| Auteur |
Message |
Neurone isolé
Messages: 1
Tutoriaux : 0
|
 Posté le:
Jeu 10 Avr 2008 11:53 Sujet : ordinateurs qui se met en veille tous seule |
   |
bonjour,voila mon ordi se met en veille prolonge alors que toute sorte de veille est desactive et la
t° du proscesseur est a environ 50°C.j ai lu pas mal d article mais je n ai rien trouver qui m
enleve se probleme.si quelqu un peut m aider s il vous plait merci.
voici exta.txt et suivra derriere main.txt
exta.txt: Deckard's System Scanner v20071014.68
Extra logfile - please post this as an attachment with your post.
--------------------------------------------------------------------------------
-- System Information ----------------------------------------------------------
Microsoft Windows XP Professionnel (build 2600) SP 2.0
Architecture: X86; Language: French
CPU 0: Intel(R) Pentium(R) D CPU 3.00GHz
CPU 1: Intel(R) Pentium(R) D CPU 3.00GHz
Percentage of Memory in Use: 26%
Physical Memory (total/avail): 2046.42 MiB / 1499.18 MiB
Pagefile Memory (total/avail): 3939 MiB / 3492.18 MiB
Virtual Memory (total/avail): 2047.88 MiB / 1922.47 MiB
C: is Fixed (NTFS) - 139.69 GiB total, 120.48 GiB free.
D: is Fixed (NTFS) - 132.73 GiB total, 21.17 GiB free.
E: is Fixed (FAT32) - 7.02 GiB total, 4.31 GiB free.
F: is CDROM (No Media)
G: is CDROM (No Media)
H: is Removable (No Media)
I: is Removable (No Media)
J: is Removable (No Media)
\\.\PHYSICALDRIVE0 - ST3300822AS - 279.46 GiB - 3 partitions
\PARTITION0 (bootable) - Système de fichiers installable - 139.69 GiB - C:
\PARTITION1 - Étendu avec Inter. 13 étendue - 139.76 GiB - D: - E:
\\.\PHYSICALDRIVE1 - Generic Flash HS-CF USB Device
\\.\PHYSICALDRIVE2 - Generic Flash HS-MS/SD USB Device
\\.\PHYSICALDRIVE3 - Generic Flash HS-SM USB Device
-- Security Center -------------------------------------------------------------
AUOptions is set to notify before download.
Windows Internal Firewall is enabled.
FirstRunDisabled is set.
AV: avast! antivirus 4.8.1169 [VPS 080409-1] v4.8.1169 (ALWIL Software)
[HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\Authori
zedApplications\List]
"C:\\WINDOWS\\system32\\sessmgr.exe"="C:\\WINDOWS\\system32\\sessmgr.exe:*:enabled:Assistance à
distance"
"C:\\Program Files\\Messenger\\msmsgs.exe"="C:\\Program
Files\\Messenger\\msmsgs.exe:*:enabled:Windows Messenger"
"C:\\WINDOWS\\system32\\fxsclnt.exe"="C:\\WINDOWS\\system32\\fxsclnt.exe:*:enabled:Microsoft Fax"
"C:\\Program Files\\CA\\eTrust Antivirus\\InocIT.exe"="C:\\Program Files\\CA\\eTrust
Antivirus\\InocIT.exe:*:enabled:eTrust Antivirus - Local Scanner"
"C:\\Program Files\\CA\\eTrust Antivirus\\Realmon.exe"="C:\\Program Files\\CA\\eTrust
Antivirus\\Realmon.exe:*:enabled:eTrust Antivirus - Realtime monitor"
"C:\\Program Files\\CA\\eTrust Antivirus\\InoRpc.exe"="C:\\Program Files\\CA\\eTrust
Antivirus\\InoRpc.exe:*:enabled:eTrust Antivirus - RPC Server"
"C:\\Program Files\\NetMeeting\\Conf.exe"="C:\\Program
Files\\NetMeeting\\Conf.exe:*:enabled:NetMeeting"
"C:\\Program Files\\Ahead\\Nero MediaHome\\NeroMediaHome.exe"="C:\\Program Files\\Ahead\\Nero
MediaHome\\NeroMediaHome.exe:*:enabled:Nero MediaHome"
[HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\Autho
rizedApplications\List]
"C:\\WINDOWS\\system32\\sessmgr.exe"="C:\\WINDOWS\\system32\\sessmgr.exe:*:enabled:Assistance à
distance"
"C:\\Program Files\\Messenger\\msmsgs.exe"="C:\\Program
Files\\Messenger\\msmsgs.exe:*:enabled:Windows Messenger"
"C:\\WINDOWS\\system32\\fxsclnt.exe"="C:\\WINDOWS\\system32\\fxsclnt.exe:*:enabled:Microsoft Fax"
"C:\\Program Files\\CA\\eTrust Antivirus\\InocIT.exe"="C:\\Program Files\\CA\\eTrust
Antivirus\\InocIT.exe:*:enabled:eTrust Antivirus - Local Scanner"
"C:\\Program Files\\CA\\eTrust Antivirus\\Realmon.exe"="C:\\Program Files\\CA\\eTrust
Antivirus\\Realmon.exe:*:enabled:eTrust Antivirus - Realtime monitor"
"C:\\Program Files\\CA\\eTrust Antivirus\\InoRpc.exe"="C:\\Program Files\\CA\\eTrust
Antivirus\\InoRpc.exe:*:enabled:eTrust Antivirus - RPC Server"
"C:\\Program Files\\NetMeeting\\Conf.exe"="C:\\Program
Files\\NetMeeting\\Conf.exe:*:enabled:NetMeeting"
"C:\\Program Files\\Ahead\\Nero MediaHome\\NeroMediaHome.exe"="C:\\Program Files\\Ahead\\Nero
MediaHome\\NeroMediaHome.exe:*:enabled:Nero MediaHome"
"C:\\WINDOWS\\system32\\ZoneLabs\\vsmon.exe"="C:\\WINDOWS\\system32\\ZoneLabs\\vsmon.exe:*:Enabled:T
rueVector Service"
"C:\\Program Files\\Sunbelt Software\\Personal Firewall\\kpf4gui.exe"="C:\\Program Files\\Sunbelt
Software\\Personal Firewall\\kpf4gui.exe:*:Enabled:Sunbelt Firewall GUI"
"C:\\Program Files\\ABC\\abc.exe"="C:\\Program Files\\ABC\\abc.exe:*:Enabled:abc"
-- Environment Variables -------------------------------------------------------
ALLUSERSPROFILE=C:\Documents and Settings\All Users
APPDATA=C:\Documents and Settings\ramses\Application Data
CLIENTNAME=Console
CommonProgramFiles=C:\Program Files\Fichiers communs
COMPUTERNAME=OEM-6B963ED1DC7
ComSpec=C:\WINDOWS\system32\cmd.exe
FP_NO_HOST_CHECK=NO
HOMEDRIVE=C:
HOMEPATH=\Documents and Settings\ramses
LOGONSERVER=\\OEM-6B963ED1DC7
NUMBER_OF_PROCESSORS=2
OS=Windows_NT
Path=C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\Program Files\ATI
