UC 100 % tout le temps
Résolu/Fermé
A voir également:
- UC 100 % tout le temps
- Blocage agriculteur carte en temps réel - Guide
- Renommer plusieurs fichiers en même temps - Guide
- Combien de temps dure le sablier sur snap ✓ - Forum Snapchat
- 100 mo en go ✓ - Forum Windows
- Uc ordinateur ✓ - Forum Matériel & Système
76 réponses
pimprenelle27
Messages postés
20857
Date d'inscription
lundi 10 décembre 2007
Statut
Contributeur sécurité
Dernière intervention
8 octobre 2019
2 502
13 déc. 2009 à 13:07
13 déc. 2009 à 13:07
ba dite donc, vouloir éffacer ça : C:\Windows\System32\EXPLORER.exe, C:\Windows\System32\regedit.exe
moment de grace
Messages postés
29042
Date d'inscription
samedi 6 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
18 juillet 2013
2 274
9 déc. 2009 à 05:55
9 déc. 2009 à 05:55
bonjour
les 64 bits ne sont pas simples à désinfecter, mais je vais essayer de t'aider...
1) Désactiver le TeaTimer de Spybot (Merci à Nico et nathandre):
Pour désactiver le TeaTimer :
=> Ouvrir Spybot S&D
=> Dans le menu "Mode", séléctionner le mode avancé.
=> Une fenêtre demande confirmation cliquer sur "oui".
=> Une fois le mode avancé actif, ouvrir l'onglet "Outils".
=> Cliquer sur Résident.
=> La partie Résident comporte deux lignes qui sont normalement cochées :
*Résident "SDHelper" (bloqueur de téléchargements nuisibles pour Internet Explorer) actif.
* Résident "TeaTimer" (Protection des réglages système fondamentaux) actif
=> Décocher la ligne TeaTimer.
=> Redémarrer Spybot (le fermer et le réouvrir)
=> Retourner dans le menu Résident et vérifier qu'il soit bien désactivé
Spybot va géner les outils
2) • Télécharge Random's System Information Tool (RSIT) de Random/Random.
http://images.malwareremoval.com/random/RSIT.exe
• Enregistre le sur ton Bureau.
• Double clique sur RSIT.exe pour lancer l'outil.
• Clique sur "Continue" à l'écran Disclaimer.
• Si l'outil HijackThis n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu s'il te le demande)
et tu devras accepter la licence.
• Une fois le scan terminé, deux rapports vont apparaître : poste les dans deux messages séparés stp
Les rapports se trouvent à cet endroit:
C:\rsit\info.txt
C:\rsit\log.txt
les 64 bits ne sont pas simples à désinfecter, mais je vais essayer de t'aider...
1) Désactiver le TeaTimer de Spybot (Merci à Nico et nathandre):
Pour désactiver le TeaTimer :
=> Ouvrir Spybot S&D
=> Dans le menu "Mode", séléctionner le mode avancé.
=> Une fenêtre demande confirmation cliquer sur "oui".
=> Une fois le mode avancé actif, ouvrir l'onglet "Outils".
=> Cliquer sur Résident.
=> La partie Résident comporte deux lignes qui sont normalement cochées :
*Résident "SDHelper" (bloqueur de téléchargements nuisibles pour Internet Explorer) actif.
* Résident "TeaTimer" (Protection des réglages système fondamentaux) actif
=> Décocher la ligne TeaTimer.
=> Redémarrer Spybot (le fermer et le réouvrir)
=> Retourner dans le menu Résident et vérifier qu'il soit bien désactivé
Spybot va géner les outils
2) • Télécharge Random's System Information Tool (RSIT) de Random/Random.
http://images.malwareremoval.com/random/RSIT.exe
• Enregistre le sur ton Bureau.
• Double clique sur RSIT.exe pour lancer l'outil.
• Clique sur "Continue" à l'écran Disclaimer.
• Si l'outil HijackThis n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu s'il te le demande)
et tu devras accepter la licence.
• Une fois le scan terminé, deux rapports vont apparaître : poste les dans deux messages séparés stp
Les rapports se trouvent à cet endroit:
C:\rsit\info.txt
C:\rsit\log.txt
Merci de m'aider
Bloc note log
Logfile of random's system information tool 1.06 (written by random/random)
Run by Antoine at 2009-12-09 11:15:35
Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 1
System drive C: has 270 GB (57%) free of 477 GB
Total RAM: 4094 MB (46% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:15:48, on 2009-12-09
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v8.00 (8.00.6001.18828)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Users\Antoine\Desktop\RSIT.exe
C:\Users\Antoine\Desktop\Antoine.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files (x86)\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [CollaborationHost] C:\Windows\system32\p2phost.exe -s
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w3/pr01/resources/VistaMSNPUpldfr-ca.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Dragon Age: Origins - Content Updater (DAUpdaterSvc) - BioWare - C:\Program Files (x86)\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)
O23 - Service: Folding@home-CPU-[1] - Unknown owner - C:\Folding@HomeCPU\1\Fah.exe
O23 - Service: Folding@home-CPU-[2] - Unknown owner - C:\Folding@HomeCPU\2\Fah.exe
O23 - Service: Folding@home-CPU-[3] - Unknown owner - C:\Folding@HomeCPU\3\Fah.exe
O23 - Service: Folding@home-CPU-[4] - Unknown owner - C:\Folding@HomeCPU\4\Fah.exe
O23 - Service: Service Google Update (gupdate1c9922dc21b20de) (gupdate1c9922dc21b20de) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\SysWOW64\PSIService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Windows\SysWOW64\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
Bloc note log
Logfile of random's system information tool 1.06 (written by random/random)
Run by Antoine at 2009-12-09 11:15:35
Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 1
System drive C: has 270 GB (57%) free of 477 GB
Total RAM: 4094 MB (46% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:15:48, on 2009-12-09
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v8.00 (8.00.6001.18828)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Users\Antoine\Desktop\RSIT.exe
C:\Users\Antoine\Desktop\Antoine.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files (x86)\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [CollaborationHost] C:\Windows\system32\p2phost.exe -s
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w3/pr01/resources/VistaMSNPUpldfr-ca.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Dragon Age: Origins - Content Updater (DAUpdaterSvc) - BioWare - C:\Program Files (x86)\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)
O23 - Service: Folding@home-CPU-[1] - Unknown owner - C:\Folding@HomeCPU\1\Fah.exe
O23 - Service: Folding@home-CPU-[2] - Unknown owner - C:\Folding@HomeCPU\2\Fah.exe
O23 - Service: Folding@home-CPU-[3] - Unknown owner - C:\Folding@HomeCPU\3\Fah.exe
O23 - Service: Folding@home-CPU-[4] - Unknown owner - C:\Folding@HomeCPU\4\Fah.exe
O23 - Service: Service Google Update (gupdate1c9922dc21b20de) (gupdate1c9922dc21b20de) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\SysWOW64\PSIService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Windows\SysWOW64\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
moment de grace
Messages postés
29042
Date d'inscription
samedi 6 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
18 juillet 2013
2 274
9 déc. 2009 à 18:05
9 déc. 2009 à 18:05
rien de flagrant....
Téléchargez MalwareByte's Anti-Malware
https://www.majorgeeks.com/files/details/malwarebytes_anti_malware.html
. Sur la page cliques sur Télécharger Malwarebyte's Anti-Malware
. Enregistres le sur le bureau
. Double cliques sur le fichier téléchargé pour lancer le processus d'installation.
. Dans l'onglet "mise à jour", cliques sur le bouton Recherche de mise à jour
. Si le pare-feu demande l'autorisation de se connecter pour malwarebytes, accepte
. Une fois la mise à jour terminé
. Rend-toi dans l'onglet, Recherche
. Sélectionnes Exécuter un examen complet
. Cliques sur Rechercher
. Le scan démarre.
. A la fin de l'analyse, un message s'affiche : L'examen s'est terminé normalement. Cliquez sur 'Afficher les résultats' pour afficher tous les objets trouvés.
. Cliques sur Ok pour poursuivre.
. Si des malwares ont été détectés, clique sur Afficher les résultats
. Sélectionnes tout (ou laisses cochés) et cliques sur Supprimer la sélection Malwarebytes va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.
. Malwarebytes va ouvrir le bloc-notes et y copier le rapport d'analyse.
. Rends toi dans l'onglet rapport/log
. Tu cliques dessus pour l'afficher, une fois affiché
. Tu cliques sur edition en haut du boc notes, et puis sur sélectionner tous
. Tu recliques sur edition et puis sur copier et tu reviens sur le forum et dans ta réponse
. tu cliques droit dans le cadre de la reponse et coller
Si tu as besoin d'aide regarde ces tutoriels :
Aide: https://www.malekal.com/tutoriel-malwarebyte-anti-malware/
http://www.infos-du-net.com/forum/278396-11-tuto-malwarebytes-anti-malware-mbam
Téléchargez MalwareByte's Anti-Malware
https://www.majorgeeks.com/files/details/malwarebytes_anti_malware.html
. Sur la page cliques sur Télécharger Malwarebyte's Anti-Malware
. Enregistres le sur le bureau
. Double cliques sur le fichier téléchargé pour lancer le processus d'installation.
. Dans l'onglet "mise à jour", cliques sur le bouton Recherche de mise à jour
. Si le pare-feu demande l'autorisation de se connecter pour malwarebytes, accepte
. Une fois la mise à jour terminé
. Rend-toi dans l'onglet, Recherche
. Sélectionnes Exécuter un examen complet
. Cliques sur Rechercher
. Le scan démarre.
. A la fin de l'analyse, un message s'affiche : L'examen s'est terminé normalement. Cliquez sur 'Afficher les résultats' pour afficher tous les objets trouvés.
. Cliques sur Ok pour poursuivre.
. Si des malwares ont été détectés, clique sur Afficher les résultats
. Sélectionnes tout (ou laisses cochés) et cliques sur Supprimer la sélection Malwarebytes va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.
. Malwarebytes va ouvrir le bloc-notes et y copier le rapport d'analyse.
. Rends toi dans l'onglet rapport/log
. Tu cliques dessus pour l'afficher, une fois affiché
. Tu cliques sur edition en haut du boc notes, et puis sur sélectionner tous
. Tu recliques sur edition et puis sur copier et tu reviens sur le forum et dans ta réponse
. tu cliques droit dans le cadre de la reponse et coller
Si tu as besoin d'aide regarde ces tutoriels :
Aide: https://www.malekal.com/tutoriel-malwarebyte-anti-malware/
http://www.infos-du-net.com/forum/278396-11-tuto-malwarebytes-anti-malware-mbam
Malwarebytes' Anti-Malware 1.42
Version de la base de données: 3332
Windows 6.0.6001 Service Pack 1
Internet Explorer 8.0.6001.18828
2009-12-09 15:13:42
mbam-log-2009-12-09 (15-13-42).txt
Type de recherche: Examen complet (C:\|)
Eléments examinés: 336755
Temps écoulé: 1 hour(s), 53 minute(s), 23 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 1
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoActiveDesktopChanges (Hijack.DisplayProperties) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
Version de la base de données: 3332
Windows 6.0.6001 Service Pack 1
Internet Explorer 8.0.6001.18828
2009-12-09 15:13:42
mbam-log-2009-12-09 (15-13-42).txt
Type de recherche: Examen complet (C:\|)
Eléments examinés: 336755
Temps écoulé: 1 hour(s), 53 minute(s), 23 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 1
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoActiveDesktopChanges (Hijack.DisplayProperties) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
moment de grace
Messages postés
29042
Date d'inscription
samedi 6 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
18 juillet 2013
2 274
9 déc. 2009 à 21:29
9 déc. 2009 à 21:29
ca y est , j'ai repéré deux infections apparement
on va tenter de les faire sauter
Téléchargez USBFIX de Chiquitine29, C_xx
http://pagesperso-orange.fr/NosTools/Chiquitine29/UsbFix.exe
ou
https://www.ionos.fr/?affiliate_id=77097
/!\ Utilisateur de vista et windows 7 :
ne pas oublier de désactiver Le contrôle des comptes utilisateurs
https://www.commentcamarche.net/faq/8343-vista-desactiver-l-uac
/!\ Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) susceptible d'avoir été infectées sans les ouvrir
• Double clic sur le raccourci UsbFix présent sur le bureau .
• Choisir l'option 1 (Recherche)
(d’autres options disponibles, voir le tutoriel).
• Laissez travailler l'outil.
• Ensuite postez le rapport UsbFix.txt qui apparaîtra.
• Note : Le rapport UsbFix.txt est sauvegardé a la racine du disque. ( C:\UsbFix.txt )
( CTRL+A Pour tout sélectionner , CTRL+C pour copier et CTRL+V pour coller )
• Note : "Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.
• Tuto : http://pagesperso-orange.fr/NosTools/usbfix.html
on va tenter de les faire sauter
Téléchargez USBFIX de Chiquitine29, C_xx
http://pagesperso-orange.fr/NosTools/Chiquitine29/UsbFix.exe
ou
https://www.ionos.fr/?affiliate_id=77097
/!\ Utilisateur de vista et windows 7 :
ne pas oublier de désactiver Le contrôle des comptes utilisateurs
https://www.commentcamarche.net/faq/8343-vista-desactiver-l-uac
/!\ Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) susceptible d'avoir été infectées sans les ouvrir
• Double clic sur le raccourci UsbFix présent sur le bureau .
• Choisir l'option 1 (Recherche)
(d’autres options disponibles, voir le tutoriel).
• Laissez travailler l'outil.
• Ensuite postez le rapport UsbFix.txt qui apparaîtra.
