interprétation

Sécurité et insécurité. Virus, Trojans, Spywares, Failles etc. …

Modérateur: Modérateurs et Modératrices

Règles du forum
Assiste.com a suspendu l'assistance à la décontamination après presque 15 ans sur l'ancien forum puis celui-ci. Voir :

Procédure de décontamination 1 - Anti-malware
Décontamination anti-malwares

Procédure de décontamination 2 - Anti-malware et antivirus (La Manip)
La Manip - Procédure standard de décontamination

Entretien périodique d'un PC sous Windows
Entretien périodique d'un PC sous Windows

Protection des navigateurs, de la navigation et de la vie privée
Protéger le navigateur, la navigation et la vie privée

interprétation

Messagede ziboulette » 01 Jan 2009, 15:43

Bonjour,

On m'a conseillé HijackThis, mais je ne sais pas comment ça marche et je n'ai pas réussi à trouver le patch en français.
Dès l'installation, ce qui suit s'est affiché :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:43:23, on 01/01/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Acer\eRecovery\Monitor.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\acer\epm\epm-dm.exe
C:\Program Files\Launch Manager\QtZgAcer.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Eset\nod32kui.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\EoRezo\EoEngine.exe
C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\WIDCOMM\Logiciel Bluetooth\BTTray.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe
C:\Program Files\Philips\SA28XX Device Manager\main.exe
C:\Program Files\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Program Files\palmOne\HOTSYNC.EXE
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
C:\Acer\eManager\anbmServ.exe
c:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe
C:\Program Files\Eset\nod32krn.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Java\jre1.6.0_07\bin\jucheck.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\WISPTIS.EXE
C:\PROGRA~1\MICROS~2\Office12\OUTLOOK.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lo.st/#home
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Canon Easy Web Print Helper - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: EoBHO - {C7B76B90-3455-4AE6-A752-EAC4D19689E5} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O4 - HKLM\..\Run: [LaunchApp] Alaunch
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAudPropShortcut.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [EPM-DM] c:\acer\epm\epm-dm.exe
O4 - HKLM\..\Run: [ePowerManagement] C:\Acer\ePM\ePM.exe boot
O4 - HKLM\..\Run: [LManager] C:\Program Files\Launch Manager\QtZgAcer.EXE
O4 - HKLM\..\Run: [eRecoveryService] C:\Program Files\Acer\eRecovery\Monitor.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [EoEngine] "C:\Program Files\EoRezo\EoEngine.exe"
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [PaperPort PTD] "C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe"
O4 - HKLM\..\Run: [IndexSearch] "C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe"
O4 - HKLM\..\Run: [PPort11reminder] "C:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe" -r "C:\Documents and Settings\All Users\Application Data\ScanSoft\PaperPort\11\Config\Ereg\Ereg.ini
O4 - HKLM\..\Run: [BrMfcWnd] C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN
O4 - HKLM\..\Run: [ControlCenter3] C:\Program Files\Brother\ControlCenter3\brctrcen.exe /autorun
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: palmOne Registration.lnk = C:\Program Files\palmOne\register.exe
O4 - Startup: OpenOffice.org 3.0.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Startup: Outil de détection de support Picture Motion Browser.lnk = C:\Program Files\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe
O4 - Startup: HotSync Manager.lnk = C:\Program Files\palmOne\HOTSYNC.EXE
O4 - Startup: PowerReg Scheduler.exe
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: hpoddt01.exe.lnk = ?
O4 - Global Startup: hp psc 1000 series.lnk = ?
O4 - Global Startup: Philips Gestionnaire de périphériques.lnk = C:\Program Files\Philips\SA28XX Device Manager\main.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_Preview.html
O8 - Extra context menu item: Envoyer à &Bluetooth - c:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O23 - Service: Notebook Manager Service (anbmService) - OSA Technologies Inc. - C:\Acer\eManager\anbmServ.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - c:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe

--
End of file - 10014 bytes


Merci pour votre aide
ziboulette
 
Messages: 6
Inscription: 01 Jan 2009, 15:40

Messagede nickW » 02 Jan 2009, 01:36

Bonsoir,


Il n'existe pas de "patch français" pour HijackThis.


Est-ce une demande d'analyse:
*- "juste pour voir"
*- parce que ton PC présente des symptômes d'infection?

Dans ce dernier cas, quels sont ces symptômes?


A suivre,
nickW - Image
30/07/2012: Plus de désinfection de PC jusqu'à nouvel ordre.
Pas de demande d'analyse de log en MP (Message Privé)
Mes configs
Avatar de l’utilisateur
nickW
Modérateur
 
Messages: 21698
Inscription: 20 Mai 2004, 17:41
Localisation: Dordogne/Île de France

Messagede ziboulette » 02 Jan 2009, 11:15

Oui il y a une fenêtre qui s'ouvre tout le temps avec IE, alors que je n'utilise que Firefox.
C'est comme ça depuis que j'ai prêté mon ordinateur à qq qui a regardé ses mails en utilisant IE !
ziboulette
 
Messages: 6
Inscription: 01 Jan 2009, 15:40

Messagede nickW » 03 Jan 2009, 01:16

Bonsoir,

Désinstallation d'un programme douteux, création de deux rapports (logs) détaillés:


Note: Ces manips doivent être effectuées en ayant ouvert une session avec les "droits Administrateur" (ne pas utiliser le profil utilisateur nommé "Administrateur" visible en mode sans échec).
Sous Windows XP, pour vérifier si un compte a les droits "Administrateur":
Démarrer---->Paramètres---->Panneau de configuration---->Comptes d'utilisateurs
A côté de l'icône représentant certains comptes (hormis celui nommé "Administrateur"), il est indiqué "Administrateur de l'ordinateur"
C'est l'un de ces comptes qu'il faudra utiliser.



Étape 1: Pas de processus de contrôle en temps réel
Désactiver TeaTimer de Spybot-S&D.
Dans la SysBarre (zone située juste à gauche de l'horloge) faire un clic droit sur l'icône du Résident de Spybot-S&D et choisir "Quitter Résident de Spybot-S&D".
Lancer Spybot-S&D, Mode avancé, Outils, Résident, décocher la case située devant TeaTimer. Fermer Spybot-S&D.
Faire redémarrer le PC.
Note:
Il ne faut pas réactiver TeaTimer avant la fin du nettoyage du PC (je te dirai quand et comment le faire).


Étape 2: OTListIt2 (de OldTimer), téléchargement
Télécharger OTListIt2.exe depuis http://oldtimer.geekstogo.com/OTListIt2.exe
Enregistrer ce fichier sur le Bureau.


Étape 3: Ccleaner
Télécharger et installer Ccleaner Slim dans un dossier spécifique, par exemple C:\ccleaner
Page de téléchargement: http://www.ccleaner.com/download/builds

Lancer le programme.
Note: il est inutile de modifier les paramètres autres que ceux indiqués ci-dessous:
*- Si nécessaire, aller dans le menu Options et choisir le langage: Français.
*- Dans le menu Nettoyeur - onglet Windows, cocher (si ce n'est déjà fait):
Internet Explorer: Fichiers Internet Temporaires, Cookies
Système: Vider la Poubelle, Fichiers Temporaires, Presse-papiers
Avancé: Vieilles données du Prefetch
*- Dans le menu Options - sous-menu Avancé, décocher:
Effacer uniquement les fichiers, du dossier temp de Windows, plus vieux que 48 heures
*- Dans le menu Nettoyeur - onglet Applications, cocher:
Internet: Sun Java
*- Si ce paragraphe est présent, dans le menu Nettoyeur - onglet Applications, cocher (si ce n'est déjà fait):
Firefox/Mozilla: Cache Internet, Cookies

Cliquer sur Analyse
Dans le menu Options - sous-menu Cookies, faire passer dans le panneau de droite les cookies que tu veux absolument conserver.
Puis dans le menu Nettoyeur, cliquer sur le bouton Lancer le nettoyage.
Fermer le programme.


Étape 4: Mode sans échec
Faire redémarrer le PC en mode sans échec en utilisant la méthode F8 (F5 sur certains PCs). Impératif: ne pas utiliser la méthode "msconfig"!
Voir http://assiste.com.free.fr/p/comment/co ... echec.html
Fermer le plus possible de fenêtres.
Pas de connexion Internet ouverte, pas d'Internet Explorer ouvert.


Étape 5: Désinstallation
Démarrer-->Paramètres-->Panneau de Configuration-->Ajout/Suppression de programmes
Rechercher et désinstaller (si trouvé) eoRezo et tous ses modules (eoEngine, etc)


Étape 6: HijackThis
Via l'Explorateur Windows, ouvrir le dossier C:\Program Files\Trend Micro\HijackThis

Lancer HijackThis par un double clic sur HijackThis.exe

Cliquer sur le bouton "Do a system scan only" ou "Scan"
Vérifier que HijackThis fera des sauvegardes: Dans "Config", cocher "Make backups before fixing items", puis cliquer sur le bouton "Back".
Cocher la case située devant les lignes ci-dessous:
(si des lignes sont absentes, le signaler en réponse, après la fin de l'ensemble des étapes).

