Sujet Précédent Sujet Suivant

Trojan win32 vundo.gen!BC

Fermé
shaiko Messages postés 106 Date d'inscription lundi 1 septembre 2008 Statut Membre Dernière intervention 10 septembre 2012 - 8 avril 2009 à 13:05
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 - 30 avril 2009 à 16:08
Bonjour,

Voila depuis quelque temps mon pc portable subit quelques désagrements

Après avoir effectué un cc cleaner (avec verificaion du registre) plus un malwarebytes et un spybot windows me detecte toujours un

Trojan win32 vundo.gen!BC ainsi que 4 autres fichiers

C:\windows\sytem32\selutanu.dll
C:\windows\system32\miwovila.dll
C:\windows\system32\jutofeke.dll
C:\programdata\herutoho\herutoho.dll

Le pc va mieux que avant après avoir fait les premieres manip avec cc cleaner et les autres, néanmoins je ne suis toujours pas rassuré avec la présence de ce trojan

Le démarrage du pc reste toujours long et beaucoup de boite de dialogue s'ouvre indiquant que des emplacements dll sont manquants

Donc si une bonne ame pouvair venir à mon secours ca seraiT super cool !!

Bonne journée

Nicolas
A voir également:

32 réponses

Précédent
  • 1
  • 2
Réponse 21 / 32
shaiko Messages postés 106 Date d'inscription lundi 1 septembre 2008 Statut Membre Dernière intervention 10 septembre 2012 38
10 avril 2009 à 20:54
salut jlp jlp
0
Réponse 22 / 32
shaiko Messages postés 106 Date d'inscription lundi 1 septembre 2008 Statut Membre Dernière intervention 10 septembre 2012 38
10 avril 2009 à 20:56
salut jlpjlp,

je viens de refaire la manip, mais je n'ai toujours pas vu le tapez 1 ou taepez 2. je ne sais pas ce qui se passe c'est la premiere fois que ca me fait ca alors que j'ai deja fait ce genre d'operation

ven plus quand je veux coller le nouveau rapport le forum me l'empeche en disanr que j'ai deja posté le message,,,enfin c'esr bizarre

bon je vais te faire le scan en ligne

a toute
0
Réponse 23 / 32
shaiko Messages postés 106 Date d'inscription lundi 1 septembre 2008 Statut Membre Dernière intervention 10 septembre 2012 38
11 avril 2009 à 13:03
salut jlpjlp,

voici le rapport en ligne avec panda

;***********************************************************************************************************************************************************************************
ANALYSIS: 2009-04-11 13:01:27
PROTECTIONS: 2
MALWARE: 7
SUSPECTS: 0
;***********************************************************************************************************************************************************************************
PROTECTIONS
Description Version Active Updated
;===================================================================================================================================================================================
Spybot - Search and Destroy 1.0.0.6 No No
Windows Defender 1.1.1505.0 No Yes
;===================================================================================================================================================================================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;===================================================================================================================================================================================
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Users\LOULOU\AppData\Roaming\Microsoft\Windows\Cookies\Low\loulou@ad.yieldmanager[1].txt
00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Users\LOULOU\AppData\Roaming\Microsoft\Windows\Cookies\Low\loulou@serving-sys[1].txt
00168093 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Users\LOULOU\AppData\Roaming\Microsoft\Windows\Cookies\Low\loulou@bs.serving-sys[2].txt
00273339 Cookie/Smartadserver TrackingCookie No 0 Yes No C:\Users\LOULOU\AppData\Roaming\Microsoft\Windows\Cookies\Low\loulou@smartadserver[1].txt
00538316 Trj/Downloader.VHA Virus/Trojan No 1 Yes No C:\Windows\System32\5wW42d14.exe
03074964 Trj/CI.A Virus/Trojan No 0 Yes No C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1V5LTGXJ\atgdriijjk[1].htm
03429845 Bck/Hupigon.AZG Virus/Trojan No 1 Yes No C:\Program Files\Image-Line\Toxic Biohazard\Toxic Biohazard.dll
;===================================================================================================================================================================================
SUSPECTS
Sent Location ^�m�8� 39
;===================================================================================================================================================================================
;===================================================================================================================================================================================
VULNERABILITIES
Id Severity Description ^�m�8� 39
;===================================================================================================================================================================================
;===================================================================================================================================================================================
0
Réponse 24 / 32
shaiko Messages postés 106 Date d'inscription lundi 1 septembre 2008 Statut Membre Dernière intervention 10 septembre 2012 38
11 avril 2009 à 13:07
au fait windows defender vient de m'enlever un trojan la... il m'a conseillé de supprimer, j'ai accepté et a dit que l'operation etait reussie, donc il y a un fichier dangereux en moins ... je t'informe au cas ou ca pourrait t'interresser

le fichier enlevé est

C:\Windows\system32\hikenuse.dll
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 32
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
11 avril 2009 à 17:22
télécharge OTMoveIt
http://oldtimer.geekstogo.com/OTMoveIt3.exe (de Old_Timer) sur ton Bureau.

double-clique sur OTMoveIt.exe pour le lancer.
copie la liste qui se trouve en citation ci-dessous,
et colle-la dans le cadre de gauche de OTMoveIt :Paste instruction for items to be moved.
(attention bien mettre :files)

:files
C:\Windows\System32\5wW42d14.exe
C:\Windows\System32\config\systemprofile\AppData\Local\Micro­soft\Windows\Temporary Internet Files\Content.IE5\1V5LTGXJ\atgdriijjk[1].htm
C:\Program Files\Image-Line\Toxic Biohazard\Toxic Biohazard.dll
c:\programdata\tiyunike
c:\programdata\linanotu
c:\programdata\fubatuzo
c:\windows\System32\drivers\sifzbtej.sys
c:\programdata\toladeya
c:\programdata\goyipeme
c:\programdata\mofanedo
c:\programdata\wimohigi
c:\programdata\herutoho
c:\programdata\fenozano
c:\programdata\yubiwojo
c:\programdata\niyihese
c:\programdata\govegomu
c:\programdata\nojibipu
c:\programdata\ezsidmv.dat
c:\programdata\zotowuru
c:\programdata\yinuyoni
c:\programdata\retegefu
c:\programdata\hewalote
c:\programdata\delehele
c:\programdata\betakoso
c:\programdata\mevozeha
c:\programdata\feyiloto
C:\Users\All Users\ezsidmv.dat
:commands
[purity]
[emptytemp]
[start explorer]



clique sur MoveIt! pour lancer la suppression.
le résultat apparaitra dans le cadre "Results".
clique sur Exit pour fermer.
poste le rapport situé dans C:\_OTMoveIt\MovedFiles.

il te sera peut-être demander de redémarrer le pc pour achever la suppression.si c'est le cas accepte par Yes.


