disparition des icones du bureau

Question

Bonjour, 
j'ai un petit souci avec mes icones, il y a 2 jours j'ai eu le virus de windows recovery et j'ai réussi à l'éliminer (en tout cas, je l'espère), mais mes icones de bureau ne sont pas réapparues et ma barre de lancement rapide non plus. 
Quelqu'un saurait comment faire pour les faire réapparaitre?
Merci d'avance. 
Giulia27


Configuration: Windows Vista / Internet Explorer 9.0

Vent d'ouest · Answer

Salut,

* Télécharge sur le bureau RogueKiller (par tigzy) 
https://www.luanagames.com/index.fr.html 


*( Sous Vista/Seven,clique droit, lancer en tant qu'administrateur ) 

* Quitte tous tes programmes en cours 
* Lance RogueKiller.exe. 
* Lorsque demandé, tape 2 et valide 
* Un rapport (RKreport.txt) a du se créer à côté de l'exécutable, colle son contenu dans la réponse 
* Si le programme a été bloqué, ne pas hésiter a essayer plusieurs fois.

Vent d'ouest · Answer

Ta descrirption montrait pour le moins une une infection de type  "Rogue"

Pour un diagnostic du pc: 

Télécharge ZHPDiag (de Nicolas Coolman) sur ton bureau 
https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html 

Une fois le téléchargement achevé, double clique sur ZHPDiag.exe et suis les instructions. 

/!\Utilisateurs de Vista et Windows 7 : Clique droit sur le logo de ZHPDiag.exe, « exécuter en tant qu'Administrateur » 

N'oublie pas de cocher la case qui permet de mettre un raccourci sur le Bureau. 
- Double clique sur le raccourci ZHPDiag sur ton Bureau pour le lancer. 
(/!\L'outil a créé 2 icônes ZHPDiag et ZHPFix) 
- Clique sur la loupe pour lancer l'analyse. 
- Laisse l'outil travailler, il peut être assez long. 
- Ferme ZHPDiag en fin d'analyse. 
- Pour transmettre le rapport clique sur ce lien : http://www.cijoint.fr/ 
- Clique sur Parcourir et cherche le répertoire où est installé ZHPDiag (en général C:\Program Files\ZHPDiag). 
- Sélectionne le fichier ZHPDiag.txt. 
- Clique sur "Cliquez ici pour déposer le fichier". 
- Un lien de cette forme : http://www.cijoint.fr/cjlink.php?file=cj200905/cijSKAP5fU.txt est ajouté dans la page. 
- Copie ce lien dans ta réponse.

Giulia27 · Answer

voilà le rapport:

http://www.cijoint.fr/cjlink.php?file=cj201105/cijW5x0ATk.txt

Vent d'ouest · Answer

Inscris toi afin de rendre les liens dispos stp....

Giulia27 · Answer

bon j'ai essayé mais ça ne marche pas... il me dit qu'il ne réussit pas à envoyer la confirmation par e-mail....

essaie de voir si tu arrives qd meme à le voir...

http://www.cijoint.fr/cjlink.php?file=cj201105/cijW5x0ATk.txt

Lyonnais92 · Answer

Bonsoir,

relance RogueKiller, choisis l'option 6 et poste le rapport dans ta réponse.

Giulia27 · Answer

voilà le rapport: RogueKiller V5.1.2 [05/13/2011] by Tigzy contact at http://www.sur-la-toile.com mail: tigzyRKgmailcom Feedback: http://www.sur-la-toile.com/discussion-193725-1-BRogueKillerD-Remontees.html Operating System: Windows Vista (6.0.6002 Service Pack 2) 32 bits version Started in : Normal mode User: OEMUser [Admin rights] Mode: Shortcuts HJfix -- Date : 05/15/2011 00:47:05 Bad processes: 0 File attributes restored: Desktop: Success 0 / Fail 0 Quick launch: Success 0 / Fail 0 Programs: Success 0 / Fail 0 Start menu: Success 0 / Fail 0 User folder: Success 3 / Fail 0 My documents: Success 0 / Fail 0 My favorites: Success 0 / Fail 3 My pictures: Success 0 / Fail 0 My music: Success 0 / Fail 0 My videos: Success 0 / Fail 0 Local drives: Success 2 / Fail 0 Finished : << RKreport[1].txt >> RKreport[1].txt

Lyonnais92 · Answer

Re,

pas donné grand chose.

Est ce que ceci ferait mieux :

télécharge unhide.exe sur ton Bureau

http://download.blee...beta/unhide.exe

Fais un double clic sur l'icône sur ton Bureau.

Laisse l'outil tourner.

Résultat ?

Giulia27 · Answer

le lien ne s'ouvre pas... :-/

Lyonnais92 · Answer

Re,

ça devrait aller mieux comme ça :

http://download.bleepingcomputer.com/grinler/beta/unhide.exe

Giulia27 · Answer

ok ça marche, merci.

tu sais si ça prend du tps pour analyser? sinon je le ferai demain, comme ça j'aurai plus de tps.

En tt cas, merci pour la patience! :-D

Lyonnais92 · Answer

Re,

je crois que l'outil unhide.exe fonctionne assez vite.

Soit tes icônes reviennent, soit elles ne reviennent pas.

Giulia27 · Answer

mmmh, là je ne vois rien revenir.... mais je ne sais pas s'il a fini, la fenetre est tjs ouverte et il ne donne pas de signe particulier...

Lyonnais92 · Answer

Re, 

même pas un tiret blanc qui clignote ? 

et le DD qui est actif (lampe allumée) ? 

Tu dois avoir attrib.exe dans la liste des processus actifs du gestionnaire de tâches.

Et tu auras une fenêtre qui s'ouvre à la fin.
@+ 
Science sans conscience n'est que ruine de l'âme. Rabelais

Lyonnais92 · Answer

Re,

je verrai le résultat au jour.

Giulia27 · Answer

alors j'ai le tiret qui clignote mais rien d'autre... après 10 minutes, toujours le tiret qui clignote et rien d'autre... c'est normal?

Lyonnais92 · Answer

Re,

tu n'as rien qui indique que l'outil scanne C: ?

Si tu as , 10 mn, c'est normal.  Je l'ai testé sur mon ordi hier et cela a mis du temps pour scanner.

Est ce que attrib.exe est un processus actif ?

Giulia27 · Answer

ah ok s'il aut plus alors je vais recommencer. Mais comment voir si ettrib.exe est actif? aller voir dans le gestionnaire s'il est présent pdt que l'outil scanne???

Lyonnais92 · Answer

Re,

oui, j'ai constaté que attrib.exe tournait pendant l'exécution de unhide.exe (pas tout le temps mais souvent).

Donc Ctrl Alt Suppr, onglet Processus.

Si ça ne donne rien, tu essayera USBFix.

Giulia27 · Answer

oui, en effet attrib.exe est actif. Il ne reste plus qu'à attendre alors. et qu'est-ce qu'il se passe qd unhide a fini de scanner???

Lyonnais92 · Answer

Re,

une fenêtre s'ouvre et dit que tes fichiers devraient être réapparus.

Giulia27 · Answer

ah ok, alors attendons qu'il finisse.

merci pour tout en tt cas! à tout à l'heure!

Giulia27 · Answer

voilà, le scan est fini. certains vieux documents words sont apparus mais pas d'icones... en plus j'ai noté que dans mon menu "démarrer" il y a deux fois programmes un où apparaissent les programmes et un autre vide... je ne comprends pas très bien, le virus a été éliminé ou pas??

Lyonnais92 · Answer

Re,

ce n'est pas un "virus" : l'éliminer n'annule pas les modifs qu'il a fait sur le système.

Essaye ceci :

Télécharge USBFix
 
http://www.teamxscript.org/usbfixTelechargement.html
 

* Double clic sur le raccourci UsbFix présent sur ton bureau . 

* Choisis l'option Nettoyage

* Laisse travailler l'outil. 

* Ensuite post le rapport UsbFix.txt qui apparaîtra. 

* Note : Le rapport UsbFix.txt est sauvegardé a la racine du disque. ( C:\UsbFix.txt ) 

( CTRL+A Pour tout sélectionner , CTRL+C pour copier et CTRL+V pour coller ) 

* Note : "Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool. 
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.

Giulia27 · Answer

mmmmm il ne veut pas me publier le rapport...

en tout cas il s'est passé qqch de bizarre, une partie de mes icones de la barre d'outils ont aussi disparues.... :-/

Lyonnais92 · Answer

Re,

aurais tu un point de restauration juste avant l'infection ?

Giulia27 · Answer

je crois bien, mais je n'en suis pas certaine.... j'essaie qd meme??? et si le virus revient???...

Lyonnais92 · Answer

Bonjour,

il est encore trop tôt pour l'utiliser.

Fais ça d'abord :

 On va utiliser ComboFix.exe. Rends toi sur cette page web pour obtenir les liens de téléchargement, ainsi que des instructions pour exécuter l'outil:

https://www.bleepingcomputer.com/combofix/fr/comment-utiliser-combofix


* Vérifie que tu as fermé/désactivé tous les programmes anti-virus, anti-malware ou anti-spyware afin qu'ils n'interfèrent pas avec le travail de ComboFix.

Envoie le contenu de C:\ComboFix.txt dans ta prochaine réponse afin que je l'examine.

Giulia27 · Answer

Bonjour!

Voilà mon rapport combofix:

