Posez votre question Signaler

Cheval de troie JS:ScriptIP-inf(Trj) [Résolu]

thaounet 92Messages postés 5 mars 2009Date d'inscription 15 septembre 2010Dernière intervention - Dernière réponse le 13 mai 2009 à 21:45
Bonjour,
Aidez-moi svp!
J'ai chopé un trojan sur internet et depuis hier j'essaie de m'en débarrasser en lisant les forums mais quoique j'essaie, ça ne marche pas (j'ai téléchargé ccleaner, mode sans échec mais après avoir restauration du système décoché ça revient etc...). Je suis loin de m'y connaître alors j'ai besoin de voter aide.
Tout a commencé lorsque j'ai eu un message d'avast me disant qu'il bloquait un trojan.
Le problème c'est qu'à chaque fois que je vais sur Internet Explorer, la même page me revient tout le temps me mettant sur la recherche Trj/win du moteur de recherche.
Je ne parviens plus à naviguer sur le net.
D'autre part lorsque j'allais dans mes documents ou poste de travail, il m'ouvrait cette même page de recherche TRJ/win sur le net.
J'ai copié mes documents sur un disque dur externe, sera-t-il lui aussi infecté?
Je me fais beaucoup de soucis car il s'agit pour moi de vidéos et photos de ma famille auxquelles je tiens énormément...
J'ai installé Mozilla Firefox, c'est pour cela que je parviens à vous écrire ce message mais je voudrais me débarasser de Internet Explorer mais je n'y parviens pas.
Et le laisser sans l'utiliser, j'ai l'impression que j'ai encore le cheval de troie, qu'en pensez-vous?
S'il vous plaît, aidez-moi!
que dois-je faire à présent?
J'ai essayé toute la nuit de régler le problème en téléchargeant des tas d'anti-spyware mais là je suis dépassée...
Merci d'avance pour votre aide...
Ah oui je suis sous windows xp....
Lire la suite 

Cheval de troie JS:ScriptIP-inf(Trj) »

56 réponses
Réponse
+1
moins plus
jlpjlp 50297Messages postés 18 mai 2007Date d'inscription 28 mai 2012Dernière intervention 5 mars 2009 à 09:35
slt

il faut laisser internet explorer car windows l'utilise pour se mettre a jour

________________


Télécharge ici :

http://images.malwareremoval.com/random/RSIT.exe

random's system information tool (RSIT) par andom/random et sauvegarde-le sur le Bureau.

Double-clique sur RSIT.exe afin de lancer RSIT.

Clique Continue à l'écran Disclaimer.

Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.

Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront.

Poste le contenu de log.txt (<<qui sera affiché)
ainsi que de info.txt (<<qui sera réduit dans la Barre des Tâches).

NB : Les rapports sont sauvegardés dans le dossier C:\rsit

 Ajouter un commentaire
Ajouter un commentaire
Réponse
+0
moins plus
thaounet 92Messages postés 5 mars 2009Date d'inscription 15 septembre 2010Dernière intervention 5 mars 2009 à 09:40
Salut, tout d'abord un énorme merci pour ton aide précieuse :

Voici ce que tu me demandes :

Logfile of random's system information tool 1.05 (written by random/random)
Run by Magali at 2009-03-05 09:37:33
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 57 GB (77%) free of 74 GB
Total RAM: 511 MB (44% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 09:37:48, on 05/03/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16791)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Acer\eRecovery\Monitor.exe
C:\WINDOWS\AGRSMMSG.exe
C:\WINDOWS\system32\VTTimer.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Acer\Acer eMode Management\AspireService.exe
C:\Program Files\Acer\Acer eConsole\MediaSync.exe
C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\CLUB-I~1\LECOMP~1\SMARTB~1\MotiveSB.exe
C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE
C:\PROGRA~1\HEWLET~1\HPSHAR~1\hpgs2wnf.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Spyware Doctor\pctsTray.exe
C:\Program Files\Defenza\pcd-as.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\acer\Acer eConsole\MediaServerService.exe
C:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe
C:\Program Files\Nikon\NkView5\NkvMon.exe
C:\Program Files\FotoStation Easy\FotoStation Easy AutoLaunch.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Club-Internet\Le Compagnon Club\bin\mpbtn.exe
C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\IncrediMail\bin\IMApp.exe
C:\Program Files\Spyware Doctor\pctsAuxs.exe
C:\Program Files\Spyware Doctor\pctsSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\IncrediMail\bin\IncMail.exe
C:\Documents and Settings\Magali\Bureau\RSIT.exe
C:\Documents and Settings\Magali\Bureau\Magali.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://portail.club-internet.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer avec Club-Internet
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 - BHO: TrumanBar - {BDF6E57E-7330-40CB-8363-D82E9BFF223B} - C:\WINDOWS\system32\gjgsys.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [LaunchApp] Alaunch
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [ntiMUI] c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [eRecoveryService] C:\Program Files\Acer\eRecovery\Monitor.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [VTTrayp] VTtrayp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [AspireService] C:\Program Files\Acer\Acer eMode Management\AspireService.exe
O4 - HKLM\..\Run: [MediaSync] C:\Program Files\Acer\Acer eConsole\MediaSync.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [zzzHPSETUP] F:\Setup.exe
O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [BJCFD] C:\Program Files\BroadJump\Client Foundation\CFD.exe
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [Ghost Relay] C:\WINDOWS\system32\,,,WW,,)WW.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\CLUB-I~1\LECOMP~1\SMARTB~1\MotiveSB.exe
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE -startup
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [ISTray] "C:\Program Files\Spyware Doctor\pctsTray.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [PCDAS] C:\Program Files\Defenza\pcd-as.exe /10003
O4 - HKCU\..\Run: [BoontyBox] "C:\Program Files\Boonty\BoontyBox\BoontyBox.exe" /boot
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [mwcikogmm] c:\documents and settings\magali\local settings\application data\mwcikogmm.exe mwcikogmm
O4 - HKCU\..\Run: [tsqoutr] "c:\documents and settings\magali\local settings\application data\tsqoutr.exe" tsqoutr
O4 - HKCU\..\Run: [Uniblue RegistryBooster 2009] C:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe /S
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Registration-PCTV.lnk = C:\Program Files\Pinnacle\Pinnacle PCTV\ERegister\RegTool.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: NkvMon.exe.lnk = C:\Program Files\Nikon\NkView5\NkvMon.exe
O4 - Global Startup: FotoStation Easy AutoLaunch.lnk = ?
O4 - Global Startup: E-Compagnon.lnk = C:\Program Files\ColiPoste\e-COMO\e-COMO.exe
O4 - Global Startup: LE COMPAGNON CLUB.lnk = C:\Program Files\Club-Internet\Le Compagnon Club\bin\matcli.exe
O8 - Extra context menu item: Ouvrir l'image dans &Microsoft PhotoDraw - res://C:\PROGRA~1\MICROS~2\Office\1036\phdintl.dll/phdContext.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {B9907873-6560-4A36-B76B-9DADE84A7F55} (FnacmusicDnl.DnlManager) - https://www.fnacmusic.com/telechargementFnacmusic/FnacmusicDnl.CAB
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game06.zylom.com/activex/zylomgamesplayer.cab
O16 - DPF: {CE3409C4-9E26-4F8E-83E4-778498F9E7B4} (PB_Uploader Class) - http://www.photoways.com/clients/uploader_v2.2.0.6.cab
O16 - DPF: {E87F6C8E-16C0-11D3-BEF7-009027438003} (Persits Software XUpload) - http://www.girafoto.fr/XUpload.ocx
O16 - DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848} (Image Uploader Control) - http://www.girafoto.fr/uploaders/aurigma_4_7/ImageUploader4.cab
O23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\acer\Acer eConsole\MediaServerService.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe
O24 - Desktop Component 0: (no name) - http://images.google.fr/...
O24 - Desktop Component 1: (no name) - file:///C:/DOCUME~1/Magali/LOCALS~1/Temp/msoclip1/01/clip_image001.gif

Ajouter un commentaire
idear- 5 mars 2009 à 10:24
Mon peoblem ont été résolus RegistryFix est un PC professionnel lceaner.you pouvez l'utiliser pour supprimer les logiciels malveillants.
Ajouter un commentaire
Réponse
+0
moins plus
thaounet 92Messages postés 5 mars 2009Date d'inscription 15 septembre 2010Dernière intervention 5 mars 2009 à 09:58
Je ne suis pas sûre que le ""info" soit complet, je le remets :

info.txt logfile of random's system information tool 1.05 2009-03-05 09:37:54

======Uninstall list======

-->C:\PROGRA~1\CLUB-I~1\LECOMP~1\Uninstall.exe TONLFR
-->C:\Program Files\DivX\ConverterUninstall.exe /CONVERTER
-->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
-->C:\WINDOWS\IsUn040c.exe -fC:\WINDOWS\SMUninst.ins
-->C:\WINDOWS\IsUn040c.exe -fC:\WINDOWS\USBUnins.isu
-->RunDll32 ADVPACK.DLL,LaunchINFSection C:\WINDOWS\INF\wpfull.inf,WebPostUninstall
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
7-Zip 4.44 beta-->"C:\Program Files\7-Zip\Uninstall.exe"
AC3Filter (remove only)-->C:\Program Files\AC3Filter\uninstall.exe
ACDSee-->C:\PROGRA~1\ACDSYS~1\ACDSEE\UNWISE.EXE C:\PROGRA~1\ACDSYS~1\ACDSEE\INSTALL.LOG
Acer eConsole-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EC028E6B-F3F1-4192-B63E-A7C97302ED5A}\setup.exe" -l0x40c
Acer eMode Management-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{65CDEC30-4BF4-48FB-8059-9FC480E4E94F}\setup.exe" -l0x40c
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 8.1.2-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A81200000003}
adsl TV-->C:\Program Files\adslTV\Uninstal.exe
Agere Systems PCI Soft Modem-->agrsmdel
AIDA32 v3.93-->"C:\Program Files\AIDA32 - Personal System Information\unins000.exe"
Apple Mobile Device Support-->MsiExec.exe /I{44734179-8A79-4DEE-BB08-73037F065543}
Apple Software Update-->MsiExec.exe /I{02DFF6B1-1654-411C-8D7B-FD6052EF016F}
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
ArcSoft Panorama Maker 3.0-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1CABB679-3958-44AA-BFFF-4E68A2684255}\Setup.exe" -l0x40c -uninst
Assistant de connexion Windows Live-->MsiExec.exe /I{D3116CC7-24DC-4CA3-9CE1-23FED836E9F2}
avast! Antivirus-->C:\Program Files\Alwil Software\Avast4\aswRunDll.exe "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll",RunSetup
BJ Printer Driver(BJC-3000)-->C:\WINDOWS\IsUn040c.exe -fC:\WINDOWS\BJC-3000\DeIsL1.isu
BroadJump Client Foundation-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\BroadJump\Client Foundation\Uninst.isu" -c"C:\Program Files\BroadJump\Client Foundation\RmvBJCFD.dll" -b"CFD" -h"CFD" -a
CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
CDisplay 1.8.1.0 Fr-->C:\Program Files\CDisplay\UnInstall_CDisplay.exe
Configurateur Modem-->"C:\Program Files\Club-Internet\Assistance\ConfModem\uninstall.exe"
Corel Applications-->C:\WINDOWS\Corel\Uninst32.exe
CoreVorbis Audio Decoder (remove only)-->"C:\WINDOWS\system32\CoreVorbis-uninstall.exe"
Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Defenza-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5B3AA536-2193-4D9B-812A-DE45C4D57AD1}\Setup.exe" -l0x9
Digimax Master-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AEC0CEBC-0FC7-4716-8222-1C4A742719B1}\Setup.exe" -l0x40c -removeonly
Direct Show Ogg Vorbis Filter (remove only)-->"C:\WINDOWS\system32\OggDSuninst.exe"
DivX Converter-->C:\Program Files\DivX\ConverterUninstall.exe /CONVERTER
DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
DivX-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
DVD Shrink 3.2-->"C:\Program Files\DVD Shrink\unins000.exe"
Favorit-->"c:\documents and settings\magali\local settings\application data\mwcikogmm.exe" -uninstall
Favorit-->"c:\documents and settings\magali\local settings\application data\tsqoutr.exe" -uninstall
ffdshow (remove only)-->"C:\Program Files\ffdshow\uninstall.exe"
FotoStation Easy-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{67DD948A-974D-41B7-9723-036BCFA45232}\Setup.exe"
Galerie de photos Windows Live-->MsiExec.exe /X{A70FA218-6598-4AC9-813D-63597C5DD068}
Google Toolbar for Firefox-->MsiExec.exe /X{2CCBABCB-6427-4A55-B091-49864623C43F}
HijackThis 2.0.2-->"C:\Documents and Settings\Magali\Bureau\HijackThis.exe" /uninstall
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
hp deskjet 845c series (Supprimer uniquement)-->C:\Program Files\hp deskjet 845c series\hpfiui.exe -c -vdivid=HPF -vpnum=95 -vinstport=USB002 -vproduct=845c -huninstall
HP Precisionscan Pro 3.1-->MsiExec.exe /I{6B36DEBF-27D0-4B1E-858D-D397091C6C7D}
HP Share-to-Web-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{748F4870-8350-11D3-B0BF-080009FB4A19}\setup.exe" --MAIN -l1036
Huffyuv AVI lossless video codec (Remove Only)-->rundll.exe setupx.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\HUFFYUV.INF
IncrediMail-->C:\Program Files\IncrediMail\bin\ImSetup.exe /remove /addon:IncrediMail /log:IncMail.log
Intel(R) Create & Share(TM) Camera Pack-->C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Intel\Createshare2\program\CKUninst.isu"
InterActual Player-->C:\Program Files\InterActual\InterActual Player\inuninst.exe
iTunes-->MsiExec.exe /I{585776BC-4BD6-4BD2-A19A-1D6CB44A403B}
J2SE Runtime Environment 5.0 Update 10-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150100}
J2SE Runtime Environment 5.0 Update 2-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150020}
J2SE Runtime Environment 5.0 Update 4-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150040}
J2SE Runtime Environment 5.0 Update 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150060}
J2SE Runtime Environment 5.0 Update 9-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150090}
Java(TM) 6 Update 11-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216011FF}
Java(TM) 6 Update 2-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160020}
Java(TM) 6 Update 3-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
Java(TM) 6 Update 5-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160050}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Java(TM) SE Runtime Environment 6 Update 1-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160010}
KaraFun 1.17-->"C:\Program Files\KaraFun\unins000.exe"
Lame ACM MP3 Codec-->C:\WINDOWS\system32\rundll32.exe setupapi,InstallHinfSection Remove_LameMP3 132 C:\WINDOWS\INF\LameACM.inf
LE COMPAGNON CLUB-->C:\WINDOWS\Motive\TONLFR\MCCUninst.exe
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
LiveUpdate 3.2 (Symantec Corporation)-->"C:\Program Files\Symantec\LiveUpdate\LSETUP.EXE" /U
LiveUpdate Notice (Symantec Corporation)-->MsiExec.exe /X{DBA4DB9D-EE51-4944-A419-98AB1F1249C8}
Livre Album Fuji Photo-->"C:\Program Files\Livre Album Fuji Photo\unins000.exe"
Logiciel d'impression photo HP-->C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Hewlett-Packard\PhotoSmart\Photo Printing\Uninstall.isu" -c"C:\Program Files\Hewlett-Packard\PhotoSmart\Photo Printing\hpiunPC.dll
MaxBlast 4-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{639858DD-4966-40F3-A706-7C838BCF3A2B}\Setup.exe"
Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700}
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office 2000 SR-1 Disque 2-->MsiExec.exe /I{0004040C-78E1-11D2-B60F-006097C998E7}
Microsoft Office 2000 SR-1 Premium-->MsiExec.exe /I{0000040C-78E1-11D2-B60F-006097C998E7}
Microsoft PhotoDraw 2000 Version 2-->MsiExec.exe /I{3C5EA394-1036-11D2-A2CB-00C04F72F31D}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565)-->"C:\WINDOWS\$NtUninstallKB911565$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB928090)-->"C:\WINDOWS\ie7updates\KB928090-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB929969)-->"C:\WINDOWS\ie7updates\KB929969\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB931768)-->"C:\WINDOWS\ie7updates\KB931768-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB933566)-->"C:\WINDOWS\ie7updates\KB933566-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB937143)-->"C:\WINDOWS\ie7updates\KB937143-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB939653)-->"C:\WINDOWS\ie7updates\KB939653-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)-->"C:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB961260)-->"C:\WINDOWS\ie7updates\KB961260-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376)-->"C:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
Morgan Stream Switcher-->"C:\Program Files\Morgan\mmswitch\uninst.exe"
Mozilla Firefox (3.0.1)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSN-->C:\Program Files\MSN\MsnInstaller\msninst.exe /Action:ARP
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
Nero 6 Ultra Edition-->C:\Program Files\Ahead\nero\uninstall\UNNERO.exe /UNINSTALL
Nikon View 5-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AAB84E83-C8DF-4752-9DFC-2E2A48EE5E9F}\setup.exe" UNINSTALL
Nokia Connectivity Cable Driver-->MsiExec.exe /X{E4DD8B33-6F9B-41C5-96FF-5DBF27ED23E7}
Nokia PC Connectivity Solution-->MsiExec.exe /I{588AA47B-9115-44D3-B2E5-4F10BC659D6C}
Nokia PC Suite-->MsiExec.exe /I{77296E63-8C19-462B-ABA1-F510750A8C51}
NTI Backup NOW! 4-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{385979FE-DC4F-4140-8EAD-A59625000D72} /l1036 BUN4
NTI CD & DVD-Maker-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2} /l1036 CDM7
NTI HomeVideo-Maker-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B8A6F713-D72D-47AD-A92D-B5C0E13F98C1}\setup.exe" -l0x40c
NVIDIA Drivers-->C:\WINDOWS\system32\nvudisp.exe UninstallGUI
OpenOffice.org Installer 1.0-->MsiExec.exe /X{3A2AF807-9F9F-43C9-A24A-17B617238B74}
Outil de mise à jour Google-->"C:\Program Files\Google\Google Updater\GoogleUpdater.exe" -uninstall
Outil de publication 1v7-->C:\WINDOWS\system32\regsvr32 /u /s "C:\WINDOWS\cache\YDropperFR.dll"
Pinnacle PCTV-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3C02ED4F-46B0-4E9E-87F7-47AEBA4031C8}\Setup.exe" -l0x40c -L0x40c UNINSTALL
Pinnacle TRex-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9313E9A6-03DF-11D5-88F8-005004361016}\setup.exe" -l0x40c UNINSTALL
PowerDirector Express-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EDE721EC-870A-11D8-9D75-000129760D75}\setup.exe" -uninstall
PowerDVD-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}\setup.exe" -uninstall
PowerProducer-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B7A0CE06-068E-11D6-97FD-0050BACBF861}\setup.exe" -uninstall
QuickTime-->MsiExec.exe /I{1838C5A2-AB32-4145-85C1-BB9B8DFA24CD}
Reality Fusion VarietyPack-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Intel\Createshare2\program\Reality Fusion VarietyPack\Uninst.isu"
RealPlayer-->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
Realtek AC'97 Audio-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FB08F381-6533-4108-B7DD-039E11FBC27E}\setup.exe" -l0x40c REMOVE -removeonly
Safari-->MsiExec.exe /I{C9D96682-5A4D-45FA-BA3E-DDCB2B0CB868}
Samsung USB Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{88C023FB-E7F6-4415-ACEF-82372B8A05A8}\Setup.exe"
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Spyware Doctor 6.0-->C:\Program Files\Spyware Doctor\unins000.exe /LOG
StylORImage-->MsiExec.exe /I{E96D5415-7D76-4115-A7F4-3C0108BF0D09}
Téléchargement PHOTOWAYS 3.1.0-->"C:\Program Files\Téléchargement PHOTOWAYS\uninstall.exe"
Uniblue RegistryBooster 2009-->"C:\Documents and Settings\All Users\Application Data\{B46E1EF5-0B37-4DB4-A4E2-9F2B41036185}\Uniblue RegistryBooster.exe" REMOVE=TRUE MODIFY=FALSE
Uniblue RegistryBooster 2009-->C:\Documents and Settings\All Users\Application Data\{B46E1EF5-0B37-4DB4-A4E2-9F2B41036185}\Uniblue RegistryBooster.exe
VD Codec Pack 1.6-->C:\Program Files\VDCodecPack1.6\uninst.exe
VSO CopyToDVD 4-->"C:\Program Files\VSO\unins000.exe"
Windows Driver Package - Nokia Modem (04/06/2006 6.8.0.17)-->C:\PROGRA~1\DIFX\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\nokbtmdm_7F91C37896B530901B0665F9EF32E19FF06F5687\nokbtmdm.inf
Windows Genuine Advantage v1.3.0254.0-->MsiExec.exe /I{63569CE9-FA00-469C-AF5C-E5D4D93ACF91}
Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Live installer-->MsiExec.exe /X{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}
Windows Live Messenger-->MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
XviD MPEG-4 Video Codec-->"C:\Program Files\XviD\unins000.exe"