_______________________

remets un rapport combofix

a plus
0
Réponse 26 / 32
shaiko Messages postés 106 Date d'inscription lundi 1 septembre 2008 Statut Membre Dernière intervention 10 septembre 2012 38
11 avril 2009 à 19:19
yo,

tout a bien fonctionné, voici le rapport de OTmoveIT

========== FILES ==========
File/Folder C:\Windows\System32\5wW42d14.exe not found.
File/Folder C:\Windows\System32\config\systemprofile\AppData\Local\Micro­­soft\Windows\Temporary Internet Files\Content.IE5\1V5LTGXJ\atgdriijjk[1].htm not found.
File/Folder C:\Program Files\Image-Line\Toxic Biohazard\Toxic Biohazard.dll not found.
c:\programdata\tiyunike moved successfully.
c:\programdata\linanotu moved successfully.
c:\programdata\fubatuzo moved successfully.
File/Folder c:\windows\System32\drivers\sifzbtej.sys not found.
c:\programdata\toladeya moved successfully.
c:\programdata\goyipeme moved successfully.
c:\programdata\mofanedo moved successfully.
c:\programdata\wimohigi moved successfully.
c:\programdata\herutoho moved successfully.
c:\programdata\fenozano moved successfully.
c:\programdata\yubiwojo moved successfully.
c:\programdata\niyihese moved successfully.
c:\programdata\govegomu moved successfully.
c:\programdata\nojibipu moved successfully.
File/Folder c:\programdata\ezsidmv.dat not found.
c:\programdata\zotowuru moved successfully.
c:\programdata\yinuyoni moved successfully.
c:\programdata\retegefu moved successfully.
c:\programdata\hewalote moved successfully.
c:\programdata\delehele moved successfully.
c:\programdata\betakoso moved successfully.
c:\programdata\mevozeha moved successfully.
c:\programdata\feyiloto moved successfully.
File/Folder C:\Users\All Users\ezsidmv.dat not found.
========== COMMANDS ==========
File delete failed. C:\Users\LOULOU\AppData\Local\Temp\etilqs_XSuVyFAYAQ2VdPAwPKVe scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Internet Explorer cache folder emptied.
Windows Temp folder emptied.
File delete failed. C:\Users\LOULOU\AppData\Local\Mozilla\Firefox\Profiles\nnqj9sev.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. C:\Users\LOULOU\AppData\Local\Mozilla\Firefox\Profiles\nnqj9sev.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. C:\Users\LOULOU\AppData\Local\Mozilla\Firefox\Profiles\nnqj9sev.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. C:\Users\LOULOU\AppData\Local\Mozilla\Firefox\Profiles\nnqj9sev.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. C:\Users\LOULOU\AppData\Local\Mozilla\Firefox\Profiles\nnqj9sev.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
File delete failed. C:\Users\LOULOU\AppData\Local\Mozilla\Firefox\Profiles\nnqj9sev.default\XUL.mfl scheduled to be deleted on reboot.
FireFox cache emptied.
Temp folders emptied.
Explorer started successfully

OTMoveIt3 by OldTimer - Version 1.0.10.0 log created on 04112009_191420
0
Réponse 27 / 32
shaiko Messages postés 106 Date d'inscription lundi 1 septembre 2008 Statut Membre Dernière intervention 10 septembre 2012 38
11 avril 2009 à 19:27
Voici ComboFix

ComboFix 09-04-04.01 - LOULOU 2009-04-11 19:20:51.5 - NTFSx86
Microsoft® Windows Vista™ Édition Familiale Premium 6.0.6001.1.1252.33.1036.18.2046.1301 [GMT 2:00]
Lancé depuis: c:\users\LOULOU\Desktop\ComboFix.exe
.

((((((((((((((((((((((((((((( Fichiers créés du 2009-03-11 au 2009-04-11 ))))))))))))))))))))))))))))))))))))
.

