Ir para conteúdo

POWERED BY:

Arquivado

Este tópico foi arquivado e está fechado para novas respostas.

Bruna Garred

[Resolvido] &nbspAnálise de Log

Recommended Posts

Olá, meu computador tá muito lento, principalmente quando acesso internet. Abro o Firefox e ele trava um pouco, (fica Não Respondendo) depois abre, mas alguns sites não abrem de jeito nenhum. Meu modem funciona normalmente, acho que o pc está com virus, sei lá. Tento com o IE e com o Chrome e a lentidão é a mesma.

 

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:44:36, on 21/09/2011
Platform: Windows 7  (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16839)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Real\RealPlayer\Update\realsched.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Users\Bruna\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Users\Bruna\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe
C:\Program Files\ManyCam\Bin\ManyCam.exe
C:\Windows\System32\StikyNot.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Users\Bruna\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Program Files\Last.fm\LastFM.exe
C:\Windows\system32\taskeng.exe
C:\Users\Bruna\Downloads\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.terra.com.br/portal/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
R3 - URLSearchHook: (no name) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: G-Buster Browser Defense - {C41A1C0E-EA6C-11D4-B1B8-444553540000} - C:\PROGRAM FILES\GBPLUGIN\gbieh.dll
O2 - BHO: G-Buster Browser Defense CEF - {C41A1C0E-EA6C-11D4-B1B8-444553540003} - C:\Program Files\GbPlugin\gbiehcef.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Real\RealPlayer\update\realsched.exe"  -osboot
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Bruna\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [MsgrUpd] C:\Windows\system32\MsgrUpd.exe
O4 - HKCU\..\Run: [Octoshape Streaming Services] "C:\Users\Bruna\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe" -inv:bootrun
O4 - HKCU\..\Run: [ManyCam] "C:\Program Files\ManyCam\Bin\ManyCam.exe" /silent
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll
O9 - Extra button: Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O15 - Trusted Zone: www.bancobrasil.com.br
O15 - Trusted Zone: www14.bancobrasil.com.br
O15 - Trusted Zone: www2.bancobrasil.com.br
O15 - Trusted Zone: www.bb.com.br
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} (get_atlcom Class) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - Winlogon Notify:  GbPluginBb - C:\Program Files\GbPlugin\gbieh.dll
O20 - Winlogon Notify:  GbPluginCef - C:\Program Files\GbPlugin\gbiehCef.dll
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Gbp Service (GbpSv) -   - C:\PROGRA~1\GbPlugin\GbpSv.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Serviço do Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe

--
End of file - 7611 bytes

Compartilhar este post


Link para o post
Compartilhar em outros sites

Passei o Malwarebytes' Anti-Malware nele e mandei os 2 arquivos encontrados pra Quarentena. Ainda assim, o pc não abre páginas como Twitter, Wordpress...

 

Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Versão da Base de Dados:  7768

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

22/09/2011 01:05:52
mbam-log-2011-09-22 (01-05-44).txt

Tipo de Verificação:  Verificação Completa  (C:\|)
Objetos escaneados:  335115
Tempo decorrido: 43 minuto(s), 23 segundo(s)

Processos de Memória Infectados:  0
Módulos de Memória Infectados:  0
Chaves de Registro Infectadas: 0
Valores de Registro Infectados: 1
Itens de Dados no Registro Infectados:  0
Pastas Infectadas:  0
Arquivos Infectados: 1

Processos de Memória Infectados: 
(Não foram detectados ítens maliciosos)

Módulos de Memória Infectados: 
(Não foram detectados ítens maliciosos)

Chaves de Registro Infectadas:
(Não foram detectados ítens maliciosos)

Valores de Registro Infectados:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MsgrUpd (Trojan.Banker) -> Value: MsgrUpd -> No action taken.

Itens de Dados no Registro Infectados: 
(Não foram detectados ítens maliciosos)

Pastas Infectadas: 
(Não foram detectados ítens maliciosos)

Arquivos Infectados:
c:\program files\vdownloader\vdownloadersetup.exe (Affiliate.Downloader) -> No action taken.

Compartilhar este post


Link para o post
Compartilhar em outros sites

Olá Bruna Garred

 

 

*Baixe o OTS e salve-o no desktop

*Execute-o e selecione as opções:

Scan All Users

Use Company Name WhiteList

Skip Microsoft Files

 

*Em Additional Scans selecione:

Reg - Drivers32

File - Lop Check

File - Purity Scan

 

*Selecione, copie, e cole o código no espaço abaixo de Custom Scans:

%ALLUSERSPROFILE%\*.*

%ALLUSERSPROFILE%\Dados de aplicativos\*

%ALLUSERSPROFILE%\Dados de aplicativos\*.*

%APPDATA%\*

%APPDATA%\*.*

%LOCALAPPDATA%\*.*

%SYSTEMDRIVE%\*

%SYSTEMDRIVE%\*.*

%USERPROFILE%\*.*

CREATERESTOREPOINT

 

*Clique [Run Scan]

*Cole o relatório apresentado

Compartilhar este post


Link para o post
Compartilhar em outros sites

Boa noite, wings!

 

OTS logfile created on: 22/09/2011 18:56:51 - Run 2
OTS by OldTimer - Version 3.1.44.6     Folder = C:\Users\Bruna\Desktop
Ultimate Edition  (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000416 | Country: Brasil | Language: PTB | Date Format: dd/MM/yyyy

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 42,00% Memory free
4,00 Gb Paging File | 2,00 Gb Available in Paging File | 60,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 297,99 Gb Total Space | 254,88 Gb Free Space | 85,53% Space Free | Partition Type: NTFS
Drive D: | 4,36 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: BRUNA-PC
Current User Name: Bruna
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 30 Days

[Processes - Safe List]
ots.exe -> C:\Users\Bruna\Desktop\OTS.exe -> [2011/09/22 18:48:00 | 000,646,656 | ---- | M] (OldTimer Tools)
firefox.exe -> C:\Arquivos de Programas\Mozilla Firefox\firefox.exe -> [2011/09/07 19:41:12 | 000,924,632 | ---- | M] (Mozilla Corporation)
avastui.exe -> C:\Arquivos de Programas\AVAST Software\Avast\AvastUI.exe -> [2011/09/06 17:45:30 | 003,722,416 | ---- | M] (AVAST Software)
avastsvc.exe -> C:\Arquivos de Programas\AVAST Software\Avast\AvastSvc.exe -> [2011/09/06 17:45:28 | 000,044,768 | ---- | M] (AVAST Software)
gbpsv.exe -> C:\Arquivos de Programas\GbPlugin\gbpsv.exe -> [2011/07/18 08:11:44 | 000,208,264 | ---- | M] ( )
msnmsgr.exe -> C:\Arquivos de Programas\Windows Live\Messenger\msnmsgr.exe -> [2011/05/13 16:03:34 | 004,283,256 | ---- | M] (Microsoft Corporation)
wlcomm.exe -> C:\Arquivos de Programas\Windows Live\Contacts\wlcomm.exe -> [2011/05/13 14:49:42 | 000,025,456 | ---- | M] (Microsoft Corporation)
manycam.exe -> C:\Arquivos de Programas\ManyCam\Bin\ManyCam.exe -> [2011/05/13 01:45:56 | 001,756,232 | ---- | M] (ManyCam LLC)
wlidsvcm.exe -> C:\Arquivos de Programas\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE -> [2011/03/28 20:31:16 | 000,193,920 | ---- | M] (Microsoft Corp.)
wlidsvc.exe -> C:\Arquivos de Programas\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE -> [2011/03/28 20:31:14 | 001,713,536 | ---- | M] (Microsoft Corp.)
explorer.exe -> C:\Windows\explorer.exe -> [2011/02/26 02:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation)
realsched.exe -> C:\Arquivos de Programas\Real\RealPlayer\Update\realsched.exe -> [2011/02/08 04:40:25 | 000,273,544 | ---- | M] (RealNetworks, Inc.)
lastfm.exe -> C:\Arquivos de Programas\Last.fm\LastFM.exe -> [2010/10/27 21:21:54 | 001,155,072 | ---- | M] (Last.fm)
wmplayer.exe -> C:\Arquivos de Programas\Windows Media Player\wmplayer.exe -> [2010/09/01 01:26:04 | 000,164,864 | ---- | M] (Microsoft Corporation)
psiservice_2.exe -> c:\Arquivos de Programas\Common Files\Protexis\License Service\PsiService_2.exe -> [2009/07/24 19:38:50 | 000,189,728 | ---- | M] (Protexis Inc.)
wmpnetwk.exe -> C:\Arquivos de Programas\Windows Media Player\wmpnetwk.exe -> [2009/07/13 22:14:47 | 001,121,280 | ---- | M] (Microsoft Corporation)
taskhost.exe -> C:\Windows\System32\taskhost.exe -> [2009/07/13 22:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation)
stikynot.exe -> C:\Windows\System32\StikyNot.exe -> [2009/07/13 22:14:41 | 000,354,304 | ---- | M] (Microsoft Corporation)
octoshapeclient.exe -> C:\Users\Bruna\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe -> [2009/01/08 10:44:06 | 000,070,936 | ---- | M] (Octoshape ApS)
groovemonitor.exe -> C:\Arquivos de Programas\Microsoft Office\Office12\GrooveMonitor.exe -> [2008/10/25 11:44:34 | 000,031,072 | ---- | M] (Microsoft Corporation)