• Note : Le rapport UsbFix.txt est sauvegardé a la racine du disque. ( C:\UsbFix.txt )
( CTRL+A Pour tout sélectionner , CTRL+C pour copier et CTRL+V pour coller )
• Note : "Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.
• Tuto : http://pagesperso-orange.fr/NosTools/usbfix.html
Voila
############################## | UsbFix V6.060 |
User : Antoine (Administrateurs) # BILLYBOBJOB
Update on 09/12/2009 by Chiquitine29, C_XX & Chimay8
Start at: 15:50:18 | 2009-12-09
Website : http://pagesperso-orange.fr/NosTools/index.html
Contact : FindyKill.Contact@gmail.com
Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz
Microsoft® Windows Vista™ Édition Familiale Premium (6.0.6001 64-bit) # Service Pack 1
Internet Explorer 8.0.6001.18828
Windows Firewall Status : Enabled
AV : avast! antivirus 4.8.1229 [VPS 081204-0] 4.8.1229 [ Enabled | Updated ]
A:\ -> Lecteur de disquettes 3 ½ pouces
C:\ -> Disque fixe local # 465,76 Go (263,61 Go free) # NTFS
D:\ -> Disque CD-ROM # 4,33 Go (0 Mo free) [HOME2] # UDF
E:\ -> Disque amovible
############################## | Processus actifs |
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe 1556
C:\Program Files\Alwil Software\Avast4\ashServ.exe 1576
C:\Folding@HomeCPU\1\Fah.exe 1364
C:\Folding@HomeCPU\2\Fah.exe 2056
C:\Folding@HomeCPU\3\Fah.exe 2076
C:\Folding@HomeCPU\4\Fah.exe 2100
C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe 2176
C:\Folding@HomeCPU\1\FahCore_78.exe 2260
C:\Folding@HomeCPU\2\FahCore_78.exe 2268
C:\Folding@HomeCPU\4\FahCore_78.exe 2316
C:\Folding@HomeCPU\3\FahCore_78.exe 2340
C:\Windows\SysWOW64\PnkBstrA.exe 2348
C:\Windows\SysWOW64\PSIService.exe 2384
C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe 2460
C:\Windows\SysWOW64\nvSCPAPISvr.exe 2520
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe 2784
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe 2848
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe 3592
C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe 3600
C:\Program Files\Alwil Software\Avast4\ashDisp.exe 3748
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe 3836
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe 3872
C:\Program Files (x86)\Mozilla Firefox\firefox.exe 3816
C:\Windows\SysWOW64\conime.exe 3380
################## | Fichiers # Dossiers infectieux |
C:\Windows\System32\regedit.exe
C:\Users\Antoine\AppData\Local\Temp\2996_Fiche_de_perso_DD3.5_psi_cases_total.zip
C:\Users\Antoine\AppData\Local\Temp\3028_Fiche_de_persoD_D3.5_casters2feuilles_cases_total.zip
C:\Users\Antoine\AppData\Local\Temp\3esheet09.zip
C:\Users\Antoine\AppData\Local\Temp\3espellsheet03.zip
C:\Users\Antoine\AppData\Local\Temp\drs-4--monstres-.zip
################## | Spyware.OnlineGames |
################## | Registre # Clés infectieuses |
################## | Registre # Mountpoints2 |
################## | Cracks / Keygens / Serials |
"C:\Users\Antoine\Desktop\far cry 2\the crack here\FarCry2.exe"
2008-10-22 04:49 |Size 35270 |Crc32 30b7778d |Md5 e9dba2342e6e52dc203d7c3fda20c47d
"C:\Users\Antoine\Desktop\Limewire download\Guitar Pro 5 + Serial\GP5\GP5FULLBK-1.exe"
2005-11-22 19:01 |Size 174838062 |Crc32 38b0b094 |Md5 e632362cd4b0954cf8a434f43c42f109
"C:\Users\Antoine\Desktop\M‚di‚val\DVD 1\Crack\medieval2.exe"
2006-11-06 11:28 |Size 19574784 |Crc32 dae5bb16 |Md5 3a6ebfc23d9125ead6c593ff6f60e3a1
"C:\Users\Antoine\Desktop\Sony.Sound.Forge.9.0e.Build.441.Incl.Keygen\Keygen.exe"
2008-12-04 18:28 |Size 141824 |Crc32 17f110bf |Md5 03889ef47642cd101fd9f673d98a1140
"C:\Users\Antoine\Desktop\Sony.Sound.Forge.9.0e.Build.441.Incl.Keygen\soundforge90e-trial_enu.exe"
2008-12-04 18:37 |Size 75104976 |Crc32 c6c19fe0 |Md5 0e54dfb5600da62cf3f6f5a09eeafe57
"C:\Users\Antoine\Desktop\Limewire download\Guitar Pro 5 + Serial.zip"
-> Contain : GP5\GP5FULLBK-1.exe
"C:\Users\Antoine\Downloads\Dragon Age Origins 1.01 Patch + Crack.zip"
-> Contain : Dragon Age Origins 1.01 Patch + Crack\Cracked Files\daorigins.exe
"C:\Users\Antoine\Downloads\Dragon Age Origins 1.01 Patch + Crack.zip"
-> Contain : Dragon Age Origins 1.01 Patch + Crack\DragonAge1.01a.exe
"C:\Users\Antoine\Downloads\Dragon Age Origins 1.01 Patch + Crack.zip"
-> Contain : Dragon Age Origins 1.01 Patch + Crack\FAH.exe
################## | ! Fin du rapport # UsbFix V6.060 ! |
############################## | UsbFix V6.060 |
User : Antoine (Administrateurs) # BILLYBOBJOB
Update on 09/12/2009 by Chiquitine29, C_XX & Chimay8
Start at: 15:50:18 | 2009-12-09
Website : http://pagesperso-orange.fr/NosTools/index.html
Contact : FindyKill.Contact@gmail.com
Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz
Microsoft® Windows Vista™ Édition Familiale Premium (6.0.6001 64-bit) # Service Pack 1
Internet Explorer 8.0.6001.18828
Windows Firewall Status : Enabled
AV : avast! antivirus 4.8.1229 [VPS 081204-0] 4.8.1229 [ Enabled | Updated ]
A:\ -> Lecteur de disquettes 3 ½ pouces
C:\ -> Disque fixe local # 465,76 Go (263,61 Go free) # NTFS
D:\ -> Disque CD-ROM # 4,33 Go (0 Mo free) [HOME2] # UDF
E:\ -> Disque amovible
############################## | Processus actifs |
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe 1556
C:\Program Files\Alwil Software\Avast4\ashServ.exe 1576
C:\Folding@HomeCPU\1\Fah.exe 1364
C:\Folding@HomeCPU\2\Fah.exe 2056
C:\Folding@HomeCPU\3\Fah.exe 2076
C:\Folding@HomeCPU\4\Fah.exe 2100
C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe 2176
C:\Folding@HomeCPU\1\FahCore_78.exe 2260
C:\Folding@HomeCPU\2\FahCore_78.exe 2268
C:\Folding@HomeCPU\4\FahCore_78.exe 2316
C:\Folding@HomeCPU\3\FahCore_78.exe 2340
C:\Windows\SysWOW64\PnkBstrA.exe 2348
C:\Windows\SysWOW64\PSIService.exe 2384
C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe 2460
C:\Windows\SysWOW64\nvSCPAPISvr.exe 2520
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe 2784
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe 2848
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe 3592
C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe 3600
C:\Program Files\Alwil Software\Avast4\ashDisp.exe 3748
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe 3836
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe 3872
C:\Program Files (x86)\Mozilla Firefox\firefox.exe 3816
C:\Windows\SysWOW64\conime.exe 3380
################## | Fichiers # Dossiers infectieux |
C:\Windows\System32\regedit.exe
C:\Users\Antoine\AppData\Local\Temp\2996_Fiche_de_perso_DD3.5_psi_cases_total.zip
C:\Users\Antoine\AppData\Local\Temp\3028_Fiche_de_persoD_D3.5_casters2feuilles_cases_total.zip
C:\Users\Antoine\AppData\Local\Temp\3esheet09.zip
C:\Users\Antoine\AppData\Local\Temp\3espellsheet03.zip
C:\Users\Antoine\AppData\Local\Temp\drs-4--monstres-.zip
################## | Spyware.OnlineGames |
################## | Registre # Clés infectieuses |
################## | Registre # Mountpoints2 |
################## | Cracks / Keygens / Serials |
"C:\Users\Antoine\Desktop\far cry 2\the crack here\FarCry2.exe"
2008-10-22 04:49 |Size 35270 |Crc32 30b7778d |Md5 e9dba2342e6e52dc203d7c3fda20c47d
"C:\Users\Antoine\Desktop\Limewire download\Guitar Pro 5 + Serial\GP5\GP5FULLBK-1.exe"
2005-11-22 19:01 |Size 174838062 |Crc32 38b0b094 |Md5 e632362cd4b0954cf8a434f43c42f109
"C:\Users\Antoine\Desktop\M‚di‚val\DVD 1\Crack\medieval2.exe"
2006-11-06 11:28 |Size 19574784 |Crc32 dae5bb16 |Md5 3a6ebfc23d9125ead6c593ff6f60e3a1
"C:\Users\Antoine\Desktop\Sony.Sound.Forge.9.0e.Build.441.Incl.Keygen\Keygen.exe"
2008-12-04 18:28 |Size 141824 |Crc32 17f110bf |Md5 03889ef47642cd101fd9f673d98a1140
"C:\Users\Antoine\Desktop\Sony.Sound.Forge.9.0e.Build.441.Incl.Keygen\soundforge90e-trial_enu.exe"
2008-12-04 18:37 |Size 75104976 |Crc32 c6c19fe0 |Md5 0e54dfb5600da62cf3f6f5a09eeafe57
"C:\Users\Antoine\Desktop\Limewire download\Guitar Pro 5 + Serial.zip"
-> Contain : GP5\GP5FULLBK-1.exe
"C:\Users\Antoine\Downloads\Dragon Age Origins 1.01 Patch + Crack.zip"
-> Contain : Dragon Age Origins 1.01 Patch + Crack\Cracked Files\daorigins.exe
"C:\Users\Antoine\Downloads\Dragon Age Origins 1.01 Patch + Crack.zip"
-> Contain : Dragon Age Origins 1.01 Patch + Crack\DragonAge1.01a.exe
"C:\Users\Antoine\Downloads\Dragon Age Origins 1.01 Patch + Crack.zip"
-> Contain : Dragon Age Origins 1.01 Patch + Crack\FAH.exe
################## | ! Fin du rapport # UsbFix V6.060 ! |
moment de grace
Messages postés
29042
Date d'inscription
samedi 6 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
18 juillet 2013
2 274
9 déc. 2009 à 22:29
9 déc. 2009 à 22:29
C:\Windows\System32\regedit.exe
en voilà un
Suppression :
REDEMARRE EN MODE SANS ECHEC ,
https://www.micro-astuce.com/depannage/demarrer-mode-sans-echec.php
puis :
▶ Relance List&Kill'em comme tu as fait pour l'option 1 (soit en clic droit pour vista),
mais cette fois-ci :
▶ choisis l'option 2 = Mode Destruction
laisse travailler l'outil
▶ colle le contenu de C:\Kill'em.txt dans ta réponse après avoir redémarré en mode normal
en voilà un
Suppression :
REDEMARRE EN MODE SANS ECHEC ,
https://www.micro-astuce.com/depannage/demarrer-mode-sans-echec.php
puis :
▶ Relance List&Kill'em comme tu as fait pour l'option 1 (soit en clic droit pour vista),
mais cette fois-ci :
▶ choisis l'option 2 = Mode Destruction
laisse travailler l'outil
▶ colle le contenu de C:\Kill'em.txt dans ta réponse après avoir redémarré en mode normal
moment de grace
Messages postés
29042
Date d'inscription
samedi 6 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
18 juillet 2013
2 274
9 déc. 2009 à 22:48
9 déc. 2009 à 22:48
antoine
ne tiens pas compte du post 8 (erreur de ma part)
mais fais ceci
● Relance UsbFix
● Dans le menu principale cette fois choisit l'option2
Le menu démarrer et les icônes vont à nouveau disparaître.. c'est normal.
Si un message te demande de redémarrer l'ordinateur fais le ...
● Au redémarrage, le fix se relance... laisses l'opération s'effectuer.
● Le bloc note s'ouvre avec un rapport, envoies le dans la prochaine réponse
ne tiens pas compte du post 8 (erreur de ma part)
mais fais ceci
● Relance UsbFix
● Dans le menu principale cette fois choisit l'option2
Le menu démarrer et les icônes vont à nouveau disparaître.. c'est normal.
Si un message te demande de redémarrer l'ordinateur fais le ...
● Au redémarrage, le fix se relance... laisses l'opération s'effectuer.