Technologies\ATI.ACE\;C:\Program Files\Samsung\Samsung PC Studio 3\
PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
PROCESSOR_ARCHITECTURE=x86
PROCESSOR_IDENTIFIER=x86 Family 15 Model 6 Stepping 2, GenuineIntel
PROCESSOR_LEVEL=15
PROCESSOR_REVISION=0602
ProgramFiles=C:\Program Files
PROMPT=$P$G
SESSIONNAME=Console
SystemDrive=C:
SystemRoot=C:\WINDOWS
TEMP=C:\DOCUME~1\ramses\LOCALS~1\Temp
TMP=C:\DOCUME~1\ramses\LOCALS~1\Temp
USERDOMAIN=OEM-6B963ED1DC7
USERNAME=ramses
USERPROFILE=C:\Documents and Settings\ramses
windir=C:\WINDOWS
-- User Profiles ---------------------------------------------------------------
ramses (admin)
Administrateur (admin)
-- Add/Remove Programs ---------------------------------------------------------
--> C:\PROGRA~1\CLUB-I~1\DRCLUB~1\Uninstall.exe TONLFR
--> C:\Program Files\Nero\Nero 7\nero\uninstall\UNNERO.exe /UNINSTALL
--> C:\WINDOWS\IsUn040c.exe -fC:\WINDOWS\orun32.isu
--> C:\WINDOWS\UNNeroBackItUp.exe /UNINSTALL
--> C:\WINDOWS\UNNeroMediaHome.exe /UNINSTALL
--> C:\WINDOWS\UNNeroShowTime.exe /UNINSTALL
--> C:\WINDOWS\UNNeroVision.exe /UNINSTALL
--> C:\WINDOWS\UNRecode.exe /UNINSTALL
ABC (remove only) --> C:\Program Files\ABC\Uninstall.exe
Ad-Aware SE Personal --> C:\PROGRA~1\Lavasoft\AD-AWA~1\UNWISE.EXE
C:\PROGRA~1\Lavasoft\AD-AWA~1\INSTALL.LOG
Adobe Flash Player ActiveX --> C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 7.0.7 - Français --> MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A70700000002}
ATI - Utilitaire de désinstallation du logiciel --> C:\Program Files\ATI
Technologies\UninstallAll\AtiCimUn.exe
ATI Catalyst Control Center --> MsiExec.exe /I{007C3175-03C9-4E25-874E-7EE486CD6BAD}
ATI Display Driver --> rundll32
C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001
-inf_class:DISPLAY -clean
avast! Antivirus --> C:\Program Files\Alwil Software\Avast4\aswRunDll.exe "C:\Program Files\Alwil
Software\Avast4\Setup\setiface.dll",RunSetup
BroadJump Client Foundation --> C:\WINDOWS\IsUninst.exe -f"C:\Program Files\BroadJump\Client
Foundation\Uninst.isu" -c"C:\Program Files\BroadJump\Client Foundation\RmvBJCFD.dll" -b"CFD" -h"CFD"
-a
C-Media USB2.0 Card Reader --> C:\WINDOWS\CmiUCRUninstall.exe C:\Program Files\C-Media USB2.0
Card Reader
Camera RAW Plug-In for EPSON Creativity Suite --> RunDll32
C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program
Files\InstallShield Installation Information\{8DAC1AE4-33D1-4A78-8A42-00E09EDECC3E}\SETUP.EXE"
-l0x40c UNINST
CCleaner (remove only) --> "C:\Program Files\CCleaner\uninst.exe"
Configurateur Modem --> "C:\Program Files\Club-Internet\Assistance\ConfModem\uninstall.exe"
Correctif pour Windows XP (KB893357) -->
Correctif pour Windows XP (KB895953) -->
Correctif pour Windows XP (KB912024) -->
Correctif Windows XP - KB834707 -->
Correctif Windows XP - KB867282 -->
Correctif Windows XP - KB873333 -->
Correctif Windows XP - KB873339 -->
Correctif Windows XP - KB885250 -->
Correctif Windows XP - KB885835 -->
Correctif Windows XP - KB885836 -->
Correctif Windows XP - KB885884 -->
Correctif Windows XP - KB886185 -->
Correctif Windows XP - KB887472 -->
Correctif Windows XP - KB888113 -->
Correctif Windows XP - KB888302 -->
Correctif Windows XP - KB890047 -->
Correctif Windows XP - KB890175 -->
Correctif Windows XP - KB890859 -->
Correctif Windows XP - KB890923 -->
Correctif Windows XP - KB891781 -->
Correctif Windows XP - KB892627 -->
Correctif Windows XP - KB893056 -->
Correctif Windows XP - KB893086 -->
Correctif Windows XP - KB896178 -->
CX4300_5500_DX4400 Manuel --> C:\Program
Files\EPSON\TPMANUAL\CX4300_5500_DX4400\FRA\USE_G\DOCUNINS.EXE
DAEMON Tools --> MsiExec.exe /I{3DED3A72-61A8-4B87-98A5-EF0BC8038AA0}
Docteur Club Internet --> C:\WINDOWS\Motive\TONLFR\MCCUninst.exe
EPSON Attach To Email --> C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel
32\IDriver.exe /M{20C45B32-5AB6-46A4-94EF-58950CAF05E5} /l1033 ADDREMOVEDLG
EPSON Copy Utility 3 --> RunDll32
C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program
Files\InstallShield Installation Information\{67EDD823-135A-4D59-87BD-950616D6E857}\SETUP.EXE"
-l0x40c -UnInstall
EPSON Easy Photo Print --> RunDll32
C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program
Files\InstallShield Installation Information\{B66E665A-DF96-4C38-9422-C7F74BC1B4E5}\SETUP.EXE"
-l0x40c UNINST
EPSON File Manager --> RunDll32
C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program
Files\InstallShield Installation Information\{2EB81825-E9EE-44F4-8F51-1240C3898DC6}\Setup.exe"
-l0x40c UNINST
EPSON Logiciel imprimante --> C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\EPUPDATE.EXE /R
EPSON Scan --> C:\Program Files\epson\escndv\setup\setup.exe /r
EPSON Scan Assistant --> RunDll32
C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program
Files\InstallShield Installation Information\{2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}\Setup.exe"
-l0x40c -u
EPSON Web-To-Page --> RunDll32
C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield
Installation Information\{7F14F68C-17FA-4F88-B3FD-7F449C1EBF32}\SETUP.EXE" -l0x40c -anything