[Modules - No Company Name]
npswf32.dll -> C:\Windows\System32\Macromed\Flash\NPSWF32.dll -> [2011/09/22 18:15:32 | 006,277,280 | ---- | M] ()
mozjs.dll -> C:\Arquivos de Programas\Mozilla Firefox\mozjs.dll -> [2011/09/07 19:41:12 | 001,846,232 | ---- | M] ()
cximagecrt.dll -> C:\Arquivos de Programas\ManyCam\Bin\cximagecrt.dll -> [2011/05/13 01:46:02 | 000,498,760 | ---- | M] ()
crashrpt.dll -> C:\Arquivos de Programas\ManyCam\Bin\CrashRpt.dll -> [2011/05/13 01:46:00 | 000,123,976 | ---- | M] ()
srv_rtaudioplayback.dll -> C:\Arquivos de Programas\Last.fm\srv_rtaudioplayback.dll -> [2010/10/27 21:23:04 | 000,106,496 | ---- | M] ()
ext_messengernotify.dll -> C:\Arquivos de Programas\Last.fm\ext_messengernotify.dll -> [2010/10/27 21:22:52 | 000,057,344 | ---- | M] ()
ext_skypenotify.dll -> C:\Arquivos de Programas\Last.fm\ext_skypenotify.dll -> [2010/10/27 21:22:42 | 000,058,880 | ---- | M] ()
srv_madtranscode.dll -> C:\Arquivos de Programas\Last.fm\srv_madtranscode.dll -> [2010/10/27 21:22:08 | 000,147,456 | ---- | M] ()
srv_httpinput.dll -> C:\Arquivos de Programas\Last.fm\srv_httpinput.dll -> [2010/10/27 21:22:00 | 000,028,160 | ---- | M] ()
lastfmfingerprint1.dll -> C:\Arquivos de Programas\Last.fm\LastFmFingerprint1.dll -> [2010/10/27 21:19:28 | 000,372,736 | ---- | M] ()
breakpad.dll -> C:\Arquivos de Programas\Last.fm\breakpad.dll -> [2010/10/27 21:19:06 | 000,025,088 | ---- | M] ()
moose1.dll -> C:\Arquivos de Programas\Last.fm\Moose1.dll -> [2010/10/27 21:18:50 | 000,180,224 | ---- | M] ()
lastfmtools1.dll -> C:\Arquivos de Programas\Last.fm\LastFmTools1.dll -> [2010/10/27 21:18:34 | 000,540,672 | ---- | M] ()
libfftw3f-3.dll -> C:\Arquivos de Programas\Last.fm\libfftw3f-3.dll -> [2010/10/27 21:13:52 | 001,382,507 | ---- | M] ()
zlibwapi.dll -> C:\Arquivos de Programas\Last.fm\zlibwapi.dll -> [2010/10/27 21:13:52 | 000,074,240 | ---- | M] ()
qtnetwork4.dll -> C:\Arquivos de Programas\Last.fm\QtNetwork4.dll -> [2008/04/16 17:42:30 | 000,376,832 | ---- | M] ()
qtsql4.dll -> C:\Arquivos de Programas\Last.fm\QtSql4.dll -> [2008/04/16 17:42:16 | 000,524,288 | ---- | M] ()
qtgui4.dll -> C:\Arquivos de Programas\Last.fm\QtGui4.dll -> [2008/04/16 17:42:02 | 006,701,056 | ---- | M] ()
qtxml4.dll -> C:\Arquivos de Programas\Last.fm\QtXml4.dll -> [2008/04/16 17:36:38 | 000,376,832 | ---- | M] ()
qtcore4.dll -> C:\Arquivos de Programas\Last.fm\QtCore4.dll -> [2008/04/16 17:36:34 | 001,654,784 | ---- | M] ()
qmng4.dll -> C:\Arquivos de Programas\Last.fm\imageformats\qmng4.dll -> [2008/04/02 14:26:50 | 000,233,472 | ---- | M] ()
qgif4.dll -> C:\Arquivos de Programas\Last.fm\imageformats\qgif4.dll -> [2008/04/02 14:26:34 | 000,021,504 | ---- | M] ()
qjpeg4.dll -> C:\Arquivos de Programas\Last.fm\imageformats\qjpeg4.dll -> [2008/04/02 14:26:28 | 000,135,168 | ---- | M] ()

[Win32 Services - Safe List]
(avast! Antivirus) avast! Antivirus [Auto | Running] -> C:\Program Files\AVAST Software\Avast\AvastSvc.exe -> [2011/09/06 17:45:28 | 000,044,768 | ---- | M] (AVAST Software)
(GbpSv) Gbp Service [unknown | Running] -> C:\Arquivos de Programas\GbPlugin\gbpsv.exe -> [2011/07/18 08:11:44 | 000,208,264 | ---- | M] ( )
(FLEXnet Licensing Service) FLEXnet Licensing Service [On_Demand | Stopped] -> C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -> [2011/02/17 14:23:55 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.)
(WatAdminSvc) Serviço de Tecnologias de Ativação do Windows [unknown | Stopped] -> C:\Windows\System32\Wat\WatAdminSvc.exe -> [2011/01/11 23:19:01 | 001,343,400 | ---- | M] (Microsoft Corporation)
(PSI_SVC_2) Protexis Licensing V2 [Auto | Running] -> c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe -> [2009/07/24 19:38:50 | 000,189,728 | ---- | M] (Protexis Inc.)
(SensrSvc) Brilho Adaptável [On_Demand | Stopped] -> C:\Windows\System32\sensrsvc.dll -> [2009/07/13 22:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation)
(PeerDistSvc) BranchCache [On_Demand | Stopped] -> C:\Windows\System32\PeerDistSvc.dll -> [2009/07/13 22:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation)
(WinDefend) Windows Defender [Auto | Running] -> C:\Arquivos de Programas\Windows Defender\MpSvc.dll -> [2009/07/13 22:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation)

[Driver Services - Safe List]
(aswSnx) aswSnx [File_System | System | Running] -> C:\Windows\System32\drivers\aswSnx.sys -> [2011/09/06 17:38:05 | 000,442,200 | ---- | M] (AVAST Software)
(aswSP) aswSP [Kernel | System | Running] -> C:\Windows\System32\drivers\aswSP.sys -> [2011/09/06 17:37:53 | 000,320,856 | ---- | M] (AVAST Software)
(aswRdr) aswRdr [Kernel | System | Running] -> C:\Windows\System32\drivers\aswRdr.sys -> [2011/09/06 17:36:38 | 000,034,392 | ---- | M] (AVAST Software)
(aswTdi) avast! Network Shield Support [Kernel | System | Running] -> C:\Windows\System32\drivers\aswTdi.sys -> [2011/09/06 17:36:36 | 000,052,568 | ---- | M] (AVAST Software)
(aswMonFlt) aswMonFlt [File_System | Auto | Running] -> C:\Windows\System32\drivers\aswMonFlt.sys -> [2011/09/06 17:36:26 | 000,054,616 | ---- | M] (AVAST Software)
(aswFsBlk) aswFsBlk [File_System | Auto | Running] -> C:\Windows\System32\drivers\aswFsBlk.sys -> [2011/09/06 17:36:12 | 000,020,568 | ---- | M] (AVAST Software)
(GbpKm) Gbp KernelMode [Kernel | Boot | Running] -> C:\Windows\system32\drivers\gbpkm.sys -> [2011/07/18 08:13:36 | 000,043,600 | ---- | M] (GAS Tecnologia)
(npf) NetGroup Packet Filter Driver [Kernel | Auto | Running] -> C:\Windows\System32\drivers\npf.sys -> [2010/01/26 23:09:02 | 000,050,704 | ---- | M] (CACE Technologies, Inc.)
(vmbus) Barramento da Máquina Virtual [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\vmbus.sys -> [2009/07/13 22:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation)
(storflt) Driver de Filtro de Aceleração do Barramento da Máquina Virtual do Disco [Kernel | Boot | Running] -> C:\Windows\system32\DRIVERS\vmstorfl.sys -> [2009/07/13 22:19:10 | 000,040,896 | ---- | M] (Microsoft Corporation)
(storvsc) storvsc [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\storvsc.sys -> [2009/07/13 22:19:10 | 000,028,224 | ---- | M] (Microsoft Corporation)
(WinUsb) WinUsb [Kernel | On_Demand | Stopped] -> C:\Windows\System32\drivers\winusb.sys -> [2009/07/13 20:51:11 | 000,034,944 | ---- | M] (Microsoft Corporation)
(s3cap) s3cap [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\vms3cap.sys -> [2009/07/13 20:28:47 | 000,005,632 | ---- | M] (Microsoft Corporation)
(VMBusHID) VMBusHID [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\VMBusHID.sys -> [2009/07/13 20:28:45 | 000,017,920 | ---- | M] (Microsoft Corporation)
(RTL8187B) Realtek RTL8187B Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter [Kernel | On_Demand | Running] -> C:\Windows\System32\drivers\RTL8187B.sys -> [2009/07/13 19:02:53 | 000,347,136 | ---- | M] (Realtek Semiconductor Corporation                           )
(IntcHdmiAddService) Intel(R) High Definition Audio HDMI [Kernel | On_Demand | Running] -> C:\Windows\System32\drivers\IntcHdmi.sys -> [2008/04/10 14:37:12 | 000,113,152 | ---- | M] (Intel(R) Corporation)
(ManyCam) ManyCam Virtual Webcam, WDM Video Capture Driver [Kernel | On_Demand | Running] -> C:\Windows\System32\drivers\ManyCam.sys -> [2008/01/14 07:06:32 | 000,021,632 | ---- | M] (ManyCam LLC.)
({95808DC4-FA4A-4c74-92FE-5B863F82066B}) {95808DC4-FA4A-4c74-92FE-5B863F82066B} [Kernel | Auto | Running] -> C:\Arquivos de Programas\CyberLink\PowerDVD\000.fcl -> [2006/11/02 16:51:58 | 000,013,560 | ---- | M] (Cyberlink Corp.)