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lo.st/#home
O2 - BHO: EoBHO - {C7B76B90-3455-4AE6-A752-EAC4D19689E5} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll
O4 - HKLM\..\Run: [EoEngine] "C:\Program Files\EoRezo\EoEngine.exe"

Fermer toutes les fenêtres de programme. Fermer toutes les instances d'Internet Explorer.

Cliquer sur Fix checked: Image

Fermer HijackThis.


Étape 7: Redémarrage
Faire redémarrer le PC en mode normal.


Étape 8: OTListIt2 (de OldTimer)
Fermer toutes les fenêtres de programme ouvertes.

Faire un double clic sur OTListIt2.exe pour lancer l'outil.

L'écran principal de OTListIt2 s'affiche:
Image

Si ce n'est déjà fait, dans le paragraphe Extra Registry, cocher le bouton-radio Use SafeList

Cocher (en haut) la case située devant Scan All Users: Image

Puis cliquer sur le bouton Run Scan: Image

Laisser l'outil travailler sans l'interrompre.
Lorsque l'outil a terminé, il y a ouverture d'une fenêtre du Bloc-notes contenant un rapport (log).
Fermer le Bloc-notes.
Le second rapport est visible dans la Barre des tâches. Le fermer également.
Fermer la fenêtre de OTListIt2.


Étape 9: Résultats
Envoyer en réponse dans deux messages distincts (à cause de la longueur des logs):
*- les deux rapports de OTListIt2 (contenu des fichiers OTListIt.txt et Extras.txt situés sur le Bureau).
Les rapports envoyés sur le forum doivent se terminer par une ligne contenant <End>. Si ce n'est pas le cas, ils sont incomplets, et doivent alors être découpés en plusieurs messages.

Note importante: Pour l'envoi de ta(tes) réponse(s), il ne faut pas créer un nouveau sujet, mais cliquer sur le bouton "Répondre"
Image pour continuer dans ce fil de discussion.


Dans ta réponse, n'oublie pas de donner le plus d'informations possible sur l'état du PC: amélioration / disparition / aggravation des symptômes d'infection.
Peux-tu également me décrire la page "qui s'ouvre tout le temps avec IE": adresse, site, etc...



A suivre,
nickW - Image
30/07/2012: Plus de désinfection de PC jusqu'à nouvel ordre.
Pas de demande d'analyse de log en MP (Message Privé)
Mes configs
Avatar de l’utilisateur
nickW
Modérateur
 
Messages: 21698
Inscription: 20 Mai 2004, 17:41
Localisation: Dordogne/Île de France

Messagede ziboulette » 04 Jan 2009, 19:48

Bonsoir,

Bon bah je me lance dans tout ça et je vous tiens au courant !!
En tout cas merci pour ces longues explications !!
ziboulette
 
Messages: 6
Inscription: 01 Jan 2009, 15:40

Messagede ziboulette » 07 Jan 2009, 11:06

Bonjour,

J'ai exécuter toutes les manips indiquées. Je vous mets les résultats ci-dessous, en deux posts comme demandé.
Je voulais signaler que dans les programmes, j'ai trouvé eoEngine que j'ai désinstallé, mais je n'ai pas trouvé eoRezo alors que dans mes Applications Data, il y a un dossier eoRezo auquel je n'ai pas osé touché !!!

Par ailleurs, vois les deux lignes qui étaient absentes quand j'ai fait HijackThis.exe

02 - BHO: EoBHO - {C7B76B90-3455-4AE6-A752-EAC4D19689E5} - C:\Programme Files\EoRezo\EoAdv\EoRezoBHO.dll

04 - HKLM\..\Run: [EoEngine] "C:\Program Files\EoRezo\EoEngine.exe"


Voici le rapport :

OTListIt logfile created on: 07/01/2009 10:48:43 - Run
OTListIt2 by OldTimer - Version 1.0.3.0 Folder = C:\Documents and Settings\Acer\Bureau
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

1022,05 Mb Total Physical Memory | 597,48 Mb Available Physical Memory | 58,46% Memory free
2,40 Gb Paging File | 2,10 Gb Available in Paging File | 87,33% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072;

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 46,25 Gb Total Space | 31,89 Gb Free Space | 68,96% Space Free | Partition Type: FAT32
Drive D: | 43,95 Gb Total Space | 2,27 Gb Free Space | 5,16% Space Free | Partition Type: FAT32
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: ACER-41C5D59B6B
Current User Name: Acer
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Output = Standard
File Age = 30 Days
Company Name Whitelist: On

========== Processes (SafeList) ==========

[2004/12/07 21:59:24 | 00,425,984 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\Ati2evxx.exe
[2005/06/06 19:08:58 | 01,273,344 | ---- | M] (OSA Technologies Inc.) -- C:\Acer\eManager\anbmServ.exe
[2005/08/16 14:00:14 | 00,258,103 | ---- | M] (Broadcom Corporation.) -- c:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe
[2009/01/04 22:23:04 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
[2008/06/12 00:59:48 | 00,495,616 | ---- | M] (Eset ) -- C:\Program Files\Eset\nod32krn.exe
[2008/04/28 06:14:00 | 00,073,728 | ---- | M] (Software 2000 Limited) -- C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HP1006MC.EXE
[2004/08/05 05:00:00 | 00,218,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvse.exe
[2004/12/07 21:59:24 | 00,425,984 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\Ati2evxx.exe
[2004/12/07 21:10:00 | 00,344,064 | ---- | M] (ATI Technologies, Inc.) -- C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
[2004/10/08 10:50:52 | 00,088,363 | ---- | M] (Agere Systems) -- C:\WINDOWS\AGRSMMSG.exe
[2004/10/08 14:44:24 | 00,098,394 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
[2004/10/08 14:43:12 | 00,688,218 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
[2004/11/02 07:53:06 | 00,077,824 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE
[2004/07/15 01:07:56 | 00,032,768 | ---- | M] (Cyberlink Corp.) -- C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
[2005/08/17 09:07:36 | 00,352,256 | ---- | M] (acer Inc.) -- C:\Program Files\Acer\eRecovery\Monitor.exe
[2005/03/07 09:54:00 | 00,180,224 | ---- | M] (Acer Inc) -- C:\acer\epm\epm-dm.exe
[2004/12/09 12:35:00 | 00,311,296 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\QtZgAcer.EXE
[2004/08/05 05:00:00 | 00,033,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe
[2008/06/12 00:59:48 | 00,917,504 | ---- | M] (Eset ) -- C:\Program Files\Eset\nod32kui.exe
[2008/09/13 10:03:08 | 00,185,896 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
[2009/01/04 22:23:04 | 00,136,600 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe
[2007/01/29 21:12:14 | 00,030,248 | ---- | M] (Nuance Communications, Inc.) -- C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
[2006/10/11 12:45:12 | 00,075,304 | ---- | M] (ScanSoft, Inc.) -- C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe
[2006/04/21 17:03:34 | 00,094,208 | ---- | M] (Nero AG) -- C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
[2005/08/16 14:06:22 | 00,577,597 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Logiciel Bluetooth\BTTray.exe
[2002/12/02 20:56:10 | 00,040,960 | ---- | M] (Hewlett-Packard) -- C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
[2002/12/02 21:08:34 | 00,147,456 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe
[2008/03/14 15:36:34 | 07,696,118 | ---- | M] (KeenHigh Tech.) -- C:\Program Files\Philips\SA28XX Device Manager\main.exe
[2007/11/27 18:13:44 | 00,385,024 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe
[2008/09/30 17:45:02 | 07,424,000 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe
[2004/04/13 17:03:10 | 00,299,008 | ---- | M] (Palm, Inc.) -- C:\Program Files\palmOne\HOTSYNC.EXE
[2008/09/30 17:46:14 | 07,418,368 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin
[2002/12/02 20:30:02 | 00,282,624 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
[2002/12/02 20:41:48 | 00,307,200 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe
[2008/10/16 14:09:44 | 00,051,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe
[2009/01/07 00:26:20 | 00,419,328 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Acer\Bureau\OTListIt2.exe

========== (O23) Win32 Services (SafeList) ==========

[2005/06/06 19:08:58 | 01,273,344 | ---- | M] (OSA Technologies Inc.) -- C:\Acer\eManager\anbmServ.exe -- (anbmService [Auto | Running])
[2004/12/07 21:59:24 | 00,425,984 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\Ati2evxx.exe -- (Ati HotKey Poller [Auto | Running])
[2005/08/16 14:00:14 | 00,258,103 | ---- | M] (Broadcom Corporation.) -- c:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe -- (btwdins [Auto | Running])
[2007/01/04 02:40:22 | 00,136,120 | ---- | M] (Google) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc [On_Demand | Stopped])
[2005/11/14 01:06:04 | 00,069,632 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe -- (IDriverT [On_Demand | Stopped])
[2009/01/04 22:23:04 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService [Auto | Running])
[2008/06/12 00:59:48 | 00,495,616 | ---- | M] (Eset ) -- C:\Program Files\Eset\nod32krn.exe -- (NOD32krn [Auto | Running])
[2007/08/24 03:19:12 | 00,443,776 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv [On_Demand | Stopped])
[2006/10/26 14:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE -- (ose [On_Demand | Stopped])
[2002/11/27 13:30:30 | 00,065,536 | R--- | M] (HP) -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12 [On_Demand | Stopped])
[2006/11/03 09:59:14 | 00,918,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\WMPNetwk.exe -- (WMPNetworkSvc [On_Demand | Stopped])

