Sujet Précédent Sujet Suivant

Ordinateur manque de vivacité

Résolu/Fermé
Le Malchanceux - 14 déc. 2009 à 18:26
 Le Malchanceux - 15 déc. 2009 à 21:54
Bonjour,

j'ai un problème avec mon ordinateur suite a une page internet pour télécharger messenger live plus et a ce momen mon anti-virus bitdefender c'est activer comme quoi j'ai eu un trojan.generic.2808209. Mais mon ordinateur et devenu bocoup plus lent ces temp si a cause de sa j'aimerai savoir quoi faire? je me suis renseigner un petit peu vu mon niveau nul de l'informatique ^^ je vous ai fait un scan de hijackthis
Merci pour l'aide d'une ou des personne qui m'aiderons ^^



Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:42:02, on 12/12/2009
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v7.00 (7.00.6002.18005)
Boot mode: Normal

Running processes:
C:\ACER\Preload\Autorun\DRV\Fiji Keyboard\ABoard.exe
C:\Program Files (x86)\Packard Bell\SetUpMyPC\SmpSys.exe
C:\ACER\Preload\Autorun\DRV\Fiji Keyboard\AOSD.exe
C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
C:\Program Files (x86)\Spyware Doctor\BDT\BDTUpdateService.exe
C:\Windows\SysWOW64\svchost.exe
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Windows\system32\HidService.exe
C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\veohwebplayer.exe
C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe
C:\Program Files (x86)\Spyware Doctor\pctsAuxs.exe
C:\Program Files (x86)\Spyware Doctor\pctsSvc.exe
C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Program Files (x86)\Spyware Doctor\pctsTray.exe
C:\Program Files (x86)\Java\jre6\bin\jusched.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Spyware Doctor\pctsGui.exe
C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&m=imedia_s1710&r=1v3607098906p0335xq95y47319237
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.cherche.us/keyword/%s
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ww12.cherche.us
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://ww12.cherche.us
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = ${URL_SEARCHPAGE}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.cherche.us/keyword/%s
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page_bak = http://ww12.cherche.us
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll
F2 - REG:system.ini: UserInit=C:\Windows\system32\ezShellStart.exe
O1 - Hosts: ::1 localhost
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Browser Defender BHO - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\Program Files (x86)\Spyware Doctor\BDT\PCTBrowserDefender.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Easy Gif Animator Toolbar Helper - {96372AB6-15EB-4316-B497-71C741BC548C} - C:\Program Files (x86)\Easy Gif Animator Extension\v3.3.0.2\EasyGifAnimator_Toolbar.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: Easy Gif Animator Toolbar - {35065594-9169-4A34-B167-FC4865038E53} - C:\Program Files (x86)\Easy Gif Animator Extension\v3.3.0.2\EasyGifAnimator_Toolbar.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2008\Antispam32\IEToolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Veoh Video Compass - {52836EB0-631A-47B1-94A6-61F9D9112DAE} - C:\Program Files (x86)\Veoh Networks\Veoh Video Compass\SearchRecsPlugin.dll
O3 - Toolbar: PC Tools Browser Guard - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files (x86)\Spyware Doctor\BDT\PCTBrowserDefender.dll
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [ISTray] "C:\Program Files (x86)\Spyware Doctor\pctsTray.exe"
O4 - HKCU\..\Run: [SmpcSys] C:\Program Files (x86)\Packard Bell\SetUpMyPC\SmpSys.exe
O4 - HKCU\..\Run: [swg] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [VeohPlugin] "C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\veohwebplayer.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O15 - Trusted Zone: *.chat-land.org
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: Adobe Active File Monitor V6 (AdobeActiveFileMonitor6.0) - Unknown owner - C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Browser Defender Update Service - Threat Expert Ltd. - C:\Program Files (x86)\Spyware Doctor\BDT\BDTUpdateService.exe
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Packard Bell Services - C:\Windows\SYSTEM32\HidService.exe
O23 - Service: Service Google Update (gupdate1ca323ca98ef1b2) (gupdate1ca323ca98ef1b2) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files (x86)\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files (x86)\Spyware Doctor\pctsSvc.exe
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2008\vsserv.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: BitDefender Communicator (XCOMM) - BitDefender - C:\Program Files\Common Files\BitDefender\BitDefender Communicator\xcommsvr.exe
A voir également:

34 réponses

  • 1
  • 2
Réponse 1 / 34
flo-91 Messages postés 5646 Date d'inscription mardi 19 mai 2009 Statut Contributeur sécurité Dernière intervention 31 octobre 2019 1 118
14 déc. 2009 à 18:28
Bonsoir, :


Pour ceux qui on vista ou windows 7,desactivez l'UAC :
Tuto : https://www.commentcamarche.net/faq/8343-vista-desactiver-l-uac


>Toolbar S&D<


>Telecharge Toolbar S&D ici

https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cpVobGk5bHnxrhQ4yaoEUDJvOYNnEGyYjgqHZz5GqZLfutR3fMFPlsC3-CGIilfupPAguYATNyua3csodN_frdMK8sSzUpit10Yac-QJCOkMqJKkbdKcP6ySs8trWPgoNVIq4TGGWCe6o0txXQv-ZueJF9vZzw3RXsGwFYIqN2lvF2LPdQzS8mE1d5kWOVOz6EMzQuE5-lClSJM869uq3oc7-t7yg%3D%3D&attredirects=3

>Enregistrer le logiciel sur le bureau
>Double-clique sur l'icone "l'icône ToolBarSD.exe"
>Accepte l'installation


>Une fois l'installation terminée, Double-clique sur la nouvelle icone avec écrit Toolbar S&D noir sur ton bureau
>Appuie sur "F" pour choisir la langue francais
>Choisi l'option 1 "recherche" le menu Démarrer et les icônes vont disparaitrent, c'est normal.
>Laisse l'outil faire, ne touche à rien
>Une fois l'analyse terminé, le rapport de recherche s'ouve sur le Bloc-Note. (Dans le cas où le rapport ne s'ouvre pas, ce dernier se trouve sur C:\TB.txt)

>Poste le rapport
0
Réponse 2 / 34
Le Malchanceux
14 déc. 2009 à 19:13
Re merci pour ton aide, je suis sous windows Vista le probleme o moment ou je télécharge et je veux ouvrir le dossier de toolbar (je télécharge avec mozilla qui ouvre en yun dossier) et il me marque

C:/Users/koudié/Downloads/ToolbarSD(2).exe n'est pas une application Win 32 valide
0
Réponse 3 / 34
flo-91 Messages postés 5646 Date d'inscription mardi 19 mai 2009 Statut Contributeur sécurité Dernière intervention 31 octobre 2019 1 118
14 déc. 2009 à 19:16
essaie de l'ouvrir en mode sans echec ( tapote F8 au demarrage du pc )
0
Réponse 4 / 34
Le Malchanceux
14 déc. 2009 à 19:21
Ha Oui o moment ou j'essaye de rélécharger une seconde fois il me remette le meme message et Norton anti-virus 2010 me detecte qu'il a bloquer un virus de c:\httproxy_srv000000000a90aae01260814099(W32.IRCBot)


Et aussi sous le coup de la panique il y a 2 jours de cela j'ai télécharger norton anti-virus 2010+Anti Trojan Elite +Spyware Doctor(spyware doctor fait seulement un scan mais ne les supprime pas car il est payant ><)

et mon antivirus de base est bitdefender 2008
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 34
flo-91 Messages postés 5646 Date d'inscription mardi 19 mai 2009 Statut Contributeur sécurité Dernière intervention 31 octobre 2019 1 118
14 déc. 2009 à 19:22
C'est un faux positif du tool, laisse-le passer.
0
Réponse 6 / 34
Le Malchanceux
14 déc. 2009 à 19:46
Voici le rapport (sur mozzilla je n'ai fait que double clique sur le dossier et je n'ai pas eu d'installation a faire il c'est lancer tout seul j'ai fait comme tu m'as dit et j'ai désactiver norton et sa a marcher ^^ mais je n'ai pa eu de menu démarrer ou d'icone qui on disparu et le rapport ne sais pas ouvert et j'ai donc pris dans C:\TB.txt)
-----------\\ ToolBar S&D 1.2.9 XP/Vista

Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6002 ) Service Pack 2
x64-based PC ( Multiprocessor Free : Pentium(R) Dual-Core CPU E5200 @ 2.50GHz )
BIOS : Default System BIOS
USER : Koudié ( Administrator )
BOOT : Normal boot
Antivirus : Bitdefender Antivirus 8.0 (Activated)
Firewall : Bitdefender Firewall 8.0 (Not Activated)
C:\ (Local Disk) - NTFS - Total:342 Go (Free:204 Go)
D:\ (Local Disk) - NTFS - Total:341 Go (Free:297 Go)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)

"C:\ToolBar SD" ( MAJ : 22-08-2009|18:42 )
Option : [1] ( 14/12/2009|19:37 )

[ UAC => 0 ]

-----------\\ Recherche de Fichiers / Dossiers ...
0
Réponse 7 / 34
flo-91 Messages postés 5646 Date d'inscription mardi 19 mai 2009 Statut Contributeur sécurité Dernière intervention 31 octobre 2019 1 118
14 déc. 2009 à 19:49
Le rapport n'est pas complet, recommence
0
Réponse 8 / 34
fix200 Messages postés 3243 Date d'inscription dimanche 28 décembre 2008 Statut Contributeur sécurité Dernière intervention 7 février 2011 158
14 déc. 2009 à 19:52
Salut à vous deux,

@ Flo-91: c'est normal que le rapport n'est pas complet: Toolbar S&D ne fonctionne pas sous Vista 64 bytes
Essaye AD-R, sinon une suppression manuelle avec un script.

