Pas encore inscrit ?

Pourquoi ne pas vous inscrire ? C'est simple, rapide et gratuit.
Pour en savoir plus, lisez Les avantages de l'inscription... et la Charte de Zébulon.
De plus, les messages que vous postez en tant qu'invité restent invisibles tant qu'un modérateur ne les a pas validés. Inscrivez-vous, ce sera un gain de temps pour tout le monde, vous, les helpeurs et les modérateurs !

Se connecter

ou

S’inscrire

Infection PC : mabidwe.exe, soxpeca.exe et udxfytw.sys

Par bapor
le 30 novembre 2008 dans Analyses et éradication malwares

https://forum.zebulon.fr/topic/155483-infection-pc-mabidweexe-soxpecaexe-et-udxfytwsys/

Abonnés 0

Messages recommandés

WawaSeb

Posté(e) le 1 décembre 2008

- Signaler

Posté(e) le 1 décembre 2008

Bonsoir bapor,

Ton PC est très infecté !!!
Même si nous parvenons à enlever tous les malware's présents sur ton système, je ne pourrai pas te garantir que l'ordinateur fonctionnera parfaitement par la suite...

Nous allons exécuter un script personnalisé pour Combofix

Déconnecte-toi du net et désactive ton antivirus (juste le temps de la procédure !)
Ouvre le bloc-note et colles-y les lignes écrites en citation ci-dessous :
http://forum.zebulon.fr/mabidweexe-soxpeca...amp;mode=linear

KillAll::

Extra::

Driver::
mchInjDrv
afisicx
mabidwe
noytcyr
poof
roytctm
soxpeca
tdydowkc
wsldoekd

Folder::
c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp

Suspect::
c:\windows.0\system32\ealregsnapshot1.reg

Collect::
c:\docume~1\BaPoR\LOCALS~1\Temp\mc22.tmp
c:\windows.0\system32\msnfoed.exe
C:\WINDOWS\System32\drivers\poof.sys
* Attention, ce code a été rédigé spécialement pour cet utilisateur, prière de ne pas le ré-utiliser dans d'autres cas !
Enregistre-le en lui donnant le nom CFScript
Comme sur l'image présentée ici, fais glisser CFScript.txt dans Combofix.exe
Poste le résultat !

2) Télécharge ATF Cleaner de Atribune sur ton bureau. Ce programme sert à nettoyer les fichiers inutiles !

- Double-clique sur ATF-Cleaner.exe

Coche ceci :

Windows Temp
Current User Temp
All Users Temp
Cookies
Temporary Internet Files
Prefetch
Java Cache
Recycle Bin

- Clique sur Empty Selected et au message "Done Cleaning" sur Ok

3) Télécharge Malwarebytes' Anti-Malware (MBAM)

Double clique sur le fichier téléchargé pour lancer le processus d'installation.
Installe le programme avec les options par défaut et assure-toi que les deux cases sont bien cochées comme indiqué sur le dessin : si le pare-feu demande l'autorisation à MBAM de se connecter, accepte.
Une fois la mise à jour terminée, rends-toi dans l'onglet "Recherche".
Sélectionne "Exécuter un examen complet"
Sélectionne tous tes disques et clique sur Lancer l'examen.
L'analyse démarre, le scan est relativement long, c'est normal.
A la fin de l'analyse, un message s'affiche :
L'examen s'est terminé normalement. Clique sur 'Afficher les résultats' pour afficher tous les objets trouvés.
Clique sur "Ok" pour poursuivre. Si MBAM n'a rien trouvé, il te le dira aussi.
Ferme tes navigateurs.
Si des malwares ont été détectés, clique sur Afficher les résultats.
Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.
MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Copie-colle ce rapport et poste-le dans ta prochaine réponse.

==> Ce dernier scan va me permettre de vérifier que tout est en ordre, je recommande d'utiliser cet outil après ceux qui sont dédiés à une infection en particulier... sauf cas exceptionnel !

Bon travail et ... bonne nuit !

Citer

bapor

Posté(e) le 2 décembre 2008

Auteur

- Signaler

Posté(e) le 2 décembre 2008 (modifié)

Hi, thx.

ComboFix 08-12-01.01 - BaPoR 2008-12-02 2:29:51.5 - NTFSx86

Microsoft Windows XP Professionnel 5.1.2600.3.1252.1.1036.18.1444 [GMT 1:00]

Lancé depuis: c:\documents and settings\BaPoR\Bureau\ComboFix.exe

Commutateurs utilisés :: c:\documents and settings\BaPoR\Bureau\CFScript.txt

* Un nouveau point de restauration a été créé

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\batchrunner.exe

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Launch.cmd

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Netfx20a_x86.msi

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Program Files\Common Files\Microsoft Shared\DW\1025\DWINTL20.DLL

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Program Files\Common Files\Microsoft Shared\DW\1028\DWINTL20.DLL

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Program Files\Common Files\Microsoft Shared\DW\1031\DWINTL20.DLL

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Program Files\Common Files\Microsoft Shared\DW\1033\DWINTL20.DLL

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Program Files\Common Files\Microsoft Shared\DW\1036\DWINTL20.DLL

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Program Files\Common Files\Microsoft Shared\DW\1040\DWINTL20.DLL

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Program Files\Common Files\Microsoft Shared\DW\1041\DWINTL20.DLL

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Program Files\Common Files\Microsoft Shared\DW\1042\DWINTL20.DLL

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Program Files\Common Files\Microsoft Shared\DW\2052\DWINTL20.DLL

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Program Files\Common Files\Microsoft Shared\DW\3082\DWINTL20.DLL

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Program Files\Common Files\Microsoft Shared\DW\DW20.EXE

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Program Files\Common Files\Microsoft Shared\DW\DWDCW20.DLL

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Program Files\Internet Explorer\MUI\0409\mscorier.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\NETFXSBS10.exe