======Security center information======

AV: avast! antivirus 4.8.1335 [VPS 090305-0]

System event log

Computer Name: ACER-73356C3771
Event Code: 32
Message: L'assemblage dépendant Microsoft.VC80.MFCLOC ne peut pas être trouvé. La dernière erreur était L'assemblage référencé n'est pas installé sur votre système.


Record Number: 356331
Source Name: SideBySide
Time Written: 20090304194638.000000+060
Event Type: erreur
User:

Computer Name: ACER-73356C3771
Event Code: 59
Message: Generate Activation Context a échoué pour C:\Program Files\IncrediMail\bin\MFC80U.DLL.
Message d'erreur de référence : Opération réussie.
.

Record Number: 356330
Source Name: SideBySide
Time Written: 20090304194638.000000+060
Event Type: erreur
User:

Computer Name: ACER-73356C3771
Event Code: 59
Message: Resolve Partial Assembly a échoué pour Microsoft.VC80.MFCLOC.
Message d'erreur de référence : L'assemblage référencé n'est pas installé sur votre système.
.

Record Number: 356329
Source Name: SideBySide
Time Written: 20090304194638.000000+060
Event Type: erreur
User:

Computer Name: ACER-73356C3771
Event Code: 32
Message: L'assemblage dépendant Microsoft.VC80.MFCLOC ne peut pas être trouvé. La dernière erreur était L'assemblage référencé n'est pas installé sur votre système.


Record Number: 356328
Source Name: SideBySide
Time Written: 20090304194638.000000+060
Event Type: erreur
User:

Computer Name: ACER-73356C3771
Event Code: 59
Message: Generate Activation Context a échoué pour C:\Program Files\IncrediMail\bin\MFC80U.DLL.
Message d'erreur de référence : Opération réussie.
.

Record Number: 356327
Source Name: SideBySide
Time Written: 20090304194138.000000+060
Event Type: erreur
User:

Application event log

Computer Name: ACER-73356C3771
Event Code: 0
Message:
Record Number: 29429
Source Name: LiveUpdate Notice Service
Time Written: 20081223203750.000000+060
Event Type: Informations
User:

Computer Name: ACER-73356C3771
Event Code: 0
Message:
Record Number: 29428
Source Name: gusvc
Time Written: 20081223181942.000000+060
Event Type: Informations
User:

Computer Name: ACER-73356C3771
Event Code: 0
Message:
Record Number: 29427
Source Name: gusvc
Time Written: 20081223181742.000000+060
Event Type: Informations
User:

Computer Name: ACER-73356C3771
Event Code: 101
Message: Niveau d'information : success

L'exécution suivante a été planifiée pour intervenir approximativement à 8:48 PM.

Record Number: 29426
Source Name: Automatic LiveUpdate Scheduler
Time Written: 20081223170652.000000+060
Event Type: Informations
User: AUTORITE NT\SYSTEM

Computer Name: ACER-73356C3771
Event Code: 101
Message: Niveau d'information : success

LiveUpdate automatique a terminé.

Record Number: 29425
Source Name: Automatic LiveUpdate Scheduler
Time Written: 20081223170652.000000+060
Event Type: Informations
User: AUTORITE NT\SYSTEM

Security event log

Computer Name: ACER-73356C3771
Event Code: 680
Message: Tentative d'ouverture de session par : MICROSOFT_AUTHENTICATION_PACKAGE_V1_0

Compte d'ouverture de session : Magali

Station de travail source : ACER-73356C3771

Code erreur : 0x0


Record Number: 206655
Source Name: Security
Time Written: 20090227075429.000000+060
Event Type: Succès de l'audit
User: AUTORITE NT\SYSTEM

Computer Name: ACER-73356C3771
Event Code: 576
Message: Privilèges spéciaux assignés à la nouvelle session :

Utilisateur : SERVICE RÉSEAU

Domaine : AUTORITE NT

Id. de la session : (0x0,0x3E4)

Privilèges : SeAuditPrivilege
SeAssignPrimaryTokenPrivilege
SeChangeNotifyPrivilege

Record Number: 206654
Source Name: Security
Time Written: 20090227075318.000000+060
Event Type: Succès de l'audit
User: AUTORITE NT\SERVICE RÉSEAU

Computer Name: ACER-73356C3771
Event Code: 528
Message: Ouverture de session réseau réussie :

Utilisateur : SERVICE RÉSEAU

Domaine : AUTORITE NT

Id. de la session : (0x0,0x3E4)

Type de session : 5

Processus de session : Advapi

Package d'authentification : Negotiate

Station de travail :

GUID d'ouv. de session : -

Record Number: 206653
Source Name: Security
Time Written: 20090227075318.000000+060
Event Type: Succès de l'audit
User: AUTORITE NT\SERVICE RÉSEAU

Computer Name: ACER-73356C3771
Event Code: 576
Message: Privilèges spéciaux assignés à la nouvelle session :

Utilisateur : SERVICE RÉSEAU

Domaine : AUTORITE NT

Id. de la session : (0x0,0x3E4)

Privilèges : SeAuditPrivilege
SeAssignPrimaryTokenPrivilege
SeChangeNotifyPrivilege

Record Number: 206652
Source Name: Security
Time Written: 20090227075316.000000+060
Event Type: Succès de l'audit
User: AUTORITE NT\SERVICE RÉSEAU

Computer Name: ACER-73356C3771
Event Code: 528
Message: Ouverture de session réseau réussie :

Utilisateur : SERVICE RÉSEAU

Domaine : AUTORITE NT

Id. de la session : (0x0,0x3E4)

Type de session : 5

Processus de session : Advapi

Package d'authentification : Negotiate

Station de travail :

GUID d'ouv. de session : -

Record Number: 206651
Source Name: Security
Time Written: 20090227075316.000000+060
Event Type: Succès de l'audit
User: AUTORITE NT\SERVICE RÉSEAU

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\QuickTime\QTSystem\
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 28 Stepping 0, AuthenticAMD
"PROCESSOR_REVISION"=1c00
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"CLASSPATH"=.;C:\Program Files\Java\jre1.6.0_05\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre1.6.0_05\lib\ext\QTJava.zip

-----------------EOF-----------------
Merci encore pour ton aide !

 Ajouter un commentaire
Ajouter un commentaire
Réponse
+1
moins plus
jlpjlp 50297Messages postés 18 mai 2007Date d'inscription 28 mai 2012Dernière intervention 5 mars 2009 à 10:17
ok tu as une belle collection!

si tu paye pas spyware doctor vire le car inefficece

____________

tu as des clé usb infectés alrs branches les

_______________

Pour fusionner:

http://img.photobucket.com/albums/v666/sUBs/CFScript.gif

_______________

telecharge combofix:

http://download.bleepingcomputer.com/sUBs/ComboFix.exe
Sauvegarde le sur ton bureau et pas ailleurs !

_________________

Ferme tous tes navigateurs (donc copie ou imprime les instructions avant)

Crée un nouveau document texte : clic droit de souris sur le bureau > Nouveau > Document Texte, et copie dedans les lignes suivantes :




File::
C:\WINDOWS\system32\Machnm1.exe
C:\Program Files\Defenza
C:\WINDOWS\system32\gjgsys.dll
C:\WINDOWS\system32\,,,WW,,)WW.exe
C:\Program Files\Defenza
c:\documents and settings\magali\local settings\application data\mwcikogmm.exe
c:\documents and settings\magali\local settings\application data\tsqoutr.exe
G:\AdobeR.exe
C:\Program Files\Boonty\BoontyBox\BoontyBox.exe
C:\Program Files\Boonty
Registry::
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BDF6E57E-7330-40CB-8363-D82E9BFF223B}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Ghost Relay"=-
"PCDAS"-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"BoontyBox"=-
"mwcikogmm"=-
"tsqoutr"=-
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{bf039934-6f50-11db-8f9d-00148542dce7}]





Enregistre ce fichier sous le nom CFscript


Fait un glisser/déposer de ce fichier CFscrïpt sur le fichier ComboFix.exe

Clique sur le fichier CFScript, maintient le doigt enfoncé et glisse la souris pour que l'icône du CFScript vienne recouvrir l'icône de Combofix. Relache la souris. Combofix va démarrer.

Une fenêtre bleue va apparaître: au message qui apparaît ( Type 1 to continue, or 2 to abort) , tape 1 puis valide.

Patiente le temps du scan.Le bureau va disparaître à plusieurs reprises: c'est normal!

Ne touche à rien tant que le scan n'est pas terminé.

Une fois le scan achevé, un rapport va s'afficher: poste son contenu.