ffdshow (remove only) --> "C:\Program Files\ffdshow\uninstall.exe"
HijackThis 2.0.2 --> "C:\Documents and Settings\ramses\Mes documents\fichiers
telecharger\HijackThis.exe" /uninstall
Informations sur votre PC --> MsiExec.exe /I{36D6F663-DF15-45BD-B0C6-4B909308E3B6}
J2SE Runtime Environment 5.0 Update 6 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150060}
Lanceur Club Internet v6 --> "C:\Program Files\Club-Internet\Lanceur\uninstall.exe"
Language pack for Ad-Aware SE --> C:\PROGRA~1\Lavasoft\AD-AWA~1\Plugins\Langs\UNWISE.EXE
C:\PROGRA~1\Lavasoft\AD-AWA~1\Plugins\Langs\INSTALL.LOG
Macromedia Shockwave Player --> C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE
C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
Medion Info Display (MCE) --> C:\WINDOWS\UnInst32.exe VFDUtil.uni
Microsoft Compression Client Pack 1.0 for Windows XP -->
"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Office Professional Edition 2003 --> MsiExec.exe
/I{9011040C-6000-11D3-8CFE-0150048383C9}
Microsoft User-Mode Driver Framework Feature Pack 1.0 -->
"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Windows Journal Viewer --> MsiExec.exe /X{43DCF766-6838-4F9A-8C91-D92DA586DFA8}
Mise à jour de sécurité pour Windows XP (KB883939) -->
Mise à jour de sécurité pour Windows XP (KB890046) -->
Mise à jour de sécurité pour Windows XP (KB893066) -->
Mise à jour de sécurité pour Windows XP (KB893756) -->
Mise à jour de sécurité pour Windows XP (KB896358) -->
Mise à jour de sécurité pour Windows XP (KB896422) -->
Mise à jour de sécurité pour Windows XP (KB896423) -->
Mise à jour de sécurité pour Windows XP (KB896428) -->
Mise à jour de sécurité pour Windows XP (KB899587) -->
Mise à jour de sécurité pour Windows XP (KB899588) -->
Mise à jour de sécurité pour Windows XP (KB899591) -->
Mise à jour de sécurité pour Windows XP (KB901214) -->
Mise à jour de sécurité pour Windows XP (KB903235) -->
Mise à jour pour Lecteur Windows Media 10 (KB910393) -->
Mise à jour pour Windows XP (KB894391) -->
Mise à jour pour Windows XP (KB896727) -->
Mozilla Firefox (2.0.0.13) --> C:\Program Files\Mozilla Firefox\uninstall\helper.exe
Nero 7 Demo --> MsiExec.exe /I{ED9C0DB3-3DCB-A715-7683-DBE3B10B1036}
Package de base Microsoft de service de chiffrement pour cartes à puce -->
"C:\WINDOWS\$NtUninstallbasecsp$\spuninst\spuninst.exe"
Pinnacle Hollywood FX --> C:\WINDOWS\unvise32.exe C:\Program Files\Pinnacle\Hollywood FX for
Studio\5.5\uninstal.log
Realtek High Definition Audio Driver --> RunDll32
C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program
Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe"
-l0x40c -removeonly
SAMSUNG CDMA Modem Driver Set --> C:\WINDOWS\system32\Samsung_USB_Drivers\3\SSCDUninstall.exe
SAMSUNG Mobile Composite Device Software -->
C:\WINDOWS\system32\Samsung_USB_Drivers\6\SSBCUninstall.exe
Samsung Mobile phone USB driver Software -->
C:\WINDOWS\system32\Samsung_USB_Drivers\5\SSSDUninstall.exe
SAMSUNG Mobile USB Modem 1.0 Software -->
C:\WINDOWS\system32\Samsung_USB_Drivers\1\SS_Uninstall.exe
SAMSUNG Mobile USB Modem Software -->
C:\WINDOWS\system32\Samsung_USB_Drivers\2\SSM_Uninstall.exe
Samsung PC Studio 3 --> RunDll32
C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program
Files\InstallShield Installation Information\{C4A4722E-79F9-417C-BD72-8D359A090C97}\setup.exe"
-l0x40c -removeonly
Samsung PC Studio 3 USB Driver Installer --> RunDll32
C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program
Files\InstallShield Installation Information\{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}\setup.exe"
-l0x40c -removeonly
SimCity 4 Deluxe --> RunDll32
C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program
Files\InstallShield Installation Information\{28CC9AFD-689F-F54D-3E1F-B70EE51B02AD}\setup.exe"
-l0x40c -removeonly
SpeedFan (remove only) --> "C:\Program Files\SpeedFan\uninstall.exe"
Spybot - Search & Destroy --> "C:\Program Files\Spybot - Search & Destroy\unins000.exe"
Spyware Doctor 5.5 --> C:\Program Files\Spyware Doctor\unins000.exe /LOG
Studio 9 --> RunDll32
C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program
Files\InstallShield Installation Information\{9E491AB7-4589-48CA-9CBB-874CB2788391}\Setup.exe"
-l0x40c UNINSTALL
Sygate Personal Firewall Pro --> MsiExec.exe /X{BF448A52-C83E-455D-B5D3-FD9E964C9419}
Utilitaire de sauvegarde Windows --> MsiExec.exe /I{76EFFC7C-17A6-479D-9E47-8E658C1695AE}
Windows Media Connect --> "C:\WINDOWS\$NtUninstallWMCSetup$\spuninst\spuninst.exe"
Windows Media Format 11 runtime --> "C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows XP Media Center Edition 2005 KB925766 -->
"C:\WINDOWS\$NtUninstallKB925766$\spuninst\spuninst.exe"
Windows XP Media Center Edition Screen Saver Screen Saver --> C:\WINDOWS\system32\WINDOW~1.SCR
/U
WinRAR archiver --> C:\Program Files\WinRAR\uninstall.exe
X10 Hardware(TM) --> C:\WINDOWS\UNWISE.EXE C:\PROGRA~1\X10HAR~1\Install.log
-- Application Event Log -------------------------------------------------------
Event Record #/Type493 / Error
Event Submitted/Written: 04/10/2008 10:23:13 AM
Event ID/Source: 4099 / WmiAdapter
Event Description:
Échec de l'ouverture de services.