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\netfxsbs12.hkf

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\sbs_diasymreader.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\sbs_iehost.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\sbs_microsoft.jscript.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\sbs_microsoft.vsa.vb.codedomprocessor.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\sbs_mscordbi.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\sbs_mscorrc.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\sbs_mscorsec.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\sbs_system.configuration.install.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\sbs_system.data.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\sbs_system.enterpriseservices.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\sbs_VsaVb7rt.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\sbs_wminet_utils.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\sbscmp10.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\sbscmp20_mscorwks.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\sbscmp20_perfcounter.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\SharedReg12.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\_DataOracleClientPerfCounters_shared12_neutral.h

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\_DataOracleClientPerfCounters_shared12_neutral.ini

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\_DataPerfCounters.h

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\_DataPerfCounters.ini

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\_dataperfcounters_shared12_neutral.h

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\_dataperfcounters_shared12_neutral.ini

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\_NetworkingPerfCounters.h

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\_Networkingperfcounters.ini

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\1033\alinkui.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\1033\cscompui.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\1033\CvtResUI.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\1033\vbc7ui.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\1033\Vsavb7rtUI.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\Accessibility.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\AdoNetDiag.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\adonetdiag.mof

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\alink.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\AppLaunch.exe

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\App_Code\ApplicationConfigurationPage.cs

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\App_Code\NavigationBar.cs

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\App_Code\PasswordValueTextBox.cs

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\App_Code\ProvidersPage.cs

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\App_Code\SecurityPage.cs

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\App_Code\WebAdminPage.cs

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\App_Code\WizardPage.cs

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\App_Data\GroupedProviders.xml

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\App_GlobalResources\AppConfigCommon.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\App_GlobalResources\GlobalResources.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\App_LocalResources\default.aspx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\App_LocalResources\error.aspx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\App_LocalResources\home0.aspx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\App_LocalResources\home1.aspx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\App_LocalResources\home2.aspx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\App_LocalResources\navigationBar.ascx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\App_LocalResources\WebAdminHelp.aspx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\App_LocalResources\WebAdminHelp_Application.aspx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\App_LocalResources\WebAdminHelp_Internals.aspx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\App_LocalResources\WebAdminHelp_Provider.aspx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\App_LocalResources\WebAdminHelp_Security.aspx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\AppConfig\App_LocalResources\AppConfigHome.aspx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\AppConfig\App_LocalResources\AppSetting.ascx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\AppConfig\App_LocalResources\CreateAppSetting.aspx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\AppConfig\App_LocalResources\DebugAndTrace.aspx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\AppConfig\App_LocalResources\DefineErrorPage.aspx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\AppConfig\App_LocalResources\EditAppSetting.aspx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\AppConfig\App_LocalResources\ManageAppSettings.aspx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\AppConfig\App_LocalResources\SmtpSettings.aspx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\AppConfig\AppConfigHome.aspx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\AppConfig\AppSetting.ascx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\AppConfig\CreateAppSetting.aspx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\AppConfig\DebugAndTrace.aspx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\AppConfig\DefineErrorPage.aspx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\AppConfig\EditAppSetting.aspx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\AppConfig\ManageAppSettings.aspx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\AppConfig\SmtpSettings.aspx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\default.aspx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\error.aspx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\home0.aspx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\home1.aspx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\home2.aspx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Images\alert_lrg.gif

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Images\ASPdotNET_logo.jpg

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Images\aspx_file.gif

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Images\branding_Full2.gif

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Images\darkBlue_GRAD.jpg

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Images\deselectedTab_1x1.gif

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Images\folder.gif

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Images\gradient_onBlue.gif

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Images\gradient_onWhite.gif

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Images\headerGRADIENT_Tall.gif

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Images\help.jpg

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Images\HelpIcon_solid.gif

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Images\image1.gif

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Images\image2.gif

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Images\requiredBang.gif

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Images\security_watermark.jpg

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Images\selectedTab_1x1.gif

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Images\selectedTab_leftCorner.gif

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Images\selectedTab_rightCorner.gif

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Images\topGradRepeat.jpg

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Images\unSelectedTab_leftCorner.gif

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Images\unSelectedTab_rightCorner.gif

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Images\yellowCORNER.gif

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\navigationBar.ascx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Providers\App_LocalResources\chooseProviderManagement.aspx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Providers\App_LocalResources\manageconsolidatedProviders.aspx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Providers\App_LocalResources\manageProviders.aspx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Providers\App_LocalResources\providerList.ascx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Providers\chooseProviderManagement.aspx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Providers\ManageConsolidatedProviders.aspx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Providers\ManageProviders.aspx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Providers\ProviderList.ascx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\App_LocalResources\security.aspx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\App_LocalResources\security0.aspx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\App_LocalResources\setUpAuthentication.aspx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Permissions\App_LocalResources\createPermission.aspx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Permissions\App_LocalResources\managePermissions.aspx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Permissions\createPermission.aspx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Permissions\managePermissions.aspx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Roles\App_LocalResources\manageAllRoles.aspx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Roles\App_LocalResources\manageSingleRole.aspx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Roles\manageAllRoles.aspx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Roles\manageSingleRole.aspx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\security.aspx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\security0.aspx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\setUpAuthentication.aspx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Users\addUser.aspx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Users\App_LocalResources\addUser.aspx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Users\App_LocalResources\editUser.aspx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Users\App_LocalResources\findUsers.aspx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Users\App_LocalResources\manageUsers.aspx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Users\editUser.aspx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Users\findUsers.aspx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Users\manageUsers.aspx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Wizard\App_LocalResources\confirmation.ascx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Wizard\App_LocalResources\wizard.aspx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Wizard\App_LocalResources\wizardAddUser.ascx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Wizard\App_LocalResources\wizardAuthentication.ascx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Wizard\App_LocalResources\wizardCreateRoles.ascx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Wizard\App_LocalResources\wizardFinish.ascx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Wizard\App_LocalResources\wizardInit.ascx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Wizard\App_LocalResources\wizardPermission.ascx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Wizard\App_LocalResources\wizardProviderInfo.ascx.resx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Wizard\confirmation.ascx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Wizard\wizard.aspx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Wizard\wizardAddUser.ascx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Wizard\wizardAuthentication.ascx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Wizard\wizardCreateRoles.ascx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Wizard\wizardFinish.ascx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Wizard\wizardInit.ascx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Wizard\wizardPermission.ascx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\Security\Wizard\wizardProviderInfo.ascx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\web.config

