virus MS Removal Tool Fermé

Question

Bonjour, 



Configuration: Windows Vista / Firefox 3.5.19

J'ai un virus qui me bloque tout mon PC et je ne sais plus quoi faire, pouvez vous m'aider ?

merci

Cecilia

jlpjlp · Accepted Answer

bonjour

télécharge roguekiller, choisi l'option 2 etr colle nous le rapport


ensuite télécharge malwarebyte antimalware , mets le à jour et colle un rapport d'analyse rapide avec

puis

Télécharge OTL de OLDTimer ici :

http://www.geekstogo.com/forum/files/file/398-otl-oldtimers-list-it/

et enregistre le sur ton Bureau.

Double clic sur OTL.exe pour le lancer.

Coche les 2 cases Lop et Purity

Coche la case devant "scan all users"

Clic sur Run Scan.

A la fin du scan, le Bloc-Notes va s'ouvrir avec le rapport (OTL.txt).

Ce fichier est sur ton Bureau (en général C:\Documents and settings\le_nom_de_ta_session\OTL.txt)


Pour me le transmettre clique sur ce lien :

http://www.cijoint.fr/

Clique sur Parcourir et cherche le fichier ci-dessus.

Clique sur Ouvrir.

Clique sur "Cliquez ici pour déposer le fichier".

Un lien de cette forme :

http://www.cijoint.fr/cjlink.php?file=cj200905/cijSKAP5fU.txt

est ajouté dans la page.

Copie ce lien dans ta réponse.

kosuke.K · Answer

Tu trouvera ton Bonheur ici !
Execute les étapes puis tu verra, tu me ferra signe !!! ^^
Bonne chance 

https://forums.commentcamarche.net/forum/affich-21841978-virus

Cecilia660 · Answer

Bonjour Kosuke.k,


le virus le bloque malheureusement...

je ne sais pas quoi faire.

Cecilia660 · Answer

lorsque je fais exécuter, rien ne se passe.

Cecilia660 · Answer

bonjou jlpjlp

voici le rapport de roguekiller :

RogueKiller V5.2.5 [24/06/2011] par Tigzy
contact sur http://www.sur-la-toile.com
mail: tigzyRK<at>gmail<dot>com
Remontees: http://www.sur-la-toile.com/discussion-193725-1-BRogueKillerD-Remontees.html

Systeme d'exploitation: Windows Vista (6.0.6002 Service Pack 2) 32 bits version
Demarrage : Mode normal
Utilisateur: guillaume [Droits d'admin]
Mode: Suppression -- Date : 26/06/2011 23:09:37

Processus malicieux: 0

Entrees de registre: 3
[HJ] HKLM\[...]\System : EnableLUA (0) -> REPLACED (1)
[HJ] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

Fichier HOSTS:
127.0.0.1 localhost
::1 localhost

Termine : << RKreport[1].txt >>
RKreport[1].txt

que dois-je faire avec ?

merci beaucoup pour votre aide en tout cas !

Cecilia660 · Answer

je lance Malwarebytes.

Cecilia660 · Answer

voici le rapport :

Malwarebytes' Anti-Malware 1.51.0.1200
www.malwarebytes.org

Version de la base de données: 6955

Windows 6.0.6002 Service Pack 2
Internet Explorer 8.0.6001.19088

26/06/2011 23:28:49
mbam-log-2011-06-26 (23-28-49).txt

Type d'examen: Examen rapide
Elément(s) analysé(s): 151122
Temps écoulé: 7 minute(s), 13 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 9

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
c:\Users\guillaume\AppData\Local\Temp\0.016660425519708366.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\Users\guillaume\AppData\Local\Temp\0.36726139954784676.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\Users\guillaume\local settings	emporary internet files\Content.IE5\V83TAZ2K\windows-update-sp2-kb62137-setup[1].exe (Rogue.SecurityShield) -> Quarantined and deleted successfully.
c:\Users\guillaume\AppData\Roaming\Adobe\shed	hr1.chm (Malware.Trace) -> Quarantined and deleted successfully.
c:\Users\guillaume\AppData\Roaming\Adobe\plugs\mmc11474918.txt (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
c:\Users\guillaume\AppData\Roaming\Adobe\plugs\mmc11519971.txt (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
c:\Users\guillaume\AppData\Roaming\Adobe\plugs\mmc225.exe (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
c:\Users\guillaume\AppData\Roaming\Adobe\plugs\mmc34.exe (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
c:\Users\guillaume\AppData\Roaming\Adobe\plugs\mmc8.exe (Trojan.Agent.Gen) -> Quarantined and deleted successfully.

Cecilia660 · Answer

je lance OLT

Cecilia660 · Answer

et voici le lien :

http://www.cijoint.fr/cjlink.php?file=cj201106/cijsXBN7Tc.txt

cecilia660 · Answer

Bonjour jlpjlp,

faut-il que je fasse autre chose ?

merci beaucoup

Cecilia

kosuke.K · Answer

Normalement le problème est résolue après ces étapes effectué  !

jlpjlp · Answer

ok

branche tous tes periphériques (clé usb, disque dur externe)

puis colle nous un rapport avec l'option de suppression/nettoyage d'usbfix

http://www.teamxscript.org/usbfixTelechargement.html

______________
puis

Mettre a jour java:
https://javara.fr.malavida.com/

Télécharge JavaRa.zip de Paul 'Prm753' McLain et Fred de Vries.
Décompresse le fichier sur ton bureau (clique droit > Extraire tout.)
Double-clique sur le répertoire JavaRa obtenu.
Puis double-clique sur le fichier JavaRa.exe (le .exe peut ne pas s'afficher)
Clique sur Search For Updates.
Sélectionne Update Using jucheck.exe puis clique sur Search.
Autorise le processus à se connecter s'il te le demande, clique sur Install et suis les instructions d'installation. Cela prendra quelques minutes.
Quand l'installation est terminée, revient à l'écran de JavaRa et clique sur Remove Older Versions.
Clique sur Oui pour confirmer. L'outil va travailler, clique ensuite sur Ok, puis une deuxième fois sur Ok.
Un rapport va s'ouvrir, copie-colle le dans ta prochaine réponse.
Note : le rapport se trouve aussi à la racine de la partition système, en général C:\ sous le nom JavaRa.log
(c:\JavaRa.log)
Ferme l'application.

si cela ne fonctionne pas

https://www.java.com/fr/download/windows_manual.jsp?locale=fr&host=www.java.com:80

tu peux désinstaller les vieilles versions.


________________


comment va le pc?

cecilia660 · Answer

Bonjour à vous deux,

je vous écrit depuis mon PC professionel car hier soir je n'ai pas pu allumer mon PC.

Je m'explique, en l'allumant j'avais le choix de l'ouvrir en mode normal ou sans échec (car il était apparement mal éteint). Après avoir sélectionné soit l'un soit l'autre, il démarre normalement soit que le bureau ne s'affiche jamais, j'ai un écran noir à la place, je ne vois que la souris !

Du coup j'ai peur d'avoir fait qeulque chose de mal qui ait abîmé mon ordinateur.

Savez vous si cela peut se résoudre ?

merci, Cecilia.

jlpjlp · Answer

tu as fais quoi entre temps? 

as tu les DVD de restauration du pc? 

tente de réparer windows ou de restaurer windows avant le problème

comme ceci: 

https://www.commentcamarche.net/informatique/windows/259-que-faire-quand-windows-ne-demarre-plus/

cecilia660 · Answer

Je n'ai rien fait, je l'ai éteint après avoir posté mon dernier rapport et c'est tout !


Est ce que cela peut être lié a "MS Removal tool" ?

jlpjlp · Answer

Est ce que cela peut être lié a "MS Removal tool" ?


oui


peux tu aller en mode sans echec sinon?

cecilia660 · Answer

Je suis au travail mais dès que je rentre je fais le test.

Hier soir, cela me faisait la même chose en mode sans échec !
Par contre je n'ai pas essayer qqch qui était "mode sans échec ... réseau".

sinon lors d'un problème précédent, une personne sur le forum m'avait dit de mettre sur un CD ou une clé USB Bitefender et de faire en sorte, dans le BIOS, que mon PC lance le CD avant le disque dur. Est ce que cela pourrait être une solution ?