ComboFix 11-05-15.04 - OEMUser 16/05/2011  17:52:12.2.2 - x86
Microsoft® Windows Vista(TM) Business   6.0.6002.2.1252.39.1040.18.2039.972 [GMT 2:00]
Eseguito da: c:\users\OEMUser\Desktop\ComboFix.exe
AV: BitDefender Antivirus *Disabled/Updated* {982ADE23-275B-0766-37C5-DE01A484098E}
FW: BitDefender Pare-feu *Disabled* {A0115F06-6D34-063E-1C9A-77345A574EF5}
SP: BitDefender Antispyware *Disabled/Updated* {234B3FC7-0161-08E8-0D75-E573DF034333}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((   Altre eliminazioni   )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\OEMUser\AppData\Roaming\Adobe\plugs
c:\users\OEMUser\AppData\Roaming\Adobe\shed
c:\users\OEMUser\AppData\Roaming\Local
c:\users\OEMUser\AppData\Roaming\Local\Temp\DDM\Settings\0.ddi
c:\users\OEMUser\AppData\Roaming\Local\Temp\DDM\Settings\1683983655028_28269.mp4.ddr
c:\users\OEMUser\AppData\Roaming\Local\Temp\DDM\Settings\204198426264871_15970.mp4.ddr
c:\users\OEMUser\AppData\Roaming\Local\Temp\DDM\Settings\settings.ddi
c:\users\OEMUser\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\1683983655028_28269.mp4
c:\users\OEMUser\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\204198426264871_15970.mp4
c:\users\OEMUser\AppData\Roaming\OfferBox
c:\users\OEMUser\AppData\Roaming\OfferBox\config.xml
c:\windows\TEMP\logishrd\LVPrcInj01.dll
.
.
(((((((((((((((((((((((((   Files Creati Da 2011-04-16 al 2011-05-16  )))))))))))))))))))))))))))))))))))
.
.
2011-05-16 16:08 . 2011-05-16 16:20	--------	d-----w-	c:\users\OEMUser\AppData\Local	emp
2011-05-16 16:08 . 2011-05-16 16:08	--------	d-----w-	c:\users\Default\AppData\Local	emp
2011-05-16 11:08 . 2011-05-16 11:08	--------	d-----w-	c:\users\OEMUser\AppData\Local\{DF465CCB-68D8-4980-B3B5-8F4980DA5AD1}
2011-05-15 22:08 . 2011-05-15 22:50	--------	d-----w-	C:\UsbFix
2011-05-15 19:08 . 2011-05-15 19:09	--------	d-----w-	c:\users\OEMUser\AppData\Local\{9DCAE433-3AA4-4FF9-86EA-4EE2E3FA7D78}
2011-05-14 21:08 . 2011-05-14 21:08	--------	d-----w-	c:\users\OEMUser\AppData\Local\Adobe
2011-05-14 21:05 . 2011-05-14 21:05	0	------w-	C:\PhysicalDisk0_MBR.bin
2011-05-14 20:57 . 2011-05-14 21:06	--------	d-----w-	c:\program files\ZHPDiag
2011-05-14 16:58 . 2011-05-14 16:58	--------	d-----w-	c:\users\OEMUser\AppData\Local\Apple
2011-05-14 16:49 . 2011-05-14 16:50	--------	d-----w-	c:\users\OEMUser\AppData\Local\{7031AE96-1FA1-4E25-B11B-91B40EAE15CB}
2011-05-13 23:09 . 2011-05-14 00:31	--------	d-----w-	c:\program files\GridinSoft Trojan Killer
2011-05-13 18:36 . 2010-12-20 16:09	38224	----a-w-	c:\windows\system32\drivers\mbamswissarmy.sys
2011-05-13 18:35 . 2011-05-13 18:36	--------	d-----w-	c:\program files\Malwarebytes' Anti-Malware
2011-05-13 18:35 . 2010-12-20 16:08	20952	----a-w-	c:\windows\system32\drivers\mbam.sys
2011-05-13 15:14 . 2011-04-11 07:04	7071056	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{948B3FFE-45EB-4797-8BAE-D62C6D98B5ED}\mpengine.dll
2011-05-13 14:59 . 2011-05-13 15:00	--------	d-----w-	c:\users\OEMUser\AppData\Local\{04A444B7-F29D-4E48-920F-EC2E24909987}
2011-05-12 09:11 . 2011-05-12 21:13	--------	d-----w-	c:\users\OEMUser\AppData\Local\{8B32819C-DCD2-4EDF-AD1F-0BF2E9942CAB}
2011-05-12 09:04 . 2011-04-07 12:01	2409784	----a-w-	c:\program files\Windows Mail\OESpamFilter.dat
2011-05-10 16:42 . 2010-12-22 19:18	120104	----a-w-	c:\windows\system32\SynTPCo5.dll
2011-05-10 16:42 . 2010-12-22 19:18	218408	----a-w-	c:\windows\system32\SynCtrl.dll
2011-05-10 16:42 . 2010-12-22 19:18	173352	----a-w-	c:\windows\system32\SynCOM.dll
2011-05-10 16:42 . 2010-12-22 19:18	169256	----a-w-	c:\windows\system32\SynTPAPI.dll
2011-05-10 16:42 . 2010-12-22 19:20	1321904	----a-w-	c:\windows\system32\drivers\SynTP.sys
2011-05-10 12:11 . 2011-05-10 12:11	--------	d-----w-	c:\users\OEMUser\AppData\Local\{F2F9EF41-6BA4-45FD-B633-5B17B3A41263}
2011-05-08 17:03 . 2011-05-08 17:03	--------	d-----w-	c:\users\OEMUser\AppData\Local\{6FB2B7AE-49C8-43A5-9F66-187C5EA88F18}
2011-05-07 17:25 . 2011-05-07 17:25	--------	d-----w-	c:\programdata\PC Tools
2011-05-07 11:58 . 2011-05-07 11:58	--------	d-----w-	c:\users\OEMUser\AppData\Local\{7E2586B5-C82B-4C28-A743-1DE6497FD85A}
2011-05-07 00:37 . 2006-05-25 12:52	162304	----a-w-	c:\windows\system32\ztvunrar36.dll
2011-05-07 00:37 . 2005-08-25 22:50	77312	----a-w-	c:\windows\system32\ztvunace26.dll
2011-05-07 00:37 . 2006-06-19 10:01	69632	----a-w-	c:\windows\system32\ztvcabinet.dll
2011-05-07 00:37 . 2002-03-05 22:00	75264	----a-w-	c:\windows\system32\unacev2.dll
2011-05-07 00:37 . 2003-02-02 17:06	153088	----a-w-	c:\windows\system32\UNRAR3.dll
2011-05-06 20:31 . 2011-05-06 20:31	--------	d-----w-	c:\users\OEMUser\AppData\Local\{94A1232C-F2F1-46A5-BA21-E07DD927D3D2}
2011-05-05 13:48 . 2011-05-05 13:49	--------	d-----w-	c:\users\OEMUser\AppData\Local\{2E8D09EE-6E9A-42B3-AC9C-95F7215F492B}
2011-05-04 16:19 . 2011-05-04 16:21	--------	d-----w-	c:\users\OEMUser\AppData\Local\{766F855E-B1C8-4BA2-ADF9-B79AC1FE0684}
2011-05-03 13:08 . 2011-05-03 13:09	--------	d-----w-	c:\users\OEMUser\AppData\Local\{43CB9B9B-143F-4275-931A-DEB46E5B6B7F}
2011-05-02 14:47 . 2011-05-02 14:47	--------	d-----w-	c:\users\OEMUser\AppData\Local\{08C56681-A03F-4E9F-982D-69E95982E772}
2011-05-01 14:45 . 2011-05-01 14:45	--------	d-----w-	c:\users\OEMUser\AppData\Local\{13D3AF5D-6A4F-4113-940E-C20B6E286CD8}
2011-04-30 15:44 . 2011-04-30 15:44	--------	d-----w-	c:\program files\iPod
2011-04-30 15:43 . 2011-04-30 15:47	--------	d-----w-	c:\program files\iTunes
2011-04-30 15:39 . 2011-04-30 15:39	--------	d-----w-	c:\users\OEMUser\AppData\Local\{204813BA-B740-4FF7-BE53-B1E2CC07D2E4}
2011-04-30 15:36 . 2011-04-30 15:36	--------	d-----w-	c:\program files\Bonjour
2011-04-29 10:57 . 2011-04-29 10:58	--------	d-----w-	c:\users\OEMUser\AppData\Local\{476D1666-BB22-4E85-8636-2C95A63858CC}
2011-04-28 11:29 . 2011-04-28 11:29	--------	d-----w-	c:\users\OEMUser\AppData\Local\{5CC1CCBD-D9A9-4FE2-B427-FAF4E3292C9F}
2011-04-27 22:26 . 2011-03-03 15:40	28672	----a-w-	c:\windows\system32\Apphlpdm.dll
2011-04-27 22:26 . 2011-03-03 13:35	4240384	----a-w-	c:\windows\system32\GameUXLegacyGDFs.dll
2011-04-27 22:26 . 2011-03-12 21:55	876032	----a-w-	c:\windows\system32\XpsPrint.dll
2011-04-27 13:24 . 2011-04-27 13:24	--------	d-----w-	c:\users\OEMUser\AppData\Local\{9A3E33E3-6889-40F0-93F6-6BF674F4623F}
2011-04-26 14:52 . 2011-04-26 14:52	--------	d-----w-	c:\users\OEMUser\AppData\Local\{47532946-2450-40D1-ADBC-524ED622EE5D}
2011-04-25 22:41 . 2011-04-25 22:41	--------	d-----w-	c:\users\OEMUser\AppData\Local\{B4851FE4-EFA3-4245-AFBD-3230DA00EBEF}
2011-04-25 10:40 . 2011-04-25 10:41	--------	d-----w-	c:\users\OEMUser\AppData\Local\{6707DEAD-0EAD-4E13-94B0-022605112160}
2011-04-24 15:10 . 2011-04-24 15:10	--------	d-----w-	c:\users\OEMUser\AppData\Local\{88BB56BC-360D-4427-AABC-34FA9FFDB8BE}
2011-04-23 11:50 . 2011-04-23 11:51	--------	d-----w-	c:\users\OEMUser\AppData\Local\{E0C81591-28FE-4785-AFBE-039A0D76F09E}
2011-04-22 18:11 . 2011-04-22 18:12	--------	d-----w-	c:\users\OEMUser\AppData\Local\{F7E84F8F-BEB9-4CB6-891D-82B34D1B083D}
2011-04-21 15:02 . 2011-04-21 15:03	--------	d-----w-	c:\users\OEMUser\AppData\Local\{1C567960-CEE8-4817-BE08-BBCFD4B174C5}
2011-04-20 19:57 . 2011-04-20 19:57	--------	d-----w-	c:\users\OEMUser\AppData\Local\{7CC51EF0-0039-428C-94A0-279EBFBA7D18}
2011-04-19 22:23 . 2011-04-19 22:23	--------	d-----w-	c:\users\OEMUser\AppData\Local\{AD602401-67AD-4991-8AAB-36E751D50CF6}
2011-04-19 10:13 . 2011-04-19 10:13	--------	d-----w-	c:\users\OEMUser\AppData\Local\{28DE623A-239A-4334-8725-71A9242F9651}
2011-04-18 15:59 . 2011-04-18 15:59	--------	d-----w-	c:\users\OEMUser\AppData\Local\{DE090FD5-36D3-47E1-B174-E8539BA5FED1}
2011-04-17 15:43 . 2011-04-17 15:43	--------	d-----w-	c:\users\OEMUser\AppData\Local\{7A1E595D-8938-405F-B8E3-D1C1B4CE47A8}
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-05-15 22:50 . 2011-05-15 22:50	2444388	----a-w-	C:\UsbFix_Upload_Me_LORY.zip
2011-04-06 14:20 . 2011-04-06 14:20	91424	----a-w-	c:\windows\system32\dnssd.dll
2011-04-06 14:20 . 2011-04-06 14:20	107808	----a-w-	c:\windows\system32\dns-sd.exe
2011-03-10 17:03 . 2011-04-15 17:47	1162240	----a-w-	c:\windows\system32\mfc42u.dll
2011-03-10 17:03 . 2011-04-15 17:47	1136640	----a-w-	c:\windows\system32\mfc42.dll
2011-03-09 17:37 . 2010-06-24 09:33	18328	----a-w-	c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2011-03-03 15:42 . 2011-04-15 17:47	739328	----a-w-	c:\windows\system32\inetcomm.dll
2011-03-03 15:40 . 2011-04-27 22:26	173056	----a-w-	c:\windows\apppatch\AcXtrnal.dll
2011-03-03 15:40 . 2011-04-27 22:26	458752	----a-w-	c:\windows\apppatch\AcSpecfc.dll
2011-03-03 15:40 . 2011-04-27 22:26	542720	----a-w-	c:\windows\apppatch\AcLayers.dll
2011-03-03 15:40 . 2011-04-27 22:26	2159616	----a-w-	c:\windows\apppatch\AcGenral.dll
2011-03-03 13:25 . 2011-04-15 17:47	2041856	----a-w-	c:\windows\system32\win32k.sys
2011-03-02 15:44 . 2011-04-15 17:47	86528	----a-w-	c:\windows\system32\dnsrslvr.dll
2011-02-22 14:13 . 2011-03-23 21:57	288768	----a-w-	c:\windows\system32\XpsGdiConverter.dll
2011-02-22 13:33 . 2011-03-23 21:57	1068544	----a-w-	c:\windows\system32\DWrite.dll
2011-02-22 13:33 . 2011-03-23 21:57	797696	----a-w-	c:\windows\system32\FntCache.dll
2011-02-22 13:24 . 2011-04-15 17:47	213504	----a-w-	c:\windows\system32\drivers\mrxsmb10.sys
2011-02-22 13:24 . 2011-04-15 17:47	79360	----a-w-	c:\windows\system32\drivers\mrxsmb20.sys
2011-02-22 13:23 . 2011-04-15 17:47	106496	----a-w-	c:\windows\system32\drivers\mrxsmb.sys
2011-02-22 13:23 . 2011-04-15 17:47	69632	----a-w-	c:\windows\system32\drivers\bowser.sys
2011-02-18 15:36 . 2011-02-18 15:36	41984	----a-w-	c:\windows\system32\drivers\usbaapl.sys
2011-02-18 15:36 . 2011-02-18 15:36	4184352	----a-w-	c:\windows\system32\usbaaplrc.dll
2011-02-18 14:03 . 2011-04-15 17:47	305152	----a-w-	c:\windows\system32\drivers\srv.sys
2011-02-18 14:03 . 2011-04-15 17:47	146432	----a-w-	c:\windows\system32\drivers\srv2.sys
2011-02-18 14:03 . 2011-04-15 17:47	102400	----a-w-	c:\windows\system32\drivers\srvnet.sys
2011-02-16 16:16 . 2011-04-15 17:48	34304	----a-w-	c:\windows\system32\atmlib.dll
2011-02-16 14:02 . 2011-04-15 17:48	292864	----a-w-	c:\windows\system32\atmfd.dll
.
.
(((((((((((((((((((((((((((((((((((((   Punti Reg Caricati   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati. 
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2011-05-10 39408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2010-12-22 2049320]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"Gestionnaire Antidote.exe"="c:\program files\Druide\Antidote\Gestionnaire Antidote.exe" [2007-09-24 533944]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
PHOTOfunSTUDIO 5.0.lnk - c:\program files\Common Files\Panasonic\PHOTOfunSTUDIO AutoStart\AutoStartupService.exe [2011-2-21 172544]
Scrybe.lnk - c:\windows\Installer\{13061CAA-0284-4F9A-B460-3D4699575B35}\NewShortcut11_8ACB210B42E44145A8C31F8E3DD765A3.exe [2011-2-4 45056]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"HonorAutoRunSetting"= 0 (0x0)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"HonorAutoRunSetting"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon
otify\DeviceNP]
2007-06-08 07:04	49152	----a-r-	c:\windows\System32\DeviceNP.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2010-09-20 21:07	932288	----a-r-	c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2011-01-31 08:44	35760	------w-	c:\program files\Adobe\Reader 9.0\Readereader_sl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BDAgent]
2011-05-14 00:02	1198048	----a-w-	c:\program files\BitDefender\BitDefender 2010\bdagent.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BitDefender Antiphishing Helper]
2010-01-19 00:47	71152	----a-w-	c:\program files\BitDefender\BitDefender 2010\ieshow.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ContentTransferWMDetector.exe]
2008-07-11 16:51	423200	----a-w-	c:\program files\Sony\Content Transfer\ContentTransferWMDetector.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Gestionnaire Antidote.exe]
2007-09-24 02:55	533944	----a-w-	c:\program files\Druide\Antidote\Gestionnaire Antidote.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
2007-09-13 21:38	154136	----a-w-	c:\windows\System32\hkcmd.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Health Check Scheduler]
2007-06-05 07:12	71176	----a-w-	c:\program files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
2007-03-11 20:34	49152	----a-w-	c:\program files\Hp\HP Software Update\hpwuSchd2.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]
2007-09-13 21:38	141848	----a-w-	c:\windows\System32\igfxtray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM]
2007-08-30 08:50	205480	------w-	c:\program files\Common Files\InstallShield\UpdateService\ISUSPM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2011-04-14 09:32	421160	----a-w-	c:\program files\iTunes\iTunesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]
2008-01-24 10:32	2289664	------w-	c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechCommunicationsManager]
2008-08-14 15:11	565008	----a-w-	c:\program files\Common Files\logishrd\LComMgr\Communications_Helper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechQuickCamRibbon]
2008-08-14 15:15	2407184	------w-	c:\program files\Logitech\QuickCam\Quickcam.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
2010-11-10 00:54	4240760	------w-	c:\program files\Windows Live\Messenger\msnmsgr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence]
2007-09-13 21:38	129560	----a-w-	c:\windows\System32\igfxpers.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PTHOSTTR]
2007-01-09 13:52	145184	----a-w-	c:\program files\Hewlett-Packard\HP ProtectTools Security Manager\pthosttr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QlbCtrl]
2007-06-11 06:55	163840	----a-w-	c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2010-11-29 16:38	421888	----a-w-	c:\program files\QuickTime\QTTask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
2009-04-11 06:28	1233920	----a-w-	c:\program files\Windows Sidebar\sidebar.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
2007-02-21 13:14	1183744	----a-w-	c:\program files\Analog Devices\Core\smax4pnp.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2007-03-14 01:43	83608	----a-w-	c:\program files\Java\jre1.6.0_01\bin\jusched.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
2010-12-22 19:18	2049320	----a-w-	c:\program files\Synaptics\SynTP\SynTPEnh.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Trust Mouse 15349&15350.exe]
2007-09-05 16:50	578560	----a-w-	c:\program files\Trust Mouse 15349&15350\Trust Mouse 15349&15350.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WatchDog]
2007-05-23 10:00	192512	----a-w-	c:\program files\InterVideo\DVD Check\DVDCheck.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
2008-01-19 07:38	1008184	----a-w-	c:\program files\Windows Defender\MSASCui.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-1161289982-1481855903-134975006-1006]
"EnableNotificationsRef"=dword:00000003
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 gupdate;Servizio di Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-02-03 135664]
R2 NewServiceInstall1;NewServiceInstall1;c:\program files\SDL International\T2007\TT\Lng\Dialogs1031.lng [2007-04-23 11264]
R3 Arrakis3;BitDefender Serveur Arrakis;c:\program files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe [2010-01-19 183880]
R3 DAMDrv;DAMDrv;c:\windows\system32\DRIVERS\DAMDrv.sys [2007-06-08 30008]
R3 Droppix Service;Droppix Service;c:\program files\Common Files\Droppix\DxService.exe [2008-02-01 151552]
R3 F-Secure BlackLight Sensor;F-Secure BlackLight Sensor; [x]
R3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files\MAGIX\Common\Database\bin\fbserver.exe [2005-11-17 1527900]
R3 FLCDLOCK;Controllo/blocco dispositivi HP ProtectTools;c:\windows\system32\flcdlock.exe [2007-06-08 172131]
R3 fsbl-standalone;F-Secure BlackLight Beta Engine Driver;c:\users\OEMUser\AppData\Local\Temp\F-Secure\BlackLight\fsbldrv.sys [x]
R3 gupdatem;Servizio Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2010-02-03 135664]
R3 UPnPService;UPnPService;c:\program files\Common Files\MAGIX Shared\UPnPService\UPnPService.exe [2006-12-14 544768]
R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]
S1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver;c:\windows\system32\DRIVERS\BdfNdisf6.sys [2010-05-06 72784]
S2 a2free;a-squared Free Service;c:\program files\a-squared Free\a2service.exe [2009-10-01 1858144]
S2 BDVEDISK;BDVEDISK;c:\program files\BitDefender\BitDefender 2010\bdvedisk.sys [2010-05-06 85128]
S2 ScrybeUpdater;Programma di aggiornamento Scrybe;c:\program files\Synaptics\Scrybe\Service\ScrybeUpdater.exe [2011-01-14 1294848]
S2 SDL FLEXlm License Server;SDL FLEXlm License Server;c:\program files\SDL International\License Server\Lmgrd.exe [2007-02-22 1339392]
S3 BDFM;BDFM;c:\windows\system32\DRIVERS\bdfm.sys [2010-02-10 153448]
S3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\DRIVERS\NETw5v32.sys [2008-11-17 3668480]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceNoNetwork	REG_MULTI_SZ   	PLA DPS BFE mpssvc
bthsvcs	REG_MULTI_SZ   	BthServ
HPZ12	REG_MULTI_SZ   	Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt	REG_MULTI_SZ   	hpqcxs08 hpqddsvc
bdx	REG_MULTI_SZ   	scan
LocalServiceAndNoImpersonation	REG_MULTI_SZ   	FontCache
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2008-01-24 10:30	451872	------w-	c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Contenuto della cartella 'Scheduled Tasks'
.
2011-05-16 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-02-03 22:06]
.
2011-05-16 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-02-03 22:06]
.
.
------- Scansione supplementare -------
.
uInternet Settings,ProxyOverride = *.local
IE: E&sporta in Microsoft Excel - c:\progra~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html
Trusted Zone: facebook.com\www
Trusted Zone: vodafone.it\www
.
- - - - CHIAVI ORFANE RIMOSSE - - - -
.
MSConfigStartUp-TkBellExe - c:\program files\Common Files\Real\Update_OBealsched.exe
AddRemove-{29EAE5E2-E92F-4278-A660-AF3975D72691}_is1 - c:\program files\faceplus\unins000.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-05-16 18:17
Windows 6.0.6002 Service Pack 2 NTFS
.
scansione processi nascosti ... 
.
scansione entrate autostart nascoste ... 
.
Scansione files nascosti ... 
.
Scansione completata con successo
Files nascosti: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Services\NewServiceInstall1]
"ImagePath"="\"c:\program files\SDL International\T2007\TT\Lng\Dialogs1031.lng\""
.
--------------------- CHIAVI DI REGISTRO BLOCCATE ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
--------------------- Dlls caricate dai processi in esecuzione ---------------------
.
- - - - - - - > 'Explorer.exe'(10692)
c:\windows\TEMP\logishrd\LVPrcInj01.dll
.
------------------------ Altri processi in esecuzione ------------------------
.
c:\program files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
c:\program files\BitDefender\BitDefender 2010\vsserv.exe
c:\windows\system32\AEADISRV.EXE
c:\windows\system32\agrsmsvc.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
c:\program files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\program files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
c:\program files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe
c:\program files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
c:\program files\Microsoft SQL Server\90\Shared\sqlwriter.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\SDL International\License Server	rados.exe
c:\program files\Hewlett-Packard\Shared\hpqwmiex.exe
c:\program files\Pinnacle\Shared Files\Programs\MediaServer\PMSHost.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\program files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
c:\program files\BitDefender\BitDefender 2010\seccenter.exe
c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
c:\windows\system32\conime.exe
c:\program files\Synaptics\Scrybe\scrybe.exe
c:\program files\Hewlett-Packard\HP Health Check\hphc_service.exe
c:\program files\Synaptics\SynTP\SynTPHelper.exe
c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
.
**************************************************************************
.
Ora fine scansione: 2011-05-16  18:30:41 - Il pc è stato riavviato
ComboFix-quarantined-files.txt  2011-05-16 16:30
.
Pre-Run: 15.951.851.520 byte disponibili
Post-Run: 16.095.055.872 byte disponibili
.
- - End Of File - - 9FE7B2F4EBB35FF222D4320129251002

