[Arquivado] Meu pc não desliga, apenas reinicia

continentalsom · Fevereiro 25, 2009

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 15:17:47, on 25/2/2009

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16735)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\ARQUIV~1\GbPlugin\GbpSv.exe

C:\WINDOWS\system32\LEXBCES.EXE

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\system32\LEXPPS.EXE

C:\WINDOWS\Explorer.EXE

C:\Arquivos de programas\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Arquivos de programas\Eset\nod32krn.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\wscntfy.exe

C:\WINDOWS\System32\svchost.exe

C:\Arquivos de programas\Internet Explorer\iexplore.exe

C:\Arquivos de programas\Adobe\Acrobat 7.0\Reader\AcroRd32.exe

C:\Arquivos de programas\MSN Messenger\msnmsgr.exe

C:\Arquivos de programas\MSN Messenger\usnsvc.exe

C:\DOCUME~1\ADMINI~1\CONFIG~1\Temp\Diretório temporário 1 para HiJackThis.zip\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.continental.brasilflog.com.br/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Arquivos de programas\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: (no name) - {52ED26DB-9636-45E2-BF6C-1488B1DDAA2B} - C:\WINDOWS\system32\eoats.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Arquivos de programas\Google\Google Toolbar\GoogleToolbar.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Arquivos de programas\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll

O2 - BHO: G-Buster Browser Defense ABN AMRO - {C41A1C0E-EA6C-11D4-B1B8-444553540007} - C:\ARQUIV~1\GbPlugin\gbiehabn.dll

O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Arquivos de programas\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll

O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Arquivos de programas\Google\Google Toolbar\GoogleToolbar.dll

O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe

O4 - HKCU\..\Run: [swg] C:\Arquivos de programas\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'LOCAL SERVICE')

O4 - Startup: NOD32 Control Center.lnk = C:\Arquivos de programas\Eset\nod32kui.exe

O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Arquivos de programas\Adobe\Acrobat 7.0\Reader\reader_sl.exe

O20 - Winlogon Notify: GbPluginAbn - C:\ARQUIV~1\GbPlugin\gbiehabn.dll

O23 - Service: Google Updater Service (gusvc) - Google - C:\Arquivos de programas\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE

O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Arquivos de programas\Eset\nod32krn.exe

O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Arquivos de programas\Arquivos comuns\SureThing Shared\stllssvr.exe

--

End of file - 3999 bytes

MGuitar · Fevereiro 25, 2009

- Faça o download do OTListIt2 e salve no desktop;

● Dê um duplo clique em OTListIt2.exe para executá-lo;

● Marque a opção "Scan All Users";

● Clique no botão e aguarde a verificação;

● Dois logs serão gerados no Bloco de Notas:

- OTListIt.txt <- este será aberto

- Extra.txt <- este estará minimizado.

Cole-os em sua próxima resposta.

continentalsom · Fevereiro 25, 2009

OTListIt logfile created on: 25/2/2009 19:26:27 - Run

OTListIt2 by OldTimer - Version 2.0.2.0 Folder = D:\APLICATIVOS

Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 7.0.5730.13)

Locale: 00000416 | Country: Brasil | Language: PTB | Date Format: d/M/yyyy

1023,48 Mb Total Physical Memory | 518,57 Mb Available Physical Memory | 50,67% Memory free

925,88 Mb Paging File | 565,58 Mb Available in Paging File | 61,09% Paging File free

Paging file location(s): C:\pagefile.sys 1534 4000;

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Arquivos de programas

Drive C: | 39,06 Gb Total Space | 28,46 Gb Free Space | 72,85% Space Free | Partition Type: NTFS

Drive D: | 109,98 Gb Total Space | 17,27 Gb Free Space | 15,70% Space Free | Partition Type: NTFS

E: Drive not present or media not loaded

F: Drive not present or media not loaded

G: Drive not present or media not loaded

H: Drive not present or media not loaded

I: Drive not present or media not loaded

Computer Name: CONTINENTAL

Current User Name: Administrador

Logged in as Administrator.

Current Boot Mode: Normal

Scan Mode: All users

Output = Standard

File Age = 30 Days

Company Name Whitelist: On

========== Processes (SafeList) ==========

PRC - [2008/05/16 16:01:18 | 00,047,080 | ---- | M] () -- C:\Arquivos de programas\GbPlugin\GbpSv.exe

PRC - [2003/08/18 07:37:09 | 00,303,104 | ---- | M] (Lexmark International, Inc.) -- C:\WINDOWS\system32\LEXBCES.EXE

PRC - [2003/08/18 07:32:55 | 00,174,592 | ---- | M] (Lexmark International, Inc.) -- C:\WINDOWS\system32\LEXPPS.EXE

PRC - [2008/04/13 18:21:00 | 01,035,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Explorer.EXE

PRC - [2009/02/06 12:53:15 | 00,039,408 | ---- | M] (Google Inc.) -- C:\Arquivos de programas\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

PRC - [2009/02/03 15:24:10 | 00,552,064 | ---- | M] (Eset ) -- C:\Arquivos de programas\Eset\nod32krn.exe

PRC - [2008/04/13 18:21:26 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscntfy.exe

PRC - [2007/01/19 12:54:34 | 05,674,352 | ---- | M] (Microsoft Corporation) -- C:\Arquivos de programas\MSN Messenger\msnmsgr.exe

PRC - [2007/01/19 12:54:14 | 00,097,136 | ---- | M] (Microsoft Corporation) -- C:\Arquivos de programas\MSN Messenger\usnsvc.exe

PRC - [2001/12/06 12:05:06 | 00,139,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\SNDVOL32.EXE

PRC - [2007/05/14 19:23:58 | 01,137,664 | ---- | M] (Nullsoft) -- C:\Arquivos de programas\Winamp\winamp.exe

PRC - [2008/08/23 02:56:15 | 00,635,848 | ---- | M] (Microsoft Corporation) -- C:\Arquivos de programas\Internet Explorer\iexplore.exe

PRC - [2009/02/25 19:25:57 | 00,497,152 | ---- | M] (OldTimer Tools) -- D:\APLICATIVOS\OTListIt2.exe

========== Win32 Services (SafeList) ==========

SRV - [2005/09/23 06:28:32 | 00,029,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe -- (aspnet_state [On_Demand | Stopped])

SRV - [2005/09/23 06:28:56 | 00,066,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])

SRV - File not found -- -- (GbpSv [unknown | Running])

SRV - [2009/02/06 12:53:14 | 00,137,200 | ---- | M] (Google) -- C:\Arquivos de programas\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc [On_Demand | Stopped])

SRV - [2008/04/13 18:20:38 | 00,038,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll -- (helpsvc [Auto | Running])

SRV - [2003/08/18 07:37:09 | 00,303,104 | ---- | M] (Lexmark International, Inc.) -- C:\WINDOWS\system32\LEXBCES.EXE -- (LexBceS [Auto | Running])

SRV - [2006/10/26 23:47:54 | 00,065,824 | ---- | M] (Microsoft Corporation) -- C:\Arquivos de programas\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service [On_Demand | Stopped])

SRV - [2009/02/03 15:24:10 | 00,552,064 | ---- | M] (Eset ) -- C:\Arquivos de programas\Eset\nod32krn.exe -- (NOD32krn [Auto | Running])

SRV - [2006/10/26 18:49:34 | 00,441,136 | ---- | M] (Microsoft Corporation) -- C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv [On_Demand | Stopped])

SRV - [2006/10/26 12:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) -- C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\Source Engine\OSE.EXE -- (ose [On_Demand | Stopped])

SRV - [2009/02/03 18:24:14 | 00,181,312 | ---- | M] () -- C:\Arquivos de programas\Photodex\ProShowGold\ScsiAccess.exe -- (ScsiAccess [Disabled | Stopped])

SRV - [2007/12/02 17:34:30 | 00,074,384 | R--- | M] (MicroVision Development, Inc.) -- C:\Arquivos de programas\Arquivos comuns\SureThing Shared\stllssvr.exe -- (stllssvr [On_Demand | Stopped])

SRV - [2007/01/19 12:54:14 | 00,097,136 | ---- | M] (Microsoft Corporation) -- C:\Arquivos de programas\MSN Messenger\usnsvc.exe -- (usnjsvc [On_Demand | Running])

SRV - [2006/11/02 22:31:44 | 00,914,944 | ---- | M] (Microsoft Corporation) -- C:\Arquivos de programas\Windows Media Player\WMPNetwk.exe -- (WMPNetworkSvc [On_Demand | Stopped])

========== Driver Services (SafeList) ==========

DRV - [2005/05/18 06:50:30 | 02,319,680 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM [On_Demand | Running])

DRV - [2009/02/03 15:24:11 | 00,512,096 | ---- | M] (Eset ) -- C:\WINDOWS\system32\drivers\amon.sys -- (AMON [Auto | Running])

DRV - [2002/07/18 23:46:28 | 00,127,948 | ---- | M] (Creative Technology Ltd) -- C:\WINDOWS\System32\drivers\ctac32k.sys -- (ctac32k [On_Demand | Running])

DRV - [2002/07/18 23:47:52 | 00,837,548 | ---- | M] (Creative Technology Ltd) -- C:\WINDOWS\system32\drivers\ctaud2k.sys -- (ctaud2k [On_Demand | Running])

DRV - [2001/08/17 17:19:20 | 00,003,712 | ---- | M] (Creative Technology Ltd.) -- C:\WINDOWS\system32\DRIVERS\ctljystk.sys -- (ctljystk [On_Demand | Stopped])

DRV - [2002/07/18 23:48:08 | 00,011,068 | ---- | M] (Creative Technology Ltd) -- C:\WINDOWS\System32\drivers\ctprxy2k.sys -- (ctprxy2k [On_Demand | Running])

DRV - [2002/07/18 23:48:22 | 00,213,860 | ---- | M] (Creative Technology Ltd) -- C:\WINDOWS\System32\drivers\ctsfm2k.sys -- (ctsfm2k [On_Demand | Running])

DRV - [2002/07/18 23:48:32 | 00,156,604 | ---- | M] (Creative Technology Ltd) -- C:\WINDOWS\System32\drivers\emupia2k.sys -- (emupia [On_Demand | Running])

DRV - [2001/08/17 17:13:08 | 00,027,165 | ---- | M] (VIA Technologies, Inc. ) -- C:\WINDOWS\system32\DRIVERS\fetnd5.sys -- (FETNDIS [On_Demand | Stopped])

DRV - [2004/04/14 23:57:20 | 00,042,496 | R--- | M] (VIA Technologies, Inc. ) -- C:\WINDOWS\system32\DRIVERS\fetnd5b.sys -- (FETNDISB [On_Demand | Running])

DRV - [2001/12/06 12:04:18 | 00,023,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\flstjyqc.sys -- (flstjyqc [boot | Running])

DRV - [2008/04/13 10:45:30 | 00,010,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\DRIVERS\gameenum.sys -- (gameenum [On_Demand | Running])

DRV - [2002/07/24 02:52:26 | 00,998,004 | ---- | M] (Creative Technology Ltd) -- C:\WINDOWS\system32\drivers\ha10kx2k.sys -- (ha10kx2k [On_Demand | Running])

DRV - [2009/02/03 15:24:10 | 00,015,424 | ---- | M] () -- C:\WINDOWS\system32\drivers\nod32drv.sys -- (nod32drv [system | Running])

DRV - [2003/07/17 05:10:06 | 00,007,040 | R--- | M] (VIA Networking Technologies, Inc. ) -- C:\WINDOWS\system32\ntsim.sys -- (NTSIM [On_Demand | Stopped])

DRV - [2008/04/13 06:34:32 | 01,897,408 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\DRIVERS\nv4_mini.sys -- (nv [On_Demand | Running])

DRV - [2002/07/18 23:48:04 | 00,195,432 | ---- | M] (Creative Technology Ltd.) -- C:\WINDOWS\system32\drivers\ctoss2k.sys -- (ossrv [On_Demand | Running])

DRV - [2002/06/13 14:08:46 | 00,014,604 | ---- | M] (Padus, Inc.) -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc [On_Demand | Running])

DRV - [2001/12/06 12:04:50 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\system32\DRIVERS\ptilink.sys -- (Ptilink [On_Demand | Running])

DRV - [2007/11/14 02:00:00 | 00,043,840 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20 [boot | Running])

DRV - [2008/04/13 08:39:18 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\WINDOWS\system32\DRIVERS\secdrv.sys -- (Secdrv [On_Demand | Stopped])

DRV - [1998/11/14 17:39:10 | 00,087,424 | ---- | M] (PACE Anti-Piracy) -- C:\WINDOWS\System32\drivers\TPkd.sys -- (TPkd [boot | Running])

DRV - [2005/04/26 00:22:40 | 00,060,928 | R--- | M] (VIA Technologies inc,.ltd) -- C:\WINDOWS\system32\DRIVERS\viamraid.sys -- (viamraid [boot | Running])

DRV - [2008/08/01 12:30:49 | 00,016,896 | ---- | M] (VIA Technologies, Inc.) -- C:\WINDOWS\system32\DRIVERS\ViBus.sys -- (ViBus [boot | Running])

DRV - [2008/08/01 12:30:49 | 00,009,216 | ---- | M] (VIA Technologies, Inc.) -- C:\WINDOWS\system32\DRIVERS\videX32.sys -- (videX32 [boot | Running])

DRV - [2008/08/01 12:30:49 | 00,053,248 | ---- | M] (VIA Technologies, Inc.) -- C:\WINDOWS\system32\DRIVERS\ViPrt.sys -- (ViPrt [boot | Running])

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = Reg Error: Invalid data type.

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchTerm...tf8&oe=utf8

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.continental.brasilflog.com.br/

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1715567821-1844237615-1644491937-500\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm

IE - HKU\S-1-5-21-1715567821-1844237615-1644491937-500\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com

IE - HKU\S-1-5-21-1715567821-1844237615-1644491937-500\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google

IE - HKU\S-1-5-21-1715567821-1844237615-1644491937-500\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchTerm...tf8&oe=utf8

IE - HKU\S-1-5-21-1715567821-1844237615-1644491937-500\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.continental.brasilflog.com.br/

IE - HKU\S-1-5-21-1715567821-1844237615-1644491937-500\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie

IE - HKU\S-1-5-21-1715567821-1844237615-1644491937-500\S-1-5-21-1715567821-1844237615-1644491937-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

O1 HOSTS File: (774 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts

O1 - Hosts: 127.0.0.1 localhost

O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Arquivos de programas\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)

O2 - BHO: (no name) - {52ED26DB-9636-45E2-BF6C-1488B1DDAA2B} - C:\WINDOWS\system32\eoats.dll (Alcohol Soft Development Team)

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - Reg Error: Key error. File not found

O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Arquivos de programas\Google\Google Toolbar\GoogleToolbar.dll ()

O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Arquivos de programas\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll (Google Inc.)

O2 - BHO: (GbIehObj Class) - {C41A1C0E-EA6C-11D4-B1B8-444553540007} - C:\Arquivos de programas\GbPlugin\gbiehabn.dll (Banco ABN AMRO)

O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Arquivos de programas\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll (Google Inc.)

O3 - HKLM\..\Toolbar: (&Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Arquivos de programas\Google\Google Toolbar\GoogleToolbar.dll ()

O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Arquivos de programas\Google\Google Toolbar\GoogleToolbar.dll ()

O3 - HKU\S-1-5-21-1715567821-1844237615-1644491937-500\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Arquivos de programas\Google\Google Toolbar\GoogleToolbar.dll ()

O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)

O4 - HKCU..\Run: [CoolSMS] File not found

O4 - HKCU..\Run: [swg] C:\Arquivos de programas\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)

O4 - HKU\S-1-5-21-1715567821-1844237615-1644491937-500..\Run: [CoolSMS] File not found

O4 - HKU\S-1-5-21-1715567821-1844237615-1644491937-500..\Run: [swg] C:\Arquivos de programas\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)

O4 - HKU\S-1-5-19..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (Microsoft Corporation)

O4 - Startup: C:\Documents and Settings\Administrador\Menu Iniciar\Programas\Inicializar\NOD32 Control Center.lnk = C:\Arquivos de programas\Eset\nod32kui.exe (Eset )

O4 - Startup: C:\Documents and Settings\All Users\Menu Iniciar\Programas\Inicializar\Adobe Reader Speed Launch.lnk = C:\Arquivos de programas\Adobe\Acrobat 7.0\Reader\reader_sl.exe (Adobe Systems Incorporated)

O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0

O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1

O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1

O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1

O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1

O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1

O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1

O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1

O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1

O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1

O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1

O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1

O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1

O7 - HKU\S-1-5-21-1715567821-1844237615-1644491937-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-21-1715567821-1844237615-1644491937-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1

O7 - HKU\S-1-5-21-1715567821-1844237615-1644491937-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1

O7 - HKU\S-1-5-21-1715567821-1844237615-1644491937-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0

O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\system32\imon.dll (Eset )

O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\system32\imon.dll (Eset )

O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\system32\imon.dll (Eset )

O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\system32\imon.dll (Eset )

O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\system32\imon.dll (Eset )

O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\WINDOWS\system32\imon.dll (Eset )

O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\WINDOWS\system32\imon.dll (Eset )

O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\WINDOWS\system32\imon.dll (Eset )

O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\WINDOWS\system32\imon.dll (Eset )

O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\WINDOWS\system32\imon.dll (Eset )

O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\WINDOWS\system32\imon.dll (Eset )

O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\WINDOWS\system32\imon.dll (Eset )

O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\WINDOWS\system32\imon.dll (Eset )

O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\WINDOWS\system32\imon.dll (Eset )

O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\WINDOWS\system32\imon.dll (Eset )

O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\WINDOWS\system32\imon.dll (Eset )

O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\WINDOWS\system32\imon.dll (Eset )

O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.

O15 - HKCU\..Trusted Domains: 8 domain(s) and sub-domain(s) not assigned to a zone.

O15 - HKU\S-1-5-21-1715567821-1844237615-1644491937-500\..Trusted Domains: 8 domain(s) and sub-domain(s) not assigned to a zone.

O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwa...director/sw.cab (Shockwave ActiveX Control)

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/shock...ash/swflash.cab (Shockwave Flash Object)

O18 - Protocol\Handler\ipp Reg Error: Value error. - Reg Error: Key error. File not found

O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Arquivos de programas\Arquivos comuns\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Arquivos de programas\MSN Messenger\msgrapp.8.1.0178.00.dll (Microsoft Corporation)

O18 - Protocol\Handler\msdaipp Reg Error: Value error. - Reg Error: Key error. File not found

O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Arquivos de programas\Arquivos comuns\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Arquivos de programas\Arquivos comuns\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)

O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Arquivos de programas\MSN Messenger\msgrapp.8.1.0178.00.dll (Microsoft Corporation)

O18 - Protocol\Filter: - text/xml - C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)

O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation)

O20 - HKCU Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation)

O20 - HKU\S-1-5-21-1715567821-1844237615-1644491937-500 Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation)

O20 - Winlogon\Notify\ GbPluginAbn: DllName - C:\ARQUIV~1\GbPlugin\gbiehabn.dll - C:\Arquivos de programas\GbPlugin\gbiehabn.dll (Banco ABN AMRO)

O24 - Desktop Components:0 (Minha página inicial atual) - About:Home

O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Arquivos de programas\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]

O28 - HKLM ShellExecuteHooks: {E37CB5F0-51F5-4395-A808-5FA49E399007} - C:\Arquivos de programas\GbPlugin\gbiehabn.dll (Banco ABN AMRO)

O31 - SafeBoot: AlternateShell - cmd.exe

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2009/02/03 15:06:35 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]

========== Files/Folders - Created Within 30 Days ==========

[1 C:\WINDOWS\System32\*.tmp files]

[6 C:\WINDOWS\*.tmp files]

[2009/02/25 13:47:50 | 00,375,579 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\prova eletroeletronica.pdf

[2009/02/24 14:37:46 | 10,732,70784 | -HS- | C] () -- C:\hiberfil.sys

[2009/02/23 19:45:45 | 00,000,000 | -H-D | C] -- C:\WINDOWS\PIF

[2009/02/23 11:45:20 | 00,033,975 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\m*****.nri

[2009/02/22 14:26:00 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\Carnavaal x))

[2009/02/21 14:15:39 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\GTA San Andreas User Files

[2009/02/21 11:32:08 | 00,000,624 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Minhas Pastas de Compartilhamento.lnk

[2009/02/21 11:30:06 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE

[2009/02/21 11:29:45 | 00,001,772 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Windows Live Messenger.lnk

[2009/02/21 11:29:39 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\MSN Messenger

[2009/02/19 09:34:47 | 00,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI

[2009/02/18 16:35:23 | 00,020,606 | ---- | C] () -- C:\Documents and Settings\Administrador\Desktop\SANDRO.jpg

[2009/02/18 09:59:32 | 00,257,179 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\prova PROMINP.pdf

[2009/02/17 13:27:21 | 32,581,256 | ---- | C] (PortableApps.com) -- C:\Documents and Settings\Administrador\Meus documentos\FretsOnFire_Portable_1.2.451.paf.exe

[2009/02/16 09:29:57 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe

[2009/02/16 08:55:19 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documentos\EA Games

[2009/02/16 08:55:19 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\EA Games

[2009/02/14 12:37:18 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Dados de aplicativos\Ahead

[2009/02/14 12:37:14 | 00,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini

[2009/02/14 12:17:53 | 00,047,867 | ---- | C] () -- C:\WINDOWS\UNNMP.cfg

[2009/02/14 12:17:06 | 00,001,367 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Nero StartSmart.lnk

[2009/02/14 12:15:17 | 00,155,648 | ---- | C] (Ahead Software Gmbh) -- C:\WINDOWS\System32\NeroCheck.exe

[2009/02/14 12:13:46 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Arquivos comuns\Nero

[2009/02/14 12:13:45 | 00,001,029 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Nero ShowTime.lnk

[2009/02/14 12:10:37 | 00,179,261 | ---- | C] () -- C:\WINDOWS\UNNeroVision.cfg

[2009/02/14 12:10:36 | 00,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml3a.dll

[2009/02/14 12:09:24 | 00,364,544 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\TwnLib4.dll

[2009/02/14 12:09:24 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dados de aplicativos\Ahead

[2009/02/14 12:09:23 | 01,568,768 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagX7.dll

[2009/02/14 12:09:23 | 00,476,320 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXpr7.dll

[2009/02/14 12:09:23 | 00,471,040 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXRA7.dll

[2009/02/14 12:09:23 | 00,262,144 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXR7.dll

[2009/02/14 12:09:22 | 00,106,496 | ---- | C] (Pegasus Software) -- C:\WINDOWS\System32\TwnLib20.dll

[2009/02/14 12:09:22 | 00,038,912 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\picn20.dll

[2009/02/14 12:08:02 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Arquivos comuns\Ahead

[2009/02/14 12:08:00 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Ahead

[2009/02/14 10:37:37 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\DFX

[2009/02/14 10:33:23 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Dados de aplicativos\Roxio

[2009/02/14 10:07:43 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\Mp5 Fotoos 2

[2009/02/14 10:07:39 | 00,061,606 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00064.jpg

[2009/02/14 10:07:39 | 00,061,385 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00055.jpg

[2009/02/14 10:07:39 | 00,061,017 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00074.jpg

[2009/02/14 10:07:39 | 00,060,716 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00075.jpg

[2009/02/14 10:07:39 | 00,060,176 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00076.jpg

[2009/02/14 10:07:39 | 00,058,415 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00073.jpg

[2009/02/14 10:07:39 | 00,058,365 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00079.jpg

[2009/02/14 10:07:39 | 00,057,572 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00060.jpg

[2009/02/14 10:07:39 | 00,056,327 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00077.jpg

[2009/02/14 10:07:39 | 00,056,046 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00072.jpg

[2009/02/14 10:07:39 | 00,055,878 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00071.jpg

[2009/02/14 10:07:39 | 00,055,657 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00063.jpg

[2009/02/14 10:07:39 | 00,055,603 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00062.jpg

[2009/02/14 10:07:39 | 00,055,491 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00059.jpg

[2009/02/14 10:07:39 | 00,054,769 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00070.jpg

[2009/02/14 10:07:39 | 00,053,678 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00057.jpg

[2009/02/14 10:07:39 | 00,053,605 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00061.jpg

[2009/02/14 10:07:39 | 00,053,527 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00078.jpg

[2009/02/14 10:07:39 | 00,052,995 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00056.jpg

[2009/02/14 10:07:39 | 00,052,982 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00065.jpg

[2009/02/14 10:07:39 | 00,052,846 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00053.jpg

[2009/02/14 10:07:39 | 00,051,364 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00068.jpg

[2009/02/14 10:07:39 | 00,050,799 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00052.jpg

[2009/02/14 10:07:39 | 00,049,572 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00054.jpg

[2009/02/14 10:07:39 | 00,048,296 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00051.jpg

[2009/02/14 10:07:39 | 00,047,657 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00058.jpg

[2009/02/14 10:07:39 | 00,047,528 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00069.jpg

[2009/02/14 10:07:39 | 00,046,985 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00067.jpg

[2009/02/14 10:07:39 | 00,046,493 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00066.jpg

[2009/02/14 10:07:39 | 00,043,175 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00050.jpg

[2009/02/14 10:07:38 | 00,095,907 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00007.jpg

[2009/02/14 10:07:38 | 00,083,471 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00018.jpg

[2009/02/14 10:07:38 | 00,068,014 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00016.jpg

[2009/02/14 10:07:38 | 00,061,999 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00043.jpg

[2009/02/14 10:07:38 | 00,060,555 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00040.jpg

[2009/02/14 10:07:38 | 00,059,732 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00035.jpg

[2009/02/14 10:07:38 | 00,059,190 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00027.jpg

continentalsom · Fevereiro 25, 2009

continuando....