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\webAdmin.master

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\webAdminButtonRow.master

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\WebAdminHelp.aspx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\WebAdminHelp_Application.aspx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\WebAdminHelp_Internals.aspx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\WebAdminHelp_Provider.aspx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\WebAdminHelp_Security.aspx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\webAdminNoButtonRow.master

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\webAdminNoNavBar.master

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\WebAdminStyles.css

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\WebAdminWithConfirmation.master

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ASP.NETWebAdminFiles\WebAdminWithConfirmationNoButtonRow.master

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\Aspnet.config

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\aspnet.mof

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\aspnet.mof.uninstall

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\aspnet_compiler.exe

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\aspnet_filter.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\aspnet_isapi.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\Aspnet_perf.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\aspnet_perf.h

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\aspnet_perf.ini

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\aspnet_perf2.ini

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\aspnet_rc.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\aspnet_regbrowsers.exe

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\aspnet_regiis.exe

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\aspnet_regsql.exe

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\Aspnet_regsql.exe.config

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\aspnet_state.exe

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\aspnet_state_perf.h

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\aspnet_state_perf.ini

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\aspnet_wp.exe

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\AspNetMMCExt.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\big5.nlp

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\bopomofo.nlp

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CasPol.exe

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\caspol.exe.config

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CLR.mof

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CLR.mof.uninstall

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\Browsers\avantgo.browser

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\Browsers\cassio.browser

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\Browsers\Default.browser

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\Browsers\docomo.browser

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\Browsers\ericsson.browser

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\Browsers\EZWap.browser

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\Browsers\gateway.browser

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\Browsers\generic.browser

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\Browsers\goAmerica.browser

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\Browsers\ie.browser

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\Browsers\Jataayu.browser

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\Browsers\jphone.browser

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\Browsers\legend.browser

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\Browsers\MME.browser

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\Browsers\mozilla.browser

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\Browsers\netscape.browser

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\Browsers\nokia.browser

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\Browsers\openwave.browser

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\Browsers\opera.browser

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\Browsers\palm.browser

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\Browsers\panasonic.browser

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\Browsers\pie.browser

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\Browsers\webtv.browser

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\Browsers\winwap.browser

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\Browsers\xiino.browser

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\DefaultWsdlHelpGenerator.aspx

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\machine.config

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\machine.config.comments

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\machine.config.default

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\web.config

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\web.config.comments

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\web.config.default

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\web_hightrust.config

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\web_hightrust.config.default

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\web_lowtrust.config

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\web_lowtrust.config.default

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\web_mediumtrust.config

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\web_mediumtrust.config.default

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\web_minimaltrust.config

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CONFIG\web_minimaltrust.config.default

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CORPerfMonExt.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CORPerfMonSymbols.h

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\corperfmonsymbols.ini

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\csc.exe

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\csc.exe.config

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\csc.rsp

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\cscomp.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\cscompmgd.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\Culture.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\CustomMarshalers.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\cvtres.exe

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\dfdll.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\dfsvc.exe

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\diasymreader.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\dv_aspnetmmc.chm

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\EventLogMessages.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\fusion.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\gdiplus.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\IEExec.exe

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ieexec.exe.config

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\IEExecRemote.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\IEHost.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\IIEHost.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ilasm.exe

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ilasm.exe.config

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\InstallCommon.sql

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\InstallMembership.sql

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\InstallPersistSqlState.sql

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\InstallPersonalization.sql

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\InstallProfile.SQL

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\InstallRoles.sql

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\InstallSqlState.sql

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\InstallSqlStateTemplate.sql

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\InstallUtil.exe

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\InstallUtilLib.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\InstallWebEventSqlProvider.sql

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ISymWrapper.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\jsc.exe

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\jsc.exe.config

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ksc.nlp

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\Microsoft.Build.Engine.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\Microsoft.Build.Framework.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\Microsoft.Build.Tasks.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\Microsoft.Build.Utilities.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\Microsoft.Build.xsd

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\Microsoft.Common.targets

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\Microsoft.Common.Tasks

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\Microsoft.CSharp.targets

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\Microsoft.JScript.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\Microsoft.JScript.tlb

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\Microsoft.VisualBasic.Compatibility.Data.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\Microsoft.VisualBasic.Compatibility.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\Microsoft.VisualBasic.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\Microsoft.VisualBasic.targets

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\Microsoft.VisualBasic.Vsa.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\Microsoft.VisualC.Dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\Microsoft.Vsa.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\Microsoft.Vsa.tlb

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\Microsoft.Vsa.Vb.CodeDOMProcessor.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\Microsoft.Vsa.Vb.CodeDOMProcessor.tlb

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\Microsoft_VsaVb.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\MmcAspExt.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\MSBuild.exe

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\msbuild.exe.config

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\MSBuild.rsp

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\MSBuild\Microsoft.Build.Commontypes.xsd

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\MSBuild\Microsoft.Build.Core.xsd

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\mscordacwks.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\mscordbc.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\mscordbi.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\mscoree.tlb

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\mscorie.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\mscorjit.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\mscorld.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\mscorlib.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\mscorlib.tlb

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\mscorpe.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\mscorrc.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\mscorsec.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\mscorsn.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\mscorsvc.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\mscorsvw.exe

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\mscortim.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\mscorwks.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\MUI\0409\mscorsecr.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ngen.exe

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\normalization.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\normidna.nlp

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\normnfc.nlp

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\normnfd.nlp

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\normnfkc.nlp

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\normnfkd.nlp

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\PerfCounter.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\peverify.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\prc.nlp

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\prcp.nlp

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\RedistList\FrameworkList.xml