[Registry - Safe List]
< Internet Explorer Settings [HKEY_LOCAL_MACHINE\] > -> -> 
< Internet Explorer Settings [HKEY_USERS\.DEFAULT\] > -> -> 
HKEY_USERS\.DEFAULT\: "ProxyEnable" -> 0 -> 
< Internet Explorer Settings [HKEY_USERS\__aswSnx private storage\] > -> -> 
< Internet Explorer Settings [HKEY_USERS\S-1-5-18\] > -> -> 
HKEY_USERS\S-1-5-18\: "ProxyEnable" -> 0 -> 
< Internet Explorer Settings [HKEY_USERS\S-1-5-19\] > -> -> 
< Internet Explorer Settings [HKEY_USERS\S-1-5-20\] > -> -> 
< Internet Explorer Settings [HKEY_USERS\S-1-5-21-3331449484-3200966063-500050860-1000\] > -> -> 
HKEY_USERS\S-1-5-21-3331449484-3200966063-500050860-1000\: Main\\"Start Page" -> http://www.terra.com.br/portal/ -> 
HKEY_USERS\S-1-5-21-3331449484-3200966063-500050860-1000\: Main\\"Start Page Redirect Cache" -> http://br.msn.com/?ocid=iehp -> 
HKEY_USERS\S-1-5-21-3331449484-3200966063-500050860-1000\: Main\\"Start Page Redirect Cache AcceptLangs" -> pt-BR -> 
HKEY_USERS\S-1-5-21-3331449484-3200966063-500050860-1000\: Main\\"Start Page Redirect Cache_TIMESTAMP" -> 13 A3 39 B5 86 58 CC 01  [binary data] -> 
HKEY_USERS\S-1-5-21-3331449484-3200966063-500050860-1000\: URLSearchHooks\\"{A3BC75A2-1F87-4686-AA43-5347D756017C}" [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
HKEY_USERS\S-1-5-21-3331449484-3200966063-500050860-1000\: "ProxyEnable" -> 0 -> 
HKEY_USERS\S-1-5-21-3331449484-3200966063-500050860-1000\: "ProxyOverride" -> *.local -> 
< FireFox Settings [Prefs.js] > -> C:\Users\Bruna\AppData\Roaming\Mozilla\FireFox\Profiles\h5iql26e.default\prefs.js -> 
browser.search.defaultengine -> "Ask.com" ->
browser.search.defaultenginename -> "Ask.com" ->
browser.search.order.1 -> "Ask.com" ->
browser.search.selectedEngine -> "Google" ->
browser.search.useDBForOrder -> true ->
browser.startup.homepage -> "http://g1.globo.com/|https://www.google.com/accounts/ServiceLogin?service=mail&passive=true&rm=false&continue=http%3A%2F%2Fmail.google.com%2Fmail%2F%3Fui%3Dhtml%26zy%3Dl&bsv=llya694le36z&scc=1&ltmpl=default&ltmplcache=2&from=login|http://twitter.com/|http://www.facebook.com/" ->
extensions.enabledItems -> {87F8774F-B485-47E2-A755-A40A8A5E886C}:1.0.18.2 ->
extensions.enabledItems -> {87F8774F-B485-47E2-A755-A40A8A5E886D}:1.0.16.12 ->
extensions.enabledItems -> {ABDE892B-13A8-4d1b-88E6-365A6E755758}:14.0.2 ->
extensions.enabledItems -> wrc@avast.com:20110101 ->
extensions.enabledItems -> {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22 ->
extensions.enabledItems -> {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24 ->
< FireFox Extensions [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla
HKLM\software\mozilla\Firefox\Extensions ->  -> 
HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758} -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [C:\PROGRAMDATA\REAL\REALPLAYER\BROWSERRECORDPLUGIN\FIREFOX\EXT] -> [2011/02/08 04:40:46 | 000,000,000 | ---D | M]
HKLM\software\mozilla\Firefox\Extensions\\wrc@avast.com -> C:\Arquivos de Programas\AVAST Software\Avast\WebRep\FF [C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF] -> [2011/09/12 09:40:06 | 000,000,000 | ---D | M]
HKLM\software\mozilla\Mozilla Firefox 6.0.2\extensions ->  -> 
HKLM\software\mozilla\Mozilla Firefox 6.0.2\extensions\\Components -> C:\Arquivos de Programas\Mozilla Firefox\components [C:\PROGRAM FILES\MOZILLA FIREFOX\COMPONENTS] -> [2011/09/07 19:41:13 | 000,000,000 | ---D | M]
HKLM\software\mozilla\Mozilla Firefox 6.0.2\extensions\\Plugins -> C:\Arquivos de Programas\Mozilla Firefox\plugins [C:\PROGRAM FILES\MOZILLA FIREFOX\PLUGINS] -> [2011/05/07 06:23:56 | 000,000,000 | ---D | M]
< FireFox Extensions [user Folders] > -> 
 -> C:\Users\Bruna\AppData\Roaming\mozilla\Extensions -> [2011/01/10 15:06:01 | 000,000,000 | ---D | M]
 -> C:\Users\Bruna\AppData\Roaming\mozilla\Firefox\Profiles\h5iql26e.default\extensions -> [2011/09/08 17:24:08 | 000,000,000 | ---D | M]
Modulo de Seguranca - Banco do Brasil SA   -> C:\Users\Bruna\AppData\Roaming\mozilla\Firefox\Profiles\h5iql26e.default\extensions\{87F8774F-B485-47E2-A755-A40A8A5E886C} -> [2011/07/22 15:56:57 | 000,000,000 | ---D | M]
Adicional de Seguranca CAIXA   -> C:\Users\Bruna\AppData\Roaming\mozilla\Firefox\Profiles\h5iql26e.default\extensions\{87F8774F-B485-47E2-A755-A40A8A5E886D} -> [2011/09/08 17:24:08 | 000,000,000 | ---D | M]
< FireFox SearchPlugins [user Folders] > -> 
askcom.xml -> C:\Users\Bruna\AppData\Roaming\Mozilla\FireFox\Profiles\h5iql26e.default\searchplugins\askcom.xml -> [2011/08/20 05:03:02 | 000,002,400 | ---- | M] ()
< FireFox Extensions [Program Folders] > -> 
 -> C:\Arquivos de Programas\Mozilla Firefox\extensions -> [2011/09/04 19:14:17 | 000,000,000 | ---D | M]
Java Console   -> C:\Arquivos de Programas\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} -> [2011/04/27 23:22:17 | 000,000,000 | ---D | M]
Java Console   -> C:\Arquivos de Programas\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} -> [2011/04/30 15:24:17 | 000,000,000 | ---D | M]
Java Console   -> C:\Arquivos de Programas\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} -> [2011/08/18 18:32:31 | 000,000,000 | ---D | M]
avast! WebRep -> C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF -> [2011/09/12 09:40:06 | 000,000,000 | ---D | M]
< HOSTS File > ([2011/07/20 15:02:34 | 000,000,824 | ---- | M] - 21 lines) -> C:\Windows\System32\drivers\etc\hosts -> 
Reset Hosts
< BHO's [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ -> 
{3049C3E9-B461-4BC5-8870-4C09146192CA} [HKLM] -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [RealPlayer Download and Record Plugin for Internet Explorer] -> [2011/02/08 04:40:45 | 000,381,656 | ---- | M] (RealPlayer)
{72853161-30C5-4D22-B7F9-0BBC1D38A37E} [HKLM] -> C:\Arquivos de Programas\Microsoft Office\Office12\GrooveShellExtensions.dll [Groove GFS Browser Helper] -> [2009/02/12 15:19:32 | 002,217,848 | ---- | M] (Microsoft Corporation)
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} [HKLM] -> C:\Arquivos de Programas\AVAST Software\Avast\aswWebRepIE.dll [avast! WebRep] -> [2011/09/06 17:45:26 | 000,806,456 | ---- | M] (AVAST Software)
{9030D464-4C02-4ABF-8ECC-5164760863C6} [HKLM] -> C:\Arquivos de Programas\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll [Windows Live ID Sign-in Helper] -> [2011/03/28 20:35:06 | 000,441,216 | ---- | M] (Microsoft Corp.)
{9FDDE16B-836F-4806-AB1F-1455CBEFF289} [HKLM] -> C:\Arquivos de Programas\Windows Live\Companion\companioncore.dll [Windows Live Messenger Companion Helper] -> [2011/05/13 15:21:16 | 000,393,600 | ---- | M] (Microsoft Corporation)
{C41A1C0E-EA6C-11D4-B1B8-444553540000} [HKLM] -> C:\Arquivos de Programas\GbPlugin\gbieh.dll [GbIehObj Class] -> [2011/07/18 08:09:12 | 001,685,384 | ---- | M] (Banco do Brasil)
{C41A1C0E-EA6C-11D4-B1B8-444553540003} [HKLM] -> C:\Arquivos de Programas\GbPlugin\gbiehcef.dll [GbIehObj Class] -> [2011/04/18 15:12:24 | 000,496,072 | ---- | M] (Caixa Economica Federal)
< Internet Explorer ToolBars [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar -> 
"{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}" [HKLM] -> C:\Arquivos de Programas\AVAST Software\Avast\aswWebRepIE.dll [avast! WebRep] -> [2011/09/06 17:45:26 | 000,806,456 | ---- | M] (AVAST Software)
"{CCC7A320-B3CA-4199-B1A6-9F516DD69829}" [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
< Internet Explorer ToolBars [HKEY_USERS\S-1-5-21-3331449484-3200966063-500050860-1000\] > -> HKEY_USERS\S-1-5-21-3331449484-3200966063-500050860-1000\Software\Microsoft\Internet Explorer\Toolbar\ -> 
WebBrowser\\"{CCC7A320-B3CA-4199-B1A6-9F516DD69829}" [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
WebBrowser\\"{D4027C7F-154A-4066-A1AD-4243D8127440}" [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
< Run [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> 
"avast" -> C:\Program Files\AVAST Software\Avast\avastUI.exe ["C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui] -> [2011/09/06 17:45:30 | 003,722,416 | ---- | M] (AVAST Software)
"Malwarebytes' Anti-Malware (reboot)" -> C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe ["C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript] -> [2011/08/31 17:00:48 | 001,047,208 | ---- | M] (Malwarebytes Corporation)
"TkBellExe" -> C:\Program Files\Real\RealPlayer\update\realsched.exe ["C:\Program Files\Real\RealPlayer\update\realsched.exe"  -osboot] -> [2011/02/08 04:40:25 | 000,273,544 | ---- | M] (RealNetworks, Inc.)
< RunOnce [HKEY_USERS\S-1-5-19\] > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce -> 
"mctadmin" -> C:\Windows\System32\mctadmin.exe [C:\Windows\System32\mctadmin.exe] -> [2009/07/13 22:14:23 | 000,093,696 | ---- | M] (Microsoft Corporation)
< RunOnce [HKEY_USERS\S-1-5-20\] > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce -> 
"mctadmin" -> C:\Windows\System32\mctadmin.exe [C:\Windows\System32\mctadmin.exe] -> [2009/07/13 22:14:23 | 000,093,696 | ---- | M] (Microsoft Corporation)
< Run [HKEY_USERS\S-1-5-21-3331449484-3200966063-500050860-1000\] > -> HKEY_USERS\S-1-5-21-3331449484-3200966063-500050860-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> 
"ManyCam" -> C:\Program Files\ManyCam\Bin\ManyCam.exe ["C:\Program Files\ManyCam\Bin\ManyCam.exe" /silent] -> [2011/05/13 01:45:56 | 001,756,232 | ---- | M] (ManyCam LLC)
"Octoshape Streaming Services" -> C:\Users\Bruna\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe ["C:\Users\Bruna\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe" -inv:bootrun] -> [2009/01/08 10:44:06 | 000,070,936 | ---- | M] (Octoshape ApS)