[2009/02/14 10:07:38 | 00,058,394 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00025.jpg

[2009/02/14 10:07:38 | 00,058,259 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00037.jpg

[2009/02/14 10:07:38 | 00,056,720 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00041.jpg

[2009/02/14 10:07:38 | 00,056,601 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00024.jpg

[2009/02/14 10:07:38 | 00,055,259 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00049.jpg

[2009/02/14 10:07:38 | 00,055,142 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00021.jpg

[2009/02/14 10:07:38 | 00,055,138 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00015.jpg

[2009/02/14 10:07:38 | 00,054,859 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00019.jpg

[2009/02/14 10:07:38 | 00,054,700 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00047.jpg

[2009/02/14 10:07:38 | 00,054,626 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00033.jpg

[2009/02/14 10:07:38 | 00,054,403 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00042.jpg

[2009/02/14 10:07:38 | 00,054,372 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00031.jpg

[2009/02/14 10:07:38 | 00,053,491 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00038.jpg

[2009/02/14 10:07:38 | 00,053,263 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00045.jpg

[2009/02/14 10:07:38 | 00,053,171 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00030.jpg

[2009/02/14 10:07:38 | 00,053,080 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00044.jpg

[2009/02/14 10:07:38 | 00,052,668 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00026.jpg

[2009/02/14 10:07:38 | 00,052,591 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00046.jpg

[2009/02/14 10:07:38 | 00,051,035 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00034.jpg

[2009/02/14 10:07:38 | 00,050,974 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00012.jpg

[2009/02/14 10:07:38 | 00,050,187 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00048.jpg

[2009/02/14 10:07:38 | 00,049,294 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00039.jpg

[2009/02/14 10:07:38 | 00,048,732 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00022.jpg

[2009/02/14 10:07:38 | 00,047,507 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00010.jpg

[2009/02/14 10:07:38 | 00,046,998 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00023.jpg

[2009/02/14 10:07:38 | 00,046,544 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00028.jpg

[2009/02/14 10:07:38 | 00,045,551 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00020.jpg

[2009/02/14 10:07:38 | 00,045,484 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00008.jpg

[2009/02/14 10:07:38 | 00,045,276 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00032.jpg

[2009/02/14 10:07:38 | 00,043,341 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00017.jpg

[2009/02/14 10:07:38 | 00,042,424 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00013.jpg

[2009/02/14 10:07:38 | 00,042,419 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00014.jpg

[2009/02/14 10:07:38 | 00,041,523 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00009.jpg

[2009/02/14 10:07:38 | 00,036,407 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00029.jpg

[2009/02/14 10:07:38 | 00,034,737 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00011.jpg

[2009/02/14 10:07:37 | 00,082,291 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00006.jpg

[2009/02/14 10:07:37 | 00,074,498 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00002.jpg

[2009/02/14 10:07:37 | 00,058,360 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00004.jpg

[2009/02/14 10:07:37 | 00,058,183 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00003.jpg

[2009/02/14 10:07:37 | 00,055,240 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00001.jpg

[2009/02/14 10:07:37 | 00,050,855 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00000.jpg

[2009/02/14 10:07:37 | 00,050,107 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00005.jpg

[2009/02/14 10:07:37 | 00,045,528 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Img00117.jpg

[2009/02/14 09:55:49 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dados de aplicativos\DFX

[2009/02/14 09:55:47 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Arquivos comuns\DFX

[2009/02/14 09:50:10 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dados de aplicativos\Uninstall

[2009/02/14 09:50:07 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Arquivos comuns\SureThing Shared

[2009/02/14 09:49:21 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dados de aplicativos\Sonic

[2009/02/14 09:49:07 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Arquivos comuns\Sonic Shared

[2009/02/14 09:48:10 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Arquivos comuns\Roxio Shared

[2009/02/14 09:48:03 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dados de aplicativos\InstallShield

[2009/02/14 09:48:00 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Roxio

[2009/02/14 08:38:00 | 00,002,575 | ---- | C] () -- C:\Documents and Settings\Administrador\Desktop\Microsoft Office PowerPoint 2007.lnk

[2009/02/14 08:37:55 | 00,002,541 | ---- | C] () -- C:\Documents and Settings\Administrador\Desktop\Microsoft Office Excel 2007.lnk

[2009/02/14 08:37:41 | 00,002,565 | ---- | C] () -- C:\Documents and Settings\Administrador\Desktop\Microsoft Office Word 2007.lnk

[2009/02/14 07:43:50 | 00,000,720 | ---- | C] () -- C:\Documents and Settings\Administrador\Menu Iniciar\Programas\Inicializar\NOD32 Control Center.lnk

[2009/02/13 20:11:10 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\Sei lá x)

[2009/02/13 08:29:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\SxsCaPendDel

[2009/02/10 17:17:06 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Dados de aplicativos\AdobeUM

[2009/02/10 14:13:18 | 00,001,780 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 7.0.lnk

[2009/02/10 14:13:17 | 00,001,797 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\Inicializar\Adobe Reader Speed Launch.lnk

[2009/02/10 13:54:52 | 00,000,006 | ---- | C] () -- C:\Documents and Settings\Administrador\Dados de aplicativos\dm.ini

[2009/02/10 13:54:36 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt

[2009/02/10 11:43:30 | 00,000,000 | -HSD | C] -- C:\WINDOWS\ftpcache

[2009/02/10 08:52:19 | 00,000,000 | ---D | C] -- C:\WINDOWS\ie7updates

[2009/02/10 08:51:36 | 00,459,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll

[2009/02/10 08:51:36 | 00,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll

[2009/02/10 08:51:35 | 00,267,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll

[2009/02/10 08:51:35 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieudinit.exe

[2009/02/10 08:51:34 | 06,066,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll

[2009/02/10 08:51:34 | 01,024,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll.mui

[2009/02/10 08:51:33 | 02,455,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieapfltr.dat

[2009/02/10 08:51:33 | 00,383,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieapfltr.dll

[2009/02/10 08:51:33 | 00,063,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icardie.dll

[2009/02/10 08:50:40 | 00,000,000 | ---D | C] -- C:\WINDOWS\WBEM

[2009/02/10 08:48:45 | 00,000,000 | -H-D | C] -- C:\WINDOWS\ie7

[2009/02/10 08:48:00 | 00,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$

[2009/02/10 08:46:37 | 00,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$

[2009/02/10 08:31:42 | 20,853,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MRT.exe

[2009/02/09 18:38:49 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Desktop\iMasters Fóruns [Resolvido!]Meu computador não reinicia, não desliga, nem faz logo_arquivos

[2009/02/09 18:38:42 | 00,053,150 | ---- | C] () -- C:\Documents and Settings\Administrador\Desktop\iMasters Fóruns [Resolvido!]Meu computador não reinicia, não desliga, nem faz logo.htm

[2009/02/09 18:33:19 | 00,000,000 | ---D | C] -- C:\!KillBox

[2009/02/09 18:03:59 | 03,374,149 | ---- | C] () -- C:\WINDOWS\{00000000-00000000-00000009-00001102-00000002-80651102}.BAK

[2009/02/09 18:03:18 | 03,374,149 | ---- | C] () -- C:\WINDOWS\{00000000-00000000-00000009-00001102-00000002-80651102}.CDF

[2009/02/09 18:01:45 | 00,025,296 | ---- | C] () -- C:\WINDOWS\System32\BMXCtrlState-{00000000-00000000-00000009-00001102-00000002-80651102}.rfx

[2009/02/09 18:01:45 | 00,025,296 | ---- | C] () -- C:\WINDOWS\System32\BMXBkpCtrlState-{00000000-00000000-00000009-00001102-00000002-80651102}.rfx

[2009/02/09 18:01:45 | 00,016,516 | ---- | C] () -- C:\WINDOWS\System32\BMXStateBkp-{00000000-00000000-00000009-00001102-00000002-80651102}.rfx

[2009/02/09 18:01:45 | 00,016,516 | ---- | C] () -- C:\WINDOWS\System32\BMXState-{00000000-00000000-00000009-00001102-00000002-80651102}.rfx

[2009/02/09 18:01:45 | 00,000,024 | ---- | C] () -- C:\WINDOWS\System32\DVCStateBkp-{00000000-00000000-00000009-00001102-00000002-80651102}.dat

[2009/02/09 18:01:45 | 00,000,024 | ---- | C] () -- C:\WINDOWS\System32\DVCState-{00000000-00000000-00000009-00001102-00000002-80651102}.dat

[2009/02/09 09:46:14 | 01,600,443 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\prominp0208_do.pdf

[2009/02/09 08:29:28 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\Lêê ' 8)

[2009/02/09 08:18:52 | 00,032,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbccgp.sys

[2009/02/09 08:18:52 | 00,032,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbccgp.sys

[2009/02/08 20:41:40 | 00,018,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll

[2009/02/08 20:41:18 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Windows Media Connect 2

[2009/02/08 20:38:52 | 00,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf

[2009/02/08 20:38:45 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles

[2009/02/08 20:38:45 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF

[2009/02/08 20:37:05 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dados de aplicativos\Windows Genuine Advantage

[2009/02/08 14:10:19 | 00,042,941 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Bolo Mole Gelado.dotx

[2009/02/08 12:45:55 | 00,026,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\USBSTOR.SYS

[2009/02/08 12:45:55 | 00,026,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbstor.sys

[2009/02/08 12:14:56 | 00,029,696 | ---- | C] () -- C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2009/02/07 18:49:54 | 00,407,467 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\editaldeaberturaeletrosul.PDF

[2009/02/07 18:49:37 | 00,066,354 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Edital_de_Retificacao_1.pdf

[2009/02/07 18:46:54 | 00,202,752 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\prova tec eletronica santa catarina.doc

[2009/02/07 18:46:27 | 00,073,216 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\GAB-Tec em Eletronica.doc

[2009/02/07 18:42:45 | 00,080,894 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\prova eletronica.pdf

[2009/02/07 17:56:12 | 00,000,169 | ---- | C] () -- C:\WINDOWS\RtlRack.ini

[2009/02/07 13:08:48 | 00,000,000 | -HSD | C] -- C:\Config.Msi

[2009/02/07 12:51:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\Ahead

[2009/02/07 12:42:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Dados de aplicativos\Nero

[2009/02/07 12:38:02 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dados de aplicativos\Nero

[2009/02/07 10:19:31 | 00,299,008 | ---- | C] (InstallShield Corporation, Inc.) -- C:\WINDOWS\uninst.exe

[2009/02/07 10:18:42 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Terzoid WaveShop

[2009/02/07 10:13:50 | 01,042,360 | ---- | C] () -- C:\WINDOWS\System32\hisetup.vxd

[2009/02/07 10:13:50 | 00,232,448 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\WINDOWS\System32\l3codecp.acm

[2009/02/07 10:12:52 | 00,061,952 | ---- | C] (Sonic Timeworks L.L.P.) -- C:\WINDOWS\System32\stu.dll

[2009/02/07 10:12:26 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Timeworks

[2009/02/07 10:11:27 | 00,028,160 | ---- | C] (TC Works GmbH) -- C:\WINDOWS\System32\Rdcdnt.dll

[2009/02/07 10:11:26 | 00,028,160 | ---- | C] (TC Works GmbH) -- C:\WINDOWS\System32\Rdcd32.dll

[2009/02/07 10:11:26 | 00,003,824 | ---- | C] (TC Works GmbH) -- C:\WINDOWS\System32\Rdcd16.dll

[2009/02/07 10:09:54 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Sonic Foundry Plug-Ins

[2009/02/07 10:06:19 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\RBC

[2009/02/07 09:59:48 | 00,150,854 | ---- | C] () -- C:\WINDOWS\UnDsp.EXE

[2009/02/07 09:59:48 | 00,077,824 | ---- | C] (Power Technology) -- C:\WINDOWS\System32\DspfxD15.ax

[2009/02/07 09:59:48 | 00,077,824 | ---- | C] (Power Technology) -- C:\WINDOWS\System32\DspfxD14.ax

[2009/02/07 09:59:48 | 00,077,824 | ---- | C] (Power Technology) -- C:\WINDOWS\System32\DspfxD13.ax

[2009/02/07 09:59:48 | 00,077,824 | ---- | C] (Power Technology) -- C:\WINDOWS\System32\DspfxD12.ax

[2009/02/07 09:59:48 | 00,049,664 | ---- | C] (Paul Messick) -- C:\WINDOWS\System32\Mxmidi32.dll

[2009/02/07 09:59:48 | 00,032,768 | ---- | C] (Paul Messick) -- C:\WINDOWS\System32\Mxmidi95.dll

[2009/02/07 09:59:48 | 00,028,672 | ---- | C] () -- C:\WINDOWS\System32\DspfxS9.dll

[2009/02/07 09:59:48 | 00,028,672 | ---- | C] () -- C:\WINDOWS\System32\DspfxS8.dll

[2009/02/07 09:59:48 | 00,028,672 | ---- | C] () -- C:\WINDOWS\System32\DspfxS6.dll

[2009/02/07 09:59:48 | 00,028,672 | ---- | C] () -- C:\WINDOWS\System32\DspfxS5.dll

[2009/02/07 09:59:48 | 00,028,672 | ---- | C] () -- C:\WINDOWS\System32\DspfxS4.dll

[2009/02/07 09:59:48 | 00,028,672 | ---- | C] () -- C:\WINDOWS\System32\DspfxS3.dll

[2009/02/07 09:59:48 | 00,028,672 | ---- | C] () -- C:\WINDOWS\System32\DspfxS2.dll

[2009/02/07 09:59:48 | 00,028,672 | ---- | C] () -- C:\WINDOWS\System32\DspfxS15.dll

[2009/02/07 09:59:48 | 00,028,672 | ---- | C] () -- C:\WINDOWS\System32\DspfxS14.dll

[2009/02/07 09:59:48 | 00,028,672 | ---- | C] () -- C:\WINDOWS\System32\DspfxS13.dll

[2009/02/07 09:59:48 | 00,028,672 | ---- | C] () -- C:\WINDOWS\System32\DspfxS12.dll

[2009/02/07 09:59:48 | 00,028,672 | ---- | C] () -- C:\WINDOWS\System32\DspfxS1.dll

[2009/02/07 09:59:48 | 00,015,040 | ---- | C] () -- C:\WINDOWS\System32\Mxmidi16.dll

[2009/02/07 09:59:47 | 00,446,464 | ---- | C] () -- C:\WINDOWS\System32\DspfxCro.dll

[2009/02/07 09:59:47 | 00,196,608 | ---- | C] () -- C:\WINDOWS\System32\DspfxDll.dll

[2009/02/07 09:59:47 | 00,115,136 | ---- | C] (Global Majic Software, Inc.) -- C:\WINDOWS\System32\DspfxKno.ocx

[2009/02/07 09:59:47 | 00,108,568 | ---- | C] (Global Majic Software, Inc.) -- C:\WINDOWS\System32\DspfxToW.ocx

[2009/02/07 09:59:47 | 00,101,824 | ---- | C] (Global Majic Software, Inc.) -- C:\WINDOWS\System32\DspfxSli.ocx

[2009/02/07 09:59:47 | 00,077,824 | ---- | C] (Power Technology) -- C:\WINDOWS\System32\DspfxD9.ax

[2009/02/07 09:59:47 | 00,077,824 | ---- | C] (Power Technology) -- C:\WINDOWS\System32\DspfxD8.ax

[2009/02/07 09:59:47 | 00,077,824 | ---- | C] (Power Technology) -- C:\WINDOWS\System32\DspfxD6.ax

[2009/02/07 09:59:47 | 00,077,824 | ---- | C] (Power Technology) -- C:\WINDOWS\System32\DspfxD5.ax

[2009/02/07 09:59:47 | 00,077,824 | ---- | C] (Power Technology) -- C:\WINDOWS\System32\DspfxD4.ax

[2009/02/07 09:59:47 | 00,077,824 | ---- | C] (Power Technology) -- C:\WINDOWS\System32\DspfxD3.ax

[2009/02/07 09:59:47 | 00,077,824 | ---- | C] (Power Technology) -- C:\WINDOWS\System32\DspfxD2.ax

[2009/02/07 09:59:47 | 00,077,824 | ---- | C] (Power Technology) -- C:\WINDOWS\System32\DspfxD1.ax

[2009/02/07 09:59:47 | 00,064,960 | ---- | C] (Global Majic Software, Inc.) -- C:\WINDOWS\System32\DspfxLed.ocx

[2009/02/07 09:59:47 | 00,054,720 | ---- | C] (Global Majic Software, Inc.) -- C:\WINDOWS\System32\DspfxTo.ocx

[2009/02/07 09:59:47 | 00,053,248 | ---- | C] () -- C:\WINDOWS\System32\DspfxCom.dll

[2009/02/07 09:59:47 | 00,028,672 | ---- | C] () -- C:\WINDOWS\System32\DspfxDw.dll

[2009/02/07 09:56:44 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Cakewalk

[2009/02/07 09:54:55 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\AMSB

[2009/02/07 09:54:17 | 00,370,176 | ---- | C] (digilogue Digital Audio Recording Systems) -- C:\WINDOWS\System32\BlueCtrl.dll

[2009/02/07 09:54:17 | 00,207,360 | ---- | C] () -- C:\WINDOWS\BlueRem.exe

[2009/02/07 09:53:49 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\digilogue

[2009/02/07 09:52:51 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Arboretum Systems

[2009/02/07 09:52:17 | 00,129,024 | ---- | C] () -- C:\WINDOWS\UNWISE.EXE

[2009/02/07 09:52:16 | 00,087,424 | ---- | C] (PACE Anti-Piracy) -- C:\WINDOWS\System32\drivers\TPkd.sys

[2009/02/07 09:52:16 | 00,039,741 | ---- | C] () -- C:\WINDOWS\System32\Tpkd.vxd

[2009/02/07 09:52:16 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\IOSUBSYS

[2009/02/07 09:52:16 | 00,000,000 | ---D | C] -- C:\audio

[2009/02/07 09:40:12 | 00,000,000 | ---D | C] -- C:\Program Files

[2009/02/06 12:53:29 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Dados de aplicativos\Google

[2009/02/06 12:53:29 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\Google

[2009/02/06 12:41:52 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dados de aplicativos\Google

[2009/02/06 12:41:52 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Google

[2009/02/06 11:20:07 | 02,149,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe

[2009/02/06 11:20:06 | 02,070,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe

[2009/02/06 11:20:06 | 02,028,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe

[2009/02/06 11:20:05 | 02,193,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe

[2009/02/06 10:41:00 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\GbPlugin

[2009/02/06 10:40:18 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dados de aplicativos\GbPlugin

[2009/02/06 10:07:20 | 00,272,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bthport.sys

[2009/02/06 10:07:20 | 00,272,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys

[2009/02/06 09:19:27 | 00,455,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys

[2009/02/06 07:02:55 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall

[2009/02/06 07:02:54 | 00,023,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe

[2009/02/06 07:02:53 | 00,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$

[2009/02/05 20:59:26 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\IObit

[2009/02/05 20:03:24 | 00,000,826 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Programa da Multifuncional Lexmark X1100 Series.lnk

[2009/02/05 20:01:34 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\ABBYY FineReader 6.0

[2009/02/05 20:01:34 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\ABBYY FineReader 5.0 Sprint

[2009/02/05 19:58:03 | 00,000,179 | ---- | C] () -- C:\WINDOWS\lexstat.ini

[2009/02/05 19:57:23 | 00,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbprint.sys

[2009/02/05 19:57:23 | 00,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbprint.sys

[2009/02/05 19:56:45 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Lexmark X1100 Series

[2009/02/05 19:56:44 | 00,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wiafbdrv.dll

[2009/02/05 19:56:44 | 00,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wiafbdrv.dll

[2009/02/05 19:56:44 | 00,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbscan.sys

[2009/02/05 19:56:44 | 00,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbscan.sys

[2009/02/05 17:01:20 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\ELETROSUL

[2009/02/05 16:16:24 | 00,661,784 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\prominp0208_edital.pdf

[2009/02/05 16:10:35 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dados de aplicativos\Adobe

[2009/02/05 15:55:44 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\Adobe

[2009/02/05 15:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution

[2009/02/04 13:30:13 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Dados de aplicativos\DivX

[2009/02/04 13:30:11 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Dados de aplicativos\Publish Providers

[2009/02/04 13:22:24 | 00,002,772 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Register Sound Forge.htm

[2009/02/04 13:13:23 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Dados de aplicativos\Sony

[2009/02/04 13:13:23 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\Sony

[2009/02/04 13:11:18 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Vstplugins

[2009/02/04 13:11:00 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Sony

[2009/02/04 13:03:57 | 00,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages

[2009/02/04 13:01:10 | 00,000,000 | R-SD | C] -- C:\WINDOWS\assembly

[2009/02/04 13:00:35 | 00,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET

[2009/02/04 13:00:01 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Winamp

[2009/02/04 12:57:25 | 00,001,544 | ---- | C] () -- C:\Documents and Settings\Administrador\Desktop\DivX Movies.lnk

[2009/02/04 12:57:25 | 00,000,855 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\DivX Player.lnk

[2009/02/04 12:57:25 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Administrador\Meus documentos\Meus vídeos

[2009/02/04 12:57:04 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\DivX

[2009/02/04 12:42:34 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Dados de aplicativos\Sony Setup

[2009/02/04 12:42:25 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Sony Setup

[2009/02/04 12:42:07 | 00,034,308 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll

[2009/02/04 12:40:17 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\Xenocode

[2009/02/04 12:40:14 | 00,118,016 | ---- | C] (Alcohol Soft Development Team) -- C:\WINDOWS\System32\eoats.dll

[2009/02/04 12:38:34 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Dados de aplicativos\WinRAR

[2009/02/04 12:27:47 | 00,125,318 | ---- | C] () -- C:\WINDOWS\System32\AdobeFnt.lst

[2009/02/04 11:53:10 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\Pinnacle Studio

[2009/02/04 11:52:54 | 00,049,152 | ---- | C] (Pinnacle Systems) -- C:\WINDOWS\System32\PCLEGetGuid.dll

[2009/02/04 11:52:53 | 00,081,920 | ---- | C] (Pinnacle Systems) -- C:\WINDOWS\System32\vdrmux.dll

[2009/02/04 11:52:53 | 00,046,592 | ---- | C] (Pinnacle Systems) -- C:\WINDOWS\System32\vdrcodec.dll

[2009/02/04 11:52:49 | 00,086,016 | ---- | C] (MindVision Software) -- C:\WINDOWS\unvise32.exe

[2009/02/04 11:50:22 | 00,038,232 | ---- | C] () -- C:\WINDOWS\wmprfsky.prx

[2009/02/04 11:50:22 | 00,037,916 | ---- | C] () -- C:\WINDOWS\wmprffra.prx

[2009/02/04 11:50:22 | 00,037,014 | ---- | C] () -- C:\WINDOWS\wmprfhun.prx

[2009/02/04 11:50:22 | 00,036,594 | ---- | C] () -- C:\WINDOWS\wmprfell.prx

[2009/02/04 11:50:22 | 00,035,916 | ---- | C] () -- C:\WINDOWS\wmprfptg.prx

[2009/02/04 11:50:22 | 00,035,822 | ---- | C] () -- C:\WINDOWS\wmprfplk.prx

[2009/02/04 11:50:22 | 00,035,680 | ---- | C] () -- C:\WINDOWS\wmprfita.prx

[2009/02/04 11:50:22 | 00,035,590 | ---- | C] () -- C:\WINDOWS\wmprfesp.prx

[2009/02/04 11:50:22 | 00,035,474 | ---- | C] () -- C:\WINDOWS\wmprfcsy.prx

[2009/02/04 11:50:22 | 00,035,306 | ---- | C] () -- C:\WINDOWS\wmprfrus.prx

[2009/02/04 11:50:22 | 00,033,820 | ---- | C] () -- C:\WINDOWS\WMPrfDeu.prx

[2009/02/04 11:50:22 | 00,033,580 | ---- | C] () -- C:\WINDOWS\wmprfslv.prx

[2009/02/04 11:50:22 | 00,033,314 | ---- | C] () -- C:\WINDOWS\wmprfsve.prx

[2009/02/04 11:50:22 | 00,032,964 | ---- | C] () -- C:\WINDOWS\wmprfnld.prx

[2009/02/04 11:50:22 | 00,032,852 | ---- | C] () -- C:\WINDOWS\wmprfnor.prx

[2009/02/04 11:50:22 | 00,032,022 | ---- | C] () -- C:\WINDOWS\wmprftrk.prx

[2009/02/04 11:50:22 | 00,031,764 | ---- | C] () -- C:\WINDOWS\wmprffin.prx

[2009/02/04 11:50:22 | 00,031,712 | ---- | C] () -- C:\WINDOWS\wmprfdan.prx

[2009/02/04 11:50:22 | 00,028,718 | ---- | C] () -- C:\WINDOWS\wmprfheb.prx

[2009/02/04 11:50:22 | 00,023,304 | ---- | C] () -- C:\WINDOWS\WMPrfJpn.prx

[2009/02/04 11:50:22 | 00,022,338 | ---- | C] () -- C:\WINDOWS\WMPrfKor.prx

[2009/02/04 11:50:22 | 00,018,804 | ---- | C] () -- C:\WINDOWS\WMPrfCHT.prx

[2009/02/04 11:50:21 | 00,061,440 | ---- | C] (Pinnacle Systems) -- C:\WINDOWS\System32\pclepim1.dll

[2009/02/04 11:50:21 | 00,060,416 | ---- | C] ( Pinnacle System GmbH) -- C:\WINDOWS\System32\miroDV2Bmp.dll

[2009/02/04 11:50:21 | 00,033,336 | ---- | C] () -- C:\WINDOWS\WMPrfAra.prx

[2009/02/04 11:50:21 | 00,019,492 | ---- | C] () -- C:\WINDOWS\WMPrfCHS.prx

[2009/02/04 11:50:19 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Pinnacle

[2009/02/04 11:01:16 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\LinhaDefensiva

[2009/02/04 10:55:07 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\Meus arquivos recebidos

[2009/02/04 10:45:45 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\The Sims 2

[2009/02/04 10:37:31 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Administrador\Meus documentos\2008-05-22-1935-24

[2009/02/04 10:37:29 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\2008-02-26-1329-34

[2009/02/04 10:37:26 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\2008-02-20-1110-32

[2009/02/04 10:37:22 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\2008-01-22-1448-21

[2009/02/04 10:37:19 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\PROVAS

[2009/02/04 10:36:39 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\FOTOS CORAL

[2009/02/04 10:36:37 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\fotos

[2009/02/04 10:36:36 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\Fotoos ;))

[2009/02/04 10:36:36 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\Foto 3 por 4

[2009/02/04 10:36:35 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\EXERCICIOS ELETRONICA

[2009/02/04 10:36:35 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\ESTUDAR PROMIMP

[2009/02/04 10:36:32 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\ELETRICIDADE

[2009/02/04 10:36:31 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\DIPLOMA

[2009/02/04 10:36:31 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\concurso promimp

[2009/02/04 10:36:31 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\Comprovantes Concuros

[2009/02/04 10:36:30 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\CEEE Edital Data, Hora e Local de Prova_arquivos

[2009/02/04 10:36:29 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\algumaas ;0

[2009/02/04 10:36:29 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\2009-01-28-2208-33

[2009/02/04 10:36:28 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\2009-01-20-1247-45

[2009/02/04 10:36:27 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\2009-01-03-1518-29

[2009/02/04 10:36:27 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\2008-12-23-1148-43

[2009/02/04 10:36:26 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\2008-12-18-1132-03

[2009/02/04 10:36:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\2008-12-17-1357-44

[2009/02/04 10:36:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\2008-12-09-1431-51

[2009/02/04 10:36:24 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\2008-12-08-0838-43

[2009/02/04 10:36:24 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\2008-12-06-1249-37

[2009/02/04 10:36:23 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\2008-12-05-1614-55

[2009/02/04 10:36:21 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\2008-12-04-1710-46

[2009/02/04 10:36:19 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\2008-11-28-2155-42

[2009/02/04 10:36:19 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\2008-11-22-1826-04

[2009/02/04 10:36:16 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\2008-11-19-2135-00

[2009/02/04 10:36:16 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\2008-11-14-1023-23

[2009/02/04 10:36:15 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\2008-11-13-0827-53

[2009/02/04 10:36:14 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\2008-11-11-1944-59

[2009/02/04 10:36:12 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\2008-11-06-1040-09

[2009/02/04 10:36:12 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\2008-10-26-0113-12

[2009/02/04 10:36:10 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\2008-10-24-1751-39

[2009/02/04 10:36:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\2008-10-21-1352-54