Event Record #/Type492 / Error
Event Submitted/Written: 04/10/2008 10:23:13 AM
Event ID/Source: 4099 / WmiAdapter
Event Description:
Échec de l'ouverture de services.
Event Record #/Type491 / Error
Event Submitted/Written: 04/10/2008 10:23:12 AM
Event ID/Source: 2004 / PerfNet
Event Description:
Impossible d'ouvrir le Service serveur. Les données de performance du
serveur ne seront pas renvoyées. Le code d'erreur renvoyé est la donnée DWORD 0.
Event Record #/Type490 / Error
Event Submitted/Written: 04/10/2008 10:23:12 AM
Event ID/Source: 2004 / PerfNet
Event Description:
Impossible d'ouvrir le Service serveur. Les données de performance du
serveur ne seront pas renvoyées. Le code d'erreur renvoyé est la donnée DWORD 0.
Event Record #/Type489 / Error
Event Submitted/Written: 04/10/2008 10:23:02 AM
Event ID/Source: 4099 / WmiAdapter
Event Description:
Échec de l'ouverture de services.
-- Security Event Log ----------------------------------------------------------
No Errors/Warnings found.
-- System Event Log ------------------------------------------------------------
Event Record #/Type4850 / Error
Event Submitted/Written: 04/10/2008 10:24:11 AM
Event ID/Source: 7001 / Service Control Manager
Event Description:
Le service Fax dépend du service Téléphonie qui n'a pas pu démarrer en raison de l'erreur :
%%1058
Event Record #/Type4849 / Error
Event Submitted/Written: 04/10/2008 09:59:23 AM
Event ID/Source: 7001 / Service Control Manager
Event Description:
Le service Gestionnaire de connexions d'accès distant dépend du service Téléphonie qui n'a pas pu
démarrer en raison de l'erreur :
%%1058
Event Record #/Type4848 / Error
Event Submitted/Written: 04/10/2008 09:59:23 AM
Event ID/Source: 7001 / Service Control Manager
Event Description:
Le service Gestionnaire de connexions d'accès distant dépend du service Téléphonie qui n'a pas pu
démarrer en raison de l'erreur :
%%1058
Event Record #/Type4846 / Error
Event Submitted/Written: 04/10/2008 09:59:23 AM
Event ID/Source: 7001 / Service Control Manager
Event Description:
Le service Gestionnaire de connexions d'accès distant dépend du service Téléphonie qui n'a pas pu
démarrer en raison de l'erreur :
%%1058
Event Record #/Type4844 / Error
Event Submitted/Written: 04/10/2008 09:59:23 AM
Event ID/Source: 7001 / Service Control Manager
Event Description:
Le service Gestionnaire de connexions d'accès distant dépend du service Téléphonie qui n'a pas pu
démarrer en raison de l'erreur :
%%1058
-- End of Deckard's System Scanner: finished at 2008-04-10 10:59:26 ------------
main.txt
Deckard's System Scanner v20071014.68
Run by ramses on 2008-04-10 10:56:40
Computer is in Normal Mode.
--------------------------------------------------------------------------------
-- System Restore --------------------------------------------------------------
Successfully created a Deckard's System Scanner Restore Point.
-- Last 5 Restore Point(s) --
43: 2008-04-10 08:56:46 UTC - RP43 - Deckard's System Scanner Restore Point
42: 2008-04-09 18:19:44 UTC - RP42 - Removed HDD Temperature
41: 2008-04-09 18:15:39 UTC - RP41 - Installed HDD Temperature
40: 2008-04-09 10:41:08 UTC - RP40 - Point de vérification système
39: 2008-04-07 17:20:31 UTC - RP39 - Installed Windows XP KB926239.
-- First Restore Point --
1: 2008-03-20 05:49:54 UTC - RP1 - Point de vérification système
Backed up registry hives.
Performed disk cleanup.
-- HijackThis (run as ramses.exe) ----------------------------------------------
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:58:10, on 10/04/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Sygate\SPF\smc.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\CmUCReye.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\BroadJump\Client Foundation\CFD.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Documents and Settings\ramses\Mes documents\fichiers telecharger\dss.exe
C:\DOCUME~1\ramses\MESDOC~1\FICHIE~1\ramses.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.club-internet.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.01net.com/telecharger/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.01net.com/telecharger/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.club-internet.fr/welcome/?varclt=3&login=beaujot.stephane&model=A
H4222&version=501573
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program
Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} -
C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program
Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program
Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program
Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [CmUCRRun] C:\WINDOWS\system32\CmUCReye.exe
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [BJCFD] C:\Program Files\BroadJump\Client Foundation\CFD.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe -CheckReg
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKCU\..\Run: [EPSON Stylus DX4400 Series]
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATICAE.EXE /FU "C:\WINDOWS\TEMP\E_SBF.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Club Internet.lnk = C:\Program Files\Club-Internet\Lanceur\lanceur.exe
O4 - Global Startup: Docteur Club Internet.lnk = C:\Program Files\Club-Internet\Dr Club
Internet\bin\matcli.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} -
C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} -
C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration -
{DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program
Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program
Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/wuweb_site.c
ab?1143026906440
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.c
ab?1143026897534
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil
Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil
Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil
Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil
Software\Avast4\ashWebSv.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) -
Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware
Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware
Doctor\pctsSvc.exe
O23 - Service: Sygate Personal Firewall Pro (SmcService) - Sygate Technologies, Inc. - C:\Program
Files\Sygate\SPF\smc.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 -
C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
--
End of file - 7009 bytes
-- HijackThis Fixed Entries (C:\DOCUME~1\ramses\MESDOC~1\FICHIE~1\backups\) ----
backup-20080407-162336-158 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.01net.com/telecharger/
backup-20080407-162336-303 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.club-internet.fr
backup-20080407-162336-937 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} -
C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
-- File Associations -----------------------------------------------------------
All associations okay.