"RESTART_STICKY_NOTES" -> C:\Windows\System32\StikyNot.exe [C:\Windows\System32\StikyNot.exe] -> [2009/07/13 22:14:41 | 000,354,304 | ---- | M] (Microsoft Corporation)
< CurrentVersion Policy Settings - Explorer [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer
\\"NoDriveTypeAutoRun" ->  [255] -> File not found
< CurrentVersion Policy Settings - System [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System
\\"ConsentPromptBehaviorAdmin" ->  [5] -> File not found
\\"ConsentPromptBehaviorUser" ->  [3] -> File not found
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats
< CurrentVersion Policy Settings [HKEY_USERS\S-1-5-21-3331449484-3200966063-500050860-1000] > -> HKEY_USERS\S-1-5-21-3331449484-3200966063-500050860-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer -> 
HKEY_USERS\S-1-5-21-3331449484-3200966063-500050860-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer
\\"NoDriveTypeAutoRun" ->  [255] -> File not found
< Internet Explorer Menu Extensions [HKEY_USERS\S-1-5-21-3331449484-3200966063-500050860-1000\] > -> HKEY_USERS\S-1-5-21-3331449484-3200966063-500050860-1000\Software\Microsoft\Internet Explorer\MenuExt\ -> 
E&xportar para o Microsoft Excel -> C:\Arquivos de Programas\Microsoft Office\Office12\EXCEL.EXE [res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000] -> [2011/09/01 19:59:30 | 018,366,312 | ---- | M] (Microsoft Corporation)
< Internet Explorer Extensions [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\ -> 
{0000036B-C524-4050-81A0-243669A86B9F}:{B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} [HKLM] -> C:\Arquivos de Programas\Windows Live\Companion\companioncore.dll [button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600] -> [2011/05/13 15:21:16 | 000,393,600 | ---- | M] (Microsoft Corporation)
{2670000A-7350-4f3c-8081-5663EE0C6C49}:{48E73304-E1D6-4330-914C-F5F514E3486C} [HKLM] -> C:\Arquivos de Programas\Microsoft Office\Office12\ONBttnIE.dll [button: Enviar para o OneNote] -> [2009/02/26 19:45:52 | 000,603,040 | ---- | M] (Microsoft Corporation)
{2670000A-7350-4f3c-8081-5663EE0C6C49}:{48E73304-E1D6-4330-914C-F5F514E3486C} [HKLM] -> C:\Arquivos de Programas\Microsoft Office\Office12\ONBttnIE.dll [Menu: &Enviar para o OneNote] -> [2009/02/26 19:45:52 | 000,603,040 | ---- | M] (Microsoft Corporation)
{92780B25-18CC-41C8-B9BE-3C9C571A8263}:{FF059E31-CC5A-4E2E-BF3B-96E929D65503} [HKLM] -> C:\Arquivos de Programas\Microsoft Office\Office12\REFIEBAR.DLL [button: Research] -> [2009/03/06 04:04:56 | 000,039,464 | ---- | M] (Microsoft Corporation)
< Internet Explorer Plugins [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\ -> 
< Default Prefix > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix
"" -> http://
< Trusted Sites Domains [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> 
< Trusted Sites Ranges [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> 
< Trusted Sites Domains [HKEY_USERS\.DEFAULT\] > -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> 
HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> 
< Trusted Sites Ranges [HKEY_USERS\.DEFAULT\] > -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> 
HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> 
< Trusted Sites Domains [HKEY_USERS\__aswSnx private storage\] > -> HKEY_USERS\__aswSnx private storage\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> 
HKEY_USERS\__aswSnx private storage\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> 
< Trusted Sites Ranges [HKEY_USERS\__aswSnx private storage\] > -> HKEY_USERS\__aswSnx private storage\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> 
HKEY_USERS\__aswSnx private storage\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> 
< Trusted Sites Domains [HKEY_USERS\S-1-5-18\] > -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> 
HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> 
< Trusted Sites Ranges [HKEY_USERS\S-1-5-18\] > -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> 
HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> 
< Trusted Sites Domains [HKEY_USERS\S-1-5-19\] > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> 
HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> 
< Trusted Sites Ranges [HKEY_USERS\S-1-5-19\] > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> 
HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> 
< Trusted Sites Domains [HKEY_USERS\S-1-5-20\] > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> 
HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. -> 
< Trusted Sites Ranges [HKEY_USERS\S-1-5-20\] > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> 
HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> 
< Trusted Sites Domains [HKEY_USERS\S-1-5-21-3331449484-3200966063-500050860-1000\] > -> HKEY_USERS\S-1-5-21-3331449484-3200966063-500050860-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> 
HKEY_USERS\S-1-5-21-3331449484-3200966063-500050860-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 3 domain(s) found. -> 
www_bancobrasil.com.br [*] -> Sites confiáveis -> 
www14_bancobrasil.com.br [*] -> Sites confiáveis -> 
www2_bancobrasil.com.br [*] -> Sites confiáveis -> 
www_bb.com.br [*] -> Sites confiáveis -> 
internetbanking_caixa.gov.br [https] -> Sites confiáveis -> 
< Trusted Sites Ranges [HKEY_USERS\S-1-5-21-3331449484-3200966063-500050860-1000\] > -> HKEY_USERS\S-1-5-21-3331449484-3200966063-500050860-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> 
HKEY_USERS\S-1-5-21-3331449484-3200966063-500050860-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. -> 
< Downloaded Program Files > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\ -> 
{8AD9C840-044E-11D1-B3E9-00805F499D93} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab [Java Plug-in 1.6.0_26] -> 
{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab [Java Plug-in 1.6.0_26] -> 
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab [Java Plug-in 1.6.0_26] -> 
{E2883E8F-472F-4FB0-9522-AC9BF37916A7} [HKLM] -> http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab [get_atlcom Class] -> 
< Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\ -> 
DhcpNameServer -> 192.168.1.1 -> 
< Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\ -> 
{EA7EBF05-EE91-453B-8BB1-CD9B9C1F2CA1}\\DhcpNameServer -> 192.168.1.1   (Realtek RTL8187B Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter) -> 
IE Styles -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Styles
"Use My Stylesheet" -> Reg Error: Invalid data type.
"User Stylesheet" -> 
< Winlogon settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon -> 
*Shell* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell -> 
explorer.exe -> C:\Windows\explorer.exe -> [2011/02/26 02:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation)
*MultiFile Done* -> -> 
*UserInit* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\UserInit -> 
C:\Windows\system32\userinit.exe -> C:\Windows\System32\userinit.exe -> [2009/07/13 22:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation)
*MultiFile Done* -> -> 
*VMApplet* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet -> 
SystemPropertiesPerformance.exe -> C:\Windows\System32\SystemPropertiesPerformance.exe -> [2009/07/13 22:14:42 | 000,081,920 | ---- | M] (Microsoft Corporation)
/pagefile ->  -> File not found
*MultiFile Done* -> -> 
< Winlogon\Notify settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ -> 
GbPluginBb -> C:\Arquivos de Programas\GbPlugin\gbieh.dll -> [2011/07/18 08:09:12 | 001,685,384 | ---- | M] (Banco do Brasil)
GbPluginCef -> C:\Arquivos de Programas\GbPlugin\gbiehcef.dll -> [2011/04/18 15:12:24 | 000,496,072 | ---- | M] (Caixa Economica Federal)
< SSODL [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad -> 
"{E6FB5E20-DE35-11CF-9C87-00AA005127ED}" [HKLM] -> Reg Error: Key error. [WebCheck] -> File not found
< ShellExecuteHooks [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks -> 
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}" [HKLM] -> C:\Arquivos de Programas\Microsoft Office\Office12\GrooveShellExtensions.dll [Groove GFS Stub Execution Hook] -> [2009/02/12 15:19:32 | 002,217,848 | ---- | M] (Microsoft Corporation)
"{E37CB5F0-51F5-4395-A808-5FA49E399003}" [HKLM] -> C:\Arquivos de Programas\GbPlugin\gbiehcef.dll [GbPlugin ShlObj] -> [2011/04/18 15:12:24 | 000,496,072 | ---- | M] (Caixa Economica Federal)
"{E37CB5F0-51F5-4395-A808-5FA49E399F83}" [HKLM] -> C:\Arquivos de Programas\GbPlugin\gbieh.dll [GbPlugin ShlObj] -> [2011/07/18 08:09:12 | 001,685,384 | ---- | M] (Banco do Brasil)
< Standard Profile Authorized Applications List > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List -> 
"C:\Program Files\River Past\Wave@MP3\WaveAtMp3.exe" ->  [C:\Program Files\River Past\Wave@MP3\WaveAtMp3.exe:*:Enabled:River Past Wave@MP3] -> File not found
< SafeBoot AlternateShell [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot -> 
< CDROM Autorun Setting [HKEY_LOCAL_MACHINE]> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom ->
"AutoRun" -> 1 -> 
"DisplayName" -> Driver de CD-ROM -> 
"ImagePath" ->  [system32\DRIVERS\cdrom.sys] -> File not found
< Drives with AutoRun files > ->  -> 
C:\autoexec.bat [REM Dummy file for NTVDM | ] -> C:\autoexec.bat [ NTFS ] -> [2009/06/10 18:42:20 | 000,000,024 | ---- | M] ()
< MountPoints2 [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2 -> 
< Registry Shell Spawning - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command -> 
comfile [open] -> "%1" %* -> 
exefile [open] -> "%1" %* -> 
< File Associations - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>\ -> 
.com [@ = comfile] -> "%1" %* -> 
.exe [@ = exefile] -> "%1" %* -> 