2009-04-11 19:14 . 2009-04-11 19:14 <REP> d-------- C:\_OTMoveIt
2009-04-11 00:06 . 2008-06-19 16:24 28,544 --a------ c:\windows\System32\drivers\pavboot.sys
2009-04-10 20:58 . 2009-04-10 21:27 <REP> d-------- c:\users\LOULOU\.housecall6.6
2009-04-09 15:40 . 2009-04-09 15:40 <REP> d--h----- c:\windows\msdownld.tmp
2009-04-09 15:21 . 2009-04-09 15:21 <REP> d-------- c:\windows\System32\Kaspersky Lab
2009-04-08 16:59 . 2009-04-08 17:09 308,852,947 --a------ c:\windows\MEMORY.DMP
2009-04-08 16:41 . 2009-04-08 16:41 <REP> d-------- c:\programdata\NortonInstaller
2009-04-08 13:23 . 2009-04-08 13:23 <REP> d-------- C:\rsit
2009-04-08 13:23 . 2009-04-09 15:16 <REP> d-------- c:\program files\trend micro
2009-04-07 23:09 . 2008-06-20 03:14 781,344 --a------ c:\windows\System32\PresentationNative_v0300.dll
2009-04-07 23:09 . 2008-06-20 03:14 622,080 --a------ c:\windows\System32\icardagt.exe
2009-04-07 23:09 . 2008-06-20 03:14 326,160 --a------ c:\windows\System32\PresentationHost.exe
2009-04-07 23:09 . 2008-06-20 03:14 105,016 --a------ c:\windows\System32\PresentationCFFRasterizerNative_v0300.dll
2009-04-07 23:09 . 2008-06-20 03:14 97,800 --a------ c:\windows\System32\infocardapi.dll
2009-04-07 23:09 . 2008-06-20 03:14 43,544 --a------ c:\windows\System32\PresentationHostProxy.dll
2009-04-07 23:09 . 2008-06-20 03:14 37,384 --a------ c:\windows\System32\infocardcpl.cpl
2009-04-07 23:09 . 2008-06-20 03:14 11,264 --a------ c:\windows\System32\icardres.dll
2009-04-07 23:05 . 2009-04-07 23:05 0 --a------ c:\windows\RAVTC.TMP
2009-04-07 23:02 . 2008-07-27 20:03 282,112 --a------ c:\windows\System32\mscoree.dll
2009-04-07 23:02 . 2008-07-27 20:03 96,760 --a------ c:\windows\System32\dfshim.dll
2009-04-07 23:02 . 2008-07-27 20:03 41,984 --a------ c:\windows\System32\netfxperf.dll
2009-04-07 23:01 . 2008-07-27 20:03 158,720 --a------ c:\windows\System32\mscorier.dll
2009-04-07 23:01 . 2008-07-27 20:03 83,968 --a------ c:\windows\System32\mscories.dll
2009-04-07 22:58 . 2009-04-07 22:58 410,984 --a------ c:\windows\System32\deploytk.dll
2009-04-07 22:57 . 2009-04-07 22:57 0 --------- c:\windows\PAVSHRB.INI
2009-04-07 22:22 . 2009-04-07 22:22 <REP> d-------- c:\users\LOULOU\AppData\Roaming\Malwarebytes
2009-04-07 22:22 . 2009-04-07 22:22 <REP> d-------- c:\programdata\Malwarebytes
2009-04-07 22:22 . 2009-04-07 22:24 <REP> d-------- c:\program files\Malwarebytes' Anti-Malware
2009-04-07 22:22 . 2009-04-06 15:32 38,496 --a------ c:\windows\System32\drivers\mbamswissarmy.sys
2009-04-07 22:22 . 2009-04-06 15:32 15,504 --a------ c:\windows\System32\drivers\mbam.sys
2009-04-03 14:00 . 2009-04-07 22:36 <REP> d-------- c:\programdata\zulagovi
2009-04-03 00:13 . 2009-04-07 00:00 <REP> d-------- c:\users\LOULOU\AppData\Roaming\skypePM
2009-04-03 00:12 . 2009-04-03 00:12 <REP> dr------- c:\program files\Skype
2009-04-03 00:12 . 2009-04-03 00:12 <REP> d-------- c:\program files\Common Files\Skype
2009-03-11 21:08 . 2009-03-11 21:08 <REP> d-------- c:\program files\GSC Game World
2009-03-11 21:06 . 2009-03-11 21:06 <REP> d-------- c:\users\LOULOU\AppData\Roaming\DAEMON Tools Pro
2009-03-11 21:06 . 2009-03-11 21:06 <REP> d-------- c:\programdata\DAEMON Tools Lite
2009-03-11 21:06 . 2009-03-11 21:06 <REP> d-------- c:\program files\DAEMON Tools Lite
2009-03-11 20:45 . 2009-03-11 21:06 <REP> d-------- c:\users\LOULOU\AppData\Roaming\DAEMON Tools Lite
2009-03-11 20:26 . 2009-03-11 20:26 <REP> d-------- c:\programdata\Roxio
2009-03-11 20:24 . 2009-03-11 20:26 <REP> d-------- c:\users\LOULOU\AppData\Roaming\Roxio
2009-03-11 19:13 . 2009-03-11 19:14 <REP> d-------- c:\users\LOULOU\AppData\Roaming\SPORE
2009-03-11 19:11 . 2009-03-11 19:11 <REP> dr-h----- c:\users\LOULOU\AppData\Roaming\SecuROM
2009-03-11 10:52 . 2008-12-16 05:29 8,147,456 --a------ c:\windows\System32\wmploc.DLL
2009-03-11 10:52 . 2008-12-16 07:31 7,680 --a------ c:\windows\System32\spwmp.dll
2009-03-11 10:52 . 2008-12-16 07:31 4,096 --a------ c:\windows\System32\msdxm.ocx
2009-03-11 10:52 . 2008-12-16 07:31 4,096 --a------ c:\windows\System32\dxmasf.dll
2009-03-11 10:51 . 2009-02-09 05:10 2,033,152 --a------ c:\windows\System32\win32k.sys
2009-03-11 10:51 . 2008-11-27 06:43 268,288 --a------ c:\windows\System32\schannel.dll