Merci du temps que tu prends pour me répondre en tout ( je me répète mais n'étant pas experte en informatique, c'est le genre de souci devant lequelle on se sent vite démuni.)

jlpjlp · Answer

mettre bitdefender sur un cd peut permettre de supprimer des infections

cela est proposé  dans le chapitre 5 du lien dernier lien donné au dessus

jlpjlp · Answer

ok merci

donc cecilia660 : en priorité dans les option de démarrage choisi de démarrer avec la dernière bonne configuration connue

cecilia660 · Answer

Re,  je viens de le faire,

et après beaucoup de temps, j'ai de nouveau mon bureau en visu !!!!

que dois faire pour tout nettoyer ?

jlpjlp · Answer

ok passe usbfix et javara comme indiqué au dessus puis remets un rapport OTL tout neuf et explique tes problemes

guil660 · Answer

voici le rapport (j'ai du prendre le pseudo de mon frere je ne pouvais plus me connecter)

############################## | UsbFix 7.048 | [Suppression]

Utilisateur: guillaume (Administrateur) # PC-DE-GUILLAUME [Hewlett-Packard HP Pavilion dv6500 Notebook PC]
Mis à jour le 11/06/2011 par TeamXscript
Lancé à 21:04:07 | 28/06/2011
Site Web: http://www.teamxscript.org
Submit your sample: http://www.teamxscript.org/Upload.php
Contact: TeamXscript.ElDesaparecido@gmail.com

CPU: AMD Athlon(tm) 64 X2 Dual-Core Processor TK-53
CPU 2: AMD Athlon(tm) 64 X2 Dual-Core Processor TK-53
Microsoft® Windows Vista(TM) Édition Familiale Premium  (6.0.6002 32-Bit) # Service Pack 2
Internet Explorer 8.0.6001.19088

Pare-feu Windows: Activé
Antivirus: avast! antivirus 4.8.1229 [VPS 110628-0] 4.8.1229 [Enabled | Updated]
RAM -> 958 Mo 
C:\ (%systemdrive%) -> Disque fixe # 141 Go (46 Go libre(s) - 33%) [] # NTFS
D:\ -> Disque fixe # 8 Go (2 Go libre(s) - 29%) [HP_RECOVERY] # NTFS
E:\ -> CD-ROM
G:\ -> CD-ROM

################## | Éléments infectieux |

Supprimé! C:\$RECYCLE.BIN\S-1-5-21-1246232799-586791644-2831113298-500
Supprimé! C:\$RECYCLE.BIN\S-1-5-21-887791384-3057113182-1652213120-1000
Supprimé! C:\$RECYCLE.BIN\S-1-5-21-887791384-3057113182-1652213120-500
Supprimé! D:\$RECYCLE.BIN\S-1-5-21-887791384-3057113182-1652213120-1000

################## | Registre |


################## | Mountpoints2 |

Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{86839dfd-52a4-11de-85fe-001a738ce165}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{c8415afc-6a86-11dc-bcf7-001a738ce165}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{d1b43790-9975-11df-85bb-001b24857756}

################## | Listing |

[28/06/2011 - 21:07:53 | SHD ] 	C:\$RECYCLE.BIN
[21/11/2008 - 18:44:16 | D ] 	C:\430cf5ed10d4c3d5af0bac90
[11/06/2007 - 19:02:19 | N | 74] 	C:\autoexec.bat
[06/04/2010 - 22:46:20 | D ] 	C:\boot
[11/04/2009 - 08:36:36 | RASH | 333257] 	C:\bootmgr
[18/09/2006 - 23:43:37 | N | 10] 	C:\config.sys
[18/09/2007 - 14:52:30 | SHD ] 	C:\Documents and Settings
[20/05/2008 - 13:54:24 | D ] 	C:\e7692cdd47eee0e89f201f0044a62ec2
[26/06/2011 - 23:07:18 | N | 1228854] 	C:\fsqwr.bmp
[28/06/2011 - 19:50:34 | ASH | 1005387776] 	C:\hiberfil.sys
[11/06/2007 - 19:26:33 | D ] 	C:\HP
[05/10/2007 - 19:00:42 | N | 0] 	C:\IO.SYS
[30/03/2007 - 13:06:52 | D ] 	C:\MCPP
[05/10/2007 - 19:00:42 | N | 0] 	C:\MSDOS.SYS
[11/06/2007 - 18:35:03 | RHD ] 	C:\MSOCache
[28/06/2011 - 19:50:32 | ASH | 1319292928] 	C:\pagefile.sys
[19/05/2008 - 00:32:48 | D ] 	C:\PerfLogs
[26/06/2011 - 23:19:00 | D ] 	C:\Program Files
[26/06/2011 - 21:58:19 | N | 0] 	C:\Program1
[26/06/2011 - 23:19:05 | HD ] 	C:\ProgramData
[07/05/2010 - 19:58:09 | N | 232] 	C:\sqmdata00.sqm
[07/05/2010 - 19:59:30 | N | 232] 	C:\sqmdata01.sqm
[08/05/2010 - 09:40:04 | N | 232] 	C:\sqmdata02.sqm
[08/05/2010 - 16:19:33 | N | 232] 	C:\sqmdata03.sqm
[09/05/2010 - 08:34:51 | N | 232] 	C:\sqmdata04.sqm
[09/05/2010 - 20:43:06 | N | 232] 	C:\sqmdata05.sqm
[10/05/2010 - 15:30:18 | N | 232] 	C:\sqmdata06.sqm
[11/05/2010 - 15:04:47 | N | 232] 	C:\sqmdata07.sqm
[11/05/2010 - 16:08:50 | N | 232] 	C:\sqmdata08.sqm
[13/05/2010 - 15:46:24 | N | 232] 	C:\sqmdata09.sqm
[14/05/2010 - 12:08:28 | N | 232] 	C:\sqmdata10.sqm
[15/05/2010 - 09:25:35 | N | 232] 	C:\sqmdata11.sqm
[15/05/2010 - 14:42:57 | N | 232] 	C:\sqmdata12.sqm
[04/05/2010 - 20:05:31 | N | 232] 	C:\sqmdata13.sqm
[05/05/2010 - 15:35:22 | N | 232] 	C:\sqmdata14.sqm
[06/05/2010 - 07:16:35 | N | 232] 	C:\sqmdata15.sqm
[06/05/2010 - 10:05:09 | N | 232] 	C:\sqmdata16.sqm
[06/05/2010 - 14:52:56 | N | 232] 	C:\sqmdata17.sqm
[06/05/2010 - 16:52:08 | N | 232] 	C:\sqmdata18.sqm
[07/05/2010 - 11:11:22 | N | 232] 	C:\sqmdata19.sqm
[07/05/2010 - 19:58:09 | N | 244] 	C:\sqmnoopt00.sqm
[07/05/2010 - 19:59:30 | N | 244] 	C:\sqmnoopt01.sqm
[08/05/2010 - 09:40:04 | N | 244] 	C:\sqmnoopt02.sqm
[08/05/2010 - 16:19:33 | N | 244] 	C:\sqmnoopt03.sqm
[09/05/2010 - 08:34:50 | N | 244] 	C:\sqmnoopt04.sqm
[09/05/2010 - 20:43:06 | N | 244] 	C:\sqmnoopt05.sqm
[10/05/2010 - 15:30:18 | N | 244] 	C:\sqmnoopt06.sqm
[11/05/2010 - 15:04:47 | N | 244] 	C:\sqmnoopt07.sqm
[11/05/2010 - 16:08:50 | N | 244] 	C:\sqmnoopt08.sqm
[13/05/2010 - 15:46:24 | N | 244] 	C:\sqmnoopt09.sqm
[14/05/2010 - 12:08:28 | N | 244] 	C:\sqmnoopt10.sqm
[15/05/2010 - 09:25:35 | N | 244] 	C:\sqmnoopt11.sqm
[15/05/2010 - 14:42:57 | N | 244] 	C:\sqmnoopt12.sqm
[04/05/2010 - 20:05:31 | N | 244] 	C:\sqmnoopt13.sqm
[05/05/2010 - 15:35:22 | N | 244] 	C:\sqmnoopt14.sqm
[06/05/2010 - 07:16:35 | N | 244] 	C:\sqmnoopt15.sqm
[06/05/2010 - 10:05:09 | N | 244] 	C:\sqmnoopt16.sqm
[06/05/2010 - 14:52:56 | N | 244] 	C:\sqmnoopt17.sqm
[06/05/2010 - 16:52:08 | N | 244] 	C:\sqmnoopt18.sqm
[07/05/2010 - 11:11:22 | N | 244] 	C:\sqmnoopt19.sqm
[17/05/2009 - 17:33:03 | D ] 	C:\SwSetup
[26/06/2011 - 19:25:43 | SHD ] 	C:\System Volume Information
[17/05/2009 - 17:29:50 | D ] 	C:\System.sav
[27/05/2011 - 22:39:49 | N | 734] 	C:\updatedatfix.log
[28/06/2011 - 21:07:53 | D ] 	C:\UsbFix
[28/06/2011 - 21:04:08 | A | 5017] 	C:\UsbFix.txt
[20/05/2008 - 13:54:26 | D ] 	C:\Users
[27/06/2011 - 19:46:13 | D ] 	C:\Windows
[28/06/2011 - 21:07:53 | SHD ] 	D:\$RECYCLE.BIN
[11/09/2005 - 17:18:54 | N | 340] 	D:\AUTOMODE
[18/09/2007 - 15:00:39 | N | 13] 	D:\BLOCK.RIN
[11/08/2007 - 17:51:35 | D ] 	D:\boot
[04/10/2006 - 01:02:44 | SH | 438328] 	D:\bootmgr
[03/11/2006 - 21:43:28 | SH | 117] 	D:\Desktop.ini
[10/09/2002 - 18:14:28 | N | 8134] 	D:\Folder.htt
[18/09/2007 - 15:49:43 | D ] 	D:\HP
[18/09/2007 - 18:42:01 | N | 22] 	D:\HPCD.sys
[18/09/2007 - 18:28:52 | N | 1036] 	D:\MASTER.LOG
[18/09/2007 - 18:42:02 | D ] 	D:\preload
[03/11/2005 - 17:19:52 | N | 181736] 	D:\protect.ed
[18/09/2007 - 15:49:47 | N | 26] 	D:\RCBoot.sys
[11/08/2007 - 17:51:35 | RD ] 	D:\RECOVERY
[11/08/2007 - 17:51:35 | D ] 	D:\SOURCES
[11/08/2007 - 17:51:35 | SHD ] 	D:\System Volume Information
[11/08/2007 - 17:51:36 | D ] 	D:\Tools
[18/09/2007 - 15:43:50 | N | 14] 	D:\USER
[11/08/2007 - 17:51:35 | D ] 	D:\WINDOWS

################## | Vaccin |

C:\Autorun.inf -> Vaccin créé par UsbFix (TeamXscript)
D:\Autorun.inf -> Vaccin créé par UsbFix (TeamXscript)

################## | Upload |

Veuillez envoyer le fichier: C:\UsbFix_Upload_Me_PC-DE-GUILLAUME.zip
http://www.teamxscript.org/Upload.php
Merci de votre contribution.