Si le fichier ne s'ouvre pas, il se trouve ici > C:\ComboFix.txt

____________________________


puis


scan avec
MalwareByte's Anti-Malware après mise a jour, en mode normal et vire ce qui est trouvé et colle le rapport
(tu le gardera a la place de spyware doctor)
http://www.malekal.com/tutorial_MalwareBytes_AntiMalware.php­


puis


mettre à jour adobe reader
http://www.adobe.com/fr/products/reader/

Mettre a jour java:

Télécharge JavaRa.zip de Paul 'Prm753' McLain et Fred de Vries.
Décompresse le fichier sur ton bureau (clique droit > Extraire tout.)
Double-clique sur le répertoire JavaRa obtenu.
Puis double-clique sur le fichier JavaRa.exe (le .exe peut ne pas s'afficher)
Clique sur Search For Updates.
Sélectionne Update Using jucheck.exe puis clique sur Search.
Autorise le processus à se connecter s'il te le demande, clique sur Install et suis les instructions d'installation. Cela prendra quelques minutes.
Quand l'installation est terminée, revient à l'écran de JavaRa et clique sur Remove Older Versions.
Clique sur Oui pour confirmer. L'outil va travailler, clique ensuite sur Ok, puis une deuxième fois sur Ok.
Un rapport va s'ouvrir, copie-colle le dans ta prochaine réponse.
Note : le rapport se trouve aussi à la racine de la partition système, en général C:\ sous le nom JavaRa.log
(c:\JavaRa.log)
Ferme l'application.

si cela ne fonctionne pas

http://www.java.com/fr/download/windows_manual.jsp?locale=fr&host=www.java.com:80

tu peux désinstaller les vieilles versions.

___________________________



colle un scan en ligne avec un des suivants:

bitdefender en ligne :
http://www.bitdefender.fr/scan_fr/scan8/ie.html


Panda en ligne :
http://www.pandasoftware.fr/Activescan/Activescan.html

 Ajouter un commentaire
Ajouter un commentaire
Réponse
+0
moins plus
jlpjlp 50297Messages postés 18 mai 2007Date d'inscription 28 mai 2012Dernière intervention 5 mars 2009 à 10:28
faire le message 4

 Ajouter un commentaire
Ajouter un commentaire
Réponse
+0
moins plus
thaounet 92Messages postés 5 mars 2009Date d'inscription 15 septembre 2010Dernière intervention 5 mars 2009 à 10:53
Voici le compte-rendu de ComboFix :

ComboFix 09-03-04.01 - Magali 2009-03-05 10:48:35.2 - [color=red][b]FAT32/b/colorx86
Microsoft Windows XP Édition familiale 5.1.2600.3.1252.1.1036.18.511.224 [GMT 1:00]
Lancé depuis: c:\documents and settings\Magali\Bureau\ComboFix.exe
Commutateurs utilisés :: c:\documents and settings\Magali\Bureau\CFscript.txt
AV: avast! antivirus 4.8.1335 [VPS 090305-0] *On-access scanning disabled* (Updated)
* Un nouveau point de restauration a été créé

FILE ::
c:\documents and settings\magali\local settings\application data\mwcikogmm.exe
c:\documents and settings\magali\local settings\application data\tsqoutr.exe
c:\program files\Boonty
c:\program files\Boonty\BoontyBox\BoontyBox.exe
c:\program files\Defenza
c:\windows\system32\,,,WW,,)WW.exe
c:\windows\system32\gjgsys.dll
c:\windows\system32\Machnm1.exe
G:\AdobeR.exe
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\gjgsys.dll
c:\windows\system32\Machnm1.exe

.
((((((((((((((((((((((((((((( Fichiers créés du 2009-02-05 au 2009-03-05 ))))))))))))))))))))))))))))))))))))
.

2094-03-10 14:19 . 2008-08-08 07:39 3,120 --a------ c:\windows\MF_C421.lfa
2094-03-10 14:19 . 2008-08-08 07:39 3,120 --a------ c:\windows\MF_C420.lfa
2009-03-05 09:37 . 2009-03-05 09:37 <REP> d-------- C:\rsit
2009-03-05 08:41 . 2009-03-05 08:41 <REP> d--hs---- C:\FOUND.003
2009-03-05 02:36 . 2009-03-05 02:36 <REP> d-------- c:\program files\CCleaner
2009-03-05 01:57 . 2009-03-05 01:57 <REP> d-------- c:\program files\Uniblue
2009-03-05 01:57 . 2009-03-05 01:58 <REP> d-------- c:\documents and settings\Magali\Application Data\Uniblue
2009-03-05 01:56 . 2009-03-05 01:57 <REP> d--h----- c:\documents and settings\All Users\Application Data\{B46E1EF5-0B37-4DB4-A4E2-9F2B41036185}
2009-03-05 01:51 . 2009-03-05 01:51 3,120 --a------ c:\windows\system32\118290.54
2009-03-05 01:51 . 2009-03-05 01:51 3,120 --a------ c:\windows\118294.78
2009-03-05 01:48 . 2009-03-05 01:48 <REP> d-------- c:\program files\Defenza
2009-03-05 01:48 . 2005-09-25 16:37 5,632 --a------ c:\windows\system32\Machnm64.sys
2009-03-05 01:48 . 2003-08-13 00:27 2,304 --a------ c:\windows\system32\Machnm32.sys
2009-03-04 21:53 . 2009-03-04 21:53 <REP> d-------- c:\temp\google
2009-03-04 20:55 . 2009-03-04 20:55 <REP> d-------- c:\documents and settings\All Users\Application Data\TEMP
2009-03-04 20:51 . 2009-03-04 20:51 <REP> d-------- c:\documents and settings\All Users\Application Data\Google Updater
2009-02-28 14:51 . 2009-02-28 14:51 <REP> d--hs---- C:\FOUND.002

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-01-16 20:15 3,594,752 ----a-w c:\windows\system32\dllcache\mshtml.dll
2008-12-24 08:43 158,192 ------w c:\windows\system32\pxwma.dll
2008-12-21 14:51 348,160 ----a-w c:\windows\system32\msvcr71.dll
2008-12-21 07:07 410,984 ----a-w c:\windows\system32\deploytk.dll
2008-12-20 22:47 826,368 ----a-w c:\windows\system32\wininet.dll
2008-12-20 22:47 826,368 ----a-w c:\windows\system32\dllcache\wininet.dll
2008-12-20 22:47 671,232 ----a-w c:\windows\system32\dllcache\mstime.dll
2008-12-20 22:47 477,696 ----a-w c:\windows\system32\dllcache\mshtmled.dll
2008-12-20 22:47 44,544 ----a-w c:\windows\system32\dllcache\pngfilt.dll
2008-12-20 22:47 233,472 ----a-w c:\windows\system32\dllcache\webcheck.dll
2008-12-20 22:47 193,024 ----a-w c:\windows\system32\dllcache\msrating.dll
2008-12-20 22:47 105,984 ----a-w c:\windows\system32\dllcache\url.dll
2008-12-20 22:47 102,912 ----a-w c:\windows\system32\dllcache\occache.dll
2008-12-20 22:47 1,160,192 ----a-w c:\windows\system32\dllcache\urlmon.dll
2008-12-19 09:11 70,656 ----a-w c:\windows\system32\dllcache\ie4uinit.exe
2008-12-19 09:10 13,824 ------w c:\windows\system32\dllcache\ieudinit.exe
2008-12-19 05:25 634,024 ----a-w c:\windows\system32\dllcache\iexplore.exe
2008-12-19 05:23 161,792 ----a-w c:\windows\system32\dllcache\ieakui.dll
2008-12-11 10:57 333,952 ------w c:\windows\system32\dllcache\srv.sys
2008-06-17 11:43 1,271,557 ----a-w c:\program files\wrar371fr.exe
2008-06-08 16:29 672,146 ----a-w c:\program files\SpywareSecure_setup.exe
2008-05-15 20:58 2,048,604 ----a-w c:\program files\PhotoWays.exe
2008-05-15 07:04 23,060,136 ----a-w c:\program files\setupfreavast.exe
2008-05-01 13:20 2,402,832 ----a-w c:\program files\WLinstaller.exe
2007-11-22 00:35 10,549,568 ----a-w c:\program files\copytodvd4_setup_403acheté.exe
2007-11-22 00:21 47,360 ----a-w c:\documents and settings\Magali\Application Data\pcouffin.sys
2007-11-19 19:48 3,919 ----a-w c:\program files\Nero_Burning_ROM_Ultra_Edition_v6[1].6.0.1.zip
2007-09-08 08:25 51,418,424 ----a-w c:\program files\iTunesSetup.exe
2007-07-30 20:50 4,212 ----a-w c:\program files\ReadMe.txt
2007-07-30 20:49 498,936 ----a-w c:\program files\NISDwnld.exe
2007-03-21 16:38 484,928 ----a-w c:\program files\magentic_install.exe
2007-03-04 16:02 877,976 ----a-w c:\program files\7zip.exe
2007-02-01 21:31 14,994,392 ----a-w c:\program files\GoogleEarthWin.exe
2007-01-13 13:20 1,104,734 ----a-w c:\program files\dvdshrink_3.2.0.16_fr.zip
2007-01-11 09:51 2,916,417 ----a-w c:\program files\Setup_EComo_v1.00j.exe
2006-12-21 22:00 19,666,504 ----a-w c:\program files\QuickTimeInstaller.exe
2006-12-07 07:37 23,375,521 ----a-w c:\program files\fotofacil2.exe
2006-09-07 13:47 15,921,323 ----a-w c:\program files\ps701up-f.exe
2006-07-11 18:12 11,981,422 ----a-w c:\program files\Gordian.Knot.Codec.Pack.1.9.Setup.exe
2006-02-12 15:57 774,144 ----a-w c:\program files\RngInterstitial.dll
2005-09-11 17:30 3,835,424 ----a-w c:\program files\mxblst4win.EXE
2005-09-11 16:48 526 ----a-w c:\program files\ACERBACKUPCDLog.TXT
2005-09-11 16:19 9,964,393 ----a-w c:\program files\nero_nero_6.6.0.16_language_pack_francais_francais_10297.exe
2005-09-11 16:13 34,235,626 ----a-w c:\program files\Nero-6.6.0.16.exe
2005-05-24 08:11 756,167 ----a-w c:\program files\lunbio15.exe
2005-05-06 20:14 885 ----a-w c:\program files\eula.txt
2005-02-19 11:40 1,661 ----a-w c:\program files\[u]0/u00851DB.key
2005-02-18 11:55 458 ----a-w c:\program files\file_id.diz
2005-02-18 11:48 2,322 ----a-w c:\program files\black.nfo
2006-07-11 18:13 56 --sh--r c:\windows\system32\A3B59919B6.sys
2008-04-14 03:34 12,288 --sh--w c:\windows\system32\regsvr32.exe
2008-04-14 03:33 413,696 --sha-w c:\windows\system32\msvcp60.dll
2008-09-03 12:41 32,768 --sha-w c:\windows\system32\config\systemprofile\Local Settings\Historique\History.IE5\MSHist012008090320080904\index.dat
.

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IncrediMail"="c:\program files\IncrediMail\bin\IncMail.exe" [2009-01-27 251264]
"NBJ"="c:\program files\Ahead\Nero BackItUp\NBJ.exe" [2005-07-14 1961984]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"Uniblue RegistryBooster 2009"="c:\program files\Uniblue\RegistryBooster\RegistryBooster.exe" [2008-08-26 2019624]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LaunchApp"="Alaunch" [X]
"ntiMUI"="c:\program files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe" [2005-05-11 45056]
"IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2004-08-05 208952]
"MSPY2002"="c:\windows\system32\IME\PINTLGNT\ImScInst.exe" [2004-08-05 59392]
"PHIME2002ASync"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-05 455168]
"PHIME2002A"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-05 455168]
"eRecoveryService"="c:\program files\Acer\eRecovery\Monitor.exe" [2005-06-20 352256]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2008-12-21 136600]
"AspireService"="c:\program files\Acer\Acer eMode Management\AspireService.exe" [2005-06-04 110592]
"MediaSync"="c:\program files\Acer\Acer eConsole\MediaSync.exe" [2005-06-01 421888]
"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"Share-to-Web Namespace Daemon"="c:\program files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe" [2001-07-03 57344]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2005-02-24 5537792]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2005-02-24 86016]
"Symantec PIF AlertEng"="c:\program files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" [2007-03-12 517768]
"HPDJ Taskbar Utility"="c:\windows\system32\spool\drivers\w32x86\3\hpztsb04.exe" [2001-10-15 196608]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2004-06-28 32768]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-02-05 81000]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2008-03-28 413696]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2008-03-30 267048]
"Motive SmartBridge"="c:\progra~1\CLUB-I~1\LECOMP~1\SMARTB~1\MotiveSB.exe" [2005-08-24 438359]
"PCSuiteTrayApplication"="c:\progra~1\Nokia\NOKIAP~1\LAUNCH~1.EXE" [2006-04-26 237568]
"TkBellExe"="c:\program files\Fichiers communs\Real\Update_OB\realsched.exe" [2008-12-21 185872]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792]
"PCDAS"="c:\program files\Defenza\pcd-as.exe" [2006-12-15 1359872]
"SoundMan"="SOUNDMAN.EXE" [2005-06-08 c:\windows\SOUNDMAN.EXE]
"AGRSMMSG"="AGRSMMSG.exe" [2004-06-29 c:\windows\AGRSMMSG.exe]
"VTTimer"="VTTimer.exe" [2005-05-13 c:\windows\system32\VTTimer.exe]
"VTTrayp"="VTtrayp.exe" [2005-05-13 c:\windows\system32\VTTrayp.exe]
"nwiz"="nwiz.exe" [2005-02-24 c:\windows\system32\nwiz.exe]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2007-10-18 5724184]

c:\documents and settings\Magali\Menu D‚marrer\Programmes\D‚marrage\
Registration-PCTV.lnk - c:\program files\Pinnacle\Pinnacle PCTV\ERegister\RegTool.exe [2005-09-11 245760]

c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
Microsoft Office.lnk - c:\program files\Microsoft Office\Office\OSA9.EXE [2000-01-21 65588]
NkvMon.exe.lnk - c:\program files\Nikon\NkView5\NkvMon.exe [2005-12-21 233472]
FotoStation Easy AutoLaunch.lnk - c:\program files\FotoStation Easy\FotoStation Easy AutoLaunch.exe [2005-12-21 49152]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"vidc.DIV3"= DivXc32.dll
"vidc.DIV4"= DivXc32f.dll
"msacm.divxa32"= DivXa32.acm
"VIDC.HFYU"= huffyuv.dll
"vidc.ffds"= c:\program files\ffdshow\ffdshow.ax
"VIDC.I420"= c:\windows\system32\i263_32.drv
"vidc.I263"= I263_32.drv

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Messenger\\MSMSGS.EXE"=
"c:\\Program Files\\Pinnacle\\Pinnacle PCTV\\TeleText\\WebServer.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\WINDOWS\\System32\\dpvsetup.exe"=
"c:\\Program Files\\IncrediMail\\bin\\ImApp.exe"=
"c:\\Program Files\\IncrediMail\\bin\\IncMail.exe"=
"c:\\Program Files\\IncrediMail\\bin\\ImpCnt.exe"=
"c:\\Program Files\\Magentic\\bin\\Magentic.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\adslTV\\adsltv.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"c:\\Program Files\\Real\\RealPlayer\\RealPlay.exe"=

R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2008-05-15 114768]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2008-05-15 20560]
R3 pctvvbi;PCTVVBI;c:\windows\system32\drivers\pctvvbi.sys [2005-09-11 6400]
S3 ICAM3NT5;Caméra vidéo Intel USB III;c:\windows\system32\drivers\Icam3.sys [2005-10-16 141056]
.
Contenu du dossier 'Tâches planifiées'

2009-03-04 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-04-11 17:57]

2009-03-05 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-03-04 20:51]
.
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://portail.club-internet.fr/
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
uInternet Settings,ProxyOverride = 127.0.0.1
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Ouvrir l'image dans &Microsoft PhotoDraw - c:\progra~1\MICROS~2\Office\1036\phdintl.dll/phdContext.htm
DPF: Microsoft XML Parser for Java - file:///C:/WINDOWS/Java/classes/xmldso.cab
DPF: {B9907873-6560-4A36-B76B-9DADE84A7F55} - hxxps://www.fnacmusic.com/telechargementFnacmusic/FnacmusicDnl.CAB
DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} - hxxp://game06.zylom.com/activex/zylomgamesplayer.cab
FF - ProfilePath - c:\documents and settings\Magali\Application Data\Mozilla\Firefox\Profiles\tfixdzmy.default\
FF - prefs.js: browser.search.defaulturl - hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=
FF - prefs.js: browser.search.selectedEngine - MyStart Rechercher
FF - prefs.js: browser.startup.homepage - hxxp://mystart.incredimail.com/
FF - prefs.js: keyword.URL - hxxp://mystart.incredimail.com/?loc=ff_address_bar&search=
FF - plugin: c:\program files\Google\Google Updater\2.4.1508.6312\npCIDetect13.dll
FF - plugin: c:\program files\Real\RealArcade\Plugins\Mozilla\npracplug.dll

---- PARAMETRES FIREFOX ----
FF - user.js: yahoo.homepage.dontask - true.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-03-05 10:50:18
Windows 5.1.2600 Service Pack 3 FAT NTAPI

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...