========== Driver Services (SafeList) ==========

[2004/08/03 23:10:12 | 00,048,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\DRIVERS\61883.sys -- (61883 [On_Demand | Stopped])
[2008/06/11 20:10:06 | 00,082,380 | ---- | M] (Oak Technology Inc.) -- C:\WINDOWS\System32\drivers\AFS2K.SYS -- (AFS2K [System | Running])
[2004/10/08 10:51:08 | 01,270,540 | ---- | M] (Agere Systems) -- C:\WINDOWS\system32\DRIVERS\AGRSM.sys -- (AgereSoftModem [On_Demand | Running])
[2008/06/12 00:59:48 | 00,502,208 | ---- | M] (Eset ) -- C:\WINDOWS\system32\drivers\amon.sys -- (AMON [Auto | Running])
[2004/12/07 22:06:42 | 00,874,496 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\DRIVERS\ati2mtag.sys -- (ati2mtag [On_Demand | Running])
[2004/08/03 23:10:12 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\DRIVERS\avc.sys -- (Avc [On_Demand | Stopped])
[2003/05/21 18:47:12 | 00,175,360 | R--- | M] (Broadcom Corporation) -- C:\WINDOWS\system32\DRIVERS\b57xp32.sys -- (b57w2k [On_Demand | Running])
[2005/08/16 13:53:54 | 00,401,152 | ---- | M] (Broadcom Corporation.) -- C:\WINDOWS\system32\drivers\btaudio.sys -- (btaudio [On_Demand | Stopped])
[2005/08/16 13:49:38 | 00,030,363 | ---- | M] (Broadcom Corporation.) -- C:\WINDOWS\system32\DRIVERS\btport.sys -- (BTDriver [On_Demand | Stopped])
[2004/08/05 05:00:00 | 00,017,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\DRIVERS\BthEnum.sys -- (BthEnum [On_Demand | Stopped])
[2004/08/05 05:00:00 | 00,100,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\DRIVERS\bthpan.sys -- (BthPan [On_Demand | Stopped])
[2008/06/14 19:59:52 | 00,272,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Drivers\BTHport.sys -- (BTHPORT [On_Demand | Stopped])
[2004/08/05 05:00:00 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Drivers\BTHUSB.sys -- (BTHUSB [On_Demand | Stopped])
[2005/08/16 13:51:32 | 01,341,466 | ---- | M] (Broadcom Corporation.) -- C:\WINDOWS\system32\DRIVERS\btkrnl.sys -- (BTKRNL [On_Demand | Running])
[2005/08/16 13:52:32 | 00,023,271 | ---- | M] (Broadcom Corporation.) -- C:\WINDOWS\system32\drivers\btserial.sys -- (BTSERIAL [Auto | Running])
[2005/08/16 13:52:28 | 00,222,876 | ---- | M] (Broadcom Corporation.) -- C:\WINDOWS\system32\drivers\btslbcsp.sys -- (BTSLBCSP [Auto | Running])
[2005/08/16 13:46:08 | 00,148,040 | ---- | M] (Broadcom Corporation.) -- C:\WINDOWS\system32\DRIVERS\btwdndis.sys -- (BTWDNDIS [On_Demand | Stopped])
[2005/08/16 13:49:30 | 00,030,189 | ---- | M] (Broadcom Corporation.) -- C:\WINDOWS\system32\DRIVERS\btwmodem.sys -- (btwmodem [On_Demand | Stopped])
[2005/08/16 13:49:04 | 00,056,648 | ---- | M] (Broadcom Corporation.) -- C:\WINDOWS\System32\Drivers\btwusb.sys -- (BTWUSB [On_Demand | Stopped])
[2004/12/18 14:06:50 | 00,193,878 | ---- | M] (O2 Micro ) -- C:\WINDOWS\system32\drivers\o2mmb.sys -- (CONAN [On_Demand | Running])
[2004/12/08 14:10:00 | 00,016,896 | ---- | M] (Dritek System Inc.) -- C:\WINDOWS\System32\Drivers\DKbFltr.sys -- (DKbFltr [On_Demand | Running])
[2004/07/19 13:10:00 | 00,004,096 | ---- | M] (Acer Value Labs, USA) -- C:\WINDOWS\system32\drivers\epm-psd.sys -- (EpmPsd [Auto | Running])
[2005/01/03 11:51:22 | 00,078,208 | ---- | M] (Acer Value Labs, USA) -- C:\WINDOWS\system32\drivers\epm-shd.sys -- (EpmShd [Auto | Running])
[2004/08/12 17:45:52 | 00,113,664 | ---- | M] (Windows (R) Server 2003 DDK provider) -- C:\WINDOWS\system32\drivers\HdAudio.sys -- (HdAudAddService [On_Demand | Running])
[2004/08/12 17:45:54 | 00,137,728 | ---- | M] (Windows (R) Server 2003 DDK provider) -- C:\WINDOWS\system32\DRIVERS\HDAudBus.sys -- (HDAudBus [On_Demand | Running])
[2002/11/27 13:30:30 | 00,050,960 | R--- | M] (HP) -- C:\WINDOWS\system32\DRIVERS\HPZid412.sys -- (HPZid412 [On_Demand | Stopped])
[2002/11/27 13:30:30 | 00,016,080 | R--- | M] (HP) -- C:\WINDOWS\system32\DRIVERS\HPZipr12.sys -- (HPZipr12 [On_Demand | Stopped])
[2005/10/22 07:22:48 | 00,021,568 | ---- | M] (HP) -- C:\WINDOWS\system32\DRIVERS\HPZius12.sys -- (HPZius12 [On_Demand | Stopped])
[2004/12/13 09:42:14 | 02,329,408 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService [On_Demand | Stopped])
[2004/08/05 05:00:00 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\DRIVERS\kbdhid.sys -- (kbdhid [System | Stopped])
[2004/12/23 09:59:04 | 00,007,100 | ---- | M] (O2 Micro) -- C:\WINDOWS\system32\drivers\MbxStby.sys -- (MbxStby [On_Demand | Running])
[2004/08/03 23:10:00 | 00,051,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\DRIVERS\msdv.sys -- (MSDV [On_Demand | Stopped])
[2004/08/03 23:00:52 | 00,028,672 | ---- | M] (National Semiconductor Corporation) -- C:\WINDOWS\system32\DRIVERS\nscirda.sys -- (NSCIRDA [On_Demand | Running])
[2004/12/29 17:27:36 | 00,006,912 | ---- | M] (NewTech Infosystems, Inc.) -- C:\WINDOWS\system32\DRIVERS\NTIDrvr.sys -- (NTIDrvr [On_Demand | Running])
[2004/08/05 05:00:00 | 00,088,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys -- (NwlnkIpx [Auto | Running])
[2004/08/05 05:00:00 | 00,063,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\DRIVERS\nwlnknb.sys -- (NwlnkNb [Auto | Running])
[2004/08/05 05:00:00 | 00,055,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys -- (NwlnkSpx [Auto | Running])
[2006/10/13 12:23:16 | 00,163,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\DRIVERS\nwrdr.sys -- (NWRDR [On_Demand | Running])
[2004/10/25 14:19:18 | 00,092,561 | ---- | M] (O2Micro) -- C:\WINDOWS\system32\DRIVERS\ozscr.sys -- (O2SCBUS [On_Demand | Running])
[2005/06/30 16:58:24 | 00,007,296 | ---- | M] (OSA Technologies, An Avocent Company) -- C:\WINDOWS\system32\drivers\osaio.sys -- (osaio [Auto | Running])
[2005/01/14 15:57:16 | 00,004,010 | ---- | M] (Windows (R) 2000 DDK provider) -- C:\WINDOWS\system32\drivers\osanbm.sys -- (osanbm [Auto | Running])
[2004/04/13 17:03:46 | 00,016,509 | ---- | M] (Palm, Inc.) -- C:\WINDOWS\system32\drivers\PalmUSBD.sys -- (PalmUSBD [On_Demand | Stopped])
[2004/08/05 05:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\system32\DRIVERS\ptilink.sys -- (Ptilink [On_Demand | Running])
[2008/02/23 03:38:34 | 00,043,872 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20 [Boot | Running])
[2004/08/05 05:00:00 | 00,059,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\DRIVERS\rfcomm.sys -- (RFCOMM [On_Demand | Stopped])
[2007/11/13 12:25:54 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\WINDOWS\system32\DRIVERS\secdrv.sys -- (Secdrv [On_Demand | Stopped])
[2001/08/17 21:56:16 | 00,007,552 | ---- | M] (Sony Corporation) -- C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS -- (SONYPVU1 [On_Demand | Stopped])
[2001/08/23 17:20:50 | 00,006,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\DRIVERS\serscan.sys -- (StillCam [On_Demand | Running])
[2004/10/08 14:33:46 | 00,185,824 | ---- | M] (Synaptics, Inc.) -- C:\WINDOWS\system32\DRIVERS\SynTP.sys -- (SynTP [On_Demand | Running])
[2004/12/17 17:14:44 | 00,013,952 | ---- | M] () -- C:\WINDOWS\System32\drivers\UBHelper.sys -- (UBHelper [System | Running])
[2004/12/21 15:10:00 | 03,222,784 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\system32\DRIVERS\w29n51.sys -- (w29n51 [On_Demand | Running])
[2004/08/05 05:00:00 | 00,012,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\ws2ifsl.sys -- (WS2IFSL [System | Running])
[2005/01/13 14:46:16 | 00,069,632 | ---- | M] () -- C:\Program Files\Acer\eRecovery\int15.sys -- (int15.sys [Auto | Running])

