.it
host	popup	2	www.hobbypesca.com.br
host	popup	2	aitalia.it
host	popup	2	vac-soft.com
host	popup	2	www.megcodec.com
host	popup	2	www.rebay.it
host	popup	2	ocslab.com
host	popup	2	www.ebsy.it
host	popup	2	tixscali.it
host	popup	2	www.fgoogle.it
host	popup	2	ferrasri.it
host	popup	2	www.pochta.ru
host	popup	2	www.winantiviruspro.com
host	popup	2	www.curepcsolutions.com
host	popup	2	pizdato.biz
host	popup	2	www.worldsecurityonline.biz
host	popup	2	www.gazzxetta.it
host	popup	2	playon.play3w.com
host	popup	2	golftennis.net
host	popup	2	www.alltiettantivirus.com
host	popup	2	de.errorsafe.com
host	popup	2	www.downloadanysong.com
host	popup	2	pcopschoningsstel.com
host	popup	2	rosssoalice.it
host	popup	2	good-mortgages-calculator.com
host	popup	2	www.vi4rgilio.it
host	popup	2	kzdh.com
host	popup	2	www.xorriere.it
host	popup	2	www.todaysfreeclips.com
host	popup	2	www.free-download-place.com
host	popup	2	www.googld.it
host	popup	2	www.gqazzetta.it
host	popup	2	rightfinder.net
host	popup	2	freebookmarks.net
host	popup	2	www.vifgilio.it
host	popup	2	www.digikeygen.com
host	popup	2	getfreepornvideo.com
host	popup	2	spysoldier.com
host	popup	2	yeak.net
host	popup	2	www.bestxclips.com
host	popup	2	Antiworm2008.com
host	popup	2	hardcorepornmag.com
host	popup	2	www.little-help.com
host	popup	2	kataaweb.it
host	popup	2	bins.media-motor.net
host	popup	2	www.error404site.com
host	popup	2	googyle.it
host	popup	2	vivacodec.net
host	popup	2	onlysex.ws
host	popup	2	drocherway.com
host	popup	2	www.hushware.com
host	popup	2	www-spybot.net
host	popup	2	www.xsremover.com
host	popup	2	s4.bestmanage.org
host	popup	2	libereo.it
host	popup	2	www.systemupdates.net
host	popup	2	www.advcash.biz
host	popup	2	marketing-know-how.com
host	popup	2	airtleworld.com
host	popup	2	www.virusschlacht.com
host	popup	2	tisfcali.it
host	popup	2	hk.winantivirus.com
host	popup	2	www.paghinebianche.it
host	popup	2	turtogratis.it
host	popup	2	www.incredimail-download-now.com
host	popup	2	rb37.com
host	popup	2	www.dvdcodec.net
host	popup	2	bestporngate.com
host	popup	2	virfgilio.it
host	popup	2	www.7search.com
host	popup	2	unie.it
host	popup	2	crriere.it
host	popup	2	downloadfreeway.com
host	popup	2	bearsharepro2007.com
host	popup	2	mediacodec.net
host	popup	2	www.znext.com
host	popup	2	qmex.psyche-evolution.com
host	popup	2	kilosex.com
host	popup	2	www.frrrari.it
host	popup	2	enitinvest.net
host	popup	2	securityprecaution.net
host	popup	2	metafora.ru
host	popup	2	katawevb.it
host	popup	2	utils.winantivirus.com
host	popup	2	gootle.it
host	popup	2	missingcommand.com
host	popup	2	easysearchingtips.com
host	popup	2	pamelacollections.com
host	popup	2	ez-searching.com
host	popup	2	www.win-anti-virus-pro.com
host	popup	2	marketdart.com
host	popup	2	antispamdeluxe.com
host	popup	2	click-codec.com
host	popup	2	www.incredimailpro.com
host	popup	2	sexpatriot.net
host	popup	2	ibm.dmcast.com
host	popup	2	www.clckm.com
host	popup	2	www.securityupdatesite.com
host	popup	2	www.attackware.com
host	popup	2	acjp.com
host	popup	2	www.maturetoolbar.com
host	popup	2	www.lkbero.it
host	popup	2	www.truecodec.com
host	popup	2	www.redcodec.net
host	popup	2	dvdbank.org
host	popup	2	loweradult.com
host	popup	2	datingdoctorsite.com
host	popup	2	www.rossoalic.it
host	popup	2	www.privatexclips.com
host	popup	2	chrisswasey.com
host	popup	2	rossoaloice.it
host	popup	2	www.reepubblica.it
host	popup	2	www.traffbest.biz
host	popup	2	www.get-realplayer.com
host	popup	2	corruiere.it
host	popup	2	www.avpcheckupdate.com
host	popup	2	mediaactivexobject.com
host	popup	2	www.fr.drivecleaner.com
host	popup	2	antispywarexp.com
host	popup	2	clearsearch.net
host	popup	2	www.sipereva.it
host	popup	2	www.qmex.psyche-evolution.com
host	popup	2	new2sh.net
host	popup	2	www.vi5rgilio.it
host	popup	2	www.supeteva.it
host	popup	2	www.hachimitsu-lemon.com
host	popup	2	www.pornxxxfilm.com
host	popup	2	tutttogratis.it
host	popup	2	www.dailytoolbar.com
host	popup	1	www.journal-officiel.gouv.fr
host	popup	2	shopnav.com
host	popup	2	whitescat.com
host	popup	2	adsniffer.com
host	popup	2	iunito.it
host	popup	2	sbnt.com
host	popup	2	sacitylife.com
host	popup	2	www.asafebrowser.com
host	popup	2	www.tixscali.it
host	popup	2	forexcredit.com
host	popup	2	www.paginebiamnche.it
host	popup	2	download.contextplus.net
host	popup	2	advertising.paltalk.com
host	popup	2	www.gazzettsa.it
host	popup	2	irfanview-download-now.com
host	popup	2	paginegiallew.it
host	popup	2	www.hitsdriving.com
host	popup	2	www.gfazzetta.it
host	popup	2	www.1stpagehere.com
host	popup	2	www.5tiscali.it
host	popup	2	coirriere.it
host	popup	2	apsua.com
host	popup	2	sharedgamesite.com
host	popup	2	www.anti-virus-pro.com
host	popup	2	www.pornclipstube.com
host	popup	2	www.sef516.greatbahamas.com
host	popup	2	repubblivca.it
host	popup	2	www.all-edonkey.com
host	popup	2	yops.biz
host	popup	2	www.anti-vermins.com
host	popup	2	helpyourpcnow.com
host	popup	2	www.yoogee.com
host	popup	2	gazzett.it
host	popup	2	kastaweb.it
host	popup	2	www.exaccess.ru
host	popup	2	scanandrepair.com
host	popup	2	www.directporta.info
host	popup	2	fgoogle.it
host	popup	2	971searchbox.com
host	popup	2	site1.ru
host	popup	2	www.zpwebsource.com
host	popup	2	advertisemoney.info
host	popup	2	yim-stop.com
host	popup	2	internetanonymizer.com
host	popup	2	www.katawaeb.it
host	popup	2	www.kqzyfj.com
host	popup	2	www.superevaq.it
host	popup	2	cameup.com
host	popup	2	spybot-uk.com
host	popup	2	www.free-spybot.com
host	popup	2	buttejazz.org
host	popup	2	dietpills4free.com
host	popup	2	www.tuttoogratis.it
host	popup	2	www.reossoalice.it
host	popup	2	adsextend.net
host	popup	2	www.dateanychick.com
host	popup	2	eases.net
host	popup	2	70-music.com
host	popup	2	goohle.it
host	popup	2	hqexplicitvids.com
host	popup	2	www.xerocodec.com
host	popup	2	udefender.com
host	popup	2	sbvr.com
host	popup	2	movietooklit.com
host	popup	2	www.orriere.it
host	popup	2	paginebioanche.it
host	popup	2	www.uniformpornmag.com
host	popup	2	www.movietooklit.com
host	popup	2	controlmeh.com
host	popup	2	www.download-winrar.com
host	popup	2	fined.biz
host	popup	2	shareaza.click-new-download.com
host	popup	2	all-bittorrent.com
host	popup	2	www.toolbardollars.biz
host	popup	2	gfoogle.it
host	popup	2	pagiinebianche.it
host	popup	2	zero.bestmanage5.org
host	popup	2	www.linero.it
host	popup	2	www.sh.ncast.cn
host	popup	2	avsystemcare.com
host	popup	2	www.rrepubblica.it
host	popup	2	www.mwsn.it
host	popup	2	sexmaniack.com
host	popup	2	adultzoneworld.com
host	popup	2	www.repubbklica.it
host	popup	2	asiankingkong.com
host	popup	2	00hq.com
host	popup	2	www.karachun.biz