################## | E.O.F |

guil660 · Answer

voici le rapport java

JavaRa 1.16 Removal Log.

Report follows after line.

------------------------------------

The JavaRa removal process was started on Tue Jun 28 21:40:58 2011

Found and removed: C:\Program Files\Java\jre1.6.0

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0001-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0002-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0003-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0004-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0005-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0006-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0007-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0008-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0009-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0010-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0011-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0012-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0013-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0014-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0015-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0016-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0017-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0018-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0019-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0020-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0021-ABCDEFFDCBA}. The error returned was 124.

There was an error removing \Mozilla Firefox\extensions\{CAFEEFAC-0016-0022-ABCDEFFDCBA}. The error returned was 124.

Found and removed: JavaPlugin.FamilyVersionSupport

Found and removed: Installer\Products\8A0F842331866D117AB7000B0D610007

Found and removed: CLSID\{CAFEEFAC-0013-0000-0003-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0000-0004-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0000-0005-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0000-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0022-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0022-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0023-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0023-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0024-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0024-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0025-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0025-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0026-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0026-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0027-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0027-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0028-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0028-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0029-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0029-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0030-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0013-0001-0030-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0020-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0020-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0021-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0021-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0022-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0022-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0023-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0023-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0024-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0024-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0025-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0025-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0026-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0026-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0027-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0027-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0028-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0028-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0029-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0029-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0030-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0014-0002-0030-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0014-0002-FFFF-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0023-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0024-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0025-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0026-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0027-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0028-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0029-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0015-0000-0030-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBC}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBB}

Found and removed: CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBC}

Found and removed: JavaScript

Found and removed: JavaScript Author

Found and removed: JavaScript1.1

Found and removed: JavaScript1.1 Author

Found and removed: JavaScript1.2

Found and removed: JavaScript1.2 Author

Found and removed: Software\Classes\CLSID\{E19F9331-3110-11D4-991C-005004D3B3DB}

Found and removed: Software\Classes\JavaPlugin.160

Found and removed: Software\Classes\JavaPlugin.160_07

Found and removed: Software\JavaSoft\Java Update

Found and removed: Software\JavaSoft\Java Runtime Environment\1.6.0_07

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0000-0003-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0000-0004-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0000-0005-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0000-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0022-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0022-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0023-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0023-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0024-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0024-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0025-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0025-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0017-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0018-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0019-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0015-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0016-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0017-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0018-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0019-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0020-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0021-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0022-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBC}

Found and removed: SOFTWARE\Classes\JavaPlugin

Found and removed: SOFTWARE\Classes\JavaPlugin.160

Found and removed: SOFTWARE\Classes\JavaPlugin.160_07

Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.6.0

Found and removed: SOFTWARE\JavaSoft\Java Plug-in\1.6.0_07

Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.6

Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.6.0

Found and removed: SOFTWARE\JavaSoft\Java Runtime Environment\1.6.0_07

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_02

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_03

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_04

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.2

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.2.0_01

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.6.0

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.6.0_07

Found and removed: SOFTWARE\Microsoft\Active Setup\Installed Components\{08B0E5C0-4FCB-11CF-AAA5-00401C608500}

Found and removed: SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\C:\Program Files\Java\jre1.6.0\bin\

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\C:\Program Files\Java\jre1.6.0_07\

------------------------------------

Finished reporting.

guil660 · Answer

pour savoir comment va le PC, faut il l'éteindre pour voir s'il peut redémarrer en mode classique ?

cecilia660 · Answer

bonne nouvelle !!

j'ai éteint et redémarré le PC et tout s'est bien déroulé !!

Y-a-t-il des choses que je doivent supprimer qui polluent l'ordinateur ?

jlpjlp · Answer

c'est quoi ce fichier? 

 C:\fsqwr.bmp 


remets un rapport OTL tout neuf et explique tes problèmes actuels

guil660 · Answer

bonjour jlpjlp,

voici le rapport :

OTL logfile created on: 29/06/2011 20:39:17 - Run 2
OTL by OldTimer - Version 3.2.24.1     Folder = C:\Users\guillaume\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19088)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy
 
958,18 Mb Total Physical Memory | 270,24 Mb Available Physical Memory | 28,20% Memory free
2,13 Gb Paging File | 1,22 Gb Available in Paging File | 57,14% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 141,49 Gb Total Space | 48,64 Gb Free Space | 34,37% Space Free | Partition Type: NTFS
Drive D: | 7,56 Gb Total Space | 2,17 Gb Free Space | 28,74% Space Free | Partition Type: NTFS
 
Computer Name: PC-DE-GUILLAUME | User Name: guillaume | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========/color
 
PRC - [2011/06/26 23:35:15 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Users\guillaume\Desktop\OTL.exe
PRC - [2011/06/09 09:05:05 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009/04/11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008/07/23 17:25:45 | 000,348,344 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
PRC - [2008/07/19 17:38:34 | 000,078,008 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe
PRC - [2008/07/19 17:38:28 | 000,147,640 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe
PRC - [2008/07/19 17:38:04 | 000,250,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
PRC - [2008/07/19 17:25:06 | 000,016,056 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PRC - [2008/05/12 12:38:28 | 000,611,664 | ---- | M] (Lavasoft) -- C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
PRC - [2007/05/28 18:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) -- C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe
PRC - [2007/04/23 18:11:44 | 000,106,593 | ---- | M] () -- C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe
PRC - [2007/04/23 18:11:42 | 000,262,243 | ---- | M] () -- C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe
 
 
[color=#E56717]========== Modules (SafeList) ==========/color
 
MOD - [2011/06/26 23:35:15 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Users\guillaume\Desktop\OTL.exe
MOD - [2010/08/31 17:43:52 | 001,686,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========/color
 
SRV - File not found [Auto | Running] -- Reg Error: Key error. -- (TrkWks)
SRV - File not found [Unknown | Running] -- Reg Error: Key error. -- (RpcSs) Appel de procédure distante (RPC)
SRV - File not found [Unknown | Running] -- Reg Error: Key error. -- (DcomLaunch)
SRV - File not found [Auto | Running] -- Reg Error: Key error. -- (BITS)
SRV - [2008/07/23 17:25:45 | 000,348,344 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner)
SRV - [2008/07/19 17:38:28 | 000,147,640 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus)
SRV - [2008/07/19 17:38:04 | 000,250,040 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner)
SRV - [2008/07/19 17:25:06 | 000,016,056 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv)
SRV - [2008/05/12 12:38:28 | 000,611,664 | ---- | M] (Lavasoft) [Auto | Running] -- C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe -- (aawservice)
SRV - [2008/01/19 09:38:24 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007/05/28 18:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) [Auto | Running] -- C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2007/04/23 18:11:44 | 000,106,593 | ---- | M] () [Auto | Running] -- C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe -- (CLSched) CyberLink Task Scheduler (CTS)
SRV - [2007/04/23 18:11:42 | 000,262,243 | ---- | M] () [Auto | Running] -- C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe -- (CLCapSvc) CyberLink Background Capture Service (CBCS)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========/color
 
DRV - [2011/05/29 09:11:30 | 000,039,984 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - [2009/06/06 16:14:12 | 000,721,904 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\sptd.sys -- (sptd)
DRV - [2008/12/04 03:42:00 | 007,606,688 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers
vlddmkm.sys -- (nvlddmkm)
DRV - [2008/07/19 17:37:42 | 000,020,560 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2008/07/19 17:36:03 | 000,051,280 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2008/07/19 17:35:18 | 000,078,416 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2008/07/19 17:33:42 | 000,023,152 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2008/07/19 17:32:36 | 000,042,912 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2008/03/03 12:32:00 | 000,188,416 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CHDRT32.sys -- (CnxtHdAudService)
DRV - [2007/07/10 06:27:56 | 000,008,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\XAudio.sys -- (XAudio)
DRV - [2007/06/26 08:38:14 | 000,163,328 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\CHDART.sys -- (HdAudAddService)
DRV - [2007/03/07 06:15:58 | 001,059,112 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers
vmfdx32.sys -- (NVENETFD)
DRV - [2007/02/24 16:42:22 | 000,039,936 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\driversimmptsk.sys -- (rimmptsk)
DRV - [2007/02/17 01:50:32 | 000,012,032 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers
vsmu.sys -- (nvsmu)
DRV - [2007/01/23 19:03:28 | 000,037,376 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\driversixdptsk.sys -- (rismxdp)
DRV - [2007/01/23 18:40:20 | 000,042,496 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\driversimsptsk.sys -- (rimsptsk)
DRV - [2006/11/30 10:24:58 | 000,008,192 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | System | Running] -- C:\Windows\System32\drivers\eabfiltr.sys -- (eabfiltr)
DRV - [2006/06/28 09:54:00 | 000,009,472 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CPQBttn.sys -- (HBtnKey)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========/color
 