[2009/02/04 10:36:07 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\2008-10-15-0843-38

[2009/02/04 10:36:06 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\2008-09-26-0948-07

[2009/02/04 10:36:02 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\2008-09-18-2024-02

[2009/02/04 10:36:02 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\2008-09-16-1831-47

[2009/02/04 10:35:57 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\2008-09-14-1345-29

[2009/02/04 10:35:57 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\2008-06-25-1853-22

[2009/02/04 10:35:55 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\2008-06-24-1129-55

[2009/02/04 10:35:53 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Meus documentos\2008-06-10-1045-17

[2009/02/04 10:02:23 | 00,000,656 | ---- | C] () -- C:\Documents and Settings\Administrador\Desktop\CoolSMS.lnk

[2009/02/04 10:02:12 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\CoolSMS

[2009/02/03 20:22:32 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Windows Live SkyDrive

[2009/02/03 19:30:31 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documentos\microsoft

[2009/02/03 19:13:27 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Arquivos comuns\Windows Live

[2009/02/03 19:08:06 | 00,054,352 | ---- | C] () -- C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\GDIPFONTCACHEV1.DAT

[2009/02/03 19:06:57 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\WinRAR

[2009/02/03 19:05:58 | 00,000,000 | -HSD | C] -- C:\RECYCLER

[2009/02/03 19:03:11 | 00,051,840 | ---- | C] () -- C:\Documents and Settings\Administrador\Desktop\BrTurbo_config.exe

[2009/02/03 18:58:45 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\Identities

[2009/02/03 18:24:24 | 00,001,801 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\ProShow Gold.lnk

[2009/02/03 18:24:12 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Photodex

[2009/02/03 18:19:16 | 00,000,000 | ---D | C] -- C:\Archivos de programa

[2009/02/03 18:15:51 | 00,016,516 | ---- | C] () -- C:\WINDOWS\System32\BMXStateBkp-{00000000-00000000-0000000A-00001102-00000002-80651102}.rfx

[2009/02/03 18:15:51 | 00,016,516 | ---- | C] () -- C:\WINDOWS\System32\BMXState-{00000000-00000000-0000000A-00001102-00000002-80651102}.rfx

[2009/02/03 18:15:51 | 00,002,064 | ---- | C] () -- C:\WINDOWS\System32\settingsbkup.sfm

[2009/02/03 18:15:51 | 00,002,064 | ---- | C] () -- C:\WINDOWS\System32\settings.sfm

[2009/02/03 18:15:51 | 00,000,024 | ---- | C] () -- C:\WINDOWS\System32\DVCStateBkp-{00000000-00000000-0000000A-00001102-00000002-80651102}.dat

[2009/02/03 18:15:51 | 00,000,024 | ---- | C] () -- C:\WINDOWS\System32\DVCState-{00000000-00000000-0000000A-00001102-00000002-80651102}.dat

[2009/02/03 18:07:44 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Dados de aplicativos\Macromedia

[2009/02/03 17:43:32 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Microsoft Works

[2009/02/03 17:43:24 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\MSBuild

[2009/02/03 17:43:04 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Microsoft Visual Studio

[2009/02/03 17:43:04 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Arquivos comuns\DESIGNER

[2009/02/03 17:39:57 | 00,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW

[2009/02/03 17:39:31 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\Microsoft Help

[2009/02/03 17:39:16 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Microsoft Office

[2009/02/03 17:39:15 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dados de aplicativos\Microsoft Help

[2009/02/03 17:38:45 | 00,000,000 | RH-D | C] -- C:\MSOCache

[2009/02/03 17:32:52 | 00,001,111 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Registro do Adobe PhotoDeluxe Home Edition 4.0.lnk

[2009/02/03 17:31:35 | 00,092,672 | ---- | C] (Mabry Software, Inc. - AS) -- C:\WINDOWS\System32\mmail32as.ocx

[2009/02/03 17:31:35 | 00,001,857 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Adobe PhotoDeluxe Home Edition 4.0.lnk

[2009/02/03 17:31:30 | 00,403,968 | ---- | C] (Eastman Kodak Company) -- C:\WINDOWS\System32\PDC_SDK.dll

[2009/02/03 17:31:30 | 00,215,040 | ---- | C] (Eastman Kodak Company) -- C:\WINDOWS\System32\SC.dll

[2009/02/03 17:31:30 | 00,074,240 | ---- | C] (Eastman Kodak Company) -- C:\WINDOWS\System32\ProFire.dll

[2009/02/03 17:31:30 | 00,059,904 | ---- | C] (Nikon Corp.) -- C:\WINDOWS\System32\Nkdserl.dll

[2009/02/03 17:31:30 | 00,034,304 | ---- | C] (Nikon Corp.) -- C:\WINDOWS\System32\Nkdscsi.dll

[2009/02/03 17:31:30 | 00,023,850 | ---- | C] () -- C:\WINDOWS\System32\llps601.hlp

[2009/02/03 17:31:30 | 00,022,249 | ---- | C] () -- C:\WINDOWS\System32\llps350.hlp

[2009/02/03 17:31:30 | 00,001,478 | ---- | C] () -- C:\WINDOWS\Dc240.inf

[2009/02/03 17:31:30 | 00,001,115 | ---- | C] () -- C:\WINDOWS\KodakDig.inf

[2009/02/03 17:31:30 | 00,000,381 | ---- | C] () -- C:\WINDOWS\System32\llps601.cnt

[2009/02/03 17:31:30 | 00,000,381 | ---- | C] () -- C:\WINDOWS\System32\llps350.cnt

[2009/02/03 17:31:29 | 00,446,976 | ---- | C] (Eastman Kodak Company) -- C:\WINDOWS\System32\ekfpixio130.dll

[2009/02/03 17:31:29 | 00,308,224 | ---- | C] (Nikon Corp.) -- C:\WINDOWS\System32\E300.dll

[2009/02/03 17:31:29 | 00,230,400 | ---- | C] (Eastman Kodak Company) -- C:\WINDOWS\System32\DC265.dll

[2009/02/03 17:31:29 | 00,168,960 | ---- | C] (Canon, Inc.) -- C:\WINDOWS\System32\deimg.dll

[2009/02/03 17:31:29 | 00,138,240 | ---- | C] (Eastman Kodak Company) -- C:\WINDOWS\System32\ekfpixexif.dll

[2009/02/03 17:31:29 | 00,119,296 | ---- | C] (Eastman Kodak) -- C:\WINDOWS\System32\Dc50v11_32.dll

[2009/02/03 17:31:29 | 00,110,592 | ---- | C] (Eastman Kodak Company) -- C:\WINDOWS\System32\DC240.dll

[2009/02/03 17:31:29 | 00,100,864 | ---- | C] () -- C:\WINDOWS\System32\Dc50ip32.dll

[2009/02/03 17:31:29 | 00,097,280 | ---- | C] (Eastman Kodak Company) -- C:\WINDOWS\System32\ekfpixjpeg.dll

[2009/02/03 17:31:29 | 00,071,168 | ---- | C] (Eastman Kodak Company) -- C:\WINDOWS\System32\ekexifio.dll

[2009/02/03 17:31:29 | 00,068,096 | ---- | C] (Eastman Kodak Company) -- C:\WINDOWS\System32\ekfpixpsets.dll

[2009/02/03 17:31:29 | 00,065,864 | ---- | C] () -- C:\WINDOWS\System32\Digita.sys

[2009/02/03 17:31:29 | 00,059,392 | ---- | C] (SANYO Electric Co., Ltd.) -- C:\WINDOWS\System32\Camapi32.dll

[2009/02/03 17:31:29 | 00,045,568 | ---- | C] (Eastman Kodak Company) -- C:\WINDOWS\System32\DC210V204_32.dll

[2009/02/03 17:31:29 | 00,045,568 | ---- | C] (Eastman Kodak Company) -- C:\WINDOWS\System32\DC210.dll

[2009/02/03 17:31:29 | 00,043,520 | ---- | C] (Eastman Kodak Company) -- C:\WINDOWS\System32\ekfpixaudio.dll

[2009/02/03 17:31:29 | 00,032,768 | ---- | C] (Eastman Kodak Company) -- C:\WINDOWS\System32\F210.dll

[2009/02/03 17:31:29 | 00,032,768 | ---- | C] (Adobe Systems, Inc.) -- C:\WINDOWS\System32\PLUGIN.DLL

[2009/02/03 17:31:29 | 00,029,696 | ---- | C] (Nikon Corp.) -- C:\WINDOWS\System32\E300str.dll

[2009/02/03 17:31:29 | 00,026,624 | ---- | C] (FotoNation inc.) -- C:\WINDOWS\System32\camcpl.cpl

[2009/02/03 17:31:29 | 00,019,968 | ---- | C] (SANYO Electric Co., Ltd.) -- C:\WINDOWS\System32\Comm32.dll

[2009/02/03 17:31:29 | 00,007,808 | ---- | C] () -- C:\WINDOWS\System32\dc240u.sys

[2009/02/03 17:31:29 | 00,006,144 | ---- | C] () -- C:\WINDOWS\System32\ImgLibLead.dll

[2009/02/03 17:31:29 | 00,004,608 | ---- | C] (Eastman Kodak Company) -- C:\WINDOWS\System32\ekfpixguid.dll

[2009/02/03 17:31:27 | 01,436,672 | ---- | C] (LightWork Design Ltd.) -- C:\WINDOWS\System32\Kzlw20.dll

[2009/02/03 17:31:26 | 00,176,128 | ---- | C] (LightWork Design Ltd.) -- C:\WINDOWS\System32\Kzdi20.dll

[2009/02/03 17:31:23 | 00,249,856 | ---- | C] (Play Incorporated) -- C:\WINDOWS\System32\Snap32n.dll

[2009/02/03 17:31:23 | 00,210,944 | ---- | C] () -- C:\WINDOWS\System32\MSVCRT10.DLL

[2009/02/03 17:31:23 | 00,072,704 | ---- | C] () -- C:\WINDOWS\PhotoDeluxe.scr

[2009/02/03 17:31:23 | 00,048,640 | ---- | C] () -- C:\WINDOWS\catalogSubInstaller.exe

[2009/02/03 17:31:23 | 00,000,012 | ---- | C] () -- C:\WINDOWS\Adobereg.db

[2009/02/03 17:31:23 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Color

[2009/02/03 17:31:13 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Arquivos comuns\FotoNation

[2009/02/03 17:25:41 | 00,001,591 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\AvRack.lnk

[2009/02/03 17:25:41 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Realtek Sound Manager

[2009/02/03 17:25:39 | 00,000,164 | R--- | C] () -- C:\WINDOWS\avrack.ini

[2009/02/03 17:25:39 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\AvRack

[2009/02/03 17:25:31 | 00,156,672 | R--- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll

[2009/02/03 17:25:31 | 00,040,960 | R--- | C] () -- C:\WINDOWS\System32\ChCfg.exe

[2009/02/03 17:25:26 | 00,141,016 | R--- | C] () -- C:\WINDOWS\System32\ALSNDMGR.WAV

[2009/02/03 17:24:17 | 03,374,149 | ---- | C] () -- C:\WINDOWS\{00000000-00000000-0000000A-00001102-00000002-80651102}.BAK

[2009/02/03 17:24:04 | 03,374,149 | ---- | C] () -- C:\WINDOWS\{00000000-00000000-0000000A-00001102-00000002-80651102}.CDF

[2009/02/03 17:22:49 | 00,025,296 | ---- | C] () -- C:\WINDOWS\System32\BMXCtrlState-{00000000-00000000-0000000A-00001102-00000002-80651102}.rfx

[2009/02/03 17:22:49 | 00,025,296 | ---- | C] () -- C:\WINDOWS\System32\BMXBkpCtrlState-{00000000-00000000-0000000A-00001102-00000002-80651102}.rfx

[2009/02/03 17:22:25 | 00,060,928 | R--- | C] (VIA Technologies inc,.ltd) -- C:\WINDOWS\System32\drivers\viamraid.sys

[2009/02/03 17:21:11 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\VIA

[2009/02/03 17:18:42 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Arquivos comuns\Adobe

[2009/02/03 17:18:42 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Adobe

[2009/02/03 17:17:50 | 00,053,552 | ---- | C] (Creative® Technology Ltd.) -- C:\WINDOWS\CTCCW.DLL

[2009/02/03 17:17:50 | 00,000,231 | ---- | C] () -- C:\WINDOWS\AC3API.INI

[2009/02/03 17:17:50 | 00,000,128 | ---- | C] () -- C:\WINDOWS\SBWIN.INI

[2009/02/03 17:17:49 | 01,048,576 | ---- | C] () -- C:\WINDOWS\System32\SFMAN.DAT

[2009/02/03 17:17:49 | 00,149,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MFCANS32.DLL

[2009/02/03 17:17:49 | 00,108,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MFCUIA32.DLL

[2009/02/03 17:17:49 | 00,054,784 | ---- | C] (Blue Sky Software Corporation.) -- C:\WINDOWS\System32\INETWH32.DLL

[2009/02/03 17:17:49 | 00,026,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CTL3D.DLL

continentalsom · Fevereiro 25, 2009

[2009/02/03 17:17:47 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Defaults

[2009/02/03 17:17:39 | 00,006,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\splitter.sys

[2009/02/03 17:17:39 | 00,006,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\splitter.sys

[2009/02/03 17:17:28 | 00,083,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\wdmaud.sys

[2009/02/03 17:17:28 | 00,083,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wdmaud.sys

[2009/02/03 17:17:25 | 00,052,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\DMusic.sys

[2009/02/03 17:17:25 | 00,052,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmusic.sys

[2009/02/03 17:17:23 | 00,056,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\swmidi.sys

[2009/02/03 17:17:23 | 00,056,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swmidi.sys

[2009/02/03 17:17:20 | 00,142,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\aec.sys

[2009/02/03 17:17:20 | 00,142,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aec.sys

[2009/02/03 17:17:17 | 00,172,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\kmixer.sys

[2009/02/03 17:17:17 | 00,172,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kmixer.sys

[2009/02/03 17:17:15 | 00,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmkaud.sys

[2009/02/03 17:17:15 | 00,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmkaud.sys

[2009/02/03 17:17:13 | 00,060,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sysaudio.sys

[2009/02/03 17:17:13 | 00,060,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sysaudio.sys

[2009/02/03 17:17:10 | 00,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\MSKSSRV.sys

[2009/02/03 17:17:10 | 00,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mskssrv.sys

[2009/02/03 17:17:08 | 00,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\MSPQM.sys

[2009/02/03 17:17:08 | 00,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspqm.sys

[2009/02/03 17:17:04 | 00,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\MSPCLOCK.sys

[2009/02/03 17:17:04 | 00,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspclock.sys

[2009/02/03 17:16:58 | 00,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys

[2009/02/03 17:16:58 | 00,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\portcls.sys

[2009/02/03 17:16:58 | 00,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax

[2009/02/03 17:16:58 | 00,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksproxy.ax

[2009/02/03 17:16:58 | 00,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys

[2009/02/03 17:16:58 | 00,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmk.sys

[2009/02/03 17:16:58 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll

[2009/02/03 17:16:58 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksuser.dll

[2009/02/03 17:16:52 | 00,037,727 | ---- | C] () -- C:\WINDOWS\System32\Emu10kx.ini

[2009/02/03 17:16:52 | 00,020,480 | ---- | C] (Creative Technology Limited) -- C:\WINDOWS\INRESBRZ.DLL

[2009/02/03 17:16:52 | 00,000,029 | ---- | C] () -- C:\WINDOWS\System32\ctzapxx.ini

[2009/02/03 17:16:52 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Data

[2009/02/03 17:16:47 | 00,004,398 | ---- | C] () -- C:\WINDOWS\System32\SBLive.ico

[2009/02/03 17:16:47 | 00,003,126 | ---- | C] () -- C:\WINDOWS\System32\Live.bmp

[2009/02/03 17:16:46 | 02,259,067 | ---- | C] () -- C:\WINDOWS\System32\default.ecw

[2009/02/03 17:16:46 | 00,179,669 | ---- | C] () -- C:\WINDOWS\System32\ctstatic.dat

[2009/02/03 17:16:46 | 00,164,044 | ---- | C] () -- C:\WINDOWS\System32\ctdlang.dat

[2009/02/03 17:16:46 | 00,113,373 | ---- | C] () -- C:\WINDOWS\System32\ctbasicw.dat

[2009/02/03 17:16:46 | 00,113,273 | ---- | C] () -- C:\WINDOWS\System32\CTBAS2W.DAT

[2009/02/03 17:16:46 | 00,044,055 | ---- | C] () -- C:\WINDOWS\System32\ctdaught.dat

[2009/02/03 17:16:37 | 00,184,320 | ---- | C] () -- C:\WINDOWS\PSCONV.EXE

[2009/02/03 17:16:37 | 00,176,128 | ---- | C] (Creative Technology Limited) -- C:\WINDOWS\READREG.EXE

[2009/02/03 17:16:37 | 00,036,864 | ---- | C] () -- C:\WINDOWS\System32\REGPLIB.EXE

[2009/02/03 17:16:36 | 00,077,824 | ---- | C] (Creative Labs) -- C:\WINDOWS\System32\EAXAC3.DLL

[2009/02/03 17:16:36 | 00,049,152 | ---- | C] () -- C:\WINDOWS\System32\KILLAPPS.EXE

[2009/02/03 17:16:36 | 00,000,180 | ---- | C] () -- C:\WINDOWS\System32\KILL.INI

[2009/02/03 17:16:36 | 00,000,059 | ---- | C] () -- C:\WINDOWS\System32\DEFAULT8.SFM

[2009/02/03 17:16:36 | 00,000,059 | ---- | C] () -- C:\WINDOWS\System32\DEFAULT4.SFM

[2009/02/03 17:16:36 | 00,000,059 | ---- | C] () -- C:\WINDOWS\System32\DEFAULT.SFM

[2009/02/03 17:16:34 | 03,206,822 | ---- | C] () -- C:\WINDOWS\CTDVAUDY.CDF

[2009/02/03 17:16:33 | 03,735,544 | ---- | C] () -- C:\WINDOWS\CTDV10K2.CDF

[2009/02/03 17:16:32 | 03,373,917 | ---- | C] () -- C:\WINDOWS\CTDV10K1.CDF

[2009/02/03 17:16:31 | 02,167,684 | ---- | C] () -- C:\WINDOWS\System32\CT2MGM.SF2

[2009/02/03 17:16:31 | 01,048,576 | ---- | C] () -- C:\WINDOWS\System32\CT1MGM.ROM

[2009/02/03 17:16:31 | 00,065,536 | ---- | C] ( ) -- C:\WINDOWS\System32\dllcache\a3d.dll

[2009/02/03 17:16:31 | 00,065,536 | ---- | C] ( ) -- C:\WINDOWS\System32\a3d.dll

[2009/02/03 17:15:48 | 00,000,000 | -H-D | C] -- C:\Arquivos de programas\InstallShield Installation Information

[2009/02/03 17:12:43 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Creative

[2009/02/03 17:12:41 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Arquivos comuns\InstallShield

[2009/02/03 17:06:41 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Dados de aplicativos\Adobe

[2009/02/03 15:30:32 | 00,000,000 | ---D | C] -- C:\WINDOWS\Minidump

[2009/02/03 15:26:17 | 10,850,100 | -H-- | C] () -- C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\IconCache.db

[2009/02/03 15:25:45 | 00,512,096 | ---- | C] (Eset ) -- C:\WINDOWS\System32\drivers\amon.sys

[2009/02/03 15:25:45 | 00,298,104 | ---- | C] (Eset ) -- C:\WINDOWS\System32\imon.dll

[2009/02/03 15:25:45 | 00,015,424 | ---- | C] () -- C:\WINDOWS\System32\drivers\nod32drv.sys

[2009/02/03 15:23:06 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Eset

[2009/02/03 15:21:22 | 00,000,104 | ---- | C] () -- C:\Documents and Settings\Administrador\Desktop\Meu computador.lnk

[2009/02/03 15:18:53 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Dados de aplicativos\Identities

[2009/02/03 15:18:51 | 00,000,000 | -H-D | C] -- C:\Arquivos de programas\Uninstall Information

[2009/02/03 15:18:50 | 00,000,087 | -HS- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\desktop.ini

[2009/02/03 15:18:50 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Administrador\Meus documentos\Minhas músicas

[2009/02/03 15:18:50 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Administrador\Meus documentos\Minhas imagens

[2009/02/03 15:18:46 | 00,000,084 | -HS- | C] () -- C:\Documents and Settings\Administrador\Menu Iniciar\Programas\Inicializar\desktop.ini

[2009/02/03 15:18:46 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\Administrador\Dados de aplicativos\desktop.ini

[2009/02/03 15:18:46 | 00,000,000 | --SD | C] -- C:\Documents and Settings\Administrador\Dados de aplicativos\Microsoft

[2009/02/03 15:18:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\Microsoft

[2009/02/03 15:11:08 | 00,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution

[2009/02/03 15:10:58 | 00,000,006 | -H-- | C] () -- C:\WINDOWS\tasks\SA.DAT

[2009/02/03 15:10:58 | 00,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft

[2009/02/03 15:10:58 | 00,000,000 | ---D | C] -- C:\WINDOWS\Prefetch

[2009/02/03 15:10:52 | 00,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD

[2009/02/03 15:09:30 | 00,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat

[2009/02/03 15:09:20 | 00,028,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xjis.nls

[2009/02/03 15:09:14 | 00,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winzm.ime

[2009/02/03 15:09:13 | 00,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsp.ime

[2009/02/03 15:09:13 | 00,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winpy.ime

[2009/02/03 15:09:13 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winime.ime

[2009/02/03 15:09:12 | 00,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winar30.ime

[2009/02/03 15:09:12 | 00,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wingb.ime

[2009/02/03 15:09:11 | 00,041,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.dll

[2009/02/03 15:09:11 | 00,031,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.sys

[2009/02/03 15:09:10 | 00,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wam51.dll

[2009/02/03 15:09:10 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamreg51.dll

[2009/02/03 15:09:10 | 00,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamps51.dll

[2009/02/03 15:09:09 | 00,368,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svc.dll

[2009/02/03 15:09:09 | 00,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ext.dll

[2009/02/03 15:09:09 | 00,048,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32.dll

[2009/02/03 15:09:09 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svapi.dll

[2009/02/03 15:09:09 | 00,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ctrs51.dll

[2009/02/03 15:09:08 | 00,426,041 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicepad.dll

[2009/02/03 15:09:08 | 00,086,073 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicesub.dll

[2009/02/03 15:09:06 | 00,103,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uihelper.dll

[2009/02/03 15:09:06 | 00,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniime.dll

[2009/02/03 15:09:06 | 00,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unicdime.ime

[2009/02/03 15:09:05 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe

[2009/02/03 15:09:04 | 00,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintsetp.exe

[2009/02/03 15:09:04 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tools.dll

[2009/02/03 15:09:04 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmigrate.dll

[2009/02/03 15:09:03 | 00,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlgnt.ime

[2009/02/03 15:09:03 | 00,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\thawbrkr.dll

[2009/02/03 15:09:03 | 00,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlphr.exe

[2009/02/03 15:09:02 | 00,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdipx.sys

[2009/02/03 15:09:02 | 00,019,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdspx.sys

[2009/02/03 15:09:02 | 00,013,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdasync.sys

[2009/02/03 15:09:01 | 00,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\svcext51.dll

[2009/02/03 15:09:00 | 00,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sspifilt.dll

[2009/02/03 15:09:00 | 00,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ssinc51.dll

[2009/02/03 15:09:00 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\status.dll

[2009/02/03 15:08:59 | 00,101,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusbusd.dll

[2009/02/03 15:08:58 | 00,143,422 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\softkey.dll

[2009/02/03 15:08:57 | 00,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpsmir.dll

[2009/02/03 15:08:57 | 00,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpthrd.dll

[2009/02/03 15:08:57 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpstup.dll

[2009/02/03 15:08:57 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmptrap.exe

[2009/02/03 15:08:57 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_snprfdll.dll

[2009/02/03 15:08:57 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpmib.dll

[2009/02/03 15:08:56 | 00,463,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsvc.dll

[2009/02/03 15:08:56 | 00,358,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpincl.dll

[2009/02/03 15:08:56 | 00,259,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpcl.dll

[2009/02/03 15:08:56 | 00,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmp.exe

[2009/02/03 15:08:55 | 00,236,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smi2smir.exe

[2009/02/03 15:08:55 | 00,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb6w.dll

[2009/02/03 15:08:55 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsm.dll

[2009/02/03 15:08:55 | 00,012,800 | ---- | C] (Microsoft Corporation

) -- C:\WINDOWS\System32\dllcache\EXCH_smtpctrs.dll

[2009/02/03 15:08:55 | 00,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpapi.dll

[2009/02/03 15:08:55 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smimsgif.dll

[2009/02/03 15:08:55 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsy.dll

[2009/02/03 15:08:54 | 00,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm9aw.dll

[2009/02/03 15:08:54 | 00,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma3w.dll

[2009/02/03 15:08:54 | 00,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8cw.dll

[2009/02/03 15:08:54 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm93w.dll

[2009/02/03 15:08:54 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm92w.dll

[2009/02/03 15:08:54 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm90w.dll

[2009/02/03 15:08:54 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8dw.dll

[2009/02/03 15:08:54 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8aw.dll

[2009/02/03 15:08:54 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm89w.dll

[2009/02/03 15:08:53 | 00,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm87w.dll

[2009/02/03 15:08:53 | 00,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm81w.dll

[2009/02/03 15:08:53 | 00,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm59w.dll

[2009/02/03 15:08:53 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\simptcp.dll

[2009/02/03 15:08:50 | 00,221,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\seo.dll

[2009/02/03 15:08:50 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_seos.dll

[2009/02/03 15:08:49 | 00,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_scripto.dll

[2009/02/03 15:08:48 | 00,080,896 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll

[2009/02/03 15:08:48 | 00,080,896 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll

[2009/02/03 15:08:48 | 00,029,184 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll

[2009/02/03 15:08:48 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rw001ext.dll

[2009/02/03 15:08:48 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwnh.dll

[2009/02/03 15:08:47 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\romanime.ime

[2009/02/03 15:08:47 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcref.dll

[2009/02/03 15:08:46 | 00,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe

[2009/02/03 15:08:46 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe

[2009/02/03 15:08:45 | 00,020,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ramdisk.sys

[2009/02/03 15:08:44 | 00,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quick.ime

[2009/02/03 15:08:44 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe

[2009/02/03 15:08:44 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe

[2009/02/03 15:08:43 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pwsdata.dll

[2009/02/03 15:08:42 | 00,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxviceo.dll

[2009/02/03 15:08:42 | 00,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prcp.nls

[2009/02/03 15:08:42 | 00,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prc.nls

[2009/02/03 15:08:42 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxmcro.dll

[2009/02/03 15:08:41 | 00,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlgnt.ime

[2009/02/03 15:08:41 | 00,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll

[2009/02/03 15:08:41 | 00,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlphr.exe

[2009/02/03 15:08:41 | 00,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmigrate.dll

[2009/02/03 15:08:41 | 00,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlcsd.dll

[2009/02/03 15:08:41 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxgl.dll