green day · Answer

édit : ok, vu

 je vois ça et te poste la manip

++

nonog · Answer

host	popup	2	alitaloia.it
host	popup	2	www.mmohsix.com
host	popup	2	calcioturris.com
host	popup	2	burgerkingbigscreen.com
host	popup	2	www.fixerantispy.com
host	popup	2	www.webaccelerating.com
host	popup	2	moviesdvds.net
host	popup	2	mirarsearch.com
host	popup	2	only-virgins.com
host	popup	2	www.corriuere.it
host	popup	2	www.webinvestigator.com
host	popup	2	www.sexolymp.com
host	popup	2	spywareknight.com
host	popup	2	www.accessthefuture.net
host	popup	2	www.spywarezapper.com
host	popup	2	ert0003.e76.163ns.com
host	popup	2	esafetypage.com
host	popup	2	passtosites.net
host	popup	2	googlre.it
host	popup	2	sisdotnet.com
host	popup	2	superebva.it
host	popup	2	www.glogle.it
host	popup	2	www.www-audacity.com
host	popup	2	access-dvd.com
host	popup	2	paginebuianche.it
host	popup	2	www.grepubblica.it
host	popup	2	ignphrases.com
host	popup	2	holidayautostr.com
host	popup	2	ie-search.com
host	popup	2	ipo.net
host	popup	2	allvideoactivex.com
host	popup	2	www.trenitaliia.it
host	popup	2	irfanview-center.com
host	popup	2	www.softcodec.com
host	popup	2	www.adawarenow.com
host	popup	2	spybot-sd.net
host	popup	2	es0-www.5zgmu7o20kt5d8yq.com
host	popup	2	xtravideos.com
host	popup	2	pastubes.com
host	popup	2	www.virgioio.it
host	popup	2	savehits.com
host	popup	2	fastssearch.com
host	popup	2	www.cracks4all.com
host	popup	2	gad-network.com
host	popup	2	enay.it
host	popup	2	full-search.net
host	popup	2	www.pornissex.com
host	popup	2	vapochille.com
host	popup	2	www.ebazy.it
host	popup	2	www.portal-ticket.com
host	popup	2	axsoftwaretool.com
host	popup	2	engineplay.com
host	popup	2	www.multi-pops.com
host	popup	2	mpeg-look.com
host	popup	2	www.gazzertta.it
host	popup	2	www.repibblica.it
host	popup	2	es9-www.5zgmu7o20kt5d8yq.com
host	popup	2	www.photoshop.downloadzcentral.com
host	popup	2	pharmalocator.com
host	popup	2	download.searchtabs.net
host	popup	2	www.activexsource.com
host	popup	2	winantiviruspro.com
host	popup	2	www.onlineinvestigator.com
host	popup	2	tiscal9.it
host	popup	2	superbgirlz.com
host	popup	2	www.mylimewirenetwork.com
host	popup	2	www.popunder.adtrgt.com
host	popup	2	adwareprotectionsite.com
host	popup	2	allhyperlinks.com
host	popup	2	rocketsearch.com
host	popup	2	www.adobe-downloads.com
host	popup	2	girls-porn-life.com
host	popup	2	ebjp.com
host	popup	2	casalemedia.com
host	popup	2	poker-casino-free.com
host	popup	2	www.rrossoalice.it
host	popup	2	maturespornmag.com
host	popup	2	best-counter.com
host	popup	2	www.antivirusgereedschap.com
host	popup	2	myfuncards.smileycentral.com
host	popup	2	www.virgtilio.it
host	popup	2	emch.com
host	popup	2	www.mp3-morpheus.com
host	popup	2	liberpo.it
host	popup	2	dogproblemswebsite.com
host	popup	2	fetrrari.it
host	popup	2	www.ebwmanufacture.com
host	popup	2	scripts.downloadv3.com
host	popup	2	www.spycontra.com
host	popup	2	dancingbabycd.com
host	popup	2	www.zippy-lookup.com
host	popup	2	adscontex.com
host	popup	2	www.hugeinvention.com
host	popup	2	sharempeg.com
host	popup	2	bb-search.com
host	popup	2	alertspy.com
host	popup	2	bcnproduction.com
host	popup	2	www.loibero.it
host	popup	2	www.mksn.it
host	popup	2	dl5.spywarestrike.com
host	popup	2	chriswallace.net
host	popup	2	10sek.com
host	popup	2	adobe-reader-8.fr
host	popup	2	esupereva.it
host	popup	2	download.jupitersatellites.biz
host	popup	2	kataweeb.it
host	popup	2	www.bearshare.download-me.info
host	popup	2	ga31.com
host	popup	2	lesbianspornmag.com
host	popup	2	zabywjwzlr.biz.biz
host	popup	2	access.Navinetwork.com
host	popup	2	gazxetta.it
host	popup	2	www.bestmanage6.org
host	popup	2	www.googloe.it
host	popup	2	ljibero.it
host	popup	2	www.sitesticket.net
host	popup	2	idbl.idblg.com
host	popup	2	www.katqaweb.it
host	popup	2	xbeta69.com
host	popup	2	www.p2p-heute.de
host	popup	2	www.downloadmax.net
host	popup	2	www.mediacount.net
host	popup	2	netyellowpages.info
host	popup	2	www.kibero.it
host	popup	2	www.wintvguide.com
host	popup	2	sureadult.com
host	popup	2	www.virgjilio.it
host	popup	2	yahoo.downloadznow.net
host	popup	2	truttogratis.it
host	popup	2	www.kataewb.it
host	popup	2	tkiscali.it
host	popup	2	ferreari.it
host	popup	2	thenewsearch.com
host	popup	2	www.alitralia.it
host	popup	2	winzip-hq.com
host	popup	2	vidaccess.net
host	popup	2	male4free.com
host	popup	2	www.corriwre.it
host	popup	2	www.download-all-4-free.com
host	popup	2	oborot.com
host	popup	2	www.katazweb.it
host	popup	2	engine-ticket.com
host	popup	2	superteva.it
host	popup	2	tvcodec.com
host	popup	2	corrierse.it
host	popup	2	www.alldnserrors.com
host	popup	2	www.kimsoftware.com
host	popup	2	www.unubo.it
host	popup	2	paginebianchee.it
host	popup	2	find4u.net
host	popup	2	www.dl.targetsaver.com
host	popup	2	www.x-pornmoviez.com
host	popup	2	www.tossoalice.it
host	popup	2	libewro.it
host	popup	2	winrar-hq.com
host	popup	2	www.v8rgilio.it
host	popup	2	bestxxxmpegs.com
host	popup	2	www.rossoaslice.it
host	popup	2	www.spywareremoversite.com
host	popup	2	free-music-network.com
host	popup	2	searchexpander.com
host	popup	2	www.tikscali.it
host	popup	2	smds.com
host	popup	2	www.winmx-music-download.com
host	popup	2	sexmoviesnet.com
host	popup	2	x-ratedclips.com
host	popup	2	unknownip.com
host	popup	2	hand-book.com
host	popup	2	xlola.underagehost.com
host	popup	2	alitaliua.it
host	popup	2	safetydownload.com