-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------
R0 giveio - c:\windows\system32\giveio.sys
R0 speedfan - c:\windows\system32\speedfan.sys <Not Verified; Windows (R) 2000 DDK provider;
Windows (R) 2000 DDK driver>
R0 Teefer (Teefer for NT) - c:\windows\system32\drivers\teefer.sys <Not Verified; Sygate
Technologies, Inc.; Sygate Teefer Driver>
R1 kbd - c:\windows\system32\drivers\kbd.sys
R1 PCLEPCI - c:\windows\system32\drivers\pclepci.sys <Not Verified; Pinnacle Systems GmbH;
PCLEPCI>
R1 StarOpen - c:\windows\system32\drivers\staropen.sys
R1 wpsdrvnt - c:\windows\system32\drivers\wpsdrvnt.sys <Not Verified; Sygate Technologies, Inc.;
wpsdrvnt>
R3 ASAPIW2k - c:\windows\system32\drivers\asapiw2k.sys <Not Verified; Pinnacle Systems GmbH;
asapi>
R3 MarvinBus (Pinnacle Marvin Bus) - c:\windows\system32\drivers\marvinbus.sys <Not Verified;
Pinnacle Systems GmbH; Pinnacle Marvin>
S1 InCDPass - c:\windows\system32\drivers\incdpass.sys (file missing)
S1 InCDRm (InCD Reader) - c:\windows\system32\drivers\incdrm.sys (file missing)
S3 MRENDIS5 (MRENDIS5 NDIS Protocol Driver) - c:\program files\common files\motive\mrendis5.sys
<Not Verified; Motive, Inc.; Motive Rawether for Windows>
S4 InCDFs (InCD File System) - c:\windows\system32\drivers\incdfs.sys (file missing)
-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------
R2 x10nets (X10 Device Network Service) - c:\progra~1\common~1\x10\common\x10nets.exe <Not
Verified; X10; x10 Module>
-- Device Manager: Disabled ----------------------------------------------------
No disabled devices found.
-- Files created between 2008-03-10 and 2008-04-10 -----------------------------
2008-04-10 09:14:40 0 d-------- C:\WINDOWS\pss
2008-04-09 20:15:40 0 d-------- C:\Program Files\PalickSoft
2008-04-09 20:10:59 790 --a------ C:\WINDOWS\system32\ML.DLL
2008-04-08 10:08:15 0 d--h----- C:\WINDOWS\system32\GroupPolicy
2008-04-07 19:27:46 0 d-------- C:\Documents and Settings\ramses\Application Data\Talkback
2008-04-07 19:16:57 0 d-------- C:\WINDOWS\system32\drivers\UMDF
2008-04-07 16:31:16 0 dr------- C:\Documents and Settings\NetworkService\Favoris
2008-04-07 16:30:56 0 d-------- C:\Documents and Settings\NetworkService\Application
Data\Mozilla
2008-04-07 16:26:26 0 d-a------ C:\Documents and Settings\All Users\Application Data\TEMP
2008-04-07 16:26:09 0 d-------- C:\Program Files\Spyware Doctor
2008-04-07 16:26:09 0 d-------- C:\Documents and Settings\ramses\Application Data\PC Tools
2008-04-07 15:51:32 59984 --a------ C:\WINDOWS\system32\drivers\Teefer.sys <Not Verified;
Sygate Technologies, Inc.; Sygate Teefer Driver>
2008-04-07 15:51:31 21075 --a------ C:\WINDOWS\system32\drivers\wpsdrvnt.sys <Not Verified;
Sygate Technologies, Inc.; wpsdrvnt>
2008-04-07 15:51:25 0 d-------- C:\Program Files\Sygate
2008-04-07 11:01:03 1866 --a------ C:\WINDOWS\mozver.dat
2008-04-07 08:02:34 0 dr-h----- C:\Documents and Settings\ramses\Recent
2008-04-07 07:46:35 0 d-------- C:\Program Files\Lavasoft
2008-04-07 07:41:44 0 d-------- C:\Documents and Settings\ramses\Application Data\Mozilla
2008-04-07 07:34:57 0 d-------- C:\Program Files\Sunbelt Software
2008-03-31 09:09:29 0 d-------- C:\Documents and Settings\ramses\Application Data\AdobeUM
2008-03-27 22:11:05 0 d-------- C:\Documents and Settings\All Users\Application
Data\Trymedia
2008-03-27 22:10:58 532 --a------ C:\WINDOWS\eReg.dat
2008-03-27 22:09:45 0 d-------- C:\Documents and Settings\All Users\Application
Data\InstallShield
2008-03-27 21:08:08 1106480886 --a------ C:\Program Files\SimCity4DeluxeSetup.exe
2008-03-27 16:31:52 0 d-------- C:\Program Files\Maxis
2008-03-27 16:18:00 5248 --a------ C:\WINDOWS\system32\drivers\d347prt.sys
2008-03-27 16:18:00 155136 --a------ C:\WINDOWS\system32\drivers\d347bus.sys
2008-03-27 16:17:58 0 d-------- C:\Program Files\D-Tools
2008-03-27 16:17:44 0 d-------- C:\WINDOWS\Downloaded Installations
2008-03-26 11:56:43 0 d-------- C:\Documents and Settings\ramses\Application Data\Lavasoft
2008-03-26 09:44:01 0 d-------- C:\Documents and Settings\All Users\Application Data\Spybot
- Search & Destroy
2008-03-26 09:09:12 0 d-------- C:\Program Files\SpeedFan
2008-03-25 20:25:18 0 d-------- C:\Program Files\MSXML 4.0
2008-03-25 19:59:18 0 d-------- C:\Documents and Settings\ramses\Application Data\BonkEnc
2008-03-25 19:58:57 0 d-------- C:\Program Files\BonkEnc
2008-03-25 19:55:03 0 d-------- C:\Program Files\WinAVI MP4 Converter
2008-03-25 13:38:40 0 d-------- C:\ConvertTemp
2008-03-25 13:28:44 0 d-------- C:\Documents and Settings\ramses\Application Data\Samsung
2008-03-25 13:23:18 174592 --a------ C:\WINDOWS\system32\framedyn.dll <Not Verified; Microsoft
Corporation; Microsoft® Windows® Operating System>
2008-03-25 13:23:06 0 d-------- C:\WINDOWS\system32\Samsung_USB_Drivers
2008-03-25 13:22:49 5632 --a------ C:\WINDOWS\system32\drivers\StarOpen.sys
2008-03-25 13:22:38 0 d-------- C:\Program Files\Samsung
2008-03-25 12:20:40 0 d-------- C:\audiograbber
2008-03-25 08:52:32 0 d-------- C:\Program Files\CCleaner
2008-03-25 08:48:41 0 --a------ C:\WINDOWS\nsreg.dat