+
0
Réponse 9 / 34
flo-91 Messages postés 5646 Date d'inscription mardi 19 mai 2009 Statut Contributeur sécurité Dernière intervention 31 octobre 2019 1 118
14 déc. 2009 à 19:54
Salut fix200,

Ok, je pensai à Ad-Remover pour la suite, mais je en savais pas que s&d ne fonctionnais pas avec Vista 64, merci d'etre passé :)
0
Réponse 10 / 34
fix200 Messages postés 3243 Date d'inscription dimanche 28 décembre 2008 Statut Contributeur sécurité Dernière intervention 7 février 2011 158
14 déc. 2009 à 19:55
Re,

Ok, je pensai à Ad-Remover pour la suite, mais je en savais pas que s&d ne fonctionnais pas avec Vista 64, merci d'etre passé :)
De rien ;)


Bonne chasse. =)
0
Réponse 11 / 34
Utilisateur anonyme
14 déc. 2009 à 19:57
hello tout le monde :-)
ADR ne fonctionne pas sous 64 bit non plus !!!

http://www.commentcamarche.net/forum/affich-14777146-usbfix?#18


à +++
0
Réponse 12 / 34
fix200 Messages postés 3243 Date d'inscription dimanche 28 décembre 2008 Statut Contributeur sécurité Dernière intervention 7 février 2011 158
14 déc. 2009 à 20:01
Re,

Plop puis merci Électricien ;)

Donc, script obligatoire ^^

+
0
Réponse 13 / 34
flo-91 Messages postés 5646 Date d'inscription mardi 19 mai 2009 Statut Contributeur sécurité Dernière intervention 31 octobre 2019 1 118
14 déc. 2009 à 20:01
Salut Electricien :)

Ok, je vais voir, merci à vous ^^
0
Réponse 14 / 34
Le Malchanceux
14 déc. 2009 à 20:07
Je ne sais pas si sa sert mais je l'ai trouver a coté de C:\TB.txt) voila un scan de je en sais d'ou sa vien ^^
et comment je fais si sa ne marche pas S&D sous Vista?


[ResponseResult]
ResultCode=0
[Install Progress]
Confirm Realtek Driver
Check Operation System Version
OS Information [WINMAJOR Number] = 6
OS Information [WINMAJOR String] = 6.0
OS Information [IsWin2000] = 0
OS Information [IsWinXP] = 0
OS Information [IsWin2003] = 0
OS Information [IsVista] = 1
OS Information [IsWin2008] = 0
OS Information [IsWin7] = 0
OS Information [IsMCE] = 1
OS Information [IsServer] = 0
OS Information [Service Pack] = 1
OS Information [x64] = 1
Operation System was Windows x64
Rtlupd [GetRtlupdForPackage] = 1
Rtlupd version [C:\ACER\Preload\Autorun\DRV\Realtek Audio ALC662\Vista64\RtlUpd64.exe] = 2.7.1.2
Rtkupd version [\] = 2.7.1.2
Current use Rtlupd version [C:\ACER\Preload\Autorun\DRV\Realtek Audio ALC662\Vista64\RtlUpd64.exe] = 2.7.1.2
Default Path [RtkAudioDir] = C:\Program Files (x86)\Realtek\Audio
Default Path [RtkAudioDir x64] = C:\Program Files\Realtek\Audio
Default Path [RtlTempDir] = C:\Program Files (x86)\Realtek\Audio\Drivers
Default Path [RtkHDADrvDir] = C:\Program Files (x86)\Realtek\Audio\Drivers\Vista64
Default Path [RtkHDMIDrvDir] = C:\Program Files (x86)\Realtek\Audio\Drivers\HDMI\XP2K
Default Path [RtlPFHDADir] = C:\Program Files\Realtek\Audio\HDA
Default Registry key [Installer Base Key] = SOFTWARE\Realtek\InstallShield
Current driver version = R2.21

Realtek HD Audio Driver Vista64 Directory Exist .
delete C:\Program Files (x86)\Realtek\Audio\Drivers\Vista64
Copy Realtek HD Audio Driver from Vista64 Directory
Run RtlUpd64.exe : C:\Program Files (x86)\Realtek\Audio\Drivers\RtlUpd64.exe --- > -s -cb (TRUE)
Install Realtek HD Audio Audio Driver
Run RtlUpd64.exe : C:\Program Files (x86)\Realtek\Audio\Drivers\RtlUpd64.exe --- > -u -s -fi (TRUE)
-->Realtek HD Audio - SetupAPI result LAAW_PARAMETERS.nLaunchResult = -4
Register C:\Windows\system32\RtkAPO64.dll in Vista system .
0
Réponse 15 / 34
flo-91 Messages postés 5646 Date d'inscription mardi 19 mai 2009 Statut Contributeur sécurité Dernière intervention 31 octobre 2019 1 118
14 déc. 2009 à 20:09
>Telecharge RSIT ici et enregistre-le sur ton bureau :

http://images.malwareremoval.com/random/RSIT.exe

>Double-clique sur RSIT.exe qui se trouve sur le bureau

>Le programme se lance, choisi "1month" et clique sur "continue"

>Laisse faire l'outil et poste le rapport qui s'affiche.
0
Réponse 16 / 34
Le Malchanceux
14 déc. 2009 à 20:25
Voila le scan
Et aussi pendant le chargement du scan bitdefender a encore detecter le trojan.generic mas un autre type et norton a mis en quarantaine W33.IRCbot (pour norton je pense c'est le toolbards mais pour bitdefender ce n'es pas le 1er message depuis le week end c'est au moin mon 15-20eme message de trojan ><)



Logfile of random's system information tool 1.06 (written by random/random)
Run by Koudié at 2009-12-14 20:13:17
Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 2
System drive C: has 210 GB (60%) free of 350 GB
Total RAM: 4094 MB (60% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:13:21, on 14/12/2009
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v7.00 (7.00.6002.18005)
Boot mode: Normal

Running processes:
C:\ACER\Preload\Autorun\DRV\Fiji Keyboard\ABoard.exe
C:\ACER\Preload\Autorun\DRV\Fiji Keyboard\AOSD.exe
C:\Program Files (x86)\Packard Bell\SetUpMyPC\SmpSys.exe
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\veohwebplayer.exe
C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe
C:\Program Files (x86)\Java\jre6\bin\jusched.exe
C:\Program Files (x86)\Fighters\SPYWAREfighter\swproTray.exe
C:\Program Files (x86)\Norton AntiVirus\Engine\17.1.0.19\ccSvcHst.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Users\Koudié\Downloads\RSIT.exe
C:\Program Files (x86)\Trend Micro\HijackThis\Koudié.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&m=imedia_s1710&r=1v3607098906p0335xq95y47319237
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.cherche.us/keyword/%s
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ww12.cherche.us
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://ww12.cherche.us
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = ${URL_SEARCHPAGE}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.cherche.us/keyword/%s
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page_bak = http://ww12.cherche.us
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll
F2 - REG:system.ini: UserInit=C:\Windows\system32\ezShellStart.exe
O1 - Hosts: ::1 localhost
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton AntiVirus\Engine\17.1.0.19\IPSBHO.DLL
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Easy Gif Animator Toolbar Helper - {96372AB6-15EB-4316-B497-71C741BC548C} - C:\Program Files (x86)\Easy Gif Animator Extension\v3.3.0.2\EasyGifAnimator_Toolbar.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: Easy Gif Animator Toolbar - {35065594-9169-4A34-B167-FC4865038E53} - C:\Program Files (x86)\Easy Gif Animator Extension\v3.3.0.2\EasyGifAnimator_Toolbar.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2008\Antispam32\IEToolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Veoh Video Compass - {52836EB0-631A-47B1-94A6-61F9D9112DAE} - C:\Program Files (x86)\Veoh Networks\Veoh Video Compass\SearchRecsPlugin.dll
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [SWPROguard] C:\Program Files (x86)\Fighters\SPYWAREfighter\SWPROTray.exe
O4 - HKLM\..\Run: [Anti Trojan Elite] "C:\Program Files (x86)\Anti Trojan Elite\TJEnder.exe" :NO
O4 - HKCU\..\Run: [SmpcSys] C:\Program Files (x86)\Packard Bell\SetUpMyPC\SmpSys.exe
O4 - HKCU\..\Run: [swg] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [VeohPlugin] "C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\veohwebplayer.exe"
O4 - HKCU\..\Run: [Anti Trojan Elite] C:\Program Files (x86)\Anti Trojan Elite\TJEnder.exe :NO
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O15 - Trusted Zone: *.chat-land.org
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: Adobe Active File Monitor V6 (AdobeActiveFileMonitor6.0) - Unknown owner - C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AV Engine Scanning Service - Preventon Technologies Limited - C:/Program Files (x86)/Common Files/Common Toolkit Suite/AVEngine/AVScanningService.exe
O23 - Service: Common Toolkit Service - SPAMfighter - C:\Program Files (x86)\Common Files\Common Toolkit Suite\FighterSuiteService.exe
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Packard Bell Services - C:\Windows\SYSTEM32\HidService.exe
O23 - Service: Service Google Update (gupdate1ca323ca98ef1b2) (gupdate1ca323ca98ef1b2) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Norton AntiVirus (NAV) - Symantec Corporation - C:\Program Files (x86)\Norton AntiVirus\Engine\17.1.0.19\ccSvcHst.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2008\vsserv.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: BitDefender Communicator (XCOMM) - BitDefender - C:\Program Files\Common Files\BitDefender\BitDefender Communicator\xcommsvr.exe
0
Réponse 17 / 34
flo-91 Messages postés 5646 Date d'inscription mardi 19 mai 2009 Statut Contributeur sécurité Dernière intervention 31 octobre 2019 1 118
14 déc. 2009 à 20:53
>Attention, c'est 1 seul antivirus sur un pc, plusieurs peuvent entrainer des conflits et un mauvais fonctionnement du pc, je te conseille de desinstaller norton qui est moins bien que bitdefender à l'aide d ecet outil :

https://www.clubic.com/telecharger-fiche208168-norton-removal-tool.html



Puis :


- Ferme toutes tes applications ( navigateur compris ) et déconnecte toi .