host	popup	2	kyoishusei.com
host	popup	2	installvaxobject.com
host	popup	2	getfound.com
host	popup	2	search123forme.com
host	popup	2	warningiepage.com
host	popup	2	www.libeeo.it
host	popup	2	www.free-music-network.com
host	popup	2	www.rzvonporn.com
host	popup	2	sexfiles.nu
host	popup	2	infport.com
host	popup	2	www.searchtab.net
host	popup	2	kmataweb.it
host	popup	2	software-club.com
host	popup	2	repubblpica.it
host	popup	2	mediaplayer-2007.com
host	popup	2	download.winfixer.com
host	popup	2	y-e-l-l-o-w.com
host	popup	2	www.mooncodec.com
host	popup	2	rephubblica.it
host	popup	2	goodsexs.com
host	popup	2	igetnet.com
host	popup	2	www.go0ogle.it
host	popup	2	accessthefuture.net
host	popup	2	libergo.it
host	popup	2	www.reverseindexlookup.com
host	popup	2	goovle.it
host	popup	2	chelancatering.com
host	popup	2	free-bearshares.com
host	popup	2	virgiklio.it
host	popup	2	www.directdvdpro.com
host	popup	2	www.errorsafe.com
host	popup	2	www.anjpnzqav.biz
host	popup	2	new-incest.com
host	popup	2	www.dailypornmag.com
host	popup	2	kliksoftware.com
host	popup	2	www.greatadultvideo.com
host	popup	2	tisclai.it
host	popup	2	008i.com
host	popup	2	signupprocess.com
host	popup	2	www.vikrgilio.it
host	popup	2	incredimailpro.com
host	popup	2	www.xbxxrvnyes.com
host	popup	2	www.repubnlica.it
host	popup	2	bullseye-network.com
host	popup	2	www.repubblicca.it
host	popup	2	vigrilio.it
host	popup	2	www.liberol.it
host	popup	2	www.lordoftibia.pl
host	popup	2	clackamasliteraryreview.com
host	popup	2	attackware.com
host	popup	2	www.malwarewiped.com
host	popup	2	tutogratis.it
host	popup	2	avast-downloads.com
host	popup	2	yboeragu.com
host	popup	2	hao123.com
host	popup	2	onlineinvestigator.com
host	popup	2	www.myfuncards.smileycentral.com
host	popup	2	www.virusranger.com
host	popup	2	www.rossolice.it
host	popup	2	www.emcodec.com
host	popup	2	jkataweb.it
host	popup	2	www.downloadzfree.com
host	popup	2	ad-ware.cc
host	popup	2	eepubblica.it
host	popup	2	www.videosfan.com
host	popup	2	www.activexmediasoftware.com
host	popup	2	www.yoursearchspace.com
host	popup	2	global-finder.com
host	popup	2	acrobat-2007.com
host	popup	2	www.paginebiancge.it
host	popup	2	robbsproshop.com
host	popup	2	mrtg.jps.ru
host	popup	2	oddsjackpot.info
host	popup	2	www.net-nucleus.com
host	popup	2	www.paginebiancxhe.it
host	popup	2	oridian.com
host	popup	2	yahabags.com
host	popup	2	tiscalil.it
host	popup	2	virgfilio.it
host	popup	2	www.nowayvirus.com
host	popup	2	www.irfanview-stop.com
host	popup	2	www.mp3review.biz
host	popup	2	leannalovelace.com
host	popup	2	www.tiscalil.it
host	popup	2	www.addictivetechnologies.net
host	popup	2	www.libdero.it
host	popup	2	www.v9rgilio.it
host	popup	2	globe-finder.cc
host	popup	2	www.webtop100.net
host	popup	2	file1.qqhelper.com
host	popup	2	www.securityfeature.com
host	popup	2	www.asecureboard.com
host	popup	2	klikadvertising.com
host	popup	2	dcfitusa.com
host	popup	2	incredimail-download-now.com
host	popup	2	download-antivir.com
host	popup	2	trenitslia.it
host	popup	2	download13.spywarequake.com
host	popup	2	filetretporn.com
host	popup	2	virvilio.it
host	popup	2	www.youriesecure.com
host	popup	2	secret-crush.com
host	popup	2	www.yoogle.it
host	popup	2	www.mediaplayer-download-now.com
host	popup	2	www.suppereva.it
host	popup	2	www.content.ireit.com
host	popup	2	katfaweb.it
host	popup	2	www.searchweb2.com
host	popup	2	easypspdownloads.com
host	popup	2	googel.it
host	popup	2	rossoalixe.it
host	popup	2	readagreement.net
host	popup	2	www.spyheal.com
host	popup	2	www.abrp.net
host	popup	2	paginebiamnche.it
host	popup	2	www.ace-webmaster.com
host	popup	2	www.googlf.it
host	popup	2	popunder.adtrgt.com
host	popup	2	www.my-ipodaccess.com
host	popup	2	core.psyche-evolution.com
host	popup	2	kannylizaciya.info
host	popup	2	www.xtravideos.com
host	popup	2	www.my-software-space.com
host	popup	2	newtopsites.com
host	popup	2	hostance.net
host	popup	2	azzetta.it
host	popup	2	cpvfeed.com
host	popup	2	cryptdrive.com
host	popup	2	www.suypereva.it
host	popup	2	www.www-spybot.net
host	popup	2	hervam.com
host	popup	2	kataqeb.it
host	popup	2	get.hitvirus.com
host	popup	2	busysearch.net
host	popup	2	www.maxifile.com
host	popup	2	univo.it
host	popup	2	dailytoolbar.com
host	popup	2	www.bardownload.com
host	popup	2	xic-bs.com
host	popup	2	cdn.drivecleaner.com
host	popup	2	accesskeygenerator.com
host	popup	2	www.Antispionagepro.com
host	popup	2	www.adultzoneworld.com
host	popup	2	www.cliks.org
host	popup	2	www.libvero.it
host	popup	2	www.2every.net
host	popup	2	www.superevba.it
host	popup	2	www.vidaccess.net
host	popup	2	yourbookmarks.info
host	popup	2	www.repubblicva.it
host	popup	2	www.buytraff.biz
host	popup	2	medcodec.com
host	popup	2	porncamz.com
host	popup	2	mediaobjectguide.com
host	popup	2	treniralia.it
host	popup	2	www.roissoalice.it
host	popup	2	unig.it
host	popup	2	www.games-desktop.com
host	popup	2	diskretter.com
host	popup	2	www.mega-adult.com
host	popup	2	traffstats.biz
host	popup	2	www.36site.com
host	popup	2	activexvideotool.com
host	popup	2	mp3downloadin.net
host	popup	2	www.libwro.it
host	popup	2	www.vaxobjectinstall.com
host	popup	2	www.mt-download.com
host	popup	2	adulthyperlinks.com
host	popup	2	virgoilio.it
host	popup	2	teens4free.net
host	popup	2	pandadownload-now.com
host	popup	2	www.repubblpica.it
host	popup	2	stop-tracking.biz
host	popup	2	www.adshttp.com