Scan terminé avec succès
Fichiers cachés: 0

**************************************************************************
.
Heure de fin: 2009-03-05 10:51:13
ComboFix-quarantined-files.txt 2009-03-05 09:51:12
ComboFix2.txt 2009-03-05 09:44:44

Avant-CF: 61 702 176 768 octets libres
Après-CF: 61,690,576,896 octets libres

224 --- E O F --- 2009-03-05 06:57:32

 Ajouter un commentaire
Ajouter un commentaire
Réponse
+1
moins plus
jlpjlp 50297Messages postés 18 mai 2007Date d'inscription 28 mai 2012Dernière intervention 5 mars 2009 à 11:12
refais avec ceci puis fais la suite donnée


Ferme tous tes navigateurs (donc copie ou imprime les instructions avant)

Crée un nouveau document texte : clic droit de souris sur le bureau > Nouveau > Document Texte, et copie dedans les lignes suivantes :




File::
c:\windows\system32\118290.54
c:\windows\118294.78
c:\program files\Defenza
c:\windows\system32\Machnm64.sys
c:\windows\system32\Machnm32.sys




Enregistre ce fichier sous le nom CFscript


Fait un glisser/déposer de ce fichier CFscrïpt sur le fichier ComboFix.exe

Clique sur le fichier CFScript, maintient le doigt enfoncé et glisse la souris pour que l'icône du CFScript vienne recouvrir l'icône de Combofix. Relache la souris. Combofix va démarrer.

Une fenêtre bleue va apparaître: au message qui apparaît ( Type 1 to continue, or 2 to abort) , tape 1 puis valide.

Patiente le temps du scan.Le bureau va disparaître à plusieurs reprises: c'est normal!

Ne touche à rien tant que le scan n'est pas terminé.

Une fois le scan achevé, un rapport va s'afficher: poste son contenu.


Si le fichier ne s'ouvre pas, il se trouve ici > C:\ComboFix.txt

 Ajouter un commentaire
Ajouter un commentaire
Réponse
+0
moins plus
thaounet 92Messages postés 5 mars 2009Date d'inscription 15 septembre 2010Dernière intervention 5 mars 2009 à 11:16
Voici le rapport de MalwareByte's Anti- Malware :


Malwarebytes' Anti-Malware 1.34
Version de la base de données: 1820
Windows 5.1.2600 Service Pack 3

05/03/2009 11:13:39
mbam-log-2009-03-05 (11-13-39).txt

Type de recherche: Examen complet (A:\|C:\|D:\|E:\|F:\|H:\|I:\|J:\|K:\|)
Eléments examinés: 142914
Temps écoulé: 15 minute(s), 30 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 4
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 3

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\ho4ydomoj (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ho4ydomoj.1 (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{685edf73-6bf2-45ea-a1c1-1c4c0c044307} (Rogue.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{9efb101a-ea9a-4065-b8a4-8963fc57c446} (Rogue.FakeAlert) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
C:\WINDOWS\system32\wextract.exe (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\$NtServicePackUninstall$\wextract.exe (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\ServicePackFiles\i386\wextract.exe (Trojan.Vundo) -> Quarantined and deleted successfully.

 Ajouter un commentaire
Ajouter un commentaire
Réponse
+1
moins plus
jlpjlp 50297Messages postés 18 mai 2007Date d'inscription 28 mai 2012Dernière intervention 5 mars 2009 à 11:20
mettre à jour adobe reader
http://www.adobe.com/fr/products/reader/

Mettre a jour java:

Télécharge JavaRa.zip de Paul 'Prm753' McLain et Fred de Vries.
Décompresse le fichier sur ton bureau (clique droit > Extraire tout.)
Double-clique sur le répertoire JavaRa obtenu.
Puis double-clique sur le fichier JavaRa.exe (le .exe peut ne pas s'afficher)
Clique sur Search For Updates.
Sélectionne Update Using jucheck.exe puis clique sur Search.
Autorise le processus à se connecter s'il te le demande, clique sur Install et suis les instructions d'installation. Cela prendra quelques minutes.
Quand l'installation est terminée, revient à l'écran de JavaRa et clique sur Remove Older Versions.
Clique sur Oui pour confirmer. L'outil va travailler, clique ensuite sur Ok, puis une deuxième fois sur Ok.
Un rapport va s'ouvrir, copie-colle le dans ta prochaine réponse.
Note : le rapport se trouve aussi à la racine de la partition système, en général C:\ sous le nom JavaRa.log
(c:\JavaRa.log)
Ferme l'application.

si cela ne fonctionne pas

http://www.java.com/fr/download/windows_manual.jsp?locale=fr&host=www.java.com:80

tu peux désinstaller les vieilles versions.

___________________________
Refais avec ceci puis fais la suite donnée


Ferme tous tes navigateurs (donc copie ou imprime les instructions avant)

Crée un nouveau document texte : clic droit de souris sur le bureau > Nouveau > Document Texte, et copie dedans les lignes suivantes :




File::
c:\windows\system32\118290.54
c:\windows\118294.78
c:\program files\Defenza
c:\windows\system32\Machnm64.sys
c:\windows\system32\Machnm32.sys




Enregistre ce fichier sous le nom CFscript


Fait un glisser/déposer de ce fichier CFscrïpt sur le fichier ComboFix.exe

Clique sur le fichier CFScript, maintient le doigt enfoncé et glisse la souris pour que l'icône du CFScript vienne recouvrir l'icône de Combofix. Relache la souris. Combofix va démarrer.

Une fenêtre bleue va apparaître: au message qui apparaît ( Type 1 to continue, or 2 to abort) , tape 1 puis valide.

Patiente le temps du scan.Le bureau va disparaître à plusieurs reprises: c'est normal!

Ne touche à rien tant que le scan n'est pas terminé.

Une fois le scan achevé, un rapport va s'afficher: poste son contenu.


Si le fichier ne s'ouvre pas, il se trouve ici > C:\ComboFix.txt

____________________________


colle un scan en ligne avec un des suivants:

bitdefender en ligne :
http://www.bitdefender.fr/scan_fr/scan8/ie.html


Panda en ligne :
http://www.pandasoftware.fr/Activescan/Activescan.html

 Ajouter un commentaire
Ajouter un commentaire
Réponse
+0
moins plus
thaounet 92Messages postés 5 mars 2009Date d'inscription 15 septembre 2010Dernière intervention 5 mars 2009 à 11:33
Voici le rapport de Java :