● Le bloc note s'ouvre avec un rapport, envoies le dans la prochaine réponse
############################## | UsbFix V6.060 |
User : Antoine (Administrateurs) # BILLYBOBJOB
Update on 09/12/2009 by Chiquitine29, C_XX & Chimay8
Start at: 21:15:39 | 2009-12-09
Website : http://pagesperso-orange.fr/NosTools/index.html
Contact : FindyKill.Contact@gmail.com
Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz
Microsoft® Windows Vista™ Édition Familiale Premium (6.0.6001 64-bit) # Service Pack 1
Internet Explorer 8.0.6001.18828
Windows Firewall Status : Enabled
AV : avast! antivirus 4.8.1229 [VPS 081204-0] 4.8.1229 [ Enabled | Updated ]
A:\ -> Lecteur de disquettes 3 ½ pouces
C:\ -> Disque fixe local # 465,76 Go (264,6 Go free) # NTFS
D:\ -> Disque CD-ROM # 4,33 Go (0 Mo free) [HOME2] # UDF
E:\ -> Disque amovible
############################## | Processus actifs |
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe 1456
C:\Program Files\Alwil Software\Avast4\ashServ.exe 1472
C:\Folding@HomeCPU\1\Fah.exe 1244
C:\Folding@HomeCPU\2\Fah.exe 2128
C:\Folding@HomeCPU\3\Fah.exe 2144
C:\Folding@HomeCPU\4\Fah.exe 2160
C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 2172
C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe 2228
C:\Folding@HomeCPU\1\FahCore_78.exe 2280
C:\Windows\SysWOW64\PnkBstrA.exe 2356
C:\Windows\SysWOW64\PSIService.exe 2388
C:\Folding@HomeCPU\3\FahCore_78.exe 2428
C:\Folding@HomeCPU\4\FahCore_78.exe 2476
C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe 2508
C:\Windows\SysWOW64\nvSCPAPISvr.exe 2552
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe 2892
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe 2920
C:\Folding@HomeCPU\2\FahCore_78.exe 2936
C:\Windows\SysWOW64\runonce.exe 3352
C:\Windows\SysWOW64\conime.exe 3388
################## | Fichiers # Dossiers infectieux |
Non supprimé ! C:\Windows\System32\regedit.exe
Supprimé ! C:\Users\Antoine\AppData\Local\Temp\2996_Fiche_de_perso_DD3.5_psi_cases_total.zip
Supprimé ! C:\Users\Antoine\AppData\Local\Temp\3028_Fiche_de_persoD_D3.5_casters2feuilles_cases_total.zip
Supprimé ! C:\Users\Antoine\AppData\Local\Temp\3esheet09.zip
Supprimé ! C:\Users\Antoine\AppData\Local\Temp\3espellsheet03.zip
Supprimé ! C:\Users\Antoine\AppData\Local\Temp\drs-4--monstres-.zip
Supprimé ! C:\$Recycle.Bin\S-1-5-20
Supprimé ! C:\$Recycle.Bin\S-1-5-21-1194067557-3750152249-3456971207-1000
################## | Spyware.OnlineGames |
################## | Registre # Clés infectieuses |
################## | Registre # Mountpoints2 |
################## | Listing des fichiers présent |
[2008-01-20 21:50|-rahs----|333203] C:\bootmgr
[2008-09-17 01:30|-ra-s----|8192] C:\BOOTSECT.BAK
[2006-12-01 22:37|--a------|904704] C:\msdia80.dll
[?|?|?] C:\pagefile.sys
[2009-12-09 21:19|--a------|2778] C:\UsbFix.txt
################## | Vaccination |
# C:\autorun.inf -> Dossier créé par UsbFix.
################## | Cracks / Keygens / Serials |
"C:\Users\Antoine\Desktop\far cry 2\the crack here\FarCry2.exe"
2008-10-22 04:49 |Size 35270 |Crc32 30b7778d |Md5 e9dba2342e6e52dc203d7c3fda20c47d
"C:\Users\Antoine\Desktop\Limewire download\Guitar Pro 5 + Serial\GP5\GP5FULLBK-1.exe"
2005-11-22 19:01 |Size 174838062 |Crc32 38b0b094 |Md5 e632362cd4b0954cf8a434f43c42f109
"C:\Users\Antoine\Desktop\M‚di‚val\DVD 1\Crack\medieval2.exe"
2006-11-06 11:28 |Size 19574784 |Crc32 dae5bb16 |Md5 3a6ebfc23d9125ead6c593ff6f60e3a1
"C:\Users\Antoine\Desktop\Sony.Sound.Forge.9.0e.Build.441.Incl.Keygen\Keygen.exe"
2008-12-04 18:28 |Size 141824 |Crc32 17f110bf |Md5 03889ef47642cd101fd9f673d98a1140
"C:\Users\Antoine\Desktop\Sony.Sound.Forge.9.0e.Build.441.Incl.Keygen\soundforge90e-trial_enu.exe"
2008-12-04 18:37 |Size 75104976 |Crc32 c6c19fe0 |Md5 0e54dfb5600da62cf3f6f5a09eeafe57
"C:\Users\Antoine\Desktop\Limewire download\Guitar Pro 5 + Serial.zip"
-> Contain : GP5\GP5FULLBK-1.exe
"C:\Users\Antoine\Downloads\Dragon Age Origins 1.01 Patch + Crack.zip"
-> Contain : Dragon Age Origins 1.01 Patch + Crack\Cracked Files\daorigins.exe
"C:\Users\Antoine\Downloads\Dragon Age Origins 1.01 Patch + Crack.zip"
-> Contain : Dragon Age Origins 1.01 Patch + Crack\DragonAge1.01a.exe
"C:\Users\Antoine\Downloads\Dragon Age Origins 1.01 Patch + Crack.zip"
-> Contain : Dragon Age Origins 1.01 Patch + Crack\FAH.exe
################## | Upload |
Veuillez envoyer le fichier : C:\Users\Antoine\Desktop\UsbFix_Upload_Me_Billybobjob.zip : https://www.ionos.fr/?affiliate_id=77097
Merci pour votre contribution .
################## | ! Fin du rapport # UsbFix V6.060 ! |
User : Antoine (Administrateurs) # BILLYBOBJOB
Update on 09/12/2009 by Chiquitine29, C_XX & Chimay8
Start at: 21:15:39 | 2009-12-09
Website : http://pagesperso-orange.fr/NosTools/index.html
Contact : FindyKill.Contact@gmail.com
Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz
Microsoft® Windows Vista™ Édition Familiale Premium (6.0.6001 64-bit) # Service Pack 1
Internet Explorer 8.0.6001.18828
Windows Firewall Status : Enabled
AV : avast! antivirus 4.8.1229 [VPS 081204-0] 4.8.1229 [ Enabled | Updated ]
A:\ -> Lecteur de disquettes 3 ½ pouces
C:\ -> Disque fixe local # 465,76 Go (264,6 Go free) # NTFS
D:\ -> Disque CD-ROM # 4,33 Go (0 Mo free) [HOME2] # UDF
E:\ -> Disque amovible
############################## | Processus actifs |
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe 1456
C:\Program Files\Alwil Software\Avast4\ashServ.exe 1472
C:\Folding@HomeCPU\1\Fah.exe 1244
C:\Folding@HomeCPU\2\Fah.exe 2128
C:\Folding@HomeCPU\3\Fah.exe 2144
C:\Folding@HomeCPU\4\Fah.exe 2160
C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 2172
C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe 2228
C:\Folding@HomeCPU\1\FahCore_78.exe 2280
C:\Windows\SysWOW64\PnkBstrA.exe 2356
C:\Windows\SysWOW64\PSIService.exe 2388
C:\Folding@HomeCPU\3\FahCore_78.exe 2428
C:\Folding@HomeCPU\4\FahCore_78.exe 2476
C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe 2508
C:\Windows\SysWOW64\nvSCPAPISvr.exe 2552
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe 2892
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe 2920
C:\Folding@HomeCPU\2\FahCore_78.exe 2936
C:\Windows\SysWOW64\runonce.exe 3352
C:\Windows\SysWOW64\conime.exe 3388
################## | Fichiers # Dossiers infectieux |
Non supprimé ! C:\Windows\System32\regedit.exe
Supprimé ! C:\Users\Antoine\AppData\Local\Temp\2996_Fiche_de_perso_DD3.5_psi_cases_total.zip
Supprimé ! C:\Users\Antoine\AppData\Local\Temp\3028_Fiche_de_persoD_D3.5_casters2feuilles_cases_total.zip
Supprimé ! C:\Users\Antoine\AppData\Local\Temp\3esheet09.zip
Supprimé ! C:\Users\Antoine\AppData\Local\Temp\3espellsheet03.zip
Supprimé ! C:\Users\Antoine\AppData\Local\Temp\drs-4--monstres-.zip
Supprimé ! C:\$Recycle.Bin\S-1-5-20
Supprimé ! C:\$Recycle.Bin\S-1-5-21-1194067557-3750152249-3456971207-1000
################## | Spyware.OnlineGames |
################## | Registre # Clés infectieuses |
################## | Registre # Mountpoints2 |
################## | Listing des fichiers présent |
[2008-01-20 21:50|-rahs----|333203] C:\bootmgr
[2008-09-17 01:30|-ra-s----|8192] C:\BOOTSECT.BAK
[2006-12-01 22:37|--a------|904704] C:\msdia80.dll
[?|?|?] C:\pagefile.sys
[2009-12-09 21:19|--a------|2778] C:\UsbFix.txt
################## | Vaccination |
# C:\autorun.inf -> Dossier créé par UsbFix.
################## | Cracks / Keygens / Serials |
"C:\Users\Antoine\Desktop\far cry 2\the crack here\FarCry2.exe"
2008-10-22 04:49 |Size 35270 |Crc32 30b7778d |Md5 e9dba2342e6e52dc203d7c3fda20c47d
"C:\Users\Antoine\Desktop\Limewire download\Guitar Pro 5 + Serial\GP5\GP5FULLBK-1.exe"
2005-11-22 19:01 |Size 174838062 |Crc32 38b0b094 |Md5 e632362cd4b0954cf8a434f43c42f109
"C:\Users\Antoine\Desktop\M‚di‚val\DVD 1\Crack\medieval2.exe"
2006-11-06 11:28 |Size 19574784 |Crc32 dae5bb16 |Md5 3a6ebfc23d9125ead6c593ff6f60e3a1
"C:\Users\Antoine\Desktop\Sony.Sound.Forge.9.0e.Build.441.Incl.Keygen\Keygen.exe"
2008-12-04 18:28 |Size 141824 |Crc32 17f110bf |Md5 03889ef47642cd101fd9f673d98a1140
"C:\Users\Antoine\Desktop\Sony.Sound.Forge.9.0e.Build.441.Incl.Keygen\soundforge90e-trial_enu.exe"
2008-12-04 18:37 |Size 75104976 |Crc32 c6c19fe0 |Md5 0e54dfb5600da62cf3f6f5a09eeafe57
"C:\Users\Antoine\Desktop\Limewire download\Guitar Pro 5 + Serial.zip"
-> Contain : GP5\GP5FULLBK-1.exe
"C:\Users\Antoine\Downloads\Dragon Age Origins 1.01 Patch + Crack.zip"
-> Contain : Dragon Age Origins 1.01 Patch + Crack\Cracked Files\daorigins.exe
"C:\Users\Antoine\Downloads\Dragon Age Origins 1.01 Patch + Crack.zip"
-> Contain : Dragon Age Origins 1.01 Patch + Crack\DragonAge1.01a.exe
"C:\Users\Antoine\Downloads\Dragon Age Origins 1.01 Patch + Crack.zip"
-> Contain : Dragon Age Origins 1.01 Patch + Crack\FAH.exe
################## | Upload |
Veuillez envoyer le fichier : C:\Users\Antoine\Desktop\UsbFix_Upload_Me_Billybobjob.zip : https://www.ionos.fr/?affiliate_id=77097
Merci pour votre contribution .
################## | ! Fin du rapport # UsbFix V6.060 ! |
moment de grace
Messages postés
29042
Date d'inscription
samedi 6 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
18 juillet 2013
2 274
10 déc. 2009 à 07:03
10 déc. 2009 à 07:03
ok
1)
Veuillez envoyer le fichier : C:\Users\Antoine\Desktop\UsbFix_Upload_Me_Billybobjob.zip : https://www.ionos.fr/?affiliate_id=77097
Merci pour votre contribution .
2)
Desactive ton antivirus le temps de la manip ainsi que ton parefeu si présent
▶ Télécharge List&Kill'em et enregistre le sur ton bureau
http://sd-1.archive-host.com/membres/up/829108531491024/List_Killem.zip
Il ne necessite pas d'installation
▶double clic (clic droit "executer en tant qu'administrateur" pour Vista) pour lancer le scan
choisis la langue puis choisis l'option 1 = Mode Recherche
▶laisse travailler l'outil
à la fin du scan la fenêtre se referme seule.
ouvre C:\List'em.txt
▶colle le contenu dans ta prochaine réponse
1)
Veuillez envoyer le fichier : C:\Users\Antoine\Desktop\UsbFix_Upload_Me_Billybobjob.zip : https://www.ionos.fr/?affiliate_id=77097
Merci pour votre contribution .