Relance Hijackthis mais click sur " Do a scan only "
Tu vois donc apparaitre le résultat du scan : une multitudes de lignes ,chacunes précédées d'un carré vide .
Tu vas cliquer sur les carrés des lignes suivantes :

O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll

F2 - REG:system.ini: UserInit=C:\Windows\system32\ezShellStart.exe => EasyBits Software
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)


O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)



Tu cliques en bas sur le bouton FIX CHECKED et valides.

Puis :


/!\ Desactive ton antivirus le temps de la manip ainsi que ton parefeu et antispyware si présent /!\


> Télécharge List&Kill'em et enregistre le sur ton bureau ici :

http://sd-1.archive-host.com/membres/up/829108531491024/List_Killem.zip

> dezippe-le , (clic droit/ extraire.....)

Il ne necessite pas d'installation

>double clic (clic droit "executer en tant qu'administrateur" pour Vista) pour lancer le scan

choisis la langue puis choisis l'option 1 = Mode Recherche

>laisse travailler l'outil

>Poste le contenu du rapport qui s'ouvre
0
Réponse 18 / 34
Le Malchanceux
14 déc. 2009 à 20:53
un second rapport est apparu



info.txt logfile of random's system information tool 1.06 2009-12-14 20:13:24

======Uninstall list======

-->C:\PROGRA~2\Yahoo!\Common\UNYT_W~1.EXE
Adobe AIR-->c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{A2BCA9F1-566C-4805-97D1-7FDC93386723}
Adobe Common File Installer-->MsiExec.exe /I{8EDBA74D-0686-4C99-BFDD-F894678E5102}
Adobe Flash Player 10 ActiveX-->C:\Windows\SysWOW64\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\Windows\SysWOW64\Macromed\Flash\uninstall_plugin.exe
Adobe Photoshop Elements 6.0-->msiexec /I {F54AC413-D2C6-4A24-B324-370C223C6250}
Adobe Premiere Elements 4.0 Templates-->msiexec /I {F85C7118-F3DC-4ED9-AB27-3E7931EA3D88}
Adobe Premiere Elements 4.0 Templates-->MsiExec.exe /I{F85C7118-F3DC-4ED9-AB27-3E7931EA3D88}
Adobe Premiere Elements 4.0-->msiexec /I {3E2C691B-B7E6-4053-B5C3-94B8BC407E7A}
Adobe Premiere Elements 4.0-->MsiExec.exe /I{3E2C691B-B7E6-4053-B5C3-94B8BC407E7A}
Adobe Reader 9.2 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A92000000001}
Ask Toolbar-->MsiExec.exe /I{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
CCleaner (remove only)-->"C:\Program Files (x86)\CCleaner\uninst.exe"
Dofus 1.28.0-->C:\Program Files (x86)\Dofus\uninstall.exe
Dofus-->msiexec /qb /x {5EBF7AAB-98C5-2C43-0844-4BD9B9FCA7AD}
Dofus-->MsiExec.exe /I{5EBF7AAB-98C5-2C43-0844-4BD9B9FCA7AD}
Easy GIF Animator 4.9-->"C:\Program Files (x86)\Easy GIF Animator\unins000.exe"
Easy Gif Animator Extension-->"C:\Windows\EasyGifAnimator_Toolbar_Uninstaller_7431.exe" _?=C:\Program Files (x86)\Easy Gif Animator Extension
EasyBits Magic Desktop-->C:\Windows\system32\ezMDUninstall.exe
Galerie de photos Windows Live-->MsiExec.exe /X{B131E59D-202C-43C6-84C9-68F0C37541F1}
GIMP 2.4.5-->"C:\Program Files (x86)\GIMP-2.0\setup\unins000.exe"
Google Chrome-->"C:\Program Files (x86)\Google\Chrome\Application\3.0.195.33\Installer\setup.exe" --uninstall --system-level
Google Toolbar for Internet Explorer-->"C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarManager_9697BEF16D815157.exe" /uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
GTK+ 2.8.9 runtime environment-->"C:\Program Files (x86)\Common Files\GTK\2.0\unins000.exe"
HijackThis 2.0.2-->"C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\Windows\SysWOW64\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\Windows\SysWOW64\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {08155812-0202-4D5F-A7FF-12A2782DC548} /qb+ REBOOTPROMPT=""
Identity Card-->C:\Program Files (x86)\Packard Bell\Identity Card\Uninstall.exe
InfoCentre-->C:\Program Files (x86)\Packard Bell\InfoCentre\Uninstall.exe
Installation Windows Live-->C:\Program Files (x86)\Windows Live\Installer\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{46ABBC54-1872-4AA3-95E2-F2C063A63F31}
Java(TM) 6 Update 17-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216016FF}
Junk Mail filter update-->MsiExec.exe /I{E2DFE069-083E-4631-9B6C-43C48E991DE5}
MetaBoli-->"C:\Program Files (x86)\InstallShield Installation Information\{709817E4-5439-4206-8738-796B34B623BD}\setup.exe" -runfromtemp -l0x040c -removeonly
Microsoft Choice Guard-->MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-002A-0000-1000-0000000FF1CE} /uninstall {E64BA721-2310-4B55-BE5A-2925F9706192}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-002A-040C-1000-0000000FF1CE} /uninstall {B165D3C2-40AE-4D39-86F7-E5C87C4264C0}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {B165D3C2-40AE-4D39-86F7-E5C87C4264C0}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-00A1-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}
Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}
Microsoft Office Home and Student 2007-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall HOMESTUDENTR /dll OSETUP.DLL
Microsoft Office Home and Student 2007-->MsiExec.exe /X{91120000-002F-0000-0000-0000000FF1CE}
Microsoft Office Live Add-in 1.3-->MsiExec.exe /I{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}
Microsoft Office OneNote MUI (French) 2007-->MsiExec.exe /X{90120000-00A1-040C-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}
Microsoft Office PowerPoint Viewer 2007 (French)-->MsiExec.exe /X{95120000-00AF-040C-0000-0000000FF1CE}
Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}
Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {14809F99-C601-4D4A-9391-F1E8FAA964C5}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {A0516415-ED61-419A-981D-93596DA74165}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {ABDDE972-355B-4AF1-89A8-DA50B7B5C045}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {F580DDD5-8D37-4998-968E-EBB76BB86787}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {187308AB-5FA7-4F14-9AB9-D290383A10D9}
Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}
Microsoft Office Suite Activation Assistant-->MsiExec.exe /X{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}
Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE}
Microsoft Picture It! Photo 2001-->MsiExec.exe /I{D28FDA7D-15C6-48A2-9868-6BCB28BE6254}
Microsoft Search Enhancement Pack-->MsiExec.exe /X{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Sync Framework Runtime Native v1.0 (x86)-->MsiExec.exe /I{8A74E887-8F0F-4017-AF53-CBA42211AAA5}
Microsoft Sync Framework Services Native v1.0 (x86)-->MsiExec.exe /I{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148-->MsiExec.exe /X{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Works-->MsiExec.exe /I{0214A441-A4AB-43A8-8DEF-2F73C5364673}
Mise à jour Microsoft Office Excel 2007 Help (KB963678)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {B761869A-B85C-40E2-994C-A1CE78AC8F2C}
Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {C3DCA38E-005E-41BA-A52A-7C3429F351C3}
Mise à jour Microsoft Office Word 2007 Help (KB963665)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {81536A04-DBFB-4DB3-978F-0F284590C223}
Module de compatibilité pour Microsoft Office System 2007-->MsiExec.exe /X{90120000-0020-040C-0000-0000000FF1CE}
Mozilla Firefox (3.5.5)-->C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
Norton AntiVirus-->C:\Program Files (x86)\NortonInstaller\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV\562C4DD5\17.1.0.19\InstStub.exe /X
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
Packard Bell Customer Registration-->C:\Program Files (x86)\Packard Bell\Packard Bell Customer Registration\Uninstall.exe
Packard Bell Recovery Management-->"C:\Program Files (x86)\InstallShield Installation Information\{7F811A54-5A09-4579-90E1-C93498E230D9}\setup.exe" -runfromtemp -l0x040c -removeonly
PackardBell ScreenSaver-->C:\Windows\Screensavers\PackardBell\Uninstall.exe
RealPlayer-->C:\Program Files (x86)\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|12.0
Realtek High Definition Audio Driver-->C:\Program Files\Realtek\Audio\HDA\RtlUpd64.exe -r -m -nrg2709
Reg (DOFUS Audio Subsystem)-->msiexec /qb /x {3F900346-A316-BA88-B83C-2513F1260AD7}
Reg (DOFUS Audio Subsystem)-->MsiExec.exe /I{3F900346-A316-BA88-B83C-2513F1260AD7}
Samsung PC Studio 3 USB Driver Installer-->"C:\Program Files (x86)\InstallShield Installation Information\{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}\setup.exe" -runfromtemp -l0x040c -removeonly
Samsung PC Studio 3-->"C:\Program Files (x86)\InstallShield Installation Information\{C4A4722E-79F9-417C-BD72-8D359A090C97}\setup.exe" -runfromtemp -l0x040c -removeonly
Security Update for 2007 Microsoft Office System (KB969559)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {69F52148-9BF6-4CDC-BF76-103DEAF3DD08}
Security Update for 2007 Microsoft Office System (KB973704)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {E626DC89-A787-4553-9BB3-DC2EC7E1593F}
Security Update for Microsoft Office Excel 2007 (KB973593)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {7D6255E3-3423-4D8B-A328-F6F8D28DD5FE}
Security Update for Microsoft Office PowerPoint 2007 (KB957789)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {7559E742-FF9F-4FAE-B279-008ED296CB4D}
Security Update for Microsoft Office system 2007 (972581)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {3D019598-7B59-447A-80AE-815B703B84FF}
Security Update for Microsoft Office system 2007 (KB969613)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {5ECEB317-CBE9-4E08-AB10-756CB6F0FB6C}
Security Update for Microsoft Office system 2007 (KB974234)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {FCD742B9-7A55-44BC-A776-F795F21FEDDC}
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {71127777-8B2C-4F97-AF7A-6CF8CAC8224D}
SetUpMyPC-->C:\Program Files (x86)\Packard Bell\SetUpMyPC\Uninstall.exe
Shockwave-->C:\Windows\System32\Macromed\SHOCKW~1\UNWISE.EXE C:\Windows\System32\Macromed\SHOCKW~1\INSTALL.LOG
SPYWAREfighter-->"C:\ProgramData\{787D8BC4-68CA-4839-A1F7-947E42850681}\SPYWAREfighter.exe" REMOVE=TRUE MODIFY=FALSE
SPYWAREfighter-->C:\ProgramData\{787D8BC4-68CA-4839-A1F7-947E42850681}\SPYWAREfighter.exe
Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D}
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\Windows\SysWOW64\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
Update for Microsoft Office InfoPath 2007 (KB976416)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {432C5EE4-8096-4FF1-95E1-65219365DFF7}
Update for Microsoft Office Word 2007 (KB974561)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {0CDDBAA2-2111-4A0E-A1B0-76C40C635331}
Updator-->C:\Program Files (x86)\Packard Bell\Updator\Uninstall.exe
Veoh Video Compass-->C:\Program Files (x86)\Veoh Networks\Veoh Video Compass\uninst.exe
Veoh Web Player-->"C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\uninst.exe"
VLC media player 1.0.1-->C:\Program Files (x86)\VideoLAN\VLC\uninstall.exe
VSO Image Resizer 2.2.2.1-->"C:\Program Files (x86)\VSO\Image Resizer\unins000.exe"
Warcraft III-->C:\Windows\War3Unin.exe C:\Windows\War3Unin.dat
Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
Windows Live FolderShare-->MsiExec.exe /X{2075CB0A-D26F-4DAA-B424-5079296B43BA}
Windows Live Mail-->MsiExec.exe /I{5DD76286-9BE7-4894-A990-E905E91AC818}
Windows Live Messenger-->MsiExec.exe /X{770F1BEC-2871-4E70-B837-FB8525FFA3B1}
Windows Live Movie Maker-->MsiExec.exe /X{53B20C18-D8D4-4588-8737-9BBFE303C354}
Windows Live Toolbar-->MsiExec.exe /X{F7D27C70-90F5-49B9-B188-0A133C0CE353}
Windows Live Writer-->MsiExec.exe /X{4634B21A-CC07-4396-890C-2B8168661FEA}
WinRAR archiver-->C:\Program Files (x86)\WinRAR\uninstall.exe
Yahoo! Toolbar-->C:\PROGRA~2\Yahoo!\Common\UNYT_W~1.EXE