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-04-11 15:56 223,910 ----a-w c:\users\LOULOU\AppData\Roaming\nvModes.dat
2009-04-10 22:06 --------- d-----w c:\program files\Panda Security
2009-04-10 15:35 --------- d-----w c:\users\LOULOU\AppData\Roaming\uTorrent
2009-04-07 20:57 --------- d-----w c:\program files\Java
2009-04-07 20:48 --------- d-----w c:\programdata\Spybot - Search & Destroy
2009-04-07 20:47 --------- d-----w c:\program files\Spybot - Search & Destroy
2009-04-07 19:47 --------- d-----w c:\program files\CCleaner
2009-04-06 23:30 --------- d-----w c:\users\LOULOU\AppData\Roaming\Skype
2009-04-02 22:12 --------- d-----w c:\programdata\Skype
2009-03-23 15:42 --------- d--h--w c:\program files\InstallShield Installation Information
2009-03-21 11:52 --------- d-----w c:\program files\Metin2_France
2009-03-12 18:38 --------- d-----w c:\program files\Windows Mail
2009-03-11 19:06 --------- d-----w c:\users\LOULOU\AppData\Roaming\DAEMON Tools
2009-03-11 18:45 717,296 ----a-w c:\windows\system32\drivers\sptd.sys
2009-03-11 17:03 --------- d-----w c:\program files\Electronic Arts
2009-03-08 11:34 914,944 ----a-w c:\windows\System32\wininet.dll
2009-03-08 11:34 43,008 ----a-w c:\windows\System32\licmgr10.dll
2009-03-08 11:33 420,352 ----a-w c:\windows\System32\vbscript.dll
2009-03-08 11:33 18,944 ----a-w c:\windows\System32\corpol.dll
2009-03-08 11:33 132,608 ----a-w c:\windows\System32\ieUnatt.exe
2009-03-08 11:33 109,568 ----a-w c:\windows\System32\PDMSetup.exe
2009-03-08 11:33 109,056 ----a-w c:\windows\System32\iesysprep.dll
2009-03-08 11:33 107,520 ----a-w c:\windows\System32\RegisterIEPKEYs.exe
2009-03-08 11:33 107,008 ----a-w c:\windows\System32\SetIEInstalledDate.exe
2009-03-08 11:33 103,936 ----a-w c:\windows\System32\SetDepNx.exe
2009-03-08 11:32 72,704 ----a-w c:\windows\System32\admparse.dll
2009-03-08 11:32 71,680 ----a-w c:\windows\System32\iesetup.dll
2009-03-08 11:32 66,560 ----a-w c:\windows\System32\wextract.exe
2009-03-08 11:32 169,472 ----a-w c:\windows\System32\iexpress.exe
2009-03-08 11:31 48,128 ----a-w c:\windows\System32\mshtmler.dll
2009-03-08 11:31 45,568 ----a-w c:\windows\System32\mshta.exe
2009-03-08 11:31 34,816 ----a-w c:\windows\System32\imgutil.dll
2009-03-08 11:22 156,160 ----a-w c:\windows\System32\msls31.dll
2009-03-01 21:25 --------- d-----w c:\programdata\Electronic Arts
2009-02-24 13:21 --------- d-----w c:\users\LOULOU\AppData\Roaming\Atari
2009-02-24 13:17 --------- d-----w c:\users\LOULOU\AppData\Roaming\Leadertech
2009-02-24 13:06 --------- d-----w c:\program files\Atari
2009-02-23 21:28 --------- d-----w c:\program files\uTorrent
2009-02-19 01:59 --------- d-----w c:\program files\Google
2009-02-17 07:54 --------- d-----w c:\program files\DivX
2009-01-20 13:24 174 --sha-w c:\program files\desktop.ini
2009-01-20 12:43 82,432 ----a-w c:\windows\System32\axaltocm.dll
2009-01-20 12:43 101,888 ----a-w c:\windows\System32\ifxcardm.dll
2008-06-01 21:35 5,682 ----a-w c:\users\LOULOU\AppData\Roaming\wklnhst.dat
2007-11-14 17:11 22,328 ----a-w c:\users\LOULOU\AppData\Roaming\PnkBstrK.sys
2008-11-16 22:35 122,880 ----a-w c:\program files\mozilla firefox\components\GoogleDesktopMozilla.dll
2008-01-03 20:09 16,384 --sha-w c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
2008-01-03 20:09 32,768 --sha-w c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
2008-01-03 20:09 16,384 --sha-w c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
.