2)
Desactive ton antivirus le temps de la manip ainsi que ton parefeu si présent
▶ Télécharge List&Kill'em et enregistre le sur ton bureau
http://sd-1.archive-host.com/membres/up/829108531491024/List_Killem.zip
Il ne necessite pas d'installation
▶double clic (clic droit "executer en tant qu'administrateur" pour Vista) pour lancer le scan
choisis la langue puis choisis l'option 1 = Mode Recherche
▶laisse travailler l'outil
à la fin du scan la fenêtre se referme seule.
ouvre C:\List'em.txt
▶colle le contenu dans ta prochaine réponse
List'em by g3n-h@ckm@n 1.1.4.1
Thx to Chiquitine29.....& CCM team
User : Antoine (Administrateurs) # BILLYBOBJOB
Update on 09/12/2009 by g3n-h@ckm@n ::::: 17:00
Start at: 12:42:16 | 2009-12-10
Contact : g3n-h@ckm@n sur CCM
Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz
Microsoft® Windows Vista™ Édition Familiale Premium (6.0.6001 64-bit) # Service Pack 1
Internet Explorer 8.0.6001.18828
Windows Firewall Status : Disabled
AV : avast! antivirus 4.8.1229 [VPS 081204-0] 4.8.1229 [ Enabled | Updated ]
A:\ -> Lecteur de disquettes 3 ½ pouces
C:\ -> Disque fixe local | 465,76 Go (263,16 Go free) | NTFS
D:\ -> Disque CD-ROM | 4,33 Go (0 Mo free) [HOME2] | UDF
E:\ -> Disque amovible
¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Processes running
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe 1440
C:\Program Files\Alwil Software\Avast4\ashServ.exe 1568
C:\Folding@HomeCPU\1\Fah.exe 1552
C:\Folding@HomeCPU\2\Fah.exe 2072
C:\Folding@HomeCPU\3\Fah.exe 2092
C:\Folding@HomeCPU\4\Fah.exe 2108
C:\Folding@HomeCPU\1\FahCore_78.exe 2192
C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe 2200
C:\Folding@HomeCPU\2\FahCore_78.exe 2272
C:\Windows\SysWOW64\PnkBstrA.exe 2308
C:\Windows\SysWOW64\PSIService.exe 2360
C:\Folding@HomeCPU\4\FahCore_78.exe 2392
C:\Folding@HomeCPU\3\FahCore_78.exe 2432
C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe 2476
C:\Windows\SysWOW64\nvSCPAPISvr.exe 2528
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe 3376
C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe 3384
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe 3548
C:\Program Files\Alwil Software\Avast4\ashDisp.exe 3588
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe 3752
C:\Users\Antoine\Desktop\List_Kill'em.exe 5028
C:\Windows\SysWOW64\conime.exe 5092
C:\Windows\SysWOW64\cmd.exe 1316
C:\Users\Antoine\AppData\Local\Temp\10F1.tmp\pv.exe 1512
======================
Keys "Run"
======================
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
LightScribe Control Panel REG_SZ C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} REG_SZ "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
MsnMsgr REG_SZ "C:\Program Files (x86)\Windows Live\Messenger\MsnMsgr.Exe" /background
ehTray.exe REG_SZ C:\Windows\ehome\ehTray.exe
CollaborationHost REG_SZ C:\Windows\system32\p2phost.exe -s
WMPNSCFG REG_SZ C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
avast! REG_SZ C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
GrooveMonitor REG_SZ "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
Adobe Reader Speed Launcher REG_SZ "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
=====================
Other Keys
=====================
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
ConsentPromptBehaviorAdmin REG_DWORD 2 (0x2)
ConsentPromptBehaviorUser REG_DWORD 1 (0x1)
EnableInstallerDetection REG_DWORD 1 (0x1)
EnableLUA REG_DWORD 1 (0x1)
EnableSecureUIAPaths REG_DWORD 1 (0x1)
EnableVirtualization REG_DWORD 1 (0x1)
PromptOnSecureDesktop REG_DWORD 1 (0x1)
ValidateAdminCodeSignatures REG_DWORD 0 (0x0)
dontdisplaylastusername REG_DWORD 0 (0x0)
legalnoticecaption REG_SZ
legalnoticetext REG_SZ
scforceoption REG_DWORD 0 (0x0)
shutdownwithoutlogon REG_DWORD 1 (0x1)
undockwithoutlogon REG_DWORD 1 (0x1)
FilterAdministratorToken REG_DWORD 0 (0x0)
EnableUIADesktopToggle REG_DWORD 0 (0x0)
===============
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
NoDriveAutoRun REG_DWORD 145 (0x91)
NoDriveTypeAutoRun REG_DWORD 145 (0x91)
HonorAutoRunSetting REG_DWORD 0 (0x0)
===============
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
NoActiveDesktop REG_DWORD 1 (0x1)
ForceActiveDesktopOn REG_DWORD 0 (0x0)
NoActiveDesktopChanges REG_DWORD 0 (0x0)
NoDriveAutoRun REG_DWORD 145 (0x91)
NoDriveTypeAutoRun REG_DWORD 145 (0x91)
HonorAutoRunSetting REG_DWORD 0 (0x0)
===============
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
AppInit_DLLS REG_SZ
===============
===============
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
{B5A7F190-DDA6-4420-B3BA-52453494E6CD} REG_SZ Groove GFS Stub Execution Hook
===============
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
C:\Program Files (x86)\BitTorrent\bittorrent.exe REG_SZ C:\Program Files (x86)\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
===============
BHO :
======
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{53707962-6F74-2D53-2644-206D7942484F}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
================
Internet Explorer :
================
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
Start Page REG_SZ https://www.msn.com/fr-fr
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
Start Page REG_SZ http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
========
Services
========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services]
Ndisuio : 0x3
EapHost : 0x3
Wlansvc : 0x3
SharedAccess : 0x4
windefend : 0x2
wuauserv : 0x2
wscsvc : 0x2
=========
=======
Drive :
=======
==========
Programs
==========
Adobe
AGEIA Technologies
Atari
Audacity
Bethesda Softworks
BitTorrent
Common Files
Corel
DENON_DJ
desktop.ini
Diablo II
DNA
Dragon Age
EA GAMES
El Juky
Electronic Arts
Evolved Games
Google
Guitar Pro 5
InstallShield Installation Information
Internet Explorer
Java
LimeWire
Lionhead Studios
Malwarebytes' Anti-Malware
Messenger Plus! Live
Microsoft
Microsoft ActiveSync
Microsoft Games for Windows - LIVE
Microsoft Office
Microsoft SQL Server Compact Edition
Microsoft Sync Framework
Microsoft Visual Studio
Microsoft Visual Studio 8
Microsoft Works
Microsoft Works Suite 2005
Microsoft.NET
Mozilla Firefox
MSBuild
MSXML 4.0
Nero
OpenAL
PrintKey 2000 Fr
Realtek
Reference Assemblies
SEGA
Sony
Sony Setup
SpeedFan
Spybot - Search & Destroy
Steam
SystemRequirementsLab
Thief - Deadly Shadows
Ubisoft
Uninstall Information
USB(CIF) Camera
VideoLAN
Vstplugins
Windows Calendar
Windows Collaboration
Windows Defender
Windows Live
Windows Live Favorites
Windows Live SkyDrive
Windows Live Toolbar
Windows Mail
Windows Media Player
Windows NT
Windows Photo Gallery
Windows Sidebar
WinRAR
¤¤¤¤¤¤¤¤¤¤ Files/folders :
C:\Program Files (x86)\Mozilla FireFox\Components\AskSearch.js
C:\Windows\System32\EXPLORER.exe
C:\Windows\system32\regedit.exe
C:\Users\Antoine\LOCAL Settings\Temp\_is7C70.exe
C:\Users\Antoine\LOCAL Settings\Temp\_is8101.exe
¤¤¤¤¤¤¤¤¤¤ Keys :
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer "NoActiveDesktopChanges"
HKCR\CLSID\{9afb8248-617f-460d-9366-d71cdeda3179}
HKLM\Software\Classes\CLSID\{9AFB8248-617F-460D-9366-D71CDEDA3179}
=========
Rootkits
=========
driver loading error catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-12-10 12:44:55
Windows 6.0.6001 Service Pack 1 WOW64 NTFS
scanning hidden files ...
IPC error: 2 Le fichier spécifié est introuvable.
C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 3840 bytes
C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 3840 bytes
C:\Windows\System32\Alert.bmp 810056 bytes
C:\Windows\System32\AsusSetup.exe 495616 bytes executable
C:\Windows\System32\AsusSetup.ini 907 bytes
C:\Windows\System32\AvastSS.scr 97480 bytes executable
C:\Windows\System32\Boot\fr-FR
C:\Windows\System32\brcoinst.dll 19456 bytes executable
C:\Windows\System32\catroot
C:\Windows\System32\catroot\TMPD418.tmp 7583 bytes
C:\Windows\System32\catroot\TMPD8EB.tmp 10515 bytes
C:\Windows\System32\catroot\TMPDBD9.tmp 7583 bytes
C:\Windows\System32\catroot\TMPDDA0.tmp 11707 bytes
C:\Windows\System32\catroot\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-CaptureWizard-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 11055 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-CaptureWizard-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 11925 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Features-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 260946 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Features-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 816142 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-LanguagePack-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-ClipsInTheLibrary-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 9001 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-ClipsInTheLibrary-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 9581 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-CodecPack-Basic-Encoder-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 11039 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-CodecPack-Basic-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 14551 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-DFSR-ClientEdition-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 9871 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-DFSR-ClientEdition-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 10757 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Disk-Diagnosis-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 9589 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Disk-Diagnosis-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 10169 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Foundation-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 8123 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-GPUPipeline-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 8413 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-GPUPipeline-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 10749 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Help-CoreClientUAHP-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 38595 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Help-CoreClientUAHP-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 23493 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Help-Customization-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 8703 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-BRCpl-Premium-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 9879 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-DesktopWindowManager-uDWM-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 9001 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Help-Customization-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 9283 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-InternetExplorer-8-Package-MiniLP~31bf3856ad364e35~amd64~en-US~8.0.6001.18702.cat 7576 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Links-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 8123 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MobilePC-Client-Premium-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 12215 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-NetFx3-OC-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 137938 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-PeerToPeer-AdhocMeetings-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 13423 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-HomePremiumEdition~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 13343 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-IIS-WebServer-AddOn-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 65720 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-IIS-WebServer-AddOn-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 120148 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-IIS-WebServer-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 58211 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-IIS-WebServer-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 82524 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Indexing-Service-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 11933 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Indexing-Service-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 13689 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-InternetExplorer-8-LanguagePack~31bf3856ad364e35~amd64~fr-FR~8.0.6001.18702.cat 58700 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Format-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 21341 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Format-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 228341 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MediaCenter-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 24861 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MediaCenter-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 98375 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MediaPlayer-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 25465 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MediaPlayer-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 121675 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MobilePC-Client-Basic-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 10177 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MobilePC-Client-Basic-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 11329 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MobilePC-Client-Premium-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 11353 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MobilePC-Client-SideShow-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 11643 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MobilePC-Client-SideShow-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 14543 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MobilePC-Help-AnytimeUpgrade-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 9001 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MobilePC-Help-AnytimeUpgrade-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 8703 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MovieMaker-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 12239 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MovieMaker-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 17773 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MSMQ-Client-Home-Premium-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 11329 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MSMQ-Client-Home-Premium-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 28985 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-NetFx3-OC-Package~31bf3856ad364e35~amd64~en-US~6.0.6000.16386.cat 27351 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-NetFx3-OC-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 53261 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-OpticalMediaDisc-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 10177 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-OpticalMediaDisc-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 124242 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-ParentalControls-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 21397 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-ParentalControls-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 26053 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-PeerToPeer-AdhocMeetings-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 9001 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-RasRip-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 9001 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-RasRip-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 9001 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-RDC-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 8413 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-RDC-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 9879 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-RecDisc-SDP-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6001.18000.cat 13280 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-RecDisc-SDP-Package~31bf3856ad364e35~amd64~~6.0.6001.18000.cat 18167 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-RemoteAssistance-Package-Client~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 11957 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-RemovableStorageManagement-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 12545 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-RemovableStorageManagement-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 14027 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-SampleContent-Movies-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 10733 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-SampleContent-Music-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 14793 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-ServicingBaseline-HomePremium-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 8703 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Shell-InboxGames-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 13971 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Shell-InboxGames-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 18353 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Shell-PremiumInboxGames-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 10757 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Shell-PremiumInboxGames-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 12803 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-SimpleTCP-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 9001 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-SimpleTCP-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 9291 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-SNMP-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 14293 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-SNMP-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 30879 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-SystemRestore-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 12545 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-SystemRestore-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 18638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-TabletPC-OC-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 28163 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Telnet-Client-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 9001 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Telnet-Client-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 9291 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Telnet-Server-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 10177 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Telnet-Server-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 11047 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-TFTP-Client-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 9001 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-TFTP-Client-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 9001 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-VistaServicePack-SysHiper-SP1-Package~31bf3856ad364e35~amd64~~6.0.6002.18005.cat 9918 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-VistaServicePack-UninstallRemoval-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6001.18000.cat 11516 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-VistaServicePack-UninstallRemoval-Package~31bf3856ad364e35~amd64~~6.0.6001.18000.cat 11516 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Networking-MPSSVC-Rules-HomePremiumEdition-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 14503 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\nt5.cat 6106074 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\ntexe.cat 221046 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\ntpe.cat 1052954 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\ntph.cat 1139256 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\ntprint.cat 19168 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem10.CAT 11122 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem11.CAT 77391 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem12.CAT 8050 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem15.CAT 385364 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem16.CAT 390801 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem17.CAT 11699 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem18.CAT 456905 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem2.CAT 7814 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem3.CAT 8014 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_12_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 15618 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_12_for_KB948465~31bf3856ad364e35~amd64~fr-FR~6.0.1.18005.cat 42143 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_12_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 9338 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_12_for_KB972036~31bf3856ad364e35~amd64~~6.0.2.0.cat 26637 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_130_for_KB972145~31bf3856ad364e35~amd64~~6.0.1.5.cat 23253 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_131_for_KB972145~31bf3856ad364e35~amd64~~6.0.1.5.cat 12026 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_13_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_13_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 12104 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_13_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 19742 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_13_for_KB948465~31bf3856ad364e35~amd64~fr-FR~6.0.1.18005.cat 13171 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_140_for_KB967723~31bf3856ad364e35~amd64~~6.0.1.7.cat 9658 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_143_for_KB967723~31bf3856ad364e35~amd64~~6.0.1.7.cat 18001 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_144_for_KB967723~31bf3856ad364e35~amd64~~6.0.1.7.cat 10849 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_14_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_16_for_KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 12684 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_16_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 24430 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_16_for_KB948465~31bf3856ad364e35~amd64~fr-FR~6.0.1.18005.cat 59341 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_16_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 33180 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_16_for_KB950582~31bf3856ad364e35~amd64~~6.0.1.1.