 
[color=#E56717]========== Internet Explorer ==========/color
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
IE - HKLM\..\URLSearchHook: {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net	bfree.dll (Conduit Ltd.)
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-887791384-3057113182-1652213120-1000\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKU\S-1-5-21-887791384-3057113182-1652213120-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
IE - HKU\S-1-5-21-887791384-3057113182-1652213120-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/?ocid=iehp
IE - HKU\S-1-5-21-887791384-3057113182-1652213120-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr
IE - HKU\S-1-5-21-887791384-3057113182-1652213120-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 30 2B 77 C2 6E 24 CC 01  [binary data]
IE - HKU\S-1-5-21-887791384-3057113182-1652213120-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-887791384-3057113182-1652213120-1000\..\URLSearchHook: {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net	bfree.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-887791384-3057113182-1652213120-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
[color=#E56717]========== FireFox ==========/color
 
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26
 
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.19\extensions\Components: C:\Program Files\Mozilla Firefox\components [2011/06/09 09:05:42 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.19\extensions\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/06/28 21:43:05 | 000,000,000 | ---D | M]
 
[2010/07/23 20:14:02 | 000,000,000 | ---D | M] (No name found) -- C:\Users\guillaume\AppData\Roaming\Mozilla\Extensions
[2011/06/28 21:56:36 | 000,000,000 | ---D | M] (No name found) -- C:\Users\guillaume\AppData\Roaming\Mozilla\Firefox\Profiles\0cbgbm1h.default\extensions
[2011/06/10 09:16:54 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\guillaume\AppData\Roaming\Mozilla\Firefox\Profiles\0cbgbm1h.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011/06/28 21:43:51 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/06/28 21:43:51 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
[2011/06/28 21:41:56 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins
pdeployJava1.dll
[2011/06/09 09:05:22 | 000,001,516 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-france.xml
[2011/06/09 09:05:22 | 000,001,822 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\cnrtl-tlfi-fr.xml
[2011/06/09 09:05:22 | 000,000,757 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-france.xml
[2011/06/09 09:05:22 | 000,001,426 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-fr.xml
[2011/06/09 09:05:22 | 000,000,652 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-france.xml
 
O1 HOSTS File: ([2006/09/18 23:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: ::1             localhost
O2 - BHO: (Aide pour le lien d'Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - No CLSID value found.
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll (Google Inc.)
O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll (Google Inc.)
O2 - BHO: (free-downloads.net Toolbar) - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net	bfree.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (free-downloads.net Toolbar) - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net	bfree.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-887791384-3057113182-1652213120-1000\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)
O3 - HKU\S-1-5-21-887791384-3057113182-1652213120-1000\..\Toolbar\WebBrowser: (free-downloads.net Toolbar) - {ECDEE021-0D17-467F-A1FF-C7A115230949} - C:\Program Files\free-downloads.net	bfree.dll (Conduit Ltd.)
O4 - HKLM..\Run: []  File not found
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe (Hewlett-Packard)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-887791384-3057113182-1652213120-1000..\Run: [AlcoholAutomount] C:\Program Files\Alcohol Soft\Alcohol 52\axcmd.exe (Alcohol Soft Development Team)
O4 - HKLM..\RunOnce: [Launcher] C:\Windows\SMINST\Launcher.exe (soft thinks)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O7 - HKU\S-1-5-21-887791384-3057113182-1652213120-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O7 - HKU\S-1-5-21-887791384-3057113182-1652213120-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 3
O8 - Extra context menu item: E&xporter vers Microsoft Excel - C:\Program Files\Microsoft Office2003\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O13 - gopher Prefix: missing
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} http://www.nvidia.com/content/DriverDownload/srl/3.0.0.0/srl_bin/sysreqlab3.cab (System Requirements Lab Class)
O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab (HP Download Manager)
O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} http://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection.cab (GMNRev Class)
O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} http://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab (NVIDIA Smart Scan)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.240 212.27.40.241
O18 - Protocol\Filter\x-sdch {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll (Google Inc.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\guillaume\AppData\Roaming\Microsoft\Windows Photo Gallery\Papier peint de la Galerie de photos Windows.jpg
O24 - Desktop BackupWallPaper: C:\Users\guillaume\AppData\Roaming\Microsoft\Windows Photo Gallery\Papier peint de la Galerie de photos Windows.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007/06/11 19:02:19 | 000,000,074 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2011/06/28 21:08:52 | 000,000,000 | RHSD | M] - C:\Autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2005/09/11 17:18:54 | 000,000,340 | ---- | M] () - D:\AUTOMODE -- [ NTFS ]
O32 - AutoRun File - [2011/06/28 21:08:52 | 000,000,000 | RHSD | M] - D:\Autorun.inf -- [ NTFS ]
O33 - MountPoints2\{dc9e85f2-8636-11dc-b4e8-001a738ce165}\Shell\1\Command - "" = H:\explorer.exe
O33 - MountPoints2\{dc9e85f2-8636-11dc-b4e8-001a738ce165}\Shell\AutoRun\command - "" = C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL H:\explorer.exe
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O34 - HKLM BootExecute: (lsdelete) - C:\Windows\System32\lsdelete.exe ()
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========/color
 
[2011/06/28 21:44:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2011/06/28 21:43:04 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll
[2011/06/28 21:43:04 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2011/06/28 21:43:04 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2011/06/28 21:43:04 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2011/06/28 21:36:50 | 000,000,000 | ---D | C] -- C:\Users\guillaume\Desktop\JavaRa
[2011/06/28 21:08:52 | 000,000,000 | RHSD | C] -- C:\Autorun.inf
[2011/06/28 21:03:43 | 000,000,000 | ---D | C] -- C:\UsbFix
[2011/06/28 21:02:49 | 001,231,967 | ---- | C] (TeamXscript.org) -- C:\Users\guillaume\Desktop\UsbFix.exe
[2011/06/26 23:35:11 | 000,579,072 | ---- | C] (OldTimer Tools) -- C:\Users\guillaume\Desktop\OTL.exe
[2011/06/26 23:19:15 | 000,000,000 | ---D | C] -- C:\Users\guillaume\AppData\Roaming\Malwarebytes
[2011/06/26 23:19:08 | 000,039,984 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011/06/26 23:19:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/06/26 23:19:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/06/26 23:19:00 | 000,022,712 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011/06/26 23:19:00 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/06/26 23:18:01 | 009,435,312 | ---- | C] (Malwarebytes Corporation                                    ) -- C:\Users\guillaume\Desktop\mbam-setup-1.51.0.1200.exe
[2011/06/26 23:09:37 | 000,000,000 | ---D | C] -- C:\Users\guillaume\Desktop\RK_Quarantine
[2011/06/26 22:34:49 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2011/06/26 21:50:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
[2011/06/26 21:50:18 | 000,000,000 | ---D | C] -- C:\Program Files\ZHPDiag
[2011/06/26 21:49:37 | 002,537,577 | ---- | C] (Nicolas Coolman                                             ) -- C:\Users\guillaume\Desktop\ZHPDiag2.exe
[2011/06/26 21:23:20 | 004,045,528 | ---- | C] (Malwarebytes Corporation                                    ) -- C:\Users\guillaume\Desktop\mbam_setup.exe
[2011/06/26 21:11:22 | 000,000,000 | ---D | C] -- C:\ProgramData\aM28601IcFbF28601
[2011/06/14 20:01:11 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2011/06/14 20:01:04 | 000,602,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2011/06/14 20:01:02 | 001,469,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2011/06/14 20:01:02 | 000,611,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2011/06/14 20:01:01 | 000,385,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2011/06/14 20:01:00 | 000,387,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2011/06/14 20:01:00 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2011/06/14 20:00:59 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2011/06/14 20:00:59 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2011/06/14 20:00:59 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2011/06/14 20:00:59 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2011/06/14 20:00:58 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2011/06/14 20:00:58 | 000,173,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2011/06/14 20:00:58 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2011/06/14 20:00:58 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2011/06/14 20:00:58 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll
[2011/06/14 20:00:58 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2011/06/10 09:17:09 | 000,000,000 | ---D | C] -- C:\Users\guillaume\Desktop\stage couches
[2011/06/09 09:09:34 | 012,602,568 | ---- | C] (Mozilla) -- C:\Users\guillaume\Desktop\Firefox Setup 4.0.1.exe
[2011/06/06 20:01:13 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\consent.exe
[2011/06/06 20:00:33 | 008,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2011/06/06 19:58:45 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32
etevent.dll
[2011/06/06 19:57:12 | 000,292,864 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2011/06/06 19:57:11 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2011/06/06 19:57:11 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2011/06/06 19:57:01 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbc32.dll
[2011/06/06 19:54:21 | 003,602,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32
tkrnlpa.exe
[2011/06/06 19:54:17 | 003,550,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32
toskrnl.exe
[2011/06/06 19:54:03 | 001,162,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42u.dll
[2011/06/06 19:53:59 | 001,136,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42.dll
[2011/06/06 19:53:55 | 000,081,920 | ---- | C] (Radius Inc.) -- C:\Windows\System32\iccvid.dll
[2011/06/06 19:53:39 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dnscacheugc.exe
[2011/06/06 19:52:47 | 000,157,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32	2embed.dll
[2011/06/06 19:50:21 | 002,041,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2011/06/06 19:50:07 | 001,169,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdclt.exe
[2011/06/06 19:49:39 | 000,317,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MP4SDECD.DLL
[2011/06/06 19:49:07 | 000,726,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
[2011/06/06 19:49:06 | 000,420,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
[2011/06/06 19:48:52 | 000,954,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40.dll
[2011/06/06 19:48:35 | 000,954,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40u.dll
[2011/06/06 19:48:20 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32tutils.dll
[2011/06/06 19:48:08 | 000,867,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpmde.dll
[2011/06/06 19:48:00 | 000,429,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDec.dll
[2011/06/06 19:47:52 | 000,322,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbe.dll
[2011/06/06 19:47:52 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mpg2splt.ax
[2011/06/06 19:47:51 | 000,153,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbeio.dll
[2011/06/06 19:46:24 | 000,352,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32	askschd.dll
[2011/06/06 19:46:11 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmicmiplugin.dll
[2011/06/06 19:46:09 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32	askcomp.dll
[2011/06/06 19:43:36 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32	zres.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========/color
 