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions =
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



HKU\S-1-5-21-699948810-825143596-2627940179-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
HKU\S-1-5-21-699948810-825143596-2627940179-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions =
HKU\S-1-5-21-699948810-825143596-2627940179-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\S-1-5-21-699948810-825143596-2627940179-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
HKU\S-1-5-21-699948810-825143596-2627940179-1004\S-1-5-21-699948810-825143596-2627940179-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

O1 HOSTS File: (290849 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 10016 more lines...
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (EWPBrowseObject Class) - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll ()
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (PDFCreator Toolbar Helper) - {C451C08A-EC37-45DF-AAAD-18B51AB5E837} - C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll ()
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (PDFCreator Toolbar) - {31CF9EBE-5755-4A1D-AC25-2834D952D9B4} - C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll ()
O3 - HKLM\..\Toolbar: (Easy-WebPrint) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll ()
O3 - HKCU\..\Toolbar: (no name) - {31CF9EBE-5755-4A1D-AC25-2834D952D9B4} - C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll ()
O3 - HKU\S-1-5-21-699948810-825143596-2627940179-1004\..\Toolbar: (no name) - {31CF9EBE-5755-4A1D-AC25-2834D952D9B4} - C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll ()
O4 - HKLM..\Run: [AGRSMMSG] AGRSMMSG.exe (Agere Systems)
O4 - HKLM..\Run: [Alcmtr] ALCMTR.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe (ATI Technologies, Inc.)
O4 - HKLM..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent (Microsoft Corporation)
O4 - HKLM..\Run: [BrMfcWnd] C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN (Brother Industries, Ltd.)
O4 - HKLM..\Run: [ControlCenter3] C:\Program Files\Brother\ControlCenter3\brctrcen.exe /autorun (Brother Industries, Ltd.)
O4 - HKLM..\Run: [EoEngine] File not found
O4 - HKLM..\Run: [EPM-DM] c:\acer\epm\epm-dm.exe (Acer Inc)
O4 - HKLM..\Run: [ePowerManagement] C:\Acer\ePM\ePM.exe boot (Acer Value Labs, Taiwan)
O4 - HKLM..\Run: [eRecoveryService] C:\Program Files\Acer\eRecovery\Monitor.exe (acer Inc.)
O4 - HKLM..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 (Microsoft Corporation)
O4 - HKLM..\Run: [IndexSearch] "C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe" (Nuance Communications, Inc.)
O4 - HKLM..\Run: [LaunchApp] Alaunch (Acer Inc.)
O4 - HKLM..\Run: [LManager] C:\Program Files\Launch Manager\QtZgAcer.EXE (Dritek System Inc.)
O4 - HKLM..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC ()
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE (Eset )
O4 - HKLM..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe" (ScanSoft, Inc.)
O4 - HKLM..\Run: [PaperPort PTD] "C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe" (Nuance Communications, Inc.)
O4 - HKLM..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName (Microsoft Corporation)
O4 - HKLM..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC (Microsoft Corporation)
O4 - HKLM..\Run: [PPort11reminder] "C:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe" -r "C:\Documents and Settings\All Users\Application Data\ScanSoft\PaperPort\11\Config\Ereg\Ereg.ini (Nuance Communications, Inc.)
O4 - HKLM..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime (Apple Inc.)
O4 - HKLM..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAudPropShortcut.exe (Windows (R) Server 2003 DDK provider)
O4 - HKLM..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" (Cyberlink Corp.)
O4 - HKLM..\Run: [SoundMan] SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SSBkgdUpdate] "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot (Nuance Communications, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot (RealNetworks, Inc.)
O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe" (Nero AG)
O4 - HKU\S-1-5-21-699948810-825143596-2627940179-1004..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe" (Nero AG)
O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\BTTray.lnk = C:\Program Files\WIDCOMM\Logiciel Bluetooth\BTTray.exe (Broadcom Corporation.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\hpoddt01.exe.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe (Hewlett-Packard)
O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\hp psc 1000 series.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe (Hewlett-Packard Co.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Philips Gestionnaire de périphériques.lnk = C:\Program Files\Philips\SA28XX Device Manager\main.exe (KeenHigh Tech.)
O4 - Startup: C:\Documents and Settings\Acer\Menu Démarrer\Programmes\Démarrage\palmOne Registration.lnk = C:\Program Files\palmOne\register.exe (Leader Technologies/Palm)
O4 - Startup: C:\Documents and Settings\Acer\Menu Démarrer\Programmes\Démarrage\OpenOffice.org 3.0.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
O4 - Startup: C:\Documents and Settings\Acer\Menu Démarrer\Programmes\Démarrage\Outil de détection de support Picture Motion Browser.lnk = C:\Program Files\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe (Sony Corporation)
O4 - Startup: C:\Documents and Settings\Acer\Menu Démarrer\Programmes\Démarrage\HotSync Manager.lnk = C:\Program Files\palmOne\HOTSYNC.EXE (Palm, Inc.)
O4 - Startup: C:\Documents and Settings\Acer\Menu Démarrer\Programmes\Démarrage\PowerReg Scheduler.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 95 00 00 00 [binary data]
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-699948810-825143596-2627940179-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 95 00 00 00 [binary data]
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_Preview.html
O8 - Extra context menu item: Envoyer à &Bluetooth - c:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie_ctx.htm
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll (Safer Networking Limited)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O15 - HKLM\..Trusted Sites: 49 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKCU\..Trusted Sites: 48 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKU\.DEFAULT\..Trusted Sites: 48 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKU\S-1-5-18\..Trusted Sites: 48 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKU\S-1-5-21-699948810-825143596-2627940179-1004\..Trusted Sites: 48 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_11)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key does not exist or could not be opened.)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_11)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_11)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key does not exist or could not be opened.)
O18 - Protocol\Handler: - ipp - No CLSID value found
O18 - Protocol\Handler: - ipp\0x00000001 - C:\PROGRA~1\FICHIE~1\SYSTEM\OLEDB~1\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler: - msdaipp - No CLSID value found
O18 - Protocol\Handler: - msdaipp\0x00000001 - C:\PROGRA~1\FICHIE~1\SYSTEM\OLEDB~1\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler: - msdaipp\oledb - C:\PROGRA~1\FICHIE~1\SYSTEM\OLEDB~1\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler: - ms-help - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Filter: - text/xml - C:\PROGRA~1\FICHIE~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - See sections below for AppInitDlls and Winlogon settings

========== Winlogon Notify Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\]
AtiExtEvent: "DllName" = Ati2evxx.dll -- C:\WINDOWS\system32\Ati2evxx.dll (ATI Technologies Inc.)

========== LSA *Authentication Packages* ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"Authentication Packages" = msv1_0,nwprovau,
>[2006/10/13 14:36:56 | 00,145,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\nwprovau.dll

========== Safeboot Options ==========

"AlternateShell" = cmd.exe

========== CDRom AutoRun Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom]
"AutoRun" = 1

========== Autorun Files on Drives ==========

AUTOEXEC.BAT []
[2004/12/29 17:12:14 | 00,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT -- [ FAT32 ]