[Registry - Additional Scans - Safe List]
< Drivers32 [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32 -> 
"msacm.l3acm" -> C:\Windows\System32\l3codeca.acm [C:\Windows\System32\l3codeca.acm] -> [2009/07/13 22:14:10 | 000,064,000 | ---- | M] (Fraunhofer Institut Integrierte Schaltungen IIS)
"MSVideo8" -> C:\Windows\System32\vfwwdm32.dll [VfWWDM32.dll] -> [2009/07/13 22:16:17 | 000,056,832 | ---- | M] (Microsoft Corporation)
"vidc.cvid" -> C:\Windows\System32\iccvid.dll [iccvid.dll] -> [2010/07/29 03:30:34 | 000,082,944 | ---- | M] (Radius Inc.)
"vidc.iv50" -> C:\Windows\System32\ir50_32.dll [ir50_32.dll] -> [2009/07/13 22:15:34 | 000,746,496 | ---- | M] (Intel Corporation)

[Files/Folders - Created Within 30 Days]
OTS.exe -> C:\Users\Bruna\Desktop\OTS.exe -> [2011/09/22 18:47:52 | 000,646,656 | ---- | C] (OldTimer Tools)
{F20D6540-68C5-41B3-8757-5757002015CE} -> C:\Users\Bruna\AppData\Local\{F20D6540-68C5-41B3-8757-5757002015CE} -> [2011/09/22 18:16:56 | 000,000,000 | ---D | C]
{D6207AE0-BD48-46B4-97B0-3CEA5C96D1D2} -> C:\Users\Bruna\AppData\Local\{D6207AE0-BD48-46B4-97B0-3CEA5C96D1D2} -> [2011/09/22 18:16:41 | 000,000,000 | ---D | C]
{8866C401-8C59-40C4-97B7-0F9BA8E04653} -> C:\Users\Bruna\AppData\Local\{8866C401-8C59-40C4-97B7-0F9BA8E04653} -> [2011/09/22 02:22:59 | 000,000,000 | ---D | C]
{2B46EF33-6612-4FF4-A058-22225B13E045} -> C:\Users\Bruna\AppData\Local\{2B46EF33-6612-4FF4-A058-22225B13E045} -> [2011/09/22 02:22:34 | 000,000,000 | ---D | C]
{4D00E101-CF20-4B3F-AB42-C703B3386FFC} -> C:\Users\Bruna\AppData\Local\{4D00E101-CF20-4B3F-AB42-C703B3386FFC} -> [2011/09/21 14:22:05 | 000,000,000 | ---D | C]
{C02C2A6F-6982-4739-ACBC-EEAD6D3AD311} -> C:\Users\Bruna\AppData\Local\{C02C2A6F-6982-4739-ACBC-EEAD6D3AD311} -> [2011/09/21 14:21:40 | 000,000,000 | ---D | C]
{2D81D5AF-BEDF-4C8B-9BDA-218BBBCFEE3D} -> C:\Users\Bruna\AppData\Local\{2D81D5AF-BEDF-4C8B-9BDA-218BBBCFEE3D} -> [2011/09/21 02:20:58 | 000,000,000 | ---D | C]
{8FF8FF4D-EAE0-4CF0-BCEC-7C846B84A4AD} -> C:\Users\Bruna\AppData\Local\{8FF8FF4D-EAE0-4CF0-BCEC-7C846B84A4AD} -> [2011/09/21 02:20:42 | 000,000,000 | ---D | C]
Config.Msi -> C:\Config.Msi -> [2011/09/21 02:10:45 | 000,000,000 | -HSD | C]
{D7DDAAB9-7239-4EC7-B161-D0DB2FEE7E61} -> C:\Users\Bruna\AppData\Local\{D7DDAAB9-7239-4EC7-B161-D0DB2FEE7E61} -> [2011/09/21 02:00:18 | 000,000,000 | ---D | C]
{B6101775-B133-4374-A242-884B106BAB56} -> C:\Users\Bruna\AppData\Local\{B6101775-B133-4374-A242-884B106BAB56} -> [2011/09/21 01:59:35 | 000,000,000 | ---D | C]
{9276FDEB-7E00-41FD-96CC-8B3D5FF4AA5B} -> C:\Users\Bruna\AppData\Local\{9276FDEB-7E00-41FD-96CC-8B3D5FF4AA5B} -> [2011/09/20 22:15:09 | 000,000,000 | ---D | C]
{1B0EB892-6F46-438E-8412-DD986DCE96C3} -> C:\Users\Bruna\AppData\Local\{1B0EB892-6F46-438E-8412-DD986DCE96C3} -> [2011/09/20 22:14:52 | 000,000,000 | ---D | C]
{7EC1C35A-CC25-4E8E-A0EB-02FA9A55A157} -> C:\Users\Bruna\AppData\Local\{7EC1C35A-CC25-4E8E-A0EB-02FA9A55A157} -> [2011/09/20 19:51:30 | 000,000,000 | ---D | C]
{3006D1AF-6A03-45B3-92A2-92E7637FF504} -> C:\Users\Bruna\AppData\Local\{3006D1AF-6A03-45B3-92A2-92E7637FF504} -> [2011/09/20 19:51:13 | 000,000,000 | ---D | C]
{B42A7C7E-0B2C-4D40-AF33-5C6E781CCD88} -> C:\Users\Bruna\AppData\Local\{B42A7C7E-0B2C-4D40-AF33-5C6E781CCD88} -> [2011/09/20 13:31:55 | 000,000,000 | ---D | C]
{730E60FF-46B9-4BF3-B0DB-33D9AEDEAADC} -> C:\Users\Bruna\AppData\Local\{730E60FF-46B9-4BF3-B0DB-33D9AEDEAADC} -> [2011/09/20 13:31:41 | 000,000,000 | ---D | C]
{8E2DEA48-6D29-4996-9F7E-C80BB284D7C1} -> C:\Users\Bruna\AppData\Local\{8E2DEA48-6D29-4996-9F7E-C80BB284D7C1} -> [2011/09/19 23:44:25 | 000,000,000 | ---D | C]
{4F827691-A17D-4521-BCF4-BCDCF69B6656} -> C:\Users\Bruna\AppData\Local\{4F827691-A17D-4521-BCF4-BCDCF69B6656} -> [2011/09/19 23:44:07 | 000,000,000 | ---D | C]
{A957953D-23EB-4423-8A96-5D75CA96AD3D} -> C:\Users\Bruna\AppData\Local\{A957953D-23EB-4423-8A96-5D75CA96AD3D} -> [2011/09/19 13:18:49 | 000,000,000 | ---D | C]
{A3B7D75C-FBA2-4BDA-B5E7-7D86BD07E58D} -> C:\Users\Bruna\AppData\Local\{A3B7D75C-FBA2-4BDA-B5E7-7D86BD07E58D} -> [2011/09/19 13:18:30 | 000,000,000 | ---D | C]
{3C6323D0-7144-43B1-B723-378B0665E692} -> C:\Users\Bruna\AppData\Local\{3C6323D0-7144-43B1-B723-378B0665E692} -> [2011/09/19 02:32:35 | 000,000,000 | ---D | C]
{EC5DF368-2124-49D7-B97A-6F7AE86E7F9A} -> C:\Users\Bruna\AppData\Local\{EC5DF368-2124-49D7-B97A-6F7AE86E7F9A} -> [2011/09/19 02:32:19 | 000,000,000 | ---D | C]
{722D3506-A266-4C91-A3C6-D5FD794C3846} -> C:\Users\Bruna\AppData\Local\{722D3506-A266-4C91-A3C6-D5FD794C3846} -> [2011/09/18 15:46:25 | 000,000,000 | ---D | C]
{8D8B3088-EF9D-441B-A4E4-4320B448A99E} -> C:\Users\Bruna\AppData\Local\{8D8B3088-EF9D-441B-A4E4-4320B448A99E} -> [2011/09/18 15:46:12 | 000,000,000 | ---D | C]