[2011/06/29 20:10:48 | 000,028,219 | ---- | M] () -- C:\ProgramData
vModes.001
[2011/06/29 20:08:57 | 000,003,168 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/06/29 20:08:57 | 000,003,168 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/06/29 20:08:30 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/06/29 20:08:26 | 1005,481,984 | -HS- | M] () -- C:\hiberfil.sys
[2011/06/28 22:09:55 | 000,116,224 | ---- | M] () -- C:\Users\guillaume\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/06/28 21:41:46 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2011/06/28 21:41:46 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2011/06/28 21:41:45 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2011/06/28 21:41:41 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll
[2011/06/28 21:36:05 | 000,160,350 | ---- | M] () -- C:\Users\guillaume\Desktop\JavaRa.zip
[2011/06/28 21:08:54 | 000,057,053 | ---- | M] () -- C:\UsbFix_Upload_Me_PC-DE-GUILLAUME.zip
[2011/06/28 21:03:40 | 001,231,967 | ---- | M] (TeamXscript.org) -- C:\Users\guillaume\Desktop\UsbFix.exe
[2011/06/26 23:35:15 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Users\guillaume\Desktop\OTL.exe
[2011/06/26 23:19:09 | 000,000,906 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/06/26 23:18:35 | 009,435,312 | ---- | M] (Malwarebytes Corporation                                    ) -- C:\Users\guillaume\Desktop\mbam-setup-1.51.0.1200.exe
[2011/06/26 23:09:56 | 000,028,219 | ---- | M] () -- C:\ProgramData
vModes.dat
[2011/06/26 23:08:25 | 175,126,720 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2011/06/26 23:07:18 | 001,228,854 | ---- | M] () -- C:\fsqwr.bmp
[2011/06/26 22:41:24 | 000,510,976 | ---- | M] () -- C:\Users\guillaume\Desktop\winlogon.exe.exe
[2011/06/26 21:58:19 | 000,000,000 | ---- | M] () -- C:\Program1
[2011/06/26 21:51:08 | 000,000,795 | ---- | M] () -- C:\Users\Public\Desktop\MBRCheck.lnk
[2011/06/26 21:51:08 | 000,000,788 | ---- | M] () -- C:\Users\Public\Desktop\ZHPDiag.lnk
[2011/06/26 21:51:08 | 000,000,783 | ---- | M] () -- C:\Users\Public\Desktop\ZHPFix.lnk
[2011/06/26 21:49:49 | 002,537,577 | ---- | M] (Nicolas Coolman                                             ) -- C:\Users\guillaume\Desktop\ZHPDiag2.exe
[2011/06/26 21:23:58 | 004,045,528 | ---- | M] (Malwarebytes Corporation                                    ) -- C:\Users\guillaume\Desktop\mbam_setup.exe
[2011/06/22 20:39:12 | 000,000,155 | ---- | M] () -- C:\Windows\winamp.ini
[2011/06/09 20:11:19 | 001,104,715 | ---- | M] () -- C:\Users\guillaume\Documentsecherche sur l'art brabancon.pdf
[2011/06/09 09:10:44 | 012,602,568 | ---- | M] (Mozilla) -- C:\Users\guillaume\Desktop\Firefox Setup 4.0.1.exe
[2011/06/07 19:54:48 | 000,429,168 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011/06/06 19:29:34 | 000,669,566 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2011/06/06 19:29:34 | 000,587,178 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/06/06 19:29:34 | 000,123,556 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2011/06/06 19:29:34 | 000,101,250 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========/color
 
[2011/06/28 21:36:00 | 000,160,350 | ---- | C] () -- C:\Users\guillaume\Desktop\JavaRa.zip
[2011/06/28 21:08:54 | 000,057,053 | ---- | C] () -- C:\UsbFix_Upload_Me_PC-DE-GUILLAUME.zip
[2011/06/28 19:50:34 | 1005,481,984 | -HS- | C] () -- C:\hiberfil.sys
[2011/06/26 23:19:09 | 000,000,906 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/06/26 22:41:22 | 000,510,976 | ---- | C] () -- C:\Users\guillaume\Desktop\winlogon.exe.exe
[2011/06/26 22:34:41 | 175,126,720 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2011/06/26 22:33:35 | 001,228,854 | ---- | C] () -- C:\fsqwr.bmp
[2011/06/26 21:58:19 | 000,000,000 | ---- | C] () -- C:\Program1
[2011/06/26 21:50:23 | 000,000,795 | ---- | C] () -- C:\Users\Public\Desktop\MBRCheck.lnk
[2011/06/26 21:50:23 | 000,000,788 | ---- | C] () -- C:\Users\Public\Desktop\ZHPDiag.lnk
[2011/06/26 21:50:23 | 000,000,783 | ---- | C] () -- C:\Users\Public\Desktop\ZHPFix.lnk
[2011/06/09 20:11:19 | 001,104,715 | ---- | C] () -- C:\Users\guillaume\Documentsecherche sur l'art brabancon.pdf
[2010/07/23 20:13:38 | 000,000,000 | ---- | C] () -- C:\Windows
sreg.dat
[2010/05/11 11:28:23 | 000,000,000 | ---- | C] () -- C:\Users\guillaume\AppData\Roaming\wklnhst.dat
[2010/02/23 21:44:32 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2010/02/23 21:44:31 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2010/02/23 21:43:11 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2010/02/20 15:19:41 | 000,000,535 | ---- | C] () -- C:\Windows\eReg.dat
[2009/06/06 16:19:47 | 000,284,160 | ---- | C] () -- C:\Windows\unin040c.exe
[2009/03/29 16:02:00 | 000,028,219 | ---- | C] () -- C:\ProgramData
vModes.001
[2009/03/29 12:04:30 | 000,028,219 | ---- | C] () -- C:\ProgramData
vModes.dat
[2008/11/17 20:31:03 | 000,000,046 | ---- | C] () -- C:\Windows\adiras.ini
[2008/11/17 20:03:04 | 000,000,680 | ---- | C] () -- C:\Users\guillaume\AppData\Local\d3d9caps.dat
[2008/10/20 17:51:01 | 000,000,109 | ---- | C] () -- C:\Windows\Kit.ini
[2008/05/16 11:58:04 | 000,012,632 | ---- | C] () -- C:\Windows\System32\lsdelete.exe
[2008/02/25 00:59:32 | 000,022,328 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2008/02/25 00:59:31 | 000,022,328 | ---- | C] () -- C:\Users\guillaume\AppData\Roaming\PnkBstrK.sys
[2008/02/25 00:59:13 | 000,103,736 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe
[2008/02/25 00:59:07 | 000,066,872 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
[2008/02/25 00:58:55 | 000,000,319 | ---- | C] () -- C:\Windows\game.ini
[2007/11/29 12:37:21 | 000,004,096 | -H-- | C] () -- C:\Users\guillaume\AppData\Local\keyfile3.drm
[2007/10/19 13:27:46 | 000,000,382 | ---- | C] () -- C:\Windows\ODBC.INI
[2007/10/05 19:02:07 | 000,163,840 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2007/10/05 19:02:03 | 003,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll
[2007/09/24 19:44:35 | 000,000,155 | ---- | C] () -- C:\Windows\winamp.ini
[2007/09/24 12:40:49 | 000,116,224 | ---- | C] () -- C:\Users\guillaume\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007/06/11 18:53:49 | 000,111,332 | ---- | C] () -- C:\Windows\hpqins13.dat
[2007/06/11 17:42:36 | 000,001,732 | ---- | C] () -- C:\Windows\System32\drivers
vphy.bin
[2007/05/10 00:44:32 | 000,010,752 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2007/03/10 13:51:48 | 000,290,816 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2007/03/10 13:46:12 | 001,159,168 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2007/02/27 22:43:02 | 000,000,000 | ---- | C] () -- C:\Windows\System32\px.ini
[2007/02/06 02:05:26 | 000,000,038 | ---- | C] () -- C:\Windows\AviSplitter.INI
[2006/12/13 23:01:36 | 000,520,192 | ---- | C] () -- C:\Windows\System32\CddbPlaylist2Roxio.dll
[2006/12/13 23:01:36 | 000,204,800 | ---- | C] () -- C:\Windows\System32\CddbFileTaggerRoxio.dll
[2006/11/02 17:48:33 | 000,669,566 | ---- | C] () -- C:\Windows\System32\perfh00C.dat
[2006/11/02 17:48:33 | 000,340,236 | ---- | C] () -- C:\Windows\System32\perfi00C.dat
[2006/11/02 17:48:33 | 000,123,556 | ---- | C] () -- C:\Windows\System32\perfc00C.dat
[2006/11/02 17:48:33 | 000,037,390 | ---- | C] () -- C:\Windows\System32\perfd00C.dat
[2006/11/02 14:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 14:47:37 | 000,429,168 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006/11/02 14:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 12:33:01 | 000,587,178 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006/11/02 12:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006/11/02 12:33:01 | 000,101,250 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006/11/02 12:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006/11/02 12:25:21 | 000,061,440 | ---- | C] () -- C:\Windows\System32\igfxTMM.dll
[2006/11/02 12:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 10:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 10:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/02 09:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2006/03/10 02:58:00 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2005/05/07 14:06:00 | 000,016,480 | ---- | C] () -- C:\Windows\System32ixdicon.dll
[2003/04/01 10:58:02 | 000,005,260 | ---- | C] () -- C:\Windows\System32\OUTLPERF.INI
[2001/09/17 13:20:02 | 000,009,216 | ---- | C] () -- C:\Windows\System32\cpuinf32.dll
 