========== Files/Folders - Created Within 30 Days ==========

[3 C:\WINDOWS\System32\*.tmp files]
[2009/01/07 10:39:51 | 10,717,63456 | -HS- | C] () -- C:\hiberfil.sys
[2009/01/07 00:28:48 | 00,001,456 | ---- | C] () -- C:\Documents and Settings\Acer\Bureau\CCleaner.lnk
[2009/01/07 00:27:52 | 00,920,792 | ---- | C] (Piriform Ltd) -- C:\Documents and Settings\Acer\Bureau\ccsetup215_slim.exe
[2009/01/07 00:26:05 | 00,419,328 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Acer\Bureau\OTListIt2.exe
[2009/01/04 23:20:03 | 00,011,041 | ---- | C] () -- D:\Documents and Settings\Acer\Mes documents\courrier mutuelle.odt
[2009/01/04 21:08:04 | 00,532,631 | ---- | C] () -- C:\Documents and Settings\Acer\Bureau\016_BREVES_janv2009.pdf
[2009/01/04 20:50:24 | 01,008,717 | ---- | C] () -- C:\Documents and Settings\Acer\Bureau\plaquette Cifap 2009 v2.pdf
[2009/01/01 21:02:12 | 00,149,093 | ---- | C] () -- C:\Documents and Settings\Acer\Bureau\Stage corbefin.pdf
[2009/01/01 20:59:56 | 00,253,139 | ---- | C] (pdfforge.org) -- C:\WINDOWS\PDFCreator_Toolbar_Uninstaller_9468.exe
[2009/01/01 20:59:55 | 00,000,000 | ---D | C] -- C:\Program Files\PDFCreator Toolbar
[2009/01/01 20:59:43 | 00,137,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSMAPI32.OCX
[2009/01/01 20:59:42 | 00,662,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSCOMCT2.OCX
[2009/01/01 20:59:42 | 00,116,224 | ---- | C] () -- C:\WINDOWS\System32\pdfcmnnt.dll
[2009/01/01 20:59:41 | 00,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSCC2FR.DLL
[2009/01/01 20:59:41 | 00,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSMPIDE.DLL
[2009/01/01 20:59:40 | 00,000,000 | ---D | C] -- C:\Program Files\PDFCreator
[2009/01/01 17:16:41 | 00,000,681 | ---- | C] () -- C:\Documents and Settings\Acer\Bureau\Courrier Marie perso.lnk
[2009/01/01 16:28:59 | 00,051,784 | ---- | C] () -- D:\Documents and Settings\Acer\Mes documents\Voeux 2009 v3.pdf
[2009/01/01 16:01:21 | 00,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msadox.dll
[2009/01/01 16:01:21 | 00,102,469 | ---- | C] (Microsoft) -- C:\WINDOWS\System32\VBPrnDlg.dll
[2009/01/01 16:01:21 | 00,090,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msjro.dll
[2009/01/01 16:01:21 | 00,089,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\VB5DB.DLL
[2009/01/01 16:01:21 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msado27.tlb
[2009/01/01 16:01:20 | 00,296,584 | ---- | C] (Adobe Systems, Inc.) -- C:\WINDOWS\System32\AcroPDF.dll
[2009/01/01 16:01:20 | 00,260,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSFLXGRD.OCX
[2009/01/01 16:01:20 | 00,212,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\Richtx32.ocx
[2009/01/01 16:01:20 | 00,141,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSCMCFR.DLL
[2009/01/01 16:01:20 | 00,094,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSCAL.OCX
[2009/01/01 16:01:20 | 00,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\FLXGDFR.DLL
[2009/01/01 16:01:20 | 00,035,992 | ---- | C] () -- C:\WINDOWS\System32\acrobat.tlb
[2009/01/01 16:01:20 | 00,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\RCHTXFR.DLL
[2009/01/01 16:01:20 | 00,022,528 | ---- | C] () -- C:\WINDOWS\System32\AcroPDF.oca
[2009/01/01 16:01:20 | 00,012,476 | ---- | C] () -- C:\WINDOWS\System32\FdfTk.lib
[2009/01/01 16:01:20 | 00,009,931 | ---- | C] () -- C:\WINDOWS\System32\FDFACX.IDL
[2009/01/01 16:01:18 | 00,119,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\VB6FR.DLL
[2009/01/01 16:01:10 | 00,000,000 | ---D | C] -- C:\Program Files\coolpaie
[2009/01/01 14:42:49 | 00,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2009/01/01 12:54:30 | 00,051,379 | ---- | C] () -- D:\Documents and Settings\Acer\Mes documents\Voeux 2009 v2.pdf
[2009/01/01 12:24:57 | 00,284,042 | ---- | C] () -- D:\Documents and Settings\Acer\Mes documents\cc_20090101_122446.reg
[2008/12/31 21:38:13 | 00,053,403 | ---- | C] () -- D:\Documents and Settings\Acer\Mes documents\Voeux 2009.pdf
[2008/12/31 17:12:15 | 00,008,596 | ---- | C] () -- D:\Documents and Settings\Acer\Mes documents\Courrier Marie perso.ott
[2008/12/31 16:47:42 | 00,106,377 | ---- | C] () -- D:\Documents and Settings\Acer\Mes documents\Imposition des artistes.pdf
[2008/12/30 20:13:09 | 00,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2008/12/30 20:13:09 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
[2008/12/30 10:17:09 | 00,233,472 | ---- | C] () -- C:\Documents and Settings\Acer\Menu Démarrer\Programmes\Démarrage\PowerReg Scheduler.exe
[2008/12/29 16:27:58 | 00,000,000 | ---- | C] () -- C:\WINDOWS\QuickInstall.INI
[2008/12/29 16:27:12 | 00,001,398 | ---- | C] () -- C:\Documents and Settings\Acer\Menu Démarrer\Programmes\Démarrage\HotSync Manager.lnk
[2008/12/29 16:27:04 | 00,001,647 | ---- | C] () -- C:\Documents and Settings\Acer\Bureau\Palm Desktop.lnk
[2008/12/29 01:14:26 | 00,025,456 | ---- | C] () -- D:\Documents and Settings\Acer\Mes documents\img30.tif
[2008/12/29 00:25:16 | 00,008,345 | ---- | C] () -- D:\Documents and Settings\Acer\Mes documents\2009.odt
[2008/12/28 00:21:38 | 00,000,654 | ---- | C] () -- C:\Documents and Settings\Acer\Bureau\SyncBack.lnk
[2008/12/28 00:07:43 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\Catherine
[2008/12/27 01:13:14 | 00,000,000 | R--D | C] -- D:\Documents and Settings\Acer\Mes documents\Mes images
[2008/12/27 00:34:54 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\My Music
[2008/12/27 00:34:34 | 00,000,000 | R--D | C] -- D:\Documents and Settings\Acer\Mes documents\Mes vidéos
[2008/12/27 00:24:39 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\Picture Motion Browser
[2008/12/27 00:24:39 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\My eBooks
[2008/12/27 00:24:39 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\Marseille
[2008/12/27 00:24:39 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\Copie de CyberLink
[2008/12/27 00:24:38 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\PDF OK Vol 2 en PT idem livrets
[2008/12/27 00:24:38 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\PDF OK Vol 2 en GC dif livrets
[2008/12/27 00:24:38 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\PDF OK Vol 1 en PT idem livrets
[2008/12/27 00:24:38 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\PDF OK Vol 1 en GC dif livrets
[2008/12/27 00:24:38 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\Ecriture
[2008/12/27 00:24:37 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\Projet Carles
[2008/12/27 00:24:31 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\Photo DJ David
[2008/12/27 00:24:31 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\Caisse Commune
[2008/12/27 00:24:31 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\Appartement
[2008/12/27 00:24:30 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\CNR
[2008/12/27 00:24:30 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\CMG
[2008/12/27 00:24:29 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\Corentin
[2008/12/27 00:24:27 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\Etiquettes
[2008/12/27 00:24:27 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\CV
[2008/12/27 00:24:14 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\licenses
[2008/12/27 00:24:14 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\Famille-Maison
[2008/12/27 00:24:10 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\Marie
[2008/12/27 00:24:07 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\Modes d'emploi
[2008/12/27 00:24:07 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\Ebay
[2008/12/27 00:22:48 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\Partitions tablEdit
[2008/12/27 00:22:48 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\Opéra
[2008/12/27 00:22:45 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\PDF
[2008/12/27 00:22:40 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\Perso
[2008/12/27 00:22:34 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\Sauvegarde de la licence
[2008/12/27 00:22:34 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\Recherche Eventail
[2008/12/27 00:22:34 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\Pleine Lune
[2008/12/27 00:22:30 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\TablEdit
[2008/12/27 00:22:30 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\Déclarations mensuelles assedic
[2008/12/27 00:22:13 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\PRO
[2008/12/27 00:11:44 | 00,038,968 | ---- | C] () -- D:\Documents and Settings\Acer\Mes documents\attachments.zip
[2008/12/27 00:08:12 | 02,527,950 | ---- | C] () -- D:\Documents and Settings\Acer\Mes documents\envoidunmessageretrouvailles1retrouvailles2retro.zip
[2008/12/27 00:07:07 | 00,000,049 | ---- | C] () -- D:\Documents and Settings\Acer\Mes documents\Copie de TEtmp.rcl
[2008/12/26 23:34:06 | 00,000,000 | ---D | C] -- D:\Documents and Settings\Acer\Mes documents\Création 2004
[2008/12/26 23:32:32 | 00,001,318 | ---- | C] () -- C:\Documents and Settings\Acer\Bureau\Raccourci vers Documents de Acer.lnk
[2008/12/25 01:27:36 | 03,225,768 | ---- | C] (Art Plus Marketing & Publishing) -- C:\Program Files\photorec.exe
[2008/12/25 00:29:47 | 00,000,000 | ---D | C] -- C:\Program Files\Digital Photo Recovery
[2008/12/24 23:06:30 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Acer\Application Data\Sony Corporation
[2008/12/24 23:03:46 | 00,081,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_3.dll
[2008/12/24 23:03:43 | 00,261,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_7.dll
[2008/12/24 23:03:41 | 01,123,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_33.dll
[2008/12/24 23:03:41 | 00,443,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_33.dll
[2008/12/24 23:03:37 | 03,495,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_33.dll
[2008/12/24 23:03:37 | 00,255,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_6.dll
[2008/12/24 23:03:36 | 03,426,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_32.dll
[2008/12/24 23:03:36 | 00,251,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_5.dll
[2008/12/24 23:03:35 | 02,414,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_31.dll
[2008/12/24 23:03:35 | 00,237,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_4.dll
[2008/12/24 23:03:35 | 00,015,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\x3daudio1_1.dll
[2008/12/24 23:03:34 | 00,236,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_3.dll
[2008/12/24 23:03:34 | 00,230,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_2.dll
[2008/12/24 23:03:34 | 00,062,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_2.dll
[2008/12/24 23:03:34 | 00,062,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_1.dll
[2008/12/24 23:03:33 | 02,388,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_30.dll
[2008/12/24 23:03:33 | 00,229,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_1.dll
[2008/12/24 23:03:32 | 02,332,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_29.dll
[2008/12/24 23:03:32 | 00,230,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_0.dll
[2008/12/24 23:03:32 | 00,014,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\x3daudio1_0.dll
[2008/12/24 23:03:31 | 02,323,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_28.dll
[2008/12/24 23:03:31 | 02,319,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_27.dll
[2008/12/24 23:03:31 | 00,061,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput9_1_0.dll
[2008/12/24 23:03:30 | 02,337,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_25.dll
[2008/12/24 23:03:30 | 02,297,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_26.dll
[2008/12/24 23:03:19 | 02,222,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_24.dll
[2008/12/24 23:00:59 | 00,001,875 | ---- | C] () -- C:\Documents and Settings\Acer\Menu Démarrer\Programmes\Démarrage\Outil de détection de support Picture Motion Browser.lnk
[2008/12/24 22:57:31 | 00,000,000 | ---D | C] -- C:\Program Files\Sony
[2008/12/24 20:40:05 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft CAPICOM 2.1.0.2
[2008/12/18 17:22:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Acer\Application Data\ScanSoft
[2008/12/18 17:20:12 | 00,212,480 | ---- | C] (Eastman Kodak) -- C:\WINDOWS\PCDLIB32.DLL
[2008/12/18 17:20:12 | 00,000,000 | ---D | C] -- C:\Program Files\ArcSoft
[2008/12/18 17:16:38 | 00,000,000 | -H-D | C] -- C:\WINDOWS\System32\CanonIJ Uninstaller Information
[2008/12/18 17:16:10 | 00,000,000 | -H-D | C] -- C:\Program Files\CanonBJ
[2008/12/18 17:14:19 | 00,000,000 | ---D | C] -- C:\Program Files\Canon
[2008/12/17 11:21:22 | 00,001,304 | ---- | C] () -- C:\Documents and Settings\Acer\Bureau\Amis.csv
[2008/12/17 11:21:01 | 00,007,578 | ---- | C] () -- C:\Documents and Settings\Acer\Bureau\ADH cdpf 0607.csv
[2008/12/16 23:29:09 | 00,000,022 | ---- | C] () -- C:\Documents and Settings\Acer\Bureau\contactsCollègues.csv
[2008/12/16 23:28:49 | 00,000,022 | ---- | C] () -- C:\Documents and Settings\Acer\Bureau\contactsFamille.csv
[2008/12/16 23:28:28 | 00,000,022 | ---- | C] () -- C:\Documents and Settings\Acer\Bureau\contactsAMis.csv
[2008/12/15 10:54:04 | 00,023,552 | ---- | C] () -- D:\Documents and Settings\Acer\Mes documents\Mon coeur.doc
[2008/12/12 23:17:43 | 00,086,024 | ---- | C] () -- C:\Documents and Settings\Acer\Bureau\contacts.csv
[2008/12/12 23:15:17 | 00,124,741 | ---- | C] () -- C:\Documents and Settings\Acer\Bureau\contacts.vcf
[2008/12/10 00:44:27 | 00,214,506 | ---- | C] () -- D:\Documents and Settings\Acer\Mes documents\NOV 08.pdf
[2008/12/08 17:39:23 | 00,012,666 | ---- | C] () -- D:\Documents and Settings\Acer\Mes documents\Fred.zip