[2009/02/03 15:08:40 | 00,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phon.ime

[2009/02/03 15:08:40 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\permchk.dll

[2009/02/03 15:08:39 | 00,036,927 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs411.dll

[2009/02/03 15:08:39 | 00,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pagecnt.dll

[2009/02/03 15:08:39 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs404.dll

[2009/02/03 15:08:39 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs804.dll

[2009/02/03 15:08:39 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs412.dll

[2009/02/03 15:08:36 | 00,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nsepm.dll

[2009/02/03 15:08:36 | 00,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_ntfsdrv.dll

[2009/02/03 15:08:35 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nextlink.dll

[2009/02/03 15:08:33 | 00,229,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\multibox.dll

[2009/02/03 15:08:33 | 00,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtstocom.exe

[2009/02/03 15:08:30 | 00,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiregmv.exe

[2009/02/03 15:08:29 | 01,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.lex

[2009/02/03 15:08:29 | 00,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.dll

[2009/02/03 15:08:23 | 00,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.sys

[2009/02/03 15:08:23 | 00,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.dll

[2009/02/03 15:08:23 | 00,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\metada51.dll

[2009/02/03 15:08:23 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mdsync.dll

[2009/02/03 15:08:23 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migregdb.exe

[2009/02/03 15:08:22 | 00,037,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\md5filt.dll

[2009/02/03 15:08:21 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_mailmsg.dll

[2009/02/03 15:08:21 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lprmon.dll

[2009/02/03 15:08:20 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lmmib2.dll

[2009/02/03 15:08:20 | 00,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lpdsvc.dll

[2009/02/03 15:08:20 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logscrpt.dll

[2009/02/03 15:08:20 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lonsint.dll

[2009/02/03 15:08:19 | 01,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex

[2009/02/03 15:08:19 | 00,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\korwbrkr.dll

[2009/02/03 15:08:19 | 00,047,066 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ksc.nls

[2009/02/03 15:08:18 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth3.dll

[2009/02/03 15:08:18 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth2.dll

[2009/02/03 15:08:18 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdvntc.dll

[2009/02/03 15:08:18 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdusa.dll

[2009/02/03 15:08:18 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdurdu.dll

[2009/02/03 15:08:17 | 00,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecat.dll

[2009/02/03 15:08:17 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecnt.dll

[2009/02/03 15:08:17 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec95.dll

[2009/02/03 15:08:17 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth1.dll

[2009/02/03 15:08:17 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth0.dll

[2009/02/03 15:08:17 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr2.dll

[2009/02/03 15:08:17 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr1.dll

[2009/02/03 15:08:16 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41a.dll

[2009/02/03 15:08:16 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41j.dll

[2009/02/03 15:08:16 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinpun.dll

[2009/02/03 15:08:16 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintel.dll

[2009/02/03 15:08:16 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintam.dll

[2009/02/03 15:08:16 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinmar.dll

[2009/02/03 15:08:16 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinkan.dll

[2009/02/03 15:08:16 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinhin.dll

[2009/02/03 15:08:16 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinguj.dll

[2009/02/03 15:08:15 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdibm02.dll

[2009/02/03 15:08:15 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdindev.dll

[2009/02/03 15:08:15 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdheb.dll

[2009/02/03 15:08:15 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdfa.dll

[2009/02/03 15:08:15 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv2.dll

[2009/02/03 15:08:15 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv1.dll

[2009/02/03 15:08:15 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgeo.dll

[2009/02/03 15:08:14 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdax2.dll

[2009/02/03 15:08:14 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd106n.dll

[2009/02/03 15:08:14 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101a.dll

[2009/02/03 15:08:14 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda3.dll

[2009/02/03 15:08:14 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda2.dll

[2009/02/03 15:08:14 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda1.dll

[2009/02/03 15:08:14 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarmw.dll

[2009/02/03 15:08:14 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarme.dll

[2009/02/03 15:08:13 | 00,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iscomlog.dll

[2009/02/03 15:08:13 | 00,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jupiw.dll

[2009/02/03 15:08:13 | 00,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iwrps.dll

[2009/02/03 15:08:13 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isapips.dll

[2009/02/03 15:08:13 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101.dll

[2009/02/03 15:08:12 | 00,035,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iprip.dll

[2009/02/03 15:08:12 | 00,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoctrs.dll

[2009/02/03 15:08:11 | 00,471,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskdic.dll

[2009/02/03 15:08:11 | 00,315,455 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskf.dll

[2009/02/03 15:08:11 | 00,257,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infocomm.dll

[2009/02/03 15:08:11 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetin51.exe

[2009/02/03 15:08:10 | 00,274,489 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputyc.dll

[2009/02/03 15:08:10 | 00,262,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputy.exe

[2009/02/03 15:08:10 | 00,233,527 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjprw.exe

[2009/02/03 15:08:10 | 00,102,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imlang.dll

[2009/02/03 15:08:10 | 00,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imkrinst.exe

[2009/02/03 15:08:10 | 00,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe

[2009/02/03 15:08:10 | 00,045,109 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpuex.exe

[2009/02/03 15:08:09 | 00,716,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcus.dll

[2009/02/03 15:08:09 | 00,307,257 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.exe

[2009/02/03 15:08:09 | 00,208,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpmig.exe

[2009/02/03 15:08:09 | 00,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe

[2009/02/03 15:08:09 | 00,155,705 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdsvr.exe

[2009/02/03 15:08:09 | 00,081,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.dll

[2009/02/03 15:08:09 | 00,057,398 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdadm.exe

[2009/02/03 15:08:08 | 00,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81k.dll

[2009/02/03 15:08:08 | 00,368,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcic.dll

[2009/02/03 15:08:08 | 00,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81.ime

[2009/02/03 15:08:08 | 00,311,359 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsv.exe

[2009/02/03 15:08:08 | 00,102,463 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsm.dll

[2009/02/03 15:08:07 | 00,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex

[2009/02/03 15:08:07 | 00,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrcic.dll

[2009/02/03 15:08:07 | 00,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekr61.ime

[2009/02/03 15:08:07 | 00,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmbx.dll

[2009/02/03 15:08:07 | 00,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmig.exe

[2009/02/03 15:08:07 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iissync.exe

[2009/02/03 15:08:07 | 00,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismui.dll

[2009/02/03 15:08:06 | 00,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iische51.dll

[2009/02/03 15:08:06 | 00,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iislog51.dll

[2009/02/03 15:08:06 | 00,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisclex4.dll

[2009/02/03 15:08:06 | 00,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisadmin.dll

[2009/02/03 15:08:06 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iiscrmap.dll

[2009/02/03 15:08:06 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisfecnv.dll

[2009/02/03 15:08:01 | 10,129,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxkor.dll

[2009/02/03 15:07:57 | 13,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll

[2009/02/03 15:07:53 | 10,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxcht.dll

[2009/02/03 15:07:53 | 00,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpext.dll

[2009/02/03 15:07:53 | 00,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpod51.dll

[2009/02/03 15:07:53 | 00,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hostmib.dll

[2009/02/03 15:07:53 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpmb51.dll

[2009/02/03 15:07:52 | 00,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex

[2009/02/03 15:07:52 | 00,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hanjadic.dll

[2009/02/03 15:07:51 | 00,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gzip.dll

[2009/02/03 15:07:50 | 00,562,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsst.dll

[2009/02/03 15:07:50 | 00,400,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsxp32.dll

[2009/02/03 15:07:50 | 00,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxstiff.dll

[2009/02/03 15:07:50 | 00,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssvc.exe

[2009/02/03 15:07:50 | 00,246,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxst30.dll

[2009/02/03 15:07:50 | 00,195,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxswzrd.dll

[2009/02/03 15:07:50 | 00,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsui.dll

[2009/02/03 15:07:49 | 00,285,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscomex.dll

[2009/02/03 15:07:49 | 00,234,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscover.exe

[2009/02/03 15:07:49 | 00,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsevent.dll

[2009/02/03 15:07:49 | 00,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsroute.dll

[2009/02/03 15:07:49 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsdrv.dll

[2009/02/03 15:07:49 | 00,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsmon.dll

[2009/02/03 15:07:49 | 00,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsext32.dll

[2009/02/03 15:07:49 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssend.exe

[2009/02/03 15:07:49 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsperf.dll

[2009/02/03 15:07:49 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsres.dll

[2009/02/03 15:07:48 | 00,451,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsapi.dll

[2009/02/03 15:07:48 | 00,142,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclnt.exe

[2009/02/03 15:07:48 | 00,137,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclntr.dll

[2009/02/03 15:07:48 | 00,127,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsv251.dll

[2009/02/03 15:07:48 | 00,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscfgwz.dll

[2009/02/03 15:07:48 | 00,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscom.dll

[2009/02/03 15:07:48 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpmib.dll

[2009/02/03 15:07:47 | 00,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll

[2009/02/03 15:07:47 | 00,024,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmcgi.exe

[2009/02/03 15:07:47 | 00,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmdll.dll

[2009/02/03 15:07:47 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpctrs2.dll

[2009/02/03 15:07:47 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftlx041e.dll

[2009/02/03 15:07:46 | 00,618,605 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4autl.dll

[2009/02/03 15:07:46 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_fcachdll.dll

[2009/02/03 15:07:46 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe

[2009/02/03 15:07:46 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\f3ahvoas.dll

[2009/02/03 15:07:45 | 00,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntagnt.dll

[2009/02/03 15:07:45 | 00,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntwin.exe

[2009/02/03 15:07:45 | 00,045,568 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll

[2009/02/03 15:07:45 | 00,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\et4000.sys

[2009/02/03 15:07:45 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntcmd.exe

[2009/02/03 15:07:45 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\exstrace.dll

[2009/02/03 15:07:44 | 00,514,587 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\edb500.dll

[2009/02/03 15:07:44 | 00,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll

[2009/02/03 15:07:44 | 00,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll

[2009/02/03 15:07:39 | 00,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dayi.ime

[2009/02/03 15:07:39 | 00,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\davcdata.exe

[2009/02/03 15:07:38 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe

[2009/02/03 15:07:37 | 00,057,399 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cplexe.exe

[2009/02/03 15:07:37 | 00,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\convlog.exe

[2009/02/03 15:07:37 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\controt.dll

[2009/02/03 15:07:37 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\counters.dll

[2009/02/03 15:07:36 | 00,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\compfilt.dll

[2009/02/03 15:07:35 | 00,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintsetp.exe

[2009/02/03 15:07:35 | 00,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintime.dll

[2009/02/03 15:07:35 | 00,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll

[2009/02/03 15:07:35 | 00,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintlgnt.ime

[2009/02/03 15:07:34 | 01,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chsbrkr.dll

[2009/02/03 15:07:34 | 00,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtbrkr.dll

[2009/02/03 15:07:34 | 00,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtmbx.dll

[2009/02/03 15:07:34 | 00,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtskdic.dll

[2009/02/03 15:07:33 | 00,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chajei.ime

[2009/02/03 15:07:33 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe

[2009/02/03 15:07:33 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe

[2009/02/03 15:07:33 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe

[2009/02/03 15:07:33 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe

[2009/02/03 15:07:32 | 00,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys

[2009/02/03 15:07:32 | 00,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_iscii.dll

[2009/02/03 15:07:32 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_is2022.dll

[2009/02/03 15:07:31 | 00,218,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_g18030.dll

[2009/02/03 15:07:31 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_864.nls

[2009/02/03 15:07:31 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_862.nls

[2009/02/03 15:07:31 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_858.nls

[2009/02/03 15:07:31 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_720.nls

[2009/02/03 15:07:31 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_870.nls

[2009/02/03 15:07:31 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_708.nls

[2009/02/03 15:07:30 | 00,180,770 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20932.nls

[2009/02/03 15:07:30 | 00,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20949.nls

[2009/02/03 15:07:30 | 00,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20936.nls

[2009/02/03 15:07:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28596.nls

[2009/02/03 15:07:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21027.nls

[2009/02/03 15:07:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21025.nls

[2009/02/03 15:07:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20924.nls

[2009/02/03 15:07:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20880.nls

[2009/02/03 15:07:29 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20871.nls

[2009/02/03 15:07:29 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20838.nls

[2009/02/03 15:07:29 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20833.nls

[2009/02/03 15:07:29 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20424.nls

[2009/02/03 15:07:29 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20423.nls

[2009/02/03 15:07:29 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20420.nls

[2009/02/03 15:07:29 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20297.nls

[2009/02/03 15:07:29 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20290.nls

[2009/02/03 15:07:29 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20285.nls

[2009/02/03 15:07:29 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20284.nls

[2009/02/03 15:07:29 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20280.nls

[2009/02/03 15:07:29 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20278.nls

[2009/02/03 15:07:28 | 00,187,938 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20005.nls

[2009/02/03 15:07:28 | 00,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20004.nls

[2009/02/03 15:07:28 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20277.nls

[2009/02/03 15:07:28 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20273.nls

[2009/02/03 15:07:28 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20269.nls

[2009/02/03 15:07:28 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20108.nls

[2009/02/03 15:07:28 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20107.nls

[2009/02/03 15:07:28 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20106.nls

[2009/02/03 15:07:28 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20105.nls

[2009/02/03 15:07:27 | 00,189,986 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1361.nls

[2009/02/03 15:07:27 | 00,186,402 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20001.nls

[2009/02/03 15:07:27 | 00,185,378 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20003.nls

[2009/02/03 15:07:27 | 00,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20000.nls

[2009/02/03 15:07:27 | 00,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20002.nls

[2009/02/03 15:07:27 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1149.nls

[2009/02/03 15:07:27 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1148.nls

[2009/02/03 15:07:27 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1147.nls

[2009/02/03 15:07:26 | 00,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10008.nls

[2009/02/03 15:07:26 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1146.nls

[2009/02/03 15:07:26 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1145.nls

[2009/02/03 15:07:26 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1144.nls

[2009/02/03 15:07:26 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1143.nls

[2009/02/03 15:07:26 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1142.nls

[2009/02/03 15:07:26 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1141.nls

[2009/02/03 15:07:26 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1140.nls

[2009/02/03 15:07:26 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1047.nls

[2009/02/03 15:07:26 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10021.nls

[2009/02/03 15:07:25 | 00,195,618 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10002.nls

[2009/02/03 15:07:25 | 00,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10003.nls

[2009/02/03 15:07:25 | 00,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10001.nls

[2009/02/03 15:07:25 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10005.nls

[2009/02/03 15:07:25 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10004.nls

[2009/02/03 15:07:25 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\browscap.dll

[2009/02/03 15:07:24 | 00,082,172 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bopomofo.nls

[2009/02/03 15:07:24 | 00,066,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\big5.nls

[2009/02/03 15:07:23 | 00,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asptxn.dll

[2009/02/03 15:07:23 | 00,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\authfilt.dll

[2009/02/03 15:07:22 | 00,374,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asp51.dll

[2009/02/03 15:07:22 | 00,332,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aqueue.dll

[2009/02/03 15:07:22 | 00,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_aqadmin.dll

[2009/02/03 15:07:22 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aspperf.dll

[2009/02/03 15:07:21 | 00,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\appconf.dll

[2009/02/03 15:07:21 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0804.dll

[2009/02/03 15:07:21 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0412.dll

[2009/02/03 15:07:21 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0411.dll

[2009/02/03 15:07:21 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040d.dll

[2009/02/03 15:07:21 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0404.dll

[2009/02/03 15:07:21 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0401.dll

[2009/02/03 15:07:20 | 00,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adrot.dll

[2009/02/03 15:07:20 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_adsiisex.dll

[2009/02/03 15:07:19 | 00,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admexs.dll

[2009/02/03 15:07:19 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admxprox.dll

[2009/02/03 15:07:16 | 00,032,827 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptest.exe

[2009/02/03 15:07:16 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptsat.dll

[2009/02/03 15:07:16 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamregps.dll

[2009/02/03 15:07:15 | 02,134,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsnap.dll

[2009/02/03 15:07:15 | 00,189,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpadm.dll

[2009/02/03 15:07:15 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\staxmem.dll

[2009/02/03 15:07:14 | 00,020,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.dll

[2009/02/03 15:07:14 | 00,016,437 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.exe

[2009/02/03 15:07:11 | 00,077,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logui.ocx

[2009/02/03 15:07:11 | 00,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isatq.dll

[2009/02/03 15:07:10 | 00,837,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.dll

[2009/02/03 15:07:10 | 00,171,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisui.dll

[2009/02/03 15:07:10 | 00,133,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrtl.dll

[2009/02/03 15:07:10 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetsloc.dll

[2009/02/03 15:07:10 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoadmn.dll

[2009/02/03 15:07:10 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.exe

[2009/02/03 15:07:09 | 00,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisext51.dll

[2009/02/03 15:07:09 | 00,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismap.dll

[2009/02/03 15:07:09 | 00,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstas.exe

[2009/02/03 15:07:09 | 00,020,538 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpremadm.exe

[2009/02/03 15:07:09 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisreset.exe

[2009/02/03 15:07:09 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsapi2.dll

[2009/02/03 15:07:09 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstap.dll

[2009/02/03 15:07:08 | 00,217,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmcsat.dll

[2009/02/03 15:07:07 | 00,876,653 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awel.dll

[2009/02/03 15:07:07 | 00,598,071 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmc.dll

[2009/02/03 15:07:07 | 00,188,494 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpcount.exe

[2009/02/03 15:07:07 | 00,109,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98swin.exe

[2009/02/03 15:07:07 | 00,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpexedll.dll

[2009/02/03 15:07:07 | 00,014,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98sadm.exe

[2009/02/03 15:07:06 | 00,147,513 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4apws.dll

[2009/02/03 15:07:06 | 00,102,509 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4atxt.dll

[2009/02/03 15:07:06 | 00,082,035 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4anscp.dll

[2009/02/03 15:07:06 | 00,049,212 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awebs.dll

[2009/02/03 15:07:06 | 00,049,210 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4areg.dll

[2009/02/03 15:07:06 | 00,041,020 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avnb.dll

[2009/02/03 15:07:06 | 00,032,826 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avss.dll

[2009/02/03 15:07:05 | 00,280,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certwiz.ocx

[2009/02/03 15:07:05 | 00,188,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cfgwiz.exe

[2009/02/03 15:07:05 | 00,184,435 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4amsft.dll

[2009/02/03 15:07:05 | 00,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cnfgprts.ocx

[2009/02/03 15:07:05 | 00,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\coadmin.dll

[2009/02/03 15:07:04 | 00,290,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adsiis51.dll

[2009/02/03 15:07:04 | 00,096,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certmap.ocx

[2009/02/03 15:07:04 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admwprox.dll

[2009/02/03 15:07:04 | 00,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.dll

[2009/02/03 15:07:04 | 00,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.exe

[2009/02/03 15:07:03 | 00,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.exe

[2009/02/03 15:07:02 | 00,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.dll

[2009/02/03 15:06:58 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom

[2009/02/03 15:06:58 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\xerox

[2009/02/03 15:06:58 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\microsoft frontpage

[2009/02/03 15:06:35 | 00,002,969 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT

[2009/02/03 15:06:35 | 00,000,000 | RHS- | C] () -- C:\MSDOS.SYS

[2009/02/03 15:06:35 | 00,000,000 | RHS- | C] () -- C:\IO.SYS

[2009/02/03 15:06:35 | 00,000,000 | ---- | C] () -- C:\WINDOWS\control.ini

[2009/02/03 15:06:35 | 00,000,000 | ---- | C] () -- C:\CONFIG.SYS

[2009/02/03 15:06:35 | 00,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT

[2009/02/03 15:06:25 | 00,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb

[2009/02/03 15:06:25 | 00,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb

[2009/02/03 15:06:23 | 00,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx

[2009/02/03 15:06:14 | 00,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mapi32.dll

[2009/02/03 15:05:09 | 00,000,488 | RH-- | C] () -- C:\WINDOWS\System32\WindowsLogon.manifest

[2009/02/03 15:05:09 | 00,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest

[2009/02/03 15:05:09 | 00,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files

[2009/02/03 15:05:09 | 00,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages

[2009/02/03 15:05:01 | 00,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest

[2009/02/03 15:05:01 | 00,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest

[2009/02/03 15:05:01 | 00,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest

[2009/02/03 15:05:01 | 00,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest

[2009/02/03 15:05:01 | 00,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest

[2009/02/03 15:05:01 | 00,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest

[2009/02/03 15:04:57 | 00,000,000 | -H-D | C] -- C:\Arquivos de programas\WindowsUpdate

[2009/02/03 15:04:53 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Serviços on-line

[2009/02/03 15:04:44 | 04,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex

[2009/02/03 15:04:36 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX

[2009/02/03 15:04:31 | 00,099,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helphost.exe

[2009/02/03 15:04:31 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\notiflag.exe

[2009/02/03 15:04:31 | 00,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\brpinfo.dll

[2009/02/03 15:04:31 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atrace.dll

[2009/02/03 15:04:31 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\atrace.dll

[2009/02/03 15:04:31 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hcappres.dll

[2009/02/03 15:04:29 | 00,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp

[2009/02/03 15:04:29 | 00,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp

[2009/02/03 15:04:29 | 00,000,002 | ---- | C] () -- C:\WINDOWS\System32\desktop.ini

[2009/02/03 15:04:29 | 00,000,002 | ---- | C] () -- C:\WINDOWS\desktop.ini

[2009/02/03 15:04:24 | 00,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srdiag.exe

[2009/02/03 15:04:24 | 00,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf

[2009/02/03 15:04:23 | 00,118,784 | ---- | C] (Microsoft Corporation

continentalsom · Fevereiro 25, 2009

continuando....

) -- C:\WINDOWS\System32\msg723.acm

[2009/02/03 15:04:23 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmevtmsg.dll

[2009/02/03 15:04:23 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wb32.exe

[2009/02/03 15:04:23 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmevtmsg.dll

[2009/02/03 15:04:22 | 00,068,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\acctres.dll

[2009/02/03 15:04:22 | 00,068,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\acctres.dll

[2009/02/03 15:04:22 | 00,040,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msinfo32.exe

[2009/02/03 15:04:22 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cb32.exe

[2009/02/03 15:04:21 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Arquivos comuns\Serviços

[2009/02/03 15:04:19 | 00,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwtutor.exe

[2009/02/03 15:04:19 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwres.dll

[2009/02/03 15:04:19 | 00,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trialoc.dll

[2009/02/03 15:04:19 | 00,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wisc10.dll

[2009/02/03 15:04:19 | 00,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoapr.dll

[2009/02/03 15:04:19 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icfgnt5.dll

[2009/02/03 15:04:19 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isignup.exe

[2009/02/03 15:04:19 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icfgnt5.dll

[2009/02/03 15:04:19 | 00,000,065 | RH-- | C] () -- C:\WINDOWS\tasks\desktop.ini

[2009/02/03 15:04:19 | 00,000,000 | --SD | C] -- C:\WINDOWS\Tasks

[2009/02/03 15:04:18 | 00,235,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoap1.dll

[2009/02/03 15:04:18 | 00,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieinfo5.ocx

[2009/02/03 15:04:18 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Arquivos comuns\MSSoap

[2009/02/03 15:04:16 | 00,727,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srchui.dll

[2009/02/03 15:04:16 | 00,058,434 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srchctls.dll

[2009/02/03 15:04:15 | 03,166,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msgr3en.dll

[2009/02/03 15:04:15 | 00,765,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\VGX.dll

[2009/02/03 15:04:15 | 00,000,000 | ---D | C] -- C:\WINDOWS\srchasst

[2009/02/03 15:04:14 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed

[2009/02/03 15:04:13 | 01,674,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup_wm.exe

[2009/02/03 15:04:13 | 00,786,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migrate.exe

[2009/02/03 15:04:13 | 00,244,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpvis.dll

[2009/02/03 15:04:13 | 00,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpns.dll

[2009/02/03 15:04:13 | 00,096,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpband.dll

[2009/02/03 15:04:13 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\custsat.dll

[2009/02/03 15:04:12 | 00,364,544 | ---- | C] (Microsoft Corporation (written by Digital Renaissance Inc.)) -- C:\WINDOWS\System32\dllcache\npdsplay.dll

[2009/02/03 15:04:12 | 00,226,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npdrmv2.dll

[2009/02/03 15:04:12 | 00,064,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmplayer.exe

[2009/02/03 15:04:12 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npwmsdrm.dll

[2009/02/03 15:04:12 | 00,004,639 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplayer2.exe

[2009/02/03 15:04:11 | 01,809,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng.dll

[2009/02/03 15:04:11 | 01,809,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaueng.dll

[2009/02/03 15:04:11 | 00,561,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll

[2009/02/03 15:04:11 | 00,561,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuapi.dll

[2009/02/03 15:04:11 | 00,323,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll

[2009/02/03 15:04:11 | 00,323,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wucltui.dll

[2009/02/03 15:04:11 | 00,213,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaucpl.cpl

[2009/02/03 15:04:11 | 00,213,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaucpl.cpl

[2009/02/03 15:04:11 | 00,202,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuweb.dll

[2009/02/03 15:04:11 | 00,202,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuweb.dll

[2009/02/03 15:04:11 | 00,183,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng1.dll

[2009/02/03 15:04:11 | 00,183,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaueng1.dll

[2009/02/03 15:04:11 | 00,167,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuauclt1.exe

[2009/02/03 15:04:11 | 00,167,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauclt1.exe

[2009/02/03 15:04:11 | 00,051,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuauclt.exe

[2009/02/03 15:04:11 | 00,051,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauclt.exe

[2009/02/03 15:04:11 | 00,034,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wups.dll

[2009/02/03 15:04:11 | 00,034,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wups.dll

[2009/02/03 15:04:11 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuauserv.dll

[2009/02/03 15:04:11 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauserv.dll

[2009/02/03 15:04:10 | 00,409,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qmgr.dll

[2009/02/03 15:04:10 | 00,409,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qmgr.dll

[2009/02/03 15:04:10 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qmgrprxy.dll

[2009/02/03 15:04:10 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qmgrprxy.dll

[2009/02/03 15:04:10 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bitsprx2.dll

[2009/02/03 15:04:10 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx2.dll

[2009/02/03 15:04:10 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bitsprx4.dll

[2009/02/03 15:04:10 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bitsprx3.dll

[2009/02/03 15:04:10 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll

[2009/02/03 15:04:10 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx3.dll

[2009/02/03 15:04:09 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2res2.dll

[2009/02/03 15:04:09 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2eres.dll

[2009/02/03 15:04:08 | 04,274,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2res.dll

[2009/02/03 15:04:08 | 00,502,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2fxa.dll

[2009/02/03 15:04:08 | 00,402,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2filt.dll

[2009/02/03 15:04:08 | 00,325,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2fxb.dll

[2009/02/03 15:04:08 | 00,167,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2ae.dll

[2009/02/03 15:04:08 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2ext.dll

[2009/02/03 15:04:07 | 03,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe

[2009/02/03 15:04:07 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Movie Maker

[2009/02/03 15:03:54 | 00,566,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobmain.dll

[2009/02/03 15:03:54 | 00,122,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobcomm.dll

[2009/02/03 15:03:54 | 00,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobshel.dll

[2009/02/03 15:03:54 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobdl.dll

[2009/02/03 15:03:53 | 00,051,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oobebaln.exe