[color=#E56717]========== LOP Check ==========/color
 
[2007/11/21 14:51:27 | 000,000,000 | ---D | M] -- C:\Users\guillaume\AppData\Roaming\muvee Technologies
[2009/02/08 23:24:06 | 000,000,000 | ---D | M] -- C:\Users\guillaume\AppData\Roaming\PeerNetworking
[2010/05/11 11:28:21 | 000,000,000 | ---D | M] -- C:\Users\guillaume\AppData\Roaming\Template
[2011/06/28 23:10:01 | 000,032,588 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
 
[color=#E56717]========== Purity Check ==========/color
 
 
 
[color=#E56717]========== Alternate Data Streams ==========/color
 
@Alternate Data Stream - 130 bytes -> C:\ProgramData\TEMP:D282699C

< End of report >


Par contre je ne sais pas ce que c'est que ce fichier et je ne peux pas faire de suppression "normale".

jlpjlp · Answer

le fichier semble etre une image . Tu peux l analysersur le site de virus total que tu trouvera avec google . A demain

guil660 · Answer

total virus n'a rien détecté d'anormal sur ce fichier.

penses tu que tout est ok ?

Merci

kosuke.K · Answer

si le problème de ce virus persiste ou quelconque dégât causé par ce virus  moi je te conseillerai de télécharger Spyhunter ( en mode sans échec ) . Et bizarrement il y aura une absence de ce virus ( pendant un temps déterminé ).

guil660 · Answer

Bon le problème persiste, impossible d'accéder au bureau ce matin, j'ai toujours le pb d'écran noir avec uniquement la souris de disponible...

J'ai essayer démarrage en mode sans échec et en dernière bonne configuration connue mais rien n'y fait !

Je ne comprends pas ce qu'il se passe ! (surtout qu'hier tout allait bien...)

jlpjlp · Answer

l'ecran est totalement noir?
un message? des bips?


explique le maximum

pour t'aider:
http://www.commentcamarche.net/faq/31787-pc-ne-demarrant-pas-explications-a-fournir-dans-le-forum

guil660 · Answer

Comme je suis obligé de l'éteindre "manuellement", j'ai le choix à chaque démarrage de faire "mode sans échec" ou mode "démarrer normalement".

Lorsque je choisi démarrer normalement, il y une barre d'évolution verte qui apparait avec marqué "Microsoft corporation", puis cette barre disparait pour faire place à un écran noir où je ne vois que la souris.

Le résultat est le même en mode sans échec.

Le ventilateur tourne correctement.

Je peux donc accéder aux manipulations proposées au démarrage comme F1, F12, etc...

Tigzy · Answer

Salut

Tu peux choisir "dernière bonne configuration connue"?

jlpjlp · Answer

comme dis Tigzy:

Tu peux choisir "dernière bonne configuration connue"?

guil660 · Answer

Bonjour,

comme évoqué plus haut, le résultat est le mêm pour la dernière bonne configuration connue.

Ce que je ne comprends pas, c'est que cela avait fonctionné la veille !

jlpjlp · Answer

ok donc impossible d'arriver sur le bureau de windows ?



tente de réparer windows depuis le DVD de restauration comme ceci:
https://www.commentcamarche.net/informatique/windows/259-que-faire-quand-windows-ne-demarre-plus/

guil660 · Answer

Oui tout à fait jlpjlp ! C'est pour ça que je ne comprends pas pourquoi ça fonctionnait avant hier.

jlpjlp · Answer

ok

tente de réparer windows comme indiqué dans le lien précedent

Tigzy · Answer

C'est du à un enchainement RogueKiller + OTL, qui jusqu'à hier posait des problèmes. Tu es un des derniers à avoir eu le bug, car il est maintenant corrigé sur la nouvelle version de RogueKiller

guil660 · Answer

Bonjour à vous, et désolé pour ce silence de quelques jours.

Je viens d'effectuer la restauration, j'ai choisi une dizaine de jours avant mon problème pour être sur et tout à l'air de fonctionner parfaitement ! (j'ai déjà dit ça il a quelques postes mais là j'ai envie d'y croire).

Y a t-il autre chose à faire ?

Sinon merci pour tout (votre patience et vos conseils).

jlpjlp · Answer

Passe cet outil : https://www.luanagames.com/index.fr.html 

puis supprime roguekiller de ton pc

puis remets un rapport OTL tout neuf et explique tes soucis actuels

guil660 · Answer

bonjour jlpjlp,

je n'ai pas retrouvé RogueKiller sur le PC (il a peut être disparu a cause de la restauration ?)

Est ce grave ?

Voici le rapport : http://www.cijoint.fr/cjlink.php?file=cj201107/cijcYYXIqp.txt

jlpjlp · Answer

le pc va bien?

colle un rapport de recherche avec usbfix


a plus

guil660 · Answer

bonjour,

je ne peux pas poster mon rapport, il y a marqué "titre du message non renseigné" !

jlpjlp · Answer

ok

CCM plantait hier

retente de le faire

sinon le pc va bien ?

guil660 · Answer

bonjour,

je ne comprends c'est toujours, mais dès que j'enlève le rapport, ça fonctionne !

jlpjlp · Answer

passe delfix et choisi l'option de suppression et colle nous le rapport

puis télécharge de nouveau usbfix et colle un rapport avec
http://teamxscript.changelog.fr/too/Setup.exe

guil660 · Answer

bonjour jlpjlp,

voici le rapport delfix :

# DelFix v8.1 - Rapport créé le 11/07/2011 à 20:25
# Mis à jour le 20/06/11 à 19h par Xplode
# Système d'exploitation : Windows Vista (TM) Home Premium (32 bits) [version 6.0.6002] Service Pack 2
# Nom d'utilisateur : guillaume - PC-DE-GUILLAUME (Administrateur)
# Exécuté depuis : C:\Users\guillaume\Desktop\DelFix-8.1.exe
# Option [Suppression]


~~~~~~ Dossier(s) ~~~~~~

Supprimé : C:\USBFix
Supprimé : C:\Program Files\ZHPDiag

~~~~~~ Fichier(s) ~~~~~~

Supprimé : C:\JavaRa.log
Supprimé : C:\UsbFix.txt
Supprimé : C:\UsbFix_Upload_Me_PC-DE-GUILLAUME.zip
Supprimé : C:\Users\guillaume\Desktop\UsbFix.exe

~~~~~~ Registre ~~~~~~

Clé Supprimée : HKCU\SOFTWARE\USBFix
Clé Supprimée : HKLM\Software\OldTimer Tools
Clé Supprimée : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\USBFix

~~~~~~ Autre ~~~~~~

-> Prefetch vidé

########## EOF - "C:\DelFixSuppr.txt" - [977 octets] ##########

guil660 · Answer

et voici le 2e rapport :


############################## | FindyKill V5.053 |

# User : guillaume (Administrateurs) # PC-DE-GUILLAUME
# Update on 23/10/2010 by El Desaparecido
# Start at: 20:36:08 | 11/07/2011
# Website :
# Contact : 

# AMD Athlon(tm) 64 X2 Dual-Core Processor TK-53
# Microsoft® Windows Vista(TM) Édition Familiale Premium  (6.0.6002 32-bit) # Service Pack 2
# Internet Explorer 8.0.6001.19088
# Windows Firewall Status : Enabled
# AV : avast! antivirus 4.8.1229 [VPS 110711-0] 4.8.1229 [ Enabled | Updated ]