((((((((((((((((((((((((((((( SnapShot_2009-04-10_20.36.34.11 )))))))))))))))))))))))))))))))))))))))))
.
- 2009-04-10 18:25:40 2,048 --sha-w c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2009-04-11 17:16:39 2,048 --sha-w c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2009-04-10 18:25:40 2,048 --sha-w c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2009-04-11 17:16:39 2,048 --sha-w c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2009-04-10 18:27:24 262,144 --sha-w c:\windows\ServiceProfiles\LocalService\ntuser.dat
+ 2009-04-11 17:18:19 262,144 --sha-w c:\windows\ServiceProfiles\LocalService\ntuser.dat
+ 2009-04-11 17:18:19 262,144 ---ha-w c:\windows\ServiceProfiles\LocalService\ntuser.dat.LOG1
- 2009-04-10 18:27:29 262,144 --sha-w c:\windows\ServiceProfiles\NetworkService\ntuser.dat
+ 2009-04-11 17:18:24 262,144 --sha-w c:\windows\ServiceProfiles\NetworkService\ntuser.dat
+ 2009-04-11 17:18:24 262,144 ---ha-w c:\windows\ServiceProfiles\NetworkService\ntuser.dat.LOG1
+ 2009-04-11 03:37:05 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{04298876-264A-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 03:08:29 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{05A4E276-2646-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 19:37:32 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{05CE1576-2607-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 19:08:54 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{06275DA6-2603-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 20:06:10 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{064D33B6-260B-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 20:34:49 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{06AF5416-260F-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-11 02:39:55 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{07F1B576-2642-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 23:19:32 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{09340A36-2626-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 02:11:21 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{0A056776-263E-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 01:42:47 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{0C81D5F6-263A-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 01:14:12 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{0E25A756-2636-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 00:45:36 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{0F9C3E96-2632-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 00:17:00 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{10C1E716-262E-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 23:48:23 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{111D3AB6-262A-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 22:29:41 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{121BCF96-261F-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 11:01:32 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{1983E6C4-2688-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 22:58:41 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{1FCF9AF6-2623-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 22:08:45 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{2578FE36-261C-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 03:45:15 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{27FCB786-264B-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 03:16:40 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{29A3AD96-2647-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 19:45:42 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{2A2568A6-2608-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 19:17:05 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{2A320FA6-2604-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 20:14:21 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{2A8258E6-260C-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-11 02:48:05 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{2BE23856-2643-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 02:19:31 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{2E101976-263F-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 01:50:56 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{305CEC76-263B-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 01:22:22 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{324CE9D6-2637-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 23:27:52 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{3358E646-2627-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 00:53:46 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{33C5E276-2633-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 00:25:11 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{3518C516-262F-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 23:56:35 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{365D5F76-262B-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 22:37:58 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{3A9F76F6-2620-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 23:06:59 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{487BB9B6-2624-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 22:17:01 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{4D4C7FD6-261D-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 03:24:50 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{4DFCECF6-2648-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 19:25:15 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{4EE03566-2605-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 19:53:53 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{4EE827D6-2609-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 20:22:32 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{4F657156-260D-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-11 02:56:15 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{4FC6D456-2644-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 02:27:40 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{51EFF2B6-2640-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 01:59:06 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{5424F7F6-263C-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 01:30:32 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{5671CAF6-2638-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 01:01:57 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{57D09476-2634-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 00:33:21 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{5944CA56-2630-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 00:04:45 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{5A870356-262C-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 23:36:07 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{5A8CA576-2628-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 22:46:13 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{61FBF3D6-2621-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 03:33:00 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{71F23296-2649-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 19:33:26 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{738C1136-2606-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-11 03:04:24 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{73B03316-2645-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 19:04:48 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{73B1AED6-2602-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 20:02:05 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{73D24526-260A-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 23:15:22 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{7427C266-2625-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 20:30:44 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{74A21B76-260E-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-11 02:35:50 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{75F11F36-2641-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 02:07:16 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{78131976-263D-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 22:25:22 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{78801496-261E-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 01:38:42 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{7A8D2696-2639-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 01:10:07 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{7C03BDD6-2635-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 00:41:31 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{7D8AFEB6-2631-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 00:12:55 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{7E810BB6-262D-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 23:44:18 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{7EE5E4D6-2629-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 22:54:32 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{8B4EB2D6-2622-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 03:41:10 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{961713B6-264A-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 03:12:34 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{97A7DA16-2646-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 19:41:37 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{97F62916-2607-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 19:12:59 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{985AB416-2603-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 20:10:15 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{98651AB6-260B-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 20:38:55 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{990C8176-260F-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-11 02:44:00 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{99F24BB6-2642-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 02:15:26 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{9BF7B576-263E-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 01:46:52 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{9E78E6B6-263A-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 23:23:44 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{9F327266-2626-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 01:18:17 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{A03BA9F6-2636-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 00:49:41 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{A1BE2816-2632-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 00:21:06 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{A30523D6-262E-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 23:52:30 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{A463ED56-262A-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 22:33:49 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{A65ED3F6-261F-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 23:02:51 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{B438B556-2623-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 22:12:52 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{B9618E56-261C-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 03:20:45 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{BBFC56B6-2647-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 19:21:10 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{BC815A56-2604-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 19:49:48 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{BCAC8C36-2608-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 20:18:26 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{BCE02286-260C-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-11 02:52:10 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{BDCD6236-2643-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 02:23:36 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{BFFDA4B6-263F-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 01:55:01 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{C239CE16-263B-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 01:26:27 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{C45E29B6-2637-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 00:57:51 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{C5C41756-2633-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 00:29:16 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{C72A04F6-262F-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 23:32:01 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{C7F879F6-2627-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 00:00:40 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{C888CE76-262B-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 22:42:06 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{CE409DD6-2620-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 23:11:13 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{DFB151F6-2624-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 03:28:55 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{DFFB21D6-2648-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 19:57:59 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{E12D6066-2609-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 19:29:21 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{E17059A6-2605-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 20:26:38 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{E1983356-260D-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 19:00:43 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{E1A2D056-2601-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-11 03:00:20 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{E1B92256-2644-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 02:31:45 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{E3F2EA56-2640-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 22:21:14 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{E41E1E56-261D-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 02:03:11 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{E60DC076-263C-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 01:34:37 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{E8987736-2638-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 01:06:02 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{EA07EA56-2634-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 00:37:26 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{EB703956-2630-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 00:08:50 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{EC8C5C56-262C-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 23:40:12 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{ECC199F6-2628-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 22:50:21 4,096 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{F5CF1796-2621-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 03:37:05 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{04298875-264A-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 03:08:29 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{05A4E275-2646-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 19:37:32 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{05CE1575-2607-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 19:08:54 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{06275DA5-2603-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 20:06:10 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{064D33B5-260B-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 20:34:49 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{06AF5415-260F-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-11 02:39:55 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{07F1B575-2642-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 23:19:32 