[2009/02/03 15:03:53 | 00,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoobe.exe

[2009/02/03 15:03:53 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobweb.dll

[2009/02/03 15:03:51 | 00,151,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uploadm.exe

[2009/02/03 15:03:51 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrslv.dll

[2009/02/03 15:03:51 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\safrslv.dll

[2009/02/03 15:03:51 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrcdlg.dll

[2009/02/03 15:03:51 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\racpldlg.dll

[2009/02/03 15:03:51 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\safrcdlg.dll

[2009/02/03 15:03:51 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\racpldlg.dll

[2009/02/03 15:03:51 | 00,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrdm.dll

[2009/02/03 15:03:51 | 00,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\safrdm.dll

[2009/02/03 15:03:50 | 00,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pchshell.dll

[2009/02/03 15:03:50 | 00,038,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pchsvc.dll

[2009/02/03 15:03:49 | 00,381,440 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll

[2009/02/03 15:03:49 | 00,171,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msconfig.exe

[2009/02/03 15:03:49 | 00,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hscupd.exe

[2009/02/03 15:03:48 | 00,769,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpctr.exe

[2009/02/03 15:03:48 | 00,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe

[2009/02/03 15:03:48 | 00,129,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\fltMgr.sys

[2009/02/03 15:03:48 | 00,129,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltmgr.sys

[2009/02/03 15:03:48 | 00,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fltMc.exe

[2009/02/03 15:03:48 | 00,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltmc.exe

[2009/02/03 15:03:48 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fltlib.dll

[2009/02/03 15:03:48 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltlib.dll

[2009/02/03 15:03:47 | 00,382,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rstrui.exe

[2009/02/03 15:03:47 | 00,240,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srrstr.dll

[2009/02/03 15:03:47 | 00,240,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srrstr.dll

[2009/02/03 15:03:47 | 00,171,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srsvc.dll

[2009/02/03 15:03:47 | 00,171,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srsvc.dll

[2009/02/03 15:03:47 | 00,073,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\sr.sys

[2009/02/03 15:03:47 | 00,073,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sr.sys

[2009/02/03 15:03:47 | 00,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srclient.dll

[2009/02/03 15:03:47 | 00,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srclient.dll

[2009/02/03 15:03:47 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore

[2009/02/03 15:03:46 | 00,229,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmas.dll

[2009/02/03 15:03:46 | 00,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msh261.drv

[2009/02/03 15:03:46 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ils.dll

[2009/02/03 15:03:46 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ils.dll

[2009/02/03 15:03:46 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msconf.dll

[2009/02/03 15:03:46 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msconf.dll

[2009/02/03 15:03:46 | 00,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dcap32.dll

[2009/02/03 15:03:46 | 00,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mnmdd.dll

[2009/02/03 15:03:46 | 00,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mnmdd.dll

[2009/02/03 15:03:46 | 00,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mnmsrvc.exe

[2009/02/03 15:03:46 | 00,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mnmsrvc.exe

[2009/02/03 15:03:46 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmmkcert.dll

[2009/02/03 15:03:46 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmmkcert.dll

[2009/02/03 15:03:45 | 00,385,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\callcont.dll

[2009/02/03 15:03:45 | 00,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nac.dll

[2009/02/03 15:03:45 | 00,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmcom.dll

[2009/02/03 15:03:45 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rrcm.dll

[2009/02/03 15:03:45 | 00,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\h323cc.dll

[2009/02/03 15:03:45 | 00,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\confmrsl.dll

[2009/02/03 15:03:45 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmasnt.dll

[2009/02/03 15:03:44 | 01,040,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\conf.exe

[2009/02/03 15:03:44 | 00,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mst120.dll

[2009/02/03 15:03:44 | 00,192,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmwb.dll

[2009/02/03 15:03:44 | 00,172,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmoldwb.dll

[2009/02/03 15:03:44 | 00,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmft.dll

[2009/02/03 15:03:44 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmchat.dll

[2009/02/03 15:03:44 | 00,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mst123.dll

[2009/02/03 15:03:44 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\NetMeeting

[2009/02/03 15:03:43 | 00,510,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab32.dll

[2009/02/03 15:03:43 | 00,260,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab32res.dll

[2009/02/03 15:03:43 | 00,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoeacct.dll

[2009/02/03 15:03:43 | 00,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoeacct.dll

[2009/02/03 15:03:43 | 00,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoert2.dll

[2009/02/03 15:03:43 | 00,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoert2.dll

[2009/02/03 15:03:43 | 00,086,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\directdb.dll

[2009/02/03 15:03:43 | 00,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabimp.dll

[2009/02/03 15:03:43 | 00,046,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe

[2009/02/03 15:03:43 | 00,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabfind.dll

[2009/02/03 15:03:43 | 00,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabmig.exe

[2009/02/03 15:03:42 | 01,314,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoe.dll

[2009/02/03 15:03:42 | 00,691,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcomm.dll

[2009/02/03 15:03:42 | 00,691,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll

[2009/02/03 15:03:42 | 00,104,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oeimport.dll

[2009/02/03 15:03:42 | 00,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msimn.exe

[2009/02/03 15:03:42 | 00,049,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetres.dll

[2009/02/03 15:03:42 | 00,049,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetres.dll

[2009/02/03 15:03:41 | 02,512,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoeres.dll

[2009/02/03 15:03:41 | 00,193,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\schedsvc.dll

[2009/02/03 15:03:41 | 00,193,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\schedsvc.dll

[2009/02/03 15:03:41 | 00,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup50.exe

[2009/02/03 15:03:41 | 00,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oemig50.exe

[2009/02/03 15:03:41 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oemiglib.dll

[2009/02/03 15:03:41 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Outlook Express

[2009/02/03 15:03:40 | 00,278,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstask.dll

[2009/02/03 15:03:40 | 00,278,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcfg.dll

[2009/02/03 15:03:40 | 00,278,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstask.dll

[2009/02/03 15:03:40 | 00,278,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcfg.dll

[2009/02/03 15:03:40 | 00,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\isign32.dll

[2009/02/03 15:03:40 | 00,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isign32.dll

[2009/02/03 15:03:40 | 00,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwdial.dll

[2009/02/03 15:03:40 | 00,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwdial.dll

[2009/02/03 15:03:40 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwphbk.dll

[2009/02/03 15:03:40 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwphbk.dll

[2009/02/03 15:03:40 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstinit.exe

[2009/02/03 15:03:40 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstinit.exe

[2009/02/03 15:03:39 | 00,176,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwhelp.dll

[2009/02/03 15:03:39 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn.dll

[2009/02/03 15:03:39 | 00,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwutil.dll

[2009/02/03 15:03:39 | 00,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwdl.dll

[2009/02/03 15:03:39 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwrmind.exe

[2009/02/03 15:03:39 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetwiz.exe

[2009/02/03 15:03:38 | 00,554,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dao360.dll

[2009/02/03 15:03:38 | 00,487,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oledb32.dll

[2009/02/03 15:03:38 | 00,217,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn1.exe

[2009/02/03 15:03:38 | 00,217,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sqlxmlx.dll

[2009/02/03 15:03:38 | 00,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn2.exe

[2009/02/03 15:03:38 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oledb32r.dll

[2009/02/03 15:03:37 | 00,315,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasql.dll

[2009/02/03 15:03:37 | 00,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaora.dll

[2009/02/03 15:03:37 | 00,204,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaps.dll

[2009/02/03 15:03:37 | 00,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjro.dll

[2009/02/03 15:03:37 | 00,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdatl3.dll

[2009/02/03 15:03:37 | 00,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaosp.dll

[2009/02/03 15:03:37 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxactps.dll

[2009/02/03 15:03:37 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdatt.dll

[2009/02/03 15:03:37 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaorar.dll

[2009/02/03 15:03:37 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasqlr.dll

[2009/02/03 15:03:37 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaurl.dll

[2009/02/03 15:03:37 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasc.dll

[2009/02/03 15:03:37 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaer.dll

[2009/02/03 15:03:37 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaenum.dll

[2009/02/03 15:03:37 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdadc.dll

[2009/02/03 15:03:36 | 00,536,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado15.dll

[2009/02/03 15:03:36 | 00,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadox.dll

[2009/02/03 15:03:36 | 00,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadomd.dll

[2009/02/03 15:03:36 | 00,118,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdarem.dll

[2009/02/03 15:03:36 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado27.tlb

[2009/02/03 15:03:36 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado26.tlb

[2009/02/03 15:03:36 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado25.tlb

[2009/02/03 15:03:36 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado21.tlb

[2009/02/03 15:03:36 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado20.tlb

[2009/02/03 15:03:36 | 00,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadrh15.dll

[2009/02/03 15:03:36 | 00,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msador15.dll

[2009/02/03 15:03:36 | 00,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdfmap.dll

[2009/02/03 15:03:36 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msader15.dll

[2009/02/03 15:03:36 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaremr.dll

[2009/02/03 15:03:35 | 00,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll

[2009/02/03 15:03:35 | 00,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaprst.dll

[2009/02/03 15:03:35 | 00,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadds.dll

[2009/02/03 15:03:35 | 00,153,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\triedit.dll

[2009/02/03 15:03:35 | 00,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadco.dll

[2009/02/03 15:03:35 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcf.dll

[2009/02/03 15:03:35 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcs.dll

[2009/02/03 15:03:35 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaddsr.dll

[2009/02/03 15:03:35 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcer.dll

[2009/02/03 15:03:35 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaprsr.dll

[2009/02/03 15:03:35 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcor.dll

[2009/02/03 15:03:35 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcfr.dll

[2009/02/03 15:03:35 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Arquivos comuns\System

[2009/02/03 15:03:34 | 00,635,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iexplore.exe

[2009/02/03 15:03:34 | 00,128,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dhtmled.ocx

[2009/02/03 15:03:34 | 00,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedw.exe

[2009/02/03 15:03:34 | 00,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hmmapi.dll

[2009/02/03 15:03:31 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Internet Explorer

[2009/02/03 15:03:30 | 00,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documentos\Minhas imagens

[2009/02/03 15:02:55 | 00,021,844 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat

[2009/02/03 15:02:46 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\ComPlus Applications

[2009/02/03 15:02:45 | 00,000,037 | ---- | C] () -- C:\WINDOWS\vbaddin.ini

[2009/02/03 15:02:45 | 00,000,036 | ---- | C] () -- C:\WINDOWS\vb.ini

[2009/02/03 15:02:40 | 00,000,000 | ---D | C] -- C:\WINDOWS\Registration

[2009/02/03 15:02:34 | 00,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documentos\Minhas músicas

[2009/02/03 15:02:34 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Windows Media Player

[2009/02/03 15:02:26 | 00,042,577 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgzm.exe

[2009/02/03 15:02:26 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Messenger

[2009/02/03 15:02:25 | 02,178,131 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlres.dll

[2009/02/03 15:02:25 | 01,817,687 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgres.dll

[2009/02/03 15:02:25 | 00,781,397 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrres.dll

[2009/02/03 15:02:25 | 00,753,236 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvseres.dll

[2009/02/03 15:02:25 | 00,082,501 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckg.dll

[2009/02/03 15:02:25 | 00,066,113 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvl.dll

[2009/02/03 15:02:25 | 00,048,706 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvse.dll

[2009/02/03 15:02:25 | 00,042,575 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrzm.exe

[2009/02/03 15:02:25 | 00,042,574 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvsezm.exe

[2009/02/03 15:02:25 | 00,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlzm.exe

[2009/02/03 15:02:25 | 00,040,515 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkr.dll

[2009/02/03 15:02:24 | 01,175,635 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzres.dll

[2009/02/03 15:02:24 | 01,042,003 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnresm.dll

[2009/02/03 15:02:24 | 00,057,409 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtz.dll

[2009/02/03 15:02:24 | 00,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzzm.exe

[2009/02/03 15:02:24 | 00,041,029 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zcorem.dll

[2009/02/03 15:02:24 | 00,032,339 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniansi.dll

[2009/02/03 15:02:24 | 00,013,894 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zonelibm.dll

[2009/02/03 15:02:24 | 00,004,677 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zeeverm.dll

[2009/02/03 15:02:23 | 00,217,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnclim.dll

[2009/02/03 15:02:23 | 00,113,222 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zoneclim.dll

[2009/02/03 15:02:23 | 00,036,937 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zclientm.exe

[2009/02/03 15:02:23 | 00,029,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\znetm.dll

[2009/02/03 15:02:23 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\write.exe

[2009/02/03 15:02:23 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\write.exe

[2009/02/03 15:02:23 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\MSN Gaming Zone

[2009/02/03 15:02:14 | 00,231,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avtapi.dll

[2009/02/03 15:02:14 | 00,231,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avtapi.dll

[2009/02/03 15:02:14 | 00,139,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndvol32.exe

[2009/02/03 15:02:14 | 00,139,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndvol32.exe

[2009/02/03 15:02:14 | 00,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avwav.dll

[2009/02/03 15:02:14 | 00,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avwav.dll

[2009/02/03 15:02:14 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avmeter.dll

[2009/02/03 15:02:14 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avmeter.dll

[2009/02/03 15:02:13 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winchat.exe

[2009/02/03 15:02:13 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winchat.exe

[2009/02/03 15:02:09 | 00,065,954 | ---- | C] () -- C:\WINDOWS\Bruma.bmp

[2009/02/03 15:02:09 | 00,065,832 | ---- | C] () -- C:\WINDOWS\Deserto.bmp

[2009/02/03 15:02:09 | 00,026,680 | ---- | C] () -- C:\WINDOWS\Leques.bmp

[2009/02/03 15:02:09 | 00,026,582 | ---- | C] () -- C:\WINDOWS\Areia.bmp

[2009/02/03 15:02:09 | 00,017,362 | ---- | C] () -- C:\WINDOWS\Rododentro.bmp

[2009/02/03 15:02:09 | 00,017,336 | ---- | C] () -- C:\WINDOWS\Pescaria.bmp

[2009/02/03 15:02:09 | 00,017,062 | ---- | C] () -- C:\WINDOWS\Cafezinho.bmp

[2009/02/03 15:02:09 | 00,016,730 | ---- | C] () -- C:\WINDOWS\Seda.bmp

[2009/02/03 15:02:09 | 00,009,522 | ---- | C] () -- C:\WINDOWS\Tapete.bmp

[2009/02/03 15:02:08 | 00,640,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\getuname.dll

[2009/02/03 15:02:08 | 00,640,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\getuname.dll

[2009/02/03 15:02:08 | 00,093,702 | ---- | C] () -- C:\WINDOWS\System32\subrange.uce

[2009/02/03 15:02:08 | 00,065,978 | ---- | C] () -- C:\WINDOWS\Bolhas de sabão.bmp

[2009/02/03 15:02:08 | 00,060,458 | ---- | C] () -- C:\WINDOWS\System32\ideograf.uce

[2009/02/03 15:02:08 | 00,024,006 | ---- | C] () -- C:\WINDOWS\System32\gb2312.uce

[2009/02/03 15:02:08 | 00,016,740 | ---- | C] () -- C:\WINDOWS\System32\shiftjis.uce

[2009/02/03 15:02:08 | 00,012,876 | ---- | C] () -- C:\WINDOWS\System32\korean.uce

[2009/02/03 15:02:08 | 00,008,484 | ---- | C] () -- C:\WINDOWS\System32\kanji_2.uce

[2009/02/03 15:02:08 | 00,006,948 | ---- | C] () -- C:\WINDOWS\System32\kanji_1.uce

[2009/02/03 15:02:08 | 00,001,272 | ---- | C] () -- C:\WINDOWS\Renda azul 16.bmp

[2009/02/03 15:02:07 | 00,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winmine.exe

[2009/02/03 15:02:07 | 00,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmine.exe

[2009/02/03 15:02:07 | 00,115,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\calc.exe

[2009/02/03 15:02:07 | 00,115,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\calc.exe

[2009/02/03 15:02:07 | 00,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\charmap.exe

[2009/02/03 15:02:07 | 00,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\charmap.exe

[2009/02/03 15:02:07 | 00,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sol.exe

[2009/02/03 15:02:07 | 00,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sol.exe

[2009/02/03 15:02:07 | 00,022,984 | ---- | C] () -- C:\WINDOWS\System32\bopomofo.uce

[2009/02/03 15:02:06 | 00,128,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mshearts.exe

[2009/02/03 15:02:06 | 00,128,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshearts.exe

[2009/02/03 15:02:06 | 00,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\freecell.exe

[2009/02/03 15:02:06 | 00,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\freecell.exe

[2009/02/03 15:02:06 | 00,026,931 | ---- | C] () -- C:\WINDOWS\System32\tslabels.ini

[2009/02/03 15:02:06 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsshutdn.exe

[2009/02/03 15:02:06 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsshutdn.exe

[2009/02/03 15:02:06 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tskill.exe

[2009/02/03 15:02:06 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwinsta.exe

[2009/02/03 15:02:06 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tskill.exe

[2009/02/03 15:02:06 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwinsta.exe

[2009/02/03 15:02:06 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsdiscon.exe

[2009/02/03 15:02:06 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscon.exe

[2009/02/03 15:02:06 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shadow.exe

[2009/02/03 15:02:06 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsdiscon.exe

[2009/02/03 15:02:06 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscon.exe

[2009/02/03 15:02:06 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shadow.exe

[2009/02/03 15:02:06 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\reset.exe

[2009/02/03 15:02:06 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\reset.exe

[2009/02/03 15:02:06 | 00,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h

[2009/02/03 15:02:06 | 00,001,221 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd

[2009/02/03 15:02:05 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\regini.exe

[2009/02/03 15:02:05 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\regini.exe

[2009/02/03 15:02:05 | 00,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qwinsta.exe

[2009/02/03 15:02:05 | 00,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qwinsta.exe

[2009/02/03 15:02:05 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msg.exe

[2009/02/03 15:02:05 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msg.exe

[2009/02/03 15:02:05 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtsadmin.tlb

[2009/02/03 15:02:05 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qappsrv.exe

[2009/02/03 15:02:05 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qappsrv.exe

[2009/02/03 15:02:05 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\logoff.exe

[2009/02/03 15:02:05 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logoff.exe

[2009/02/03 15:02:05 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdmodem.dll

[2009/02/03 15:02:05 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdmodem.dll

[2009/02/03 15:02:05 | 00,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcfgex.dll

[2009/02/03 15:02:05 | 00,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpcfgex.dll

[2009/02/03 15:02:05 | 00,003,828 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.ini

[2009/02/03 15:02:05 | 00,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h

[2009/02/03 15:02:04 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmi2xml.dll

[2009/02/03 15:02:01 | 00,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\updprov.dll

[2009/02/03 15:02:01 | 00,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipicmp.dll

[2009/02/03 15:02:01 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmimsg.dll

[2009/02/03 15:02:01 | 00,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.tlb

[2009/02/03 15:02:01 | 00,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmitimep.dll

[2009/02/03 15:02:01 | 00,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.tlb

[2009/02/03 15:02:01 | 00,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmtr.dll

[2009/02/03 15:02:01 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unsecapp.exe

[2009/02/03 15:02:01 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmt.exe

[2009/02/03 15:02:01 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.dll

[2009/02/03 15:02:00 | 00,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiprov.dll

[2009/02/03 15:02:00 | 00,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsprov.dll

[2009/02/03 15:02:00 | 00,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc

[2009/02/03 15:02:00 | 00,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmplprov.dll

[2009/02/03 15:02:00 | 00,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trnsprov.dll

[2009/02/03 15:02:00 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fwdprov.dll

[2009/02/03 15:02:00 | 00,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpcons.dll

[2009/02/03 15:01:59 | 00,283,648 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe

[2009/02/03 15:01:59 | 00,215,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wordpad.exe

[2009/02/03 15:01:59 | 00,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\accwiz.exe

[2009/02/03 15:01:59 | 00,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\accwiz.exe

[2009/02/03 15:01:59 | 00,132,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndrec32.exe

[2009/02/03 15:01:59 | 00,132,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndrec32.exe

[2009/02/03 15:01:59 | 00,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\access.cpl

[2009/02/03 15:01:59 | 00,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\access.cpl

[2009/02/03 15:01:58 | 00,545,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dialer.exe

[2009/02/03 15:01:58 | 00,345,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe

[2009/02/03 15:01:58 | 00,345,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspaint.exe

[2009/02/03 15:01:58 | 00,124,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mplay32.exe

[2009/02/03 15:01:58 | 00,124,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplay32.exe

[2009/02/03 15:01:58 | 00,104,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clipbrd.exe

[2009/02/03 15:01:58 | 00,104,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clipbrd.exe

[2009/02/03 15:01:58 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Windows NT

[2009/02/03 15:01:57 | 00,539,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spider.exe

[2009/02/03 15:01:57 | 00,539,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spider.exe

[2009/02/03 15:01:57 | 00,139,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rdpwd.sys

[2009/02/03 15:01:57 | 00,139,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys

[2009/02/03 15:01:57 | 00,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\tdtcp.sys

[2009/02/03 15:01:57 | 00,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdtcp.sys

[2009/02/03 15:01:57 | 00,012,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\tdpipe.sys

[2009/02/03 15:01:57 | 00,012,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdpipe.sys

[2009/02/03 15:01:56 | 00,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll

[2009/02/03 15:01:56 | 00,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rhttpaa.dll

[2009/02/03 15:01:56 | 00,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aaclient.dll

[2009/02/03 15:01:56 | 00,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll

[2009/02/03 15:01:56 | 00,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscfgwmi.dll

[2009/02/03 15:01:56 | 00,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscfgwmi.dll

[2009/02/03 15:01:56 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll

[2009/02/03 15:01:56 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsgqec.dll

[2009/02/03 15:01:55 | 02,061,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstscax.dll

[2009/02/03 15:01:55 | 02,061,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstscx.dll

[2009/02/03 15:01:55 | 00,677,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstsc.exe

[2009/02/03 15:01:55 | 00,677,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstsc.exe

[2009/02/03 15:01:55 | 00,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdchost.dll

[2009/02/03 15:01:55 | 00,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdchost.dll

[2009/02/03 15:01:55 | 00,142,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sessmgr.exe

[2009/02/03 15:01:55 | 00,142,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sessmgr.exe

[2009/02/03 15:01:55 | 00,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdshost.exe

[2009/02/03 15:01:55 | 00,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdshost.exe

[2009/02/03 15:01:55 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\remotepg.dll

[2009/02/03 15:01:55 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\remotepg.dll

[2009/02/03 15:01:55 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdsaddin.exe

[2009/02/03 15:01:55 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdsaddin.exe

[2009/02/03 15:01:54 | 00,296,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\termsrv.dll

[2009/02/03 15:01:54 | 00,296,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\termsrv.dll

[2009/02/03 15:01:54 | 00,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll

[2009/02/03 15:01:54 | 00,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcuiu.dll

[2009/02/03 15:01:54 | 00,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxoci.dll

[2009/02/03 15:01:54 | 00,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxoci.dll

[2009/02/03 15:01:54 | 00,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpwsx.dll

[2009/02/03 15:01:54 | 00,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwsx.dll

[2009/02/03 15:01:54 | 00,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpclip.exe

[2009/02/03 15:01:54 | 00,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpclip.exe

[2009/02/03 15:01:54 | 00,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cfgbkend.dll

[2009/02/03 15:01:54 | 00,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgbkend.dll

[2009/02/03 15:01:54 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qprocess.exe

[2009/02/03 15:01:54 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qprocess.exe

[2009/02/03 15:01:54 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpsnd.dll

[2009/02/03 15:01:54 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpsnd.dll

[2009/02/03 15:01:54 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icaapi.dll

[2009/02/03 15:01:54 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icaapi.dll

[2009/02/03 15:01:54 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc

[2009/02/03 15:01:53 | 00,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll

[2009/02/03 15:01:53 | 00,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtctm.dll

[2009/02/03 15:01:53 | 00,427,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll

[2009/02/03 15:01:53 | 00,427,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcprx.dll

[2009/02/03 15:01:53 | 00,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtclog.dll

[2009/02/03 15:01:53 | 00,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtclog.dll

[2009/02/03 15:01:53 | 00,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xolehlp.dll

[2009/02/03 15:01:53 | 00,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xolehlp.dll

[2009/02/03 15:01:53 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtc.exe

[2009/02/03 15:01:53 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtc.exe

[2009/02/03 15:01:52 | 00,195,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comadmin.dll

[2009/02/03 15:01:52 | 00,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrepl.dll

[2009/02/03 15:01:52 | 00,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comrepl.dll

[2009/02/03 15:01:52 | 00,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\colbact.dll

[2009/02/03 15:01:52 | 00,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\colbact.dll

[2009/02/03 15:01:52 | 00,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxlegih.dll

[2009/02/03 15:01:52 | 00,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxlegih.dll

[2009/02/03 15:01:52 | 00,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxdm.dll

[2009/02/03 15:01:52 | 00,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxdm.dll

[2009/02/03 15:01:52 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comaddin.dll

[2009/02/03 15:01:52 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comaddin.dll

[2009/02/03 15:01:52 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrepl.exe

[2009/02/03 15:01:52 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dcomcnfg.exe

[2009/02/03 15:01:52 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrereg.exe

[2009/02/03 15:01:52 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dcomcnfg.exe

[2009/02/03 15:01:52 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxex.dll

[2009/02/03 15:01:52 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxex.dll

[2009/02/03 15:01:52 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Com

[2009/02/03 15:01:51 | 00,625,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrvut.dll

[2009/02/03 15:01:51 | 00,625,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvut.dll

[2009/02/03 15:01:51 | 00,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrv.dll

[2009/02/03 15:01:51 | 00,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrv.dll

[2009/02/03 15:01:51 | 00,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clbcatex.dll

[2009/02/03 15:01:51 | 00,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatex.dll

[2009/02/03 15:01:51 | 00,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrvps.dll

[2009/02/03 15:01:51 | 00,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvps.dll

[2009/02/03 15:01:51 | 00,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\stclient.dll

[2009/02/03 15:01:51 | 00,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\stclient.dll

[2009/02/03 15:01:50 | 01,267,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comsvcs.dll

[2009/02/03 15:01:50 | 01,267,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsvcs.dll

[2009/02/03 15:01:50 | 00,539,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comuid.dll

[2009/02/03 15:01:50 | 00,539,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comuid.dll

[2009/02/03 15:01:50 | 00,498,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clbcatq.dll

[2009/02/03 15:01:50 | 00,498,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatq.dll

[2009/02/03 15:01:50 | 00,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comsnap.dll

[2009/02/03 15:01:50 | 00,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsnap.dll

[2009/02/03 15:01:48 | 00,437,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiprvsd.dll

[2009/02/03 15:01:48 | 00,218,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiprvse.exe

[2009/02/03 15:01:48 | 00,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipcima.dll

[2009/02/03 15:01:48 | 00,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmisvc.dll

[2009/02/03 15:01:48 | 00,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiprov.dll

[2009/02/03 15:01:48 | 00,140,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmidcprv.dll

[2009/02/03 15:01:48 | 00,132,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipdskq.dll

[2009/02/03 15:01:48 | 00,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiutils.dll

[2009/02/03 15:01:48 | 00,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipjobj.dll

[2009/02/03 15:01:48 | 00,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipiprt.dll