========== Files - Modified Within 30 Days ==========

[3 C:\WINDOWS\System32\*.tmp files]
[2009/01/07 10:47:58 | 00,233,472 | ---- | M] () -- C:\Documents and Settings\Acer\Menu Démarrer\Programmes\Démarrage\PowerReg Scheduler.exe
[2009/01/07 10:40:56 | 00,000,000 | ---- | M] () -- C:\WINDOWS\System32\eRLog.ini
[2009/01/07 10:39:58 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009/01/07 10:39:54 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009/01/07 10:39:52 | 10,717,63456 | -HS- | M] () -- C:\hiberfil.sys
[2009/01/07 10:25:20 | 00,000,012 | ---- | M] () -- C:\WINDOWS\bthservsdp.dat
[2009/01/07 00:28:50 | 00,001,456 | ---- | M] () -- C:\Documents and Settings\Acer\Bureau\CCleaner.lnk
[2009/01/07 00:28:04 | 00,920,792 | ---- | M] (Piriform Ltd) -- C:\Documents and Settings\Acer\Bureau\ccsetup215_slim.exe
[2009/01/07 00:26:20 | 00,419,328 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Acer\Bureau\OTListIt2.exe
[2009/01/06 00:50:52 | 00,000,527 | ---- | M] () -- C:\hpfr3420.xml
[2009/01/04 21:07:58 | 00,532,631 | ---- | M] () -- C:\Documents and Settings\Acer\Bureau\016_BREVES_janv2009.pdf
[2009/01/04 20:50:18 | 01,008,717 | ---- | M] () -- C:\Documents and Settings\Acer\Bureau\plaquette Cifap 2009 v2.pdf
[2009/01/04 20:09:10 | 00,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2009/01/04 15:11:22 | 00,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009/01/01 21:02:16 | 00,149,093 | ---- | M] () -- C:\Documents and Settings\Acer\Bureau\Stage corbefin.pdf
[2009/01/01 20:59:58 | 00,253,139 | ---- | M] (pdfforge.org) -- C:\WINDOWS\PDFCreator_Toolbar_Uninstaller_9468.exe
[2009/01/01 18:00:32 | 00,053,403 | ---- | M] () -- D:\Documents and Settings\Acer\Mes documents\Voeux 2009.pdf
[2009/01/01 17:16:42 | 00,000,681 | ---- | M] () -- C:\Documents and Settings\Acer\Bureau\Courrier Marie perso.lnk
[2009/01/01 16:29:02 | 00,051,784 | ---- | M] () -- D:\Documents and Settings\Acer\Mes documents\Voeux 2009 v3.pdf
[2009/01/01 12:54:32 | 00,051,379 | ---- | M] () -- D:\Documents and Settings\Acer\Mes documents\Voeux 2009 v2.pdf
[2009/01/01 12:25:18 | 00,284,042 | ---- | M] () -- D:\Documents and Settings\Acer\Mes documents\cc_20090101_122446.reg
[2008/12/31 18:38:18 | 00,008,596 | ---- | M] () -- D:\Documents and Settings\Acer\Mes documents\Courrier Marie perso.ott
[2008/12/31 16:47:44 | 00,106,377 | ---- | M] () -- D:\Documents and Settings\Acer\Mes documents\Imposition des artistes.pdf
[2008/12/30 23:22:22 | 00,011,041 | ---- | M] () -- D:\Documents and Settings\Acer\Mes documents\courrier mutuelle.odt
[2008/12/29 16:28:00 | 00,000,000 | ---- | M] () -- C:\WINDOWS\QuickInstall.INI
[2008/12/29 16:27:14 | 00,001,398 | ---- | M] () -- C:\Documents and Settings\Acer\Menu Démarrer\Programmes\Démarrage\HotSync Manager.lnk
[2008/12/29 16:27:06 | 00,001,647 | ---- | M] () -- C:\Documents and Settings\Acer\Bureau\Palm Desktop.lnk
[2008/12/29 11:06:18 | 00,032,256 | ---- | M] () -- C:\Documents and Settings\Acer\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/12/29 00:35:58 | 00,008,345 | ---- | M] () -- D:\Documents and Settings\Acer\Mes documents\2009.odt
[2008/12/29 00:15:08 | 00,025,456 | ---- | M] () -- D:\Documents and Settings\Acer\Mes documents\img30.tif
[2008/12/28 00:23:58 | 00,000,654 | ---- | M] () -- C:\Documents and Settings\Acer\Bureau\SyncBack.lnk
[2008/12/27 23:13:06 | 00,023,552 | ---- | M] () -- D:\Documents and Settings\Acer\Mes documents\Mon coeur.doc
[2008/12/27 00:22:04 | 00,000,076 | -HS- | M] () -- D:\Documents and Settings\Acer\Mes documents\desktop.ini
[2008/12/27 00:16:18 | 00,001,318 | ---- | M] () -- C:\Documents and Settings\Acer\Bureau\Raccourci vers Documents de Acer.lnk
[2008/12/27 00:07:18 | 00,002,281 | ---- | M] () -- C:\WINDOWS\tabled32.ini
[2008/12/27 00:07:08 | 00,000,049 | ---- | M] () -- D:\Documents and Settings\Acer\Mes documents\Copie de TEtmp.rcl
[2008/12/25 10:44:24 | 00,000,441 | ---- | M] () -- C:\WINDOWS\BRWMARK.INI
[2008/12/25 09:44:26 | 00,000,659 | ---- | M] () -- C:\Documents and Settings\Acer\Menu Démarrer\Programmes\Démarrage\palmOne Registration.lnk
[2008/12/24 23:01:00 | 00,001,875 | ---- | M] () -- C:\Documents and Settings\Acer\Menu Démarrer\Programmes\Démarrage\Outil de détection de support Picture Motion Browser.lnk
[2008/12/18 17:22:30 | 00,032,220 | ---- | M] () -- C:\WINDOWS\maxlink.ini
[2008/12/17 11:21:18 | 00,001,304 | ---- | M] () -- C:\Documents and Settings\Acer\Bureau\Amis.csv
[2008/12/17 11:20:48 | 00,007,578 | ---- | M] () -- C:\Documents and Settings\Acer\Bureau\ADH cdpf 0607.csv
[2008/12/16 23:29:04 | 00,000,022 | ---- | M] () -- C:\Documents and Settings\Acer\Bureau\contactsCollègues.csv
[2008/12/16 23:28:42 | 00,000,022 | ---- | M] () -- C:\Documents and Settings\Acer\Bureau\contactsFamille.csv
[2008/12/16 23:28:12 | 00,000,022 | ---- | M] () -- C:\Documents and Settings\Acer\Bureau\contactsAMis.csv
[2008/12/15 11:24:46 | 00,095,784 | ---- | M] () -- C:\Documents and Settings\Acer\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2008/12/13 14:52:18 | 00,000,591 | ---- | M] () -- C:\WINDOWS\cdplayer.ini
[2008/12/12 23:17:38 | 00,086,024 | ---- | M] () -- C:\Documents and Settings\Acer\Bureau\contacts.csv
[2008/12/12 23:15:00 | 00,124,741 | ---- | M] () -- C:\Documents and Settings\Acer\Bureau\contacts.vcf
[2008/12/12 18:35:12 | 03,081,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mshtml.dll
[2008/12/12 18:35:12 | 03,081,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll
[2008/12/10 00:44:28 | 00,214,506 | ---- | M] () -- D:\Documents and Settings\Acer\Mes documents\NOV 08.pdf
[2008/12/10 00:24:38 | 17,593,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MRT.exe
[2008/12/08 17:39:16 | 00,012,666 | ---- | M] () -- D:\Documents and Settings\Acer\Mes documents\Fred.zip
<End>
ziboulette
 