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{09340A35-2626-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 02:11:21 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{0A056775-263E-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 01:42:47 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{0C81D5F5-263A-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 01:14:12 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{0E25A755-2636-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 00:45:36 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{0F9C3E95-2632-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 00:17:00 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{10C1E715-262E-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 23:48:23 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{111D3AB5-262A-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 22:29:41 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{121BCF95-261F-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 11:01:32 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{1983E6C3-2688-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 22:58:41 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{1FCF9AF5-2623-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 22:08:45 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{2578FE35-261C-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 03:45:15 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{27FCB785-264B-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 03:16:40 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{29A3AD95-2647-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 19:45:42 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{2A2568A5-2608-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 19:17:05 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{2A320FA5-2604-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 20:14:21 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{2A8258E5-260C-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-11 02:48:05 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{2BE23855-2643-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 02:19:31 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{2E101975-263F-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 01:50:56 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{305CEC75-263B-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 01:22:22 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{324CE9D5-2637-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 23:27:52 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{3358E645-2627-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 00:53:46 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{33C5E275-2633-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 00:25:11 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{3518C515-262F-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 23:56:35 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{365D5F75-262B-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 22:37:58 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{3A9F76F5-2620-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 23:06:59 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{487BB9B5-2624-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 22:17:01 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{4D4C7FD5-261D-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 03:24:50 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{4DFCECF5-2648-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 19:25:15 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{4EE03565-2605-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 19:53:53 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{4EE827D5-2609-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 20:22:32 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{4F657155-260D-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-11 02:56:15 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{4FC6D455-2644-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 02:27:40 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{51EFF2B5-2640-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 01:59:06 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{5424F7F5-263C-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 01:30:32 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{5671CAF5-2638-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 01:01:57 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{57D09475-2634-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 00:33:21 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{5944CA55-2630-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 00:04:45 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{5A870355-262C-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 23:36:07 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{5A8CA575-2628-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 22:46:13 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{61FBF3D5-2621-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 03:33:00 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{71F23295-2649-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 19:33:26 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{738C1135-2606-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-11 03:04:24 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{73B03315-2645-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 19:04:48 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{73B1AED5-2602-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 20:02:05 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{73D24525-260A-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 23:15:22 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{7427C265-2625-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 20:30:44 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{74A21B75-260E-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-11 02:35:50 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{75F11F35-2641-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 02:07:16 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{78131975-263D-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 22:25:22 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{78801495-261E-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 01:38:42 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{7A8D2695-2639-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 01:10:07 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{7C03BDD5-2635-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 00:41:31 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{7D8AFEB5-2631-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 00:12:55 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{7E810BB5-262D-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 23:44:18 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{7EE5E4D5-2629-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 22:54:32 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{8B4EB2D5-2622-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 03:41:10 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{961713B5-264A-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 03:12:34 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{97A7DA15-2646-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 19:41:37 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{97F62915-2607-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 19:12:59 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{985AB415-2603-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 20:10:15 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{98651AB5-260B-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 20:38:55 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{990C8175-260F-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-11 02:44:00 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{99F24BB5-2642-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 02:15:26 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{9BF7B575-263E-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 01:46:52 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{9E78E6B5-263A-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 23:23:44 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{9F327265-2626-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 01:18:17 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{A03BA9F5-2636-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 00:49:41 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{A1BE2815-2632-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 00:21:06 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{A30523D5-262E-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 23:52:30 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{A463ED55-262A-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 22:33:49 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{A65ED3F5-261F-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 23:02:51 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{B438B555-2623-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 22:12:52 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{B9618E55-261C-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 03:20:45 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{BBFC56B5-2647-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 19:21:10 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{BC815A55-2604-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 19:49:48 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{BCAC8C35-2608-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 20:18:26 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{BCE02285-260C-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-11 02:52:10 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{BDCD6235-2643-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 02:23:36 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{BFFDA4B5-263F-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 01:55:01 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{C239CE15-263B-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 01:26:27 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{C45E29B5-2637-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 00:57:51 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{C5C41755-2633-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 00:29:16 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{C72A04F5-262F-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 23:32:01 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{C7F879F5-2627-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 00:00:40 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{C888CE75-262B-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 22:42:06 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{CE409DD5-2620-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 23:11:13 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{DFB151F5-2624-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 03:28:55 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{DFFB21D5-2648-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 19:57:59 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{E12D6065-2609-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 19:29:21 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{E17059A5-2605-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 20:26:38 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{E1983355-260D-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-10 19:00:43 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{E1A2D055-2601-11DE-9E48-001BFB5784A2}.dat
+ 2009-04-11 03:00:20 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{E1B92255-2644-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 02:31:45 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{E3F2EA55-2640-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 22:21:14 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{E41E1E55-261D-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 02:03:11 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{E60DC075-263C-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 01:34:37 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{E8987735-2638-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 01:06:02 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{EA07EA55-2634-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 00:37:26 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{EB703955-2630-11DE-A754-001BFB5784A2}.dat
+ 2009-04-11 00:08:50 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{EC8C5C55-262C-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 23:40:12 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{ECC199F5-2628-11DE-A754-001BFB5784A2}.dat
+ 2009-04-10 22:50:21 3,584 ----a-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{F5CF1795-2621-11DE-A754-001BFB5784A2}.dat
- 2009-04-10 17:49:28 16,384 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-04-11 11:01:32 16,384 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2009-04-10 17:49:28 49,152 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-04-11 11:01:32 49,152 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-04-10 17:49:28 32,768 --sha-w c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-04-11 11:01:32 32,768 --sha-w c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-04-10 17:49:28 245,760 --sha-w c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
+ 2009-04-11 11:01:32 245,760 --sha-w c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
- 2009-04-10 18:33:33 104,940 ----a-w c:\windows\System32\perfc009.dat
+ 2009-04-11 11:04:30 104,940 ----a-w c:\windows\System32\perfc009.dat
- 2009-04-10 18:33:33 128,004 ----a-w c:\windows\System32\perfc00C.dat
+ 2009-04-11 11:04:30 128,004 ----a-w c:\windows\System32\perfc00C.dat
- 2009-04-10 18:33:33 595,506 ----a-w c:\windows\System32\perfh009.dat
+ 2009-04-11 11:04:30 595,506 ----a-w c:\windows\System32\perfh009.dat
- 2009-04-10 18:33:33 678,956 ----a-w c:\windows\System32\perfh00C.dat
+ 2009-04-11 11:04:30 678,956 ----a-w c:\windows\System32\perfh00C.dat
- 2009-04-10 18:27:33 12,354 ----a-w c:\windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-1611504857-4089916995-1680512414-1000_UserData.bin
+ 2009-04-11 17:18:27 12,502 ----a-w c:\windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-1611504857-4089916995-1680512414-1000_UserData.bin
- 2009-04-10 18:27:33 92,354 ----a-w c:\windows\System32\WDI\BootPerformanceDiagnostics_SystemData.bin
+ 2009-04-11 17:18:27 92,608 ----a-w c:\windows\System32\WDI\BootPerformanceDiagnostics_SystemData.bin
- 2009-04-10 18:27:31 62,162 ----a-w c:\windows\System32\WDI\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2009-04-11 17:18:26 62,336 ----a-w c:\windows\System32\WDI\ShutdownPerformanceDiagnostics_SystemData.bin
- 2009-03-22 23:35:45 251,028 ----a-w c:\windows\System32\WDI\SuspendPerformanceDiagnostics_SystemData_S3.bin
+ 2009-04-11 17:11:52 257,392 ----a-w c:\windows\System32\WDI\SuspendPerformanceDiagnostics_SystemData_S3.bin
.
-- Instantané actualisé --
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\daemon.exe" [2008-12-29 687560]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-19 202240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Apoint"="c:\program files\Apoint\Apoint.exe" [2007-06-10 118784]
"ISBMgr.exe"="c:\program files\Sony\ISB Utility\ISBMgr.exe" [2007-06-11 317560]
"Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2008-11-17 29744]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-04-07 148888]
"NvSvc"="c:\windows\system32\nvsvc.dll" [2007-06-28 86016]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-06-28 8429568]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2007-06-28 81920]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2008-09-06 413696]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2008-09-10 289576]