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\jre.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\JRE 1.1
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaSoft.JavaBeansBridge
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaSoft.JavaBeansBridge.1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\javaw.Exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\JRE 1.2
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\JRE 1.3
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0005-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0006-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0007-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0008-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0009-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0010-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0011-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0012-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0013-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0014-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0015-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0000-0016-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.140
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.140_01
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.140_02
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.140_03
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.140_04
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.140_05
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.140_06
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.140_07
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.140_08
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.140_09
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.140_10
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.140_11
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.140_12
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.140_13
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.140_14
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.140_15
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.140_16
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.0
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.0_01
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.0_02
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.0_03
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.0_04
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.0_05
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.0_06
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.0_07
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.0_08
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.0_09
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.0_10
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.0_11
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.0_12
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.0_13
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.0_14
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.0_15
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.0_16
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.0
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.0_01
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.0_02
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.0_03
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.0_04
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.0_05
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.0_06
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.0_07
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.0_08
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.0_09
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.0_10
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.0_11
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.0_12
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.0_13
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.0_14
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.0_15
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.0_16
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0000-0000-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0000-0001-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0000-0002-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0000-0004-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0000-0005-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0000-0006-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0000-0007-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0000-0008-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0000-0009-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0000-0010-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0000-0011-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0000-0012-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0000-0013-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0000-0014-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0000-0015-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0000-0016-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{F4588301-0A06-11D6-A761-00B0D079AF64}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Java Web Start
HKEY_CURRENT_USER\Software\JavaSoft\Java2D\1.5.0
HKEY_CURRENT_USER\Software\JavaSoft\Java2D\1.5.0_01
HKEY_CURRENT_USER\Software\JavaSoft\Java2D\1.5.0_02
HKEY_CURRENT_USER\Software\JavaSoft\Java2D\1.5.0_03
HKEY_CURRENT_USER\Software\JavaSoft\Java2D\1.5.0_04
HKEY_CURRENT_USER\Software\JavaSoft\Java2D\1.5.0_05
HKEY_CURRENT_USER\Software\JavaSoft\Java2D\1.5.0_06
HKEY_CURRENT_USER\Software\JavaSoft\Java2D\1.5.0_07
HKEY_CURRENT_USER\Software\JavaSoft\Java2D\1.5.0_08
HKEY_CURRENT_USER\Software\JavaSoft\Java2D\1.5.0_09
HKEY_CURRENT_USER\Software\JavaSoft\Java2D\1.5.0_10
HKEY_CURRENT_USER\Software\JavaSoft\Java2D\1.5.0_11
HKEY_CURRENT_USER\Software\JavaSoft\Java2D\1.5.0_12
HKEY_CURRENT_USER\Software\JavaSoft\Java2D\1.5.0_13
HKEY_CURRENT_USER\Software\JavaSoft\Java2D\1.5.0_14
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D510000
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D510001
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D510002
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D510003
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D510004
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D510005
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D510006
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D510007
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D510008
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D510009
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D511000
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D511001
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D511002
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D511003
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D511004
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D510000
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D510001
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D510002
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D510003
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D510004
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D510005
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D510006
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D510007
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D510008
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D510009
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D511000
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D511001
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D511002
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D511003
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D511004
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D510000
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D510001
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D510002
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D510003
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D510004
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D510005
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D510006
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D510007
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D510008
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D510009
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D511000
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D511001
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D511002
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D511003
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D511004
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.150
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.150_01
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.150_02
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.150_03
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.150_04
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.150_05
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.150_06
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.150_07
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.150_08
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.150_09
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.150_10
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.150_11
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.150_12
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.150_13
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.150_14
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaWebStart.isInstalled.1.5.0.0
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.5.0
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.5.0_01
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.5.0_02
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.5.0_03
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.5.0_04
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.5.0_05
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.5.0_06
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.5.0_07
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.5.0_08
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.5.0_09
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.5.0_10
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.5.0_11
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.5.0_12
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.5.0_13
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.5.0_14
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.5
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.5.0
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.5.0_01
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.5.0_02
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.5.0_03
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.5.0_04
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.5.0_05
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.5.0_06
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.5.0_07
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.5.0_08
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.5.0_09
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.5.0_10
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.5.0_11
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.5.0_12
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.5.0_13
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.5.0_14
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0015-0000-0013-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D510000
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D510001
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D510002
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D510003
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D510004
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D510005
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D510006
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D510007
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D510008
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D510009
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D511000
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D511001
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D511002
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D511003
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D511004
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D510000
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D510001
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D510002
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D510003
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D510004
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D510005
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D510006
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D510007
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D510008
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D510009
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D511000
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D511001
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D511002
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D511003
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D511004
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0150000}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0150010}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0150020}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0150030}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0150040}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0150050}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0150060}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0150070}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0150080}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0150090}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0150100}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0150110}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0150120}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0150130}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0150140}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBB}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBB}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBB}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBB}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBB}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBB}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBB}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBC}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBC}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBC}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBC}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBC}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBC}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBC}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D610000
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D610001
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D610002
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D610003
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D610004
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D610005
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D610006
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D610000
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D610001
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D610002
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D610003
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D610004
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D610005
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D610006
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610000
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610001
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610002
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610003
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610004
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610005
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610006
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.160
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.160_01
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.160_02
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.160_03
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.160_04
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.160_05
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.160_06
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.6.0
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.6.0_01
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.6.0_02
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.6.0_03
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.6.0_04
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.6.0_05
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.6.0_06
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.6.0
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.6.0_01
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.6.0_02
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.6.0_03
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.6.0_04
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.6.0_05
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.6.0_06
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610000
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610001
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610002
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610003
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610004
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610005
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610006
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D610000
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D610001
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D610002
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D610003
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D610004
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D610005
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACBB9B2318A96D117A58000B0D610006
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D610000
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D610001
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D610002
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D610003
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D610004
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D610005
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F842331866D117AB7000B0D610006
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0160000}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0160010}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0160020}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0160030}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0160040}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0160050}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248F0A8-6813-11D6-A77B-00B0D0160060}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7CF31609-270B-11D6-9445-000102308676}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{8B12D5A1-E544-11D6-9D1C-00010240CE95}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{AC1E4C93-C1E7-11D6-9D10-00010240CE95}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{CD0159C9-17FB-11D6-A76A-00B0D079AF64}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{082F1B07-797C-11D6-9CFB-00010240CE95}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{1666FA7C-CB5F-11D6-A78C-00B0D079AF64}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{6B2F032F-CC54-11D7-9D67-00010240CE95}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{78D082B3-ACEE-11D7-9D64-00010240CE95}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{ACD27BF3-7CDC-11D7-9D4D-00010240CE95}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C4B03AEB-33D3-11D7-9D37-00010240CE95}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{CA532E73-1BB7-11D8-9D6A-00010240CE95}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{EFCE5837-FC21-11D6-9D24-00010240CE95}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7148F0A8-6813-11D6-A77B-00B0D0142000}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7148F0A8-6813-11D6-A77B-00B0D0142010}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7148F0A8-6813-11D6-A77B-00B0D0142020}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7148F0A8-6813-11D6-A77B-00B0D0142030}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7148F0A8-6813-11D6-A77B-00B0D0142040}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7148F0A8-6813-11D6-A77B-00B0D0142050}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7148F0A8-6813-11D6-A77B-00B0D0142060}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7148F0A8-6813-11D6-A77B-00B0D0142070}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7148F0A8-6813-11D6-A77B-00B0D0142080}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7148F0A8-6813-11D6-A77B-00B0D0142090}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7148F0A8-6813-11D6-A77B-00B0D0142100}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7148F0A8-6813-11D6-A77B-00B0D0142110}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7148F0A8-6813-11D6-A77B-00B0D0142120}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7148F0A8-6813-11D6-A77B-00B0D0142130}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7148F0A8-6813-11D6-A77B-00B0D0142140}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7148F0A8-6813-11D6-A77B-00B0D0142150}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7148F0A8-6813-11D6-A77B-00B0D0142160}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBB}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBB}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBB}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBB}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBB}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBB}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBB}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBB}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBB}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBB}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBB}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBB}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBB}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBB}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBB}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBB}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBB}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBB}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBB}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBB}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBB}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBB}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBB}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBB}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBB}
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F841731866D117AB7000B0D410200
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F841731866D117AB7000B0D410201
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F841731866D117AB7000B0D410202
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F841731866D117AB7000B0D410203
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F841731866D117AB7000B0D410204
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F841731866D117AB7000B0D410205
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F841731866D117AB7000B0D410206
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F841731866D117AB7000B0D410207
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F841731866D117AB7000B0D410208
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F841731866D117AB7000B0D410209
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F841731866D117AB7000B0D411200
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F841731866D117AB7000B0D411201
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F841731866D117AB7000B0D411202
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F841731866D117AB7000B0D411203
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F841731866D117AB7000B0D411204
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F841731866D117AB7000B0D411205
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\8A0F841731866D117AB7000B0D411206
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F841731866D117AB7000B0D410200
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F841731866D117AB7000B0D410201
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F841731866D117AB7000B0D410202
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F841731866D117AB7000B0D410203
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F841731866D117AB7000B0D410204
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F841731866D117AB7000B0D410205
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F841731866D117AB7000B0D410206
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F841731866D117AB7000B0D410207
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F841731866D117AB7000B0D410208
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F841731866D117AB7000B0D410209
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F841731866D117AB7000B0D411201
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F841731866D117AB7000B0D411202
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F841731866D117AB7000B0D411203
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F841731866D117AB7000B0D411204
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F841731866D117AB7000B0D411205
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8A0F841731866D117AB7000B0D411206
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.141
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.141_01
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.141_02
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.141_03
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.141_04
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.141_05
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.141_06
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.141_07
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.142
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.142_01
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.142_02
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.142_03
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.142_04
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.142_05
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.142_06
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.142_07
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.142_08
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.142_09
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.142_10
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.142_11
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.142_12
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.142_13
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.142_14
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.142_15
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\JavaPlugin.142_16
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.1
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.1_01
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.1_02
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.1_03
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.1_04
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.1_05
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.1_06
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.1_07
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.2
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.2_01
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.2_02
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.2_03
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.2_04
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.2_05
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.2_06
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.2_07
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.2_08
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.2_09
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.2_10
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.2_11
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.2_12
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.2_13
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.2_14
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.2_15
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Plug-in\1.4.2_16
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.1
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.1
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.1_01
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.1_02
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.1_03
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.1_04
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.1_05
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.1_06
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.1_07
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.2
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.2_01
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.2_02
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.2_03
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.2_04
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.2_05
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.2_06
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.2_07
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.2_08
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.2_09
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.2_10
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.2_11
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.2_12
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.2_13
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.2_14
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.2_15
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.4.2_16
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.6_01
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.6_02
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.6_03
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.6_04
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.6_05
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Runtime Environment\1.6_06
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Web Start\1.4.2
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Web Start\1.4.2_01
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Web Start\1.4.2_02
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Web Start\1.4.2_03
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Web Start\1.4.2_04
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Web Start\1.4.2_05
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Web Start\1.4.2_06
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Web Start\1.4.2_07
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Web Start\1.4.2_08
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Web Start\1.4.2_09
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Web Start\1.4.2_10
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Web Start\1.4.2_11
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Web Start\1.4.2_12
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Web Start\1.4.2_13
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Web Start\1.4.2_14
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Web Start\1.4.2_15
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Web Start\1.4.2_16
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Web Start\1.5.0
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Web Start\1.5.0_01
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Web Start\1.5.0_02
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Web Start\1.5.0_03
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Web Start\1.5.0_04
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Web Start\1.5.0_05
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Web Start\1.5.0_06
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Web Start\1.5.0_07
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Web Start\1.5.0_08
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Web Start\1.5.0_09
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Web Start\1.5.0_10
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Web Start\1.5.0_11
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Web Start\1.5.0_12
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Web Start\1.5.0_13
HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft\Java Web Start\1.5.0_14
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0001-0000-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0001-0001-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0001-0002-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0001-0003-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0001-0004-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0001-0005-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0001-0006-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0001-0007-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0002-0002-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0002-0004-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0002-0007-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0002-0008-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0002-0009-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0002-0010-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0002-0011-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0002-0012-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0002-0013-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0002-0014-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0002-0015-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0014-0002-0016-ABCDEFFEDCBA}
HKEY_CURRENT_USER\Software\Classes\JavaPlugin.141
HKEY_CURRENT_USER\Software\Classes\JavaPlugin.141_01
HKEY_CURRENT_USER\Software\Classes\JavaPlugin.141_02
HKEY_CURRENT_USER\Software\Classes\JavaPlugin.141_03
HKEY_CURRENT_USER\Software\Classes\JavaPlugin.141_04
HKEY_CURRENT_USER\Software\Classes\JavaPlugin.141_05
HKEY_CURRENT_USER\Software\Classes\JavaPlugin.141_06
HKEY_CURRENT_USER\Software\Classes\JavaPlugin.141_07
HKEY_CURRENT_USER\Software\Classes\JavaPlugin.142
HKEY_CURRENT_USER\Software\Classes\JavaPlugin.142_01
HKEY_CURRENT_USER\Software\Classes\JavaPlugin.142_02
HKEY_CURRENT_USER\Software\Classes\JavaPlugin.142_03
HKEY_CURRENT_USER\Software\Classes\JavaPlugin.142_04
HKEY_CURRENT_USER\Software\Classes\JavaPlugin.142_05
HKEY_CURRENT_USER\Software\Classes\JavaPlugin.142_06
HKEY_CURRENT_USER\Software\Classes\JavaPlugin.142_07
HKEY_CURRENT_USER\Software\Classes\JavaPlugin.142_08
HKEY_CURRENT_USER\Software\Classes\JavaPlugin.142_09
HKEY_CURRENT_USER\Software\Classes\JavaPlugin.142_10
HKEY_CURRENT_USER\Software\Classes\JavaPlugin.142_11
HKEY_CURRENT_USER\Software\Classes\JavaPlugin.142_12
HKEY_CURRENT_USER\Software\Classes\JavaPlugin.142_13
HKEY_CURRENT_USER\Software\Classes\JavaPlugin.142_14
HKEY_CURRENT_USER\Software\Classes\JavaPlugin.142_15
HKEY_CURRENT_USER\Software\Classes\JavaPlugin.142_16
HKEY_CURRENT_USER\Software\Classes\JavaPlugin.160
HKEY_CURRENT_USER\Software\Classes\JavaPlugin.160_01
HKEY_CURRENT_USER\Software\Classes\JavaPlugin.160_02
HKEY_CURRENT_USER\Software\Classes\JavaPlugin.160_03
HKEY_CURRENT_USER\Software\Classes\JavaPlugin.160_04
HKEY_CURRENT_USER\Software\Classes\JavaPlugin.160_05
HKEY_CURRENT_USER\Software\Classes\JavaPlugin.160_06
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\JRE 1.3.1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\JRE 1.3.1_01
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\JRE 1.3.1_02
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\JRE 1.3.1_03
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\JRE 1.3.1_04
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\JRE 1.3.1_05
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\JRE 1.3.1_06
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\JRE 1.3.1_07
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\JRE 1.3.1_08
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\JRE 1.3.1_09
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\JRE 1.3.1_10
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\JRE 1.3.1_11
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\JRE 1.3.1_12
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\JRE 1.3.1_13
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\JRE 1.3.1_14
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\JRE 1.3.1_15
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\JRE 1.3.1_16
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\JRE 1.3.1_17
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\JRE 1.3.1_18
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\JRE 1.3.1_19
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\JRE 1.3.1_20
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\JRE 1.3.1_21
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\JRE 1.3.1_22
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\JRE 1.3.0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\JRE 1.3.0_01
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\JRE 1.3.0_02
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\JRE 1.3.0_03
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\JRE 1.3.0_04
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\JRE 1.3.0_05
HKEY_CURRENT_USER\Software\Classes\CLSID\{CAFEEFAC-0013-0000-0000-ABCDEFFEDCBA}
HKEY_CURRENT_USER\Software\Classes\CLSID\{CAFEEFAC-0013-0000-0001-ABCDEFFEDCBA}
HKEY_CURRENT_USER\Software\Classes\CLSID\{CAFEEFAC-0013-0000-0002-ABCDEFFEDCBA}
HKEY_CURRENT_USER\Software\Classes\CLSID\{CAFEEFAC-0013-0000-0003-ABCDEFFEDCBA}
HKEY_CURRENT_USER\Software\Classes\CLSID\{CAFEEFAC-0013-0000-0004-ABCDEFFEDCBA}
HKEY_CURRENT_USER\Software\Classes\CLSID\{CAFEEFAC-0013-0000-0005-ABCDEFFEDCBA}
HKEY_CURRENT_USER\Software\Classes\CLSID\{CAFEEFAC-0013-0000-0006-ABCDEFFEDCBA}
HKEY_CURRENT_USER\Software\Classes\CLSID\{CAFEEFAC-0013-0000-0007-ABCDEFFEDCBA}
HKEY_CURRENT_USER\Software\Classes\CLSID\{CAFEEFAC-0013-0000-0008-ABCDEFFEDCBA}
HKEY_CURRENT_USER\Software\Classes\CLSID\{CAFEEFAC-0013-0000-0009-ABCDEFFEDCBA}
HKEY_CURRENT_USER\Software\Classes\CLSID\{CAFEEFAC-0013-0000-0010-ABCDEFFEDCBA}
HKEY_CURRENT_USER\Software\Classes\CLSID\{CAFEEFAC-0013-0000-0011-ABCDEFFEDCBA}
HKEY_CURRENT_USER\Software\Classes\CLSID\{CAFEEFAC-0013-0000-0012-ABCDEFFEDCBA}
HKEY_CURRENT_USER\Software\Classes\CLSID\{CAFEEFAC-0013-0000-0013-ABCDEFFEDCBA}
HKEY_CURRENT_USER\Software\Classes\CLSID\{CAFEEFAC-0013-0000-0014-ABCDEFFEDCBA}
HKEY_CURRENT_USER\Software\Classes\CLSID\{CAFEEFAC-0013-0000-0015-ABCDEFFEDCBA}
HKEY_CURRENT_USER\Software\Classes\CLSID\{CAFEEFAC-0013-0000-0016-ABCDEFFEDCBA}
HKEY_CURRENT_USER\Software\Classes\CLSID\{CAFEEFAC-0013-0000-0017-ABCDEFFEDCBA}
HKEY_CURRENT_USER\Software\Classes\CLSID\{CAFEEFAC-0013-0000-0018-ABCDEFFEDCBA}
HKEY_CURRENT_USER\Software\Classes\CLSID\{CAFEEFAC-0013-0000-0019-ABCDEFFEDCBA}
HKEY_CURRENT_USER\Software\Classes\CLSID\{CAFEEFAC-0013-0000-0020-ABCDEFFEDCBA}
HKEY_CURRENT_USER\Software\Classes\CLSID\{CAFEEFAC-0013-0000-0021-ABCDEFFEDCBA}
HKEY_CURRENT_USER\Software\Classes\CLSID\{CAFEEFAC-0013-0000-0022-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\ C:\Program Files\Common Files\Java\Update\Base Images\jre1.5.0.b64\
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\ C:\Program Files\Java\jre1.5.0\
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\ C:\Program Files\Java\jre1.5.0_01\
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\ C:\Program Files\Java\jre1.5.0_02\
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\ C:\Program Files\Java\jre1.5.0_03\
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\ C:\Program Files\Java\jre1.5.0_04\
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\ C:\Program Files\Java\jre1.5.0_05\
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\ C:\Program Files\Java\jre1.5.0_06\
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\ C:\Program Files\Java\jre1.5.0_07\
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\ C:\Program Fil

 Ajouter un commentaire
Ajouter un commentaire
Réponse
+0
moins plus
thaounet 92Messages postés 5 mars 2009Date d'inscription 15 septembre 2010Dernière intervention 5 mars 2009 à 12:46
Jlpjlp,

Je pense avoir tout fait ce que tu m'as dit, je pense n'avoir rien oublié.

J'ai encore besoin de tes lumières stp pour ce que j'ai sauvegardé sur mon disque dur externe.
En effet, j'ai suivi à la lettre tout ce que tu m'as dit de faire mais à un moment donné, tu me dis de brancher les usb car elles sont infectées.
Or je n'ai pas pu toutes les brancher faute de prise. (il y avait déjà l'imprimante etc).
Du coup, je n'ai pas branché l'usb de mon disque dur externe ni de ma clé usb que j'ai branché hier et qui ont pu être infectés.
Quelle est s'il te plaît la marche à suivre pour sauver mes photos et vidéos de famille sur mon disque dur externe (et ma clé usb) ?

J'ai repris espoir depuis la procédure que tu m'as dit de faire, ne me laisse pas tomber pour le disque dur externe, j'ai encore besoin de tes lumières stp!
Merci d'avance Jlpjlp!

 Ajouter un commentaire
Ajouter un commentaire
Réponse
+0
moins plus
thaounet 92Messages postés 5 mars 2009Date d'inscription 15 septembre 2010Dernière intervention 5 mars 2009 à 13:14
Est-ce que je peux brancher mon disque dur externe sans risquer de réinfecter mon pc, en lançant directement lorsqu'il sera branché Bitdefender et Malwarebytes?