Voilà, voilà. J'ai quand meme une bonne nouvelle; les icones de la barre d'outils sont revenues, pour le reste, rien n'a changé.

Lyonnais92 · Answer

Re,

si, sur ton Bureau, tu fais clic droit puis Affichage,

Afficher les icônes du Bureau est cochée ?

Sinon, coche la.

Giulia27 · Answer

Oui, elle est déjà cochée! =(

Lyonnais92 · Answer

Re,

si les fichiers sont "toujours là", fais ceci :

Copie dans le Presse-papier la ligne ci-dessous (sélectionne la avec la souris et fais simultanément Ctrl et C)

HiddenFix

Déconnecte toi d'Internet et ferme toutes les applications ouvertes.


Pour Xp : Double clique sur l'icône ZHPFix.exe sur ton Bureau.

Pour Vista et W7  : Clique droit sur l'icône ZHPFix.exe sur ton Bureau,
puis sélectionne 'Exécuter en tant qu'administrateur'.

Clique successivement sur l'icône H (pour effacer le rapport qui s'est affiché) puis sur l'icône de la malette cachée par la feuille.

Vérifie que toutes les lignes que je t'ai demandé de copier (et seulement elles) sont dans la fenêtre.

Clique sur OK, ce qui fait apparaître un carré à gauche de chaque ligne.

Clique sur "Tous" puis sur "Nettoyer".

Laisse l'outil travailler.

Si il te demande de redémarrer l'ordi pour achever le nettoyage, fais le immédiatement.

Le rapport d'exécution va apparaître dans la fenêtre.

Copie le dans ta réponse.

Giulia27 · Answer

ça ne fonctionne pas... le programme ne répond pas quand j'appuie sur nettoyer...

Lyonnais92 · Answer

Re,

tu le lances bien par clic droit sur l'icône du Bureau et Exécuter en tant qu'administrateur ?

Giulia27 · Answer

oui oui. mais ça se bloque... je me suis ptet trompée en le lançant...

Lyonnais92 · Answer

Re,

on va faire autrement.

Tu le lances par clic droit net Exécuter en tnt qu'administrateur.

Tu cliques sur HiddenFix (à droite).

Le sablier devrait apparaître.

Laisse l'outil tourner. Il peut être long.

Tu dois pouvoir vérifier dans le gestionnaire des tâches qu'il avance.

Giulia27 · Answer

ok, j'essaie. à plus tard!

Giulia27 · Answer

rien à faire, j'ai essayé plusieurs fois et dès que je le lance, il se bloque!

Lyonnais92 · Answer

Re,

relance ZHPDiag (clic droit ....)

Clique sur les jumelles pour lancer ZHPSearch.

Tape HideDesktopIcons dans la fenêtre

Coche seulement registre dans la colonne Mode de recherche

Clique sur la loupe pour lancer la recherche.

Poste le rapport dans ta réponse.

Recommence avec HideIcons

Giulia27 · Answer

le rapport s'affiche automatiquement où je dois le chercher? pcq ça fait qques minutes qu'il me dit qu'il génère un rapport, mais je ne vois rien venir...

Lyonnais92 · Answer

Re,

pendant la recherche, rien ne s'est affiché dans la fenêtre ?

Si tu as quelque chose, fais un copier/coller dans ta réponse.

Lyonnais92 · Answer

Re,

tu as aussi le nombre d'éléments trouvés (et, à droite, le nombre d'éléments analysés).

Quand l'édition du rapport est terminée, tu as une icône pour afficher le rapport.

Giulia27 · Answer

j'ai recommencé et toujours rien. pdt le scan, rien dans la fenetre, et mnt il me dit tjs qu'il génère le rapport mais rien ne s'affiche

Lyonnais92 · Answer

Re, 

essaye ça : 

dans Exécuter (démarrer, tous les programmes, accessoires, excécuter), tu copies  

regedit.exe /e c:\hide1.txt "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons" 

puis OK 

Tu réponds oui aux invites. 

Tu recopies le contenu de c:\hide1.txt dans ta réponse 

Tu recommences avec  


regedit.exe /e c:\hide2.txt "HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons" 

et tu recopies c:\hide2.txt 

@+ 
Science sans conscience n'est que ruine de l'âme. Rabelais

Giulia27 · Answer

quand je copie
regedit.exe /e c:\hide1.txt "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons" 
tel quel, rien ne s'ouvre et qd je copie juste
regedit.exe /e c:\hide1.txt 
il me dit qu'une erreur s'est produite pdt l'ouverture du file...
Il y a vraiment un problème! Par ailleurs, j'ai remarqué que dans "tous les programmes" il y avait encore un dossier windows vista recovery, où on peut le désinstaller. si j'essaie de l'ouvrir un message apparait et dit que le fichier a été déplacé ou renommé et qu'il ne fonctionnerait plus. Je dois effacer ça???

Lyonnais92 · Answer

Re,

est ce que ceci débloquerait :

Désactive le contrôle des comptes utilisateurs (tu le réactiveras après ta désinfection):

- Va dans démarrer puis panneau de configuration
- Double Clique sur l'icône "Comptes d'utilisateurs"
- Clique ensuite sur désactiver et valide.

Réessaye la dernière manip.

Giulia27 · Answer

rien à faire, ça ne fonctionne pas!!!! rien ne fonctionne, c'est désespérant!!!!

Lyonnais92 · Answer

Re,

je vais aller dormir.

A ce stade, je crois qu'il faut essayer de trouver le dernier point de restauration avant l'infection et restaurer avec lui.

Si la restauration se fait et que les icônes reviennent, tu refais tourner Combofix juste après.

Sinon, tu annules la restauration et tu reviens à la situation actuelle.

Giulia27 · Answer

ok, merci quand meme...

Bonne nuit. =)

Giulia27 · Answer

bon, j'ai désactivé antivirus et pare-feu mais rien à faire, après 5 minutes, le programme se bloque. :-/

gen-hackman · Answer

il se bloque ou il semble bloqué ?

tu as Pre_Scan.txt dans C:\ ou sur ton bureau ?

Giulia27 · Answer

non, il se bloque. une fenetre s'ouvre et dit que le programme ne répond plus

gen-hackman · Answer

ok regarde dans C:\il doit y avoir le rapport incomplet

Giulia27 · Answer

le voilà:

http://www.cijoint.fr/cjlink.php?file=cj201105/cijYGD90Fl.txt

gen-hackman · Answer

supprime ca :

C:\ProgramData\1772bk6k0gyk7h04ywrnhd00d78jgkig0      
C:\Users\OEMUser\AppData\Roaming\rbuwzv.dat

Giulia27 · Answer

c'est fait.
Je dois relancer Pre_scan?

gen-hackman · Answer

non redemarre ton pc et refais un zhpdiag pour Lyonnais92 , mais tu coches tout au tournevis

Giulia27 · Answer

ok, merci pour ton aide.
 J'espère que ça fonctionnera cette fois-ci!

Giulia27 · Answer

le pre_scan? oui, j'ai essayé 3 fois...

Giulia27 · Answer

ok, est-ce que je dois désactiver antivirus et pare-feu pour le scan? pcq il se bloque... (histoire de changer...) :-//

Giulia27 · Answer

Désolée, je me suis absentée, ben là il est à 65%, je l'ai relancé... ça a l'air d'aller. Je poste directement le rapport ici?

gen-hackman · Answer

non via cijoint

Giulia27 · Answer

et voilà:

http://www.cijoint.fr/cjlink.php?file=cj201105/cijw618i8V.txt

Lyonnais92 · Answer

Bonjour,

le retour à un point de restauration antérieur n'a rien changé ?

Tu as annulé la restauration ?

===

Relance ZHPDiag, clique sur la flèche verte, suis les instructions pour la mise à jour (téléchargement et installation).

===

relance ZHPDiag, clique sur les jumelles pour lancer ZHPSearch.

Copie 

C:\Users\OEMUser\Desktop

dans la fenêtre, puis clique sur l'icône /s /MD5 (ces caractères vont s'inscrire à la suite)

Clique sur la loupe pour lancer la recherche

Poste le rapport obtenu dans ta réponse.

===

Est ce que la liste contient tout ce qu'il y avait sur ton Bureau ?

===

Ouvre l'explorateur Windows, cherche 

C:\Users\OEMUser\Desktop

Clic droit et propriétés.

Est ce que la case "caché" est cochée.

Si oui, décoche la.

Giulia27 · Answer

Bonsoir!

Que de questions! =)
Alors, dans l'ordre:
La restauration n'a pas marché mais je n'ai pas annulé, je devrais???
Pour la recherche avec ZHPSearch, il ne me donne rien dans le rapport... il ne trouve rien, possible ça???
et enfin en ce qui concerne C:\Users\OEMUser\Desktop, pas de case "caché" cochée... par contre j'ai remarqué que quand je poste qqch sur cijoint, les icones que j'avais avant sur le bureau apparaissent quand je dois chercher le fichier à poster.

Lyonnais92 · Answer

Re,

vérifie que tu n'as pas des mises à jour de Windows à faire.

La date de restauration que tu as choisi est bien antérieure à ton problème (je préfère vérifier 2 fois) ?

Quand tu ouvres l'explorateur Windows, de toute évidence, tu vois les fichiers du Bureau (sauf que le Bureau ne s'affiche pas);

Mets toi sur un fichier de ce Bureau. Clic droit et Propriétés.

Pour lui non plus la case Caché n'est pas cochée ?

C'est bien OEMUser le propriétaire du fichier ?