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\RegAsm.exe

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\regasm.exe.config

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\RegSvcs.exe

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\regsvcs.exe.config

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\regtlibv12.exe

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\sbscmp20_mscorlib.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\shfusion.chm

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\shfusion.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\ShFusRes.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\sortkey.nlp

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\sorttbls.nlp

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\SOS.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\sysglobl.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\System.configuration.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\System.Configuration.Install.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\System.Data.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\System.Data.OracleClient.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\System.Data.SqlXml.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\System.Deployment.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\System.Design.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\System.DirectoryServices.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\System.DirectoryServices.Protocols.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\System.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\System.Drawing.Design.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\System.Drawing.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\System.Drawing.tlb

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\System.EnterpriseServices.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\System.EnterpriseServices.Thunk.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\System.EnterpriseServices.tlb

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\System.EnterpriseServices.Wrapper.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\System.Management.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\System.Messaging.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\System.Runtime.Remoting.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\System.Runtime.Serialization.Formatters.Soap.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\System.Security.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\System.ServiceProcess.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\System.tlb

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\System.Transactions.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\System.Web.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\System.Web.Mobile.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\System.Web.RegularExpressions.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\System.Web.Services.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\System.Web.tlb

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\System.Windows.Forms.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\System.Windows.Forms.tlb

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\System.XML.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\TLBREF.DLL

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\UninstallCommon.sql

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\UninstallMembership.sql

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\UninstallPersistSqlState.sql

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\UninstallPersonalization.sql

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\UnInstallProfile.SQL

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\UninstallRoles.sql

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\UninstallSqlState.sql

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\UninstallSqlStateTemplate.sql

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\UninstallWebEventSqlProvider.sql

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\vbc.exe

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\vbc.exe.config

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\vbc.rsp

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\vsavb7.olb

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\VsaVb7rt.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\webengine.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\WMINet_Utils.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\xjis.nlp

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\URTInstallPath\XPThemes.manifest

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\v1.0.3705\installutil.exe.config

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\v1.0.3705\mscormmc.cfg

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\v1.0.3705\mscormmc.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\v1.0.3705\regsvcs.exe.config

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\v1.1.4322\gacutil.exe.config

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\Microsoft.NET\Framework\v1.1.4322\regsvcs.exe.config

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\RegisteredPackages\{D5D40355-5FB0-48fb-A231-CDC637FA16E0}\NETFXMigration.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\RegisteredPackages\{D5D40355-5FB0-48fb-A231-CDC637FA16E0}\NETFXUSA.CAT

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\RegisteredPackages\{D5D40355-5FB0-48fb-A231-CDC637FA16E0}\NETFXUSA.INF

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\System\dfshim.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\System\mscoree.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\System\mscorier.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\System\mscories.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\System\MUI\0409\mscorees.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\System\netfxperf.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\System\WBEM\wbemDC.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\System\WBEM\Wmidcad.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Win\System\WBEM\wmiutils.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Windows\INF\AER_1025.ADM

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Windows\INF\AER_1028.ADM

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Windows\INF\AER_1031.ADM

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Windows\INF\AER_1033.ADM

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Windows\INF\AER_1036.ADM

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Windows\INF\AER_1040.ADM

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Windows\INF\AER_1041.ADM

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Windows\INF\AER_1042.ADM

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Windows\INF\AER_2052.ADM

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Windows\INF\AER_3082.ADM

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Windows\system32\msvcm80.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Windows\system32\msvcp80.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Windows\system32\msvcr80.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Windows\winsxs\92rg91xw.1p4\msvcm80.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Windows\winsxs\92rg91xw.1p4\msvcp80.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Windows\winsxs\92rg91xw.1p4\msvcr80.dll

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Windows\winsxs\Manifests\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.1433_x-ww_5cf844d2.cat

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Windows\winsxs\Manifests\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.1433_x-ww_5cf844d2.manifest

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Windows\winsxs\Policies\uxgs54we.kj4\8.0.50727.1433.cat

c:\documents and settings\Administrateur.A6-6D3439E225D0\7zSA27.tmp\Windows\winsxs\Policies\uxgs54we.kj4\8.0.50727.1433.policy

c:\windows.0\Install.txt

c:\windows.0\system32\afisicx.exe

c:\windows.0\system32\comsa32.sys

c:\windows.0\system32\mabidwe.exe

c:\windows.0\system32\msnfoed.exe

c:\windows.0\system32\noytcyr.exe

c:\windows.0\system32\roytctm.exe

c:\windows.0\system32\soxpeca.exe

c:\windows.0\system32\tdydowkc.exe

c:\windows.0\system32\tmp0_637450579860.bk

c:\windows.0\system32\tpszxyd.sys

c:\windows.0\system32\udxfytw.sys

c:\windows.0\system32\wsldoekd.exe

((((((((((((((((((((((((((((((((((((((( Pilotes/Services )))))))))))))))))))))))))))))))))))))))))))))))))

-------\Legacy_AFISICX

-------\Legacy_MABIDWE

-------\Legacy_MCHINJDRV

-------\Legacy_NOYTCYR

-------\Legacy_ROYTCTM

-------\Legacy_SOXPECA

-------\Legacy_TDYDOWKC

-------\Legacy_WSLDOEKD

-------\Service_afisicx

-------\Service_mabidwe

-------\Service_mchInjDrv

-------\Service_noytcyr

-------\Service_roytctm

-------\Service_soxpeca

-------\Service_tdydowkc

-------\Service_wsldoekd

((((((((((((((((((((((((((((( Fichiers créés du 2008-11-02 au 2008-12-02 ))))))))))))))))))))))))))))))))))))

2008-12-01 16:31 . 2008-12-01 16:31 <REP> d--h----- c:\windows.0\system32\GroupPolicy

2008-12-01 13:52 . 2008-12-01 16:50 69 --a------ c:\windows.0\NeroDigital.ini

2008-12-01 12:52 . 2008-12-01 13:22 <REP> d-------- c:\documents and settings\BaPoR\Application Data\vlc