{0026E4CA-8F50-4666-974A-C270B4E5B5A0} -> C:\Users\Bruna\AppData\Local\{0026E4CA-8F50-4666-974A-C270B4E5B5A0} -> [2011/09/18 03:35:28 | 000,000,000 | ---D | C]
{BEB51CC3-E061-48BD-B7D8-9C4E80262B98} -> C:\Users\Bruna\AppData\Local\{BEB51CC3-E061-48BD-B7D8-9C4E80262B98} -> [2011/09/18 03:35:13 | 000,000,000 | ---D | C]
{5956BEC7-D1AD-4B7C-BA6A-83D048E1E145} -> C:\Users\Bruna\AppData\Local\{5956BEC7-D1AD-4B7C-BA6A-83D048E1E145} -> [2011/09/17 20:34:37 | 000,000,000 | ---D | C]
{048100A9-7791-4F2D-A77B-D7D9FD46DCB0} -> C:\Users\Bruna\AppData\Local\{048100A9-7791-4F2D-A77B-D7D9FD46DCB0} -> [2011/09/17 20:34:21 | 000,000,000 | ---D | C]
{9C309ABD-C119-4E36-A1C8-9C1D47013710} -> C:\Users\Bruna\AppData\Local\{9C309ABD-C119-4E36-A1C8-9C1D47013710} -> [2011/09/17 15:26:38 | 000,000,000 | ---D | C]
{6D286D59-DB00-404A-A7DA-25BD735CE26B} -> C:\Users\Bruna\AppData\Local\{6D286D59-DB00-404A-A7DA-25BD735CE26B} -> [2011/09/17 15:26:21 | 000,000,000 | ---D | C]
{9F2108DC-F294-4B1C-9F6D-B533312BAB28} -> C:\Users\Bruna\AppData\Local\{9F2108DC-F294-4B1C-9F6D-B533312BAB28} -> [2011/09/17 04:26:02 | 000,000,000 | ---D | C]
{FBCD8D47-2393-4BC6-A676-D8B5BBBC0347} -> C:\Users\Bruna\AppData\Local\{FBCD8D47-2393-4BC6-A676-D8B5BBBC0347} -> [2011/09/17 04:25:46 | 000,000,000 | ---D | C]
{4094185D-D571-42E6-98AD-1CC83CAC3B91} -> C:\Users\Bruna\AppData\Local\{4094185D-D571-42E6-98AD-1CC83CAC3B91} -> [2011/09/16 19:45:06 | 000,000,000 | ---D | C]
{34C64BD1-9349-4190-83FA-F6F07BE2E904} -> C:\Users\Bruna\AppData\Local\{34C64BD1-9349-4190-83FA-F6F07BE2E904} -> [2011/09/16 19:44:52 | 000,000,000 | ---D | C]
{49BDA3D4-9929-4488-AFB0-B5EB1696B877} -> C:\Users\Bruna\AppData\Local\{49BDA3D4-9929-4488-AFB0-B5EB1696B877} -> [2011/09/16 02:27:36 | 000,000,000 | ---D | C]
{5F7550EA-C343-4413-BA47-DB185A0EC625} -> C:\Users\Bruna\AppData\Local\{5F7550EA-C343-4413-BA47-DB185A0EC625} -> [2011/09/16 02:27:18 | 000,000,000 | ---D | C]
{FFDE85FA-35AC-4691-B33D-F9D6A7E35E69} -> C:\Users\Bruna\AppData\Local\{FFDE85FA-35AC-4691-B33D-F9D6A7E35E69} -> [2011/09/16 00:48:21 | 000,000,000 | ---D | C]
{857B2BDC-F90C-47E5-A5AC-D76EE570822F} -> C:\Users\Bruna\AppData\Local\{857B2BDC-F90C-47E5-A5AC-D76EE570822F} -> [2011/09/16 00:48:02 | 000,000,000 | ---D | C]
{6D0C7AE9-6131-4DCC-99EF-FEC32424F05C} -> C:\Users\Bruna\AppData\Local\{6D0C7AE9-6131-4DCC-99EF-FEC32424F05C} -> [2011/09/15 20:44:43 | 000,000,000 | ---D | C]
{DE11194C-C8C0-4B6F-BD06-39515F1251AD} -> C:\Users\Bruna\AppData\Local\{DE11194C-C8C0-4B6F-BD06-39515F1251AD} -> [2011/09/15 20:44:30 | 000,000,000 | ---D | C]
{285DA05F-0E7F-4F4F-AFAF-52D409EC1B38} -> C:\Users\Bruna\AppData\Local\{285DA05F-0E7F-4F4F-AFAF-52D409EC1B38} -> [2011/09/15 01:26:50 | 000,000,000 | ---D | C]
{38E8404E-363E-4E27-89C0-DB85FBB6CCE3} -> C:\Users\Bruna\AppData\Local\{38E8404E-363E-4E27-89C0-DB85FBB6CCE3} -> [2011/09/15 01:26:34 | 000,000,000 | ---D | C]
{6FA4A56C-FAF3-48A8-AD38-7A3718AE2FE3} -> C:\Users\Bruna\AppData\Local\{6FA4A56C-FAF3-48A8-AD38-7A3718AE2FE3} -> [2011/09/14 23:27:26 | 000,000,000 | ---D | C]
{1D2CAE67-7424-4DB6-92D3-3330C76C7FFB} -> C:\Users\Bruna\AppData\Local\{1D2CAE67-7424-4DB6-92D3-3330C76C7FFB} -> [2011/09/14 23:27:08 | 000,000,000 | ---D | C]
{F184E90D-A3D5-438B-A0AB-78DA9BB422E0} -> C:\Users\Bruna\AppData\Local\{F184E90D-A3D5-438B-A0AB-78DA9BB422E0} -> [2011/09/14 01:33:07 | 000,000,000 | ---D | C]
{B96B73BF-A0EF-4FC9-8DD4-6769DC1CA229} -> C:\Users\Bruna\AppData\Local\{B96B73BF-A0EF-4FC9-8DD4-6769DC1CA229} -> [2011/09/14 01:32:51 | 000,000,000 | ---D | C]
{D90CE14B-95B6-4C80-B954-9104F889A9A4} -> C:\Users\Bruna\AppData\Local\{D90CE14B-95B6-4C80-B954-9104F889A9A4} -> [2011/09/13 21:38:57 | 000,000,000 | ---D | C]
{B855346F-27B4-4DAE-961B-F24902294BFF} -> C:\Users\Bruna\AppData\Local\{B855346F-27B4-4DAE-961B-F24902294BFF} -> [2011/09/13 21:38:38 | 000,000,000 | ---D | C]
{1CFCAAE9-029E-42C8-886B-A56A523D6724} -> C:\Users\Bruna\AppData\Local\{1CFCAAE9-029E-42C8-886B-A56A523D6724} -> [2011/09/13 01:04:56 | 000,000,000 | ---D | C]
{98D8F617-E1D3-4778-B540-2AD8E9136D0A} -> C:\Users\Bruna\AppData\Local\{98D8F617-E1D3-4778-B540-2AD8E9136D0A} -> [2011/09/13 01:04:44 | 000,000,000 | ---D | C]
{7216C1D7-330F-4A84-BCC8-1D8ED4E224BE} -> C:\Users\Bruna\AppData\Local\{7216C1D7-330F-4A84-BCC8-1D8ED4E224BE} -> [2011/09/12 21:37:55 | 000,000,000 | ---D | C]
{F1823C9F-F0E7-4E9F-806A-956330F29DCD} -> C:\Users\Bruna\AppData\Local\{F1823C9F-F0E7-4E9F-806A-956330F29DCD} -> [2011/09/12 21:37:38 | 000,000,000 | ---D | C]
{3150823C-D539-4EE4-AC82-C22F57AF2E21} -> C:\Users\Bruna\AppData\Local\{3150823C-D539-4EE4-AC82-C22F57AF2E21} -> [2011/09/12 09:44:58 | 000,000,000 | ---D | C]
{DD104E8F-21E0-41E7-A83D-ADA1AC5EBBF8} -> C:\Users\Bruna\AppData\Local\{DD104E8F-21E0-41E7-A83D-ADA1AC5EBBF8} -> [2011/09/12 09:44:41 | 000,000,000 | ---D | C]