======Security center information======

AV: Bitdefender Antivirus
FW: Bitdefender Firewall (disabled)
AS: BitDefender AntiSpam
AS: Windows Defender

======System event log======

Computer Name: PC-de-Koudié
Event Code: 4376
Message: Servicing a requis un redémarrage pour terminer la définition du package KB948609(Update) à l’état Installation demandée(Install Requested)
Record Number: 35574
Source Name: Microsoft-Windows-Servicing
Time Written: 20090911225031.000000-000
Event Type: Avertissement
User: PC-de-Koudié\Koudié

Computer Name: PC-de-Koudié
Event Code: 4376
Message: Servicing a requis un redémarrage pour terminer la définition du package KB948609(Update) à l’état Installation demandée(Install Requested)
Record Number: 35483
Source Name: Microsoft-Windows-Servicing
Time Written: 20090911225031.000000-000
Event Type: Avertissement
User: PC-de-Koudié\Koudié

Computer Name: PC-de-Koudié
Event Code: 4376
Message: Servicing a requis un redémarrage pour terminer la définition du package KB948609(Update) à l’état Installation demandée(Install Requested)
Record Number: 35477
Source Name: Microsoft-Windows-Servicing
Time Written: 20090911225031.000000-000
Event Type: Avertissement
User: PC-de-Koudié\Koudié

Computer Name: PC-de-Koudié
Event Code: 4376
Message: Servicing a requis un redémarrage pour terminer la définition du package KB948609(Update) à l’état Installation demandée(Install Requested)
Record Number: 35474
Source Name: Microsoft-Windows-Servicing
Time Written: 20090911225031.000000-000
Event Type: Avertissement
User: PC-de-Koudié\Koudié

Computer Name: PC-de-Koudié
Event Code: 4376
Message: Servicing a requis un redémarrage pour terminer la définition du package KB948609(Update) à l’état Installation demandée(Install Requested)
Record Number: 35470
Source Name: Microsoft-Windows-Servicing
Time Written: 20090911225031.000000-000
Event Type: Avertissement
User: PC-de-Koudié\Koudié

=====Application event log=====

Computer Name: PC-de-Koudié
Event Code: 33
Message: La création du contexte d’activation a échoué pour « C:\Windows\Installer\{0214A441-A4AB-43A8-8DEF-2F73C5364673}\WksCal.exe ». Assembly dépendant msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" introuvable. Utilisez sxstrace.exe pour un diagnostic détaillé.
Record Number: 1191
Source Name: SideBySide
Time Written: 20090909115206.000000-000
Event Type: Erreur
User:

Computer Name: PC-de-Koudié
Event Code: 33
Message: La création du contexte d’activation a échoué pour « C:\Windows\Installer\{0214A441-A4AB-43A8-8DEF-2F73C5364673}\wksdb.exe ». Assembly dépendant msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" introuvable. Utilisez sxstrace.exe pour un diagnostic détaillé.
Record Number: 1190
Source Name: SideBySide
Time Written: 20090909115206.000000-000
Event Type: Erreur
User:

Computer Name: PC-de-Koudié
Event Code: 33
Message: La création du contexte d’activation a échoué pour « C:\Windows\Installer\{0214A441-A4AB-43A8-8DEF-2F73C5364673}\wksdb.exe ». Assembly dépendant msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" introuvable. Utilisez sxstrace.exe pour un diagnostic détaillé.
Record Number: 1189
Source Name: SideBySide
Time Written: 20090909115205.000000-000
Event Type: Erreur
User:

Computer Name: PC-de-Koudié
Event Code: 10
Message: Le filtre d’événement avec la requête « SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 » n’a pas pu être réactivé dans l’espace de noms « //./root/CIMV2 » à cause de l’erreur 0x80041003. Les événements ne peuvent pas être délivrés à travers ce filtre tant que le problème ne sera pas corrigé.
Record Number: 1155
Source Name: Microsoft-Windows-WMI
Time Written: 20090909104631.000000-000
Event Type: Erreur
User:

Computer Name: PC-de-Koudié
Event Code: 1008
Message: Le service Windows Search tente de supprimer l’ancien catalogue.

Record Number: 1151
Source Name: Microsoft-Windows-Search
Time Written: 20090909104629.000000-000
Event Type: Avertissement
User:

=====Security event log=====

Computer Name: PC-de-Koudié
Event Code: 4907
Message: Les paramètres d’audit sur l’objet ont changé.