c:\users\LOULOU\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OneNote 2007 - Capture d'‚cran et lancement.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2006-10-26 98632]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
BTTray.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2007-06-22 739880]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\VESWinlogon]
2007-07-12 08:33 98304 c:\windows\System32\VESWinlogon.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~1\Google\GOOGLE~1\GOEC62~1.DLL

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"VIDC.dvsd"= c:\program files\Common Files\Sony Shared\VideoLib\sonydv.dll

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{EB7EE62E-514C-4ED2-96CC-E76742C6C8BA}"= UDP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"{C6785C36-3B71-4EC6-8473-E9FD35A708F1}"= TCP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"{93C3FF1C-85CA-4F0A-A50F-F70534120517}"= Disabled:UDP:c:\program files\Sony\VAIO Media 6.0\Vc.exe:[VAIO Media] VAIO Media
"{118CEEBF-6311-4A81-A47B-F47606B5CBD3}"= Disabled:TCP:c:\program files\Sony\VAIO Media 6.0\Vc.exe:[VAIO Media] VAIO Media
"{316EA76B-B568-42EA-95F3-0109AB8EA870}"= UDP:c:\program files\2K Games\Firaxis Games\Sid Meier's Civilization 4 Complete\Civilization4.exe:Sid Meier's Civilization 4 Complete
"{88469EB4-4B06-4D20-B8A9-3BBA166C1D56}"= TCP:c:\program files\2K Games\Firaxis Games\Sid Meier's Civilization 4 Complete\Civilization4.exe:Sid Meier's Civilization 4 Complete
"{D9908554-A2C2-4B9F-804B-3517AF46D966}"= UDP:c:\program files\2K Games\Firaxis Games\Sid Meier's Civilization 4 Complete\Warlords\Civ4Warlords.exe:Sid Meier's Civilization 4: Warlords
"{9BC30465-1180-4166-8D1F-0FCD7D1CC954}"= TCP:c:\program files\2K Games\Firaxis Games\Sid Meier's Civilization 4 Complete\Warlords\Civ4Warlords.exe:Sid Meier's Civilization 4: Warlords
"{75D82640-B909-4A0C-BE49-42497CA673B2}"= UDP:c:\program files\2K Games\Firaxis Games\Sid Meier's Civilization 4 Complete\Beyond the Sword\Civ4BeyondSword.exe:Sid Meier's Civilization 4: Beyond the Sword
"{5D5BEBCE-E214-4DE9-9EE1-4672F4D796F7}"= TCP:c:\program files\2K Games\Firaxis Games\Sid Meier's Civilization 4 Complete\Beyond the Sword\Civ4BeyondSword.exe:Sid Meier's Civilization 4: Beyond the Sword
"{7A850012-1055-48BF-B522-6C74674AC924}"= UDP:c:\windows\System32\PnkBstrA.exe:PnkBstrA
"{D2B1522F-CCD4-40CB-9A1C-19B827A90265}"= TCP:c:\windows\System32\PnkBstrA.exe:PnkBstrA
"{1FB827CF-5D00-40E1-AC7C-985474FC750A}"= UDP:c:\windows\System32\PnkBstrB.exe:PnkBstrB
"{CCDDE7B3-5E87-4DAF-A244-DED7287CBE11}"= TCP:c:\windows\System32\PnkBstrB.exe:PnkBstrB
"{EC8E278D-4838-4EE3-93BA-CBC9A0BA8AE4}"= UDP:c:\program files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:Call of Duty(R) 4 - Modern Warfare(TM)
"{AD8E3901-A158-4A3F-821F-C99754C2C917}"= TCP:c:\program files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:Call of Duty(R) 4 - Modern Warfare(TM)
"{63F025D1-B60B-4B47-A5B0-54457738B9B3}"= UDP:c:\program files\iTunes\iTunes.exe:iTunes
"{EBB36171-16AE-4355-8300-3A54AD96903C}"= TCP:c:\program files\iTunes\iTunes.exe:iTunes
"{B4E0DFE4-F1BB-4061-A8D3-511C451FCDF3}"= UDP:c:\program files\MSN Messenger\msnmsgr.exe:MSN Messenger 7.0
"{5798E201-550D-4C36-93A9-53C4ABEB9803}"= TCP:c:\program files\MSN Messenger\msnmsgr.exe:MSN Messenger 7.0
"{EDB28EC4-15E9-4D6C-92E1-F765466E9CA7}"= UDP:c:\program files\MSN Messenger\msnmsgr.exe:MSN Messenger 7.0
"{5EDD7D17-E07C-4A2E-8DDA-474E11476220}"= TCP:c:\program files\MSN Messenger\msnmsgr.exe:MSN Messenger 7.0
"{C3FD154C-C680-41FA-9D4C-00AF5D60BFA9}"= UDP:c:\program files\MSN Messenger\msnmsgr.exe:MSN Messenger 7.0
"{6D36E7FF-2BCE-4E03-BF83-B6A0A33DC36E}"= TCP:c:\program files\MSN Messenger\msnmsgr.exe:MSN Messenger 7.0
"{638103A7-5F79-49D7-A800-106A79F5F714}"= c:\program files\MSN Messenger\livecall.exe:Windows Live Messenger 8.1 (Phone)
"{9DA55446-CE37-42F3-A3AB-EDC9AC58E37A}"= UDP:c:\program files\Microsoft Games\Age of Empires III\age3.exe:Age of Empires III
"{2F1B791E-125E-4676-8BC9-C7376EF67D1C}"= TCP:c:\program files\Microsoft Games\Age of Empires III\age3.exe:Age of Empires III
"TCP Query User{AB4DA13B-A8EE-490C-B94D-DBC893B12F39}c:\\program files\\azureus\\azureus.exe"= UDP:c:\program files\azureus\azureus.exe:Azureus
"UDP Query User{4701FED6-0B75-4404-AD26-7F3F6C176596}c:\\program files\\azureus\\azureus.exe"= TCP:c:\program files\azureus\azureus.exe:Azureus
"TCP Query User{FCF347F4-4850-4B6E-8378-7A9C5F8DAACE}c:\\program files\\internet explorer\\iexplore.exe"= UDP:c:\program files\internet explorer\iexplore.exe:Internet Explorer
"UDP Query User{403422EC-0B56-49BF-AFA9-AF5C39386842}c:\\program files\\internet explorer\\iexplore.exe"= TCP:c:\program files\internet explorer\iexplore.exe:Internet Explorer
"TCP Query User{7B231355-91EC-4DF4-9B01-B2E1CFDFF4E4}c:\\program files\\emule\\emule.exe"= UDP:c:\program files\emule\emule.exe:eMule
"UDP Query User{633F1F87-CA0A-49B3-8A22-26D809151477}c:\\program files\\emule\\emule.exe"= TCP:c:\program files\emule\emule.exe:eMule
"TCP Query User{6279BC70-B4A4-4A66-A19D-BCE7869E0E4E}c:\\program files\\team17\\worms armageddon\\wa.exe"= UDP:c:\program files\team17\worms armageddon\wa.exe:Worms Armageddon
"UDP Query User{00F48F3C-6725-4589-B9EC-01832517A27C}c:\\program files\\team17\\worms armageddon\\wa.exe"= TCP:c:\program files\team17\worms armageddon\wa.exe:Worms Armageddon
"TCP Query User{A61540CE-73E1-43CB-9DEC-BA9F868EB181}c:\\program files\\team17\\worms 2\\fronte
0
Réponse 28 / 32
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
12 avril 2009 à 11:10
comment va ton pc?????