Messages: 6
Inscription: 01 Jan 2009, 15:40

Messagede ziboulette » 07 Jan 2009, 11:25

Deuxième rapport

OTListIt Extras logfile created on: 07/01/2009 10:48:43 - Run
OTListIt2 by OldTimer - Version 1.0.3.0 Folder = C:\Documents and Settings\Acer\Bureau
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

1022,05 Mb Total Physical Memory | 597,48 Mb Available Physical Memory | 58,46% Memory free
2,40 Gb Paging File | 2,10 Gb Available in Paging File | 87,33% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072;

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 46,25 Gb Total Space | 31,89 Gb Free Space | 68,96% Space Free | Partition Type: FAT32
Drive D: | 43,95 Gb Total Space | 2,27 Gb Free Space | 5,16% Space Free | Partition Type: FAT32
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: ACER-41C5D59B6B
Current User Name: Acer
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Output = Standard
File Age = 30 Days
Company Name Whitelist: On

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
[2008/05/21 04:37:24 | 12,844,576 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook
[2006/04/21 17:04:12 | 00,143,360 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero 7\Nero Home\NeroHome.exe:*:Enabled:Nero Home
[2008/04/28 06:14:00 | 00,073,728 | ---- | M] (Software 2000 Limited) -- C:\WINDOWS\system32\SPOOL\drivers\W32X86\3\HP1006MC.EXE:*:Enabled:SMLMProxy Module - HP1006MC.EXE
File not found -- C:\Program Files\Fichiers communs\XpressUpdate\XPressUpdate.exe:*:Enabled:XPressUpdate

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{0BEDBD4E-2D34-47B5-9973-57E62B29307C}" = ATI Control Panel
"{0C0BE8DE-7BD2-45A5-BBA4-95C9FA2CE292}" = DM_Install
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP810" = Canon MP810
"{18FF8DB9-922C-41C9-AA29-6DA648D6B071}" = Acer GridVista
"{26A24AE4-039D-4CA4-87B4-2F83216011FF}" = Java(TM) 6 Update 11
"{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java(TM) 6 Update 7
"{332CC6BF-E6C7-48EE-BA3D-435E576AD67F}" = PaperPort Image Printer
"{3418EAAB-58BA-481A-A9F5-77BCCEBF9B39}" = O2Micro MemoryCardBus & Smart Card Reader Windows Driver
"{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3F4EC965-28EF-45C3-B063-04B25D4E9679}" = WIDCOMM Bluetooth Software
"{4E68EAA3-775A-4542-A08A-47DB8E8E74A6}" = NTI Backup NOW! 3
"{58E5844B-7CE2-413D-83D1-99294BF6C74F}" = Acer ePowerManagement
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{6860B340-530D-46B3-91F8-1AE1F70F7C33}" = OpenOffice.org 3.0
"{6ECB39BD-73C2-44DD-B1A0-898207C58D8B}" = Photo et imagerie HP 2.0 - All-in-One Pilote
"{6EF953B4-DB16-4E59-87CF-B61783DE6988}" = Foxit Reader
"{70AB1576-7883-2313-C650-7A71270B1036}" = Nero 7 Ultra Edition
"{827289F5-B44F-4E49-9993-840741585A62}" = Acer eManager for Notebook
"{85309D89-7BE9-4094-BB17-24999C6118FC}" = ArcSoft PhotoStudio 5.5
"{8DC42D05-680B-41B0-8878-6C14D24602DB}" = QuickTime
"{90120000-0010-040C-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (French) 12
"{90120000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2007
"{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{BEE75E01-DD3F-4D5F-B96C-609E6538D419}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0015-040C-0000-0000000FF1CE}" = Microsoft Office Access MUI (French) 2007
"{90120000-0015-040C-0000-0000000FF1CE}_PROPLUS_{A0353900-21A2-42CF-B973-883500A027F7}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0016-040C-0000-0000000FF1CE}" = Microsoft Office Excel MUI (French) 2007
"{90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{A0353900-21A2-42CF-B973-883500A027F7}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0018-040C-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (French) 2007
"{90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{A0353900-21A2-42CF-B973-883500A027F7}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0019-040C-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (French) 2007
"{90120000-0019-040C-0000-0000000FF1CE}_PROPLUS_{A0353900-21A2-42CF-B973-883500A027F7}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001A-040C-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (French) 2007
"{90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{A0353900-21A2-42CF-B973-883500A027F7}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001B-040C-0000-0000000FF1CE}" = Microsoft Office Word MUI (French) 2007
"{90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{A0353900-21A2-42CF-B973-883500A027F7}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0401-0000-0000000FF1CE}" = Microsoft Office Proof (Arabic) 2007
"{90120000-001F-0401-0000-0000000FF1CE}_PROPLUS_{5A2F65A4-808F-4A1E-973E-92E17824982D}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_PROPLUS_{2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_PROPLUS_{3EC77D26-799B-4CD8-914F-C1565E796173}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_PROPLUS_{430971B1-C31E-45DA-81E0-72C095BAB72C}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0413-0000-0000000FF1CE}" = Microsoft Office Proof (Dutch) 2007
"{90120000-001F-0413-0000-0000000FF1CE}_PROPLUS_{B3F4DC34-7F60-4B7C-A79F-1C13012D99D4}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_PROPLUS_{F7A31780-33C4-4E39-951A-5EC9B91D7BF1}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-002C-040C-0000-0000000FF1CE}" = Microsoft Office Proofing (French) 2007
"{90120000-0044-040C-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (French) 2007
"{90120000-0044-040C-0000-0000000FF1CE}_PROPLUS_{A0353900-21A2-42CF-B973-883500A027F7}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-006E-040C-0000-0000000FF1CE}" = Microsoft Office Shared MUI (French) 2007
"{90120000-006E-040C-0000-0000000FF1CE}_PROPLUS_{EC50B538-CBE1-42E6-B7FE-87AA540AADFB}" = Microsoft Office Language Pack 2007 Service Pack 1 (SP1)
"{9524F641-D8B7-4C39-B2E7-E6A6E1222F3A}" = Ciel Paye Evolution Démo 7.01
"{9867A917-5D17-40DE-83BA-BEA5293194B1}" = Photo et imagerie HP 2.0 - All-in-One
"{9A2AEB56-F18F-457D-9D23-373EA3301280}" = Ciel Compta 14.0
"{AC76BA86-7AD7-1033-7B44-000000000001}" = Adobe Reader 6.0
"{AFD12747-7CDA-49A5-BC5F-18B90FAD6822}" = DM_Install
"{B376402D-58EA-45EA-BD50-DD924EB67A70}" = Disque de souvenirs HP
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B6C89654-A6A2-477C-873B-724EC1C56407}" = ScanSoft PaperPort 11
"{BE6890C7-31EF-478C-812E-1E2899ABFCA9}" = Broadcom Gigabit Integrated Controller
"{C1E693A4-B1D5-4DCD-B68D-2087835B7184}" = ScanSoft OmniPage SE 4.0
"{C438B7C4-B4F8-49C5-A4DF-FF6F1F242778}" = NTI CD & DVD-Maker
"{C83FB11D-9EC6-49D7-99A7-DDDB2264883C}" = Brother MFL-Pro Suite
"{C900EF06-2E76-49C7-8DB0-41F629B21DC5}" = hp psc 1200 series
"{CE2121C6-C94D-4A73-8EA4-6943F33EE335}" = Picture Package Music Transfer
"{D5068583-D569-468B-9755-5FBF5848F46F}" = Sony Picture Utility
"{D6FFC3B5-0CE1-4566-801D-3F9D8F000652}" = Documents To Go
"{DBC3FDEC-D5F4-439C-9A18-EF454A74E3DE}_is1" = NOD32 FiX v1.9
"{E89D78B8-28F7-412F-8B26-C684739CBBDC}" = Palm Desktop
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Agere Systems Soft Modem" = Agere Systems HDA Modem
"Audacity_is1" = Audacity 1.2.6
"CCleaner" = CCleaner (remove only)
"CDex" = CDex extraction audio
"coolpaie_is1" = coolpaie 3.3.0.55 BETA
"Duplicate Cleaner_is1" = Duplicate Cleaner 1.3
"DVD Shrink_is1" = DVD Shrink 3.2
"Easy-PhotoPrint" = Canon Utilities Easy-PhotoPrint
"Easy-WebPrint" = Easy-WebPrint
"Enregistrement utilisateur de Canon MP810" = Enregistrement utilisateur de Canon MP810
"HijackThis" = HijackThis 2.0.2
"HP PSC 1200 Series" = Photo et imagerie HP 2.0 - hp psc 1200 series
"InstallShield_{3418EAAB-58BA-481A-A9F5-77BCCEBF9B39}" = O2Micro MemoryCardBus & Smart Card Reader Windows Driver
"InstallShield_{4E68EAA3-775A-4542-A08A-47DB8E8E74A6}" = NTI Backup NOW! 3
"InstallShield_{827289F5-B44F-4E49-9993-840741585A62}" = Acer eManager for Notebook
"InstallShield_{BE6890C7-31EF-478C-812E-1E2899ABFCA9}" = Broadcom Gigabit Integrated Controller
"InstallShield_{C438B7C4-B4F8-49C5-A4DF-FF6F1F242778}" = NTI CD & DVD-Maker Gold
"LManager" = Launch Manager
"MediaNavigation.CDLabelPrint" = CD-LabelPrint
"Mozilla Firefox (3.0.5)" = Mozilla Firefox (3.0.5)
"MP Navigator 3.0" = Canon MP Navigator 3.0
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NOD32" = NOD32 Antivirus System
"PDFCreator Toolbar" = PDFCreator Toolbar
"Picasa2" = Picasa 2
"PROPLUS" = Microsoft Office Professional Plus 2007
"RealPlayer 6.0" = RealPlayer
"SyncBack_is1" = SyncBack
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"TablEdit_is1" = TablEdit 2.65
"Transcribe!_is1" = Transcribe! 7.50
"ViceVersa FREE_is1" = ViceVersa FREE 1.0.3
"VLC media player" = VideoLAN VLC media player 0.8.6h
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Lecteur Windows Media 11
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Art Plus Digital Photo Recovery" = Art Plus Digital Photo Recovery