Sujet :
ID de sécurité : S-1-5-18
Nom du compte : PC-DE-KOUDIÉ$
Domaine du compte : WORKGROUP
ID d’ouverture de session : 0x3e7

Objet :
Serveur de l’objet : Security
Type d’objet : File
Nom de l’objet : C:\Windows\SysWOW64\wmp.dll
ID du handle : 0x14

Informations sur le processus :
ID du processus : 0xe88
Nom du processus : C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_657dfccc7fa7eb9a\poqexec.exe

Paramètres d’audit :
Descripteur de sécurité d’origine :
Nouveau descripteur de sécurité : S:ARAI(AU;SAFA;DCLCRPCRSDWDWO;;;WD)
Record Number: 3705
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090909132715.767056-000
Event Type: Succès de l'audit
User:

Computer Name: PC-de-Koudié
Event Code: 4907
Message: Les paramètres d’audit sur l’objet ont changé.

Sujet :
ID de sécurité : S-1-5-18
Nom du compte : PC-DE-KOUDIÉ$
Domaine du compte : WORKGROUP
ID d’ouverture de session : 0x3e7

Objet :
Serveur de l’objet : Security
Type d’objet : File
Nom de l’objet : C:\Windows\SysWOW64\spwmp.dll
ID du handle : 0x14

Informations sur le processus :
ID du processus : 0xe88
Nom du processus : C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_657dfccc7fa7eb9a\poqexec.exe

Paramètres d’audit :
Descripteur de sécurité d’origine :
Nouveau descripteur de sécurité : S:ARAI(AU;SAFA;DCLCRPCRSDWDWO;;;WD)
Record Number: 3704
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090909132715.642256-000
Event Type: Succès de l'audit
User:

Computer Name: PC-de-Koudié
Event Code: 4907
Message: Les paramètres d’audit sur l’objet ont changé.

Sujet :
ID de sécurité : S-1-5-18
Nom du compte : PC-DE-KOUDIÉ$
Domaine du compte : WORKGROUP
ID d’ouverture de session : 0x3e7

Objet :
Serveur de l’objet : Security
Type d’objet : File
Nom de l’objet : C:\Windows\SysWOW64\dxmasf.dll
ID du handle : 0x14

Informations sur le processus :
ID du processus : 0xe88
Nom du processus : C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_657dfccc7fa7eb9a\poqexec.exe

Paramètres d’audit :
Descripteur de sécurité d’origine :
Nouveau descripteur de sécurité : S:ARAI(AU;SAFA;DCLCRPCRSDWDWO;;;WD)
Record Number: 3703
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090909132715.626656-000
Event Type: Succès de l'audit
User:

Computer Name: PC-de-Koudié
Event Code: 4907
Message: Les paramètres d’audit sur l’objet ont changé.

Sujet :
ID de sécurité : S-1-5-18
Nom du compte : PC-DE-KOUDIÉ$
Domaine du compte : WORKGROUP
ID d’ouverture de session : 0x3e7

Objet :
Serveur de l’objet : Security
Type d’objet : File
Nom de l’objet : C:\Windows\SysWOW64\msdxm.ocx
ID du handle : 0x14

Informations sur le processus :
ID du processus : 0xe88
Nom du processus : C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_657dfccc7fa7eb9a\poqexec.exe

Paramètres d’audit :
Descripteur de sécurité d’origine :
Nouveau descripteur de sécurité : S:ARAI(AU;SAFA;DCLCRPCRSDWDWO;;;WD)
Record Number: 3702
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090909132715.611056-000
Event Type: Succès de l'audit
User:

Computer Name: PC-de-Koudié
Event Code: 4907
Message: Les paramètres d’audit sur l’objet ont changé.

Sujet :
ID de sécurité : S-1-5-18
Nom du compte : PC-DE-KOUDIÉ$
Domaine du compte : WORKGROUP
ID d’ouverture de session : 0x3e7

Objet :
Serveur de l’objet : Security
Type d’objet : File
Nom de l’objet : C:\Windows\System32\licensing\ppdlic\WMPPlayer-ppdlic.xrm-ms
ID du handle : 0x14

Informations sur le processus :
ID du processus : 0xe88
Nom du processus : C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.0.6001.18000_none_657dfccc7fa7eb9a\poqexec.exe

Paramètres d’audit :
Descripteur de sécurité d’origine :
Nouveau descripteur de sécurité : S:ARAI(AU;SAFA;DCLCRPCRSDWDWO;;;WD)
Record Number: 3701
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090909132715.595456-000
Event Type: Succès de l'audit
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files (x86)\Common Files\Adobe\AGL;C:\Program Files (x86)\Common Files\GTK\2.0\bin;C:\Program Files (x86)\Samsung\Samsung PC Studio 3\
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=AMD64
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
"PROCESSOR_REVISION"=170a
"NUMBER_OF_PROCESSORS"=2
"TRACE_FORMAT_SEARCH_PATH"=\\NTREL202.ntdev.corp.microsoft.com\34FB5F65-FFEB-4B61-BF0E-A6A76C450FAA\TraceFormat
"DFSTRACINGON"=FALSE
"LANG"=fr

-----------------EOF-----------------
0
Réponse 19 / 34
Le Malchanceux
14 déc. 2009 à 21:57
Voila le scan (j'ai oublier de désinstaller norton je le fait tout de suite ^^)



List'em by g3n-h@ckm@n 1.1.5.1

Thx to Chiquitine29.....& CCM team

User : Koudié (Administrateurs) # PC-DE-KOUDIÉ
Update on 11/12/2009 by g3n-h@ckm@n ::::: 20:30
Start at: 21:23:42 | 14/12/2009
Contact : g3n-h@ckm@n sur CCM

Pentium(R) Dual-Core CPU E5200 @ 2.50GHz
Microsoft® Windows Vista™ Édition Familiale Premium (6.0.6002 64-bit) # Service Pack 2
Internet Explorer 7.0.6002.18005
Windows Firewall Status : Enabled
AV : Bitdefender Antivirus 8.0 [ Enabled | Updated ]
FW : Bitdefender Firewall[ (!) Disabled ]8.0

C:\ -> Disque fixe local | 342,02 Go (204,8 Go free) [OS] | NTFS
D:\ -> Disque fixe local | 341,97 Go (297,51 Go free) [DATA] | NTFS
E:\ -> Disque CD-ROM
F:\ -> Disque amovible
G:\ -> Disque amovible
H:\ -> Disque amovible
I:\ -> Disque amovible

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Processes running

C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe 1792
C:\Program Files (x86)\Common Files\Common Toolkit Suite\AVEngine\AVScanningService.exe 812
C:\Program Files (x86)\Common Files\Common Toolkit Suite\FighterSuiteService.exe 2056
C:\Windows\SysWOW64\svchost.exe 2172
C:\Windows\system32\HidService.exe 2228
C:\Program Files (x86)\Norton AntiVirus\Engine\17.1.0.19\ccSvcHst.exe 2416
C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe 2532
C:\ACER\Preload\Autorun\DRV\Fiji Keyboard\ABoard.exe 2796
C:\ACER\Preload\Autorun\DRV\Fiji Keyboard\AOSD.exe 2896
C:\Program Files (x86)\Packard Bell\SetUpMyPC\SmpSys.exe 2916
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe 2948
C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\veohwebplayer.exe 2988
C:\Program Files (x86)\Java\jre6\bin\jusched.exe 668
C:\Program Files (x86)\Fighters\SPYWAREfighter\swproTray.exe 628
C:\Program Files (x86)\Norton AntiVirus\Engine\17.1.0.19\ccSvcHst.exe 3960
C:\Windows\SysWOW64\DllHost.exe 3976
C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe 2644
C:\Users\Koudié\Desktop\List_Killem\List_Kill'em.exe 3036
C:\Windows\SysWOW64\conime.exe 2580
C:\Windows\SysWOW64\cmd.exe 4844
C:\Users\Koudié\AppData\Local\Temp\FBFB.tmp\pv.exe 2936

======================
Keys "Run"
======================
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
SmpcSys REG_SZ C:\Program Files (x86)\Packard Bell\SetUpMyPC\SmpSys.exe
msnmsgr REG_SZ "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
Sidebar REG_SZ C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
VeohPlugin REG_SZ "C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\veohwebplayer.exe"
Anti Trojan Elite REG_SZ C:\Program Files (x86)\Anti Trojan Elite\TJEnder.exe :NO

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
NBKeyScan REG_SZ "C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
Adobe ARM REG_SZ "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
SunJavaUpdateSched REG_SZ "C:\Program Files (x86)\Java\jre6\bin\jusched.exe"
SWPROguard REG_SZ C:\Program Files (x86)\Fighters\SPYWAREfighter\SWPROTray.exe
Anti Trojan Elite REG_SZ "C:\Program Files (x86)\Anti Trojan Elite\TJEnder.exe" :NO

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]

=====================
Other Keys
=====================
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
ConsentPromptBehaviorAdmin REG_DWORD 2 (0x2)
ConsentPromptBehaviorUser REG_DWORD 1 (0x1)
EnableInstallerDetection REG_DWORD 1 (0x1)
EnableLUA REG_DWORD 0 (0x0)
EnableSecureUIAPaths REG_DWORD 1 (0x1)
EnableVirtualization REG_DWORD 1 (0x1)
PromptOnSecureDesktop REG_DWORD 1 (0x1)
ValidateAdminCodeSignatures REG_DWORD 0 (0x0)
dontdisplaylastusername REG_DWORD 0 (0x0)
legalnoticecaption REG_SZ
legalnoticetext REG_SZ
scforceoption REG_DWORD 0 (0x0)
shutdownwithoutlogon REG_DWORD 1 (0x1)
undockwithoutlogon REG_DWORD 1 (0x1)
FilterAdministratorToken REG_DWORD 0 (0x0)
EnableUIADesktopToggle REG_DWORD 0 (0x0)