Télécharge ToolsCleaner sur ton bureau.
--> http://www.commentcamarche.net/telecharger/telecharger 34055291 toolscleaner
# Clique sur Recherche et laisse le scan agir ...
# Clique sur Suppression pour finaliser.
# Tu peux, si tu le souhaites, te servir des Options facultatives.
# Clique sur Quitter pour obtenir le rapport.
# Poste le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur (C:\).
0
Réponse 29 / 32
shaiko Messages postés 106 Date d'inscription lundi 1 septembre 2008 Statut Membre Dernière intervention 10 septembre 2012 38
12 avril 2009 à 15:47
salut jlpjlp,

le pc va beaucoup mieux, rien ne semble désormais indiquer la présence d'un virus, plus de pop-up ni de boites de dialogues intempestives, internet et mozilla fonctionnent correctement ...un grand nettoyage de printemps en somme !

je te fais le tools cleaner !
0
Réponse 30 / 32
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
12 avril 2009 à 18:42
ok fais tool cleanr pour virer ce qui a été utilisé

et bonne suite
0
shaiko Messages postés 106 Date d'inscription lundi 1 septembre 2008 Statut Membre Dernière intervention 10 septembre 2012 38
27 avril 2009 à 15:32
salut jlpjlp, désolé ca fait un moment que je ne t'ai pas repondu, car mon coloc a repris son pc pour partir en vacances ... veux tu toujours le tool cleaner ?
0
Réponse 31 / 32
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
27 avril 2009 à 19:32
oui
0
Réponse 32 / 32
shaiko Messages postés 106 Date d'inscription lundi 1 septembre 2008 Statut Membre Dernière intervention 10 septembre 2012 38
30 avril 2009 à 15:10
salut jlpjlp

voici le tools cleaner

[ Rapport ToolsCleaner version 2.3.5 (par A.Rothstein & dj QUIOU) ]

--> Recherche:

C:\Combofix.txt: trouvé !
C:\Combofix: trouvé !
C:\Qoobox: trouvé !
C:\_OtMoveIt: trouvé !
C:\Rsit: trouvé !
C:\Program Files\trend micro\HijackThis.exe: trouvé !
C:\Program Files\trend micro\hijackthis.log: trouvé !
C:\Users\LOULOU\Desktop\ComboFix.exe: trouvé !
C:\Users\LOULOU\Desktop\Trucs Antivirus\Rsit.exe: trouvé !
C:\Users\LOULOU\Downloads\OTMoveIt3.exe: trouvé !

---------------------------------
--> Suppression:

C:\Program Files\trend micro\HijackThis.exe: ERREUR DE SUPPRESSION !!
C:\Users\LOULOU\Desktop\ComboFix.exe: ERREUR DE SUPPRESSION !!
C:\Combofix.txt: ERREUR DE SUPPRESSION !!
C:\Program Files\trend micro\hijackthis.log: ERREUR DE SUPPRESSION !!
C:\Users\LOULOU\Desktop\Trucs Antivirus\Rsit.exe: supprimé !
C:\Users\LOULOU\Downloads\OTMoveIt3.exe: supprimé !
C:\Combofix: supprimé !
C:\Qoobox: ERREUR DE SUPPRESSION !!
C:\_OtMoveIt: supprimé !
C:\Rsit: supprimé !


je t'ai copié ce qu'il y avait ds la fenetre du logiciel car le rapport ne voulait pas se créer: ce la dit impossible de creer le fichier txt: accès refusé
0
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
30 avril 2009 à 16:08
Refais toolcleaner ou vire manuellement ce qui n'a pas été supprimé
0

Discussions similaires

cheval de troie trojan
idnoder -
idnoder -

42 réponses
Comment enlever mon virus trojan:win32/si...
bryanoulet -
juju666 -

58 réponses
Virus Trojan win32
Lou0909 -
Lou0909 -

24 réponses
Code Ascii
christophe -
yg_be -

14 réponses
Tester une config
Antoinedu49 -
Utilisateur anonyme -

1 réponse