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_16_for_KB958483~31bf3856ad364e35~amd64~~6.0.1.2.cat 27261 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_16_for_KB958623~31bf3856ad364e35~amd64~~6.0.1.1.cat 10555 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_17_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_17_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 101163 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_17_for_KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 12104 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_17_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 13878 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_17_for_KB948465~31bf3856ad364e35~amd64~fr-FR~6.0.1.18005.cat 127001 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_17_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 268575 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_185_for_KB967723~31bf3856ad364e35~amd64~~6.0.1.7.cat 26968 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_186_for_KB967723~31bf3856ad364e35~amd64~~6.0.1.7.cat 19178 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_187_for_KB967723~31bf3856ad364e35~amd64~~6.0.1.7.cat 10849 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_19_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 12394 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_19_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 12692 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_19_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 15618 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_19_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 11384 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_19_for_KB970430~31bf3856ad364e35~amd64~~6.0.1.6.cat 9658 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_1_for_KB905866~31bf3856ad364e35~amd64~~6.0.35.0.cat 10834 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_1_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_1_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 12410 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_1_for_KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 36800 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_1_for_KB937287~31bf3856ad364e35~amd64~~6.0.1.18000.cat 37077 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_1_for_KB948609~31bf3856ad364e35~amd64~~6.0.6001.3053.cat 324391 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_1_for_KB948610~31bf3856ad364e35~amd64~~6.0.6001.2123.cat 50740 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_1_for_KB948881~31bf3856ad364e35~amd64~~6.0.1.1.cat 12380 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_1_for_KB950124~31bf3856ad364e35~amd64~~6.0.1.0.cat 12380 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_1_for_KB950125~31bf3856ad364e35~amd64~~6.0.1.0.cat 12380 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_20_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 24430 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_20_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 13140 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_210_for_KB970430~31bf3856ad364e35~amd64~~6.0.1.6.cat 10834 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_218_for_KB970430~31bf3856ad364e35~amd64~~6.0.1.6.cat 9658 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_21_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_21_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 11516 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_21_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 13878 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_21_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 10216 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_229_for_KB972145~31bf3856ad364e35~amd64~~6.0.1.5.cat 16150 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_22_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-RemoteAssistance-Package-Client~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 14019 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Sidebar-Killbits-SDP-Package~31bf3856ad364e35~amd64~~6.0.6001.18000.cat 11218 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-TabletPC-OC-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 73416 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-VistaSP1CEIP-Package~31bf3856ad364e35~amd64~~6.0.6001.18000.cat 11516 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem4.CAT 9964 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_24_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 11516 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_24_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 24430 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_25_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_25_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 17452 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_25_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 12104 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_25_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 24430 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_26_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_26_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 15656 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_26_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 15618 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_26_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 169076 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_26_for_KB967723~31bf3856ad364e35~amd64~~6.0.1.7.cat 20434 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_277_for_KB970653~31bf3856ad364e35~amd64~~6.0.1.0.cat 10500 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_277_for_KB976098~31bf3856ad364e35~amd64~~6.0.1.1.cat 10515 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_27_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_27_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 20272 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_27_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 24430 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_27_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 2165303 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_28_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_2_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 11814 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_2_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 11806 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_2_for_KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_2_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 23986 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_2_for_KB938464~31bf3856ad364e35~amd64~~6.0.1.5.cat 112977 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_2_for_KB941693~31bf3856ad364e35~amd64~~6.0.1.2.cat 13266 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_2_for_KB948465~31bf3856ad364e35~amd64~fr-FR~6.0.1.18005.cat 19640 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_2_for_KB948590~31bf3856ad364e35~amd64~~6.0.1.0.cat 22965 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_2_for_KB948609~31bf3856ad364e35~amd64~~6.0.6001.3053.cat 499319 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_2_for_KB948610~31bf3856ad364e35~amd64~~6.0.6001.2123.cat 28136 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_32_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 43428 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_32_for_KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 15632 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_32_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 24430 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_33_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_33_for_KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 13868 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_33_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 15618 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_33_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 22968 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_34_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_34_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 16872 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_34_for_KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 28344 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_34_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 15618 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_35_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_35_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 12104 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_35_for_KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 11508 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_35_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 24430 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_35_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 44552 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_36_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 11516 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_36_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 19048 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_36_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 24430 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_36_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 16763 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_37_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_37_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 13878 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_37_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 18722 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_38_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_38_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 13304 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_38_for_KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 11516 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_38_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 24430 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_38_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 24288 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_39_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_39_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 19514 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_39_for_KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 11508 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_39_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 24430 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_39_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 14316 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3_for_KB905866~31bf3856ad364e35~amd64~~6.0.35.0.cat 10834 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 12394 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 11516 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 17769 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3_for_KB948465~31bf3856ad364e35~amd64~fr-FR~6.0.1.18005.cat 57502 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 10216 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3_for_KB948610~31bf3856ad364e35~amd64~~6.0.6001.2123.cat 105799 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3_for_KB948881~31bf3856ad364e35~amd64~~6.0.1.1.cat 12380 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3_for_KB950126~31bf3856ad364e35~amd64~~6.0.1.1.cat 12686 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3_for_KB950762~31bf3856ad364e35~amd64~~6.0.1.0.cat 15038 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3_for_KB951066~31bf3856ad364e35~amd64~~6.0.1.0.cat 36174 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3_for_KB951376~31bf3856ad364e35~amd64~~6.0.1.1.cat 14474 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3_for_KB951698~31bf3856ad364e35~amd64~~6.0.1.0.cat 13862 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3_for_KB952709~31bf3856ad364e35~amd64~~6.0.1.2.cat 61089 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3_for_KB952714~31bf3856ad364e35~amd64~~6.0.1.0.cat 17922 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3_for_KB953839~31bf3856ad364e35~amd64~~6.0.1.0.cat 12380 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_43_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 23494 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_43_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 15618 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_43_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 10788 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_43_for_KB949247~31bf3856ad364e35~amd64~~6.0.6001.2123.cat 120063 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_43_for_KB950582~31bf3856ad364e35~amd64~~6.0.1.1.cat 10930 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_43_for_KB958623~31bf3856ad364e35~amd64~~6.0.1.1.cat 9089 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_44_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_44_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 16212 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_44_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 15618 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_44_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 77884 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_44_for_KB950582~31bf3856ad364e35~amd64~~6.0.1.1.cat 10930 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_48_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 372143 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_48_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 12974 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_48_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 24430 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_48_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 13430 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_49_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_49_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 13570 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_49_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 15618 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_49_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 20800 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_49_for_KB951072~31bf3856ad364e35~amd64~~6.0.2.0.cat 13572 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_49_for_KB955839~31bf3856ad364e35~amd64~~6.0.1.0.cat 11731 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_49_for_KB970653~31bf3856ad364e35~amd64~~6.0.1.0.cat 10500 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_49_for_KB976098~31bf3856ad364e35~amd64~~6.0.1.1.cat 10515 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_4_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_4_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 14474 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_4_for_KB948610~31bf3856ad364e35~amd64~~6.0.6001.2123.cat 252863 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_22_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 43050 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_24_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 15296 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_26_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 12394 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_28_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 13546 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_2_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_2_for_KB950124~31bf3856ad364e35~amd64~~6.0.1.0.cat 12380 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_2_for_KB955302~31bf3856ad364e35~amd64~~6.0.1.1.cat 13862 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_2_for_KB958644~31bf3856ad364e35~amd64~~6.0.1.0.cat 25845 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_2_for_KB970238~31bf3856ad364e35~amd64~~6.0.1.0.cat 35118 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_2_for_KB974455~31bf3856ad364e35~amd64~~6.0.1.0.cat 404235 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_30_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 3749616 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_32_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Printing-XPSServices-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 10161 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_20_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 370521 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_36_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_52_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_94_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 31695 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_for_KB952709~31bf3856ad364e35~amd64~~6.0.1.2.cat 10930 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_for_KB959130_client_1~31bf3856ad364e35~amd64~~6.0.1.0.cat 9089 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_52_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 24452 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_52_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 32373 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_52_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 98263 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_53_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_53_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 11516 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_53_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 36501 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_54_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_54_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 103913 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_54_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 10930 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_59_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 15358 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_59_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 17860 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_5_for_KB905866~31bf3856ad364e35~amd64~~6.0.35.0.cat 10834 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_5_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_5_for_KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 11516 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_5_for_KB938464~31bf3856ad364e35~amd64~~6.0.1.5.cat 112881 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_5_for_KB941693~31bf3856ad364e35~amd64~~6.0.1.2.cat 13266 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_5_for_KB948590~31bf3856ad364e35~amd64~~6.0.1.0.cat 22869 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_5_for_KB949247~31bf3856ad364e35~amd64~~6.0.6001.2123.cat 47516 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_5_for_KB950126~31bf3856ad364e35~amd64~~6.0.1.1.cat 66892 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_5_for_KB950582~31bf3856ad364e35~amd64~~6.0.1.1.cat 222246 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_5_for_KB952069~31bf3856ad364e35~amd64~~6.0.1.0.cat 83956 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_5_for_KB953155~31bf3856ad364e35~amd64~~6.0.1.4.cat 15054 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_5_for_KB953733~31bf3856ad364e35~amd64~~6.0.1.0.cat 20322 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_69_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 14018 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_6_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_6_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 12700 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_6_for_KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 15044 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_6_for_KB948465~31bf3856ad364e35~amd64~fr-FR~6.0.1.18005.cat 13486 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_6_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 11921 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_6_for_KB949246~31bf3856ad364e35~amd64~~6.0.6001.3053.cat 205495 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_6_for_KB949247~31bf3856ad364e35~amd64~~6.0.6001.2123.cat 83187 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_6_for_KB952069~31bf3856ad364e35~amd64~~6.0.1.0.cat 100632 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_6_for_KB954366~31bf3856ad364e35~amd64~~6.0.1.3.cat 29650 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_6_for_KB956572~31bf3856ad364e35~amd64~~6.0.1.5.cat 35940 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_7_for_KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 11516 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_7_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 99506 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_7_for_KB948465~31bf3856ad364e35~amd64~fr-FR~6.0.1.18005.cat 11368 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_7_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 10208 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_7_for_KB961501~31bf3856ad364e35~amd64~~6.0.1.1.cat 10800 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_7_for_KB971961~31bf3856ad364e35~amd64~~6.0.1.0.cat 10834 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_7_for_KB972036~31bf3856ad364e35~amd64~~6.0.2.0.cat 22529 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_7_for_KB973540~31bf3856ad364e35~amd64~~6.0.1.0.cat 28569 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_7_for_KB973687~31bf3856ad364e35~amd64~~6.0.1.1.cat 16165 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_7_for_KB974306~31bf3856ad364e35~amd64~~6.0.1.2.cat 72064 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_95_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 11798 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_9_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_9_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 24430 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_9_for_KB948465~31bf3856ad364e35~amd64~fr-FR~6.0.1.18005.cat 10803 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_9_for_KB948609~31bf3856ad364e35~amd64~~6.0.6001.3053.cat 813063 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_9_for_KB948610~31bf3856ad364e35~amd64~~6.0.6001.2123.cat 348015 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_9_for_KB958483~31bf3856ad364e35~amd64~~6.0.1.2.cat 10845 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_9_for_KB967632~31bf3856ad364e35~amd64~~6.0.1.2.cat 72927 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_9_for_KB968816~31bf3856ad364e35~amd64~~6.0.1.1.cat 75079 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-WindowsFoundation-LanguagePack-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 1462632 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-WMI-SNMP-Provider-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 9895 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-WMI-SNMP-Provider-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 11667 bytes
C:\Windows\System32\catroot\{F
Thx to Chiquitine29.....& CCM team
User : Antoine (Administrateurs) # BILLYBOBJOB
Update on 09/12/2009 by g3n-h@ckm@n ::::: 17:00
Start at: 12:42:16 | 2009-12-10
Contact : g3n-h@ckm@n sur CCM
Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz
Microsoft® Windows Vista™ Édition Familiale Premium (6.0.6001 64-bit) # Service Pack 1
Internet Explorer 8.0.6001.18828
Windows Firewall Status : Disabled
AV : avast! antivirus 4.8.1229 [VPS 081204-0] 4.8.1229 [ Enabled | Updated ]
A:\ -> Lecteur de disquettes 3 ½ pouces
C:\ -> Disque fixe local | 465,76 Go (263,16 Go free) | NTFS
D:\ -> Disque CD-ROM | 4,33 Go (0 Mo free) [HOME2] | UDF
E:\ -> Disque amovible
¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Processes running
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe 1440
C:\Program Files\Alwil Software\Avast4\ashServ.exe 1568
C:\Folding@HomeCPU\1\Fah.exe 1552
C:\Folding@HomeCPU\2\Fah.exe 2072
C:\Folding@HomeCPU\3\Fah.exe 2092
C:\Folding@HomeCPU\4\Fah.exe 2108
C:\Folding@HomeCPU\1\FahCore_78.exe 2192