===============
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
NoViewContextMenu REG_DWORD 0 (0x0)
NoRun REG_DWORD 0 (0x0)
NoFind REG_DWORD 0 (0x0)
NoDesktop REG_DWORD 0 (0x0)
HideClock REG_DWORD 0 (0x0)

===============
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
NoActiveDesktop REG_DWORD 1 (0x1)
NoActiveDesktopChanges REG_DWORD 1 (0x1)
ForceActiveDesktopOn REG_DWORD 0 (0x0)
BindDirectlyToPropertySetStorage REG_DWORD 0 (0x0)

===============
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
AppInit_DLLS REG_SZ

===============

===============
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
{E54729E8-BB3D-4270-9D49-7389EA579090} REG_SZ EasyBits Security Shield Hook - prevents launching insecure programs by kids

===============
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

===============
BHO :
======
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{96372AB6-15EB-4316-B497-71C741BC548C}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]

================
Internet Explorer :
================
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
Start Page REG_SZ https://fr.yahoo.com/

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
Start Page REG_SZ https://www.google.fr/?gws_rd=ssl

========
Services
========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services]

Ndisuio : 0x3
EapHost : 0x3
Wlansvc : 0x3
SharedAccess : 0x2
windefend : 0x2
wuauserv : 0x2
wscsvc : 0x2

=========

=======
Drive :
=======


==========
Programs
==========

Adobe
Ahead
Anti Trojan Elite
Ask.com
CCleaner
Common Files
desktop.ini
Dofus
Dofus 2
Easy GIF Animator
Easy Gif Animator Extension
EasyBits For Kids
Fighters
GIMP-2.0
Google
InstallShield Installation Information
Internet Explorer
Java
Microsoft
Microsoft Office
Microsoft Office Suite Activation Assistant
Microsoft Picture It! PhotoPub
Microsoft Silverlight
Microsoft SQL Server Compact Edition
Microsoft Sync Framework
Microsoft Works
Microsoft(166)
Microsoft.NET
Mozilla Firefox
MSBuild
MSXML 4.0
Norton AntiVirus
NortonInstaller
Packard Bell
PlayReady
Real
Realtek
Reference Assemblies
Samsung
Spyware Doctor
Temp
Trend Micro
Ubisoft
Uninstall Information
Veoh Networks
VideoLAN
VSO
Warcraft III
Windows Calendar
Windows Collaboration
Windows Defender
Windows Live
Windows Live SkyDrive
Windows Mail
Windows Media Player
Windows NT
Windows Photo Gallery
Windows Portable Devices
Windows Sidebar
WinRAR
XnView
Yahoo!

¤¤¤¤¤¤¤¤¤¤ Files/folders :

C:\Program Files (x86)\Ask.com
C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
C:\Windows\System32\EXPLORER.exe
C:\Windows\System32\EZUPBH~1.DLL
C:\Windows\System32\regedit.exe
C:\Users\Koudi‚\LOCAL Settings\Temp\symcdefsv5i64.exe

¤¤¤¤¤¤¤¤¤¤ Keys :

HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser "{D4027C7F-154A-4066-A1AD-4243D8127440}"
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer "NoActiveDesktopChanges"
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer "NoFind"
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer "NoRun"
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks "{E54729E8-BB3D-4270-9D49-7389EA579090}"
"HKCU\software\microsoft\internet explorer\searchscopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}"
HKCR\CLSID\{E54729E8-BB3D-4270-9D49-7389EA579090}
HKCR\ezUPBHook.ShellObj
HKCR\ezUPBHook.ShellObj.1
HKCR\TypeLib\{478CAB91-9E28-11D4-97FF-0050047D51FB}
HKCU\Software\AppDataLow\AskBarDis
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{83ff80f4-8c74-4b80-b5ba-c8ddd434e5c4}
HKLM\software\classes\appid\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
HKLM\software\classes\appid\GenericAskToolbar.DLL
HKLM\software\classes\GenericAskToolbar.ToolbarWnd
HKLM\software\classes\GenericAskToolbar.ToolbarWnd.1
HKLM\software\microsoft\windows\currentversion\uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}

=========
Rootkits
=========

driver loading error catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-12-14 21:28:56
Windows 6.0.6002 Service Pack 2 WOW64 NTFS

scanning hidden files ...