host	popup	2	googlus.com
host	popup	2	browserwise.com
host	popup	2	jackpotcheck.info
host	popup	2	the-ticket.net
host	popup	2	www.enterthesearch.com
host	popup	2	www.search101online.com
host	popup	2	eager-sex.com
host	popup	2	supwereva.it
host	popup	2	easymp3musicnow.com
host	popup	2	www.adultmovieplus.com
host	popup	2	www.spylog.com
host	popup	2	www.rossoalie.it
host	popup	2	wabq.com
host	popup	2	toolbartraff.biz
host	popup	2	gtiscali.it
host	popup	2	www.freedownloadzone.com
host	popup	2	www.ipoddownloadingpro.com
host	popup	2	ads183.com
host	popup	2	myadultexplorer.com
host	popup	2	accessvid.net
host	popup	2	www.spybot-sd.net
host	popup	2	wwwpokerplayers.com
host	popup	2	security-warning.biz
host	popup	2	www.mp3easyplay.com
host	popup	2	www.zonealarm-download-now.com
host	popup	2	www.getpcmusic.com
host	popup	2	dl4.spyfalcon.com
host	popup	2	gazzettaq.it
host	popup	2	sexunique.net
host	popup	2	www.rosspoalice.it
host	popup	2	www.musicmatch.free-software-center.com
host	popup	2	photoshop.softwarecenterz.com
host	popup	2	tuttogrstis.it
host	popup	2	www.Backstripgirls.com
host	popup	2	xsremover.com
host	popup	2	secure.winantispam.com
host	popup	2	www.costrike.com
host	popup	2	lesbianpornmag.com
host	popup	2	corriedre.it
host	popup	2	www.hotmp3now.com
host	popup	2	wwwsearch.biz
host	popup	2	the818search-co.com
host	popup	2	repbblica.it
host	popup	2	tv-auf-dem-pc.de
host	popup	2	karleyt.narod.ru
host	popup	2	malwarewipesupport.com
host	popup	2	msnb.it
host	popup	2	www.downloads-free.org
host	popup	2	www.gokogle.it
host	popup	2	low-taxes.com
host	popup	2	www.paginebianchr.it
host	popup	2	www7.logih.com
host	popup	2	www.riscali.it
host	popup	2	freedownloadpage.com
host	popup	2	democodec.com
host	popup	2	www.nowsearchonline.org
host	popup	2	www.virglilio.it
host	popup	2	vfirgilio.it
host	popup	2	almanah.biz
host	popup	2	www.katawrb.it
host	popup	2	www.iesecurepage.com
host	popup	2	logerau11.com
host	popup	2	www.ebaxy.it
host	popup	2	smetsys.net
host	popup	2	www.rossoalixe.it
host	popup	2	www.katawseb.it
host	popup	2	www.virgili9.it
host	popup	2	goofgle.it
host	popup	2	dnl.mabou.org
host	popup	2	registrydebug.com
host	popup	2	rossoaice.it
host	popup	2	ad-w-a-r-e.com
host	popup	2	ulink7.dudu.com
host	popup	2	www.yiscali.it
host	popup	2	baygraphicsllc.com
host	popup	2	lilbero.it
host	popup	2	filevoom.com
host	popup	2	www.corrirre.it
host	popup	2	avideoaxaccess.com
host	popup	2	dionforvalleycouncil.org
host	popup	2	tiscaki.it
host	popup	2	www.urgentsystemupdate.com
host	popup	2	www.turtogratis.it
host	popup	2	imiserver.com
host	popup	2	www.alitalioa.it
host	popup	2	pornnightdreams.com
host	popup	2	nevest.net
host	popup	2	buy-find.info
host	popup	2	tiscalli.it
host	popup	2	ebkb.com
host	popup	2	www.free-avg.org
host	popup	2	www.supeereva.it
host	popup	2	www.supeeva.it
host	popup	2	www.fullsoftwaredownloadz.com
host	popup	2	bearshare-download.org
host	popup	2	suereva.it
host	popup	2	fullsoftwarecenter.com
host	popup	2	downloadxvids.com
host	popup	2	bearshare.download-me.info
host	popup	2	getdvdshrink2007.com
host	popup	2	www.burnsrecyclinginc.com
host	popup	2	liberro.it
host	popup	2	xyzlimited.com
host	popup	2	www.3ebay.it
host	popup	2	www.google4.it
host	popup	2	www.paginebianvhe.it
host	popup	2	www.thelimewiredownload.com
host	popup	2	installprovider.com
host	popup	2	www.reoubblica.it
host	popup	2	2020search.com
host	popup	2	uralitel.ru
host	popup	2	msnm.it
host	popup	2	dailyteenspic.com
host	popup	2	www.seektheglobe.com
host	popup	2	www.msnm.it
host	popup	2	imageaxaccesssoft.com
host	popup	2	www.spybot-now.com
host	popup	2	www.paginebiancche.it
host	popup	2	searchdom.net
host	popup	2	fvirgilio.it
host	popup	2	www.corrierse.it
host	popup	2	paginebiancge.it
host	popup	2	www.alialia.it
host	popup	2	www.seorganisation.com
host	popup	2	www.cryptdrive.com
host	popup	2	katawegb.it
host	popup	2	www.games.de.ag
host	popup	2	artachnid.com
host	popup	2	www.searchwebzone.com
host	popup	2	www.microantivirus.com
host	popup	2	dl2.spyheal.com
host	popup	2	himen.biz
host	popup	2	www.fidoproblems.com
host	popup	2	meta-porn.com
host	popup	2	www.deskwizz.com
host	popup	2	www.kaztaweb.it
host	popup	2	kqzyfj.com
host	popup	2	www.repuibblica.it
host	popup	2	warnomore.org
host	popup	2	www.tns-counter.ru
host	popup	2	xtremesoftware-ltd.com
host	popup	2	verkaufen.wegvonviren.com
host	popup	2	ebayg.it
host	popup	2	tdak.com
host	popup	2	spermatrix.com
host	popup	2	www.gaszzetta.it
host	popup	2	www.search200.com
host	popup	2	www.tisclai.it
host	popup	2	www.zurrusco.com
host	popup	2	mmcodec.com
host	popup	2	hotmp3music.com
host	popup	2	love-pix.com
host	popup	2	did.i-used.cc
host	popup	2	porn-party.net
host	popup	2	downloadlost.tv
host	popup	2	20x2p.com
host	popup	2	www.powerdvd-7.com
host	popup	2	www.imageaxaccesssoft.com
host	popup	2	www.Antiespionspack.com
host	popup	2	awmdabest.com
host	popup	2	thesafebar.com
host	popup	2	wm.vother.info
host	popup	2	www.tuttogrratis.it
host	popup	2	emule.mp3-muzic.com
host	popup	2	www.li8bero.it
host	popup	2	corroere.it
host	popup	2	galpostgirls.com
host	popup	2	www.gszzetta.it
host	popup	2	3322.org
host	popup	2	www.gaxzzetta.it
host	popup	2	dvdxgold.com
host	popup	2	www.gerrari.it
host	popup	2	virusscansite.com
host	popup	2	www.topsecuritypage.com
host	popup	2	superwva.it
host	popup	2	mp3downloadsnow.com
host	popup	2	paginegoalle.it