C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe 2200
C:\Folding@HomeCPU\2\FahCore_78.exe 2272
C:\Windows\SysWOW64\PnkBstrA.exe 2308
C:\Windows\SysWOW64\PSIService.exe 2360
C:\Folding@HomeCPU\4\FahCore_78.exe 2392
C:\Folding@HomeCPU\3\FahCore_78.exe 2432
C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe 2476
C:\Windows\SysWOW64\nvSCPAPISvr.exe 2528
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe 3376
C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe 3384
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe 3548
C:\Program Files\Alwil Software\Avast4\ashDisp.exe 3588
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe 3752
C:\Users\Antoine\Desktop\List_Kill'em.exe 5028
C:\Windows\SysWOW64\conime.exe 5092
C:\Windows\SysWOW64\cmd.exe 1316
C:\Users\Antoine\AppData\Local\Temp\10F1.tmp\pv.exe 1512
======================
Keys "Run"
======================
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
LightScribe Control Panel REG_SZ C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} REG_SZ "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
MsnMsgr REG_SZ "C:\Program Files (x86)\Windows Live\Messenger\MsnMsgr.Exe" /background
ehTray.exe REG_SZ C:\Windows\ehome\ehTray.exe
CollaborationHost REG_SZ C:\Windows\system32\p2phost.exe -s
WMPNSCFG REG_SZ C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
avast! REG_SZ C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
GrooveMonitor REG_SZ "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
Adobe Reader Speed Launcher REG_SZ "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
=====================
Other Keys
=====================
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
ConsentPromptBehaviorAdmin REG_DWORD 2 (0x2)
ConsentPromptBehaviorUser REG_DWORD 1 (0x1)
EnableInstallerDetection REG_DWORD 1 (0x1)
EnableLUA REG_DWORD 1 (0x1)
EnableSecureUIAPaths REG_DWORD 1 (0x1)
EnableVirtualization REG_DWORD 1 (0x1)
PromptOnSecureDesktop REG_DWORD 1 (0x1)
ValidateAdminCodeSignatures REG_DWORD 0 (0x0)
dontdisplaylastusername REG_DWORD 0 (0x0)
legalnoticecaption REG_SZ
legalnoticetext REG_SZ
scforceoption REG_DWORD 0 (0x0)
shutdownwithoutlogon REG_DWORD 1 (0x1)
undockwithoutlogon REG_DWORD 1 (0x1)
FilterAdministratorToken REG_DWORD 0 (0x0)
EnableUIADesktopToggle REG_DWORD 0 (0x0)
===============
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
NoDriveAutoRun REG_DWORD 145 (0x91)
NoDriveTypeAutoRun REG_DWORD 145 (0x91)
HonorAutoRunSetting REG_DWORD 0 (0x0)
===============
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
NoActiveDesktop REG_DWORD 1 (0x1)
ForceActiveDesktopOn REG_DWORD 0 (0x0)
NoActiveDesktopChanges REG_DWORD 0 (0x0)
NoDriveAutoRun REG_DWORD 145 (0x91)
NoDriveTypeAutoRun REG_DWORD 145 (0x91)
HonorAutoRunSetting REG_DWORD 0 (0x0)
===============
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
AppInit_DLLS REG_SZ
===============
===============
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
{B5A7F190-DDA6-4420-B3BA-52453494E6CD} REG_SZ Groove GFS Stub Execution Hook
===============
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
C:\Program Files (x86)\BitTorrent\bittorrent.exe REG_SZ C:\Program Files (x86)\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
===============
BHO :
======
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{53707962-6F74-2D53-2644-206D7942484F}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
================
Internet Explorer :
================
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
Start Page REG_SZ https://www.msn.com/fr-fr
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
Start Page REG_SZ http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
========
Services
========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services]
Ndisuio : 0x3
EapHost : 0x3
Wlansvc : 0x3
SharedAccess : 0x4
windefend : 0x2
wuauserv : 0x2
wscsvc : 0x2
=========
=======
Drive :
=======
==========
Programs
==========
Adobe
AGEIA Technologies
Atari
Audacity
Bethesda Softworks
BitTorrent
Common Files
Corel
DENON_DJ
desktop.ini
Diablo II
DNA
Dragon Age
EA GAMES
El Juky
Electronic Arts
Evolved Games
Guitar Pro 5
InstallShield Installation Information
Internet Explorer
Java
LimeWire
Lionhead Studios
Malwarebytes' Anti-Malware
Messenger Plus! Live
Microsoft
Microsoft ActiveSync
Microsoft Games for Windows - LIVE
Microsoft Office
Microsoft SQL Server Compact Edition
Microsoft Sync Framework
Microsoft Visual Studio
Microsoft Visual Studio 8
Microsoft Works
Microsoft Works Suite 2005
Microsoft.NET
Mozilla Firefox
MSBuild
MSXML 4.0
Nero
OpenAL
PrintKey 2000 Fr
Realtek
Reference Assemblies
SEGA
Sony
Sony Setup
SpeedFan
Spybot - Search & Destroy
Steam
SystemRequirementsLab
Thief - Deadly Shadows
Ubisoft
Uninstall Information
USB(CIF) Camera
VideoLAN
Vstplugins
Windows Calendar
Windows Collaboration
Windows Defender
Windows Live
Windows Live Favorites
Windows Live SkyDrive
Windows Live Toolbar
Windows Mail
Windows Media Player
Windows NT
Windows Photo Gallery
Windows Sidebar
WinRAR
¤¤¤¤¤¤¤¤¤¤ Files/folders :
C:\Program Files (x86)\Mozilla FireFox\Components\AskSearch.js
C:\Windows\System32\EXPLORER.exe
C:\Windows\system32\regedit.exe
C:\Users\Antoine\LOCAL Settings\Temp\_is7C70.exe
C:\Users\Antoine\LOCAL Settings\Temp\_is8101.exe
¤¤¤¤¤¤¤¤¤¤ Keys :
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer "NoActiveDesktopChanges"
HKCR\CLSID\{9afb8248-617f-460d-9366-d71cdeda3179}
HKLM\Software\Classes\CLSID\{9AFB8248-617F-460D-9366-D71CDEDA3179}
=========
Rootkits
=========
driver loading error catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-12-10 12:44:55
Windows 6.0.6001 Service Pack 1 WOW64 NTFS
scanning hidden files ...
IPC error: 2 Le fichier spécifié est introuvable.
C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 3840 bytes
C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 3840 bytes
C:\Windows\System32\Alert.bmp 810056 bytes
C:\Windows\System32\AsusSetup.exe 495616 bytes executable
C:\Windows\System32\AsusSetup.ini 907 bytes
C:\Windows\System32\AvastSS.scr 97480 bytes executable
C:\Windows\System32\Boot\fr-FR
C:\Windows\System32\brcoinst.dll 19456 bytes executable
C:\Windows\System32\catroot
C:\Windows\System32\catroot\TMPD418.tmp 7583 bytes
C:\Windows\System32\catroot\TMPD8EB.tmp 10515 bytes
C:\Windows\System32\catroot\TMPDBD9.tmp 7583 bytes
C:\Windows\System32\catroot\TMPDDA0.tmp 11707 bytes
C:\Windows\System32\catroot\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-CaptureWizard-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 11055 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-CaptureWizard-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 11925 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Features-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 260946 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Features-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 816142 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-LanguagePack-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-ClipsInTheLibrary-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 9001 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-ClipsInTheLibrary-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 9581 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-CodecPack-Basic-Encoder-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 11039 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-CodecPack-Basic-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 14551 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-DFSR-ClientEdition-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 9871 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-DFSR-ClientEdition-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 10757 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Disk-Diagnosis-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 9589 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Disk-Diagnosis-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 10169 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Foundation-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 8123 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-GPUPipeline-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 8413 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-GPUPipeline-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 10749 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Help-CoreClientUAHP-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 38595 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Help-CoreClientUAHP-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 23493 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Help-Customization-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 8703 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-BRCpl-Premium-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 9879 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-DesktopWindowManager-uDWM-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 9001 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Help-Customization-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 9283 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-InternetExplorer-8-Package-MiniLP~31bf3856ad364e35~amd64~en-US~8.0.6001.18702.cat 7576 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Links-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 8123 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MobilePC-Client-Premium-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 12215 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-NetFx3-OC-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 137938 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-PeerToPeer-AdhocMeetings-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 13423 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-HomePremiumEdition~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 13343 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-IIS-WebServer-AddOn-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 65720 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-IIS-WebServer-AddOn-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 120148 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-IIS-WebServer-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 58211 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-IIS-WebServer-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 82524 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Indexing-Service-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 11933 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Indexing-Service-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 13689 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-InternetExplorer-8-LanguagePack~31bf3856ad364e35~amd64~fr-FR~8.0.6001.18702.cat 58700 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Format-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 21341 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Format-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 228341 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MediaCenter-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 24861 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MediaCenter-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 98375 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MediaPlayer-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 25465 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MediaPlayer-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 121675 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MobilePC-Client-Basic-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 10177 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MobilePC-Client-Basic-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 11329 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MobilePC-Client-Premium-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 11353 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MobilePC-Client-SideShow-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 11643 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MobilePC-Client-SideShow-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 14543 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MobilePC-Help-AnytimeUpgrade-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 9001 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MobilePC-Help-AnytimeUpgrade-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 8703 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MovieMaker-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 12239 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MovieMaker-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 17773 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MSMQ-Client-Home-Premium-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 11329 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MSMQ-Client-Home-Premium-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 28985 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-NetFx3-OC-Package~31bf3856ad364e35~amd64~en-US~6.0.6000.16386.cat 27351 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-NetFx3-OC-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 53261 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-OpticalMediaDisc-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 10177 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-OpticalMediaDisc-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 124242 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-ParentalControls-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 21397 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-ParentalControls-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 26053 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-PeerToPeer-AdhocMeetings-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 9001 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-RasRip-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 9001 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-RasRip-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 9001 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-RDC-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 8413 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-RDC-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 9879 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-RecDisc-SDP-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6001.18000.cat 13280 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-RecDisc-SDP-Package~31bf3856ad364e35~amd64~~6.0.6001.18000.cat 18167 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-RemoteAssistance-Package-Client~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 11957 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-RemovableStorageManagement-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 12545 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-RemovableStorageManagement-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 14027 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-SampleContent-Movies-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 10733 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-SampleContent-Music-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 14793 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-ServicingBaseline-HomePremium-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 8703 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Shell-InboxGames-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 13971 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Shell-InboxGames-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 18353 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Shell-PremiumInboxGames-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 10757 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Shell-PremiumInboxGames-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 12803 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-SimpleTCP-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 9001 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-SimpleTCP-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 9291 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-SNMP-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 14293 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-SNMP-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 30879 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-SystemRestore-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 12545 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-SystemRestore-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 18638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-TabletPC-OC-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 28163 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Telnet-Client-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 9001 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Telnet-Client-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 9291 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Telnet-Server-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 10177 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Telnet-Server-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 11047 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-TFTP-Client-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 9001 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-TFTP-Client-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 9001 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-VistaServicePack-SysHiper-SP1-Package~31bf3856ad364e35~amd64~~6.0.6002.18005.cat 9918 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-VistaServicePack-UninstallRemoval-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6001.18000.cat 11516 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-VistaServicePack-UninstallRemoval-Package~31bf3856ad364e35~amd64~~6.0.6001.18000.cat 11516 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Networking-MPSSVC-Rules-HomePremiumEdition-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 14503 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\nt5.cat 6106074 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\ntexe.cat 221046 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\ntpe.cat 1052954 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\ntph.cat 1139256 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\ntprint.cat 19168 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem10.CAT 11122 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem11.CAT 77391 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem12.CAT 8050 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem15.CAT 385364 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem16.CAT 390801 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem17.CAT 11699 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem18.CAT 456905 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem2.CAT 7814 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem3.CAT 8014 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_12_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 15618 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_12_for_KB948465~31bf3856ad364e35~amd64~fr-FR~6.0.1.18005.cat 42143 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_12_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 9338 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_12_for_KB972036~31bf3856ad364e35~amd64~~6.0.2.0.cat 26637 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_130_for_KB972145~31bf3856ad364e35~amd64~~6.0.1.5.cat 23253 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_131_for_KB972145~31bf3856ad364e35~amd64~~6.0.1.5.cat 12026 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_13_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_13_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 12104 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_13_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 19742 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_13_for_KB948465~31bf3856ad364e35~amd64~fr-FR~6.0.1.18005.cat 13171 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_140_for_KB967723~31bf3856ad364e35~amd64~~6.0.1.7.cat 9658 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_143_for_KB967723~31bf3856ad364e35~amd64~~6.0.1.7.cat 18001 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_144_for_KB967723~31bf3856ad364e35~amd64~~6.0.1.7.cat 10849 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_14_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_16_for_KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 12684 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_16_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 24430 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_16_for_KB948465~31bf3856ad364e35~amd64~fr-FR~6.0.1.18005.cat 59341 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_16_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 33180 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_16_for_KB950582~31bf3856ad364e35~amd64~~6.0.1.1.