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-699948810-825143596-2627940179-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Art Plus Digital Photo Recovery" = Art Plus Digital Photo Recovery

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 29/12/2008 10:47:40 | Computer Name = ACER-41C5D59B6B | Source = Application Error | ID = 1000
Description = Application défaillante hotsync.exe, version 6.0.1.0, module défaillant
hotsync.exe, version 6.0.1.0, adresse de défaillance 0x0002d94f.

Error - 29/12/2008 11:35:48 | Computer Name = ACER-41C5D59B6B | Source = Application Error | ID = 1000
Description = Application défaillante hotsync.exe, version 4.0.4.0, module défaillant
unknown, version 0.0.0.0, adresse de défaillance 0x00b80250.

Error - 29/12/2008 13:12:31 | Computer Name = ACER-41C5D59B6B | Source = Application Hang | ID = 1002
Description = Application bloquée firefox.exe, version 1.9.0.3257, module bloqué
hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

Error - 31/12/2008 11:49:12 | Computer Name = ACER-41C5D59B6B | Source = Application Hang | ID = 1002
Description = Application bloquée firefox.exe, version 1.9.0.3257, module bloqué
hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

Error - 31/12/2008 11:56:13 | Computer Name = ACER-41C5D59B6B | Source = Application Hang | ID = 1002
Description = Application bloquée firefox.exe, version 1.9.0.3257, module bloqué
hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

Error - 31/12/2008 11:56:16 | Computer Name = ACER-41C5D59B6B | Source = Application Hang | ID = 1001
Description = Détecteur d'erreurs 1037228563.

Error - 31/12/2008 11:58:07 | Computer Name = ACER-41C5D59B6B | Source = Application Hang | ID = 1002
Description = Application bloquée firefox.exe, version 1.9.0.3257, module bloqué
hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

Error - 31/12/2008 11:58:09 | Computer Name = ACER-41C5D59B6B | Source = Application Hang | ID = 1001
Description = Détecteur d'erreurs 1037228563.

Error - 01/01/2009 15:31:53 | Computer Name = ACER-41C5D59B6B | Source = Application Hang | ID = 1002
Description = Application bloquée firefox.exe, version 1.9.0.3257, module bloqué
hungapp, version 0.0.0.0, adresse de blocage 0x00000000.

Error - 01/01/2009 20:03:39 | Computer Name = ACER-41C5D59B6B | Source = Userenv | ID = 1068
Description = Windows a interrompu le traitement des objets de stratégie de groupe
car l'ordinateur a été éteint ou l'utilisateur a fermé sa session.

[ System Events ]
Error - 07/01/2009 05:30:47 | Computer Name = ACER-41C5D59B6B | Source = DCOM | ID = 10005
Description = DCOM a reçu l'erreur "%1084" lors de la mise en route du service wuauserv
avec les arguments "" pour démarrer le serveur : {E60687F7-01A1-40AA-86AC-DB1CBF673334}

Error - 07/01/2009 05:32:02 | Computer Name = ACER-41C5D59B6B | Source = DCOM | ID = 10005
Description = DCOM a reçu l'erreur "%1084" lors de la mise en route du service StiSvc
avec les arguments "" pour démarrer le serveur : {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 07/01/2009 05:38:39 | Computer Name = ACER-41C5D59B6B | Source = DCOM | ID = 10005
Description = DCOM a reçu l'erreur "%1084" lors de la mise en route du service EventSystem
avec les arguments "" pour démarrer le serveur : {1BE1F766-5536-11D1-B726-00C04FB926AF}

Error - 07/01/2009 05:39:57 | Computer Name = ACER-41C5D59B6B | Source = SCardSvr | ID = 610
Description = Le lecteur de carte à puce 'O2Micro PCMCIA Reader 0' a rejeté le contrôle
d'E/S POWER : La carte à puce ne répond pas à la réinitialisation.

Error - 07/01/2009 05:39:57 | Computer Name = ACER-41C5D59B6B | Source = SCardSvr | ID = 610
Description = Le lecteur de carte à puce 'O2Micro PCMCIA Reader 0' a rejeté le contrôle
d'E/S POWER : La carte à puce ne répond pas à la réinitialisation.

Error - 07/01/2009 05:39:58 | Computer Name = ACER-41C5D59B6B | Source = SCardSvr | ID = 610
Description = Le lecteur de carte à puce 'O2Micro PCMCIA Reader 0' a rejeté le contrôle
d'E/S POWER : La carte à puce ne répond pas à la réinitialisation.

Error - 07/01/2009 05:40:17 | Computer Name = ACER-41C5D59B6B | Source = O2SCBUS | ID = 0
Description =

Error - 07/01/2009 05:40:17 | Computer Name = ACER-41C5D59B6B | Source = O2SCBUS | ID = 0
Description =

Error - 07/01/2009 05:40:17 | Computer Name = ACER-41C5D59B6B | Source = O2SCBUS | ID = 0
Description =

Error - 07/01/2009 05:40:19 | Computer Name = ACER-41C5D59B6B | Source = Print | ID = 23
Description = L'imprimante Easy PDF Creator n'a pas pu s'initialiser car aucun pilote
Easy PDF Creator adéquat n'a été trouvé.


<End>
ziboulette
 
Messages: 6
Inscription: 01 Jan 2009, 15:40

Messagede nickW » 08 Jan 2009, 01:35

Bonsoir,


Au risque de me répéter,

Peux-tu également me décrire la page "qui s'ouvre tout le temps avec IE": adresse, site, etc...


A suivre,
nickW - Image
30/07/2012: Plus de désinfection de PC jusqu'à nouvel ordre.
Pas de demande d'analyse de log en MP (Message Privé)
Mes configs
Avatar de l’utilisateur
nickW
Modérateur
 
Messages: 21698
Inscription: 20 Mai 2004, 17:41
Localisation: Dordogne/Île de France

Messagede ziboulette » 08 Jan 2009, 09:04

Bonjour,

Je n'ai pas fait attention à l'adresse.
C'est une page qui propose des location immobilières.
Je vais faire plus attention.............
ziboulette
 
Messages: 6
Inscription: 01 Jan 2009, 15:40


Retourner vers Sécurité (Contamination - Décontamination)

Qui est en ligne

Utilisateurs parcourant ce forum: Aucun utilisateur enregistré et 21 invités