IPC error: 2 Le fichier spécifié est introuvable.
C:\Windows\System32\$Acer$.cmd 23 bytes
C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 3216 bytes
C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 3216 bytes
C:\Windows\System32\EventProviders
C:\Windows\System32\EventProviders\de-de
C:\Windows\System32\EventProviders\de-de\spcmsg.dll.mui 5632 bytes executable
C:\Windows\System32\EventProviders\en-us
C:\Windows\System32\EventProviders\en-us\spcmsg.dll.mui 5120 bytes executable
C:\Windows\System32\EventProviders\es-es
C:\Windows\System32\EventProviders\es-es\spcmsg.dll.mui 5632 bytes executable
C:\Windows\System32\EventProviders\fr-fr
C:\Windows\System32\EventProviders\fr-fr\spcmsg.dll.mui 5632 bytes executable
C:\Windows\System32\EventProviders\ja-jp
C:\Windows\System32\EventProviders\ja-jp\spcmsg.dll.mui 4608 bytes executable
C:\Windows\System32\EventProviders\spcmsg.dll 14336 bytes executable
C:\Windows\System32\LocalGroupAdminAdd.log 15 bytes
C:\Windows\System32\Local_LLU.log 49 bytes
C:\Windows\System32\AERTAC64.dll 166400 bytes executable
C:\Windows\System32\AERTAR64.dll 67072 bytes executable
C:\Windows\System32\config\RegBack\COMPONENTS 47620096 bytes
C:\Windows\System32\config\RegBack\COMPONENTS.LOG1 262144 bytes
C:\Windows\System32\config\RegBack\COMPONENTS.LOG2 0 bytes
C:\Windows\System32\config\RegBack\COMPONENTS.OLD 47620096 bytes
C:\Windows\System32\config\RegBack\DEFAULT 237568 bytes
C:\Windows\System32\config\RegBack\DEFAULT.LOG1 262144 bytes
C:\Windows\System32\config\RegBack\DEFAULT.LOG2 0 bytes
C:\Windows\System32\config\RegBack\DEFAULT.OLD 237568 bytes
C:\Windows\System32\config\RegBack\SAM 57344 bytes
C:\Windows\System32\config\RegBack\SAM.LOG1 262144 bytes
C:\Windows\System32\config\RegBack\SAM.LOG2 0 bytes
C:\Windows\System32\config\RegBack\SAM.OLD 57344 bytes
C:\Windows\System32\config\RegBack\SECURITY 20480 bytes
C:\Windows\System32\config\RegBack\SECURITY.LOG1 262144 bytes
C:\Windows\System32\config\RegBack\SECURITY.LOG2 0 bytes
C:\Windows\System32\config\RegBack\SECURITY.OLD 20480 bytes
C:\Windows\System32\config\RegBack\SOFTWARE 58306560 bytes
C:\Windows\System32\config\RegBack\SOFTWARE.LOG1 262144 bytes
C:\Windows\System32\config\RegBack\SOFTWARE.LOG2 0 bytes
C:\Windows\System32\config\RegBack\SOFTWARE.OLD 58306560 bytes
C:\Windows\System32\config\RegBack\SYSTEM 26001408 bytes
C:\Windows\System32\config\RegBack\SYSTEM.LOG1 1310720 bytes
C:\Windows\System32\config\RegBack\SYSTEM.LOG2 0 bytes
C:\Windows\System32\config\RegBack\SYSTEM.OLD 26001408 bytes
C:\Windows\System32\config\SOFTWARE.LOG1 262144 bytes
C:\Windows\System32\config\BCD-Template 262144 bytes
C:\Windows\System32\config\BCD-Template.LOG 41984 bytes
C:\Windows\System32\config\BCD-Template.LOG1 0 bytes
C:\Windows\System32\config\BCD-Template.LOG2 0 bytes
C:\Windows\System32\config\components 47710208 bytes
C:\Windows\System32\config\COMPONENTS.LOG 1024 bytes
C:\Windows\System32\config\COMPONENTS.LOG1 262144 bytes
C:\Windows\System32\config\COMPONENTS.LOG2 0 bytes
C:\Windows\System32\config\COMPONENTS.SAV 26247168 bytes
C:\Windows\System32\config\components_previous 43778048 bytes
C:\Windows\System32\config\default 262144 bytes
C:\Windows\System32\config\DEFAULT.LOG 1024 bytes
C:\Windows\System32\config\DEFAULT.LOG1 262144 bytes
C:\Windows\System32\config\DEFAULT.LOG2 0 bytes
C:\Windows\System32\config\DEFAULT.SAV 110592 bytes
C:\Windows\System32\config\default_previous 262144 bytes
C:\Windows\System32\config\sam 262144 bytes
C:\Windows\System32\config\SAM.LOG 1024 bytes
C:\Windows\System32\config\SAM.LOG1 262144 bytes
C:\Windows\System32\config\SAM.LOG2 0 bytes
C:\Windows\System32\config\sam_previous 262144 bytes
C:\Windows\System32\config\security 262144 bytes
C:\Windows\System32\config\SECURITY.LOG 1024 bytes
C:\Windows\System32\config\SECURITY.LOG1 262144 bytes
C:\Windows\System32\config\SECURITY.LOG2 0 bytes
C:\Windows\System32\config\SECURITY.SAV 20480 bytes
C:\Windows\System32\config\security_previous 262144 bytes
C:\Windows\System32\config\software 58458112 bytes
C:\Windows\System32\config\SOFTWARE.LOG 1024 bytes
C:\Windows\System32\config\SOFTWARE.LOG2 0 bytes
C:\Windows\System32\config\SOFTWARE.SAV 19435520 bytes
C:\Windows\System32\config\software_previous 58195968 bytes
C:\Windows\System32\config\SYSTEM.LOG 1024 bytes
C:\Windows\System32\config\SYSTEM.LOG1 262144 bytes
C:\Windows\System32\config\SYSTEM.LOG2 0 bytes
C:\Windows\System32\config\SYSTEM.SAV 1806336 bytes
C:\Windows\System32\config\systemprofile\AppData\Local\CrashDumps
C:\Windows\System32\config\systemprofile\AppData\Local\CrashDumps\SearchIndexer.exe.2540.dmp 2235393 bytes
C:\Windows\System32\config\systemprofile\AppData\Local\d3d9caps64.dat 732 bytes
C:\Windows\System32\config\systemprofile\AppData\Local\desktop.ini 6 bytes
C:\Windows\System32\config\systemprofile\AppData\Local\GDIPFONTCACHEV1.DAT 71272 bytes
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Portable Devices
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Portable Devices\wpdlog00.sqm 272 bytes
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Portable Devices\wpdlog01.sqm 272 bytes
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Portable Devices\wpdlog02.sqm 260 bytes
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Portable Devices\wpdlog03.sqm 248 bytes
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Portable Devices\wpdlog04.sqm 248 bytes
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Portable Devices\wpdlog05.sqm 248 bytes
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Portable Devices\wpdlog06.sqm 248 bytes
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Portable Devices\wpdlog07.sqm 260 bytes
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Portable Devices\wpdlog08.sqm 260 bytes
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Portable Devices\wpdlog09.sqm 260 bytes
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Portable Devices\wpdlog10.sqm 260 bytes
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Portable Devices\wpdlog11.sqm 260 bytes
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Portable Devices\wpdlog12.sqm 248 bytes
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Portable Devices\wpdlog13.sqm 248 bytes
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Portable Devices\wpdlog14.sqm 248 bytes
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Portable Devices\wpdlog15.sqm 248 bytes
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Portable Devices\wpdlog16.sqm 260 bytes
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Portable Devices\wpdlog17.sqm 260 bytes
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Portable Devices\wpdlog18.sqm 260 bytes
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Portable Devices\wpdlog19.sqm 260 bytes
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\19ZMIUJ1
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\19ZMIUJ1\desktop.ini 67 bytes
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\24OBTRMT
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\24OBTRMT\desktop.ini 67 bytes
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\P6O8MG2R
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\P6O8MG2R\desktop.ini 67 bytes
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VSR2JTJU
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VSR2JTJU\desktop.ini 67 bytes
C:\Windows\System32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\696F3DE637E6DE85B458996D49D759AD 781 bytes
C:\Windows\System32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\B8CC409ACDBF2A2FE04C56F2875B1FD6 561 bytes
C:\Windows\System32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\696F3DE637E6DE85B458996D49D759AD 284 bytes
C:\Windows\System32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\B8CC409ACDBF2A2FE04C56F2875B1FD6 258 bytes
C:\Windows\System32\config\systemprofile\Contacts
C:\Windows\System32\config\systemprofile\Contacts\desktop.ini 412 bytes
C:\Windows\System32\config\systemprofile\Music
C:\Windows\System32\config\systemprofile\Music\desktop.ini 504 bytes
C:\Windows\System32\config\systemprofile\Music\Sample Music.lnk 663 bytes
C:\Windows\System32\config\systemprofile\ntuser.dat{61ba1ebc-c7c3-11dc-b700-806e6f6e6963}.TM.blf 65536 bytes
C:\Windows\System32\config\systemprofile\ntuser.dat{61ba1ebc-c7c3-11dc-b700-806e6f6e6963}.TMContainer00000000000000000001.regtrans-ms 524288 bytes
C:\Windows\System32\config\systemprofile\ntuser.dat{61ba1ebc-c7c3-11dc-b700-806e6f6e6963}.TMContainer00000000000000000002.regtrans-ms 524288 bytes
C:\Windows\System32\config\system_previous 22020096 bytes
C:\Windows\System32\config\TxR\{250834b7-750c-494d-bdc3-da86b6e2101a}.TxR.0.regtrans-ms 5242880 bytes
C:\Windows\System32\config\TxR\{250834b7-750c-494d-bdc3-da86b6e2101a}.TxR.1.regtrans-ms 5242880 bytes
C:\Windows\System32\config\TxR\{250834b7-750c-494d-bdc3-da86b6e2101a}.TxR.2.regtrans-ms 5242880 bytes
C:\Windows\System32\config\TxR\{250834B7-750C-494d-BDC3-DA86B6E2101A}.TxR.3.regtrans-ms 5242880 bytes
C:\Windows\System32\config\TxR\{250834B7-750C-494d-BDC3-DA86B6E2101A}.TxR.4.regtrans-ms 5242880 bytes
C:\Windows\System32\config\TxR\{250834B7-750C-494d-BDC3-DA86B6E2101A}.TxR.5.regtrans-ms 5242880 bytes
C:\Windows\System32\config\TxR\{250834b7-750c-494d-bdc3-da86b6e2101a}.TxR.blf 65536 bytes
C:\Windows\System32\config\TxR\{250834B7-750C-494d-BDC3-DA86B6E2101B}.TM.blf 65536 bytes
C:\Windows\System32\config\TxR\{250834B7-750C-494d-BDC3-DA86B6E2101B}.TMContainer00000000000000000001.regtrans-ms 524288 bytes
C:\Windows\System32\config\TxR\{250834B7-750C-494d-BDC3-DA86B6E2101B}.TMContainer00000000000000000002.regtrans-ms 524288 bytes
C:\Windows\System32\bdod.bin 81984 bytes
C:\Windows\System32\Boot\fr-FR
C:\Windows\System32\brcoinst.dll 19456 bytes executable
C:\Windows\System32\catroot
C:\Windows\System32\catroot\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\1.CAT 7753 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\avgntflt.cat 7320 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\drmclien.cat 6429 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-AutomationAPI-Package-MiniLP~31bf3856ad364e35~amd64~ar-SA~6.0.6002.18156.cat 7576 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-AutomationAPI-Package-MiniLP~31bf3856ad364e35~amd64~bg-BG~6.0.6002.18156.cat 7576 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-AutomationAPI-Package-MiniLP~31bf3856ad364e35~amd64~cs-CZ~6.0.6002.18156.cat 7576 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-AutomationAPI-Package-MiniLP~31bf3856ad364e35~amd64~da-DK~6.0.6002.18156.cat 7576 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-AutomationAPI-Package-MiniLP~31bf3856ad364e35~amd64~de-DE~6.0.6002.18156.cat 7576 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-AutomationAPI-Package-MiniLP~31bf3856ad364e35~amd64~el-GR~6.0.6002.18156.cat 7576 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-AutomationAPI-Package-MiniLP~31bf3856ad364e35~amd64~en-US~6.0.6002.18156.cat 7576 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Features-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 260946 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Features-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 816142 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-LanguagePack-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-ClipsInTheLibrary-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 9001 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-ClipsInTheLibrary-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 9581 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-CodecPack-Basic-Encoder-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 11039 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-CodecPack-Basic-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 14551 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Anytime-Upgrade-HomePremium-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 10169 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-AutomationAPI-Package-MiniLP~31bf3856ad364e35~amd64~es-ES~6.0.6002.18156.cat 7576 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-AutomationAPI-Package-MiniLP~31bf3856ad364e35~amd64~ja-JP~6.0.6002.18156.cat 7576 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-AutomationAPI-Package-MiniLP~31bf3856ad364e35~amd64~pt-PT~6.0.6002.18156.cat 7576 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-DFSR-ClientEdition-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 9871 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-DFSR-ClientEdition-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 10757 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-DGT-Package-MiniLP~31bf3856ad364e35~amd64~fr-FR~7.0.6002.18107.cat 7576 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-DGT-Package-TopLevel~31bf3856ad364e35~amd64~~7.0.6002.18107.cat 7576 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-DGT-Package~31bf3856ad364e35~amd64~fr-FR~7.0.6002.18107.cat 14036 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-DGT-Package~31bf3856ad364e35~amd64~~7.0.6002.18107.cat 64493 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Disk-Diagnosis-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 9589 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Disk-Diagnosis-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 10169 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Foundation-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 8123 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-GPUPipeline-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 8413 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-GPUPipeline-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 10749 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Help-CoreClientUAHP-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 23493 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Help-Customization-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 8703 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Help-Customization-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 9283 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-HomePremiumEdition~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 13343 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-IIS-WebServer-AddOn-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 65720 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-IIS-WebServer-AddOn-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 120148 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-IIS-WebServer-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 58211 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Indexing-Service-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 11933 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Indexing-Service-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 13689 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Links-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 8703 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Links-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 8123 