# C:\ # Disque fixe local # 141,49 Go (46,93 Go free) # NTFS
# D:\ # Disque fixe local # 7,56 Go (2,17 Go free) [HP_RECOVERY] # NTFS
# E:\ # Disque CD-ROM
# G:\ # Disque CD-ROM
 
################## | Processus infectieux stoppés  | 


################## | Eléments infectieux |


################## | Reference Bagle MD5 ... |


################## | MD5 ... |


################## | Bagle Trace ... |


################## | Crack .... |


################## | Registre |


################## | Etat |

# Affichage des fichiers cachés : OK

# Mode sans echec : OK

# (!) Uac = 0x0 ( Good = 0x1 | Bad = 0x0 ) 
 
# Ndisuio ( NDIS User Mode ) -> Start = 3 ( Good = 3 | Bad = 4 )
 
# EapHost ( Extensible Authentication Protocol Host ) -> Start = 3 ( Good = 2 | Bad = 4 )
 
# MpsSvc ( Windows Firewall ) -> Start = 2 ( Good = 2 | Bad = 4 )
 
# (!) SharedAccess ( Windows Firewall - Internet Connection Sharing ) -> Start = 4 ( Good = 2 | Bad = 4 ) 
 
# windefend ( Windows Defender ) -> Start = 2 ( Good = 2 | Bad = 4 )
 
# wuauserv ( Windows Update ) -> Start = 2 ( Good = 2 | Bad = 4 )
 
# (!) wscsvc ( Windows Security Center ) -> Start = 4 ( Good = 2 | Bad = 4 ) 
 

################## | ! Fin du rapport # FindyKill V5.053 ! |




est ce que je dois utiliser l'option de suppression de findKill ?

jlpjlp · Answer

oui passe l'option de suppression
et mets le  rapport 

a plus

guil660 · Answer

voici :


############################## | FindyKill V5.053 |

# User : guillaume (Administrateurs) # PC-DE-GUILLAUME
# Update on 23/10/2010 by El Desaparecido
# Start at: 21:11:01 | 11/07/2011
# Website :
# Contact : 

# AMD Athlon(tm) 64 X2 Dual-Core Processor TK-53
# Microsoft® Windows Vista(TM) Édition Familiale Premium  (6.0.6002 32-bit) # Service Pack 2
# Internet Explorer 8.0.6001.19088
# Windows Firewall Status : Enabled
# AV : avast! antivirus 4.8.1229 [VPS 110711-0] 4.8.1229 [ Enabled | Updated ]

# C:\ # Disque fixe local # 141,49 Go (46,94 Go free) # NTFS
# D:\ # Disque fixe local # 7,56 Go (2,17 Go free) [HP_RECOVERY] # NTFS
# E:\ # Disque CD-ROM
# G:\ # Disque CD-ROM

################## | Eléments infectieux |


################## | Bagle Trace ... |


################## | Registre | 


################## | Etat |

# Mode sans echec : OK


# Affichage des fichiers cachés : OK

# Uac : OK 
 
# Ndisuio ( NDIS User Mode ) -> Start = 3 ( Good = 3 | Bad = 4 )
 
# EapHost ( Extensible Authentication Protocol Host ) -> Start = 2 ( Good = 2 | Bad = 4 )
 
# MpsSvc ( Windows Firewall ) -> Start = 2 ( Good = 2 | Bad = 4 )
 
# SharedAccess ( Windows Firewall - Internet Connection Sharing ) -> Start = 2 ( Good = 2 | Bad = 4 )
 
# windefend ( Windows Defender ) -> Start = 2 ( Good = 2 | Bad = 4 )
 
# wuauserv ( Windows Update ) -> Start = 2 ( Good = 2 | Bad = 4 )
 
# wscsvc ( Windows Security Center ) -> Start = 2 ( Good = 2 | Bad = 4 )
 

################## | Fichiers corrompus  |

... OK !  

################## | Upload |

Veuillez envoyer le fichier : C:\FindyKill_Upload_Me_PC-de-guillaume.zip :  
Merci pour votre contribution . 

################## | ! Fin du rapport # FindyKill V5.053 ! |

jlpjlp · Answer

ok mais en fait c etait un rapport avec usbfix que je voulais... Et comment va le pc ?

guil660 · Answer

Bonjour jlpjlp,

voici le rapport :
############################## | UsbFix 7.048 | [Recherche]

Utilisateur: guillaume (Administrateur) # PC-DE-GUILLAUME [Hewlett-Packard HP Pavilion dv6500 Notebook PC]
Mis à jour le 11/06/2011 par TeamXscript
Lancé à 20:05:29 | 19/07/2011


CPU: AMD Athlon(tm) 64 X2 Dual-Core Processor TK-53
CPU 2: AMD Athlon(tm) 64 X2 Dual-Core Processor TK-53
Microsoft® Windows Vista(TM) Édition Familiale Premium  (6.0.6002 32-Bit) # Service Pack 2
Internet Explorer 8.0.6001.19088

Pare-feu Windows: Activé
Antivirus: avast! antivirus 4.8.1229 [VPS 110719-1] 4.8.1229 [Enabled | Updated]
RAM -> 958 Mo 
C:\ (%systemdrive%) -> Disque fixe # 141 Go (47 Go libre(s) - 34%) [] # NTFS
D:\ -> Disque fixe # 8 Go (2 Go libre(s) - 29%) [HP_RECOVERY] # NTFS
E:\ -> CD-ROM
G:\ -> CD-ROM

################## | Éléments infectieux |


################## | Registre |


################## | Mountpoints2 |

HKCU\.\.\.\.\Explorer\MountPoints2\{dc9e85f2-8636-11dc-b4e8-001a738ce165}
Shell\1\Command = H:\explorer.exe
Shell\AutoRun\Command = C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL H:\explorer.exe


################## | Vaccin |

C:\Autorun.inf -> Vaccin créé par UsbFix (TeamXscript)
D:\Autorun.inf -> Vaccin créé par UsbFix (TeamXscript)

################## | E.O.F |

guil660 · Answer

Et voici le rapport de la suppression :

############################## | UsbFix 7.048 | [Suppression]

Utilisateur: guillaume (Administrateur) # PC-DE-GUILLAUME [Hewlett-Packard HP Pavilion dv6500 Notebook PC]
Mis à jour le 11/06/2011 par TeamXscript
Lancé à 20:16:24 | 19/07/2011


CPU: AMD Athlon(tm) 64 X2 Dual-Core Processor TK-53
CPU 2: AMD Athlon(tm) 64 X2 Dual-Core Processor TK-53
Microsoft® Windows Vista(TM) Édition Familiale Premium  (6.0.6002 32-Bit) # Service Pack 2
Internet Explorer 8.0.6001.19088

Pare-feu Windows: Activé
Antivirus: avast! antivirus 4.8.1229 [VPS 110719-1] 4.8.1229 [Enabled | Updated]
RAM -> 958 Mo 
C:\ (%systemdrive%) -> Disque fixe # 141 Go (47 Go libre(s) - 33%) [] # NTFS
D:\ -> Disque fixe # 8 Go (2 Go libre(s) - 29%) [HP_RECOVERY] # NTFS
E:\ -> CD-ROM
G:\ -> CD-ROM

################## | Éléments infectieux |

Supprimé! C:\$RECYCLE.BIN\S-1-5-21-887791384-3057113182-1652213120-1000
Supprimé! D:\$RECYCLE.BIN\S-1-5-21-887791384-3057113182-1652213120-1000

################## | Registre |


################## | Mountpoints2 |

Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{dc9e85f2-8636-11dc-b4e8-001a738ce165}