===

supprime C:\hide1.txt (Majusc et Suppr pour ne pas le mettre dans la Corbeille)

Reessaye 

dans Exécuter (démarrer, tous les programmes, accessoires, excécuter), tu copies

regedit.exe /e c:\hide1.txt "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons"

puis OK

Tu réponds oui aux invites.

Tu recopies le contenu de c:\hide1.txt dans ta réponse

Tu recommences avec


regedit.exe /e c:\hide2.txt "HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons"

et tu recopies c:\hide2.txt 

===

Giulia27 · Answer

non pas de nouvelles mises à jour, et la date est antérieur de 2 jours...
pour les icones qui apparaissent sur le bureau, c'est bien OEMUser le propriétaire
quand je tape 
regedit.exe /e c:\hide1.txt "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons"
il ne m'ouvre rien. il ne me dit plus qu'une erreur s'est produite mais il ne l'ouvre pas... 

=((

Lyonnais92 · Answer

Re,

regarde par l'explorateur Windows si c:\hide1.txt n'existe pas.

Si il existe (j'espère que tu as supprimé celui qui existait), poste le (en tout cas les 50 premières lignes).

Giulia27 · Answer

eccolo hide1.txt

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu]
"{871C5380-42A0-1069-A2EA-08002B30309D}.default"=dword:00000000
"{9343812e-1c37-4a49-a12e-4b2d810d956b}"=dword:00000001
"{4336a54d-038b-4685-ab02-99bb52d3fb8b}"=dword:00000001

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel]
"{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}"=dword:00000001
"{20D04FE0-3AEA-1069-A2D8-08002B30309D}"=dword:00000001
"{208D2C60-3AEA-1069-A2D7-08002B30309D}"=dword:00000001
"{871C5380-42A0-1069-A2EA-08002B30309D}"=dword:00000001
"{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}"=dword:00000001
"{59031a47-3f72-44a7-89c5-5595fe6b30ee}"=dword:00000001
"{9343812e-1c37-4a49-a12e-4b2d810d956b}"=dword:00000001
"{4336a54d-038b-4685-ab02-99bb52d3fb8b}"=dword:00000001

Lyonnais92 · Answer

Re,

la même chose avec la 2ème clé (la première est très semblable à la mienne)

Giulia27 · Answer

voilà le hide2.txt

Windows Registry Editor Version 5.00

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu]
"{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}"=dword:00000001
"{20D04FE0-3AEA-1069-A2D8-08002B30309D}"=dword:00000000
"{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}"=dword:00000000
"{59031a47-3f72-44a7-89c5-5595fe6b30ee}"=dword:00000001
"{645FF040-5081-101B-9F08-00AA002F954E}"=dword:00000000

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel]
"{871C5380-42A0-1069-A2EA-08002B30309D}"=dword:00000000
"{20D04FE0-3AEA-1069-A2D8-08002B30309D}"=dword:00000000
"{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}"=dword:00000000
"{59031a47-3f72-44a7-89c5-5595fe6b30ee}"=dword:00000001
"{645FF040-5081-101B-9F08-00AA002F954E}"=dword:00000000
"{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}"=dword:00000001

Lyonnais92 · Answer

Re,

alors, les éléments en dword:0000001 sont cachés.

On va tout afficher (si c'est cette clé qui bloque).

Ouvre le Bloc Notes.
Copie le texte ci-dessous  (copie/colle) :

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu]

"{9343812e-1c37-4a49-a12e-4b2d810d956b}"=dword:00000000
"{4336a54d-038b-4685-ab02-99bb52d3fb8b}"=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel]
"{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}"=dword:00000000
"{20D04FE0-3AEA-1069-A2D8-08002B30309D}"=dword:00000000
"{208D2C60-3AEA-1069-A2D7-08002B30309D}"=dword:00000000
"{871C5380-42A0-1069-A2EA-08002B30309D}"=dword:00000000
"{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}"=dword:00000000
"{59031a47-3f72-44a7-89c5-5595fe6b30ee}"=dword:00000000
"{9343812e-1c37-4a49-a12e-4b2d810d956b}"=dword:00000000
"{4336a54d-038b-4685-ab02-99bb52d3fb8b}"=dword:00000000

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu]
"{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}"=dword:00000000
"{59031a47-3f72-44a7-89c5-5595fe6b30ee}"=dword:00000000

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel]

"{59031a47-3f72-44a7-89c5-5595fe6b30ee}"=dword:00000000
"{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}"=dword:00000000
  

Clique sur "Fichier", "Enregistrer sous".
Clique sur Bureau (dans la colonne de gauche)
Dans Nom du fichier tu écris fix.reg
Pour Type tu choisis "tous les fichiers" avec le menu déroulant.
Tu cliques sur Enregistrer.
Tu fermes le Bloc-notes

Sur ton bureau, tu double-clique sur l'icône de Fix.reg

(vu le problème, tu cherches le fichier par l'explorateur Windows et tu fais un double clic pour le lancer)

Tu acceptes l'avertissement concernant la fusion
Le fix va travailler sans se manifester.
A la fin, tu vas voir un message disant que la fusion est terminée. Tu valides.

Giulia27 · Answer

ok, c'est fait. =)

Lyonnais92 · Answer

Re,

ce qui veut dire "rien de neuf" ?

Fais redémarrer l'ordi pour vérifier.

Giulia27 · Answer

aaaaaaaaah enfin une petite victoire!!!!! :-D presque toutes les icones du bureau sont réapparues, par contre pas de changement pour la barre de lancement rapide...
Et j'ai un fichier desktop.ini qui s'ouvre au démarrage, c'est normal ça???

Giulia27 · Answer

j'ai une autre question, pourquoi les messages dans les fenetres (par exemple quand j'installe/désinstalle un programme) sont en anglais mnt, ainsi que dans programmes les voix accesoires, accessibilité, outils système etc.?

Lyonnais92 · Answer

Bonjour,

plus qu'une petite victoire (il me semble), même si il reste des problèmes.

Que manque t-il ?

Pour la barre de lancement rapide, ouvre avec l'explorateur Windows :

C:\Users\votre nom d'utilisateur\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned

Est ce que tu as un sous-dossier Taskbar ?

Si oui, qu'y a t-il dedans ?

===

Pour les langues, il m'avait semblé que tu avais un Windows italien.

Je me trompe ?

===

J'ai aussi depuis 2 jours un fichier desktop.ini (en fait 2) qui restent ouverts au démarrage de la session et que je ferme manuellement.

Remarque accessoire : je trouve bizarre que la modification du registre ait fait réapparaître le Bureau alors que la restauration système a été inopérante.

Giulia27 · Answer

Bonjour Lyonnais92!

Donc, il manque la barre de lancement rapide, j'ai été dans 
C:\Users\votre nom d'utilisateur\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned, 
mais quand j'arrive dans Quick Launch il n'y a pas de User Pinned....
Pour le reste, en gros tout est là sauf qques icones de programmes, mais bon ça je peux à la limite Créer un raccourci.
-----
Pour la langue, windows est bien en italien, et tout était en italien avant, alors que mnt ces messages dont je t'ai parlés sont en anglais...
-----
J'ai moi aussi 2 fichiers ini qui s'ouvrent, mais il doit y avoir moyen de les masquer pcq j'en ai un peu partout: dans le menu démarrage, dans les sous-menus etc...
-----
J'ai aussi tout un tas de fichiers qui, je crois, devraient etre masqués, tu sais comment les rendre "invisibles"? J'ai peur de les effacer par erreur.

Voilà, en gros je t'ai tout dit.

Lyonnais92 · Answer

Re,

pour la langue, essaye

Panneau de configuration, Région et langue.

Tu passes en revue les onglets pour mettre la langues souhaitée partout où tu peux.

Il y avait des "langue anglaise" que tu as changé ?

===

Pour la barre de lancement rapide, je crois qu'il faut que tu la reconstitues.

Tu as un tutoriel ici :

https://www.commentcamarche.net/faq/20514-windows-7-retrouver-une-barre-de-lancement-rapide

===

Recache les fichiers protégés du système d'exploitation.

Giulia27 · Answer

heu non, tout est bien en italien, pas d'anglais en vue... bizarre.
----
la case est déjà cochée pour les fichiers protégés, ainsi que la case pour masquer les dossiers et les fichiers cachés...
----
pour la barre de lancement rapide, je vais jeter un oeil au lien que tu m'as envoyé!
=)

Lyonnais92 · Answer

Re,

c'est quoi les fichiers que tu veux rendre "invisibles" ?

Giulia27 · Answer

par exemple ntuser.dat, certains raccourcis qu'avant je ne voyais pas etc...

Lyonnais92 · Answer

Re,

toujours les problèmes de langue ?

Pour les fichiers affichés "en trop", on peut chercher quelle valeur est en cause, mais ça risque d'être assez long.

Tu es sûre que cela en vaut la peine ?

Giulia27 · Answer

Oui, le problème de langue est tjs là...
et pour les fichiers "en trop", je crois que c'est du à l'utilisation de unhide... c'est à partir de ce moment qu'ils sont apparus...

ps: tu as raison gen-hackman, il a fait du beau boulot! =) d'ailleurs, je dois le remercier pour son temps et la patience qu'il a eu et qu'il a encore avec moi et mes problèmes.

Lyonnais92 · Answer

Re,

tu me remets un ZHPDiag et tu postes le rapport dans un lien Cijoint.

Giulia27 · Answer

ok, c'est en cours. :-)

Giulia27 · Answer

le voilà:

http://www.cijoint.fr/cjlink.php?file=cj201105/cijYvHfSAt.txt

Lyonnais92 · Answer

Re,

sais tu à quoi correspond C:\ProgramData\vsosdk
 ?

===

Mets à jour ta console java :

Pour Vista et Windows 7, il faut désactiver l'UAC.
(- Va dans démarrer puis panneau de configuration
- Double Clique sur l'icône "Comptes d'utilisateurs"
- Clique ensuite sur désactiver et valide.)

Télécharge JavaRa.zip de Paul McLain et Fred de Vries.

https://launchwoo.com.au/

Choisis le premier téléchargement (fichier binary)

hxxp://raproducts.org/click/click.php?id=1

* Décompresse le fichier sur le Bureau (Clic droit > Extraire tout).
* Double-clique sur le répertoire JavaRa.
* Puis double-clique sur le fichier JavaRa.exe (le exe peut ne pas s'afficher).
* Choisis Français puis clique sur Select.
* Clique sur Recherche de mises à jour.
* Sélectionne Mettre à jour via jucheck.exe puis clique sur Rechercher.
* Autorise le processus à se connecter s'il le demande, clique sur Installer et suis les instructions d'installation qui prennent quelques minutes.
* L'installation est terminée, reviens à l'écran de JavaRa et clique sur Effacer les anciennes versions.
* Clique sur Oui pour confirmer. Laisse travailler et clique ensuite sur OK, puis une deuxième fois sur OK.
* Un rapport va s'ouvrir. Poste-le dans ta prochaine réponse.
* Ferme l'application.
*Réactive l'UAC (Vista et Windows 7)

Note : le rapport se trouve aussi dans C:\ sous le nom JavaRa.log. 

===


Copie dans le Presse-papier les lignes ci-dessous (sélectionne les avec la souris et fais simultanément Ctrl et C)

[HKLM\Software\Classes\AppID\SoftwareUpdate.exe]
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\OfferBox]
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8736C681-37A0-40C6-A0F0-4C083409151C}]
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{4B3803EA-5230-4DC3-A7FC-33638F3D3542}
O23 - Service:  (SQLAgent$PINNACLESYS) - Orphean Key
[MD5.00000000000000000000000000000000] [APT] [{A4AE2F15-6835-4445-A142-893E9B2FBE17}] (.Unknown owner.) -- C:\Users\OEMUser\Desktop\EDT3.0\setup.exe (.not file.)



Déconnecte toi d'Internet et ferme toutes les applications ouvertes.


Pour Xp : Double clique sur l'icône ZHPFix.exe sur ton Bureau.

Pour Vista et W7  : Clique droit sur l'icône ZHPFix.exe sur ton Bureau,
puis sélectionne 'Exécuter en tant qu'administrateur'.

Clique successivement sur l'icône H (pour effacer le rapport qui s'est affiché) puis sur l'icône de la malette cachée par la feuille.

Vérifie que toutes les lignes que je t'ai demandé de copier (et seulement elles) sont dans la fenêtre.

Clique sur OK, ce qui fait apparaître un carré à gauche de chaque ligne.

Clique sur "Tous" puis sur "Nettoyer".

Laisse l'outil travailler.

Si il te demande de redémarrer l'ordi pour achever le nettoyage, fais le immédiatement.

Le rapport d'exécution va apparaître dans la fenêtre.

Copie le dans ta réponse.

Giulia27 · Answer

alors en ce qui concerne C:\ProgramData\vsosdk, je ne sais pas du tout de quoi il s'agit, mais il date de 2009...

----

voilà le rapport JavaRA:

JavaRa 1.16 Removal Log.

Report follows after line.

------------------------------------

The JavaRa removal process was started on Thu May 19 00:30:09 2011

Found and removed: C:\Program Files\Java\j2re1.4.2_12

Found and removed: C:\Program Files\Java\jre1.5.0_10

Found and removed: C:\Program Files\Java\jre1.6.0_01

Found and removed: C:\Windows\Installer\{7148F0A8-6813-11D6-A77B-00B0D0142120}

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0001-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0002-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0003-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0004-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0005-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0006-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0007-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0008-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0009-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0010-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0011-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0012-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0013-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0014-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0015-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0016-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0017-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0018-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0019-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0020-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0021-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0022-ABCDEFFDCBA}. The error returned was 124.