2008-11-30 21:04 . 2008-11-30 21:04 <REP> d-------- c:\program files\Veetle

2008-11-30 21:04 . 2008-11-30 21:05 48,396 --a------ c:\windows.0\UninstVeetleTVPlayer.exe

2008-11-30 19:29 . 2008-11-30 19:29 <REP> d-------- c:\windows.0\ERUNT

2008-11-30 19:27 . 2008-10-07 04:58 <REP> d--h----- c:\documents and settings\Administrateur.A6-6D3439E225D0\Voisinage réseau

2008-11-30 19:27 . 2008-10-07 04:58 <REP> d--h----- c:\documents and settings\Administrateur.A6-6D3439E225D0\Voisinage d'impression

2008-11-30 19:27 . 2008-10-07 03:03 <REP> d--h----- c:\documents and settings\Administrateur.A6-6D3439E225D0\Modèles

2008-11-30 19:27 . 2008-10-07 04:58 <REP> d-------- c:\documents and settings\Administrateur.A6-6D3439E225D0\Mes documents

2008-11-30 19:27 . 2008-10-07 04:58 <REP> dr------- c:\documents and settings\Administrateur.A6-6D3439E225D0\Menu Démarrer

2008-11-30 19:27 . 2008-10-07 03:08 <REP> d-------- c:\documents and settings\Administrateur.A6-6D3439E225D0\Favoris

2008-11-30 19:27 . 2008-10-07 04:58 <REP> d-------- c:\documents and settings\Administrateur.A6-6D3439E225D0\Bureau

2008-11-30 19:27 . 2008-12-02 02:30 <REP> d-------- c:\documents and settings\Administrateur.A6-6D3439E225D0

2008-11-30 19:20 . 2008-11-30 19:59 <REP> d-------- C:\SDFix

2008-11-28 16:53 . 2004-03-02 16:37 125,184 --------- c:\windows.0\system32\drivers\imagesrv.sys

2008-11-28 16:53 . 2004-03-02 16:37 5,504 --------- c:\windows.0\system32\drivers\imagedrv.sys

2008-11-28 16:52 . 2008-11-28 16:52 <REP> d-------- c:\program files\Fichiers communs\Ahead

2008-11-28 16:52 . 2004-07-26 16:16 1,568,768 --------- c:\windows.0\system32\ImagX7.dll

2008-11-28 16:52 . 2004-07-26 16:16 476,320 --------- c:\windows.0\system32\ImagXpr7.dll

2008-11-28 16:52 . 2004-07-26 16:16 471,040 --------- c:\windows.0\system32\ImagXRA7.dll

2008-11-28 16:52 . 2004-07-26 16:16 262,144 --------- c:\windows.0\system32\ImagXR7.dll

2008-11-28 16:52 . 2001-07-09 10:50 155,648 --a------ c:\windows.0\system32\NeroCheck.exe

2008-11-28 16:52 . 2000-06-26 10:45 106,496 --a------ c:\windows.0\system32\TwnLib20.dll

2008-11-25 01:14 . 2008-11-30 13:10 604 --a------ c:\windows.0\wininit.ini

2008-11-24 23:57 . 2008-11-24 23:57 <REP> d-------- c:\program files\TeaTimer (Spybot - Search & Destroy)

2008-11-24 23:57 . 2008-11-24 23:57 <REP> d-------- c:\program files\SDHelper (Spybot - Search & Destroy)

2008-11-24 23:57 . 2008-11-24 23:57 <REP> d-------- c:\program files\Misc. Support Library (Spybot - Search & Destroy)

2008-11-24 23:56 . 2008-11-24 23:56 <REP> d-------- c:\program files\File Scanner Library (Spybot - Search & Destroy)

2008-11-24 23:55 . 2008-11-30 12:47 <REP> d-------- c:\documents and settings\All Users.WINDOWS.0\Application Data\Spybot - Search & Destroy

2008-11-24 00:20 . 2008-08-30 19:48 102,664 --a------ c:\windows.0\system32\drivers\tmcomm.sys

2008-11-22 01:06 . 2008-11-22 01:06 <REP> d-------- c:\documents and settings\BaPoR\Application Data\Malwarebytes

2008-11-22 01:06 . 2008-11-22 01:06 <REP> d-------- c:\documents and settings\All Users.WINDOWS.0\Application Data\Malwarebytes

2008-11-22 01:06 . 2008-10-22 16:10 38,496 --a------ c:\windows.0\system32\drivers\mbamswissarmy.sys

2008-11-22 01:06 . 2008-10-22 16:10 15,504 --a------ c:\windows.0\system32\drivers\mbam.sys

2008-11-20 15:35 . 2008-11-29 12:28 <REP> d-------- c:\documents and settings\BaPoR\Application Data\Hamachi

2008-11-20 15:30 . 2008-11-20 15:33 25,544 --a------ c:\windows.0\system32\drivers\hamachi.sys

2008-11-19 23:43 . 2008-11-19 23:43 <REP> d-------- c:\program files\Fichiers communs\Creative Labs Shared

2008-11-19 23:43 . 2008-12-02 02:32 54,568 --a------ c:\windows.0\system32\BMXStateBkp-{00000003-00000000-00000007-00001102-00000005-002C1102}.rfx

2008-11-19 23:43 . 2008-12-02 02:32 54,568 --a------ c:\windows.0\system32\BMXState-{00000003-00000000-00000007-00001102-00000005-002C1102}.rfx

2008-11-19 23:43 . 2008-12-02 02:32 788 --a------ c:\windows.0\system32\DVCState-{00000003-00000000-00000007-00001102-00000005-002C1102}.rfx

2008-11-11 18:55 . 2007-01-01 00:00 60,273 --a------ c:\windows.0\system32\pthreadGC2.dll

2008-11-11 18:55 . 2007-12-15 16:11 7,680 --a------ c:\windows.0\system32\ff_vfw.dll

2008-11-11 18:55 . 2007-01-01 00:00 547 --a------ c:\windows.0\system32\ff_vfw.dll.manifest