2008-03-21 09:38:57 0 d-------- C:\Documents and Settings\ramses\Application Data\.ABC
2008-03-21 09:38:39 0 d-------- C:\Program Files\ABC
2008-03-21 09:18:37 0 d-------- C:\Documents and Settings\All Users\Application
Data\Azureus
2008-03-21 09:18:36 0 d-------- C:\Documents and Settings\ramses\Application Data\Azureus
2008-03-20 16:36:02 0 d--h----- C:\WINDOWS\msdownld.tmp
2008-03-20 16:35:50 0 d-------- C:\WINDOWS\system32\fr-fr
2008-03-20 16:00:00 90 --a------ C:\systkas.bat
2008-03-20 15:59:57 47872 --a------ C:\WINDOWS\system32\drivers\kbd.sys
2008-03-20 15:59:56 75264 --a------ C:\systkas.exe
2008-03-20 11:09:39 0 d-------- C:\Documents and Settings\All Users\Application Data\UDL
2008-03-20 11:06:22 111932 --a------ C:\WINDOWS\system32\EPPICPrinterDB.dat
2008-03-20 11:06:22 1139 --a------ C:\WINDOWS\system32\EPPICPresetData_PT.dat
2008-03-20 11:06:22 1120 --a------ C:\WINDOWS\system32\EPPICPresetData_IT.dat
2008-03-20 11:06:22 1107 --a------ C:\WINDOWS\system32\EPPICPresetData_GE.dat
2008-03-20 11:06:22 1129 --a------ C:\WINDOWS\system32\EPPICPresetData_FR.dat
2008-03-20 11:06:22 1136 --a------ C:\WINDOWS\system32\EPPICPresetData_ES.dat
2008-03-20 11:06:22 1104 --a------ C:\WINDOWS\system32\EPPICPresetData_EN.dat
2008-03-20 11:06:22 1146 --a------ C:\WINDOWS\system32\EPPICPresetData_DU.dat
2008-03-20 11:06:22 1129 --a------ C:\WINDOWS\system32\EPPICPresetData_CF.dat
2008-03-20 11:06:22 1139 --a------ C:\WINDOWS\system32\EPPICPresetData_BP.dat
2008-03-20 11:06:22 4943 --a------ C:\WINDOWS\system32\EPPICPattern6.dat
2008-03-20 11:06:22 21390 --a------ C:\WINDOWS\system32\EPPICPattern5.dat
2008-03-20 11:06:22 11811 --a------ C:\WINDOWS\system32\EPPICPattern4.dat
2008-03-20 11:06:22 24903 --a------ C:\WINDOWS\system32\EPPICPattern3.dat
2008-03-20 11:06:22 20148 --a------ C:\WINDOWS\system32\EPPICPattern2.dat
2008-03-20 11:06:22 31053 --a------ C:\WINDOWS\system32\EPPICPattern131.dat
2008-03-20 11:06:22 27417 --a------ C:\WINDOWS\system32\EPPICPattern121.dat
2008-03-20 11:06:22 26154 --a------ C:\WINDOWS\system32\EPPICPattern1.dat
2008-03-20 11:06:21 0 d-------- C:\Documents and Settings\ramses\Application
Data\InstallShield
2008-03-20 11:05:41 0 d-------- C:\Documents and Settings\All Users\Application Data\EPSON
2008-03-20 10:36:32 0 d-------- C:\Program Files\epson
2008-03-20 10:28:55 155721 -----n--- C:\WINDOWS\system32\RALMain.dll <Not Verified; Pinnacle
Systems GmbH; Register Abstraction Layer>
2008-03-20 10:28:55 294912 -----n--- C:\WINDOWS\system32\pvmjpg21.dll <Not Verified; Pegasus
Imaging Corporation; PICVideo>
2008-03-20 10:28:55 204881 -----n--- C:\WINDOWS\system32\DiskIO.dll <Not Verified; Pinnacle
Systems GmbH; Media File Sequencer>
2008-03-20 10:28:54 81920 -----n--- C:\WINDOWS\system32\vdrmux.dll <Not Verified; Pinnacle
Systems; Pinnacle Systems vdrmux>
2008-03-20 10:28:54 44544 -----n--- C:\WINDOWS\system32\msxml4a.dll <Not Verified; Microsoft
Corporation; Microsoft(R) MSXML 4.0 SP1>
2008-03-20 10:28:54 73728 -----n--- C:\WINDOWS\system32\MMAviAx.dll <Not Verified; Pinnacle
Systems GmbH; miroVIDEO MFP>
2008-03-20 10:28:54 32768 -----n--- C:\WINDOWS\system32\MLPagAx.dll <Not Verified; Pinnacle
Systems GmbH; MLPag DLL>
2008-03-20 10:28:54 40960 -----n--- C:\WINDOWS\system32\langserv.dll <Not Verified; Pinnacle
Systems GmbH; miroVIDEO LangServ>
2008-03-20 10:28:54 32838 -----n--- C:\WINDOWS\system32\Cachex.dll <Not Verified; Pinnacle
Systems GmbH; Cache DLL>
2008-03-20 10:28:54 114759 -----n--- C:\WINDOWS\system32\Aviprax.dll <Not Verified; Pinnacle
Systems GmbH; miroVIDEO AFP>
2008-03-20 10:27:28 14165 -----n--- C:\WINDOWS\system32\drivers\Pclepci.sys <Not Verified;
Pinnacle Systems GmbH; PCLEPCI>
2008-03-20 10:27:27 90464 --a------ C:\WINDOWS\system32\drivers\MarvinBus.sys <Not Verified;
Pinnacle Systems GmbH; Pinnacle Marvin>
2008-03-20 10:26:49 11264 --a------ C:\WINDOWS\system32\drivers\asapiW2k.sys <Not Verified;
Pinnacle Systems GmbH; asapi>
2008-03-20 10:26:47 406016 --a------ C:\WINDOWS\system32\PSDrvCheck.exe
2008-03-20 10:26:46 19456 --a------ C:\WINDOWS\system32\asapi.dll <Not Verified; VoB
Computersysteme GmbH; >
2008-03-20 10:26:45 90112 --a------ C:\WINDOWS\unvise32.exe <Not Verified; MindVision
Software; Installer VISE>
2008-03-20 10:25:18 49152 --a------ C:\WINDOWS\system32\PCLEGetGuid.dll <Not Verified;
Pinnacle Systems; Guid_dll>
2008-03-20 10:23:34 0 d-------- C:\Documents and Settings\All Users\Application
Data\Pinnacle
2008-03-20 10:23:31 0 d-------- C:\Program Files\Pinnacle
2008-03-20 10:15:36 4212 ---h----- C:\WINDOWS\system32\zllictbl.dat
2008-03-20 10:15:02 0 d-------- C:\WINDOWS\Internet Logs
2008-03-20 10:10:16 0 d-------- C:\WINDOWS\SHELLNEW
2008-03-20 10:10:14 0 d-------- C:\Program Files\Microsoft.NET
2008-03-20 10:01:54 0 d-------- C:\Documents and Settings\ramses\Application Data\Ahead
2008-03-20 10:01:06 0 d-------- C:\Program Files\Nero
2008-03-20 10:01:06 0 d-------- C:\Program Files\Fichiers communs\Ahead
2008-03-20 09:58:12 0 d-------- C:\Program Files\ffdshow
2008-03-20 09:14:16 0 d-------- C:\Program Files\Alwil Software