################## | Listing |

[19/07/2011 - 20:18:15 | SHD ] 	C:\$RECYCLE.BIN
[21/11/2008 - 18:44:16 | D ] 	C:\430cf5ed10d4c3d5af0bac90
[11/06/2007 - 19:02:19 | N | 74] 	C:\autoexec.bat
[06/07/2011 - 20:08:23 | RASHD ] 	C:\Autorun.inf
[06/04/2010 - 22:46:20 | D ] 	C:\boot
[11/04/2009 - 08:36:36 | RASH | 333257] 	C:\bootmgr
[18/09/2006 - 23:43:37 | N | 10] 	C:\config.sys
[11/07/2011 - 20:25:33 | N | 901] 	C:\DelFixSearch.txt
[11/07/2011 - 20:26:01 | N | 929] 	C:\DelFixSuppr.txt
[18/09/2007 - 14:52:30 | SHD ] 	C:\Documents and Settings
[20/05/2008 - 13:54:24 | D ] 	C:\e7692cdd47eee0e89f201f0044a62ec2
[11/07/2011 - 21:39:09 | N | 878] 	C:\FindyKill_Upload_Me_PC-de-guillaume.zip
[26/06/2011 - 23:07:18 | N | 1228854] 	C:\fsqwr.bmp
[11/07/2011 - 21:39:25 | D ] 	C:\FyK
[11/07/2011 - 21:39:25 | N | 1871] 	C:\FyK.txt
[19/07/2011 - 19:41:55 | ASH | 1005473792] 	C:\hiberfil.sys
[11/06/2007 - 19:26:33 | D ] 	C:\HP
[05/10/2007 - 19:00:42 | N | 0] 	C:\IO.SYS
[30/03/2007 - 13:06:52 | D ] 	C:\MCPP
[05/10/2007 - 19:00:42 | N | 0] 	C:\MSDOS.SYS
[11/06/2007 - 18:35:03 | RHD ] 	C:\MSOCache
[19/07/2011 - 19:41:53 | ASH | 1319292928] 	C:\pagefile.sys
[19/05/2008 - 00:32:48 | D ] 	C:\PerfLogs
[18/07/2011 - 20:39:08 | D ] 	C:\Program Files
[26/06/2011 - 21:58:19 | N | 0] 	C:\Program1
[28/06/2011 - 21:44:16 | HD ] 	C:\ProgramData
[07/05/2010 - 19:58:09 | N | 232] 	C:\sqmdata00.sqm
[07/05/2010 - 19:59:30 | N | 232] 	C:\sqmdata01.sqm
[08/05/2010 - 09:40:04 | N | 232] 	C:\sqmdata02.sqm
[08/05/2010 - 16:19:33 | N | 232] 	C:\sqmdata03.sqm
[09/05/2010 - 08:34:51 | N | 232] 	C:\sqmdata04.sqm
[09/05/2010 - 20:43:06 | N | 232] 	C:\sqmdata05.sqm
[10/05/2010 - 15:30:18 | N | 232] 	C:\sqmdata06.sqm
[11/05/2010 - 15:04:47 | N | 232] 	C:\sqmdata07.sqm
[11/05/2010 - 16:08:50 | N | 232] 	C:\sqmdata08.sqm
[13/05/2010 - 15:46:24 | N | 232] 	C:\sqmdata09.sqm
[14/05/2010 - 12:08:28 | N | 232] 	C:\sqmdata10.sqm
[15/05/2010 - 09:25:35 | N | 232] 	C:\sqmdata11.sqm
[15/05/2010 - 14:42:57 | N | 232] 	C:\sqmdata12.sqm
[04/05/2010 - 20:05:31 | N | 232] 	C:\sqmdata13.sqm
[05/05/2010 - 15:35:22 | N | 232] 	C:\sqmdata14.sqm
[06/05/2010 - 07:16:35 | N | 232] 	C:\sqmdata15.sqm
[06/05/2010 - 10:05:09 | N | 232] 	C:\sqmdata16.sqm
[06/05/2010 - 14:52:56 | N | 232] 	C:\sqmdata17.sqm
[06/05/2010 - 16:52:08 | N | 232] 	C:\sqmdata18.sqm
[07/05/2010 - 11:11:22 | N | 232] 	C:\sqmdata19.sqm
[07/05/2010 - 19:58:09 | N | 244] 	C:\sqmnoopt00.sqm
[07/05/2010 - 19:59:30 | N | 244] 	C:\sqmnoopt01.sqm
[08/05/2010 - 09:40:04 | N | 244] 	C:\sqmnoopt02.sqm
[08/05/2010 - 16:19:33 | N | 244] 	C:\sqmnoopt03.sqm
[09/05/2010 - 08:34:50 | N | 244] 	C:\sqmnoopt04.sqm
[09/05/2010 - 20:43:06 | N | 244] 	C:\sqmnoopt05.sqm
[10/05/2010 - 15:30:18 | N | 244] 	C:\sqmnoopt06.sqm
[11/05/2010 - 15:04:47 | N | 244] 	C:\sqmnoopt07.sqm
[11/05/2010 - 16:08:50 | N | 244] 	C:\sqmnoopt08.sqm
[13/05/2010 - 15:46:24 | N | 244] 	C:\sqmnoopt09.sqm
[14/05/2010 - 12:08:28 | N | 244] 	C:\sqmnoopt10.sqm
[15/05/2010 - 09:25:35 | N | 244] 	C:\sqmnoopt11.sqm
[15/05/2010 - 14:42:57 | N | 244] 	C:\sqmnoopt12.sqm
[04/05/2010 - 20:05:31 | N | 244] 	C:\sqmnoopt13.sqm
[05/05/2010 - 15:35:22 | N | 244] 	C:\sqmnoopt14.sqm
[06/05/2010 - 07:16:35 | N | 244] 	C:\sqmnoopt15.sqm
[06/05/2010 - 10:05:09 | N | 244] 	C:\sqmnoopt16.sqm
[06/05/2010 - 14:52:56 | N | 244] 	C:\sqmnoopt17.sqm
[06/05/2010 - 16:52:08 | N | 244] 	C:\sqmnoopt18.sqm
[07/05/2010 - 11:11:22 | N | 244] 	C:\sqmnoopt19.sqm
[17/05/2009 - 17:33:03 | D ] 	C:\SwSetup
[19/07/2011 - 19:50:36 | SHD ] 	C:\System Volume Information
[17/05/2009 - 17:29:50 | D ] 	C:\System.sav
[27/05/2011 - 22:39:49 | N | 734] 	C:\updatedatfix.log
[19/07/2011 - 20:18:15 | D ] 	C:\UsbFix
[19/07/2011 - 20:16:26 | A | 5029] 	C:\UsbFix.txt
[20/05/2008 - 13:54:26 | D ] 	C:\Users
[18/07/2011 - 10:58:10 | D ] 	C:\Windows
[19/07/2011 - 20:18:15 | SHD ] 	D:\$RECYCLE.BIN
[11/09/2005 - 17:18:54 | N | 340] 	D:\AUTOMODE
[06/07/2011 - 20:08:23 | RASHD ] 	D:\Autorun.inf
[18/09/2007 - 15:00:39 | N | 13] 	D:\BLOCK.RIN
[11/08/2007 - 17:51:35 | D ] 	D:\boot
[04/10/2006 - 01:02:44 | SH | 438328] 	D:\bootmgr
[03/11/2006 - 21:43:28 | SH | 117] 	D:\Desktop.ini
[10/09/2002 - 18:14:28 | N | 8134] 	D:\Folder.htt
[18/09/2007 - 15:49:43 | D ] 	D:\HP
[18/09/2007 - 18:42:01 | N | 22] 	D:\HPCD.sys
[18/09/2007 - 18:28:52 | N | 1036] 	D:\MASTER.LOG
[18/09/2007 - 18:42:02 | D ] 	D:\preload
[03/11/2005 - 17:19:52 | N | 181736] 	D:\protect.ed
[18/09/2007 - 15:49:47 | N | 26] 	D:\RCBoot.sys
[11/08/2007 - 17:51:35 | RD ] 	D:\RECOVERY
[11/08/2007 - 17:51:35 | D ] 	D:\SOURCES
[11/08/2007 - 17:51:35 | SHD ] 	D:\System Volume Information
[11/08/2007 - 17:51:36 | D ] 	D:\Tools
[18/09/2007 - 15:43:50 | N | 14] 	D:\USER
[11/08/2007 - 17:51:35 | D ] 	D:\WINDOWS

################## | Vaccin |

C:\Autorun.inf -> Vaccin créé par UsbFix (TeamXscript)
D:\Autorun.inf -> Vaccin créé par UsbFix (TeamXscript)

################## | Upload |

Veuillez envoyer le fichier: C:\UsbFix_Upload_Me_PC-DE-GUILLAUME.zip
http://www.teamxscript.org/Upload.php
Merci de votre contribution.

################## | E.O.F |

guil660 · Answer

Le pC fonctionne très bien, en ai-je terminé de ce soucis ?

g3n-h@ckm@n · Answer

il est ou ton lecteur H:\ ?

guil660 · Answer

je n'ai pas de lecteur H !

jlpjlp · Answer

slt genhackman :)


effectivement il devait y avoir un lecteur H (une clé usb ...) qui a été à un moment branchée sur le pc


lance delfix

choisi l'option de suppression et colle le rapport

puis désinstalle delfix via les options proposées


a plus

guil660 · Answer

le voici :

# DelFix v8.1 - Rapport créé le 21/07/2011 à 19:33
# Mis à jour le 20/06/11 à 19h par Xplode
# Système d'exploitation : Windows Vista (TM) Home Premium (32 bits) [version 6.0.6002] Service Pack 2
# Nom d'utilisateur : guillaume - PC-DE-GUILLAUME (Administrateur)
# Exécuté depuis : C:\Users\guillaume\Downloads\DelFix-8.1.exe
# Option [Suppression]


~~~~~~ Dossier(s) ~~~~~~

Supprimé : C:\FyK
Supprimé : C:\USBFix

~~~~~~ Fichier(s) ~~~~~~

Supprimé : C:\FyK.txt
Supprimé : C:\UsbFix.txt
Supprimé : C:\UsbFix_Upload_Me_PC-DE-GUILLAUME.zip

~~~~~~ Registre ~~~~~~

Clé Supprimée : HKCU\SOFTWARE\USBFix
Clé Supprimée : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\USBFix
Valeur Supprimée : HKCU\Software\WinRAR SFX|C%%Fyk

~~~~~~ Autre ~~~~~~

-> Prefetch vidé

########## EOF - "C:\DelFixSuppr.txt" - [914 octets] ##########

Virus MS Removal Tool

60 réponses

Discussions similaires