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~ar-SA~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~bg-BG~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~cs-CZ~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~de-DE~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~el-GR~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~en-US~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~es-ES~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~et-EE~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~fi-FI~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~he-IL~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~hr-HR~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~hu-HU~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~it-IT~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~ja-JP~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~ko-KR~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~lv-LV~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~nb-NO~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~nl-NL~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~pl-PL~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~pt-BR~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~pt-PT~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~ru-RU~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~sk-SK~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~sl-SI~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~sr-LATN-CS~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~sv-SE~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~th-TH~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~tr-TR~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~uk-UA~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~zh-CN~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~zh-HK~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~zh-TW~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-TopLevel~31bf3856ad364e35~amd64~~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~ar-SA~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~cs-CZ~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~da-DK~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~de-DE~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~el-GR~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~en-US~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~es-ES~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~et-EE~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~fr-FR~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~he-IL~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~hr-HR~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~hu-HU~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~it-IT~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~ja-JP~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~ko-KR~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~lv-LV~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~nb-NO~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~nl-NL~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~pl-PL~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~pt-BR~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~pt-PT~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~ro-RO~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~fr-FR~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~lt-LT~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~ro-RO~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~tk-TM~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~bg-BG~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~fi-FI~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~sk-SK~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~sl-SI~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~sr-LATN-CS~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~sv-SE~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~th-TH~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~tk-TM~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~tr-TR~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~zh-CN~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~zh-HK~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~zh-TW~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~~6.1.1000.18273.cat 84331 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Format-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 21341 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Format-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 228341 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MediaCenter-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 24861 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MediaPlayer-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 25465 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MediaPlayer-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 121675 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MobilePC-Client-Basic-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 10177 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MobilePC-Client-Basic-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 11329 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MobilePC-Client-Premium-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 11353 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MobilePC-Client-Premium-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 12215 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MobilePC-Client-SideShow-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 11643 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MobilePC-Help-AnytimeUpgrade-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 9001 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MobilePC-Help-AnytimeUpgrade-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 8703 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MovieMaker-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 12239 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MovieMaker-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 17773 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MSMQ-Client-Home-Premium-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 11329 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MSMQ-Client-Home-Premium-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 28985 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-NetFx3-OC-Package~31bf3856ad364e35~amd64~en-US~6.0.6000.16386.cat 27351 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-NetFx3-OC-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 137938 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-OpticalMediaDisc-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 10177 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-OpticalMediaDisc-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 124242 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-ParentalControls-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 21397 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-ParentalControls-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 26053 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-PeerToPeer-AdhocMeetings-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 9001 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-PeerToPeer-AdhocMeetings-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 13423 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-PeerToPeer-Full-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 22958 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-PhotoPremiumPackage~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 21349 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-PhotoPremiumPackage~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 28663 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Printing-Foundation-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 12247 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Printing-Foundation-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 12843 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Printing-XPSServices-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 8413 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Printing-XPSServices-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 10161 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-RasRip-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 9001 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-RDC-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 8413 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-RDC-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 9879 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-RecDisc-SDP-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6001.18000.cat 13280 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-RecDisc-SDP-Package~31bf3856ad364e35~amd64~~6.0.6001.18000.cat 18167 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-RemoteAssistance-Package-Client~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 11957 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-RemoteAssistance-Package-Client~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 14019 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~ru-RU~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~uk-UA~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MediaCenter-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 98375 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-MobilePC-Client-SideShow-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 14543 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-NetFx3-OC-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 53261 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-PeerToPeer-Full-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 16919 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-RasRip-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 9001 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-AutomationAPI-Package-TopLevel~31bf3856ad364e35~amd64~~6.0.6002.18156.cat 7576 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package-MiniLP~31bf3856ad364e35~amd64~da-DK~6.1.1000.18273.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Media-Center-TV-Pack-Package~31bf3856ad364e35~amd64~lt-LT~6.1.1000.18273.cat 24444 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-RemovableStorageManagement-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 12545 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_19_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 15328 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_2_for_KB957097~31bf3856ad364e35~amd64~~6.0.1.0.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_48_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_7_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 99216 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_for_KB952287_client_0~31bf3856ad364e35~amd64~~6.0.1.0.cat 10640 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_for_KB958215_client~31bf3856ad364e35~amd64~~6.0.1.0.cat 8799 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_for_KB973507_client~31bf3856ad364e35~amd64~~6.0.1.1.cat 7917 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-RemovableStorageManagement-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 14027 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-SampleContent-Movies-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 10733 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-SampleContent-Music-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 14793 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-ServicingBaseline-HomePremium-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 8703 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Shell-InboxGames-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 13971 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Shell-InboxGames-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 18353 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Shell-PremiumInboxGames-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 10757 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Sidebar-Killbits-SDP-Package~31bf3856ad364e35~amd64~~6.0.6001.18000.cat 11218 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-SimpleTCP-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 9001 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-SimpleTCP-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 9291 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-SNMP-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 14293 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-SNMP-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 30879 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-SystemRestore-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 12545 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-SystemRestore-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 18638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-TabletPC-OC-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 28163 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Telnet-Client-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 9001 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Telnet-Client-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 9291 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Telnet-Server-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 10177 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Telnet-Server-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 11047 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-TFTP-Client-Package~31bf3856ad364e35~amd64~fr-FR~6.0.6000.16386.cat 9001 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-TFTP-Client-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 9001 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-UIRibbon-Package-MUI-MiniLP~31bf3856ad364e35~amd64~fr-FR~7.0.6002.18108.cat 7591 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-UIRibbon-Package-MUI~31bf3856ad364e35~amd64~fr-FR~7.0.6002.18108.cat 10508 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-UIRibbon-Package-TopLevel~31bf3856ad364e35~amd64~~7.0.6002.18108.cat 7591 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-UIRibbon-Package~31bf3856ad364e35~amd64~~7.0.6002.18108.cat 12838 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-VistaServicePack-SysHiper-SP1-Package~31bf3856ad364e35~amd64~~6.0.6002.18005.cat 9918 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Networking-MPSSVC-Rules-HomePremiumEdition-Package~31bf3856ad364e35~amd64~~6.0.6000.16386.cat 14503 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\nt5.cat 6106074 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\ntexe.cat 221046 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\ntpe.cat 1052954 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\ntph.cat 1139256 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\ntprint.cat 17534 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem10.CAT 406403 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem11.CAT 13599 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem12.CAT 767818 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem13.CAT 9874 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem14.CAT 18549 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem15.CAT 363585 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_11_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 11516 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_11_for_KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 15044 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_11_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 13588 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_11_for_KB948465~31bf3856ad364e35~amd64~fr-FR~6.0.1.18005.cat 21976 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_11_for_KB968389~31bf3856ad364e35~amd64~~6.0.1.3.cat 26841 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_11_for_KB972036~31bf3856ad364e35~amd64~~6.0.2.0.cat 16086 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_11_for_KB972145~31bf3856ad364e35~amd64~~6.0.1.5.cat 16165 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_11_for_KB973565~31bf3856ad364e35~amd64~~6.0.1.0.cat 12009 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_11_for_KB975467~31bf3856ad364e35~amd64~~6.0.1.0.cat 20992 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_121_for_KB970430~31bf3856ad364e35~amd64~~6.0.1.6.cat 9658 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_12_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_12_for_KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 11516 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_14_for_KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 12692 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_14_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 24140 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_14_for_KB948465~31bf3856ad364e35~amd64~fr-FR~6.0.1.18005.cat 11407 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_14_for_KB973917~31bf3856ad364e35~amd64~~6.0.1.2.cat 51078 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_15_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_15_for_KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 12104 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_15_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 24140 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_15_for_KB948465~31bf3856ad364e35~amd64~fr-FR~6.0.1.18005.cat 10231 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_15_for_KB948465~31bf3856ad364e35~amd64~~6.0.1.18005.cat 11392 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_15_for_KB973917~31bf3856ad364e35~amd64~~6.0.1.2.cat 10515 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_163_for_KB951072~31bf3856ad364e35~amd64~~6.0.2.0.cat 13572 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_163_for_KB955839~31bf3856ad364e35~amd64~~6.0.1.0.cat 11731 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_163_for_KB970653~31bf3856ad364e35~amd64~~6.0.1.0.cat 10515 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_163_for_KB976098~31bf3856ad364e35~amd64~~6.0.1.1.cat 10515 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_16_for_KB935509~31bf3856ad364e35~amd64~~6.0.1.9.cat 12396 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_16_for_KB936330~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 10638 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_16_for_KB937286~31bf3856ad364e35~amd64~fr-FR~6.0.1.18000.cat 12684 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_16_for_KB938371~31bf3856ad364e35~amd64~~6.0.2.27.cat 24140 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_16_for_KB948465~31bf3856ad364e35~amd64~fr-FR~6.0.1.18005.cat 59341 bytes
C:\Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_16_
0
Réponse 20 / 34
Le Malchanceux
14 déc. 2009 à 23:09
est-ce que je suis tiré d'affaire aprer tout sa? ^^
0

Discussions similaires

j'ai renversé de l'eau sur mon pc portable
sardine -
moudubulbe -

14 réponses
Où est la touche SHIFT sur mon clavier d'ordi ?
joe! -
fernando-_ytb -

18 réponses
chaima csc
chaima -
chaima -

1 réponse