2008-11-03 16:48 . 2008-11-03 16:48 <REP> d--h----- c:\windows.0\PIF

(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))

2008-12-02 01:27 --------- d-----w c:\documents and settings\BaPoR\Application Data\Free Download Manager

2008-12-01 15:51 --------- d-----w c:\documents and settings\BaPoR\Application Data\dvdcss

2008-12-01 14:56 --------- d-----w c:\documents and settings\BaPoR\Application Data\Azureus

2008-11-25 22:12 98,304 ----a-w c:\windows.0\system32\CmdLineExt.dll

2008-11-22 00:23 544 ----a-w c:\program files\cvhx.txt

2008-11-20 14:35 --------- d-----w c:\documents and settings\BaPoR\Application Data\Hamachi-Backup

2008-11-19 22:43 --------- d--h--w c:\program files\InstallShield Installation Information

2008-11-19 22:42 413,696 ----a-w c:\windows.0\system32\wrap_oal.dll

2008-11-19 22:42 110,592 ----a-w c:\windows.0\system32\OpenAL32.dll

2008-11-19 22:42 --------- d-----w c:\documents and settings\All Users.WINDOWS.0\Application Data\Creative

2008-11-02 19:50 --------- d-----w c:\documents and settings\BaPoR\Application Data\Red Alert 3

2008-11-01 14:03 7,130 ----a-w c:\windows.0\system32\ealregsnapshot1.reg

2008-10-31 21:56 --------- d-----w c:\documents and settings\All Users.WINDOWS.0\Application Data\Blizzard

2008-10-31 19:41 --------- d-----w c:\program files\Fichiers communs\Blizzard Entertainment

2008-10-27 09:04 70,992 ----a-w c:\windows.0\system32\XAPOFX1_2.dll

2008-10-27 09:04 514,384 ----a-w c:\windows.0\system32\XAudio2_3.dll

2008-10-27 09:04 235,856 ----a-w c:\windows.0\system32\xactengine3_3.dll

2008-10-27 09:04 23,376 ----a-w c:\windows.0\system32\X3DAudio1_5.dll

2008-10-25 10:10 410,976 ----a-w c:\windows.0\system32\deploytk.dll

2008-10-25 10:10 --------- d-----w c:\program files\Java

2008-10-24 14:24 2,829 ----a-w c:\windows.0\War3Unin.pif

2008-10-24 14:24 139,264 ----a-w c:\windows.0\War3Unin.exe

2008-10-17 15:17 --------- d-----w c:\program files\Fichiers communs\Wise Installation Wizard

2008-10-17 10:45 --------- d-----w c:\program files\MSXML 4.0

2008-10-15 17:42 --------- d-----w c:\documents and settings\All Users.WINDOWS.0\Application Data\Microsoft Help

2008-10-15 17:41 --------- d-----w c:\program files\MSBuild

2008-10-15 17:41 --------- d-----w c:\program files\Microsoft.NET

2008-10-15 17:41 --------- d-----w c:\program files\Microsoft Works

2008-10-15 17:39 --------- d-----w c:\program files\Microsoft Visual Studio 8

2008-10-15 17:31 639,224 ----a-w c:\windows.0\system32\drivers\sptd.sys

2008-10-10 15:41 --------- d-----w c:\program files\Fichiers communs\Adobe

2008-10-10 11:03 0 ---ha-w c:\windows.0\system32\drivers\Msft_Kernel_ccdcmb_01005.Wdf

2008-10-10 11:02 --------- d-----w c:\documents and settings\All Users.WINDOWS.0\Application Data\Nokia

2008-10-10 10:57 --------- d-----w c:\program files\Nokia

2008-10-10 10:57 --------- d-----w c:\program files\MSXML 6.0

2008-10-10 10:56 --------- d-----w c:\program files\Fichiers communs\Nokia

2008-10-10 10:53 --------- d-----w c:\documents and settings\All Users.WINDOWS.0\Application Data\Installations

2008-10-10 03:52 452,440 ----a-w c:\windows.0\system32\d3dx10_40.dll

2008-10-10 03:52 4,379,984 ----a-w c:\windows.0\system32\D3DX9_40.dll

2008-10-10 03:52 2,036,576 ----a-w c:\windows.0\system32\D3DCompiler_40.dll

2008-10-09 09:33 --------- d-----w c:\documents and settings\All Users.WINDOWS.0\Application Data\FreeDownloadManager.ORG

2008-10-08 22:31 --------- d-----w c:\program files\Creative

2008-10-08 22:27 --------- d--h--w c:\program files\Creative Installation Information

2008-10-08 22:27 --------- d-----w c:\program files\Fichiers communs\Creative

2008-10-08 20:18 --------- d-----w c:\program files\Logitech

2008-10-08 20:18 --------- d-----w c:\program files\Fichiers communs\Logitech

2008-10-07 10:56 --------- d-----w c:\documents and settings\All Users.WINDOWS.0\Application Data\PC Suite

2008-10-07 10:55 --------- d-----w c:\documents and settings\BaPoR\Application Data\Nokia

2008-10-07 10:53 --------- d-----w c:\program files\PC Connectivity Solution

2008-10-07 10:53 --------- d-----w c:\program files\Fichiers communs\PCSuite

2008-10-07 10:53 --------- d-----w c:\program files\DIFX

2008-10-07 10:53 --------- d-----w c:\documents and settings\BaPoR\Application Data\PC Suite

2008-10-07 09:28 --------- d-----w c:\documents and settings\All Users.WINDOWS.0\Application Data\Messenger Plus!