Found and removed: Applications\java.exe

Found and removed: Applications\javaw.exe

Found and removed: JavaPlugin.FamilyVersionSupport

Found and removed: CLSID\{CAFEEFAC-0013-0000-0003-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0000-0004-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0000-0005-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0000-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0022-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0022-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0023-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0023-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0024-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0024-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0025-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0025-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0026-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0026-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0027-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0027-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0028-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0028-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0029-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0029-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0030-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0030-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0020-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0020-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0021-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0021-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0022-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0022-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0023-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0023-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0024-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0024-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0025-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0025-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0026-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0026-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0027-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0027-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0028-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0028-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0029-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0029-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0030-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0030-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-FFFF-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBC}

Found and removed: JavaWebStart.isInstalled.1.6.0.0

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0015-0000-FFFF-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0016-0000-FFFF-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{E19F9331-3110-11D4-991C-005004D3B3DB}

Found and removed: Software\Classes\JavaPlugin.142_12

Found and removed: Software\Classes\JavaPlugin.150_10

Found and removed: Software\Classes\JavaPlugin.160_01

Found and removed: Software\Classes\JavaPlugin.160_24

Found and removed: Software\JavaSoft\Java Update

Found and removed: Software\JavaSoft\Java Runtime Environment\1.6.0_01

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0000-0003-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0000-0004-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0000-0005-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0000-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0022-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0022-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0023-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0023-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0024-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0024-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0025-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0025-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0008-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0009-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\JavaPlugin

Found and removed: SOFTWARE\Classes\JavaPlugin.142_12

Found and removed: SOFTWARE\Classes\JavaPlugin.150_10

Found and removed: SOFTWARE\Classes\JavaPlugin.160_01

Found and removed: SOFTWARE\Classes\JavaPlugin.160_24

Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.4.2_12

Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.5.0_10

Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.6.0_01

Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.6.0_24

Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.4.2_12

Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.5

Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.5.0_10

Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.6

Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.6.0_01

Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.6.0_24

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_02

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_03

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_04

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.2

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.2.0_01

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.4.2_12

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.5.0_10

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.6.0_01

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.6.0_24

Found and removed: SOFTWARE\Microsoft\Active Setup\Installed Components\{08B0E5C0-4FCB-11CF-AAA5-00401C608500}

Found and removed: SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\C:\Program Files\Common Files\Java\Update\Base Images\jre1.6.0.b105\patch-jre1.6.0_01.b06\

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\C:\Program Files\Java\jre1.5.0_10\

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\C:\Program Files\Java\jre1.6.0_01\

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\C:\Program Files\Common Files\Java\Update\Base Images\jre1.5.0.b64\

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4A03706F-666A-4037-7777-5F2748764D10}

Found and removed: SOFTWARE\MozillaPlugins\@java.com/JavaPlugin\MimeTypes\application/x-java-applet;version=1.1

Found and removed: SOFTWARE\MozillaPlugins\@java.com/JavaPlugin\MimeTypes\application/x-java-applet;version=1.1.1

Found and removed: SOFTWARE\MozillaPlugins\@java.com/JavaPlugin\MimeTypes\application/x-java-applet;version=1.1.2

Found and removed: SOFTWARE\MozillaPlugins\@java.com/JavaPlugin\MimeTypes\application/x-java-applet;version=1.1.3

Found and removed: SOFTWARE\MozillaPlugins\@java.com/JavaPlugin\MimeTypes\application/x-java-applet;version=1.2

Found and removed: SOFTWARE\MozillaPlugins\@java.com/JavaPlugin\MimeTypes\application/x-java-applet;version=1.2.1

Found and removed: SOFTWARE\MozillaPlugins\@java.com/JavaPlugin\MimeTypes\application/x-java-applet;version=1.3

Found and removed: SOFTWARE\MozillaPlugins\@java.com/JavaPlugin\MimeTypes\application/x-java-applet;version=1.3.1

Found and removed: SOFTWARE\MozillaPlugins\@java.com/JavaPlugin\MimeTypes\application/x-java-applet;version=1.4

Found and removed: SOFTWARE\MozillaPlugins\@java.com/JavaPlugin\MimeTypes\application/x-java-applet;version=1.4.1

Found and removed: SOFTWARE\MozillaPlugins\@java.com/JavaPlugin\MimeTypes\application/x-java-applet;version=1.4.2

Found and removed: SOFTWARE\MozillaPlugins\@java.com/JavaPlugin\MimeTypes\application/x-java-applet;version=1.5

------------------------------------

Finished reporting.

Giulia27 · Answer

et  voilà le rapport ZHPFix:

Rapport de ZHPFix 1.12.3283 par Nicolas Coolman, Update du 14/05/2011
Fichier d'export Registre : C:\ZHPExportRegistry-19-05-2011-0-36-50.txt
Run by OEMUser at 19/05/2011 0:36:49
Windows Vista Business Edition, 32-bit Service Pack 2 (Build 6002)
Web site : http://www.premiumorange.com/zeb-help-process/zhpfix.html

========== Registry Key ==========
HKLM\Software\Classes\AppID\SoftwareUpdate.exe  => Registry Key removed successfully
HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\OfferBox  => Registry Key removed successfully
HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}  => Registry Key removed successfully
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8736C681-37A0-40C6-A0F0-4C083409151C}  => Registry Key removed successfully
O23 - Service:  (SQLAgent$PINNACLESYS) - Orphean Key  => Registry Key removed successfully

========== Registry Value ==========
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{4B3803EA-5230-4DC3-A7FC-33638F3D3542}  => Registry key value removed successfully

========== Task ==========
Task : {A4AE2F15-6835-4445-A142-893E9B2FBE17}  => Task deleted successfully

========== Altre ==========
C:  => Not supported


========== Sommario ==========
5 : Registry Key
1 : Registry Value
1 : Task
1 : Altre


End of the scan

Lyonnais92 · Answer

Re,

tu fais redémarrer l'ordi, tu refais tourner ZHPDiag et tu postes le rapport dans un lien Cijoint.

Giulia27 · Answer

bonsoir Lyonnais, 

je viens d'allumer le pc, et après 10 minutes j'ai eu un écran bleu qui disait que windows avait un problème et que je devais redémarrer le pc.
Je l'ai fait et mnt un message apparait; il dit que le dossier C:\Program pourrait empecher le bon fonctionnement de certaines applications. Et que pour résoudre le problème il faut changer le nom du dossier en C:\Program1. Il me demande si il doit changer le nom. Qu'est-ce que je fais?

Giulia27 · Answer

en attendant, voilà le rapport ZHPDiag

http://www.cijoint.fr/cjlink.php?file=cj201105/cijQPypW8o.txt

Lyonnais92 · Answer

Bonsoir,

ne renomme rien.

Programme une analyse chkdsk au prochain redémarrage et fais redémarrer.

Il se passe quoi ?

Giulia27 · Answer

bonsoir, 

pour finir je n'ai rien fait... le problème a disparu "tout seul". quand j'ai allumé l'ordi auj, plus de message. bizarre non???

Lyonnais92 · Answer

Bonsoir,

Windows et ses mystères !!!

Pour le mélange des langues ?

Giulia27 · Answer

pour les langues pas de changmnt et pour les dossiers "cachés" non plus =(

Lyonnais92 · Answer

Re,

pour les fichiers "non cachés", clic droit, Propriétés et cocher la case Caché;

Ca fonctionne ?

Pour les langues, je vais voir ce que je peux faire.

Ca peut ne pas être immédiat (rien trouvé sur Internet qui ressemble à ça).

Giulia27 · Answer

ok ok merci :-D

pour les fichiers, je dois faire ça pour chaque fichier???

Lyonnais92 · Answer

Re,

tu en as combien ? (environ)

Giulia27 · Answer

je ne sais pas trop.... enfin bon, on va dire que  je les cacherai au fur et à mesure lol. En tout cas, merci pour ton aide et pour ton temps. Si tu trouves qqch à propros des langues fais-moi signe ok??

Lyonnais92 · Answer

Bonjour,

on va exporter une clé

démarrer,Tous les programmes, Accessoires,exécuter, tu copies

regedit.exe /e c:
ls1.txt "HKLM\System\CurrentControlSet\Control\Nls" 

puis OK

Tu postes le contenu de c:
ls1.txt dans ta réponse.

Giulia27 · Answer

:-/ il ne veut pas me l'ouvrir pffffffffffff

Lyonnais92 · Answer

Re,

il ne veut pas t'ouvrir quoi ?

===

Une vérification :

ouvre ce lien :

https://support.kaspersky.com/fr/14421

fais ce qui est dit en dessous de : la désinfection du système infecté.

Poste le rapport dans ta réponse.

Giulia27 · Answer

il ne veut pas m'ouvrir c:
ls1.txt 

le scan indique qu'il n'a rien trouvé...

Lyonnais92 · Answer

Re,

poste le rapport de TDSSKiller.

Essaye de mettre c:
ls1.txt  dans un lien Cijoint.

Giulia27 · Answer

voilà le rapport:

2011/05/21 21:34:48.0710 8884	TDSS rootkit removing tool 2.5.1.0 May 13 2011 13:20:29
2011/05/21 21:34:50.0785 8884	================================================================================
2011/05/21 21:34:50.0785 8884	SystemInfo:
2011/05/21 21:34:50.0785 8884	
2011/05/21 21:34:50.0785 8884	OS Version: 6.0.6002 ServicePack: 2.0
2011/05/21 21:34:50.0785 8884	Product type: Workstation
2011/05/21 21:34:50.0785 8884	ComputerName: LORY
2011/05/21 21:34:50.0785 8884	UserName: OEMUser
2011/05/21 21:34:50.0785 8884	Windows directory: C:\Windows
2011/05/21 21:34:50.0785 8884	System windows directory: C:\Windows
2011/05/21 21:34:50.0785 8884	Processor architecture: Intel x86
2011/05/21 21:34:50.0785 8884	Number of processors: 2
2011/05/21 21:34:50.0785 8884	Page size: 0x1000
2011/05/21 21:34:50.0785 8884	Boot type: Normal boot
2011/05/21 21:34:50.0785 8884	================================================================================
2011/05/21 21:34:55.0247 8884	Initialize success
2011/05/21 21:35:41.0731 9828	================================================================================
2011/05/21 21:35:41.0731 9828	Scan started
2011/05/21 21:35:41.0731 9828	Mode: Manual; 
2011/05/21 21:35:41.0731 9828	================================================================================
2011/05/21 21:35:59.0437 9828	ACPI            (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
2011/05/21 21:35:59.0889 9828	ADIHdAudAddService (fb9ece3f7b8a03e474e611031ad4cd23) C:\Windows\system32\drivers\ADIHdAud.sys
2011/05/21 21:36:00.0435 9828	adp94xx         (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
2011/05/21 21:36:00.0591 9828	adpahci         (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
2011/05/21 21:36:00.0841 9828	adpu160m        (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
2011/05/21 21:36:01.0574 9828	adpu320         (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
2011/05/21 21:36:02.0182 9828	AFD             (a201207363aa900abf1a388468688570) C:\Windows\system32\drivers\afd.sys
2011/05/21 21:36:02.0978 9828	AgereSoftModem  (3712986cc3abf0dc656b43525b9d1279) C:\Windows\system32\DRIVERS\AGRSM.sys
2011/05/21 21:36:03.0555 9828	agp440          (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
2011/05/21 21:36:04.0070 9828	aic78xx         (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
2011/05/21 21:36:04.0413 9828	aliide          (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys
2011/05/21 21:36:04.0756 9828	amdagp          (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
2011/05/21 21:36:05.0255 9828	amdide          (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys
2011/05/21 21:36:05.0661 9828	AmdK7           (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
2011/05/21 21:36:06.0067 9828	AmdK8           (0ca0071da4315b00fc1328ca86b425da) C:\Windows\system32\DRIVERS\amdk8.sys
2011/05/21 21:36:06.0535 9828	arc             (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
2011/05/21 21:36:06.0659 9828	arcsas          (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
2011/05/21 21:36:07.0065 9828	AsyncMac        (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
2011/05/21 21:36:07.0159 9828	atapi           (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
2011/05/21 21:36:07.0611 9828	BCM43XV         (cf6a67c90951e3e763d2135dede44b85) C:\Windows\system32\DRIVERS\bcmwl6.sys
2011/05/21 21:36:08.0297 9828	bcm4sbxp        (08015d34f6fdd0b355805bad978497c3) C:\Windows\system32\DRIVERS\bcm4sbxp.sys
2011/05/21 21:36:08.0781 9828	BDFM            (67c2a47db7190673350a3f9f5a1507cb) C:\Windows\system32\DRIVERS\bdfm.sys
2011/05/21 21:36:09.0171 9828	BdfNdisf        (2e82edc5e70163b2f72f7011e251ea63) C:\Windows\system32\DRIVERS\BdfNdisf6.sys
2011/05/21 21:36:09.0467 9828	bdfsfltr        (a21a4a0e6bdf0c2be0fabfa16d8c8f76) C:\Windows\system32\DRIVERS\bdfsfltr.sys
2011/05/21 21:36:09.0920 9828	bdftdif         (0bdbf842a39d6c5640ba4b8acf29aa06) C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdftdif.sys
2011/05/21 21:36:10.0778 9828	BDSelfPr        (0d756ced21d977ae32539da1f41bf879) C:\Program Files\BitDefender\BitDefender 2010\bdselfpr.sys
2011/05/21 21:36:11.0105 9828	BDVEDISK        (375cd0b9f433465ec6f50d4df44e9448) C:\Program Files\BitDefender\BitDefender 2010\bdvedisk.sys
2011/05/21 21:36:11.0714 9828	Beep            (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
2011/05/21 21:36:12.0416 9828	BlueletAudio    (852a1bd08e7dfeb9e30b5440881c0501) C:\Windows\system32\DRIVERS\blueletaudio.sys
2011/05/21 21:36:12.0955 9828	BlueletSCOAudio (8fc27b12a02b43947787f0ef1885df9b) C:\Windows\system32\DRIVERS\BlueletSCOAudio.sys
2011/05/21 21:36:13.0445 9828	bowser          (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
2011/05/21 21:36:13.0975 9828	BrFiltLo        (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
2011/05/21 21:36:14.0415 9828	BrFiltUp        (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
2011/05/21 21:36:15.0012 9828	Brserid         (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
2011/05/21 21:36:15.0527 9828	BrSerWdm        (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
2011/05/21 21:36:16.0057 9828	BrUsbMdm        (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
2011/05/21 21:36:16.0556 9828	BrUsbSer        (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
2011/05/21 21:36:17.0055 9828	BT              (c5cce2b26f73f8cf7f3c82159e79aa08) C:\Windows\system32\DRIVERS\btnetdrv.sys
2011/05/21 21:36:17.0601 9828	Btcsrusb        (da473d279420234170da795f1cad4479) C:\Windows\system32\Drivers\btcusb.sys
2011/05/21 21:36:18.0132 9828	BthEnum         (064fbc56921051de1075495d628b815f) C:\Windows\system32\DRIVERS\BthEnum.sys
2011/05/21 21:36:18.0678 9828	BTHidEnum       (ce643d0918123d76a5caab008fca9663) C:\Windows\system32\Drivers\vbtenum.sys
2011/05/21 21:36:19.0177 9828	BTHidMgr        (dfca4fe4c8aec786b4d0f432eb730f48) C:\Windows\system32\Drivers\BTHidMgr.sys
2011/05/21 21:36:20.0113 9828	BTHMODEM        (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
2011/05/21 21:36:20.0238 9828	BthPan          (b8c3d9ddf85fd197c3e5f849fef71144) C:\Windows\system32\DRIVERS\bthpan.sys
2011/05/21 21:36:20.0675 9828	BTHPORT         (b24757d9154cca035e1bbd3db92966d7) C:\Windows\system32\Drivers\BTHport.sys
2011/05/21 21:36:21.0096 9828	BTHUSB          (d42cf5f0c7635b3f1578810fe34d9e41) C:\Windows\system32\Drivers\BTHUSB.sys
2011/05/21 21:36:21.0642 9828	cdfs            (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
2011/05/21 21:36:21.0813 9828	cdrom           (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
2011/05/21 21:36:21.0938 9828	circlass        (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
2011/05/21 21:36:22.0500 9828	CLFS            (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
2011/05/21 21:36:22.0703 9828	CmBatt          (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
2011/05/21 21:36:22.0890 9828	cmdide          (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys
2011/05/21 21:36:22.0983 9828	Compbatt        (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
2011/05/21 21:36:23.0498 9828	crcdisk         (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
2011/05/21 21:36:23.0779 9828	Crusoe          (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
2011/05/21 21:36:24.0372 9828	CSC             (9bdb2e89be8d0ef37b1f25c3d3fc192c) C:\Windows\system32\drivers\csc.sys
2011/05/21 21:36:25.0043 9828	DAMDrv          (5d5984255a4bfaa4262fb750df7cd537) C:\Windows\system32\DRIVERS\DAMDrv.sys
2011/05/21 21:36:25.0526 9828	DfsC            (218d8ae46c88e82014f5d73d0236d9b2) C:\Windows\system32\Drivers\dfsc.sys
2011/05/21 21:36:25.0947 9828	disk            (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
2011/05/21 21:36:26.0415 9828	Dot4            (4f59c172c094e1a1d46463a8dc061cbd) C:\Windows\system32\DRIVERS\Dot4.sys
2011/05/21 21:36:26.0852 9828	Dot4Print       (80bf3ba09f6f2523c8f6b7cc6dbf7bd5) C:\Windows\system32\DRIVERS\Dot4Prt.sys
2011/05/21 21:36:27.0289 9828	dot4usb         (c55004ca6b419b6695970dfe849b122f) C:\Windows\system32\DRIVERS\dot4usb.sys
2011/05/21 21:36:27.0695 9828	drmkaud         (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
2011/05/21 21:36:28.0069 9828	DXGKrnl         (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
2011/05/21 21:36:28.0724 9828	e1express       (abfd0739bda1a9295b872a4b27326b9c) C:\Windows\system32\DRIVERS\e1e6032.sys
2011/05/21 21:36:29.0145 9828	E1G60           (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
2011/05/21 21:36:29.0769 9828	eabfiltr        (e88b0cfcecf745211bba87f44f85d0dd) C:\Windows\system32\DRIVERS\eabfiltr.sys
2011/05/21 21:36:30.0471 9828	Ecache          (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
2011/05/21 21:36:30.0986 9828	elxstor         (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
2011/05/21 21:36:31.0782 9828	exfat           (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
2011/05/21 21:36:32.0063 9828	fastfat         (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
2011/05/21 21:36:32.0437 9828	fdc             (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys
2011/05/21 21:36:32.0858 9828	FileInfo        (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
2011/05/21 21:36:32.0999 9828	Filetrace       (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
2011/05/21 21:36:33.0404 9828	flpydisk        (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
2011/05/21 21:36:34.0059 9828	FltMgr          (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
2011/05/21 21:36:35.0385 9828	fssfltr         (d909075fa72c090f27aa926c32cb4612) C:\Windows\system32\DRIVERS\fssfltr.sys
2011/05/21 21:36:35.0791 9828	Fs_Rec          (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
2011/05/21 21:36:36.0353 9828	gagp30kx        (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
2011/05/21 21:36:37.0117 9828	GEARAspiWDM     (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
2011/05/21 21:36:37.0725 9828	HBtnKey         (de15777902a5d9121857d155873a1d1b) C:\Windows\system32\DRIVERS\cpqbttn.sys
2011/05/21 21:36:38.0232 9828	HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
2011/05/21 21:36:38.0742 9828	HDAudBus        (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
2011/05/21 21:36:39.0312 9828	HidBth          (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
2011/05/21 21:36:39.0642 9828	HidIr           (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
2011/05/21 21:36:39.0963 9828	HidUsb          (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
2011/05/21 21:36:40.0462 9828	HpCISSs         (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
2011/05/21 21:36:40.0836 9828	HSFHWAZL        (46d67209550973257601a533e2ac5785) C:\Windows\system32\DRIVERS\VSTAZL3.SYS
2011/05/21 21:36:41.0382 9828	HSF_DPV         (ec36f1d542ed4252390d446bf6d4dfd0) C:\Windows\system32\DRIVERS\VSTDPV3.SYS
2011/05/21 21:36:42.0053 9828	HTTP            (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
2011/05/21 21:36:42.0552 9828	i2omp           (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
2011/05/21 21:36:43.0317 9828	i8042prt        (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
2011/05/21 21:36:43.0925 9828	iaStor          (997e8f5939f2d12cd9f2e6b395724c16) C:\Windows\system32\drivers\iastor.sys
2011/05/21 21:36:44.0440 9828	iaStorV         (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
2011/05/21 21:36:45.0532 9828	igfx            (038815297078d236d8cc064c295a74c6) C:\Windows\system32\DRIVERS\igdkmd32.sys
2011/05/21 21:36:46.0437 9828	iirsp           (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
2011/05/21 21:36:46.0967 9828	intelide        (97469037714070e45194ed318d636401) C:\Windows\system32\drivers\intelide.sys
2011/05/21 21:36:47.0529 9828	intelppm        (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
2011/05/21 21:36:48.0199 9828	IpFilterDriver  (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
2011/05/21 21:36:48.0886 9828	IPMIDRV         (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
2011/05/21 21:36:49.0338 9828	IPNAT           (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
2011/05/21 21:36:49.0947 9828	IRENUM          (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
2011/05/21 21:36:50.0415 9828	isapnp          (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
2011/05/21 21:36:51.0101 9828	iScsiPrt        (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
2011/05/21 21:36:51.0507 9828	iteatapi        (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
2011/05/21 21:36:51.0897 9828	iteraid         (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
2011/05/21 21:36:52.0209 9828	kbdclass        (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
2011/05/21 21:36:52.0552 9828	kbdhid          (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
2011/05/21 21:36:53.0004 9828	KSecDD          (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys
2011/05/21 21:36:53.0457 9828	lltdio          (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
2011/05/21 21:36:53.0909 9828	LSI_FC          (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
2011/05/21 21:36:54.0237 9828	LSI_SAS         (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
2011/05/21 21:36:55.0469 9828	LSI_SCSI        (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
2011/05/21 21:36:56.0062 9828	luafv           (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
2011/05/21 21:36:56.0889 9828	LVPr2Mon        (a6919138f29ae45e90e99fa94737e04c) C:\Windows\system32\DRIVERS\LVPr2Mon.sys
2011/05/21 21:36:57.0747 9828	LVUSBSta        (be5e104be263921d6842c555db6a5c23) C:\Windows\system32\drivers\LVUSBSta.sys
2011/05/21 21:36:58.0246 9828	MarvinBus       (269c14d512b74cc28d2812ff7d1eb066) C:\Windows\system32\DRIVERS\MarvinBus.sys
2011/05/21 21:36:58.0885 9828	megasas         (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
2011/05/21 21:36:59.0400 9828	Modem           (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
2011/05/21 21:36:59.0931 9828	monitor         (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
2011/05/21 21:37:00.0586 9828	mouclass        (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
2011/05/21 21:37:01.0491 9828	mouhid          (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
2011/05/21 21:37:02.0551 9828	MountMgr        (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
2011/05/21 21:37:03.0534 9828	mpio            (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
2011/05/21 21:37:04.0236 9828	mpsdrv          (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
2011/05/21 21:37:05.0406 9828	Mraid35x        (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
2011/05/21 21:37:06.0030 9828	MRxDAV          (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
2011/05/21 21:37:06.0561 9828	mrxsmb          (5fe5cf325f5b02ebc60832d3440cb414) C:\Windows\system32\DRIVERS\mrxsmb.sys
2011/05/21 21:37:07.0231 9828	mrxsmb10        (30b9c769446af379a2afb72b0392604d) C:\Windows\system32\DRIVERS\mrxsmb10.sys
2011/05/21 21:37:07.0372 9828	mrxsmb20        (fea239b3ec4877e2b7e23204af589ddf) C:\Windows\system32\DRIVERS\mrxsmb20.sys
2011/05/21 21:37:07.0575 9828	msahci          (742aed7939e734c36b7e8d6228ce26b7) C:\Windows\system32\drivers\msahci.sys
2011/05/21 21:37:08.0152 9828	msdsm           (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
2011/05/21 21:37:08.0916 9828	Msfs            (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
2011/05/21 21:37:09.0103 9828	msisadrv        (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
2011/05/21 21:37:09.0322 9828	MSKSSRV         (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
2011/05/21 21:37:09.0712 9828	MSPCLOCK        (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
2011/05/21 21:37:10.0258 9828	MSPQM           (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
2011/05/21 21:37:10.0726 9828	MsRPC           (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
2011/05/21 21:37:11.0194 9828	mssmbios        (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
2011/05/21 21:37:11.0771 9828	MSTEE           (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
2011/05/21 21:37:12.0192 9828	Mup             (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
2011/05/21 21:37:12.0504 9828	NativeWifiP     (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS
wifi.sys
2011/05/21 21:37:12.0816 9828	NDIS            (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers
dis.sys
2011/05/21 21:37:13.0315 9828	NdisTapi        (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS
distapi.sys
2011/05/21 21:37:13.0908 9828	Ndisuio         (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS
disuio.sys
2011/05/21 21:37:14.0626 9828	NdisWan         (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS
diswan.sys
2011/05/21 21:37:14.0985 9828	NDProxy         (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
2011/05/21 21:37:15.0531 9828	NetBIOS         (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS
etbios.sys
2011/05/21 21:37:16.0077 9828	netbt           (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS
etbt.sys
2011/05/21 21:37:16.0732 9828	NETw4v32        (38d720e0c8b0ecb9a019980265679798) C:\Windows\system32\DRIVERS\NETw4v32.sys
2011/05/21 21:37:18.0354 9828	NETw5v32        (8de67bd902095a13329fd82c85a1fa09) C:\Windows\system32\DRIVERS\NETw5v32.sys
2011/05/21 21:37:20.0320 9828	nfrd960         (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers
frd960.sys
2011/05/21 21:37:20.0772 9828	Npfs            (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
2011/05/21 21:37:21.0365 9828	nsiproxy        (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers
siproxy.sys
2011/05/21 21:37:22.0005 9828	Ntfs            (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
2011/05/21 21:37:22.0379 9828	ntrigdigi       (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers
trigdigi.sys
2011/05/21 21:37:22.0629 9828	Null            (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
2011/05/21 21:37:23.0019 9828	nvraid          (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers
vraid.sys
2011/05/21 21:37:23.0331 9828	nvstor          (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers
vstor.sys
2011/05/21 21:37:23.0518 9828	nv_agp          (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers
v_agp.sys
2011/05/21 21:37:24.0095 9828	ohci1394        (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\DRIVERS\ohci1394.sys
2011/05/21 21:37:24.0657 9828	Parport         (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
2011/05/21 21:37:25.0249 9828	partmgr         (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
2011/05/21 21:37:25.0842 9828	Parvdm          (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
2011/05/21 21:37:26.0591 9828	pci             (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
2011/05/21 21:37:27.0121 9828	pciide          (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\DRIVERS\pciide.sys
2011/05/21 21:37:27.0371 9828	PCLEPCI         (1bebe7de8508a02650cdce45c664c2a2) C:\Windows\system32\drivers\pclepci.sys
2011/05/21 21:37:27.0808 9828	pcmcia          (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\DRIVERS\pcmcia.sys
2011/05/21 21:37:28.0120 9828	pcouffin        (5b6c11de7e839c05248ced8825470fef) C:\Windows\system32\Drivers\pcouffin.sys
2011/05/21 21:37:28.0557 9828	PEAUTH          (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
2011/05/21 21:37:29.0352 9828	PID_0928        (3551190e9cf1eb4c0971bdef4269ca25) C:\Windows\system32\DRIVERS\LV561AV.SYS
2011/05/21 21:37:30.0226 9828	PptpMiniport    (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERSaspptp.sys
2011/05/21 21:37:30.0585 9828	Processor       (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
2011/05/21 21:37:30.0912 9828	Profos          (d90a33660d328a9f587580f0b38c85de) C:\Program Files\Common Files\BitDefender\BitDefender Threat Scanner\profos.sys
2011/05/21 21:37:31.0411 9828	PSched          (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
2011/05/21 21:37:31.0895 9828	PxHelp20        (e42e3433dbb4cffe8fdd91eab29aea8e) C:\Windows\system32\Drivers\PxHelp20.sys
2011/05/21 21:37:32.0145 9828	ql2300          (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
2011/05/21 21:37:32.0480 9828	ql40xx          (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
2011/05/21 21:37:32.0610 9828	QWAVEdrv        (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
2011/05/21 21:37:32.0850 9828	R300            (e642b131fb74caf4bb8a014f31113142) C:\Windows\system32\DRIVERS\atikmdag.sys
2011/05/21 21:37:33.0040 9828	RasAcd          (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERSasacd.sys
2011/05/21 21:37:33.0170 9828	Rasl2tp         (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERSasl2tp.sys
2011/05/21 21:37:33.0350 9828	RasPppoe        (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERSaspppoe.sys
2011/05/21 21:37:33.0490 9828	RasSstp         (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERSassstp.sys
2011/05/21 21:37:33.0580 9828	rdbss           (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERSdbss.sys
2011/05/21 21:37:33.0730 9828	RDPCDD          (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
2011/05/21 21:37:33.0840 9828	rdpdr           (943b18305eae3935598a9b4a3d560b4c) C:\Windows\system32\DRIVERSdpdr.sys
2011/05/21 21:37:33.0910 9828	RDPENCDD        (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\driversdpencdd.sys
2011/05/21 21:37:34.0040 9828	RDPWD           (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
2011/05/21 21:37:34.0260 9828	RFCOMM          (7ec90c316177ba3f1bce92005264b447) C:\Windows\system32\DRIVERSfcomm.sys
2011/05/21 21:37:34.0550 9828	ROOTMODEM       (75e8a6bfa7374aba833ae92bf41ae4e6) C:\Windows\system32\Drivers\RootMdm.sys
2011/05/21 21:37:35.0220 9828	rspndr          (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERSspndr.sys
2011/05/21 21:37:35.0961 9828	sbp2port        (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
2011/05/21 21:37:36.0663 9828	secdrv          (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
2011/05/21 21:37:37.0006 9828	Serenum         (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\DRIVERS\serenum.sys
2011/05/21 21:37:37.0146 9828	Serial          (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
2011/05/21 21:37:37.0223 9828	sermouse        (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
2011/05/21 21:37:37.0373 9828	sffdisk         (103b79418da647736ee95645f305f68a) C:\Windows\system32\drivers\sffdisk.sys
2011/05/21 21:37:37.0603 9828	sffp_mmc        (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys
2011/05/21 21:37:37.0773 9828	sffp_sd         (9cfa05fcfcb7124e69cfc812b72f9614) C:\Windows\system32\drivers\sffp_sd.sys
2011/05/21 21:37:38.0063 9828	sfloppy         (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
2011/05/21 21:37:38.0293 9828	sisagp          (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
2011/05/21 21:37:38.0553 9828	SiSRaid2        (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
2011/05/21 21:37:38.0863 9828	SiSRaid4        (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
2011/05/21 21:37:39.0053 9828	Smb             (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
2011/05/21 21:37:39.0353 9828	spldr           (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
2011/05/21 21:37:39.0773 9828	srv             (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
2011/05/21 21:37:40.0053 9828	srv2            (a5940ca32ed206f90be9fabdf6e92de4) C:\Windows\system32\DRIVERS\srv2.sys
2011/05/21 21:37:40.0453 9828	srvnet          (37aa1d560d5fa486c4b11c2f276ada61) C:\Windows\system32\DRIVERS\srvnet.sys
2011/05/21 21:37:40.0723 9828	ss_bus          (5a1d0ca8a5f1e7b4ec50b9d76c001f0e) C:\Windows\system32\DRIVERS\ss_bus.sys
2011/05/21 21:37:40.0803 9828	ss_mdfl         (f0a85580e36a3a85059037d39a9cf079) C:\Windows\system32\DRIVERS\ss_mdfl.sys
2011/05/21 21:37:40.0893 9828	ss_mdm          (84c3dbfd1bfa4adc0a950b3d5506cb00) C:\Windows\system32\DRIVERS\ss_mdm.sys
2011/05/21 21:37:41.0323 9828	StarOpen        (306521935042fc0a6988d528643619b3) C:\Windows\system32\drivers\StarOpen.sys
2011/05/21 21:37:41.0483 9828	swenum          (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
2011/05/21 21:37:41.0693 9828	Symc8xx         (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
2011/05/21 21:37:41.0843 9828	Sym_hi          (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
2011/05/21 21:37:42.0063 9828	Sym_u3          (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
2011/05/21 21:37:42.0503 9828	SynTP           (b769710846d690adb6d25ed9329d5db7) C:\Windows\system32\DRIVERS\SynTP.sys
2011/05/21 21:37:42.0973 9828	Tcpip           (a474879afa4a596b3a531f3e69730dbf) C:\Windows\system32\drivers	cpip.sys
2011/05/21 21:37:43.0383 9828	Tcpip6          (a474879afa4a596b3a531f3e69730dbf) C:\Windows\system32\DRIVERS	cpip.sys
2011/05/21 21:37:43.0843 9828	tcpipreg        (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers	cpipreg.sys
2011/05/21 21:37:43.0993 9828	TDPIPE          (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers	dpipe.sys
2011/05/21 21:37:44.0399 9828	TDTCP           (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers	dtcp.sys
2011/05/21 21:37:44.0649 9828	tdx             (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS	dx.sys
2011/05/21 21:37:44.0742 9828	TermDD          (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS	ermdd.sys
2011/05/21 21:37:44.0992 9828	Trufos          (b16d66a71de03285e14e9f165b59eda4) C:\Program Files\Common Files\BitDefender\BitDefender Threat Scanner	rufos.sys
2011/05/21 21:37:45.0507 9828	tssecsrv        (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS	ssecsrv.sys
2011/05/21 21:37:45.0732 9828	tunmp           (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS	unmp.sys
2011/05/21 21:37:45.0922 9828	tunnel          (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS	unnel.sys
2011/05/21 21:37:46.0142 9828	uagp35          (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
2011/05/21 21:37:46.0482 9828	udfs            (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
2011/05/21 21:37:46.0872 9828	uliagpkx        (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
2011/05/21 21:37:47.0142 9828	uliahci         (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
2011/05/21 21:37:47.0282 9828	UlSata          (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
2011/05/21 21:37:47.0362 9828	ulsata2         (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
2011/05/21 21:37:47.0562 9828	umbus           (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
2011/05/21 21:37:47.0884 9828	USBAAPL         (d4fb6ecc60a428564ba8768b0e23c0fc) C:\Windows\system32\Drivers\usbaapl.sys
2011/05/21 21:37:48.0040 9828	usbaudio        (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
2011/05/21 21:37:48.0165 9828	usbccgp         (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
2011/05/21 21:37:48.0399 9828	usbcir          (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
2011/05/21 21:37:48.0680 9828	usbehci         (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
2011/05/21 21:37:48.0793 9828	usbhub          (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
2011/05/21 21:37:48.0933 9828	usbohci         (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\DRIVERS\usbohci.sys
2011/05/21 21:37:49.0033 9828	usbprint        (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
2011/05/21 21:37:49.0233 9828	usbscan         (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
2011/05/21 21:37:49.0463 9828	USBSTOR         (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
2011/05/21 21:37:49.0623 9828	usbuhci         (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
2011/05/21 21:37:49.0873 9828	VComm           (51750b0539986186c6931fc40d171521) C:\Windows\system32\DRIVERS\VComm.sys
2011/05/21 21:37:49.0993 9828	VcommMgr        (6d9c891c0a761afed1f3609c2e56f2b9) C:\Windows\system32\Drivers\VcommMgr.sys
2011/05/21 21:37:50.0293 9828	vga             (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
2011/05/21 21:37:50.0393 9828	VgaSave         (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
2011/05/21 21:37:50.0463 9828	viaagp          (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
2011/05/21 21:37:50.0523 9828	ViaC7           (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
2011/05/21 21:37:50.0643 9828	viaide          (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys
2011/05/21 21:37:50.0833 9828	volmgr          (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
2011/05/21 21:37:50.0933 9828	volmgrx         (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
2011/05/21 21:37:51.0073 9828	volsnap         (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
2011/05/21 21:37:51.0203 9828	vsmraid         (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
2011/05/21 21:37:51.0373 9828	WacomPen        (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
2011/05/21 21:37:51.0583 9828	Wanarp          (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
2011/05/21 21:37:51.0653 9828	Wanarpv6        (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
2011/05/21 21:37:52.0013 9828	Wd              (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
2011/05/21 21:37:52.0283 9828	Wdf01000        (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
2011/05/21 21:37:52.0603 9828	WimFltr         (f9ad3a5e3fd7e0bdb18b8202b0fdd4e4) C:\Windows\system32\DRIVERS\wimfltr.sys
2011/05/21 21:37:52.0863 9828	winachsf        (5c7bdcf5864db00323fe2d90fa26a8a2) C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
2011/05/21 21:37:53.0273 9828	WmiAcpi         (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
2011/05/21 21:37:53.0523 9828	WpdUsb          (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
2011/05/21 21:37:53.0733 9828	ws2ifsl         (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
2011/05/21 21:37:54.0003 9828	WUDFRd          (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
2011/05/21 21:37:55.0324 9828	================================================================================
2011/05/21 21:37:55.0324 9828	Scan finished
2011/05/21 21:37:55.0324 9828	================================================================================
2011/05/21 21:39:58.0393 2352	Deinitialize success