[2009/02/03 15:01:48 | 00,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmicookr.dll

[2009/02/03 15:01:48 | 00,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipsess.dll

[2009/02/03 15:01:47 | 00,531,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcore.dll

[2009/02/03 15:01:47 | 00,365,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmic.exe

[2009/02/03 15:01:47 | 00,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemess.dll

[2009/02/03 15:01:47 | 00,214,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcomn.dll

[2009/02/03 15:01:47 | 00,199,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcntl.dll

[2009/02/03 15:01:47 | 00,197,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemupgd.dll

[2009/02/03 15:01:47 | 00,196,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiadap.exe

[2009/02/03 15:01:47 | 00,178,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.dll

[2009/02/03 15:01:47 | 00,126,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiapsrv.exe

[2009/02/03 15:01:47 | 00,118,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemtest.exe

[2009/02/03 15:01:47 | 00,088,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiaprpl.dll

[2009/02/03 15:01:47 | 00,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcons.dll

[2009/02/03 15:01:47 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemsvc.dll

[2009/02/03 15:01:47 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemprox.dll

[2009/02/03 15:01:47 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiapres.dll

[2009/02/03 15:01:46 | 00,237,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\provthrd.dll

[2009/02/03 15:01:46 | 00,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntevt.dll

[2009/02/03 15:01:46 | 00,178,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\repdrvfs.dll

[2009/02/03 15:01:46 | 00,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\viewprov.dll

[2009/02/03 15:01:46 | 00,092,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\policman.dll

[2009/02/03 15:01:46 | 00,086,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\stdprov.dll

[2009/02/03 15:01:46 | 00,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ncprov.dll

[2009/02/03 15:01:46 | 00,036,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scrcons.exe

[2009/02/03 15:01:45 | 00,472,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fastprox.dll

[2009/02/03 15:01:45 | 00,247,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\esscli.dll

[2009/02/03 15:01:45 | 00,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\framedyn.dll

[2009/02/03 15:01:45 | 00,124,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mofd.dll

[2009/02/03 15:01:45 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\krnlprov.dll

[2009/02/03 15:01:45 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mofcomp.exe

[2009/02/03 15:01:44 | 01,359,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cimwin32.dll

[2009/02/03 15:01:44 | 00,188,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmprops.dll

[2009/02/03 15:01:44 | 00,188,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmprops.dll

[2009/02/03 15:01:44 | 00,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\licwmi.dll

[2009/02/03 15:01:44 | 00,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\licwmi.dll

[2009/02/03 15:01:44 | 00,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\servdeps.dll

[2009/02/03 15:01:44 | 00,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\servdeps.dll

[2009/02/03 15:01:44 | 00,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmfutil.dll

[2009/02/03 15:01:44 | 00,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mmfutil.dll

[2009/02/03 15:01:39 | 00,196,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rdpdr.sys

[2009/02/03 15:01:38 | 00,040,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\termdd.sys

[2009/02/03 15:01:38 | 00,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documentos\Meus vídeos

[2009/02/03 13:21:26 | 00,000,675 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\CEEE Edital Data, Hora e Local de Prova.htm

[2009/02/03 13:21:21 | 00,311,296 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\RACIOCINIO LOGICO REFAP.doc

[2009/02/03 13:21:21 | 00,216,064 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\PROVAS PARA ESTUDAR.doc

[2009/02/03 13:21:21 | 00,000,762 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\orçamento.rtf

[2009/02/03 12:59:45 | 01,396,736 | ---- | C] () -- C:\Documents and Settings\Administrador\Meus documentos\Curriculo Márcio Brum.doc

[2009/02/03 12:58:33 | 00,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\audstub.sys

[2009/02/03 12:57:37 | 00,058,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\redbook.sys

[2009/02/03 12:57:30 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups

[2009/02/03 12:56:58 | 00,010,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\gameenum.sys

[2009/02/03 12:56:58 | 00,010,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gameenum.sys

[2009/02/03 12:56:33 | 00,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usbui.dll

[2009/02/03 12:56:22 | 00,044,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\UAGP35.SYS

[2009/02/03 12:54:54 | 00,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF

[2009/02/03 12:54:52 | 00,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK

[2009/02/03 12:54:49 | 00,954,838 | ---- | C] () -- C:\WINDOWS\System32\PerfStringBackup.INI

[2009/02/03 12:54:49 | 00,000,000 | -HSD | C] -- C:\WINDOWS\Installer

[2009/02/03 12:54:48 | 00,004,205 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI

[2009/02/03 12:54:48 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Arquivos comuns\ODBC

[2009/02/03 12:54:46 | 00,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcommon.dll

[2009/02/03 12:54:46 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcplui.dll

[2009/02/03 12:54:45 | 01,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd

[2009/02/03 12:54:45 | 00,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spttseng.dll

[2009/02/03 12:54:45 | 00,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa

[2009/02/03 12:54:45 | 00,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf

[2009/02/03 12:54:44 | 00,741,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapi.dll

[2009/02/03 12:54:44 | 00,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa

[2009/02/03 12:54:44 | 00,159,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapi.cpl

[2009/02/03 12:54:44 | 00,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapisvr.exe

[2009/02/03 12:54:44 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Arquivos comuns\SpeechEngines

[2009/02/03 12:54:43 | 00,000,000 | R--D | C] -- C:\Arquivos de programas

[2009/02/03 12:54:43 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Arquivos comuns\Microsoft Shared

[2009/02/03 12:54:43 | 00,000,000 | ---D | C] -- C:\Arquivos de programas\Arquivos comuns

[2009/02/03 12:54:42 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28603.nls

[2009/02/03 12:54:42 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28603.nls

[2009/02/03 12:54:42 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0408.dll

[2009/02/03 12:54:42 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt041f.dll

[2009/02/03 12:54:42 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0419.dll

[2009/02/03 12:54:41 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040e.dll

[2009/02/03 12:54:41 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0415.dll

[2009/02/03 12:54:41 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0405.dll

[2009/02/03 12:54:40 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28599.nls

[2009/02/03 12:54:40 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28599.nls

[2009/02/03 12:54:40 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuq.dll

[2009/02/03 12:54:40 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuf.dll

[2009/02/03 12:54:40 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuq.dll

[2009/02/03 12:54:40 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuf.dll

[2009/02/03 12:54:40 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdazel.dll

[2009/02/03 12:54:40 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdazel.dll

[2009/02/03 12:54:39 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_857.nls

[2009/02/03 12:54:39 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_857.nls

[2009/02/03 12:54:39 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10081.nls

[2009/02/03 12:54:39 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10081.nls

[2009/02/03 12:54:38 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28595.nls

[2009/02/03 12:54:38 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10017.nls

[2009/02/03 12:54:38 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10007.nls

[2009/02/03 12:54:38 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28595.NLS

[2009/02/03 12:54:38 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10017.nls

[2009/02/03 12:54:38 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10007.nls

[2009/02/03 12:54:38 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycc.dll

[2009/02/03 12:54:38 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbduzb.dll

[2009/02/03 12:54:38 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdur.dll

[2009/02/03 12:54:38 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtat.dll

[2009/02/03 12:54:38 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru1.dll

[2009/02/03 12:54:38 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru.dll

[2009/02/03 12:54:38 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmon.dll

[2009/02/03 12:54:38 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkyr.dll

[2009/02/03 12:54:38 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkaz.dll

[2009/02/03 12:54:38 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbu.dll

[2009/02/03 12:54:38 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdblr.dll

[2009/02/03 12:54:38 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdaze.dll

[2009/02/03 12:54:38 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycc.dll

[2009/02/03 12:54:38 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbduzb.dll

[2009/02/03 12:54:38 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdur.dll

[2009/02/03 12:54:38 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtat.dll

[2009/02/03 12:54:38 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru1.dll

[2009/02/03 12:54:38 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru.dll

[2009/02/03 12:54:38 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdmon.dll

[2009/02/03 12:54:38 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkyr.dll

[2009/02/03 12:54:38 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkaz.dll

[2009/02/03 12:54:38 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdbu.dll

[2009/02/03 12:54:38 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdblr.dll

[2009/02/03 12:54:38 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdaze.dll

[2009/02/03 12:54:36 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_869.nls

[2009/02/03 12:54:36 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_737.nls

[2009/02/03 12:54:36 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_869.nls

[2009/02/03 12:54:36 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_737.nls

[2009/02/03 12:54:36 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_875.nls

[2009/02/03 12:54:36 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28597.nls

[2009/02/03 12:54:36 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10006.nls

[2009/02/03 12:54:36 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_875.nls

[2009/02/03 12:54:36 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28597.NLS

[2009/02/03 12:54:36 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10006.nls

[2009/02/03 12:54:36 | 00,008,192 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhept.dll

[2009/02/03 12:54:36 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhept.dll

[2009/02/03 12:54:36 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela3.dll

[2009/02/03 12:54:36 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela3.dll

[2009/02/03 12:54:36 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela2.dll

[2009/02/03 12:54:36 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdgkl.dll

[2009/02/03 12:54:36 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela2.dll

[2009/02/03 12:54:36 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgkl.dll

[2009/02/03 12:54:36 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe319.dll

[2009/02/03 12:54:36 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe220.dll

[2009/02/03 12:54:36 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe.dll

[2009/02/03 12:54:36 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe319.dll

[2009/02/03 12:54:36 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe220.dll

[2009/02/03 12:54:36 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe.dll

[2009/02/03 12:54:35 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_866.nls

[2009/02/03 12:54:35 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_855.nls

[2009/02/03 12:54:35 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_866.nls

[2009/02/03 12:54:35 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_855.nls

[2009/02/03 12:54:35 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28594.nls

[2009/02/03 12:54:35 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28594.NLS

[2009/02/03 12:54:35 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv1.dll

[2009/02/03 12:54:35 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv.dll

[2009/02/03 12:54:35 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdest.dll

[2009/02/03 12:54:35 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv1.dll

[2009/02/03 12:54:35 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv.dll

[2009/02/03 12:54:35 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdest.dll

[2009/02/03 12:54:35 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt1.dll

[2009/02/03 12:54:35 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt.dll

[2009/02/03 12:54:35 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt1.dll

[2009/02/03 12:54:35 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt.dll

[2009/02/03 12:54:34 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl1.dll

[2009/02/03 12:54:34 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl.dll

[2009/02/03 12:54:34 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl.dll

[2009/02/03 12:54:34 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl1.dll

[2009/02/03 12:54:34 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl.dll

[2009/02/03 12:54:34 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl.dll

[2009/02/03 12:54:34 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdro.dll

[2009/02/03 12:54:34 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdro.dll

[2009/02/03 12:54:33 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_852.nls

[2009/02/03 12:54:33 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_852.nls

[2009/02/03 12:54:33 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10082.nls

[2009/02/03 12:54:33 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10029.nls

continentalsom · Fevereiro 25, 2009

última parte do 1º log

[2009/02/03 12:54:33 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10010.nls

[2009/02/03 12:54:33 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10082.nls

[2009/02/03 12:54:33 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10029.nls

[2009/02/03 12:54:33 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10010.nls

[2009/02/03 12:54:33 | 00,007,168 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz.dll

[2009/02/03 12:54:33 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz.dll

[2009/02/03 12:54:33 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycl.dll

[2009/02/03 12:54:33 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu.dll

[2009/02/03 12:54:33 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz2.dll

[2009/02/03 12:54:33 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz1.dll

[2009/02/03 12:54:33 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcr.dll

[2009/02/03 12:54:33 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\KBDAL.DLL

[2009/02/03 12:54:33 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycl.dll

[2009/02/03 12:54:33 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu.dll

[2009/02/03 12:54:33 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz2.dll

[2009/02/03 12:54:33 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz1.dll

[2009/02/03 12:54:33 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcr.dll

[2009/02/03 12:54:33 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdal.dll

[2009/02/03 12:54:33 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl1.dll

[2009/02/03 12:54:33 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu1.dll

[2009/02/03 12:54:33 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl1.dll

[2009/02/03 12:54:33 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu1.dll

[2009/02/03 12:54:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20127.nls

[2009/02/03 12:54:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_20127.nls

[2009/02/03 12:54:28 | 00,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll

[2009/02/03 12:54:28 | 00,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll

[2009/02/03 12:54:28 | 00,013,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WFWNET.DRV

[2009/02/03 12:54:28 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll

[2009/02/03 12:54:28 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll

[2009/02/03 12:54:28 | 00,002,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VGA.DRV

[2009/02/03 12:54:27 | 00,127,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MSVIDEO.DLL

[2009/02/03 12:54:27 | 00,083,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLECLI.DLL

[2009/02/03 12:54:27 | 00,073,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIAVI.DRV

[2009/02/03 12:54:27 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIWAVE.DRV

[2009/02/03 12:54:27 | 00,025,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCISEQ.DRV

[2009/02/03 12:54:27 | 00,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLESVR.DLL

[2009/02/03 12:54:27 | 00,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TAPI.DLL

[2009/02/03 12:54:27 | 00,009,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VER.DLL

[2009/02/03 12:54:27 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SHELL.DLL

[2009/02/03 12:54:27 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TIMER.DRV

[2009/02/03 12:54:27 | 00,003,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SYSTEM.DRV

[2009/02/03 12:54:27 | 00,002,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MOUSE.DRV

[2009/02/03 12:54:27 | 00,001,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SOUND.DRV

[2009/02/03 12:54:27 | 00,001,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMTASK.TSK

[2009/02/03 12:54:26 | 00,109,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVIFILE.DLL

[2009/02/03 12:54:26 | 00,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVICAP.DLL

[2009/02/03 12:54:26 | 00,033,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\COMMDLG.DLL

[2009/02/03 12:54:26 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\TASKMAN.EXE

[2009/02/03 12:54:26 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\taskman.exe

[2009/02/03 12:54:26 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\irenum.sys

[2009/02/03 12:54:26 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irenum.sys

[2009/02/03 12:54:26 | 00,009,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\LZEXPAND.DLL

[2009/02/03 12:54:26 | 00,002,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\KEYBOARD.DRV

[2009/02/03 12:54:26 | 00,000,515 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT

[2009/02/03 12:54:25 | 00,146,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WINSPOOL.DRV

[2009/02/03 12:54:25 | 00,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\NOTEPAD.EXE

[2009/02/03 12:54:25 | 00,070,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMSYSTEM.DLL

[2009/02/03 12:54:25 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\batt.dll

[2009/02/03 12:54:25 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\batt.dll

[2009/02/03 12:54:24 | 00,075,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storprop.dll

[2009/02/03 12:54:24 | 00,075,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\storprop.dll

[2009/02/03 12:54:15 | 00,144,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat

[2009/02/03 12:54:15 | 00,105,628 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat

[2009/02/03 12:54:15 | 00,034,747 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat

[2009/02/03 12:54:15 | 00,007,407 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT

[2009/02/03 12:54:15 | 00,000,143 | -HS- | C] () -- C:\Documents and Settings\All Users\Documentos\desktop.ini

[2009/02/03 12:54:15 | 00,000,084 | -HS- | C] () -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\Inicializar\desktop.ini

[2009/02/03 12:54:15 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Dados de aplicativos\desktop.ini

[2009/02/03 12:54:14 | 01,233,746 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP3.CAT

[2009/02/03 12:54:14 | 01,088,840 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NTPRINT.CAT

[2009/02/03 12:54:14 | 00,809,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT

[2009/02/03 12:54:14 | 00,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT

[2009/02/03 12:54:14 | 00,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT

[2009/02/03 12:54:14 | 00,033,765 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT

[2009/02/03 12:54:14 | 00,016,825 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT

[2009/02/03 12:54:14 | 00,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT

[2009/02/03 12:54:14 | 00,012,363 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT

[2009/02/03 12:54:14 | 00,010,027 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT

[2009/02/03 12:54:14 | 00,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT

[2009/02/03 12:54:14 | 00,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat

[2009/02/03 12:54:13 | 02,038,809 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT

[2009/02/03 12:54:13 | 00,634,592 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT

[2009/02/03 12:54:02 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2

[2009/02/03 12:54:02 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot

[2009/02/03 12:53:56 | 00,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dados de aplicativos\Microsoft

[2009/02/03 12:53:34 | 00,000,000 | ---D | C] -- C:\Documents and Settings

[2009/02/03 12:53:33 | 00,207,304 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT

[2009/02/03 12:53:33 | 00,000,000 | -HSD | C] -- C:\System Volume Information

[2009/02/03 12:52:30 | 00,000,211 | -HS- | C] () -- C:\boot.ini

[2009/02/03 12:52:27 | 00,000,689 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf

[2009/02/03 12:47:51 | 00,000,000 | R-SD | C] -- C:\WINDOWS\Fonts

[2009/02/03 12:47:51 | 00,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache

[2009/02/03 12:47:51 | 00,000,000 | R--D | C] -- C:\WINDOWS\Web

[2009/02/03 12:47:51 | 00,000,000 | -H-D | C] -- C:\WINDOWS\inf

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\WinSxS

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\twain_32

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\Temp

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\wins

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\spool

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\ras

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\pt-BR

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\npp

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\mui

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\IME

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\ias

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\export

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\config

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\3076

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\2052

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1054

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1046

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1042

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1041

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1037

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1033

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1031

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1028

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1025

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\system32

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\system

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\security

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\Resources

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\repair

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\Provisioning

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\PeerNet

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\pchealth

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\NLDRV

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\Network Diagnostic

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\mui

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\msapps

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\msagent

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\Media

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\L2Schemas

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\java

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\ime

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\Help

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\ehome

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\Debug

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\Cursors

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\Config

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\AppPatch

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS\addins

[2009/02/03 12:47:51 | 00,000,000 | ---D | C] -- C:\WINDOWS

========== Files - Modified Within 30 Days ==========

[1 C:\WINDOWS\System32\*.tmp files]

[6 C:\WINDOWS\*.tmp files]

[2009/02/25 16:50:31 | 00,000,624 | ---- | M] () -- C:\Documents and Settings\Administrador\Meus documentos\Minhas Pastas de Compartilhamento.lnk

[2009/02/25 13:47:50 | 00,375,579 | ---- | M] () -- C:\Documents and Settings\Administrador\Meus documentos\prova eletroeletronica.pdf

[2009/02/25 12:04:27 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl

[2009/02/25 12:03:38 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT

[2009/02/25 12:03:34 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat

[2009/02/25 12:03:31 | 10,732,70784 | -HS- | M] () -- C:\hiberfil.sys

[2009/02/24 17:16:59 | 10,850,100 | -H-- | M] () -- C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\IconCache.db

[2009/02/23 22:30:57 | 00,025,296 | ---- | M] () -- C:\WINDOWS\System32\BMXCtrlState-{00000000-00000000-00000009-00001102-00000002-80651102}.rfx

[2009/02/23 22:30:57 | 00,025,296 | ---- | M] () -- C:\WINDOWS\System32\BMXBkpCtrlState-{00000000-00000000-00000009-00001102-00000002-80651102}.rfx

[2009/02/23 22:30:57 | 00,016,516 | ---- | M] () -- C:\WINDOWS\System32\BMXStateBkp-{00000000-00000000-00000009-00001102-00000002-80651102}.rfx

[2009/02/23 22:30:57 | 00,016,516 | ---- | M] () -- C:\WINDOWS\System32\BMXState-{00000000-00000000-00000009-00001102-00000002-80651102}.rfx

[2009/02/23 22:30:57 | 00,002,064 | ---- | M] () -- C:\WINDOWS\System32\settingsbkup.sfm

[2009/02/23 22:30:57 | 00,002,064 | ---- | M] () -- C:\WINDOWS\System32\settings.sfm

[2009/02/23 22:30:57 | 00,000,024 | ---- | M] () -- C:\WINDOWS\System32\DVCStateBkp-{00000000-00000000-00000009-00001102-00000002-80651102}.dat

[2009/02/23 22:30:57 | 00,000,024 | ---- | M] () -- C:\WINDOWS\System32\DVCState-{00000000-00000000-00000009-00001102-00000002-80651102}.dat

[2009/02/23 20:33:01 | 00,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini

[2009/02/23 20:24:53 | 00,000,151 | ---- | M] () -- C:\WINDOWS\PhotoSnapViewer.INI

[2009/02/23 19:24:23 | 00,029,696 | ---- | M] () -- C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2009/02/23 11:45:20 | 00,033,975 | ---- | M] () -- C:\Documents and Settings\Administrador\Meus documentos\m*****.nri

[2009/02/21 11:29:45 | 00,001,772 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Windows Live Messenger.lnk

[2009/02/18 16:35:29 | 00,020,606 | ---- | M] () -- C:\Documents and Settings\Administrador\Desktop\SANDRO.jpg

[2009/02/18 09:59:32 | 00,257,179 | ---- | M] () -- C:\Documents and Settings\Administrador\Meus documentos\prova PROMINP.pdf

[2009/02/17 14:42:08 | 00,425,072 | ---- | M] () -- C:\WINDOWS\System32\perfh016.dat

[2009/02/17 14:42:08 | 00,392,296 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat

[2009/02/17 14:42:08 | 00,067,232 | ---- | M] () -- C:\WINDOWS\System32\perfc016.dat

[2009/02/17 14:42:08 | 00,058,596 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat

[2009/02/17 14:42:07 | 00,954,838 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI

[2009/02/17 13:27:49 | 32,581,256 | ---- | M] (PortableApps.com) -- C:\Documents and Settings\Administrador\Meus documentos\FretsOnFire_Portable_1.2.451.paf.exe

[2009/02/14 18:44:40 | 00,000,179 | ---- | M] () -- C:\WINDOWS\lexstat.ini

[2009/02/14 12:17:06 | 00,001,367 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Nero StartSmart.lnk

[2009/02/14 12:13:45 | 00,001,029 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Nero ShowTime.lnk

[2009/02/14 10:21:10 | 00,000,855 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\DivX Player.lnk

[2009/02/14 10:20:29 | 00,001,544 | ---- | M] () -- C:\Documents and Settings\Administrador\Desktop\DivX Movies.lnk

[2009/02/14 08:38:00 | 00,002,575 | ---- | M] () -- C:\Documents and Settings\Administrador\Desktop\Microsoft Office PowerPoint 2007.lnk

[2009/02/14 08:37:55 | 00,002,541 | ---- | M] () -- C:\Documents and Settings\Administrador\Desktop\Microsoft Office Excel 2007.lnk

[2009/02/14 08:37:41 | 00,002,565 | ---- | M] () -- C:\Documents and Settings\Administrador\Desktop\Microsoft Office Word 2007.lnk

[2009/02/14 07:43:50 | 00,000,720 | ---- | M] () -- C:\Documents and Settings\Administrador\Menu Iniciar\Programas\Inicializar\NOD32 Control Center.lnk

[2009/02/11 20:44:16 | 00,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK

[2009/02/10 14:13:18 | 00,001,780 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 7.0.lnk

[2009/02/10 14:13:17 | 00,001,797 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\Inicializar\Adobe Reader Speed Launch.lnk

[2009/02/10 14:11:38 | 00,000,006 | ---- | M] () -- C:\Documents and Settings\Administrador\Dados de aplicativos\dm.ini

[2009/02/10 09:29:12 | 00,000,087 | -HS- | M] () -- C:\Documents and Settings\Administrador\Meus documentos\desktop.ini

[2009/02/09 18:53:14 | 03,374,149 | ---- | M] () -- C:\WINDOWS\{00000000-00000000-00000009-00001102-00000002-80651102}.CDF

[2009/02/09 18:53:14 | 03,374,149 | ---- | M] () -- C:\WINDOWS\{00000000-00000000-00000009-00001102-00000002-80651102}.BAK

[2009/02/09 18:38:53 | 00,053,150 | ---- | M] () -- C:\Documents and Settings\Administrador\Desktop\iMasters Fóruns [Resolvido!]Meu computador não reinicia, não desliga, nem faz logo.htm

[2009/02/09 18:18:27 | 00,000,774 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.msn

[2009/02/09 18:18:27 | 00,000,774 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts

[2009/02/09 17:47:11 | 00,025,296 | ---- | M] () -- C:\WINDOWS\System32\BMXCtrlState-{00000000-00000000-0000000A-00001102-00000002-80651102}.rfx

[2009/02/09 17:47:11 | 00,025,296 | ---- | M] () -- C:\WINDOWS\System32\BMXBkpCtrlState-{00000000-00000000-0000000A-00001102-00000002-80651102}.rfx

[2009/02/09 17:47:11 | 00,016,516 | ---- | M] () -- C:\WINDOWS\System32\BMXStateBkp-{00000000-00000000-0000000A-00001102-00000002-80651102}.rfx

[2009/02/09 17:47:11 | 00,016,516 | ---- | M] () -- C:\WINDOWS\System32\BMXState-{00000000-00000000-0000000A-00001102-00000002-80651102}.rfx

[2009/02/09 17:47:11 | 00,000,024 | ---- | M] () -- C:\WINDOWS\System32\DVCStateBkp-{00000000-00000000-0000000A-00001102-00000002-80651102}.dat

[2009/02/09 17:47:11 | 00,000,024 | ---- | M] () -- C:\WINDOWS\System32\DVCState-{00000000-00000000-0000000A-00001102-00000002-80651102}.dat

[2009/02/09 17:43:51 | 03,374,149 | ---- | M] () -- C:\WINDOWS\{00000000-00000000-0000000A-00001102-00000002-80651102}.CDF

[2009/02/09 17:43:51 | 03,374,149 | ---- | M] () -- C:\WINDOWS\{00000000-00000000-0000000A-00001102-00000002-80651102}.BAK

[2009/02/09 09:46:18 | 01,600,443 | ---- | M] () -- C:\Documents and Settings\Administrador\Meus documentos\prominp0208_do.pdf

[2009/02/09 07:36:55 | 00,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb

[2009/02/09 07:36:55 | 00,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb

[2009/02/08 20:41:27 | 00,000,507 | ---- | M] () -- C:\WINDOWS\win.ini

[2009/02/08 20:40:11 | 00,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx

[2009/02/08 20:38:52 | 00,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf

[2009/02/08 14:10:19 | 00,042,941 | ---- | M] () -- C:\Documents and Settings\Administrador\Meus documentos\Bolo Mole Gelado.dotx

[2009/02/07 18:50:02 | 00,407,467 | ---- | M] () -- C:\Documents and Settings\Administrador\Meus documentos\editaldeaberturaeletrosul.PDF

[2009/02/07 18:49:39 | 00,066,354 | ---- | M] () -- C:\Documents and Settings\Administrador\Meus documentos\Edital_de_Retificacao_1.pdf

[2009/02/07 18:46:54 | 00,202,752 | ---- | M] () -- C:\Documents and Settings\Administrador\Meus documentos\prova tec eletronica santa catarina.doc

[2009/02/07 18:46:27 | 00,073,216 | ---- | M] () -- C:\Documents and Settings\Administrador\Meus documentos\GAB-Tec em Eletronica.doc

[2009/02/07 18:42:48 | 00,080,894 | ---- | M] () -- C:\Documents and Settings\Administrador\Meus documentos\prova eletronica.pdf

[2009/02/07 17:56:12 | 00,000,169 | ---- | M] () -- C:\WINDOWS\RtlRack.ini

[2009/02/07 10:21:29 | 00,207,304 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT

[2009/02/05 20:03:24 | 00,000,826 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Programa da Multifuncional Lexmark X1100 Series.lnk

[2009/02/05 16:16:27 | 00,661,784 | ---- | M] () -- C:\Documents and Settings\Administrador\Meus documentos\prominp0208_edital.pdf

[2009/02/05 16:05:57 | 00,002,772 | ---- | M] () -- C:\Documents and Settings\Administrador\Meus documentos\Register Sound Forge.htm

[2009/02/05 16:03:58 | 00,034,308 | ---- | M] () -- C:\WINDOWS\System32\BASSMOD.dll

[2009/02/05 15:46:35 | 00,054,352 | ---- | M] () -- C:\Documents and Settings\Administrador\Configurações locais\Dados de aplicativos\GDIPFONTCACHEV1.DAT

[2009/02/04 13:19:04 | 00,118,016 | ---- | M] (Alcohol Soft Development Team) -- C:\WINDOWS\System32\eoats.dll

[2009/02/04 12:27:47 | 00,125,318 | ---- | M] () -- C:\WINDOWS\System32\AdobeFnt.lst

[2009/02/04 10:02:23 | 00,000,656 | ---- | M] () -- C:\Documents and Settings\Administrador\Desktop\CoolSMS.lnk

[2009/02/03 19:03:17 | 00,051,840 | ---- | M] () -- C:\Documents and Settings\Administrador\Desktop\BrTurbo_config.exe

[2009/02/03 18:24:24 | 00,001,801 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\ProShow Gold.lnk

[2009/02/03 17:32:52 | 00,001,111 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Registro do Adobe PhotoDeluxe Home Edition 4.0.lnk

[2009/02/03 17:31:35 | 00,001,857 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Adobe PhotoDeluxe Home Edition 4.0.lnk

[2009/02/03 17:25:41 | 00,001,591 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\AvRack.lnk

[2009/02/03 17:17:50 | 00,000,128 | ---- | M] () -- C:\WINDOWS\SBWIN.INI

[2009/02/03 16:14:42 | 00,000,143 | -HS- | M] () -- C:\Documents and Settings\All Users\Documentos\desktop.ini

[2009/02/03 15:24:11 | 00,512,096 | ---- | M] (Eset ) -- C:\WINDOWS\System32\drivers\amon.sys

[2009/02/03 15:24:11 | 00,298,104 | ---- | M] (Eset ) -- C:\WINDOWS\System32\imon.dll

[2009/02/03 15:24:10 | 00,015,424 | ---- | M] () -- C:\WINDOWS\System32\drivers\nod32drv.sys

[2009/02/03 15:21:22 | 00,000,104 | ---- | M] () -- C:\Documents and Settings\Administrador\Desktop\Meu computador.lnk

[2009/02/03 15:10:52 | 00,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD

[2009/02/03 15:09:30 | 00,000,689 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf

[2009/02/03 15:06:41 | 00,000,084 | -HS- | M] () -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\Inicializar\desktop.ini

[2009/02/03 15:06:41 | 00,000,084 | -HS- | M] () -- C:\Documents and Settings\Administrador\Menu Iniciar\Programas\Inicializar\desktop.ini

[2009/02/03 15:06:35 | 00,002,969 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT

[2009/02/03 15:06:35 | 00,000,000 | RHS- | M] () -- C:\MSDOS.SYS

[2009/02/03 15:06:35 | 00,000,000 | RHS- | M] () -- C:\IO.SYS

[2009/02/03 15:06:35 | 00,000,000 | ---- | M] () -- C:\WINDOWS\control.ini

[2009/02/03 15:06:35 | 00,000,000 | ---- | M] () -- C:\CONFIG.SYS

[2009/02/03 15:06:35 | 00,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT

[2009/02/03 15:06:15 | 00,004,205 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI

[2009/02/03 15:05:09 | 00,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest

[2009/02/03 15:05:09 | 00,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest

[2009/02/03 15:05:01 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest

[2009/02/03 15:05:01 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest

[2009/02/03 15:05:01 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest

[2009/02/03 15:05:01 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest

[2009/02/03 15:05:01 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest

[2009/02/03 15:05:01 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest

[2009/02/03 15:02:55 | 00,021,844 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat

[2009/02/03 15:02:45 | 00,000,037 | ---- | M] () -- C:\WINDOWS\vbaddin.ini

[2009/02/03 15:02:45 | 00,000,036 | ---- | M] () -- C:\WINDOWS\vb.ini

[2009/02/03 14:59:41 | 00,000,211 | -HS- | M] () -- C:\boot.ini

[2009/02/03 12:54:54 | 00,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF

[2009/02/03 12:54:42 | 00,000,231 | ---- | M] () -- C:\WINDOWS\system.ini

[2009/02/03 12:54:15 | 00,000,062 | -HS- | M] () -- C:\Documents and Settings\All Users\Dados de aplicativos\desktop.ini

[2009/02/03 12:54:15 | 00,000,062 | -HS- | M] () -- C:\Documents and Settings\Administrador\Dados de aplicativos\desktop.ini

[2009/01/29 13:27:28 | 01,396,736 | ---- | M] () -- C:\Documents and Settings\Administrador\Meus documentos\Curriculo Márcio Brum.doc

< End of report >

continentalsom · Fevereiro 25, 2009

inicio 2º log

OTListIt Extras logfile created on: 25/2/2009 19:26:27 - Run

OTListIt2 by OldTimer - Version 2.0.2.0 Folder = D:\APLICATIVOS

Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 7.0.5730.13)

Locale: 00000416 | Country: Brasil | Language: PTB | Date Format: d/M/yyyy

1023,48 Mb Total Physical Memory | 518,57 Mb Available Physical Memory | 50,67% Memory free

925,88 Mb Paging File | 565,58 Mb Available in Paging File | 61,09% Paging File free

Paging file location(s): C:\pagefile.sys 1534 4000;

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Arquivos de programas

Drive C: | 39,06 Gb Total Space | 28,46 Gb Free Space | 72,85% Space Free | Partition Type: NTFS

Drive D: | 109,98 Gb Total Space | 17,27 Gb Free Space | 15,70% Space Free | Partition Type: NTFS

E: Drive not present or media not loaded

F: Drive not present or media not loaded

G: Drive not present or media not loaded

H: Drive not present or media not loaded

I: Drive not present or media not loaded

Computer Name: CONTINENTAL

Current User Name: Administrador

Logged in as Administrator.

Current Boot Mode: Normal

Scan Mode: All users

Output = Standard

File Age = 30 Days

Company Name Whitelist: On

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

.html [@ = htmlfile] -- C:\Arquivos de programas\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

"FirstRunDisabled" = 1

"AntiVirusDisableNotify" = 0

"FirewallDisableNotify" = 0

"UpdatesDisableNotify" = 0

"AntiVirusOverride" = 0

"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[2008/04/13 10:53:34 | 00,558,080 | ---- | M] (Microsoft Corporation) -- %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000

[2007/01/19 12:54:34 | 05,674,352 | ---- | M] (Microsoft Corporation) -- C:\Arquivos de programas\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1

[2007/01/04 16:10:02 | 00,297,752 | ---- | M] (Microsoft Corporation) -- C:\Arquivos de programas\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

[2008/04/13 10:53:34 | 00,558,080 | ---- | M] (Microsoft Corporation) -- %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000

[2006/10/27 14:37:44 | 00,338,216 | ---- | M] (Microsoft Corporation) -- C:\Arquivos de programas\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove

[2007/01/19 12:54:34 | 05,674,352 | ---- | M] (Microsoft Corporation) -- C:\Arquivos de programas\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1

[2007/01/04 16:10:02 | 00,297,752 | ---- | M] (Microsoft Corporation) -- C:\Arquivos de programas\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

"{06A1BE8A-4CA4-4A39-B9E4-E815AA8FE05C}" = Sony Noise Reduction Plug-In 2.0h

"{08E81ABD-79F7-49C2-881F-FD6CB0975693}" = Roxio Creator Data

"{09760D42-E223-42AD-8C3E-55B47D0DDAC3}" = Roxio Creator DE

"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate

"{1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}" = Roxio Creator Tools

"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Ferramenta de Carregamento do Windows Live

"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform

"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer

"{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Roxio Update Manager

"{350C9416-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP

"{37FD253D-5064-4034-8CEC-CC3995F823A4}" = Windows Live Messenger

"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker

"{51A857F8-35FA-42B2-A7BE-FBD5BAFDD84A}" = Assistente de Conexão do Windows Live

"{53EF6570-21A4-47ED-A40A-E6470A5677A3}" = Studio 8

"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml

"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler 3

"{7131646D-CD3C-40F4-97B9-CD9E4E6262EF}" = Microsoft .NET Framework 2.0

"{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}" = Roxio Creator Audio

"{767CC44C-9BBC-438D-BAD3-FD4595DD148B}" = VC80CRTRedist - 8.0.50727.762

"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec

"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player

"{90120000-0010-0416-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Portuguese (Brazil)) 12

"{90120000-0015-0416-0000-0000000FF1CE}" = Microsoft Office Access MUI (Portuguese (Brazil)) 2007

"{90120000-0016-0416-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Portuguese (Brazil)) 2007

"{90120000-0018-0416-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2007

"{90120000-0019-0416-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Portuguese (Brazil)) 2007

"{90120000-001A-0416-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Portuguese (Brazil)) 2007

"{90120000-001B-0416-0000-0000000FF1CE}" = Microsoft Office Word MUI (Portuguese (Brazil)) 2007

"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007

"{90120000-001F-0416-0000-0000000FF1CE}" = Microsoft Office Proof (Portuguese (Brazil)) 2007

"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007

"{90120000-002C-0416-0000-0000000FF1CE}" = Microsoft Office Proofing (Portuguese (Brazil)) 2007

"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007

"{90120000-0044-0416-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Portuguese (Brazil)) 2007

"{90120000-006E-0416-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Portuguese (Brazil)) 2007

"{90120000-00A1-0416-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Portuguese (Brazil)) 2007

"{90120000-00BA-0416-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Portuguese (Brazil)) 2007

"{9115E7DB-3B29-445A-802D-11E0AA945B7F}" = Sound Blaster Live!

"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting

"{A96E97134CA649888820BCDE5E300BBD}" = H.264 Decoder

"{AAC389499AEF40428987B3D30CFC76C9}" = MKV Splitter

"{AC76BA86-7AD7-1046-7B44-A70800000002}" = Adobe Reader 7.0.8 - Português

"{AEF9DC35ADDF4825B049ACBFD1C6EB37}" = AAC Decoder

"{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}" = Roxio Creator Copy

"{BCF2CEFB-E23D-42EF-A5FA-F9ED2A085821}_is1" = CoolSMS 2.05 beta

"{CCA51496-49D4-4FBF-9866-A2E2F40FAC7A}" = Sony Sound Forge 9.0

"{D1696920-9794-4BBC-8A30-7A88763DE5A2}" = ABBYY FineReader 5.0 Sprint

"{DBC3FDEC-D5F4-439C-9A18-EF454A74E3DE}_is1" = NOD32 FiX

"{ED439A64-F018-4DD4-8BA5-328D85AB09AB}" = Roxio Creator DE

"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio

"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX

"Adobe PhotoDeluxe Home Edition 4.0" = Adobe PhotoDeluxe Home Edition 4.0

"Adobe Shockwave Player" = Adobe Shockwave Player

"AdobeESD" = Adobe Download Manager 2.2 (Só remoção)

"Advanced WindowsCare V2 Personal_is1" = Advanced WindowsCare Personal

"Auto-Tune" = Auto-Tune DX v1.1

"C Limiter DX Plug-in" = C Limiter DX Plug-in

"CakeFX2" = Cakewalk Audio FX Pack 2

"CakeFX3" = Cakewalk Audio FX Pack3 v1.0

"Cakewalk Audio FX Pack 1" = Cakewalk Audio FX Pack 1

"dB ProComp DX" = dB ProComp DirectX v1.10

"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters

"DSP/FX" = DSP/FX v6.2a

"eMusic Promotion" = eMusic - 50 Free MP3 offer

"ENTERPRISE" = Microsoft Office Enterprise 2007

"HijackThis" = HijackThis 2.0.2

"Hollywood FX 4.6" = Pinnacle Hollywood FX 4.6

"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs

"ie7" = Windows Internet Explorer 7

"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platform Device Manager

"Lexmark X1100 Series" = Lexmark X1100 Series

"Microsoft .NET Framework 2.0" = Microsoft .NET Framework 2.0

"NeroMultiInstaller!UninstallKey" = Nero Suite

"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs

"NOD32" = NOD32 sistema antivírus

"NPP vol 1" = Native Power Pack vol 1 v2.5

"NPP vol 2" = Native Power Pack vol 2 v2.5

"ProShow Gold" = ProShow Gold

"Quartz FX1" = Quartz DX Plugin Pack 1

"Quartz FX2" = Quartz DX Plugin Pack 2

"Quartz FX3" = Quartz DX Plugin Pack 3

"Ray Gun 1.2" = Ray Gun 1.2

"RBC Voice Tweaker" = RBC Voice Tweaker V1.10

"Restoration-NR" = Arboretum Restoration-NR v1.02

"SF Noise Reduction DX" = Sonic Foundry Noise Reduction DX v2.0

"sfxpfx1" = Sonic Foundry ExpressFX1 Plug-In

"sfxpfx2" = Sonic Foundry ExpressFX2 Plug-In

"Sonic Timeworks CompressorX v1.1.0.3" = Sonic Timeworks CompressorX v1.1.0.3

"TC-Essentials" = TC Native Essentials v1.02

"TC-Reverb" = TC Native Reverb v1.5

"Terzoid Software - WaveShop DX-Plug-In Cracked By Brezel" = Terzoid Software - WaveShop DX-Plug-In Cracked By Brezel

"Timeworks Delay" = TimeWorks Delay 6022 v1.101

"Timeworks Reverb" = TimeWorks Reverb 4080L v1.101

"Ultrafunk FX 1" = Ultrafunk Sonitus FX pack v1.0

"WaveWARM" = WaveWARM

"Winamp" = Winamp (remove only)

"Windows Media Format Runtime" = Windows Media Format 11 runtime

"Windows Media Player" = Windows Media Player 11

"WinRAR archiver" = Arquivo do WinRAR

"WMFDist11" = Windows Media Format 11 runtime

"wmp11" = Windows Media Player 11

"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0

"XFX1" = Sonic Foundry XFX1 v1.0c

"XFX2" = Sonic Foundry XFX2 v1.0c

"XFX3" = Sonic Foundry XFX3 v1.0c

========== Last 10 Event Log Errors ==========

[ Application Events ]

Error - 10/7/1970 04:48:56 | Computer Name = CONTINENTAL | Source = crypt32 | ID = 131083

Description = Falha ao extrair lista de raízes de terceiros do CAB de atualização

automática em: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>

com erro: Um certificado necessário não está no seu período de validade ao ser

verificado em relação à hora atual do sistema ou ao carimbo de data/hora no arquivo

assinado.

Error - 10/7/1970 04:48:56 | Computer Name = CONTINENTAL | Source = crypt32 | ID = 131083

Description = Falha ao extrair lista de raízes de terceiros do CAB de atualização

automática em: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>

com erro: Um certificado necessário não está no seu período de validade ao ser

verificado em relação à hora atual do sistema ou ao carimbo de data/hora no arquivo

assinado.

Error - 1/4/1970 20:02:00 | Computer Name = CONTINENTAL | Source = crypt32 | ID = 131083

Description = Falha ao extrair lista de raízes de terceiros do CAB de atualização

automática em: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>

com erro: Um certificado necessário não está no seu período de validade ao ser

verificado em relação à hora atual do sistema ou ao carimbo de data/hora no arquivo

assinado.

Error - 1/4/1970 20:02:00 | Computer Name = CONTINENTAL | Source = crypt32 | ID = 131083

Description = Falha ao extrair lista de raízes de terceiros do CAB de atualização

automática em: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>

com erro: Um certificado necessário não está no seu período de validade ao ser

verificado em relação à hora atual do sistema ou ao carimbo de data/hora no arquivo

assinado.

Error - 23/3/2036 04:04:09 | Computer Name = CONTINENTAL | Source = Application Error | ID = 1000

Description = Aplicativo com falha msnmsgr.exe, versão 14.0.8050.1202, módulo com

falha msidcrl40.dll, versão 5.0.810.6, endereço com falha 0x000c83f8.

Error - 23/3/2036 04:04:09 | Computer Name = CONTINENTAL | Source = Application Error | ID = 1000

Description = Aplicativo com falha msnmsgr.exe, versão 14.0.8050.1202, módulo com

falha msidcrl40.dll, versão 5.0.810.6, endereço com falha 0x000c83f8.

Error - 23/3/2036 04:04:09 | Computer Name = CONTINENTAL | Source = Application Error | ID = 1000

Description = Aplicativo com falha msnmsgr.exe, versão 14.0.8050.1202, módulo com

falha msidcrl40.dll, versão 5.0.810.6, endereço com falha 0x000c83f8.

Error - 18/2/2009 15:29:43 | Computer Name = CONTINENTAL | Source = Application Error | ID = 1000

Description = Aplicativo com falha drwtsn32.exe, versão 5.1.2600.0, módulo com falha

dbghelp.dll, versão 5.1.2600.5512, endereço com falha 0x0001295d.

Error - 23/2/2009 17:48:43 | Computer Name = CONTINENTAL | Source = Application Error | ID = 1000

Description = Aplicativo com falha wiaacmgr.exe, versão 5.1.2600.5512, módulo com

falha unknown, versão 0.0.0.0, endereço com falha 0x0286b387.

Error - 23/2/2009 19:27:42 | Computer Name = CONTINENTAL | Source = Application Error | ID = 1000

Description = Aplicativo com falha wiaacmgr.exe, versão 5.1.2600.5512, módulo com

falha unknown, versão 0.0.0.0, endereço com falha 0x1001b387.

[ System Events ]

Error - 23/2/2009 18:43:00 | Computer Name = CONTINENTAL | Source = LDMS | ID = 16780239

Description = Falha do serviço Gerenciador de discos lógicos ao se registrar para

notificações de identificador de dispositivo \\?\storage#volume#1&30a96598&0&signature637bec13offset9c3dcd400length1b7ebb2c00#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}.

Erro do Win32: 1066.

Error - 23/2/2009 18:43:07 | Computer Name = CONTINENTAL | Source = Service Control Manager | ID = 7028

Description = A chave de Registro GbpSv negou acesso aos programas da conta SYSTEM

e o Gerenciador de controle de serviços apropriou-se da chave.

Error - 24/2/2009 13:37:51 | Computer Name = CONTINENTAL | Source = Dhcp | ID = 1002

Description = A concessão 10.1.1.2 do endereço IP para a placa de rede com endereço

de rede 000FEA24BE34 foi negada pelo servidor DHCP 10.1.1.1 (O servidor DHCP enviou

uma mensagem DHCPNACK).

Error - 24/2/2009 13:38:21 | Computer Name = CONTINENTAL | Source = LDMS | ID = 16780239

Description = Falha do serviço Gerenciador de discos lógicos ao se registrar para

notificações de identificador de dispositivo \\?\storage#volume#1&30a96598&0&signature637bec13offset7e00length9c3dbd800#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}.

Erro do Win32: 1066.

Error - 24/2/2009 13:38:21 | Computer Name = CONTINENTAL | Source = LDMS | ID = 16780239

Description = Falha do serviço Gerenciador de discos lógicos ao se registrar para

notificações de identificador de dispositivo \\?\storage#volume#1&30a96598&0&signature637bec13offset9c3dcd400length1b7ebb2c00#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}.

Erro do Win32: 1066.

Error - 24/2/2009 13:38:27 | Computer Name = CONTINENTAL | Source = Service Control Manager | ID = 7028

Description = A chave de Registro GbpSv negou acesso aos programas da conta SYSTEM

e o Gerenciador de controle de serviços apropriou-se da chave.

Error - 25/2/2009 11:03:37 | Computer Name = CONTINENTAL | Source = Dhcp | ID = 1002

Description = A concessão 10.1.1.2 do endereço IP para a placa de rede com endereço

de rede 000FEA24BE34 foi negada pelo servidor DHCP 10.1.1.1 (O servidor DHCP enviou

uma mensagem DHCPNACK).

Error - 25/2/2009 11:03:52 | Computer Name = CONTINENTAL | Source = LDMS | ID = 16780239

Description = Falha do serviço Gerenciador de discos lógicos ao se registrar para

notificações de identificador de dispositivo \\?\storage#volume#1&30a96598&0&signature637bec13offset7e00length9c3dbd800#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}.

Erro do Win32: 1066.

Error - 25/2/2009 11:03:52 | Computer Name = CONTINENTAL | Source = LDMS | ID = 16780239

Description = Falha do serviço Gerenciador de discos lógicos ao se registrar para

notificações de identificador de dispositivo \\?\storage#volume#1&30a96598&0&signature637bec13offset9c3dcd400length1b7ebb2c00#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b}.

Erro do Win32: 1066.

Error - 25/2/2009 11:04:24 | Computer Name = CONTINENTAL | Source = Service Control Manager | ID = 7028

Description = A chave de Registro GbpSv negou acesso aos programas da conta SYSTEM

e o Gerenciador de controle de serviços apropriou-se da chave.

< End of report >

MGuitar · Fevereiro 26, 2009

Quanto de memória RAM seu computador possui?

Execute novamente o OTListIt2. Copie este conteúdo abaixo dentro do code e cole na janela Custom Scans/Fixes da ferramenta:

:OTLIO4 - HKCU..\Run: [CoolSMS] File not foundO4 - HKU\S-1-5-21-1715567821-1844237615-1644491937-500..\Run: [CoolSMS] File not found:FilesC:\!KillBox:Commands[purity][emptytemp]

Clique no botão Run Fix. Será gerado um log com novas informações.

- Faça o download do ComboFix e salve-o na área de trabalho;

● Desative temporariamente o seu antivirus para não detectar a ferramenta como vírus;

● Duplo clique no ícone combofix.exe para iniciar o scan;

● Leia o contrato que aparecerá e clique em Sim para continuar;

● Abrirá uma janela do Console de Recuperação, clique em Sim para instalar. Se aparecer outra janela do Console, clique em OK > Sim;

● Aguarde enquanto o ComboFix faz o scan;

● Se ocorrer algum problema durante o scan, reinicie seu computador em Modo de Segurança e repita o procedimento;

● Não clique na janela do ComboFix e procure não utilizar o teclado também, para não atrapalhar a varredura da ferramenta;

● Se quiser sair ou parar o ComboFix, tecle N;

● Quando terminar seu micro será reiniciado. Após o reinicio, a ferramenta executará novamente, aguarde;

● Será gerado um log em C:\ComboFix.txt.

Em sua próxima resposta, cole os logs do OTListIt2 e ComboFix.

continentalsom · Fevereiro 26, 2009

meu PC tem 1 GB de RAM, DDR 400

HD 160 GB

Celeron 2.26 GHz

segui todos os passos desabilitei o anti virus mas o combo afirmou que ele ainda estav habilitado segui assim mesmo e retorno com os seguites relatórios.

========== OTLISTIT ==========

Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\CoolSMS deleted successfully.

Registry value HKEY_USERS\S-1-5-21-1715567821-1844237615-1644491937-500\Software\Microsoft\Windows\CurrentVersion\Run\\CoolSMS not found.

========== FILES ==========

C:\!KillBox\Logs moved successfully.

C:\!KillBox moved successfully.

========== COMMANDS ==========

File delete failed. C:\Documents and Settings\Administrador\Configurações locais\Temp\Temporary Internet Files\Content.IE5\NSUN6JYF\google%2520bra%26pwd%3DR09PR0xFIEJSQUdPT0dMRSBCUkE%253D%26as_word%3Dnotebook%2520intel%26as_qshow%3D5%26as_order_id%3DBIDS%26noQCat%3DY%26as_display_type%3DG%26as_price_min%3D30 scheduled to be deleted on reboot.

File delete failed. C:\Documents and Settings\Administrador\Configurações locais\Temp\Temporary Internet Files\Content.IE5\NSUN6JYF\site=par&chan=&subchan=outros&affiliate=parvagalume&size=120x60&page=3&conntype=1&expble=1&reso=1024x768&cmpng=1&group=6&tile=92130379624199&keyword=senores-cafetoes-11[1] scheduled to be deleted on reboot.

File delete failed. C:\Documents and Settings\Administrador\Configurações locais\Temp\Temporary Internet Files\Content.IE5\NSUN6JYF\site=par&chan=&subchan=outros&affiliate=parvagalume&size=468x60&page=1&conntype=1&expble=1&reso=1024x768&cmpng=1&group=6&tile=92130379624199&keyword=senores-cafetoes-11[1] scheduled to be deleted on reboot.

File delete failed. C:\Documents and Settings\Administrador\Configurações locais\Temp\Temporary Internet Files\Content.IE5\GBTHQKNK\site=par&chan=&subchan=outros&affiliate=parvagalume&size=1x1&page=11&conntype=1&expble=1&reso=1024x768&cmpng=1&group=6&tile=92130379624199&keyword=senores-cafetoes-11[1] scheduled to be deleted on reboot.

File delete failed. C:\Documents and Settings\Administrador\Configurações locais\Temp\drsb.exe scheduled to be deleted on reboot.

File delete failed. C:\Documents and Settings\Administrador\Configurações locais\Temp\vtmklozc.dat scheduled to be deleted on reboot.

User's Temp folder emptied.

User's Temporary Internet Files folder emptied.

User's Internet Explorer cache folder emptied.

Local Service Temp folder emptied.

Local Service Temporary Internet Files folder emptied.

Windows Temp folder emptied.

Temp folders emptied.

OTListIt2 by OldTimer - Version 2.0.2.0 log created on 02262009_095329

Files moved on Reboot...

File C:\Documents and Settings\Administrador\Configurações locais\Temp\Temporary Internet Files\Content.IE5\NSUN6JYF\google%2520bra%26pwd%3DR09PR0xFIEJSQUdPT0dMRSBCUkE%253D%26as_word%3Dnotebook%2520intel%26as_qshow%3D5%26as_order_id%3DBIDS%26noQCat%3DY%26as_display_type%3DG%26as_price_min%3D30 not found!

File C:\Documents and Settings\Administrador\Configurações locais\Temp\Temporary Internet Files\Content.IE5\NSUN6JYF\site=par&chan=&subchan=outros&affiliate=parvagalume&size=120x60&page=3&conntype=1&expble=1&reso=1024x768&cmpng=1&group=6&tile=92130379624199&keyword=senores-cafetoes-11[1] not found!

File C:\Documents and Settings\Administrador\Configurações locais\Temp\Temporary Internet Files\Content.IE5\NSUN6JYF\site=par&chan=&subchan=outros&affiliate=parvagalume&size=468x60&page=1&conntype=1&expble=1&reso=1024x768&cmpng=1&group=6&tile=92130379624199&keyword=senores-cafetoes-11[1] not found!

File C:\Documents and Settings\Administrador\Configurações locais\Temp\Temporary Internet Files\Content.IE5\GBTHQKNK\site=par&chan=&subchan=outros&affiliate=parvagalume&size=1x1&page=11&conntype=1&expble=1&reso=1024x768&cmpng=1&group=6&tile=92130379624199&keyword=senores-cafetoes-11[1] not found!