{6BB2AA58-F841-408B-8C20-00E0473D81E4} -> C:\Users\Bruna\AppData\Local\{6BB2AA58-F841-408B-8C20-00E0473D81E4} -> [2011/09/12 09:38:27 | 000,000,000 | ---D | C]
{039604B5-A8CA-4474-AD96-712FDC9CAAB0} -> C:\Users\Bruna\AppData\Local\{039604B5-A8CA-4474-AD96-712FDC9CAAB0} -> [2011/09/12 09:38:10 | 000,000,000 | ---D | C]
{915B7F34-2B0D-4A28-83CF-19047336BB5D} -> C:\Users\Bruna\AppData\Local\{915B7F34-2B0D-4A28-83CF-19047336BB5D} -> [2011/09/12 00:32:13 | 000,000,000 | ---D | C]
{FD810796-370C-4E01-A1F8-E65357AA80A4} -> C:\Users\Bruna\AppData\Local\{FD810796-370C-4E01-A1F8-E65357AA80A4} -> [2011/09/12 00:31:55 | 000,000,000 | ---D | C]
{FC1E8C94-A964-4809-B9FE-5DF6D0824033} -> C:\Users\Bruna\AppData\Local\{FC1E8C94-A964-4809-B9FE-5DF6D0824033} -> [2011/09/11 21:22:09 | 000,000,000 | ---D | C]
{65D0A337-172A-496F-A1BF-9D3359A85730} -> C:\Users\Bruna\AppData\Local\{65D0A337-172A-496F-A1BF-9D3359A85730} -> [2011/09/11 21:21:57 | 000,000,000 | ---D | C]
{0036EDD9-0D6D-4721-8C43-D9229CAD3BE9} -> C:\Users\Bruna\AppData\Local\{0036EDD9-0D6D-4721-8C43-D9229CAD3BE9} -> [2011/09/11 02:35:36 | 000,000,000 | ---D | C]
{42FE57F4-A2ED-4CA9-8D9D-7A7E76A5F16A} -> C:\Users\Bruna\AppData\Local\{42FE57F4-A2ED-4CA9-8D9D-7A7E76A5F16A} -> [2011/09/11 02:35:24 | 000,000,000 | ---D | C]
{FBB75831-4AD9-441D-ABE8-02ABD22687D5} -> C:\Users\Bruna\AppData\Local\{FBB75831-4AD9-441D-ABE8-02ABD22687D5} -> [2011/09/11 02:34:34 | 000,000,000 | ---D | C]
{86E51DE4-9FEC-4589-8DE5-0E5F7DD3CBE6} -> C:\Users\Bruna\AppData\Local\{86E51DE4-9FEC-4589-8DE5-0E5F7DD3CBE6} -> [2011/09/11 02:34:22 | 000,000,000 | ---D | C]
{1D0157D0-4514-48DD-B9FD-5806AC6D368F} -> C:\Users\Bruna\AppData\Local\{1D0157D0-4514-48DD-B9FD-5806AC6D368F} -> [2011/09/11 02:31:51 | 000,000,000 | ---D | C]
{079BF808-6E65-4CDA-BBE1-5DABF7E588C1} -> C:\Users\Bruna\AppData\Local\{079BF808-6E65-4CDA-BBE1-5DABF7E588C1} -> [2011/09/11 02:31:39 | 000,000,000 | ---D | C]
{11FBF09C-FE6C-42AB-AAC9-1379F3C5F2A7} -> C:\Users\Bruna\AppData\Local\{11FBF09C-FE6C-42AB-AAC9-1379F3C5F2A7} -> [2011/09/11 01:19:47 | 000,000,000 | ---D | C]
{B21A9E1C-8D76-4C55-B7E1-0A40097A1108} -> C:\Users\Bruna\AppData\Local\{B21A9E1C-8D76-4C55-B7E1-0A40097A1108} -> [2011/09/11 01:19:22 | 000,000,000 | ---D | C]
{0401A869-E83C-4107-9D79-8A8AAD4185CF} -> C:\Users\Bruna\AppData\Local\{0401A869-E83C-4107-9D79-8A8AAD4185CF} -> [2011/09/10 18:10:45 | 000,000,000 | ---D | C]
{D62FC748-73AE-42A8-B717-6751431EA226} -> C:\Users\Bruna\AppData\Local\{D62FC748-73AE-42A8-B717-6751431EA226} -> [2011/09/10 18:10:25 | 000,000,000 | ---D | C]
{3C898C60-2A7D-4E6A-B452-523E9464FF7F} -> C:\Users\Bruna\AppData\Local\{3C898C60-2A7D-4E6A-B452-523E9464FF7F} -> [2011/09/10 02:28:27 | 000,000,000 | ---D | C]
{BD52B29C-7F19-447A-AC29-376666681ED8} -> C:\Users\Bruna\AppData\Local\{BD52B29C-7F19-447A-AC29-376666681ED8} -> [2011/09/10 02:28:10 | 000,000,000 | ---D | C]
{F50293C7-5503-493A-A673-62BAC6BDF8A3} -> C:\Users\Bruna\AppData\Local\{F50293C7-5503-493A-A673-62BAC6BDF8A3} -> [2011/09/09 20:42:19 | 000,000,000 | ---D | C]
{F81D1442-6872-4241-AF2F-71BB62D2CE06} -> C:\Users\Bruna\AppData\Local\{F81D1442-6872-4241-AF2F-71BB62D2CE06} -> [2011/09/09 20:42:02 | 000,000,000 | ---D | C]
{5000A9EE-3764-4934-B232-F17823696E99} -> C:\Users\Bruna\AppData\Local\{5000A9EE-3764-4934-B232-F17823696E99} -> [2011/09/09 11:00:36 | 000,000,000 | ---D | C]
{15583405-92E8-48EC-B742-45A2E34CB1FA} -> C:\Users\Bruna\AppData\Local\{15583405-92E8-48EC-B742-45A2E34CB1FA} -> [2011/09/09 11:00:21 | 000,000,000 | ---D | C]
{593284FA-6F57-4B92-912C-41F5A945F8C1} -> C:\Users\Bruna\AppData\Local\{593284FA-6F57-4B92-912C-41F5A945F8C1} -> [2011/09/09 00:56:24 | 000,000,000 | ---D | C]
{25B02F93-C36E-4653-82E0-BBDDCD59590C} -> C:\Users\Bruna\AppData\Local\{25B02F93-C36E-4653-82E0-BBDDCD59590C} -> [2011/09/09 00:56:08 | 000,000,000 | ---D | C]
{E50FF59F-3D5D-4931-8E4F-B4D01AAD275E} -> C:\Users\Bruna\AppData\Local\{E50FF59F-3D5D-4931-8E4F-B4D01AAD275E} -> [2011/09/08 02:03:55 | 000,000,000 | ---D | C]
{B2D6A55D-F22F-42CC-9468-9E023581EF93} -> C:\Users\Bruna\AppData\Local\{B2D6A55D-F22F-42CC-9468-9E023581EF93} -> [2011/09/08 02:03:32 | 000,000,000 | ---D | C]
{5C0472BC-FD28-41DD-B64D-6B04DE6FDDAC} -> C:\Users\Bruna\AppData\Local\{5C0472BC-FD28-41DD-B64D-6B04DE6FDDAC} -> [2011/09/07 19:40:48 | 000,000,000 | ---D | C]
{6E663B73-E686-4778-ADA4-6A299D5F4B76} -> C:\Users\Bruna\AppData\Local\{6E663B73-E686-4778-ADA4-6A299D5F4B76} -> [2011/09/07 19:40:32 | 000,000,000 | ---D | C]
{465A4D62-E25D-4B15-AE07-5B2DDF2F6147} -> C:\Users\Bruna\AppData\Local\{465A4D62-E25D-4B15-AE07-5B2DDF2F6147} -> [2011/09/07 03:08:57 | 000,000,000 | ---D | C]
{7519418D-9F1F-4CB9-ABC9-766E5AAC4A1C} -> C:\Users\Bruna\AppData\Local\{7519418D-9F1F-4CB9-ABC9-766E5AAC4A1C} -> [2011/09/07 03:08:42 | 000,000,000 | ---D | C]