 Ajouter un commentaire
Ajouter un commentaire
Réponse
+0
moins plus
jlpjlp 50297Messages postés 18 mai 2007Date d'inscription 28 mai 2012Dernière intervention 5 mars 2009 à 13:18
tu n'as pas fini le message 10. Ensuite branche les disques qui n'étaient pas brancheés sans les ouvrir et fais rav antivirus puis Flash disinfector puis mets un rapport rsit

 Ajouter un commentaire
Ajouter un commentaire
Réponse
+0
moins plus
jlpjlp 50297Messages postés 18 mai 2007Date d'inscription 28 mai 2012Dernière intervention 5 mars 2009 à 13:28
n'óuvre pas le disque externe surtout! Comme je suis en déplacement je ne répondrai pas de suite. Ps pour rav antivirus et flash disinfector si tu ne trouve pas tape : rav jlpjlp dans la recherche de google et tu aura un lien pour les trouver

 Ajouter un commentaire
Ajouter un commentaire
Réponse
+0
moins plus
thaounet 92Messages postés 5 mars 2009Date d'inscription 15 septembre 2010Dernière intervention 5 mars 2009 à 13:35
Voici le rapport de combofix (suite message 10 que je n'avais pas fini):

ComboFix 09-03-04.01 - Magali 2009-03-05 13:28:46.3 - [color=red][b]FAT32/b/colorx86
Microsoft Windows XP Édition familiale 5.1.2600.3.1252.1.1036.18.511.179 [GMT 1:00]
Lancé depuis: c:\documents and settings\Magali\Bureau\ComboFix.exe
Commutateurs utilisés :: c:\documents and settings\Magali\Bureau\CFscript.txt
AV: BitDefender Antivirus *On-access scanning disabled* (Updated)
FW: Pare-feu BitDefender *disabled*
* Un nouveau point de restauration a été créé

FILE ::
c:\program files\Defenza
c:\windows\118294.78
c:\windows\system32\118290.54
c:\windows\system32\Machnm32.sys
c:\windows\system32\Machnm64.sys
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\118294.78
c:\windows\system32\118290.54
c:\windows\system32\Machnm32.sys
c:\windows\system32\Machnm64.sys

.
((((((((((((((((((((((((((((( Fichiers créés du 2009-02-05 au 2009-03-05 ))))))))))))))))))))))))))))))))))))
.

2094-03-10 14:19 . 2008-08-08 07:39 3,120 --a------ c:\windows\MF_C421.lfa
2094-03-10 14:19 . 2008-08-08 07:39 3,120 --a------ c:\windows\MF_C420.lfa
2009-03-05 13:27 . 2009-03-05 13:31 121 --a------ c:\windows\bdagent.INI
2009-03-05 12:00 . 2009-03-05 13:30 81,984 --a------ c:\windows\system32\bdod.bin
2009-03-05 11:47 . 2009-03-05 11:47 <REP> d-------- c:\documents and settings\Magali\Application Data\BitDefender
2009-03-05 11:46 . 2009-03-05 11:46 <REP> d-------- c:\program files\BitDefender
2009-03-05 11:46 . 2009-03-05 11:46 <REP> d-------- c:\documents and settings\All Users\Application Data\BitDefender
2009-03-05 11:44 . 2009-03-05 11:44 <REP> d-------- c:\program files\Fichiers communs\BitDefender
2009-03-05 10:55 . 2009-03-05 10:55 <REP> d-------- c:\program files\Malwarebytes' Anti-Malware
2009-03-05 10:55 . 2009-03-05 10:55 <REP> d-------- c:\documents and settings\Magali\Application Data\Malwarebytes
2009-03-05 10:55 . 2009-03-05 10:55 <REP> d-------- c:\documents and settings\All Users\Application Data\Malwarebytes
2009-03-05 10:55 . 2009-02-11 10:19 38,496 --a------ c:\windows\system32\drivers\mbamswissarmy.sys
2009-03-05 10:55 . 2009-02-11 10:19 15,504 --a------ c:\windows\system32\drivers\mbam.sys
2009-03-05 09:37 . 2009-03-05 09:37 <REP> d-------- C:\rsit
2009-03-05 08:41 . 2009-03-05 08:41 <REP> d--hs---- C:\FOUND.003
2009-03-05 02:36 . 2009-03-05 02:36 <REP> d-------- c:\program files\CCleaner
2009-03-05 01:57 . 2009-03-05 01:57 <REP> d-------- c:\program files\Uniblue
2009-03-05 01:57 . 2009-03-05 01:58 <REP> d-------- c:\documents and settings\Magali\Application Data\Uniblue
2009-03-05 01:56 . 2009-03-05 01:57 <REP> d--h----- c:\documents and settings\All Users\Application Data\{B46E1EF5-0B37-4DB4-A4E2-9F2B41036185}
2009-03-05 01:48 . 2009-03-05 01:48 <REP> d-------- c:\program files\Defenza
2009-03-04 21:53 . 2009-03-04 21:53 <REP> d-------- c:\temp\google
2009-03-04 20:55 . 2009-03-04 20:55 <REP> d-------- c:\documents and settings\All Users\Application Data\TEMP
2009-03-04 20:51 . 2009-03-04 20:51 <REP> d-------- c:\documents and settings\All Users\Application Data\Google Updater
2009-02-28 14:51 . 2009-02-28 14:51 <REP> d--hs---- C:\FOUND.002

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-02-03 16:03 104,328 ----a-w c:\windows\system32\drivers\bdfndisf.sys
2009-01-16 20:15 3,594,752 ----a-w c:\windows\system32\dllcache\mshtml.dll
2008-12-24 08:43 158,192 ------w c:\windows\system32\pxwma.dll
2008-12-21 07:07 410,984 ----a-w c:\windows\system32\deploytk.dll
2008-12-20 22:47 826,368 ----a-w c:\windows\system32\wininet.dll
2008-12-20 22:47 826,368 ----a-w c:\windows\system32\dllcache\wininet.dll
2008-12-20 22:47 671,232 ----a-w c:\windows\system32\dllcache\mstime.dll
2008-12-20 22:47 477,696 ----a-w c:\windows\system32\dllcache\mshtmled.dll
2008-12-20 22:47 44,544 ----a-w c:\windows\system32\dllcache\pngfilt.dll
2008-12-20 22:47 233,472 ----a-w c:\windows\system32\dllcache\webcheck.dll
2008-12-20 22:47 193,024 ----a-w c:\windows\system32\dllcache\msrating.dll
2008-12-20 22:47 105,984 ----a-w c:\windows\system32\dllcache\url.dll
2008-12-20 22:47 102,912 ----a-w c:\windows\system32\dllcache\occache.dll
2008-12-20 22:47 1,160,192 ----a-w c:\windows\system32\dllcache\urlmon.dll
2008-12-19 09:11 70,656 ----a-w c:\windows\system32\dllcache\ie4uinit.exe
2008-12-19 09:10 13,824 ------w c:\windows\system32\dllcache\ieudinit.exe
2008-12-19 05:25 634,024 ----a-w c:\windows\system32\dllcache\iexplore.exe
2008-12-19 05:23 161,792 ----a-w c:\windows\system32\dllcache\ieakui.dll
2008-12-11 10:57 333,952 ------w c:\windows\system32\dllcache\srv.sys
2008-06-17 11:43 1,271,557 ----a-w c:\program files\wrar371fr.exe
2008-06-08 16:29 672,146 ----a-w c:\program files\SpywareSecure_setup.exe
2008-05-15 20:58 2,048,604 ----a-w c:\program files\PhotoWays.exe
2008-05-15 07:04 23,060,136 ----a-w c:\program files\setupfreavast.exe
2008-05-01 13:20 2,402,832 ----a-w c:\program files\WLinstaller.exe
2007-11-22 00:35 10,549,568 ----a-w c:\program files\copytodvd4_setup_403acheté.exe
2007-11-22 00:21 47,360 ----a-w c:\documents and settings\Magali\Application Data\pcouffin.sys
2007-11-19 19:48 3,919 ----a-w c:\program files\Nero_Burning_ROM_Ultra_Edition_v6[1].6.0.1.zip
2007-09-08 08:25 51,418,424 ----a-w c:\program files\iTunesSetup.exe
2007-07-30 20:50 4,212 ----a-w c:\program files\ReadMe.txt
2007-07-30 20:49 498,936 ----a-w c:\program files\NISDwnld.exe
2007-03-21 16:38 484,928 ----a-w c:\program files\magentic_install.exe
2007-03-04 16:02 877,976 ----a-w c:\program files\7zip.exe
2007-02-01 21:31 14,994,392 ----a-w c:\program files\GoogleEarthWin.exe
2007-01-13 13:20 1,104,734 ----a-w c:\program files\dvdshrink_3.2.0.16_fr.zip
2007-01-11 09:51 2,916,417 ----a-w c:\program files\Setup_EComo_v1.00j.exe
2006-12-21 22:00 19,666,504 ----a-w c:\program files\QuickTimeInstaller.exe
2006-12-07 07:37 23,375,521 ----a-w c:\program files\fotofacil2.exe
2006-09-07 13:47 15,921,323 ----a-w c:\program files\ps701up-f.exe
2006-07-11 18:12 11,981,422 ----a-w c:\program files\Gordian.Knot.Codec.Pack.1.9.Setup.exe
2006-02-12 15:57 774,144 ----a-w c:\program files\RngInterstitial.dll
2005-09-11 17:30 3,835,424 ----a-w c:\program files\mxblst4win.EXE
2005-09-11 16:48 526 ----a-w c:\program files\ACERBACKUPCDLog.TXT
2005-09-11 16:19 9,964,393 ----a-w c:\program files\nero_nero_6.6.0.16_language_pack_francais_francais_10297.exe
2005-09-11 16:13 34,235,626 ----a-w c:\program files\Nero-6.6.0.16.exe
2005-05-24 08:11 756,167 ----a-w c:\program files\lunbio15.exe
2005-05-06 20:14 885 ----a-w c:\program files\eula.txt
2005-02-19 11:40 1,661 ----a-w c:\program files\[u]0/u00851DB.key
2005-02-18 11:55 458 ----a-w c:\program files\file_id.diz
2005-02-18 11:48 2,322 ----a-w c:\program files\black.nfo
2008-12-16 16:52 61,440 ----a-w c:\program files\mozilla firefox\components\FFComm.dll
2006-07-11 18:13 56 --sh--r c:\windows\system32\A3B59919B6.sys
2008-04-14 03:34 12,288 --sh--w c:\windows\system32\regsvr32.exe
2008-04-14 03:33 413,696 --sha-w c:\windows\system32\msvcp60.dll
2008-09-03 12:41 32,768 --sha-w c:\windows\system32\config\systemprofile\Local Settings\Historique\History.IE5\MSHist012008090320080904\index.dat
.

((((((((((((((((((((((((((((( SnapShot@2009-03-05_10.44.00.67 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-03-05 10:47:28 61,440 ----a-r c:\windows\Installer\{076C87CD-CAB3-42FB-94D7-EF98A0C33BFC}\helpicon.exe
+ 2009-03-05 10:47:28 32,768 ----a-r c:\windows\Installer\{076C87CD-CAB3-42FB-94D7-EF98A0C33BFC}\maintenance_icon.exe
+ 2009-03-05 10:47:28 22,486 ----a-r c:\windows\Installer\{076C87CD-CAB3-42FB-94D7-EF98A0C33BFC}\register_icon.exe
+ 2009-03-05 10:47:28 57,344 ----a-r c:\windows\Installer\{076C87CD-CAB3-42FB-94D7-EF98A0C33BFC}\texticon.exe
+ 2007-12-12 14:06:42 295,606 ----a-r c:\windows\Installer\{AC76BA86-7AD7-1036-7B44-A90000000001}\SC_Reader.exe
- 2007-09-26 09:56:14 511,328 ----a-w c:\windows\system32\capicom.dll
+ 2007-04-11 09:11:20 511,328 ----a-w c:\windows\system32\capicom.dll
+ 2008-09-18 10:09:12 111,112 ----a-w c:\windows\system32\drivers\bdfm.sys
+ 2008-12-10 18:42:46 242,184 ----a-w c:\windows\system32\drivers\bdfsfltr.sys
+ 2008-10-06 16:16:16 82,696 ----a-w c:\windows\system32\drivers\BDVEDISK.sys
- 2004-08-05 04:00:00 112,128 ----a-w c:\windows\system32\mapi32.dll
+ 2004-03-31 11:28:00 131,072 ----a-w c:\windows\system32\mapi32.dll
- 2002-01-05 13:48:16 974,848 ------w c:\windows\system32\MFC70.DLL
+ 2002-01-05 01:48:16 974,848 ----a-w c:\windows\system32\mfc70.dll
- 2002-01-05 13:36:36 964,608 ------w c:\windows\system32\MFC70U.DLL
+ 2002-01-05 01:36:38 964,608 ----a-w c:\windows\system32\mfc70u.dll
- 2007-03-21 19:39:00 1,060,864 ----a-w c:\windows\system32\MFC71.DLL
+ 2003-03-18 19:20:00 1,060,864 ----a-w c:\windows\system32\mfc71.dll
- 2003-03-18 21:12:12 1,047,552 ----a-w c:\windows\system32\MFC71u.dll
+ 2003-03-18 19:12:12 1,047,552 ----a-w c:\windows\system32\MFC71u.dll
- 2002-01-05 12:38:36 54,784 ------w c:\windows\system32\MSVCI70.DLL
+ 2002-01-05 01:38:38 54,784 ----a-w c:\windows\system32\msvci70.dll
- 2002-01-05 12:40:18 487,424 ------w c:\windows\system32\MSVCP70.DLL
+ 2002-01-05 01:40:20 487,424 ----a-w c:\windows\system32\msvcp70.dll
- 2007-03-21 19:33:00 503,808 ----a-w c:\windows\system32\MSVCP71.DLL
+ 2003-03-18 18:14:52 499,712 ----a-w c:\windows\system32\msvcp71.dll
- 2002-01-05 12:37:26 344,064 ------w c:\windows\system32\MSVCR70.DLL
+ 2002-01-05 00:37:28 344,064 ----a-w c:\windows\system32\msvcr70.dll
- 2008-12-21 14:51:08 348,160 ----a-w c:\windows\system32\msvcr71.dll
+ 2003-02-21 02:42:22 348,160 ----a-w c:\windows\system32\msvcr71.dll
+ 2008-10-09 14:31:54 192,512 ----a-w c:\windows\system32\txmlutil.dll
+ 2007-01-31 12:50:32 913,408 ----a-w c:\windows\system32\xreglib.dll
+ 2009-03-05 10:49:22 16,384 ----a-w c:\windows\Temp\Perflib_Perfdata_6bc.dat
- 2006-12-01 21:54:32 479,232 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcm80.dll
+ 2006-12-01 20:54:32 479,232 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcm80.dll
- 2006-12-01 21:54:34 548,864 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcp80.dll
+ 2006-12-01 20:54:34 548,864 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcp80.dll
- 2006-12-01 21:54:32 626,688 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcr80.dll
+ 2006-12-01 20:54:32 626,688 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcr80.dll
+ 2006-12-01 22:25:52 1,101,824 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80.dll
+ 2006-12-01 22:25:56 1,093,120 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80u.dll
+ 2006-12-01 22:25:58 69,632 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfcm80.dll
+ 2006-12-01 22:26:00 57,856 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfcm80u.dll
+ 2006-12-01 22:08:00 40,960 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80CHS.dll
+ 2006-12-01 22:08:00 45,056 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80CHT.dll
+ 2006-12-01 22:08:00 65,536 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80DEU.dll
+ 2006-12-01 22:08:00 57,344 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ENU.dll
+ 2006-12-01 22:08:00 61,440 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ESP.dll
+ 2006-12-01 22:08:00 61,440 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80FRA.dll
+ 2006-12-01 22:08:00 61,440 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ITA.dll
+ 2006-12-01 22:08:00 49,152 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80JPN.dll
+ 2006-12-01 22:08:00 49,152 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80KOR.dll
.
-- Instantané actualisé --
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IncrediMail"="c:\program files\IncrediMail\bin\IncMail.exe" [2009-01-27 251264]
"NBJ"="c:\program files\Ahead\Nero BackItUp\NBJ.exe" [2005-07-14 1961984]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"Uniblue RegistryBooster 2009"="c:\program files\Uniblue\RegistryBooster\RegistryBooster.exe" [2008-08-26 2019624]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LaunchApp"="Alaunch" [X]
"ntiMUI"="c:\program files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe" [2005-05-11 45056]
"IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2004-08-05 208952]
"MSPY2002"="c:\windows\system32\IME\PINTLGNT\ImScInst.exe" [2004-08-05 59392]
"PHIME2002ASync"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-05 455168]
"PHIME2002A"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-05 455168]
"eRecoveryService"="c:\program files\Acer\eRecovery\Monitor.exe" [2005-06-20 352256]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2008-12-21 136600]
"AspireService"="c:\program files\Acer\Acer eMode Management\AspireService.exe" [2005-06-04 110592]
"MediaSync"="c:\program files\Acer\Acer eConsole\MediaSync.exe" [2005-06-01 421888]
"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"Share-to-Web Namespace Daemon"="c:\program files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe" [2001-07-03 57344]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2005-02-24 5537792]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2005-02-24 86016]
"Symantec PIF AlertEng"="c:\program files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" [2007-03-12 517768]
"HPDJ Taskbar Utility"="c:\windows\system32\spool\drivers\w32x86\3\hpztsb04.exe" [2001-10-15 196608]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2004-06-28 32768]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2008-03-28 413696]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2008-03-30 267048]
"Motive SmartBridge"="c:\progra~1\CLUB-I~1\LECOMP~1\SMARTB~1\MotiveSB.exe" [2005-08-24 438359]
"PCSuiteTrayApplication"="c:\progra~1\Nokia\NOKIAP~1\LAUNCH~1.EXE" [2006-04-26 237568]
"TkBellExe"="c:\program files\Fichiers communs\Real\Update_OB\realsched.exe" [2008-12-21 185872]
"PCDAS"="c:\program files\Defenza\pcd-as.exe" [2006-12-15 1359872]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672]
"BDAgent"="c:\program files\BitDefender\BitDefender 2009\bdagent.exe" [2009-01-09 741376]
"BitDefender Antiphishing Helper"="c:\program files\BitDefender\BitDefender 2009\IEShow.exe" [2008-10-17 69632]
"SoundMan"="SOUNDMAN.EXE" [2005-06-08 c:\windows\SOUNDMAN.EXE]
"AGRSMMSG"="AGRSMMSG.exe" [2004-06-29 c:\windows\AGRSMMSG.exe]
"VTTimer"="VTTimer.exe" [2005-05-13 c:\windows\system32\VTTimer.exe]
"VTTrayp"="VTtrayp.exe" [2005-05-13 c:\windows\system32\VTTrayp.exe]
"nwiz"="nwiz.exe" [2005-02-24 c:\windows\system32\nwiz.exe]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2007-10-18 5724184]