-------


pas moyen de poster l'autre... 

j'ai une question (bete)  c'est normal que sur l'icone du disque C:\ il y ait le logo windows??? il n'y était pas avant il me semble...

Lyonnais92 · Answer

Re,

j'ai aussi l'icône de Windows sur la partition système.

Supprime c:
ls1.txt  et refais la manip pour le créer.

Giulia27 · Answer

non, rien à faire il se bloque dès l'ouverture, je ne comprends pas pourquoi.

Lyonnais92 · Answer

Re,

tu regardes dans Propriétés qui a des droits de lecture.

Giulia27 · Answer

bon, ça ne marche pas. J'ai regardé les droits de lecture, et tout est normal. J'ai meme réussi à l'ouvrir mais après ça il se bloque et pas moyen de copier et coller le contenu... je vais essayer une dernière fois avec cijoint mais je n'y compterais pas trop....

Lyonnais92 · Answer

Re,

il n'y a pas de raison que ça bloque comme ça.

Si tu fais un clic droit puis Modifier, il ne s'ouvre pas ?

Giulia 27 · Answer

bonsoir lyonnais,

meme en faisant modifier il se bloque... pfff

Lyonnais92 · Answer

Bonsoir,

supprime le fichier.

essaye comme ça :

    Ouvre le registre et navigue avec les + et les - jusqu'à la clé

    HKLM\System\CurrentControlSet\Control\Nls


    Clique successivement sur Fichier puis sur Exporter et choisis un nom (XXXXXX par exemple). Tu retiens le nom du répertoire (Mes documents par défaut).

    Ferme le registre et ouvre l'explorateur Windows.

    Clique droit sur le fichier et choisis Modifier.

    Le bloc-notes s'ouvre avec le contenu de la clé.

    Copie le dans ta réponse.