host	popup	2	www.virgilijo.it
host	popup	2	www.coolwebsearch.com
host	popup	2	saveli.com
host	popup	2	www.adsonwww.com
host	popup	2	teensact.com
host	popup	2	musicsite.com
host	popup	2	gazzetya.it
host	popup	2	www.ferrtari.it
host	popup	2	www.gazzettaq.it
host	popup	2	hi.studioaperto.net
host	popup	2	kartaweb.it
host	popup	2	alitalisa.it
host	popup	2	supereba.it
host	popup	2	overpro.com
host	popup	2	www.wm.komforochka.info
host	popup	2	remedyantispy.com
host	popup	2	www.kmataweb.it
host	popup	2	adnetserver.com
host	popup	2	getpornmag.com
host	popup	2	www.aaabesthomepage.com
host	popup	2	cirriere.it
host	popup	2	virgiljio.it
host	popup	2	www.paginevbianche.it
host	popup	2	host-codec.com
host	popup	2	www.cinemadownload.com
host	popup	2	www.win-virus-pro.com
host	popup	2	www.cvirgilio.it
host	popup	2	p2psoft.biz
host	popup	2	cdn.winsoftware.com
host	popup	2	realarea.biz
host	popup	2	spywareno.com
host	popup	2	www.activexemedia.com
host	popup	2	macrovirus.com
host	popup	2	www.painegialle.it
host	popup	2	rtrenitalia.it
host	popup	2	topsite.us
host	popup	2	bearsharelive.co.uk
host	popup	2	www.tiscalli.it
host	popup	2	www.corroiere.it
host	popup	2	getdailyimages.com
host	popup	2	nospywaresoft.com
host	popup	2	www.zfxaqzkevi.com
host	popup	2	katawweb.it
host	popup	2	libwero.it
host	popup	2	sex-coach.com
host	popup	2	www.wonder-context.com
host	popup	2	mircosoftantispy.com
host	popup	2	amediasource.com
host	popup	2	www.repubblicaa.it
host	popup	2	rossdoalice.it
host	popup	2	paginefialle.it
host	popup	2	www.rossoallice.it
host	popup	2	www.find-find-777.net
host	popup	2	www.unto.it
host	popup	2	prostol.com
host	popup	2	www.bigwww.com
host	popup	2	paginebiancher.it
host	popup	2	tbvg.com
host	popup	2	www.asdeykuddq.com
host	popup	2	player-codec.net
host	popup	2	www.spyot.info
host	popup	2	www.supereeva.it
host	popup	2	urgentsystemupdate.com
host	popup	2	matcash.com
host	popup	2	www.jkataweb.it
host	popup	2	goo0gle.it
host	popup	2	categories.mygeek.com
host	popup	2	www.musicaccess.com
host	popup	2	tvsatellitepourpc.com
host	popup	2	giscali.it
host	popup	2	www.firgilio.it
host	popup	2	adobe-downloads.com
host	popup	2	umnibo.it
host	popup	2	repubbliva.it
host	popup	2	malwarealarm.com
host	popup	2	www.trernitalia.it
host	popup	2	review-play.com
host	popup	2	www.Pc-on-internet.com
host	popup	2	www.downloadv3.com
host	popup	2	s9.truth-is-out-there.org
host	popup	2	sintrader.com
host	popup	2	ads.k8l.info
host	popup	2	www.thesafetytool.com
host	popup	2	Defensaantimalware.com
host	popup	2	seobiz.us
host	popup	2	www.cortiere.it
host	popup	2	download.winantispyware.com
host	popup	2	www.e3bay.it
host	popup	2	www.asidseiupc.com
host	popup	2	Web-mediaplayer.com
host	popup	2	www.TBCODE.COM
host	popup	2	www.mediaplayer-2007.com
host	popup	2	dewis.us
host	popup	2	cache.ysbweb.com
host	popup	2	foxmin.com
host	popup	2	www.easycdrip.com
host	popup	2	dcurtis.com
host	popup	2	kataeweb.it
host	popup	2	www.teensexfans.com
host	popup	2	www.allertaminacce.com
host	popup	2	gazzettsa.it
host	popup	2	Navi-recherche.com
host	popup	2	smutarchive.net
host	popup	2	virgiliop.it
host	popup	2	www.nicecodec.net
host	popup	2	www.rossoalicre.it
host	popup	2	nettracker.jps.ru
host	popup	2	adlogix.com
host	popup	2	www.msen.it
host	popup	2	msmn.it
host	popup	2	mygeek.com
host	popup	2	www.ivideocodec.com
host	popup	2	ossoalice.it
host	popup	2	reopubblica.it
host	popup	2	livegambling.com
host	popup	2	casino2win.net
host	popup	2	www.analcord.com
host	popup	2	www.katawefb.it
host	popup	2	madisonoilco.com
host	popup	2	gkoogle.it
host	popup	2	toolbardollars.biz
host	popup	2	www.malwarewipeupdate.com
host	popup	2	helpcodec.com
host	popup	2	katawebg.it
host	popup	2	media.matcash.com
host	popup	2	f5.truth-is-out-there.org
host	popup	2	www.trafficroup.com
host	popup	2	ibsprogram.com
host	popup	2	www.googler.it
host	popup	2	forex.jps.ru
host	popup	2	psn.cn
host	popup	2	debay.it
host	popup	2	the.007guard.com
host	popup	2	ebwmanufacture.com
host	popup	2	www.lijbero.it
host	popup	2	gbazzetta.it
host	popup	2	www.corrierw.it
host	popup	2	dutch-sex.com
host	popup	2	stacistaxx.com
host	popup	2	www.spybotdownload-now.com
host	popup	2	securityupdatesite.com
host	popup	2	rossoalicew.it
host	popup	2	vegas-free.com
host	popup	2	www.smartprotect.info
host	popup	2	www.onlinesecurityworld.com
host	popup	2	www.did.i-used.cc
host	popup	2	www.giangho.biz
host	popup	2	cc.panet.org
host	popup	2	kr62.com
host	popup	2	www.huoche.com.cn
host	popup	2	mp3musicdirect.com
host	popup	2	topconverting.com
host	popup	2	100sexlinks.com
host	popup	2	Gomusic.com
host	popup	2	www.money-advertise.info
host	popup	2	mmmike.com
host	popup	2	www.dialer-shop.com
host	popup	2	www.Goldenantispy.com
host	popup	2	www.Hot-tv.com
host	popup	2	br.errorsafe.com
host	popup	2	zenotecnico2.com
host	popup	2	www.utiledeprotection.com
host	popup	2	www.antivirusadvance.com
host	popup	2	fr.winfixer.com
host	popup	2	burnsrecyclinginc.com
host	popup	2	searchmiracle.com
host	popup	2	www.Trojansfilter.com
host	popup	2	www.goldcodec.com
host	popup	2	www.tizscali.it
host	popup	2	internet-optimizer.com
host	popup	2	ssby.com
host	popup	2	exflow.org
host	popup	2	logih.com
host	popup	2	download-this.us
host	popup	2	1stpagehere.com
host	popup	2	rc.rizalof.com
host	popup	2	www.repbblica.it
host	popup	2	idownload.com
host	popup	2	excellentsckin.com
host	popup	2	www.netspyprotector.com