c:\documents and settings\Magali\Menu D‚marrer\Programmes\D‚marrage\
Registration-PCTV.lnk - c:\program files\Pinnacle\Pinnacle PCTV\ERegister\RegTool.exe [2005-09-11 245760]

c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
Microsoft Office.lnk - c:\program files\Microsoft Office\Office\OSA9.EXE [2000-01-21 65588]
NkvMon.exe.lnk - c:\program files\Nikon\NkView5\NkvMon.exe [2005-12-21 233472]
FotoStation Easy AutoLaunch.lnk - c:\program files\FotoStation Easy\FotoStation Easy AutoLaunch.exe [2005-12-21 49152]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"vidc.DIV3"= DivXc32.dll
"vidc.DIV4"= DivXc32f.dll
"msacm.divxa32"= DivXa32.acm
"VIDC.HFYU"= huffyuv.dll
"vidc.ffds"= c:\program files\ffdshow\ffdshow.ax
"VIDC.I420"= c:\windows\system32\i263_32.drv
"vidc.I263"= I263_32.drv

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Messenger\\MSMSGS.EXE"=
"c:\\Program Files\\Pinnacle\\Pinnacle PCTV\\TeleText\\WebServer.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\WINDOWS\\System32\\dpvsetup.exe"=
"c:\\Program Files\\IncrediMail\\bin\\ImApp.exe"=
"c:\\Program Files\\IncrediMail\\bin\\IncMail.exe"=
"c:\\Program Files\\IncrediMail\\bin\\ImpCnt.exe"=
"c:\\Program Files\\Magentic\\bin\\Magentic.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\adslTV\\adsltv.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"c:\\Program Files\\Real\\RealPlayer\\RealPlay.exe"=

R2 BDVEDISK;BDVEDISK;c:\program files\BitDefender\BitDefender 2009\BDVEDISK.sys [2008-10-06 82696]
R3 bdfm;BDFM;c:\windows\system32\drivers\bdfm.sys [2008-09-18 111112]
R3 Bdfndisf;BitDefender Firewall NDIS Filter Service;c:\windows\system32\drivers\bdfndisf.sys [2009-02-03 104328]
R3 pctvvbi;PCTVVBI;c:\windows\system32\drivers\pctvvbi.sys [2005-09-11 6400]
S3 Arrakis3;BitDefender Arrakis Server;c:\program files\Fichiers communs\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe [2008-07-17 118784]
S3 ICAM3NT5;Caméra vidéo Intel USB III;c:\windows\system32\drivers\Icam3.sys [2005-10-16 141056]

--- Autres Services/Pilotes en mémoire ---

*NewlyCreated* - 21AF6A87
*NewlyCreated* - BDFM
*NewlyCreated* - BDFSFLTR
*NewlyCreated* - BDFTDIF
*NewlyCreated* - BDSELFPR
*NewlyCreated* - BDVEDISK
*NewlyCreated* - LIVESRV
*NewlyCreated* - PROFOS
*NewlyCreated* - TRUFOS
*NewlyCreated* - VSSERV
*Deregistered* - 21af6a87

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bdx REG_MULTI_SZ scan
.
Contenu du dossier 'Tâches planifiées'

2009-03-04 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-04-11 17:57]

2009-03-05 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-03-04 20:51]
.
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://portail.club-internet.fr/
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
uInternet Settings,ProxyOverride = 127.0.0.1
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Ouvrir l'image dans &Microsoft PhotoDraw - c:\progra~1\MICROS~2\Office\1036\phdintl.dll/phdContext.htm
DPF: Microsoft XML Parser for Java - file:///C:/WINDOWS/Java/classes/xmldso.cab
DPF: {B9907873-6560-4A36-B76B-9DADE84A7F55} - hxxps://www.fnacmusic.com/telechargementFnacmusic/FnacmusicDnl.CAB
DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} - hxxp://game06.zylom.com/activex/zylomgamesplayer.cab
FF - ProfilePath - c:\documents and settings\Magali\Application Data\Mozilla\Firefox\Profiles\tfixdzmy.default\
FF - prefs.js: browser.search.defaulturl - hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=
FF - prefs.js: browser.search.selectedEngine - MyStart Rechercher
FF - prefs.js: browser.startup.homepage - hxxp://portail.club-internet.fr/
FF - prefs.js: keyword.URL - hxxp://mystart.incredimail.com/?loc=ff_address_bar&search=
FF - component: c:\program files\Mozilla Firefox\components\FFComm.dll
FF - plugin: c:\program files\Google\Google Updater\2.4.1508.6312\npCIDetect13.dll
FF - plugin: c:\program files\Real\RealArcade\Plugins\Mozilla\npracplug.dll

---- PARAMETRES FIREFOX ----
FF - user.js: yahoo.homepage.dontask - true.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-03-05 13:31:12
Windows 5.1.2600 Service Pack 3 FAT NTAPI

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...

Scan terminé avec succès
Fichiers cachés: 0

**************************************************************************
.
Heure de fin: 2009-03-05 13:32:41
ComboFix-quarantined-files.txt 2009-03-05 12:32:40
ComboFix3.txt 2009-03-05 09:44:44
ComboFix2.txt 2009-03-05 09:51:16

Avant-CF: 61 547 085 824 octets libres
Après-CF: 61,541,941,248 octets libres

309 --- E O F --- 2009-03-05 06:57:32

 Ajouter un commentaire
Ajouter un commentaire
Réponse
+0
moins plus
thaounet 92Messages postés 5 mars 2009Date d'inscription 15 septembre 2010Dernière intervention 5 mars 2009 à 14:48
D'acc jlpjlp!

Merci pour ta patience, merci pour ce temps que tu consacres à mes soucis info!
J'ai donc (en faisant bien attention de ne pas les ouvrir) fais rav antivirus et flash disinfector, mais aucun n'a détecté quoique ce soit.
C'est plutôt bon signe mais j'hésite à ouvrir mon disque dur malgré tout, peur de faire une bêtise et de tout perdre.
Lorsque je lance rav antivirus, il me met direct que mon ordinateur est sain, dès que je l'ouvre. Mais malgré tout il travaille, donc dans le doute je l'ai laissé travaillé (la barre de gauche à droite qui bouge) mais j'ai beau attendre, ça ne finit pas.
Est-ce que je peux considérer que dès qu'il est lancé et qu'il me met directement que mon ordinateur est sain et donc du coup, mon disque externe par la même occasion, que tout est ok?
Combien de temps je dois le laisser travailler sinon?

Merci d'avance encore à toi!!!!

 Ajouter un commentaire
Ajouter un commentaire
Réponse
+0
moins plus
jlpjlp 50297Messages postés 18 mai 2007Date d'inscription 28 mai 2012Dernière intervention 5 mars 2009 à 20:24
arrete RAV mais n'ouvre pas le disque



Ferme tous tes navigateurs (donc copie ou imprime les instructions avant)

Crée un nouveau document texte : clic droit de souris sur le bureau > Nouveau > Document Texte, et copie dedans les lignes suivantes :




File::
c:\program files\Defenza\pcd-as.exe
Registry::
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PCDAS"=-





Enregistre ce fichier sous le nom CFscript


Fait un glisser/déposer de ce fichier CFscrïpt sur le fichier ComboFix.exe

Clique sur le fichier CFScript, maintient le doigt enfoncé et glisse la souris pour que l'icône du CFScript vienne recouvrir l'icône de Combofix. Relache la souris. Combofix va démarrer.

Une fenêtre bleue va apparaître: au message qui apparaît ( Type 1 to continue, or 2 to abort) , tape 1 puis valide.

Patiente le temps du scan.Le bureau va disparaître à plusieurs reprises: c'est normal!

Ne touche à rien tant que le scan n'est pas terminé.

Une fois le scan achevé, un rapport va s'afficher: poste son contenu.


Si le fichier ne s'ouvre pas, il se trouve ici > C:\ComboFix.txt

________________


et mets moi un rapport RSIt pour verifier

 Ajouter un commentaire
Ajouter un commentaire
Réponse
+0
moins plus
thaounet 92Messages postés 5 mars 2009Date d'inscription 15 septembre 2010Dernière intervention 5 mars 2009 à 20:50
Merci jlpjlp!!!

Voici le rapport :

ComboFix 09-03-04.01 - Magali 2009-03-05 20:43:53.4 - [color=red][b]FAT32/b/colorx86
Microsoft Windows XP Édition familiale 5.1.2600.3.1252.1.1036.18.511.215 [GMT 1:00]
Lancé depuis: c:\documents and settings\Magali\Bureau\ComboFix.exe
Commutateurs utilisés :: c:\documents and settings\Magali\Bureau\CFscript.txt
AV: BitDefender Antivirus *On-access scanning disabled* (Updated)
FW: Pare-feu BitDefender *disabled*
* Un nouveau point de restauration a été créé

FILE ::
c:\program files\Defenza\pcd-as.exe
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\program files\Defenza\pcd-as.exe

.
((((((((((((((((((((((((((((( Fichiers créés du 2009-02-05 au 2009-03-05 ))))))))))))))))))))))))))))))))))))
.

2094-03-10 14:19 . 2008-08-08 07:39 3,120 --a------ c:\windows\MF_C421.lfa
2094-03-10 14:19 . 2008-08-08 07:39 3,120 --a------ c:\windows\MF_C420.lfa
2009-03-05 14:07 . 2009-03-05 14:07 3,120 --a------ c:\windows\system32\118290.54
2009-03-05 14:07 . 2009-03-05 14:07 3,120 --a------ c:\windows\118294.78
2009-03-05 14:06 . 2009-03-05 14:06 850 --a------ c:\windows\system32\ProductTweaks.xml
2009-03-05 14:06 . 2009-03-05 14:06 385 --a------ c:\windows\system32\user_gensett.xml
2009-03-05 13:27 . 2009-03-05 20:46 121 --a------ c:\windows\bdagent.INI
2009-03-05 12:00 . 2009-03-05 20:42 81,984 --a------ c:\windows\system32\bdod.bin
2009-03-05 11:47 . 2009-03-05 11:47 <REP> d-------- c:\documents and settings\Magali\Application Data\BitDefender
2009-03-05 11:46 . 2009-03-05 11:46 <REP> d-------- c:\program files\BitDefender
2009-03-05 11:46 . 2009-03-05 11:46 <REP> d-------- c:\documents and settings\All Users\Application Data\BitDefender
2009-03-05 11:44 . 2009-03-05 11:44 <REP> d-------- c:\program files\Fichiers communs\BitDefender
2009-03-05 10:55 . 2009-03-05 10:55 <REP> d-------- c:\program files\Malwarebytes' Anti-Malware
2009-03-05 10:55 . 2009-03-05 10:55 <REP> d-------- c:\documents and settings\Magali\Application Data\Malwarebytes
2009-03-05 10:55 . 2009-03-05 10:55 <REP> d-------- c:\documents and settings\All Users\Application Data\Malwarebytes
2009-03-05 10:55 . 2009-02-11 10:19 38,496 --a------ c:\windows\system32\drivers\mbamswissarmy.sys
2009-03-05 10:55 . 2009-02-11 10:19 15,504 --a------ c:\windows\system32\drivers\mbam.sys
2009-03-05 09:37 . 2009-03-05 09:37 <REP> d-------- C:\rsit
2009-03-05 08:41 . 2009-03-05 08:41 <REP> d--hs---- C:\FOUND.003
2009-03-05 02:36 . 2009-03-05 02:36 <REP> d-------- c:\program files\CCleaner
2009-03-05 01:57 . 2009-03-05 01:57 <REP> d-------- c:\program files\Uniblue
2009-03-05 01:57 . 2009-03-05 01:58 <REP> d-------- c:\documents and settings\Magali\Application Data\Uniblue
2009-03-05 01:56 . 2009-03-05 01:57 <REP> d--h----- c:\documents and settings\All Users\Application Data\{B46E1EF5-0B37-4DB4-A4E2-9F2B41036185}
2009-03-05 01:48 . 2009-03-05 01:48 <REP> d-------- c:\program files\Defenza
2009-03-04 21:53 . 2009-03-04 21:53 <REP> d-------- c:\temp\google
2009-03-04 20:55 . 2009-03-04 20:55 <REP> d-------- c:\documents and settings\All Users\Application Data\TEMP
2009-03-04 20:51 . 2009-03-04 20:51 <REP> d-------- c:\documents and settings\All Users\Application Data\Google Updater
2009-02-28 14:51 . 2009-02-28 14:51 <REP> d--hs---- C:\FOUND.002