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_16_for_KB958483~31bf3856ad364e35~amd64~~6.0.1.2.cat 27261 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_16_for_KB958623~31bf3856ad364e35~amd64~~6.0.1.1.cat 10555 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_17_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_17_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 101163 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_17_for_KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 12104 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_17_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 13878 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_17_for_KB948465~31bf3856ad364e35~amd64~fr-FR~6.0.1.18005.cat 127001 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_17_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 268575 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_185_for_KB967723~31bf3856ad364e35~amd64~~6.0.1.7.cat 26968 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_186_for_KB967723~31bf3856ad364e35~amd64~~6.0.1.7.cat 19178 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_187_for_KB967723~31bf3856ad364e35~amd64~~6.0.1.7.cat 10849 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_19_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 12394 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_19_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 12692 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_19_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 15618 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_19_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 11384 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_19_for_KB970430~31bf3856ad364e35~amd64~~6.0.1.6.cat 9658 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_1_for_KB905866~31bf3856ad364e35~amd64~~6.0.35.0.cat 10834 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_1_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_1_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 12410 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_1_for_KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 36800 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_1_for_KB937287~31bf3856ad364e35~amd64~~6.0.1.18000.cat 37077 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_1_for_KB948609~31bf3856ad364e35~amd64~~6.0.6001.3053.cat 324391 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_1_for_KB948610~31bf3856ad364e35~amd64~~6.0.6001.2123.cat 50740 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_1_for_KB948881~31bf3856ad364e35~amd64~~6.0.1.1.cat 12380 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_1_for_KB950124~31bf3856ad364e35~amd64~~6.0.1.0.cat 12380 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_1_for_KB950125~31bf3856ad364e35~amd64~~6.0.1.0.cat 12380 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_20_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 24430 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_20_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 13140 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_210_for_KB970430~31bf3856ad364e35~amd64~~6.0.1.6.cat 10834 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_218_for_KB970430~31bf3856ad364e35~amd64~~6.0.1.6.cat 9658 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_21_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_21_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 11516 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_21_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 13878 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_21_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 10216 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_229_for_KB972145~31bf3856ad364e35~amd64~~6.0.1.5.cat 16150 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_22_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-RemoteAssistance-Package-Client~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 14019 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Sidebar-Killbits-SDP-Package~31bf3856ad364e35~amd64~~6.0.6001.18000.cat 11218 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-TabletPC-OC-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 73416 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-VistaSP1CEIP-Package~31bf3856ad364e35~amd64~~6.0.6001.18000.cat 11516 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem4.CAT 9964 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_24_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 11516 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_24_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 24430 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_25_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_25_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 17452 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_25_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 12104 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_25_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 24430 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_26_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_26_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 15656 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_26_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 15618 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_26_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 169076 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_26_for_KB967723~31bf3856ad364e35~amd64~~6.0.1.7.cat 20434 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_277_for_KB970653~31bf3856ad364e35~amd64~~6.0.1.0.cat 10500 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_277_for_KB976098~31bf3856ad364e35~amd64~~6.0.1.1.cat 10515 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_27_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_27_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 20272 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_27_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 24430 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_27_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 2165303 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_28_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_2_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 11814 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_2_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 11806 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_2_for_KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_2_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 23986 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_2_for_KB938464~31bf3856ad364e35~amd64~~6.0.1.5.cat 112977 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_2_for_KB941693~31bf3856ad364e35~amd64~~6.0.1.2.cat 13266 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_2_for_KB948465~31bf3856ad364e35~amd64~fr-FR~6.0.1.18005.cat 19640 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_2_for_KB948590~31bf3856ad364e35~amd64~~6.0.1.0.cat 22965 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_2_for_KB948609~31bf3856ad364e35~amd64~~6.0.6001.3053.cat 499319 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_2_for_KB948610~31bf3856ad364e35~amd64~~6.0.6001.2123.cat 28136 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_32_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 43428 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_32_for_KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 15632 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_32_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 24430 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_33_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_33_for_KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 13868 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_33_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 15618 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_33_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 22968 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_34_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_34_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 16872 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_34_for_KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 28344 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_34_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 15618 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_35_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_35_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 12104 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_35_for_KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 11508 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_35_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 24430 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_35_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 44552 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_36_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 11516 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_36_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 19048 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_36_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 24430 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_36_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 16763 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_37_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_37_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 13878 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_37_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 18722 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_38_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_38_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 13304 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_38_for_KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 11516 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_38_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 24430 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_38_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 24288 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_39_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_39_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 19514 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_39_for_KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 11508 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_39_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 24430 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_39_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 14316 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3_for_KB905866~31bf3856ad364e35~amd64~~6.0.35.0.cat 10834 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 12394 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 11516 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 17769 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3_for_KB948465~31bf3856ad364e35~amd64~fr-FR~6.0.1.18005.cat 57502 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 10216 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3_for_KB948610~31bf3856ad364e35~amd64~~6.0.6001.2123.cat 105799 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3_for_KB948881~31bf3856ad364e35~amd64~~6.0.1.1.cat 12380 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3_for_KB950126~31bf3856ad364e35~amd64~~6.0.1.1.cat 12686 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3_for_KB950762~31bf3856ad364e35~amd64~~6.0.1.0.cat 15038 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3_for_KB951066~31bf3856ad364e35~amd64~~6.0.1.0.cat 36174 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3_for_KB951376~31bf3856ad364e35~amd64~~6.0.1.1.cat 14474 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3_for_KB951698~31bf3856ad364e35~amd64~~6.0.1.0.cat 13862 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3_for_KB952709~31bf3856ad364e35~amd64~~6.0.1.2.cat 61089 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3_for_KB952714~31bf3856ad364e35~amd64~~6.0.1.0.cat 17922 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3_for_KB953839~31bf3856ad364e35~amd64~~6.0.1.0.cat 12380 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_43_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 23494 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_43_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 15618 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_43_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 10788 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_43_for_KB949247~31bf3856ad364e35~amd64~~6.0.6001.2123.cat 120063 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_43_for_KB950582~31bf3856ad364e35~amd64~~6.0.1.1.cat 10930 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_43_for_KB958623~31bf3856ad364e35~amd64~~6.0.1.1.cat 9089 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_44_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_44_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 16212 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_44_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 15618 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_44_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 77884 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_44_for_KB950582~31bf3856ad364e35~amd64~~6.0.1.1.cat 10930 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_48_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 372143 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_48_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 12974 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_48_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 24430 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_48_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 13430 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_49_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_49_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 13570 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_49_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 15618 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_49_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 20800 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_49_for_KB951072~31bf3856ad364e35~amd64~~6.0.2.0.cat 13572 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_49_for_KB955839~31bf3856ad364e35~amd64~~6.0.1.0.cat 11731 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_49_for_KB970653~31bf3856ad364e35~amd64~~6.0.1.0.cat 10500 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_49_for_KB976098~31bf3856ad364e35~amd64~~6.0.1.1.cat 10515 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_4_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_4_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 14474 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_4_for_KB948610~31bf3856ad364e35~amd64~~6.0.6001.2123.cat 252863 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_22_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 43050 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_24_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 15296 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_26_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 12394 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_28_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 13546 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_2_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_2_for_KB950124~31bf3856ad364e35~amd64~~6.0.1.0.cat 12380 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_2_for_KB955302~31bf3856ad364e35~amd64~~6.0.1.1.cat 13862 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_2_for_KB958644~31bf3856ad364e35~amd64~~6.0.1.0.cat 25845 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_2_for_KB970238~31bf3856ad364e35~amd64~~6.0.1.0.cat 35118 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_2_for_KB974455~31bf3856ad364e35~amd64~~6.0.1.0.cat 404235 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_30_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 3749616 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_32_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Printing-XPSServices-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 10161 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_20_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 370521 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_36_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_52_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_94_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 31695 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_for_KB952709~31bf3856ad364e35~amd64~~6.0.1.2.cat 10930 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_for_KB959130_client_1~31bf3856ad364e35~amd64~~6.0.1.0.cat 9089 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_52_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 24452 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_52_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 32373 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_52_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 98263 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_53_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_53_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 11516 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_53_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 36501 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_54_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_54_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 103913 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_54_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 10930 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_59_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 15358 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_59_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 17860 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_5_for_KB905866~31bf3856ad364e35~amd64~~6.0.35.0.cat 10834 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_5_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_5_for_KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 11516 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_5_for_KB938464~31bf3856ad364e35~amd64~~6.0.1.5.cat 112881 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_5_for_KB941693~31bf3856ad364e35~amd64~~6.0.1.2.cat 13266 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_5_for_KB948590~31bf3856ad364e35~amd64~~6.0.1.0.cat 22869 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_5_for_KB949247~31bf3856ad364e35~amd64~~6.0.6001.2123.cat 47516 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_5_for_KB950126~31bf3856ad364e35~amd64~~6.0.1.1.cat 66892 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_5_for_KB950582~31bf3856ad364e35~amd64~~6.0.1.1.cat 222246 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_5_for_KB952069~31bf3856ad364e35~amd64~~6.0.1.0.cat 83956 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_5_for_KB953155~31bf3856ad364e35~amd64~~6.0.1.4.cat 15054 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_5_for_KB953733~31bf3856ad364e35~amd64~~6.0.1.0.cat 20322 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_69_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 14018 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_6_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_6_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 12700 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_6_for_KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 15044 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_6_for_KB948465~31bf3856ad364e35~amd64~fr-FR~6.0.1.18005.cat 13486 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_6_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 11921 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_6_for_KB949246~31bf3856ad364e35~amd64~~6.0.6001.3053.cat 205495 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_6_for_KB949247~31bf3856ad364e35~amd64~~6.0.6001.2123.cat 83187 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_6_for_KB952069~31bf3856ad364e35~amd64~~6.0.1.0.cat 100632 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_6_for_KB954366~31bf3856ad364e35~amd64~~6.0.1.3.cat 29650 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_6_for_KB956572~31bf3856ad364e35~amd64~~6.0.1.5.cat 35940 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_7_for_KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 11516 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_7_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 99506 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_7_for_KB948465~31bf3856ad364e35~amd64~fr-FR~6.0.1.18005.cat 11368 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_7_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 10208 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_7_for_KB961501~31bf3856ad364e35~amd64~~6.0.1.1.cat 10800 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_7_for_KB971961~31bf3856ad364e35~amd64~~6.0.1.0.cat 10834 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_7_for_KB972036~31bf3856ad364e35~amd64~~6.0.2.0.cat 22529 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_7_for_KB973540~31bf3856ad364e35~amd64~~6.0.1.0.cat 28569 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_7_for_KB973687~31bf3856ad364e35~amd64~~6.0.1.1.cat 16165 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_7_for_KB974306~31bf3856ad364e35~amd64~~6.0.1.2.cat 72064 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_95_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 11798 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_9_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_9_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 24430 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_9_for_KB948465~31bf3856ad364e35~amd64~fr-FR~6.0.1.18005.cat 10803 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_9_for_KB948609~31bf3856ad364e35~amd64~~6.0.6001.3053.cat 813063 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_9_for_KB948610~31bf3856ad364e35~amd64~~6.0.6001.2123.cat 348015 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_9_for_KB958483~31bf3856ad364e35~amd64~~6.0.1.2.cat 10845 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_9_for_KB967632~31bf3856ad364e35~amd64~~6.0.1.2.cat 72927 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_9_for_KB968816~31bf3856ad364e35~amd64~~6.0.1.1.cat 75079 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-WindowsFoundation-LanguagePack-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 1462632 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-WMI-SNMP-Provider-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 9895 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-WMI-SNMP-Provider-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 11667 bytes
C:\Windows\System32\catroot\{F
moment de grace
Messages postés
29042
Date d'inscription
samedi 6 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
18 juillet 2013
2 274
10 déc. 2009 à 19:27
10 déc. 2009 à 19:27
je vais demander au créateur de l'outil d'examiner ce rapport (long!!) avant de prescrire la suppression, histoire qu'on ne fasse pas de bêtises
je te tiens au courant...
je te tiens au courant...
moment de grace
Messages postés
29042
Date d'inscription
samedi 6 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
18 juillet 2013
2 274
10 déc. 2009 à 19:44
10 déc. 2009 à 19:44
non c'est ok, j'ai confirmation
Suppression :
REDEMARRE EN MODE SANS ECHEC ,
https://www.micro-astuce.com/depannage/demarrer-mode-sans-echec.php
puis :
▶ Relance List&Kill'em comme tu as fait pour l'option 1 (soit en clic droit pour vista),
mais cette fois-ci :
▶ choisis l'option 2 = Mode Destruction
laisse travailler l'outil
▶ colle le contenu de C:\Kill'em.txt dans ta réponse après avoir redémarré en mode normal
Suppression :
REDEMARRE EN MODE SANS ECHEC ,
https://www.micro-astuce.com/depannage/demarrer-mode-sans-echec.php
puis :
▶ Relance List&Kill'em comme tu as fait pour l'option 1 (soit en clic droit pour vista),
mais cette fois-ci :
▶ choisis l'option 2 = Mode Destruction
laisse travailler l'outil
▶ colle le contenu de C:\Kill'em.txt dans ta réponse après avoir redémarré en mode normal
Kill'em by g3n-h@ckm@n 1.1.4.1
User : Antoine () # BILLYBOBJOB
Update on 09/12/2009 by g3n-h@ckm@n ::::: 17:00
Start at: 13:56:01 | 2009-12-10
Contact : g3n-h@ckm@n sur CCM
Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz
Microsoft® Windows Vista™ Édition Familiale Premium (6.0.6001 64-bit) # Service Pack 1
Internet Explorer 8.0.6001.18828
Windows Firewall Status : Enabled
AV : avast! antivirus 4.8.1229 [VPS 081204-0] 4.8.1229 [ Enabled | Updated ]
A:\ -> Lecteur de disquettes 3 ½ pouces
C:\ -> Disque fixe local | 465,76 Go (263,06 Go free) | NTFS
D:\ -> Disque CD-ROM | 4,33 Go (0 Mo free) [HOME2] | UDF
E:\ -> Disque amovible
¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Processes running
C:\Users\Antoine\AppData\Local\Temp\Temp1_List_Killem.zip\List_Kill'em.exe 344
C:\Windows\SysWOW64\cmd.exe 1000
C:\Users\Antoine\AppData\Local\Temp\71F4.tmp\pv.exe 1220
Detections :
==========
¤¤¤¤¤¤¤¤¤¤ Files/folders :
"C:\Program Files (x86)\Mozilla FireFox\Components\AskSearch.js"
"C:\Windows\System32\EXPLORER.exe"
"C:\Windows\system32\regedit.exe"
C:\Users\Antoine\LOCAL Settings\Temp\_is7C70.exe
C:\Users\Antoine\LOCAL Settings\Temp\_is8101.exe
¤¤¤¤¤¤¤¤¤¤ Files/folders deleted :
Quarantine :
AskSearch.js.Kill'em
_is7C70.exe.Kill'em
_is8101.exe.Kill'em
==============
host file OK !