host	popup	2	uipd.it
host	popup	2	www.ebzay.it
host	popup	2	lovelysearch.com
host	popup	2	hentai4u.net
host	popup	2	trenitakia.it
host	popup	2	bravesentry.com
host	popup	2	mabou.org
host	popup	2	www.goo0gle.it
host	popup	2	httpwwwads.com
host	popup	2	www.tremnitalia.it
host	popup	2	meta-adult.com
host	popup	2	katawebv.it
host	popup	2	www.mpegcodec.net
host	popup	2	repuvbblica.it
host	popup	2	www.allstarsvideos.net
host	popup	2	www.libegro.it
host	popup	2	error404site.com
host	popup	2	porn-screen.com
host	popup	2	www.cdcopysite.com
host	popup	2	search-exe.com
host	popup	2	c.centralmedia.ws
host	popup	2	www.uzoogle.com
host	popup	2	www.search-empire.info
host	popup	2	www.virgbilio.it
host	popup	2	fastmetasearch.com
host	popup	2	www.gazzetts.it
host	popup	2	www.treniyalia.it
host	popup	2	approvedlinks.com
host	popup	2	www.rtuttogratis.it
host	popup	2	www.erepubblica.it
host	popup	2	virgilpio.it
host	popup	2	www.qazcodec.com
host	popup	2	newcracks.com
host	popup	2	www.catch-dc.info
host	popup	2	t8iscali.it
host	popup	2	www.ozonung.biz
host	popup	2	www.virtgilio.it
host	popup	2	net-nucleus.com
host	popup	2	tuttogeratis.it
host	popup	2	www.fulltvdownloading.com
host	popup	2	mmohsix.com
host	popup	2	www.febay.it
host	popup	2	www.2search.org
host	popup	2	www.hotcodec.net
host	popup	2	www.virusdifesa.com
host	popup	2	webaccelerating.com
host	popup	2	www.virgiliko.it
host	popup	2	www.katawesb.it
host	popup	2	www.saupereva.it
host	popup	2	www.supererva.it
host	popup	2	www.netdogtrainer.com
host	popup	2	clicktomakeasearch.com
host	popup	2	hitvirus.com
host	popup	2	www.liberlo.it
host	popup	2	razespyware.net
host	popup	2	acrobat-8.com
host	popup	2	roossoalice.it
host	popup	2	www.lpibero.it
host	popup	2	k-lined.com
host	popup	2	anarchylolita.com
host	popup	2	find-itnow.com
host	popup	2	dl1.spydawn.com
host	popup	2	www.theadulteye.com
host	popup	2	superevw.it
host	popup	2	teenpornosex.com
host	popup	2	Teslaplus.com
host	popup	2	tvshowcollection.com
host	popup	2	securityindex.net
host	popup	2	mega-adult.com
host	popup	2	www.repubbliica.it
host	popup	2	www.adioserrores.com
host	popup	2	searcher.tgpie.com
host	popup	2	www.mediaaxsetup.com
host	popup	2	sebot.com
host	popup	2	thehuy.net
host	popup	2	loibero.it
host	popup	2	www.bm.theaimonline.com
host	popup	2	www.videoaxdata.com
host	popup	2	ampmsearch.com
host	popup	2	startguard.net
host	popup	2	callinghome.biz
host	popup	2	search345quest.com
host	popup	2	www.musicsite.com
host	popup	2	net.xibu315.com
host	popup	2	www.archiviosex.net
host	popup	2	dvdxpremium.com
host	popup	2	www.callinghome.biz
host	popup	2	iednserror.com
host	popup	2	nownames.org
host	popup	2	getxmovies.com
host	popup	2	www.surfaccuracy.com
host	popup	2	suprnova.cn
host	popup	2	freepcsecure.com
host	popup	2	you-search.com
host	popup	2	securityfeature.com
host	popup	2	gvoogle.it
host	popup	2	hugefreevids.com
host	popup	2	command.adservs.com
host	popup	2	autobargainsnetwork.com
host	popup	2	www.movscodec.com
host	popup	2	syserrors.com
host	popup	2	testosterone-birth-control.com
host	popup	2	www.mediaaxobject.com
host	popup	2	www.erossoalice.it
host	popup	2	unlimitedtvshowdownload.com
host	popup	2	www.gootle.it
host	popup	2	www.coolwwwsearch.com
host	popup	2	www.powerdvd2007.info
host	popup	2	download-zone-free.net
host	popup	2	sploso.com
host	popup	2	x-google.net
host	popup	2	searchdot.com
host	popup	2	dl1.antivermins.com
host	popup	2	aliotalia.it
host	popup	2	www.globesearch.com
host	popup	2	www.americancarbargains.com
host	popup	2	www.asafetypage.com
host	popup	2	www.repoubblica.it
host	popup	2	www.l9ibero.it
host	popup	2	firstbookmark.net
host	popup	2	asafetypage.com
host	popup	2	www.onlinesecuritynet.com
host	popup	2	advertising-money.info
host	popup	2	coolpornsearch.com
host	popup	2	sixroads.com
host	popup	2	www.download-limewire.org
host	popup	2	www.sysdepannage.com
host	popup	2	paginebiancche.it
host	popup	2	www.atruesecurity.com
host	popup	2	umimi.it
host	popup	2	cotriere.it
host	popup	2	insuranceall.net
host	popup	2	matureporngate.com
host	popup	2	ayb.netbios-wait.com
host	popup	2	www.easyspyware.com
host	popup	2	good-casino.net
host	popup	2	www.mxsn.it
host	popup	2	www.alitlia.it
host	popup	2	www.gazzrtta.it
host	popup	2	www.mediaaxsolution.com
host	popup	2	www.crapsgold.info
host	popup	2	omega-search.com
host	popup	2	softwaresite.com
host	popup	2	trenittalia.it
host	popup	2	mediaplayer-download.org
host	popup	2	www.corrioere.it
host	popup	2	k-litegold.com
host	popup	2	www.allsearch.us
host	popup	2	alitali.it
host	popup	2	www.tuttogrstis.it
host	popup	2	www.gfxgraphics.net
host	popup	2	ti9scali.it
host	popup	2	repubblicda.it
host	popup	2	gazzettas.it
host	popup	2	corriiere.it
host	popup	2	es1-www.5zgmu7o20kt5d8yq.com
host	popup	2	www.gpoogle.it
host	popup	2	www.lovezest.com
host	popup	2	libero0.it
host	popup	2	sipereva.it
host	popup	2	burningsite.com
host	popup	2	searchaccurate.com
host	popup	2	www.worldbestadult.com
host	popup	2	upspiral.com
host	popup	2	supeteva.it
host	popup	2	onlinevideoset.com
host	popup	2	www.suoereva.it
host	popup	2	rtossoalice.it
host	popup	2	googlebar.jps.ru
host	popup	2	web-entrance.co
host	popup	2	www.amaena.com
host	popup	2	www.Defensaantimalware.com
host	popup	2	www.idblg.com
host	popup	2	www.lbero.it
host	popup	2	hotcodec.net
host	popup	2	theproxy.org
host	popup	1	evacance.ifrance.com