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-02-03 16:03 104,328 ----a-w c:\windows\system32\drivers\bdfndisf.sys
2009-01-16 20:15 3,594,752 ----a-w c:\windows\system32\dllcache\mshtml.dll
2008-12-24 08:43 158,192 ------w c:\windows\system32\pxwma.dll
2008-12-21 07:07 410,984 ----a-w c:\windows\system32\deploytk.dll
2008-12-20 22:47 826,368 ----a-w c:\windows\system32\wininet.dll
2008-12-20 22:47 826,368 ----a-w c:\windows\system32\dllcache\wininet.dll
2008-12-20 22:47 671,232 ----a-w c:\windows\system32\dllcache\mstime.dll
2008-12-20 22:47 477,696 ----a-w c:\windows\system32\dllcache\mshtmled.dll
2008-12-20 22:47 44,544 ----a-w c:\windows\system32\dllcache\pngfilt.dll
2008-12-20 22:47 233,472 ----a-w c:\windows\system32\dllcache\webcheck.dll
2008-12-20 22:47 193,024 ----a-w c:\windows\system32\dllcache\msrating.dll
2008-12-20 22:47 105,984 ----a-w c:\windows\system32\dllcache\url.dll
2008-12-20 22:47 102,912 ----a-w c:\windows\system32\dllcache\occache.dll
2008-12-20 22:47 1,160,192 ----a-w c:\windows\system32\dllcache\urlmon.dll
2008-12-19 09:11 70,656 ----a-w c:\windows\system32\dllcache\ie4uinit.exe
2008-12-19 09:10 13,824 ------w c:\windows\system32\dllcache\ieudinit.exe
2008-12-19 05:25 634,024 ----a-w c:\windows\system32\dllcache\iexplore.exe
2008-12-19 05:23 161,792 ----a-w c:\windows\system32\dllcache\ieakui.dll
2008-12-11 10:57 333,952 ------w c:\windows\system32\dllcache\srv.sys
2008-06-17 11:43 1,271,557 ----a-w c:\program files\wrar371fr.exe
2008-06-08 16:29 672,146 ----a-w c:\program files\SpywareSecure_setup.exe
2008-05-15 20:58 2,048,604 ----a-w c:\program files\PhotoWays.exe
2008-05-15 07:04 23,060,136 ----a-w c:\program files\setupfreavast.exe
2008-05-01 13:20 2,402,832 ----a-w c:\program files\WLinstaller.exe
2007-11-22 00:35 10,549,568 ----a-w c:\program files\copytodvd4_setup_403acheté.exe
2007-11-22 00:21 47,360 ----a-w c:\documents and settings\Magali\Application Data\pcouffin.sys
2007-11-19 19:48 3,919 ----a-w c:\program files\Nero_Burning_ROM_Ultra_Edition_v6[1].6.0.1.zip
2007-09-08 08:25 51,418,424 ----a-w c:\program files\iTunesSetup.exe
2007-07-30 20:50 4,212 ----a-w c:\program files\ReadMe.txt
2007-07-30 20:49 498,936 ----a-w c:\program files\NISDwnld.exe
2007-03-21 16:38 484,928 ----a-w c:\program files\magentic_install.exe
2007-03-04 16:02 877,976 ----a-w c:\program files\7zip.exe
2007-02-01 21:31 14,994,392 ----a-w c:\program files\GoogleEarthWin.exe
2007-01-13 13:20 1,104,734 ----a-w c:\program files\dvdshrink_3.2.0.16_fr.zip
2007-01-11 09:51 2,916,417 ----a-w c:\program files\Setup_EComo_v1.00j.exe
2006-12-21 22:00 19,666,504 ----a-w c:\program files\QuickTimeInstaller.exe
2006-12-07 07:37 23,375,521 ----a-w c:\program files\fotofacil2.exe
2006-09-07 13:47 15,921,323 ----a-w c:\program files\ps701up-f.exe
2006-07-11 18:12 11,981,422 ----a-w c:\program files\Gordian.Knot.Codec.Pack.1.9.Setup.exe
2006-02-12 15:57 774,144 ----a-w c:\program files\RngInterstitial.dll
2005-09-11 17:30 3,835,424 ----a-w c:\program files\mxblst4win.EXE
2005-09-11 16:48 526 ----a-w c:\program files\ACERBACKUPCDLog.TXT
2005-09-11 16:19 9,964,393 ----a-w c:\program files\nero_nero_6.6.0.16_language_pack_francais_francais_10297.exe
2005-09-11 16:13 34,235,626 ----a-w c:\program files\Nero-6.6.0.16.exe
2005-05-24 08:11 756,167 ----a-w c:\program files\lunbio15.exe
2005-05-06 20:14 885 ----a-w c:\program files\eula.txt
2005-02-19 11:40 1,661 ----a-w c:\program files\[u]0/u00851DB.key
2005-02-18 11:55 458 ----a-w c:\program files\file_id.diz
2005-02-18 11:48 2,322 ----a-w c:\program files\black.nfo
2008-12-16 16:52 61,440 ----a-w c:\program files\mozilla firefox\components\FFComm.dll
2006-07-11 18:13 56 --sh--r c:\windows\system32\A3B59919B6.sys
2008-04-14 03:34 12,288 --sh--w c:\windows\system32\regsvr32.exe
2008-04-14 03:33 413,696 --sha-w c:\windows\system32\msvcp60.dll
2008-09-03 12:41 32,768 --sha-w c:\windows\system32\config\systemprofile\Local Settings\Historique\History.IE5\MSHist012008090320080904\index.dat
.

((((((((((((((((((((((((((((( SnapShot_2009-03-05_13.31.42,57 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-03-05 13:06:30 16,384 ----a-w c:\windows\Temp\Perflib_Perfdata_774.dat
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IncrediMail"="c:\program files\IncrediMail\bin\IncMail.exe" [2009-01-27 251264]
"NBJ"="c:\program files\Ahead\Nero BackItUp\NBJ.exe" [2005-07-14 1961984]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"Uniblue RegistryBooster 2009"="c:\program files\Uniblue\RegistryBooster\RegistryBooster.exe" [2008-08-26 2019624]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LaunchApp"="Alaunch" [X]
"ntiMUI"="c:\program files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe" [2005-05-11 45056]
"IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2004-08-05 208952]
"MSPY2002"="c:\windows\system32\IME\PINTLGNT\ImScInst.exe" [2004-08-05 59392]
"PHIME2002ASync"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-05 455168]
"PHIME2002A"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-05 455168]
"eRecoveryService"="c:\program files\Acer\eRecovery\Monitor.exe" [2005-06-20 352256]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2008-12-21 136600]
"AspireService"="c:\program files\Acer\Acer eMode Management\AspireService.exe" [2005-06-04 110592]
"MediaSync"="c:\program files\Acer\Acer eConsole\MediaSync.exe" [2005-06-01 421888]
"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"Share-to-Web Namespace Daemon"="c:\program files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe" [2001-07-03 57344]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2005-02-24 5537792]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2005-02-24 86016]
"Symantec PIF AlertEng"="c:\program files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" [2007-03-12 517768]
"HPDJ Taskbar Utility"="c:\windows\system32\spool\drivers\w32x86\3\hpztsb04.exe" [2001-10-15 196608]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2004-06-28 32768]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2008-03-28 413696]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2008-03-30 267048]
"Motive SmartBridge"="c:\progra~1\CLUB-I~1\LECOMP~1\SMARTB~1\MotiveSB.exe" [2005-08-24 438359]
"PCSuiteTrayApplication"="c:\progra~1\Nokia\NOKIAP~1\LAUNCH~1.EXE" [2006-04-26 237568]
"TkBellExe"="c:\program files\Fichiers communs\Real\Update_OB\realsched.exe" [2008-12-21 185872]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672]
"BDAgent"="c:\program files\BitDefender\BitDefender 2009\bdagent.exe" [2009-01-09 741376]
"BitDefender Antiphishing Helper"="c:\program files\BitDefender\BitDefender 2009\IEShow.exe" [2008-10-17 69632]
"SoundMan"="SOUNDMAN.EXE" [2005-06-08 c:\windows\SOUNDMAN.EXE]
"AGRSMMSG"="AGRSMMSG.exe" [2004-06-29 c:\windows\AGRSMMSG.exe]
"VTTimer"="VTTimer.exe" [2005-05-13 c:\windows\system32\VTTimer.exe]
"VTTrayp"="VTtrayp.exe" [2005-05-13 c:\windows\system32\VTTrayp.exe]
"nwiz"="nwiz.exe" [2005-02-24 c:\windows\system32\nwiz.exe]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2007-10-18 5724184]

c:\documents and settings\Magali\Menu D‚marrer\Programmes\D‚marrage\
Registration-PCTV.lnk - c:\program files\Pinnacle\Pinnacle PCTV\ERegister\RegTool.exe [2005-09-11 245760]

c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
Microsoft Office.lnk - c:\program files\Microsoft Office\Office\OSA9.EXE [2000-01-21 65588]
NkvMon.exe.lnk - c:\program files\Nikon\NkView5\NkvMon.exe [2005-12-21 233472]
FotoStation Easy AutoLaunch.lnk - c:\program files\FotoStation Easy\FotoStation Easy AutoLaunch.exe [2005-12-21 49152]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"vidc.DIV3"= DivXc32.dll
"vidc.DIV4"= DivXc32f.dll
"msacm.divxa32"= DivXa32.acm
"VIDC.HFYU"= huffyuv.dll
"vidc.ffds"= c:\program files\ffdshow\ffdshow.ax
"VIDC.I420"= c:\windows\system32\i263_32.drv
"vidc.I263"= I263_32.drv

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Messenger\\MSMSGS.EXE"=
"c:\\Program Files\\Pinnacle\\Pinnacle PCTV\\TeleText\\WebServer.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\WINDOWS\\System32\\dpvsetup.exe"=
"c:\\Program Files\\IncrediMail\\bin\\ImApp.exe"=
"c:\\Program Files\\IncrediMail\\bin\\IncMail.exe"=
"c:\\Program Files\\IncrediMail\\bin\\ImpCnt.exe"=
"c:\\Program Files\\Magentic\\bin\\Magentic.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\adslTV\\adsltv.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"c:\\Program Files\\Real\\RealPlayer\\RealPlay.exe"=

R2 BDVEDISK;BDVEDISK;c:\program files\BitDefender\BitDefender 2009\BDVEDISK.sys [2008-10-06 82696]
R3 bdfm;BDFM;c:\windows\system32\drivers\bdfm.sys [2008-09-18 111112]
R3 Bdfndisf;BitDefender Firewall NDIS Filter Service;c:\windows\system32\drivers\bdfndisf.sys [2009-02-03 104328]
R3 pctvvbi;PCTVVBI;c:\windows\system32\drivers\pctvvbi.sys [2005-09-11 6400]
S3 Arrakis3;BitDefender Arrakis Server;c:\program files\Fichiers communs\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe [2008-07-17 118784]
S3 ICAM3NT5;Caméra vidéo Intel USB III;c:\windows\system32\drivers\Icam3.sys [2005-10-16 141056]

--- Autres Services/Pilotes en mémoire ---

*NewlyCreated* - 2FBA7BB9
*Deregistered* - 2fba7bb9

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bdx REG_MULTI_SZ scan
.
Contenu du dossier 'Tâches planifiées'

2009-03-04 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-04-11 17:57]

2009-03-05 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-03-04 20:51]
.
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://portail.club-internet.fr/
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
uInternet Settings,ProxyOverride = 127.0.0.1
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Ouvrir l'image dans &Microsoft PhotoDraw - c:\progra~1\MICROS~2\Office\1036\phdintl.dll/phdContext.htm
DPF: Microsoft XML Parser for Java - file:///C:/WINDOWS/Java/classes/xmldso.cab
DPF: {B9907873-6560-4A36-B76B-9DADE84A7F55} - hxxps://www.fnacmusic.com/telechargementFnacmusic/FnacmusicDnl.CAB
DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} - hxxp://game06.zylom.com/activex/zylomgamesplayer.cab
FF - ProfilePath - c:\documents and settings\Magali\Application Data\Mozilla\Firefox\Profiles\tfixdzmy.default\
FF - prefs.js: browser.search.defaulturl - hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=
FF - prefs.js: browser.search.selectedEngine - MyStart Rechercher
FF - prefs.js: browser.startup.homepage - hxxp://portail.club-internet.fr/
FF - prefs.js: keyword.URL - hxxp://mystart.incredimail.com/?loc=ff_address_bar&search=
FF - component: c:\program files\Mozilla Firefox\components\FFComm.dll
FF - plugin: c:\program files\Google\Google Updater\2.4.1508.6312\npCIDetect13.dll
FF - plugin: c:\program files\Real\RealArcade\Plugins\Mozilla\npracplug.dll

---- PARAMETRES FIREFOX ----
FF - user.js: yahoo.homepage.dontask - true.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-03-05 20:46:23
Windows 5.1.2600 Service Pack 3 FAT NTAPI

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...

Scan terminé avec succès
Fichiers cachés: 0

**************************************************************************
.
Heure de fin: 2009-03-05 20:48:01
ComboFix-quarantined-files.txt 2009-03-05 19:48:00
ComboFix4.txt 2009-03-05 09:44:44
ComboFix3.txt 2009-03-05 09:51:16
ComboFix2.txt 2009-03-05 12:32:46

Avant-CF: 61 639 131 136 octets libres
Après-CF: 61,625,565,184 octets libres

244 --- E O F --- 2009-03-05 06:57:32

 Ajouter un commentaire
Ajouter un commentaire
Réponse
+0
moins plus
jlpjlp 50297Messages postés 18 mai 2007Date d'inscription 28 mai 2012Dernière intervention 5 mars 2009 à 20:53
ok tu avais branché tes autres disques suspects ou pas? et tu les avaient alimentés si besoin?


puis mets RSIt (disques branchés)

 Ajouter un commentaire
Ajouter un commentaire
Réponse
+0
moins plus
thaounet 92Messages postés 5 mars 2009Date d'inscription 15 septembre 2010Dernière intervention 5 mars 2009 à 21:01
Pour le rapport que je viens de te mettre, j'avais branché le disque dur externe oui.

faut que je le débranche pour mettre la clé usb à présent et que je refasse pareil pour la clé?

Tu entends pas quoi quand tu me demandes si je les avais alimentés? Scuse-moi j'ai pas compris.

 Ajouter un commentaire
Ajouter un commentaire
1 2 3 Suivant
Posez votre question
Ce document intitulé « Cheval de troie JS:ScriptIP-inf(Trj) » issu de CommentCaMarche (www.commentcamarche.net) est mis à disposition sous les termes de la licence Creative Commons. Vous pouvez copier, modifier des copies de cette page, dans les conditions fixées par la licence, tant que cette note apparaît clairement.
Dossier à la une
Passage au tout numérique : quel coût pour les particuliers ?
Cheval de troie JS:ScriptIP-inf(Trj) - page 2