==============
========
Registry
========
============
Disk Cleaned
============
================
Prefetch cleaned :
================
AgAppLaunch.db
AgCx_S1_S-1-5-21-1194067557-3750152249-3456971207-1000.snp.db
AgCx_SC1.db
AgCx_SC1.db.trx
AgGlFaultHistory.db
AgGlFgAppHistory.db
AgGlGlobalHistory.db
AgGlUAD_P_S-1-5-21-1194067557-3750152249-3456971207-1000.db
AgGlUAD_S-1-5-21-1194067557-3750152249-3456971207-1000.db
AgRobust.db
INSTALL_FLASH_PLAYER_ACTIVE_X-B10CD147.pf
Layout.ini
NTOSBOOT-B00DFAAD.pf
OFFICE2003-KB969615-FULLFILE--A3E58587.pf
PfSvPerfStats.bin
ReadyBoot
¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤( EOF )¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
User : Antoine () # BILLYBOBJOB
Update on 09/12/2009 by g3n-h@ckm@n ::::: 17:00
Start at: 13:56:01 | 2009-12-10
Contact : g3n-h@ckm@n sur CCM
Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz
Microsoft® Windows Vista™ Édition Familiale Premium (6.0.6001 64-bit) # Service Pack 1
Internet Explorer 8.0.6001.18828
Windows Firewall Status : Enabled
AV : avast! antivirus 4.8.1229 [VPS 081204-0] 4.8.1229 [ Enabled | Updated ]
A:\ -> Lecteur de disquettes 3 ½ pouces
C:\ -> Disque fixe local | 465,76 Go (263,06 Go free) | NTFS
D:\ -> Disque CD-ROM | 4,33 Go (0 Mo free) [HOME2] | UDF
E:\ -> Disque amovible
¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Processes running
C:\Users\Antoine\AppData\Local\Temp\Temp1_List_Killem.zip\List_Kill'em.exe 344
C:\Windows\SysWOW64\cmd.exe 1000
C:\Users\Antoine\AppData\Local\Temp\71F4.tmp\pv.exe 1220
Detections :
==========
¤¤¤¤¤¤¤¤¤¤ Files/folders :
"C:\Program Files (x86)\Mozilla FireFox\Components\AskSearch.js"
"C:\Windows\System32\EXPLORER.exe"
"C:\Windows\system32\regedit.exe"
C:\Users\Antoine\LOCAL Settings\Temp\_is7C70.exe
C:\Users\Antoine\LOCAL Settings\Temp\_is8101.exe
¤¤¤¤¤¤¤¤¤¤ Files/folders deleted :
Quarantine :
AskSearch.js.Kill'em
_is7C70.exe.Kill'em
_is8101.exe.Kill'em
==============
host file OK !
==============
========
Registry
========
============
Disk Cleaned
============
================
Prefetch cleaned :
================
AgAppLaunch.db
AgCx_S1_S-1-5-21-1194067557-3750152249-3456971207-1000.snp.db
AgCx_SC1.db
AgCx_SC1.db.trx
AgGlFaultHistory.db
AgGlFgAppHistory.db
AgGlGlobalHistory.db
AgGlUAD_P_S-1-5-21-1194067557-3750152249-3456971207-1000.db
AgGlUAD_S-1-5-21-1194067557-3750152249-3456971207-1000.db
AgRobust.db
INSTALL_FLASH_PLAYER_ACTIVE_X-B10CD147.pf
Layout.ini
NTOSBOOT-B00DFAAD.pf
OFFICE2003-KB969615-FULLFILE--A3E58587.pf
PfSvPerfStats.bin
ReadyBoot
¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤( EOF )¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
moment de grace
Messages postés
29042
Date d'inscription
samedi 6 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
18 juillet 2013
2 274
10 déc. 2009 à 20:08
10 déc. 2009 à 20:08
• Téléchargez FindyKill sur le Bureau.
http://pagesperso-orange.fr/NosTools/Chiquitine29/Setup.exe
Mirroir :
http://findykill.changelog.fr/Setup.exe
• Double-cliquez sur FindyKill présent sur le Bureau.
• Choisissez l'option 1 (Recherche).
• Laissez travailler l'outil.
• Ensuite postez le rapport FindyKill.txt qui apparaîtra (si vous avez créé un sujet sur un forum pour vous faire aider).
• Note : Le rapport FindyKill.txt est sauvegardé à la racine du disque (C:\FindyKill.txt).
(CTRL+A pour tout sélectionner , CTRL+C pour copier et CTRL+V pour coller)
• Note : "Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.
• Tuto : http://pagesperso-orange.fr/NosTools/index.html
Note : l'UAC de Vista ne gêne plus FindyKill.
http://pagesperso-orange.fr/NosTools/Chiquitine29/Setup.exe
Mirroir :
http://findykill.changelog.fr/Setup.exe
• Double-cliquez sur FindyKill présent sur le Bureau.
• Choisissez l'option 1 (Recherche).
• Laissez travailler l'outil.
• Ensuite postez le rapport FindyKill.txt qui apparaîtra (si vous avez créé un sujet sur un forum pour vous faire aider).
• Note : Le rapport FindyKill.txt est sauvegardé à la racine du disque (C:\FindyKill.txt).
(CTRL+A pour tout sélectionner , CTRL+C pour copier et CTRL+V pour coller)
• Note : "Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.
• Tuto : http://pagesperso-orange.fr/NosTools/index.html
Note : l'UAC de Vista ne gêne plus FindyKill.
############################## | FindyKill V5.021 |
# User : Antoine (Administrateurs) # BILLYBOBJOB
# Update on 10/12/2009 by Chiquitine29
# Start at: 14:12:24 | 2009-12-10
# Website : http://pagesperso-orange.fr/NosTools/index.html
# Contact : FindyKill.Contact@gmail.com
# Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz
# Microsoft® Windows Vista™ Édition Familiale Premium (6.0.6001 64-bit) # Service Pack 1
# Internet Explorer 8.0.6001.18828
# Windows Firewall Status : Enabled
# AV : avast! antivirus 4.8.1229 [VPS 081204-0] 4.8.1229 [ Enabled | Updated ]
# A:\ # Lecteur de disquettes 3 ½ pouces
# C:\ # Disque fixe local # 465,76 Go (263,08 Go free) # NTFS
# D:\ # Disque CD-ROM # 4,33 Go (0 Mo free) [HOME2] # UDF
# E:\ # Disque amovible
############################## | Processus actifs |
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Folding@HomeCPU\1\Fah.exe
C:\Folding@HomeCPU\2\Fah.exe
C:\Folding@HomeCPU\3\Fah.exe
C:\Folding@HomeCPU\4\Fah.exe
C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
C:\Folding@HomeCPU\1\FahCore_78.exe
C:\Folding@HomeCPU\2\FahCore_78.exe
C:\Folding@HomeCPU\3\FahCore_78.exe
C:\Folding@HomeCPU\4\FahCore_78.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\SysWOW64\PSIService.exe
C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Windows\SysWOW64\nvSCPAPISvr.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Windows\SysWOW64\conime.exe
################## | C: |
################## | C:\Windows |
################## | C:\Windows\system32 |
################## | C:\Windows\system32\drivers |
################## | C:\Users\Antoine\AppData\Roaming |
################## | Temporary Internet Files |
################## | Registre / Clés infectieuses |
################## | Etat / Services / Informations |
# Affichage des fichiers cachés : OK
# Mode sans echec : OK
# Uac : OK
# Ndisuio -> Start = 3 ( Good = 3 | Bad = 4 )
# EapHost -> Start = 3 ( Good = 2 | Bad = 4 )
# Wlansvc -> Start = 3 ( Good = 2 | Bad = 4 )
# (!) SharedAccess -> Start = 4 ( Good = 2 | Bad = 4 )
# windefend -> Start = 2 ( Good = 2 | Bad = 4 )
# wuauserv -> Start = 2 ( Good = 2 | Bad = 4 )
# wscsvc -> Start = 2 ( Good = 2 | Bad = 4 )
################## | Cracks / Keygens / Serials |
"C:\Users\Antoine\Desktop\far cry 2\the crack here\FarCry2.exe"
2008-10-22 04:49 |Size 35270 |Crc32 30b7778d |Md5 e9dba2342e6e52dc203d7c3fda20c47d
"C:\Users\Antoine\Desktop\Limewire download\Guitar Pro 5 + Serial\GP5\GP5FULLBK-1.exe"
2005-11-22 19:01 |Size 174838062 |Crc32 38b0b094 |Md5 e632362cd4b0954cf8a434f43c42f109
"C:\Users\Antoine\Desktop\M‚di‚val\DVD 1\Crack\medieval2.exe"
2006-11-06 11:28 |Size 19574784 |Crc32 dae5bb16 |Md5 3a6ebfc23d9125ead6c593ff6f60e3a1
"C:\Users\Antoine\Desktop\Sony.Sound.Forge.9.0e.Build.441.Incl.Keygen\Keygen.exe"
2008-12-04 18:28 |Size 141824 |Crc32 17f110bf |Md5 03889ef47642cd101fd9f673d98a1140
"C:\Users\Antoine\Desktop\Sony.Sound.Forge.9.0e.Build.441.Incl.Keygen\soundforge90e-trial_enu.exe"
2008-12-04 18:37 |Size 75104976 |Crc32 c6c19fe0 |Md5 0e54dfb5600da62cf3f6f5a09eeafe57
################## | ! Fin du rapport # FindyKill V5.021 ! |
# User : Antoine (Administrateurs) # BILLYBOBJOB
# Update on 10/12/2009 by Chiquitine29
# Start at: 14:12:24 | 2009-12-10
# Website : http://pagesperso-orange.fr/NosTools/index.html
# Contact : FindyKill.Contact@gmail.com
# Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz
# Microsoft® Windows Vista™ Édition Familiale Premium (6.0.6001 64-bit) # Service Pack 1
# Internet Explorer 8.0.6001.18828
# Windows Firewall Status : Enabled
# AV : avast! antivirus 4.8.1229 [VPS 081204-0] 4.8.1229 [ Enabled | Updated ]
# A:\ # Lecteur de disquettes 3 ½ pouces
# C:\ # Disque fixe local # 465,76 Go (263,08 Go free) # NTFS
# D:\ # Disque CD-ROM # 4,33 Go (0 Mo free) [HOME2] # UDF
# E:\ # Disque amovible
############################## | Processus actifs |
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Folding@HomeCPU\1\Fah.exe
C:\Folding@HomeCPU\2\Fah.exe
C:\Folding@HomeCPU\3\Fah.exe
C:\Folding@HomeCPU\4\Fah.exe
C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
C:\Folding@HomeCPU\1\FahCore_78.exe
C:\Folding@HomeCPU\2\FahCore_78.exe
C:\Folding@HomeCPU\3\FahCore_78.exe
C:\Folding@HomeCPU\4\FahCore_78.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\SysWOW64\PSIService.exe
C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Windows\SysWOW64\nvSCPAPISvr.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Windows\SysWOW64\conime.exe
################## | C: |
################## | C:\Windows |
################## | C:\Windows\system32 |
################## | C:\Windows\system32\drivers |
################## | C:\Users\Antoine\AppData\Roaming |
################## | Temporary Internet Files |
################## | Registre / Clés infectieuses |
################## | Etat / Services / Informations |
# Affichage des fichiers cachés : OK
# Mode sans echec : OK
# Uac : OK
# Ndisuio -> Start = 3 ( Good = 3 | Bad = 4 )
# EapHost -> Start = 3 ( Good = 2 | Bad = 4 )
# Wlansvc -> Start = 3 ( Good = 2 | Bad = 4 )
# (!) SharedAccess -> Start = 4 ( Good = 2 | Bad = 4 )
# windefend -> Start = 2 ( Good = 2 | Bad = 4 )
# wuauserv -> Start = 2 ( Good = 2 | Bad = 4 )
# wscsvc -> Start = 2 ( Good = 2 | Bad = 4 )
################## | Cracks / Keygens / Serials |
"C:\Users\Antoine\Desktop\far cry 2\the crack here\FarCry2.exe"
2008-10-22 04:49 |Size 35270 |Crc32 30b7778d |Md5 e9dba2342e6e52dc203d7c3fda20c47d
"C:\Users\Antoine\Desktop\Limewire download\Guitar Pro 5 + Serial\GP5\GP5FULLBK-1.exe"
2005-11-22 19:01 |Size 174838062 |Crc32 38b0b094 |Md5 e632362cd4b0954cf8a434f43c42f109
"C:\Users\Antoine\Desktop\M‚di‚val\DVD 1\Crack\medieval2.exe"
2006-11-06 11:28 |Size 19574784 |Crc32 dae5bb16 |Md5 3a6ebfc23d9125ead6c593ff6f60e3a1
"C:\Users\Antoine\Desktop\Sony.Sound.Forge.9.0e.Build.441.Incl.Keygen\Keygen.exe"
2008-12-04 18:28 |Size 141824 |Crc32 17f110bf |Md5 03889ef47642cd101fd9f673d98a1140
"C:\Users\Antoine\Desktop\Sony.Sound.Forge.9.0e.Build.441.Incl.Keygen\soundforge90e-trial_enu.exe"
2008-12-04 18:37 |Size 75104976 |Crc32 c6c19fe0 |Md5 0e54dfb5600da62cf3f6f5a09eeafe57
################## | ! Fin du rapport # FindyKill V5.021 ! |
moment de grace
Messages postés
29042
Date d'inscription
samedi 6 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
18 juillet 2013
2 274
10 déc. 2009 à 20:26
10 déc. 2009 à 20:26
refais moi un nouveau RSIT stp