nonog · Answer

je continue pas alors

green day · Answer

c'est ok, je regarde la rapport !

nonog · Answer

ok j'attend

nonog · Answer

je verrai ta réponse demain, je vais me coucher
Bonne nuit, boulot oblige

merci

green day · Answer

ok,

télécharge OTMoveIt http://download.bleepingcomputer.com/oldtimer/OTMoveIt.exe (de Old_Timer) sur ton Bureau.
double-clique sur OTMoveIt.exe pour le lancer.
copie la liste qui se trouve en ci-dessous,
et colle-la dans le cadre de gauche de OTMoveIt :Paste List of Files/Folders to be moved.


 C:\Documents and Settings\All Users\Application Data\internet settings clock blue

clique sur MoveIt! pour lancer la suppression.
le résultat apparaitra dans le cadre "Results".
clique sur Exit pour fermer.
poste le rapport situé dans C:\_OTMoveIt\MovedFiles.

il te sera peut-être demander de redémarrer le pc pour achever la suppression.si c'est le cas accepte par Yes.

ensuite :

Télécharger ComboFix (par sUBs) sur le Bureau : http://download.bleepingcomputer.com/sUBs/ComboFix.exe 

* Démarrer en mode sans echec 
* Double cliquer combofix.exe. 
* Appuyer sur la touche Y (Yes) pour démarrer le scan 
* Le rapport sera crée dans: C:\Combofix.txt, poste le stp 