File move failed. C:\Documents and Settings\Administrador\Configurações locais\Temp\drsb.exe scheduled to be moved on reboot.

File C:\Documents and Settings\Administrador\Configurações locais\Temp\vtmklozc.dat not found!

Registry entries deleted on Reboot...

continentalsom · Fevereiro 26, 2009

agora relatório do combo...

ComboFix 09-02-25.02 - Administrador 2009-02-26 10:36:14.1 - NTFSx86 MINIMAL

Microsoft Windows XP Professional 5.1.2600.3.1252.1.1046.18.1023.806 [GMT -3:00]

Executando de: c:\documents and settings\Administrador\Desktop\ComboFix.exe

AV: ESET NOD32 sistema antivírus 2.70 *On-access scanning enabled* (Updated)

.

((((((((((((((((((((((((((((((((((((( Outras Exclusões )))))))))))))))))))))))))))))))))))))))))))))))))))

.

((((((((((((((((((((((((((((((((((((((( Drivers/Serviços )))))))))))))))))))))))))))))))))))))))))))))))))

.

-------\Legacy_GBPSV

-------\Service_GbpSv

(((((((((((((((( Arquivos/Ficheiros criados de 2009-01-26 to 2009-02-26 ))))))))))))))))))))))))))))

.

2009-02-26 10:31 . 2009-02-26 10:35 <DIR> d-------- C:\32788R22FWJFW

2009-02-23 19:45 . 2009-02-23 19:45 <DIR> d--h----- c:\windows\PIF

2009-02-21 11:31 . 2009-02-21 21:15 <DIR> d-------- c:\documents and settings\Administrador\Contacts

2009-02-21 11:30 . 2009-02-21 11:30 <DIR> d----c--- c:\windows\system32\DRVSTORE

2009-02-21 11:29 . 2009-02-21 11:29 <DIR> d-------- c:\arquivos de programas\MSN Messenger

2009-02-19 09:34 . 2009-02-23 20:24 151 --a------ c:\windows\PhotoSnapViewer.INI

2009-02-16 09:29 . 2009-02-16 09:33 <DIR> d-------- c:\windows\system32\Adobe

2009-02-14 12:37 . 2009-02-14 12:37 <DIR> d-------- c:\documents and settings\Administrador\Dados de aplicativos\Ahead

2009-02-14 12:37 . 2009-02-23 20:33 116 --a------ c:\windows\NeroDigital.ini

2009-02-14 12:17 . 2005-04-20 08:32 2,916,352 --------- c:\windows\UNNMP.exe

2009-02-14 12:17 . 2006-03-22 08:55 47,867 --------- c:\windows\UNNMP.cfg

2009-02-14 12:15 . 2001-07-09 09:50 155,648 --a------ c:\windows\system32\NeroCheck.exe

2009-02-14 12:13 . 2009-02-14 12:13 <DIR> d-------- c:\arquivos de programas\Arquivos comuns\Nero

2009-02-14 12:10 . 2005-07-29 12:12 2,977,792 --------- c:\windows\UNNeroVision.exe

2009-02-14 12:10 . 2006-03-22 08:55 179,261 --------- c:\windows\UNNeroVision.cfg

2009-02-14 12:10 . 2001-03-08 17:30 24,064 --------- c:\windows\system32\msxml3a.dll

2009-02-14 12:09 . 2009-02-14 12:09 <DIR> d-------- c:\documents and settings\All Users\Dados de aplicativos\Ahead

2009-02-14 12:09 . 2004-07-26 15:16 1,568,768 --------- c:\windows\system32\ImagX7.dll

2009-02-14 12:09 . 2004-07-26 15:16 476,320 --------- c:\windows\system32\ImagXpr7.dll

2009-02-14 12:09 . 2004-07-26 15:16 471,040 --------- c:\windows\system32\ImagXRA7.dll

2009-02-14 12:09 . 2004-07-09 07:43 364,544 --------- c:\windows\system32\TwnLib4.dll

2009-02-14 12:09 . 2004-07-26 15:16 262,144 --------- c:\windows\system32\ImagXR7.dll

2009-02-14 12:09 . 2000-06-26 09:45 106,496 --a------ c:\windows\system32\TwnLib20.dll

2009-02-14 12:09 . 2001-06-26 06:15 38,912 --------- c:\windows\system32\picn20.dll

2009-02-14 12:08 . 2009-02-14 12:08 <DIR> d-------- c:\arquivos de programas\Arquivos comuns\Ahead

2009-02-14 12:08 . 2009-02-14 12:17 <DIR> d-------- c:\arquivos de programas\Ahead

2009-02-14 10:33 . 2009-02-14 10:33 <DIR> d-------- c:\documents and settings\Administrador\Dados de aplicativos\Roxio

2009-02-14 09:55 . 2009-02-14 09:55 <DIR> d-------- c:\documents and settings\All Users\Dados de aplicativos\DFX

2009-02-14 09:55 . 2009-02-14 09:55 <DIR> d-------- c:\arquivos de programas\Arquivos comuns\DFX

2009-02-14 09:50 . 2009-02-14 09:50 <DIR> d-------- c:\documents and settings\All Users\Dados de aplicativos\Uninstall

2009-02-14 09:50 . 2009-02-14 09:50 <DIR> d-------- c:\arquivos de programas\Arquivos comuns\SureThing Shared

2009-02-14 09:49 . 2009-02-14 09:49 <DIR> d-------- c:\documents and settings\All Users\Dados de aplicativos\Sonic

2009-02-14 09:49 . 2009-02-14 09:49 <DIR> d-------- c:\arquivos de programas\Arquivos comuns\Sonic Shared

2009-02-14 09:48 . 2009-02-14 09:48 <DIR> d-------- c:\documents and settings\All Users\Dados de aplicativos\InstallShield

2009-02-14 09:48 . 2009-02-14 09:50 <DIR> d-------- c:\arquivos de programas\Roxio

2009-02-14 09:48 . 2009-02-14 09:49 <DIR> d-------- c:\arquivos de programas\Arquivos comuns\Roxio Shared

2009-02-13 08:29 . 2009-02-14 07:40 <DIR> d-------- c:\windows\SxsCaPendDel

2009-02-10 17:17 . 2009-02-10 17:17 <DIR> d-------- c:\documents and settings\Administrador\Dados de aplicativos\AdobeUM

2009-02-10 11:43 . 2009-02-10 11:43 <DIR> d--hs---- c:\windows\ftpcache

2009-02-10 08:51 . 2008-10-03 14:26 6,066,176 -----c--- c:\windows\system32\dllcache\ieframe.dll

2009-02-10 08:51 . 2007-04-17 06:32 2,455,488 -----c--- c:\windows\system32\dllcache\ieapfltr.dat

2009-02-10 08:51 . 2007-03-08 02:12 1,024,000 -----c--- c:\windows\system32\dllcache\ieframe.dll.mui

2009-02-10 08:51 . 2008-08-26 05:11 459,264 -----c--- c:\windows\system32\dllcache\msfeeds.dll

2009-02-10 08:51 . 2008-08-26 05:11 383,488 -----c--- c:\windows\system32\dllcache\ieapfltr.dll

2009-02-10 08:51 . 2008-08-26 05:11 267,776 -----c--- c:\windows\system32\dllcache\iertutil.dll

2009-02-10 08:51 . 2008-08-26 05:11 63,488 -----c--- c:\windows\system32\dllcache\icardie.dll

2009-02-10 08:51 . 2008-08-26 05:11 52,224 -----c--- c:\windows\system32\dllcache\msfeedsbs.dll

2009-02-10 08:51 . 2008-08-25 05:38 13,824 -----c--- c:\windows\system32\dllcache\ieudinit.exe

2009-02-09 18:03 . 2009-02-09 18:53 3,374,149 --a------ c:\windows\{00000000-00000000-00000009-00001102-00000002-80651102}.CDF

2009-02-09 18:03 . 2009-02-09 18:53 3,374,149 --a------ c:\windows\{00000000-00000000-00000009-00001102-00000002-80651102}.BAK

2009-02-09 18:01 . 2009-02-26 10:27 25,296 --a------ c:\windows\system32\BMXCtrlState-{00000000-00000000-00000009-00001102-00000002-80651102}.rfx

2009-02-09 18:01 . 2009-02-26 10:27 25,296 --a------ c:\windows\system32\BMXBkpCtrlState-{00000000-00000000-00000009-00001102-00000002-80651102}.rfx

2009-02-09 18:01 . 2009-02-26 10:27 16,516 --a------ c:\windows\system32\BMXStateBkp-{00000000-00000000-00000009-00001102-00000002-80651102}.rfx

2009-02-09 18:01 . 2009-02-26 10:27 16,516 --a------ c:\windows\system32\BMXState-{00000000-00000000-00000009-00001102-00000002-80651102}.rfx

2009-02-09 18:01 . 2009-02-26 10:27 24 --a------ c:\windows\system32\DVCStateBkp-{00000000-00000000-00000009-00001102-00000002-80651102}.dat

2009-02-09 18:01 . 2009-02-26 10:27 24 --a------ c:\windows\system32\DVCState-{00000000-00000000-00000009-00001102-00000002-80651102}.dat

2009-02-09 08:18 . 2008-04-13 10:45 32,128 --a------ c:\windows\system32\drivers\usbccgp.sys

2009-02-09 08:18 . 2008-04-13 10:45 32,128 --a--c--- c:\windows\system32\dllcache\usbccgp.sys

2009-02-08 20:41 . 2009-02-08 20:41 <DIR> d-------- c:\arquivos de programas\Windows Media Connect 2

2009-02-08 20:38 . 2009-02-08 20:38 <DIR> d-------- c:\windows\system32\LogFiles

2009-02-08 20:38 . 2009-02-08 20:40 <DIR> d-------- c:\windows\system32\drivers\UMDF

2009-02-08 12:45 . 2008-04-13 10:45 26,368 --a--c--- c:\windows\system32\dllcache\usbstor.sys

2009-02-07 17:56 . 2009-02-07 17:56 169 --a------ c:\windows\RtlRack.ini

2009-02-07 12:42 . 2009-02-07 12:42 <DIR> d-------- c:\documents and settings\Administrador\Dados de aplicativos\Nero

2009-02-07 12:38 . 2009-02-07 17:32 <DIR> d-------- c:\documents and settings\All Users\Dados de aplicativos\Nero

2009-02-07 10:19 . 1996-11-05 15:13 299,008 --a------ c:\windows\uninst.exe

2009-02-07 10:18 . 2009-02-07 10:18 <DIR> d-------- c:\arquivos de programas\Terzoid WaveShop

2009-02-07 10:13 . 1998-08-04 00:53 1,042,360 --a------ c:\windows\system32\hisetup.vxd

2009-02-07 10:13 . 2006-10-18 19:05 232,448 --a------ c:\windows\system32\l3codecp.acm

2009-02-07 10:12 . 2009-02-07 10:12 <DIR> d-------- c:\arquivos de programas\Timeworks

2009-02-07 10:12 . 2009-02-07 10:12 155,136 --a------ c:\windows\~GLC0001.TMP

2009-02-07 10:12 . 1998-09-07 09:46 61,952 --a------ c:\windows\system32\stu.dll

2009-02-07 10:12 . 2009-02-07 10:12 27,136 --a------ c:\windows\~GLH0002.TMP

2009-02-07 10:12 . 2009-02-07 10:12 5,607 --a------ c:\windows\~GLH0003.TMP

2009-02-07 10:11 . 1998-02-22 11:51 28,160 --a------ c:\windows\system32\Rdcdnt.dll

2009-02-07 10:11 . 1998-02-22 11:51 28,160 --a------ c:\windows\system32\Rdcd32.dll

2009-02-07 10:11 . 1998-02-19 13:06 3,824 --a------ c:\windows\system32\Rdcd16.dll

2009-02-07 10:09 . 2009-02-07 10:10 <DIR> d-------- c:\arquivos de programas\Sonic Foundry Plug-Ins

2009-02-07 10:06 . 2009-02-07 10:06 <DIR> d-------- c:\arquivos de programas\RBC

2009-02-07 09:56 . 2009-02-07 09:56 <DIR> d-------- c:\arquivos de programas\Cakewalk

2009-02-07 09:54 . 2009-02-07 09:54 <DIR> d-------- c:\arquivos de programas\AMSB

2009-02-07 09:54 . 1999-03-04 23:35 370,176 --a------ c:\windows\system32\BlueCtrl.dll

2009-02-07 09:54 . 1998-01-23 11:22 304,128 --a------ c:\windows\IsUninst.exe

2009-02-07 09:54 . 1998-12-22 17:53 207,360 --a------ c:\windows\BlueRem.exe

2009-02-07 09:53 . 2009-02-07 09:53 <DIR> d-------- c:\windows\system32\digilogue

2009-02-07 09:52 . 2009-02-07 09:52 <DIR> d-------- c:\windows\system32\IOSUBSYS

2009-02-07 09:52 . 2009-02-07 10:16 <DIR> d-------- C:\audio

2009-02-07 09:52 . 2009-02-07 09:52 <DIR> d-------- c:\arquivos de programas\Arboretum Systems

2009-02-07 09:52 . 1998-04-30 13:56 129,024 --a------ c:\windows\UNWISE.EXE

2009-02-07 09:52 . 1998-11-14 17:39 87,424 --a------ c:\windows\system32\drivers\TPkd.sys

2009-02-07 09:52 . 1998-11-14 17:40 39,741 --a------ c:\windows\system32\Tpkd.vxd

2009-02-07 09:40 . 2009-02-07 10:19 <DIR> d-------- C:\Program Files

2009-02-06 12:41 . 2009-02-06 12:53 <DIR> d-------- c:\arquivos de programas\Google

2009-02-06 11:20 . 2008-08-14 10:24 2,193,408 -----c--- c:\windows\system32\dllcache\ntoskrnl.exe

2009-02-06 11:20 . 2008-08-14 10:24 2,149,376 -----c--- c:\windows\system32\dllcache\ntkrnlmp.exe

2009-02-06 11:20 . 2008-08-14 10:24 2,070,272 -----c--- c:\windows\system32\dllcache\ntkrnlpa.exe

2009-02-06 11:20 . 2008-08-14 10:24 2,028,032 -----c--- c:\windows\system32\dllcache\ntkrpamp.exe

2009-02-06 10:41 . 2009-02-07 09:12 <DIR> d-------- c:\arquivos de programas\GbPlugin

2009-02-06 10:40 . 2009-02-07 09:12 <DIR> d-------- c:\documents and settings\All Users\Dados de aplicativos\GbPlugin

2009-02-06 10:07 . 2008-06-14 14:34 272,384 --------- c:\windows\system32\drivers\bthport.sys

2009-02-06 10:07 . 2008-06-14 14:34 272,384 -----c--- c:\windows\system32\dllcache\bthport.sys

2009-02-06 09:19 . 2008-10-24 08:21 455,296 -----c--- c:\windows\system32\dllcache\mrxsmb.sys

2009-02-06 07:02 . 2009-02-11 20:44 <DIR> d--h----- c:\windows\$hf_mig$

2009-02-06 07:02 . 2006-09-25 16:58 23,856 --a------ c:\windows\system32\spupdsvc.exe

2009-02-05 20:59 . 2009-02-05 20:59 <DIR> d-------- c:\arquivos de programas\IObit

2009-02-05 20:01 . 2009-02-05 20:01 <DIR> d-------- c:\arquivos de programas\ABBYY FineReader 6.0

2009-02-05 20:01 . 2009-02-05 20:01 <DIR> d-------- c:\arquivos de programas\ABBYY FineReader 5.0 Sprint

2009-02-05 19:58 . 2009-02-14 18:44 179 --a------ c:\windows\lexstat.ini

2009-02-05 19:57 . 2008-04-13 10:47 25,856 --a------ c:\windows\system32\drivers\usbprint.sys

2009-02-05 19:57 . 2008-04-13 10:47 25,856 --a--c--- c:\windows\system32\dllcache\usbprint.sys

2009-02-05 19:56 . 2009-02-18 16:34 <DIR> d-------- c:\arquivos de programas\Lexmark X1100 Series

2009-02-05 19:56 . 2001-09-05 22:50 87,040 --a------ c:\windows\system32\wiafbdrv.dll

2009-02-05 19:56 . 2001-09-05 22:50 87,040 --a--c--- c:\windows\system32\dllcache\wiafbdrv.dll

2009-02-05 19:56 . 2008-04-13 10:45 15,104 --a------ c:\windows\system32\drivers\usbscan.sys

2009-02-05 19:56 . 2008-04-13 10:45 15,104 --a--c--- c:\windows\system32\dllcache\usbscan.sys

2009-02-04 13:30 . 2009-02-04 13:30 <DIR> d-------- c:\documents and settings\Administrador\Dados de aplicativos\Publish Providers

2009-02-04 13:30 . 2009-02-04 13:30 <DIR> d-------- c:\documents and settings\Administrador\Dados de aplicativos\DivX

2009-02-04 13:13 . 2009-02-04 13:13 <DIR> d-------- c:\documents and settings\Administrador\Dados de aplicativos\Sony

2009-02-04 13:11 . 2009-02-04 13:11 <DIR> d-------- c:\arquivos de programas\Vstplugins

2009-02-04 13:11 . 2009-02-04 13:11 <DIR> d-------- c:\arquivos de programas\Sony

2009-02-04 13:00 . 2009-02-04 13:10 <DIR> d-------- c:\arquivos de programas\Winamp

2009-02-04 12:57 . 2009-02-14 10:21 <DIR> d-------- c:\arquivos de programas\DivX

2009-02-04 12:42 . 2009-02-04 12:42 <DIR> d-------- c:\documents and settings\Administrador\Dados de aplicativos\Sony Setup

2009-02-04 12:42 . 2009-02-04 12:42 <DIR> d-------- c:\arquivos de programas\Sony Setup

2009-02-04 12:40 . 2009-02-04 13:19 118,016 --a------ c:\windows\system32\eoats.dll

.

((((((((((((((((((((((((((((((((((((( Relatório Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2009-02-09 22:55 --------- d-----w c:\arquivos de programas\Eset

2009-02-03 18:24 512,096 ----a-w c:\windows\system32\drivers\amon.sys

2009-02-03 18:24 298,104 ----a-w c:\windows\system32\imon.dll

2009-02-03 18:24 15,424 ----a-w c:\windows\system32\drivers\nod32drv.sys

2009-02-03 18:06 --------- d-----w c:\arquivos de programas\microsoft frontpage

2009-02-03 18:04 --------- d-----w c:\arquivos de programas\Serviços on-line

2009-02-03 18:04 --------- d-----w c:\arquivos de programas\Arquivos comuns\Serviços

2008-12-11 00:33 86,016 ----a-w c:\windows\system32\dpl100.dll

2008-12-11 00:33 200,704 ----a-w c:\windows\system32\dtu100.dll

2008-12-09 02:28 593,920 ----a-w c:\windows\system32\dpuGUI11.dll

2008-12-09 02:28 57,344 ----a-w c:\windows\system32\dpv11.dll

2008-12-09 02:28 344,064 ----a-w c:\windows\system32\dpus11.dll

2008-12-09 02:28 294,912 ----a-w c:\windows\system32\dpu11.dll

.

(((((((((((((((((((((((((( Pontos de Carregamento do Registro )))))))))))))))))))))))))))))))))))))))

.

*Nota* entradas vazias e legítimas por defeito não são mostradas.

REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{52ED26DB-9636-45E2-BF6C-1488B1DDAA2B}]

2009-02-04 13:19 118016 --a------ c:\windows\system32\eoats.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"swg"="c:\arquivos de programas\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-02-06 39408]

"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-13 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]

c:\documents and settings\Administrador\Menu Iniciar\Programas\Inicializar\

NOD32 Control Center.lnk - c:\arquivos de programas\Eset\nod32kui.exe [2009-02-03 949376]

c:\documents and settings\All Users\Menu Iniciar\Programas\Inicializar\

Adobe Reader Speed Launch.lnk - c:\arquivos de programas\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2005-09-23 29696]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]

"NoResolveTrack"= 1 (0x1)

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]

"NoResolveTrack"= 1 (0x1)

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]

"{E37CB5F0-51F5-4395-A808-5FA49E399007}"= "c:\arquiv~1\GbPlugin\gbiehabn.dll" [2008-09-26 378792]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\ GbPluginAbn]

2008-09-26 19:26 378792 c:\arquiv~1\GbPlugin\gbiehabn.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]

"vidc.I420"= vdrcodec.dll

"VIDC.PIM1"= pclepim1.dll

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"%windir%\\Network Diagnostic\\xpnetdiag.exe"=

"%windir%\\system32\\sessmgr.exe"=

"c:\\Arquivos de programas\\Microsoft Office\\Office12\\GROOVE.EXE"=

"c:\\Arquivos de programas\\MSN Messenger\\msnmsgr.exe"=

"c:\\Arquivos de programas\\MSN Messenger\\livecall.exe"=

R0 flstjyqc;flstjyqc;c:\windows\system32\drivers\flstjyqc.sys [2001-12-06 23424]

R0 ViBus;ViBus;c:\windows\system32\drivers\ViBus.sys [2008-08-01 16896]

R0 ViPrt;VIA SATA IDE Device Driver;c:\windows\system32\drivers\ViPrt.sys [2008-08-01 53248]

R1 nod32drv;nod32drv;c:\windows\system32\drivers\nod32drv.sys [2009-02-03 15424]

UnknownUnknown GbpSv;GbpSv; [x]

--- ---

*NewlyCreated* - GBPSV

.

------- Scan Suplementar -------

.

uStart Page = hxxp://www.continental.brasilflog.com.br/

uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8

uSearchURL,(Default) = hxxp://www.google.com/search?q=%s

LSP: c:\windows\system32\imon.dll

.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2009-02-26 10:41:40

Windows 5.1.2600 Service Pack 3 NTFS

Procurando processos ocultos ...

Procurando entradas auto inicializáveis ocultas ...

Procurando ficheiros/arquivos ocultos ...

Varredura completada com sucesso

arquivos/ficheiros ocultos: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\GbpSv]

"ImagePath"="c:\arquiv~1\GbPlugin\GbpSv.exe"

.

--------------------- DLLs Carregadas Sob os Processos em Execução ---------------------

- - - - - - - > 'winlogon.exe'(668)

c:\arquiv~1\GbPlugin\gbiehabn.dll

- - - - - - - > 'lsass.exe'(724)

c:\windows\system32\imon.dll

c:\arquivos de programas\Eset\pr_imon.dll

.

------------------------ Outros Processos em Execução ------------------------

.

c:\windows\system32\LEXBCES.EXE

c:\windows\system32\LEXPPS.EXE

c:\arquivos de programas\Eset\nod32krn.exe

c:\windows\system32\wscntfy.exe

.

**************************************************************************

.

Tempo para conclusão: 2009-02-26 10:44:22 - Máquina reiniciou [Administrador]

ComboFix-quarantined-files.txt 2009-02-26 13:44:14

Pré-execução: 14 pasta(s) 32,277,893,120 bytes disponíveis

Pós execução: 14 pasta(s) 31,209,684,992 bytes disponíveis

238 --- E O F --- 2009-02-11 10:20:26

MGuitar · Fevereiro 27, 2009

1ª Etapa

Acesse o site VirusTotal. Copie este caminho em destaque abaixo e cole ao lado do botão . Clique em Enviar Arquivo e aguarde.

C:\Windows\system32\drivers\flstjyqc.sys

Copie o link que estará em frente ao nome Permalink e cole aqui, veja na imagem:

2ª Etapa

- Faça o download do Malwarebytes Anti-Malware e salve-o no desktop;

● Dê dois cliques no programa para iniciar a instalação. Selecione o idioma Português (Brasil);

● Ao final da instalação, marque as opções "Atualizar Malwarebytes Anti-Malware" e "Executar Malwarebytes Anti-Malware", e clique em Concluir;

● Após a instalação execute o programa;

● Marque a opção Verificação Completa e depois clique em Verificar. Selecione sua unidade C: e clique no botão Iniciar Verificação;

● Quando o scan terminar, clique em OK e o log será automaticamente aberto para você;

● Se algo for detectado, verifique se todos os itens estão marcados e clique no botão Remover.

OBS: Caso apareça uma mensagem pedindo para que você reinicie o computador para completar o processo de remoção, reinicie-o imediatamente;

● O log pode ser consultado clicando em Logs do menu principal também;

Em sua próxima resposta, cole o resultado do VirusTotal, o log do Malwarebytes e um novo log do HijackThis.

continentalsom · Fevereiro 27, 2009

segue o link:

analisis/fe94cca7a48ab02af88e9f8e37a64e02

continentalsom · Fevereiro 27, 2009

Malwarebytes' Anti-Malware 1.34

Versão do banco de dados: 1809

Windows 5.1.2600 Service Pack 3

27/2/2009 09:54:08

mbam-log-2009-02-27 (09-54-08).txt

Tipo de Verificação: Completa (C:\|)

Objetos verificados: 107315

Tempo decorrido: 22 minute(s), 17 second(s)

Processos da Memória infectados: 0

Módulos de Memória Infectados: 0

Chaves do Registro infectadas: 3

Valores do Registro infectados: 4

Ítens do Registro infectados: 0

Pastas infectadas: 0

Arquivos infectados: 2

Processos da Memória infectados:

(Nenhum ítem malicioso foi detectado)

Módulos de Memória Infectados:

(Nenhum ítem malicioso foi detectado)

Chaves do Registro infectadas:

HKEY_CLASSES_ROOT\CLSID\{52ed26db-9636-45e2-bf6c-1488b1ddaa2b} (Trojan.Downloader) -> Delete on reboot.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{52ed26db-9636-45e2-bf6c-1488b1ddaa2b} (Trojan.Downloader) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{52ed26db-9636-45e2-bf6c-1488b1ddaa2b} (Trojan.Downloader) -> Delete on reboot.

Valores do Registro infectados:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Settings\bf (Trojan.Agent) -> Delete on reboot.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Settings\bk (Trojan.Agent) -> Delete on reboot.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Settings\iu (Trojan.Agent) -> Delete on reboot.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Settings\mu (Trojan.Agent) -> Delete on reboot.

Ítens do Registro infectados:

(Nenhum ítem malicioso foi detectado)

Pastas infectadas:

(Nenhum ítem malicioso foi detectado)

Arquivos infectados:

C:\Documents and Settings\Administrador\Configurações locais\Temp\vtmklozc.dat (Rootkit.Agent) -> Delete on reboot.

C:\WINDOWS\system32\eoats.dll (Trojan.Downloader) -> Delete on reboot.

continentalsom · Fevereiro 27, 2009

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 10:00:09, on 27/2/2009

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16735)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\ARQUIV~1\GbPlugin\GbpSv.exe

C:\WINDOWS\system32\LEXBCES.EXE

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\system32\LEXPPS.EXE

C:\WINDOWS\Explorer.EXE

C:\Arquivos de programas\Eset\nod32krn.exe

C:\Arquivos de programas\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Arquivos de programas\Adobe\Acrobat 7.0\Reader\reader_sl.exe

C:\Arquivos de programas\Eset\nod32kui.exe

C:\WINDOWS\system32\wscntfy.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\wuauclt.exe