2008-10-07 09:23 --------- d-----w c:\program files\OpenAL

2008-10-07 09:22 --------- d-----w c:\documents and settings\All Users.WINDOWS.0\Application Data\LogiShrd

2008-10-07 09:21 0 ---ha-w c:\windows.0\system32\drivers\Msft_Kernel_LUsbFilt_01005.Wdf

2008-10-07 09:21 0 ---ha-w c:\windows.0\system32\drivers\Msft_Kernel_LMouFilt_01005.Wdf

2008-10-07 09:20 0 ---ha-w c:\windows.0\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf

2008-10-07 09:20 --------- d-----w c:\program files\Fichiers communs\Logishrd

2008-10-07 09:20 --------- d-----w c:\documents and settings\All Users.WINDOWS.0\Application Data\Logitech

2008-10-07 02:04 --------- d-----w c:\program files\Windows Media Connect 2

2008-10-07 01:44 --------- d-----w c:\program files\microsoft frontpage

2008-10-07 01:43 --------- d-----w c:\program files\Microsoft Silverlight

2008-10-07 01:43 --------- d-----w c:\program files\Fichiers communs\Java

2008-10-07 01:41 --------- d-----w c:\program files\Services en ligne

2008-10-06 23:09 --------- d-----w c:\program files\MessengerPlus! 3

2008-10-06 23:02 --------- d-----w c:\program files\MSN Messenger

2008-10-06 21:58 307,968 ----a-w c:\windows.0\system32\TuneUpDefragService.exe

2008-10-06 21:58 --------- d-----w c:\documents and settings\All Users.WINDOWS.0\Application Data\TuneUp Software

2008-10-06 21:55 --------- d-----w c:\documents and settings\All Users.WINDOWS.0\Application Data\Azureus

2008-10-06 21:28 --------- d-----w c:\documents and settings\BaPoR\Application Data\Media Player Classic

2008-10-06 21:28 --------- d-----w c:\documents and settings\BaPoR\Application Data\Logitech

2008-10-06 21:28 --------- d-----w c:\documents and settings\BaPoR\Application Data\IGN_DLM

2008-10-06 21:28 --------- d-----w c:\documents and settings\BaPoR\Application Data\Acreon

2008-10-06 21:20 --------- d-----w c:\documents and settings\All Users.WINDOWS.0\Application Data\ATI

2008-10-06 21:19 --------- d-----w c:\program files\Fichiers communs\InstallShield

2008-10-06 21:19 --------- d-----w c:\program files\ATI Technologies

2008-10-06 20:41 --------- d-----w c:\program files\VIA

2008-09-18 20:11 19,104 ----a-w c:\documents and settings\BaPoR\Application Data\GDIPFONTCACHEV1.DAT

------- Sigcheck -------

2008-04-29 19:34 361344 68f06fe0021b01e670af37b8c5964fdf c:\windows.0\system32\drivers\tcpip.sys

((((((((((((((((((((((((((((( snapshot@2008-12-01_21.48.15.40 )))))))))))))))))))))))))))))))))))))))))

- 2008-12-01 12:17:50 32,768 --sha-w c:\windows.0\system32\config\systemprofile\Cookies\index.dat

+ 2008-12-01 21:30:59 32,768 --sha-w c:\windows.0\system32\config\systemprofile\Cookies\index.dat

- 2008-12-01 12:17:50 32,768 --sha-w c:\windows.0\system32\config\systemprofile\Local Settings\Historique\History.IE5\index.dat

+ 2008-12-01 21:30:59 32,768 --sha-w c:\windows.0\system32\config\systemprofile\Local Settings\Historique\History.IE5\index.dat

+ 2008-12-01 21:30:59 98,304 --sha-w c:\windows.0\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat

+ 2008-12-01 20:58:09 60,928 ----a-w c:\windows.0\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\T7AXN450\msusc[1].bin

+ 2008-12-02 01:34:16 16,384 ----atw c:\windows.0\Temp\Perflib_Perfdata_670.dat

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))

*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="c:\windows.0\system32\ctfmon.exe" [2008-04-14 15360]

"SuperCopier2.exe"="g:\logiciel\SuperCopier2\SuperCopier2.exe" [2006-07-07 1052672]

"MessengerPlus3"="c:\program files\MessengerPlus! 3\MsgPlus.exe" [2008-10-07 190024]

"MSMSGS"="c:\program files\Messenger\msmsgs.exe" [2008-04-13 1695232]

"Free Download Manager"="g:\logiciel\Free Download Manager\fdm.exe" [2008-05-20 2474031]

"msnmsgr"="c:\program files\MSN Messenger\msnmsgr.exe" [2006-01-24 7094272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2008-10-25 136600]

"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2008-08-01 61440]

"MessengerPlus3"="c:\program files\MessengerPlus! 3\MsgPlus.exe" [2008-10-07 190024]

"AudioDrvEmulator"="c:\program files\Creative\Shared Files\Module Loader\DLLML.exe" [2005-11-04 49152]

"Start WingMan Profiler"="c:\program files\Logitech\Gaming Software\LWEMon.exe" [2008-04-04 88584]

"VolPanel"="c:\program files\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe" [2006-07-13 122880]

"Adobe Reader Speed Launcher"="g:\logiciel\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672]

"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2008-02-29 c:\windows.0\KHALMNPR.Exe]

"CTxfiHlp"="CTXFIHLP.EXE" [2008-07-11 c:\windows.0\system32\Ctxfihlp.exe]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="c:\windows.0\system32\CTFMON.EXE" [2008-04-14 15360]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"nltide_2"="shell32" [X]

c:\documents and settings\BaPoR\Menu D‚marrer\Programmes\D‚marrage\

WinBar.lnk - g:\logiciel\WinBar\WinBar.exe [2008-06-10 188928]

c:\documents and settings\All Users.WINDOWS.0\Menu D‚marrer\Programmes\D‚marrage\

Logitech SetPoint.lnk - g:\logiciel\Logitech\SetPoint\SetPoint.exe [2008-06-10 805392]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]

"MemCheckBoxInRunDlg"= 1 (0x1)

"NoSMBalloonTip"= 1 (0x1)

"NoWelcomeScreen"= 1 (0x1)

"NoStrCmpLogical"= 0 (0x0)

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]

"MemCheckBoxInRunDlg"= 1 (0x1)

"NoSMBalloonTip"= 1 (0x1)

"NoWelcomeScreen"= 1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]

2008-05-02 01:42 72208 c:\program files\Fichiers communs\Logishrd\Bluetooth\LBTWLgn.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]