2008-03-20 09:08:08 0 d-------- C:\Documents and Settings\All Users\Application
Data\MotiveSysIDs
2008-03-20 09:07:38 69632 --a------ C:\WINDOWS\system32\MCCDevice.dll <Not Verified; Motive
Communications, Inc.; >
2008-03-20 09:07:38 6048 --a------ C:\WINDOWS\system32\MCC16.dll
2008-03-20 08:02:02 0 d-------- C:\Program Files\Fichiers communs\Motive
2008-03-20 08:02:02 0 d-------- C:\Documents and Settings\All Users\Application Data\Motive
2008-03-20 08:02:01 81920 --a------ C:\WINDOWS\system32\W32n50.dll <Not Verified; Printing
Communications Assoc., Inc. (PCAUSA); PCAUSA Rawether for Windows>
2008-03-20 08:02:01 17162 --a------ C:\WINDOWS\system32\Pcandis5.sys <Not Verified; Printing
Communications Assoc., Inc. (PCAUSA); PCAUSA Rawether for Windows>
2008-03-20 08:02:01 16848 --a------ C:\WINDOWS\system32\Pcandis4.sys <Not Verified; Printing
Communications Assoc., Inc. (PCAUSA); PCAUSA Rawether for Windows>
2008-03-20 08:01:51 0 d-------- C:\WINDOWS\Motive
2008-03-20 08:01:36 0 d-------- C:\Program Files\Motive
2008-03-20 08:01:36 0 d-------- C:\Program Files\Club-Internet
2008-03-20 07:59:51 171280 --a------ C:\WINDOWS\system32\jit.dll <Not Verified; Microsoft
Corporation; Microsoft(R) Windows (R) Operating System>
2008-03-20 07:59:51 139536 --a------ C:\WINDOWS\system32\javaee.dll <Not Verified; Microsoft
Corporation; Microsoft(R) Windows (R) Operating System>
2008-03-20 07:59:51 313856 --a------ C:\WINDOWS\system32\dx3j.dll <Not Verified; Microsoft
Corporation; Microsoft® DirectX for Java>
2008-03-20 07:59:51 46352 --a------ C:\WINDOWS\setdebug.exe <Not Verified; Microsoft
Corporation; Microsoft(R) Windows (R) Operating System>
2008-03-20 07:59:51 6550 --a------ C:\WINDOWS\jautoexp.dat
2008-03-20 07:59:47 113 --a------ C:\WINDOWS\system32\zonedon.reg
2008-03-20 07:59:47 113 --a------ C:\WINDOWS\system32\zonedoff.reg
2008-03-20 07:59:47 171792 --a------ C:\WINDOWS\system32\wjview.exe <Not Verified; Microsoft
Corporation; Système d'exploitation Microsoft® Windows®>
2008-03-20 07:59:47 286992 --a------ C:\WINDOWS\system32\vmhelper.dll <Not Verified; Microsoft
Corporation; Système d'exploitation Microsoft® Windows®>
2008-03-20 07:59:47 21264 --a------ C:\WINDOWS\system32\msjdbc10.dll <Not Verified; Microsoft
Corporation; Microsoft(R) Windows (R) Operating System>
2008-03-20 07:59:46 947984 --a------ C:\WINDOWS\system32\msjava.dll <Not Verified; Microsoft
Corporation; Microsoft(R) Windows (R) Operating System>
2008-03-20 07:59:46 154384 --a------ C:\WINDOWS\system32\msawt.dll <Not Verified; Microsoft
Corporation; Microsoft(R) Windows (R) Operating System>
2008-03-20 07:59:46 172304 --a------ C:\WINDOWS\system32\jview.exe <Not Verified; Microsoft
Corporation; Système d'exploitation Microsoft® Windows®>
2008-03-20 07:59:46 15120 --a------ C:\WINDOWS\system32\jdbgmgr.exe <Not Verified; Microsoft
Corporation; Microsoft(R) Windows (R) Operating System>
2008-03-20 07:59:46 404752 --a------ C:\WINDOWS\system32\javart.dll <Not Verified; Microsoft
Corporation; Microsoft(R) Windows (R) Operating System>
2008-03-20 07:59:46 63248 --a------ C:\WINDOWS\system32\javaprxy.dll <Not Verified; Microsoft
Corporation; Microsoft(R) Windows (R) Operating System>
2008-03-20 07:59:46 187152 --a------ C:\WINDOWS\system32\javacypt.dll <Not Verified; Microsoft
Corporation; Système d'exploitation Microsoft® Windows®>
2008-03-20 07:59:45 49424 --a------ C:\WINDOWS\system32\clspack.exe <Not Verified; Microsoft
Corporation; Microsoft(R) Windows (R) Operating System>
2008-03-20 07:59:31 532594 --a------ C:\WINDOWS\system32\xerces-c_1_40_0_DDR.dll
2008-03-20 07:59:31 159744 --a------ C:\WINDOWS\system32\ssleay32_1-1-0_DDR.dll
2008-03-20 07:59:31 663552 --a------ C:\WINDOWS\system32\libeay32_1-1-0_DDR.dll
2008-03-20 07:59:31 307329 --a------ C:\WINDOWS\system32\BJBase_2-2-2_DDR.dll <Not Verified;
BroadJump, Inc.; >
2008-03-20 07:59:30 524377 --a------ C:\WINDOWS\system32\stlport_4_0_0_DDR.dll
2008-03-20 07:59:29 306688 --a------ C:\WINDOWS\IsUninst.exe <Not Verified; InstallShield
Software Corporation; InstallShield® unInstaller>
2008-03-20 07:59:29 0 d-------- C:\Program Files\BroadJump
2008-03-20 07:50:01 0 dr------- C:\Documents and Settings\ramses\Menu Démarrer
2008-03-20 07:50:01 0 d--h----- C:\Documents and Settings\ramses\Local Settings
2008-03-20 07:50:01 0 dr------- C:\Documents and Settings\ramses\Favoris
2008-03-20 07:50:01 0 d--hs---- C:\Documents and Settings\ramses\Cookies
2008-03-20 07:50:01 0 d-------- C:\Documents and Settings\ramses\Bureau
2008-03-20 07:50:01 0 dr-h----- C:\Documents and Settings\ramses\Application Data
2008-03-20 07:50:01 0 d-------- C:\Documents and Settings\ramses\Application
Data\Macromedia
2008-03-20 07:50:01 0 d-------- C:\Documents and Settings\ramses\Application
Data\Identities
2008-03-20 07:50:01 0 d-------- C:\Documents and Settings\ramses\Application Data\CyberLink
2008-03-20 07:50:01 0 d-------- C:\Documents and Settings\ramses\Application Data\ATI
2008-03-20 07:50:01 0 d-------- C:\Documents and Settings\ramses\Application Data\Adobe