Giulia 27 · Answer

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Nls]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Nls\CodePage]
"ACP"="1252"
"OEMCP"="850"
"MACCP"="10000"
"OEMHAL"="vgaoem.fon"
"10008"="c_10008.nls"
"936"="c_936.nls"
"500"="c_500.nls"
"52936"="c_is2022.dll"
"54936"="c_g18030.dll"
"20936"="c_20936.nls"
"50227"="c_is2022.dll"
"10006"="c_10006.nls"
"1253"="c_1253.nls"
"737"="c_737.nls"
"869"="c_869.nls"
"20273"="c_20273.nls"
"28597"="C_28597.NLS"
"20423"="c_20423.nls"
"875"="c_875.nls"
"10081"="c_10081.nls"
"1254"="c_1254.nls"
"857"="c_857.nls"
"20905"="c_20905.nls"
"28593"="c_28593.nls"
"1026"="c_1026.nls"
"10007"="c_10007.nls"
"1251"="c_1251.nls"
"866"="c_866.nls"
"855"="c_855.nls"
"20880"="c_20880.nls"
"28595"="C_28595.NLS"
"20866"="c_20866.nls"
"21866"="c_21866.nls"
"21025"="c_21025.nls"
"57002"="c_iscii.dll"
"57003"="c_iscii.dll"
"57004"="c_iscii.dll"
"57005"="c_iscii.dll"
"57006"="c_iscii.dll"
"57007"="c_iscii.dll"
"57008"="c_iscii.dll"
"57009"="c_iscii.dll"
"57010"="c_iscii.dll"
"57011"="c_iscii.dll"
"10003"="c_10003.nls"
"949"="c_949.nls"
"1361"="c_1361.nls"
"20833"="c_20833.nls"
"20949"="c_20949.nls"
"50225"="c_is2022.dll"
"51949"="c_20949.nls"
"10005"="c_10005.nls"
"1255"="c_1255.nls"
"862"="c_862.nls"
"28598"="c_28598.nls"
"38598"="c_28598.nls"
"20424"="c_20424.nls"
"10029"="c_10029.nls"
"775"="c_775.nls"
"1257"="c_1257.nls"
"28594"="C_28594.NLS"
"28603"="c_28603.nls"
"10001"="c_10001.nls"
"932"="c_932.nls"
"20290"="c_20290.nls"
"20932"="c_20932.nls"
"50220"="c_is2022.dll"
"50221"="c_is2022.dll"
"50222"="c_is2022.dll"
"21027"="c_21027.nls"
"10000"="c_10000.nls"
"1258"="c_1258.nls"
"10004"="c_10004.nls"
"1256"="c_1256.nls"
"720"="c_720.nls"
"708"="c_708.nls"
"864"="c_864.nls"
"20420"="c_20420.nls"
"28596"="C_28596.NLS"
"10002"="c_10002.nls"
"950"="c_950.nls"
"20000"="c_20000.nls"
"20001"="c_20001.nls"
"20002"="c_20002.nls"
"20003"="c_20003.nls"
"20004"="c_20004.nls"
"20005"="c_20005.nls"
"20261"="c_20261.nls"
"50229"="c_is2022.dll"
"10010"="c_10010.nls"
"10017"="c_10017.nls"
"10082"="c_10082.nls"
"1250"="c_1250.nls"
"852"="c_852.nls"
"28592"="C_28592.NLS"
"10021"="c_10021.nls"
"874"="c_874.nls"
"20838"="c_20838.nls"
"437"="c_437.nls"
"850"="c_850.nls"
"858"="c_858.nls"
"1252"="c_1252.nls"
"37"="c_037.nls"
"20285"="c_20285.nls"
"28591"="C_28591.NLS"
"20127"="c_20127.nls"
"20269"="c_20269.nls"
"20105"="c_20105.nls"
"20106"="c_20106.nls"
"20107"="c_20107.nls"
"20108"="c_20108.nls"
"865"="c_865.nls"
"863"="c_863.nls"
"861"="c_861.nls"
"860"="c_860.nls"
"10079"="c_10079.nls"
"1047"="c_1047.nls"
"1140"="c_1140.nls"
"1141"="c_1141.nls"
"1142"="c_1142.nls"
"1143"="c_1143.nls"
"1144"="c_1144.nls"
"1145"="c_1145.nls"
"1146"="c_1146.nls"
"1147"="c_1147.nls"
"1148"="c_1148.nls"
"1149"="c_1149.nls"
"20277"="c_20277.nls"
"20278"="c_20278.nls"
"20280"="c_20280.nls"
"20284"="c_20284.nls"
"20297"="c_20297.nls"
"20871"="c_20871.nls"
"20924"="c_20924.nls"
"28599"="c_28599.nls"
"28605"="c_28605.nls"
"870"="c_870.nls"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Nls\CodePage\EUDCCodeRange]
"936"="AAA1-AFFE,F8A1-FEFE,A140-A7A0"
"949"="C9A1-C9FE,FEA1-FEFE"
"932"="F040-F9FC"
"950"="FA40-FEFE,8E40-A0FE,8140-8DFE,C6A1-C8FE"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Nls\CustomLocale]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Nls\IetfLanguage]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Nls\Language]
"0401"="l_intl.nls"
"0402"="l_intl.nls"
"0403"="l_intl.nls"
"0404"="l_intl.nls"
"0405"="l_intl.nls"
"0406"="l_intl.nls"
"0407"="l_intl.nls"
"0408"="l_intl.nls"
"0409"="l_intl.nls"
"040a"="l_intl.nls"
"040b"="l_intl.nls"
"040c"="l_intl.nls"
"040d"="l_intl.nls"
"040e"="l_intl.nls"
"040f"="l_intl.nls"
"0410"="l_intl.nls"
"0411"="l_intl.nls"
"0412"="l_intl.nls"
"0413"="l_intl.nls"
"0414"="l_intl.nls"
"0415"="l_intl.nls"
"0416"="l_intl.nls"
"0417"="l_intl.nls"
"0418"="l_intl.nls"
"0419"="l_intl.nls"
"041a"="l_intl.nls"
"041b"="l_intl.nls"
"041c"="l_intl.nls"
"041d"="l_intl.nls"
"041e"="l_intl.nls"
"041f"="l_intl.nls"
"0420"="l_intl.nls"
"0421"="l_intl.nls"
"0422"="l_intl.nls"
"0423"="l_intl.nls"
"0424"="l_intl.nls"
"0425"="l_intl.nls"
"0426"="l_intl.nls"
"0427"="l_intl.nls"
"0428"="l_intl.nls"
"0429"="l_intl.nls"
"042a"="l_intl.nls"
"042b"="l_intl.nls"
"042c"="l_intl.nls"
"042d"="l_intl.nls"
"042e"="l_intl.nls"
"042f"="l_intl.nls"
"0432"="l_intl.nls"
"0434"="l_intl.nls"
"0435"="l_intl.nls"
"0436"="l_intl.nls"
"0437"="l_intl.nls"
"0438"="l_intl.nls"
"0439"="l_intl.nls"
"043a"="l_intl.nls"
"043b"="l_intl.nls"
"043e"="l_intl.nls"
"043f"="l_intl.nls"
"0440"="l_intl.nls"
"0441"="l_intl.nls"
"0442"="l_intl.nls"
"0443"="l_intl.nls"
"0444"="l_intl.nls"
"0445"="l_intl.nls"
"0446"="l_intl.nls"
"0447"="l_intl.nls"
"0448"="l_intl.nls"
"0449"="l_intl.nls"
"044a"="l_intl.nls"
"044b"="l_intl.nls"
"044c"="l_intl.nls"
"044d"="l_intl.nls"
"044e"="l_intl.nls"
"044f"="l_intl.nls"
"0450"="l_intl.nls"
"0451"="l_intl.nls"
"0452"="l_intl.nls"
"0453"="l_intl.nls"
"0454"="l_intl.nls"
"0456"="l_intl.nls"
"0457"="l_intl.nls"
"045a"="l_intl.nls"
"045b"="l_intl.nls"
"045d"="l_intl.nls"
"045e"="l_intl.nls"
"0461"="l_intl.nls"
"0462"="l_intl.nls"
"0463"="l_intl.nls"
"0464"="l_intl.nls"
"0465"="l_intl.nls"
"0468"="l_intl.nls"
"046a"="l_intl.nls"
"046b"="l_intl.nls"
"046c"="l_intl.nls"
"046d"="l_intl.nls"
"046e"="l_intl.nls"
"046f"="l_intl.nls"
"0470"="l_intl.nls"
"0478"="l_intl.nls"
"047a"="l_intl.nls"
"047c"="l_intl.nls"
"047e"="l_intl.nls"
"0480"="l_intl.nls"
"0481"="l_intl.nls"
"0482"="l_intl.nls"
"0483"="l_intl.nls"
"0484"="l_intl.nls"
"0485"="l_intl.nls"
"0486"="l_intl.nls"
"0487"="l_intl.nls"
"0488"="l_intl.nls"
"048c"="l_intl.nls"
"0801"="l_intl.nls"
"0804"="l_intl.nls"
"0807"="l_intl.nls"
"0809"="l_intl.nls"
"080a"="l_intl.nls"
"080c"="l_intl.nls"
"0810"="l_intl.nls"
"0813"="l_intl.nls"
"0814"="l_intl.nls"
"0816"="l_intl.nls"
"081a"="l_intl.nls"
"081d"="l_intl.nls"
"082c"="l_intl.nls"
"082e"="l_intl.nls"
"083b"="l_intl.nls"
"083c"="l_intl.nls"
"083e"="l_intl.nls"
"0843"="l_intl.nls"
"0845"="l_intl.nls"
"0850"="l_intl.nls"
"085d"="l_intl.nls"
"085f"="l_intl.nls"
"086b"="l_intl.nls"
"0c01"="l_intl.nls"
"0c04"="l_intl.nls"
"0c07"="l_intl.nls"
"0c09"="l_intl.nls"
"0c0a"="l_intl.nls"
"0c0c"="l_intl.nls"
"0c1a"="l_intl.nls"
"0c3b"="l_intl.nls"
"0c6b"="l_intl.nls"
"1001"="l_intl.nls"
"1004"="l_intl.nls"
"1007"="l_intl.nls"
"1009"="l_intl.nls"
"100a"="l_intl.nls"
"100c"="l_intl.nls"
"101a"="l_intl.nls"
"103b"="l_intl.nls"
"1401"="l_intl.nls"
"1404"="l_intl.nls"
"1407"="l_intl.nls"
"1409"="l_intl.nls"
"140a"="l_intl.nls"
"140c"="l_intl.nls"
"141a"="l_intl.nls"
"143b"="l_intl.nls"
"1801"="l_intl.nls"
"1809"="l_intl.nls"
"180a"="l_intl.nls"
"180c"="l_intl.nls"
"181a"="l_intl.nls"
"183b"="l_intl.nls"
"1c01"="l_intl.nls"
"1c09"="l_intl.nls"
"1c0a"="l_intl.nls"
"1c1a"="l_intl.nls"
"1c3b"="l_intl.nls"
"2001"="l_intl.nls"
"2009"="l_intl.nls"
"200a"="l_intl.nls"
"201a"="l_intl.nls"
"203b"="l_intl.nls"
"2401"="l_intl.nls"
"2409"="l_intl.nls"
"240a"="l_intl.nls"
"243b"="l_intl.nls"
"2801"="l_intl.nls"
"2809"="l_intl.nls"
"280a"="l_intl.nls"
"2c01"="l_intl.nls"
"2c09"="l_intl.nls"
"2c0a"="l_intl.nls"
"3001"="l_intl.nls"
"3009"="l_intl.nls"
"300a"="l_intl.nls"
"3401"="l_intl.nls"
"3409"="l_intl.nls"
"340a"="l_intl.nls"
"3801"="l_intl.nls"
"380a"="l_intl.nls"
"3c01"="l_intl.nls"
"3c0a"="l_intl.nls"
"4001"="l_intl.nls"
"4009"="l_intl.nls"
"400a"="l_intl.nls"
"4409"="l_intl.nls"
"440a"="l_intl.nls"
"4809"="l_intl.nls"
"480a"="l_intl.nls"
"4c0a"="l_intl.nls"
"500a"="l_intl.nls"
"540a"="l_intl.nls"
"Default"="0410"
"InstallLanguage"="0410"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Nls\Language Groups]
"1"="1"
"2"="1"
"3"="1"
"4"="1"
"5"="1"
"6"="1"
"7"="1"
"8"="1"
"9"="1"
"a"="1"
"b"="1"
"c"="1"
"d"="1"
"e"="1"
"f"="1"
"10"="1"
"11"="1"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Nls\Locale]
"00000401"="d"
"00000402"="5"
"00000403"="1"
"00000404"="9"
"00000405"="2"
"00000406"="1"
"00000407"="1"
"00000408"="4"
"00000409"="1"
"0000040a"="1"
"0000040b"="1"
"0000040c"="1"
"0000040d"="c"
"0000040e"="2"
"0000040f"="1"
"00000410"="1"
"00000411"="7"
"00000412"="8"
"00000413"="1"
"00000414"="1"
"00000415"="2"
"00000416"="1"
"00000417"="1"
"00000418"="2"
"00000419"="5"
"0000041a"="2"
"0000041b"="2"
"0000041c"="2"
"0000041d"="1"
"0000041e"="b"
"0000041f"="6"
"00000420"="d"
"00000421"="1"
"00000422"="5"
"00000423"="5"
"00000424"="2"
"00000425"="3"
"00000426"="3"
"00000427"="3"
"00000428"="5"
"00000429"="d"
"0000042a"="e"
"0000042b"="11"
"0000042c"="2"
"0000042d"="1"
"0000042e"="1"
"0000042f"="5"
"00000432"="1"
"00000434"="1"
"00000435"="1"
"00000436"="1"
"00000437"="10"
"00000438"="1"
"00000439"="f"
"0000043a"="1"
"0000043b"="1"
"0000043e"="1"
"0000043f"="5"
"00000440"="5"
"00000441"="1"
"00000442"="2"
"00000443"="2"
"00000444"="5"
"00000445"="f"
"00000446"="f"
"00000447"="f"
"00000448"="f"
"00000449"="f"
"0000044a"="f"
"0000044b"="f"
"0000044c"="f"
"0000044d"="f"
"0000044e"="f"
"0000044f"="f"
"00000450"="5"
"00000451"="f"
"00000452"="1"
"00000453"="f"
"00000454"="f"
"00000456"="1"
"00000457"="f"
"0000045a"="d"
"0000045b"="f"
"0000045d"="1"
"0000045e"="1"
"00000461"="f"
"00000462"="1"
"00000463"="d"
"00000464"="1"
"00000465"="d"
"00000468"="1"
"0000046a"="1"
"0000046b"="1"
"0000046c"="1"
"0000046d"="5"
"0000046e"="1"
"0000046f"="1"
"00000470"="1"
"00000478"="9"
"0000047a"="1"
"0000047c"="1"
"0000047e"="1"
"00000480"="d"
"00000481"="1"
"00000482"="1"
"00000483"="1"
"00000484"="1"
"00000485"="5"
"00000486"="1"
"00000487"="1"
"00000488"="1"
"0000048c"="d"
"00000801"="d"
"00000804"="a"
"00000807"="1"
"00000809"="1"
"0000080a"="1"
"0000080c"="1"
"00000810"="1"
"00000813"="1"
"00000814"="1"
"00000816"="1"
"0000081a"="2"
"0000081d"="1"
"0000082c"="5"
"0000082e"="1"
"0000083b"="1"
"0000083c"="1"
"0000083e"="1"
"00000843"="5"
"00000845"="f"
"00000850"="f"
"0000085d"="1"
"0000085f"="1"
"0000086b"="1"
"00000c01"="d"
"00000c04"="9"
"00000c07"="1"
"00000c09"="1"
"00000c0a"="1"
"00000c0c"="1"
"00000c1a"="5"
"00000c3b"="1"
"00000c6b"="1"
"00001001"="d"
"00001004"="a"
"00001007"="1"
"00001009"="1"
"0000100a"="1"
"0000100c"="1"
"0000101a"="2"
"0000103b"="1"
"00001401"="d"
"00001404"="9"
"00001407"="1"
"00001409"="1"
"0000140a"="1"
"0000140c"="1"
"0000141a"="2"
"0000143b"="1"
"00001801"="d"
"00001809"="1"
"0000180a"="1"
"0000180c"="1"
"0000181a"="2"
"0000183b"="1"
"00001c01"="d"
"00001c09"="1"
"00001c0a"="1"
"00001c1a"="5"
"00001c3b"="1"
"00002001"="d"
"00002009"="1"
"0000200a"="1"
"0000201a"="5"
"0000203b"="1"
"00002401"="d"
"00002409"="1"
"0000240a"="1"
"0000243b"="1"
"00002801"="d"
"00002809"="1"
"0000280a"="1"
"00002c01"="d"
"00002c09"="1"
"00002c0a"="1"
"00003001"="d"
"00003009"="1"
"0000300a"="1"
"00003401"="d"
"00003409"="1"
"0000340a"="1"
"00003801"="d"
"0000380a"="1"
"00003c01"="d"
"00003c0a"="1"
"00004001"="d"
"00004009"="1"
"0000400a"="1"
"00004409"="1"
"0000440a"="1"
"00004809"="1"
"0000480a"="1"
"00004c0a"="1"
"0000500a"="1"
"0000540a"="1"
@="00000410"
"(Default)"="00000410"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Nls\Locale\Alternate Sorts]
"0000040a"="1"
"0001007f"="1"
"00010407"="1"
"0001040e"="2"
"00010437"="10"
"00020804"="a"
"00021004"="a"
"00021404"="9"
"00030404"="9"
"00040411"="7"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Nls\Normalization]
"1"="normnfc.nls"
"2"="normnfd.nls"
"5"="normnfkc.nls"
"6"="normnfkd.nls"
"d"="normidna.nls"

Lyonnais92 · Answer

Bonjour, 

a priori, la langue d'installation est bien l'italien. 

Je ne vois pas ce qui pourrait commander des instruction en anglais. 

Je suis  absent jusqu'à dimanche.

Je reprendrai le dossier à ce moment (si rien de neuf ne s'est produit).
@+ 
Science sans conscience n'est que ruine de l'âme. Rabelais

Lyonnais92 · Answer

Re,

déjà regardé (de mémoire).

Giulia27 · Answer

ok, merci Lyonnais. à dimanche alors :-)

Lyonnais92 · Answer

Bonjour,

je suis revenu.

Je n'ai pas donné signe de vie car je n'ai aucune idée de l'origine de ce phénomène, ni de la manière de le résoudre.

Il est toujours présent.

Lyonnais92 · Answer

Bonjour,

Gen, j'avais vu, et puis oublié .....

Giulia,

relance ZHPDiag, clique sur le tournevis puis sur Aucun.

Coche la case devant Alternate data stream files (O62)

Clique sur la loupe pour lancer l'analyse.

Poste le rapport dans ta réponse (pas besoin de lien Cijoint).

Disparition des icones du bureau

120 réponses

Votre réponse

Discussions similaires

Newsletters