@=""

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]

"DAEMON Tools"="g:\logiciel\DAEMON Tools\daemon.exe" -lang 1033

"NSLauncher"=c:\program files\Nokia\Nokia Software Launcher\NSLauncher.exe /startup

[HKEY_LOCAL_MACHINE\software\microsoft\security center]

"DisablePagingExecutive"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]

"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"%windir%\\Network Diagnostic\\xpnetdiag.exe"=

"%windir%\\system32\\sessmgr.exe"=

"g:\\Logiciel\\Azureus\\Azureus.exe"=

"c:\\Program Files\\MSN Messenger\\msnmsgr.exe"=

"c:\\Program Files\\Messenger\\msmsgs.exe"=

"g:\\Logiciel\\Microsoft Office\\Office12\\OUTLOOK.EXE"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]

"3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009

R0 videX32;videX32;c:\windows.0\system32\DRIVERS\videX32.sys [2008-10-06 9216]

R2 CTAudSvcService;Creative Audio Service;c:\program files\Creative\Shared Files\CTAudSvc.exe [2008-11-19 417792]

S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;"c:\program files\Fichiers communs\Creative Labs Shared\Service\CTAELicensing.exe" [2008-11-19 79360]

S3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows.0\system32\drivers\nmwcdnsu.sys [2008-10-10 138112]

S3 nmwcdnsuc;Nokia USB Flashing Generic;c:\windows.0\system32\drivers\nmwcdnsuc.sys [2008-10-10 8320]

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs

UxTuneUp

*Newly Created Service* - MCHINJDRV

Contenu du dossier 'Tâches planifiées'

2008-12-02 c:\windows.0\Tasks\1-Click Maintenance.job

- g:\logiciel\TuneUp Utilities 2008\OneClickStarter.exe [2008-02-29 13:24]

------- Examen supplémentaire -------

FireFox -: Profile - c:\documents and settings\BaPoR\Application Data\Mozilla\Firefox\Profiles\vunhsosb.default\

FF -: plugin - c:\program files\Java\jre6\bin\new_plugin\npdeploytk.dll

FF -: plugin - c:\program files\Java\jre6\bin\new_plugin\npjp2.dll

FF -: plugin - c:\program files\Veetle\plugins\npVeetle.dll

FF -: plugin - c:\windows\system32\Adobe\Director\np32dsw.dll

FF -: plugin - g:\logiciel\DivX\DivX Web Player\npdivx32.dll

FF -: plugin - g:\logiciel\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll

FF -: plugin - g:\logiciel\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll

FF -: plugin - g:\logiciel\Mozilla Firefox\plugins\np32dsw.dll

FF -: plugin - g:\logiciel\Mozilla Firefox\plugins\NPAdbESD.dll

FF -: plugin - g:\logiciel\Mozilla Firefox\plugins\npdeploytk.dll

FF -: plugin - g:\logiciel\Mozilla Firefox\plugins\npdivx32.dll

FF -: plugin - g:\logiciel\Mozilla Firefox\plugins\npnul32.dll

FF -: plugin - g:\logiciel\Mozilla Firefox\plugins\NPOFF12.DLL

FF -: plugin - g:\logiciel\Mozilla Firefox\plugins\nppdf32.dll

FF -: plugin - g:\logiciel\Reader 8.0\Reader\browser\nppdf32.dll

FF -: plugin - g:\logiciel\Reader 9.0\Reader\browser\nppdf32.dll

FF -: plugin - g:\logiciel\Real Alternative\browser\plugins\nppl3260.dll

FF -: plugin - g:\logiciel\Real Alternative\browser\plugins\nprpjplug.dll

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2008-12-02 02:34:09

Windows 5.1.2600 Service Pack 3 NTFS

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...

Scan terminé avec succès

Fichiers cachés: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\mchInjDrv]

"ImagePath"="\??\c:\docume~1\BaPoR\LOCALS~1\Temp\mc22.tmp"

--------------------- DLLs chargées dans les processus actifs ---------------------

- - - - - - - > 'winlogon.exe'(804)

c:\windows.0\system32\Ati2evxx.dll

c:\program files\fichiers communs\logishrd\bluetooth\LBTWlgn.dll

c:\program files\fichiers communs\logishrd\bluetooth\LBTServ.dll

------------------------ Autres processus actifs ------------------------

c:\windows.0\system32\ati2evxx.exe

c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

c:\windows.0\system32\CTxfispi.exe

c:\progra~1\MSNMES~1\msnmsgr.exe

c:\windows.0\system32\CTSVCCDA.EXE

c:\program files\Java\jre6\bin\jqs.exe

c:\program files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.exe

c:\program files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

c:\windows.0\system32\wscntfy.exe

**************************************************************************

Heure de fin: 2008-12-02 2:35:06 - La machine a redémarré

ComboFix-quarantined-files.txt 2008-12-02 01:35:03

ComboFix2.txt 2008-12-01 20:48:52

Avant-CF: 54 237 753 344 octets libres

Après-CF: 54,174,601,216 octets libres

764

Modifié le 2 décembre 2008 par bapor

Citer

bapor

Posté(e) le 2 décembre 2008

Auteur

- Signaler

Posté(e) le 2 décembre 2008

Et le rapport de mbam

Malwarebytes' Anti-Malware 1.30

Version de la base de données: 1443

Windows 5.1.2600 Service Pack 3

02/12/2008 11:31:53

mbam-log-2008-12-02 (11-31-50).txt

Type de recherche: Examen complet (C:\|G:\|H:\|)

Eléments examinés: 202635

Temps écoulé: 27 minute(s), 50 second(s)

Processus mémoire infecté(s): 0

Module(s) mémoire infecté(s): 0

Clé(s) du Registre infectée(s): 0

Valeur(s) du Registre infectée(s): 0

Elément(s) de données du Registre infecté(s): 0

Dossier(s) infecté(s): 0

Fichier(s) infecté(s): 3

Processus mémoire infecté(s):