++

nonog · Answer

Alors me revoilà File/Folder C:\Documents and Settings\All Users\Application Data\internet settings clock blue not found. Created on 01/07/2008 19:59:10 je post 'autre post : ComboFix 08-01-07.5 - Emanuelle 2008-01-07 20:06:53.1 - NTFSx86 MINIMAL Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.152 [GMT 1:00] Running from: C:\Documents and Settings\Emanuelle\Bureau\ComboFix.exe . ((((((((((((((((((((((((((((( Fichiers créés 2007-12-07 to 2008-01-07 )))))))))))))))))))))))))))))))))))) . 2008-01-07 20:06 . 2000-08-31 08:00 51,200 --a------ C:\WINDOWS\NirCmd.exe 2008-01-07 20:04 . 2007-08-24 16:09 d--h----- C:\Documents and Settings\Administrateur\Voisinage réseau 2008-01-07 20:04 . 2007-08-24 16:09 d--h----- C:\Documents and Settings\Administrateur\Voisinage d'impression 2008-01-07 20:04 . 2007-08-24 14:18 d--h----- C:\Documents and Settings\Administrateur\Modèles 2008-01-07 20:04 . 2007-08-24 16:09 d-------- C:\Documents and Settings\Administrateur\Mes documents 2008-01-07 20:04 . 2007-08-24 16:09 dr------- C:\Documents and Settings\Administrateur\Menu Démarrer 2008-01-07 20:04 . 2007-08-24 16:09 d-------- C:\Documents and Settings\Administrateur\Favoris 2008-01-07 20:04 . 2007-08-24 16:09 d-------- C:\Documents and Settings\Administrateur\Bureau 2008-01-06 23:11 . 2008-01-06 23:46 d-------- C:\Program Files\Lopxp 2008-01-06 22:16 . 2008-01-06 22:16 d-------- C:\Program Files\Trend Micro 2008-01-06 21:46 . 2008-01-06 21:46 d-------- C:\Documents and Settings\Emanuelle\Application Data\Live-Prod 2008-01-06 21:45 . 2008-01-06 21:48 d-------- C:\Program Files\LiveKillCleanMessenger 2008-01-06 21:37 . 2008-01-06 21:42 d-------- C:\Program Files\MSN Messenger 2008-01-06 19:24 . 2008-01-06 19:24 d-a------ C:\Documents and Settings\All Users\Application Data\TEMP 2008-01-06 18:30 . 2005-09-23 08:29 626,688 --a------ C:\WINDOWS\system32\msvcr80.dll 2008-01-06 13:44 . 2008-01-06 20:54 d-------- C:\Program Files\Messenger Plus! Live 2008-01-06 13:31 . 2008-01-06 14:19 d-------- C:\WINDOWS\BDOSCAN8 2008-01-06 11:48 . 2008-01-06 12:52 d-------- C:\Documents and Settings\Emanuelle\.housecall6.6 2008-01-04 20:36 . 2008-01-04 20:36 16,795,726 --a------ C:\upload_moi_PC_PERSO.tar.gz 2008-01-03 23:02 . 2008-01-06 22:50 d-------- C:\Program Files\Navilog1 2008-01-03 22:52 . 2008-01-03 22:52 d-------- C:\Documents and Settings\All Users\Application Data\Grisoft 2008-01-03 21:24 . 2008-01-04 21:20 d-------- C:\Program Files\Windows Live Safety Center 2008-01-02 13:12 . 2008-01-02 13:12 d-------- C:\Documents and Settings\All Users\Application Data\Avira 2007-12-29 15:55 . 2007-12-29 15:55 d-------- C:\Program Files\Virtualis 2007-12-26 18:23 . 2008-01-06 14:24 d-------- C:\Program Files\eMule 2007-12-18 22:58 . 2004-08-19 16:09 159,232 --a------ C:\WINDOWS\system32\ptpusd.dll 2007-12-18 22:58 . 2001-08-23 17:47 5,632 --a------ C:\WINDOWS\system32\ptpusb.dll . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2008-01-06 20:34 --------- d-----w C:\Program Files\Windows Live 2008-01-06 20:26 --------- d-----w C:\Documents and Settings\All Users\Application Data\WLInstaller 2008-01-02 13:10 --------- d--h--w C:\Program Files\InstallShield Installation Information 2008-01-02 12:07 --------- d-----w C:\Program Files\Java 2007-12-04 14:56 93,264 ----a-w C:\WINDOWS\system32\drivers\aswmon.sys 2007-12-04 14:55 94,544 ----a-w C:\WINDOWS\system32\drivers\aswmon2.sys 2007-12-04 14:53 23,152 ----a-w C:\WINDOWS\system32\drivers\aswRdr.sys 2007-12-04 14:51 42,912 ----a-w C:\WINDOWS\system32\drivers\aswTdi.sys 2007-12-04 14:49 26,624 ----a-w C:\WINDOWS\system32\drivers\aavmker4.sys 2007-12-04 13:04 837,496 ----a-w C:\WINDOWS\system32\aswBoot.exe 2007-12-04 12:54 95,608 ----a-w C:\WINDOWS\system32\AvastSS.scr 2007-12-01 17:19 --------- d-----w C:\Program Files\Microsoft SQL Server Compact Edition 2007-12-01 17:15 --------- dcsh--w C:\Program Files\Fichiers communs\WindowsLiveInstaller 2007-12-01 13:40 --------- d-----w C:\Program Files\CCleaner 2007-11-30 19:20 --------- d-----w C:\Documents and Settings\Emanuelle\Application Data\EPSON 2007-11-18 13:57 --------- d-----w C:\Program Files\Virtools Web Player 3.5 2007-11-16 22:23 --------- d-----w C:\Program Files\Windows Media Connect 2 2007-11-13 10:25 20,480 ----a-w C:\WINDOWS\system32\drivers\secdrv.sys 2007-11-08 11:14 8,704 ----a-w C:\WINDOWS\system32\sporder.dll 2007-11-02 08:38 230,432 ----a-w C:\PA207.DAT 2007-10-29 22:43 1,293,824 ----a-w C:\WINDOWS\system32\quartz.dll 2007-10-25 08:28 222,720 ----a-w C:\WINDOWS\system32\wmasf.dll . ((((((((((((((((((((((((((((((((( Point de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))) . . REGEDIT4 *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2006-03-02 13:00 15360] "EPSON Stylus DX4400 Series"="C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATICAE.exe" [2007-01-25 07:00 179200] "ccleaner"="C:\Program Files\CCleaner\CCleaner.exe" [2007-11-22 17:10 787696] "MsnMsgr"="C:\Program Files\MSN Messenger\MsnMsgr.exe" [2007-01-19 12:55 5674352] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-12-04 14:00 79224] "FLMOFFICE4DMOUSE"="C:\Program Files\Labtec\Desktop\V5.1\moffice.exe" [2007-08-24 19:06 958464] "OFFICEKB"="C:\Program Files\Labtec\Desktop\V5.1\kbdap32a.exe" [2007-08-24 19:06 387584] "Monitor"="C:\WINDOWS\PixArt\PAC207\Monitor.exe" [2006-11-03 10:01 319488] "BigDogPath"="C:\WINDOWS\VM_STI.exe" [2004-06-09 15:37 40960] "SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 00:11 132496] "clock blue jugs wait"="C:\Documents and Settings\All Users\Application Data\internet settings clock blue\Wma eq.exe" [ ] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2006-03-02 13:00 15360] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce] "nltide_3"="advpack.dll" [2007-10-11 00:49 124928 C:\WINDOWS\system32\advpack.dll] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] "ForceClassicControlPanel"= 1 (0x1) "NoSMHelp"= 1 (0x1) "NoResolveTrack"= 1 (0x1) "NoResolveSearch"= 1 (0x1) [HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer] "ForceClassicControlPanel"= 1 (0x1) "NoSMHelp"= 1 (0x1) "NoResolveTrack"= 1 (0x1) "NoResolveSearch"= 1 (0x1) S3 usbscan;Pilote de scanneur USB;C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 21:58] S3 USBSTOR;Pilote de stockage de masse USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 22:08] S3 ZSMC302;VIMICRO USB PC Camera;C:\WINDOWS\system32\Drivers\usbVM31b.sys [2004-08-17 11:44] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] LocalService REG_MULTI_SZ Alerter WebClient LmHosts upnphost SSDPSRV . ************************************************************************** catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-01-07 20:09:01 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************** . Completion time: 2008-01-07 20:09:54 . 2007-12-12 12:17:34 --- E O F --- J'attend votre réponse merci

nonog · Answer

Green day tu peut me donner les autres instructions ?

green day · Answer

où en sont tes soucis de pub cid ??

++

nonog · Answer

apparement yen a plus a s'ouvrir
Mais l'ordi est assez lent et je crois que sa vient de msn mais je comprend pas pkoi il était pas comme sa avant, il m'est une éternité pour envoyer un message et il bug.

green day · Answer

ok, fais ce qui est indiqué ici stp :

http://www.commentcamarche.net/faq/sujet 3174 virus methode preliminaire de desinfection version fr

++

green day · Answer

combo ne signal rien, on verra ça par la suite ... as tu accepter un fichier nommé album.zip ??

++

nonog · Answer

non il y a longtemps mais je l'avais supprimé avec Msn Fix

nonog · Answer

Au faite je peut supprimé les fichier que tu m'as fais mettre sur le bureau ? et comment ?

green day · Answer

salut

quel fichier ??

Fenetre cid

38 réponses

Discussions similaires

Newsletters