2008-03-20 07:50:00 0 d--h----- C:\Documents and Settings\ramses\Voisinage réseau
2008-03-20 07:50:00 0 d--h----- C:\Documents and Settings\ramses\Voisinage d'impression
2008-03-20 07:50:00 0 d--hs---- C:\Documents and Settings\ramses\UserData
2008-03-20 07:50:00 0 dr-h----- C:\Documents and Settings\ramses\SendTo
2008-03-20 07:50:00 4456448 --ah----- C:\Documents and Settings\ramses\NTUSER.DAT
2008-03-20 07:50:00 0 d--h----- C:\Documents and Settings\ramses\Modèles
2008-03-20 07:50:00 0 dr------- C:\Documents and Settings\ramses\Mes documents
2008-03-20 07:48:53 0 d-------- C:\Documents and Settings\All Users\Application Data\X10
Settings
2008-03-20 07:48:37 0 d---s---- C:\Documents and Settings\Default User\UserData
2008-03-20 07:48:37 0 d-------- C:\Documents and Settings\Default User\Application
Data\Macromedia
2008-03-20 07:48:37 0 d-------- C:\Documents and Settings\Default User\Application
Data\Identities
2008-03-20 07:48:37 0 d-------- C:\Documents and Settings\Default User\Application
Data\CyberLink
2008-03-20 07:48:37 0 d-------- C:\Documents and Settings\Default User\Application Data\ATI
2008-03-20 07:48:37 0 d-------- C:\Documents and Settings\Default User\Application
Data\Adobe
2008-03-20 07:47:45 0 d-------- C:\WINDOWS\SoftwareDistribution
2008-03-20 07:05:13 0 d--hs---- C:\System Volume Information
-- Find3M Report ---------------------------------------------------------------
2008-04-10 10:26:50 463104 --a------ C:\WINDOWS\system32\perfh00C.dat
2008-04-10 10:26:50 73386 --a------ C:\WINDOWS\system32\perfc00C.dat
2008-04-07 19:19:21 0 d-------- C:\Program Files\Windows Media Connect 2
2008-03-27 22:08:22 0 d--h----- C:\Program Files\InstallShield Installation Information
2008-03-20 11:13:21 0 d-------- C:\Program Files\Fichiers communs\InstallShield
2008-03-20 10:10:32 0 d-------- C:\Program Files\Fichiers communs
2008-03-20 08:01:46 0 d-------- C:\Program Files\Common Files
2008-03-20 07:56:54 0 d-------- C:\Program Files\Fichiers communs\Nero
2008-03-20 07:55:11 0 d-------- C:\Program Files\Ahead
2008-03-20 07:54:18 0 d-------- C:\Program Files\CyberLink
-- Registry Dump ---------------------------------------------------------------
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [11/01/2006 18:23 C:\WINDOWS\RTHDCPL.exe]
"Alcmtr"="ALCMTR.EXE" [03/05/2005 19:43 C:\WINDOWS\Alcmtr.exe]
"CmUCRRun"="C:\WINDOWS\system32\CmUCReye.exe" [12/10/2005 15:44]
"ATICCC"="C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" [02/01/2006 17:41]
"BJCFD"="C:\Program Files\BroadJump\Client Foundation\CFD.exe" [27/01/2003 18:16]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [29/03/2008 19:37]
"PinnacleDriverCheck"="C:\WINDOWS\system32\PSDrvCheck.exe" [10/03/2004 17:26]
"DAEMON Tools-1033"="C:\Program Files\D-Tools\daemon.exe" [22/08/2004 18:05]
"SmcService"="C:\PROGRA~1\Sygate\SPF\smc.exe" [13/08/2004 19:05]
"MSConfig"="C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe" [10/08/2004 14:00]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"EPSON Stylus DX4400 Series"="C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATICAE.exe" [01/03/2007
08:01]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [10/08/2004 14:00]
"SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [28/01/2008
11:43]
C:\Documents and Settings\ramses\Menu D‚marrer\Programmes\D‚marrage\
Club Internet.lnk - C:\Program Files\Club-Internet\Lanceur\lanceur.exe [26/12/2007 15:17:06]
C:\Documents and Settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
Docteur Club Internet.lnk - C:\Program Files\Club-Internet\Dr Club Internet\bin\matcli.exe
[20/03/2008 08:01:38]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoSMBalloonTip"=1 (0x1)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdauxservice"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdcoreservice"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and
Settings^ramses^Menu Démarrer^Programmes^Démarrage^HDD temperature.lnk]
path=C:\Documents and Settings\ramses\Menu Démarrer\Programmes\Démarrage\HDD temperature.lnk
backup=C:\WINDOWS\pss\HDD temperature.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ehTray]
C:\WINDOWS\ehome\ehtray.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG]
C:\Program Files\Windows Media Player\WMPNSCFG.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" /background
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"MedionVFD"="C:\Program Files\Medion Info Display\MdionLCM.exe"
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe
"Adobe"="C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe"
"SunJavaUpdateSched"=C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
-- Hosts -----------------------------------------------------------------------
127.0.0.1 .archivioadulti.com
127.0.0.1 .internet-explorer.name
127.0.0.1 .katasearch.com
127.0.0.1 .preferiti-windows.com
127.0.0.1 .qoogler.com
127.0.0.1 .tuttoavolonta.com
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
8047 more entries in hosts file.
-- End of Deckard's System Scanner: finished at 2008-04-10 10:59:26 ------------ |
|
|
   |
|
|
|
|
|
| |