{3DA61429-1D19-417B-8FBB-D6B345FAAA03} -> C:\Users\Bruna\AppData\Local\{3DA61429-1D19-417B-8FBB-D6B345FAAA03} -> [2011/09/07 01:18:53 | 000,000,000 | ---D | C]
{707B17D1-AAA9-479B-A45E-A9EFEC4DC86E} -> C:\Users\Bruna\AppData\Local\{707B17D1-AAA9-479B-A45E-A9EFEC4DC86E} -> [2011/09/06 23:09:00 | 000,000,000 | ---D | C]
{2610A9F1-F03A-4DB2-8ED2-AC94574978E5} -> C:\Users\Bruna\AppData\Local\{2610A9F1-F03A-4DB2-8ED2-AC94574978E5} -> [2011/09/06 23:08:41 | 000,000,000 | ---D | C]
{9D0D6C76-B1F0-4A0C-99EC-28B9D8F9FAED} -> C:\Users\Bruna\AppData\Local\{9D0D6C76-B1F0-4A0C-99EC-28B9D8F9FAED} -> [2011/09/06 00:43:39 | 000,000,000 | ---D | C]
{1867E9CB-5BE0-4AF5-80BE-FEE7BBCAA1F0} -> C:\Users\Bruna\AppData\Local\{1867E9CB-5BE0-4AF5-80BE-FEE7BBCAA1F0} -> [2011/09/06 00:43:20 | 000,000,000 | ---D | C]
{EA22D35E-5DD5-4425-BE65-B380418584D2} -> C:\Users\Bruna\AppData\Local\{EA22D35E-5DD5-4425-BE65-B380418584D2} -> [2011/09/05 01:15:27 | 000,000,000 | ---D | C]
{F7A6D5AB-415E-4234-8FD6-DEDC1331D48E} -> C:\Users\Bruna\AppData\Local\{F7A6D5AB-415E-4234-8FD6-DEDC1331D48E} -> [2011/09/05 01:15:14 | 000,000,000 | ---D | C]
{0DB058FF-CCF7-44ED-9A12-FA941137D7F0} -> C:\Users\Bruna\AppData\Local\{0DB058FF-CCF7-44ED-9A12-FA941137D7F0} -> [2011/09/04 22:56:47 | 000,000,000 | ---D | C]
{934E0FEE-0D01-4455-A66D-3CC065E4A214} -> C:\Users\Bruna\AppData\Local\{934E0FEE-0D01-4455-A66D-3CC065E4A214} -> [2011/09/04 22:56:35 | 000,000,000 | ---D | C]
{419EA25B-5B90-409F-8F7E-2D55CECDAC99} -> C:\Users\Bruna\AppData\Local\{419EA25B-5B90-409F-8F7E-2D55CECDAC99} -> [2011/09/04 18:15:29 | 000,000,000 | ---D | C]
{09C88285-86C4-4294-9EB3-23303CC6E0EE} -> C:\Users\Bruna\AppData\Local\{09C88285-86C4-4294-9EB3-23303CC6E0EE} -> [2011/09/04 18:15:08 | 000,000,000 | ---D | C]
{A4CA54B9-2DAA-4D06-A17B-089F3326E36D} -> C:\Users\Bruna\AppData\Local\{A4CA54B9-2DAA-4D06-A17B-089F3326E36D} -> [2011/09/03 23:25:35 | 000,000,000 | ---D | C]
{253FF53A-40C2-46AB-BE40-FA4E9DA58C3A} -> C:\Users\Bruna\AppData\Local\{253FF53A-40C2-46AB-BE40-FA4E9DA58C3A} -> [2011/09/03 23:25:19 | 000,000,000 | ---D | C]
{E924E9CD-E898-4F3C-9D4D-2305E1F3E7E0} -> C:\Users\Bruna\AppData\Local\{E924E9CD-E898-4F3C-9D4D-2305E1F3E7E0} -> [2011/09/03 14:29:10 | 000,000,000 | ---D | C]
{51BD0F96-9999-4E22-BEF2-4BCC24EC6BFF} -> C:\Users\Bruna\AppData\Local\{51BD0F96-9999-4E22-BEF2-4BCC24EC6BFF} -> [2011/09/03 14:28:52 | 000,000,000 | ---D | C]
{46A87BB9-B26F-4EA3-8B1A-4E623444005B} -> C:\Users\Bruna\AppData\Local\{46A87BB9-B26F-4EA3-8B1A-4E623444005B} -> [2011/09/01 23:42:36 | 000,000,000 | ---D | C]
{29DFC4CF-9140-45D9-8AE9-389806E58DB5} -> C:\Users\Bruna\AppData\Local\{29DFC4CF-9140-45D9-8AE9-389806E58DB5} -> [2011/09/01 23:42:19 | 000,000,000 | ---D | C]
{397E0D37-05F6-48A4-8C62-21FCDFBD4FA2} -> C:\Users\Bruna\AppData\Local\{397E0D37-05F6-48A4-8C62-21FCDFBD4FA2} -> [2011/09/01 13:34:15 | 000,000,000 | ---D | C]
{0C616D6A-CD64-40D2-BADB-96DEB3E444B7} -> C:\Users\Bruna\AppData\Local\{0C616D6A-CD64-40D2-BADB-96DEB3E444B7} -> [2011/09/01 13:33:57 | 000,000,000 | ---D | C]
{7BFDBFFA-4ABD-4F82-A2CF-7BCF5B48ED4E} -> C:\Users\Bruna\AppData\Local\{7BFDBFFA-4ABD-4F82-A2CF-7BCF5B48ED4E} -> [2011/09/01 01:16:50 | 000,000,000 | ---D | C]
{6769EA3B-DFFC-4F43-91F4-127235F9115D} -> C:\Users\Bruna\AppData\Local\{6769EA3B-DFFC-4F43-91F4-127235F9115D} -> [2011/09/01 01:16:32 | 000,000,000 | ---D | C]
{9B71AAD7-8679-40F1-9A8C-7BCCD8D0E10B} -> C:\Users\Bruna\AppData\Local\{9B71AAD7-8679-40F1-9A8C-7BCCD8D0E10B} -> [2011/09/01 00:10:51 | 000,000,000 | ---D | C]
{179A0E9C-195A-40FE-B872-BF4939B869B6} -> C:\Users\Bruna\AppData\Local\{179A0E9C-195A-40FE-B872-BF4939B869B6} -> [2011/09/01 00:10:36 | 000,000,000 | ---D | C]
{C0834340-3603-4D4C-BBB9-D4BD6AE7340C} -> C:\Users\Bruna\AppData\Local\{C0834340-3603-4D4C-BBB9-D4BD6AE7340C} -> [2011/08/31 20:42:20 | 000,000,000 | ---D | C]
{BEDD9B71-2582-440C-8625-655D33952766} -> C:\Users\Bruna\AppData\Local\{BEDD9B71-2582-440C-8625-655D33952766} -> [2011/08/31 20:42:03 | 000,000,000 | ---D | C]
{8EF87883-F722-4ECB-865E-29E296D8B77B} -> C:\Users\Bruna\AppData\Local\{8EF87883-F722-4ECB-865E-29E296D8B77B} -> [2011/08/31 02:21:07 | 000,000,000 | ---D | C]
{A8B03224-4AC9-4058-8FEA-6439721302AF} -> C:\Users\Bruna\AppData\Local\{A8B03224-4AC9-4058-8FEA-6439721302AF} -> [2011/08/31 02:20:50 | 000,000,000 | ---D | C]
{EEACC7B9-A549-44AB-BF57-CE1A4BE6DB16} -> C:\Users\Bruna\AppData\Local\{EEACC7B9-A549-44AB-BF57-CE1A4BE6DB16} -> [2011/08/30 22:06:58 | 000,000,000 | ---D | C]
{5408C801-4759-42DB-8084-41221A88C466} -> C:\Users\Bruna\AppData\Local\{5408C801-4759-42DB-8084-41221A88C466} -> [2011/08/30 22:06:40 | 000,000,000 | ---D | C]
{96EA9C3D-C76E-44DF-A6AB-126CAD620619} -> C:\Users\Bruna\AppData\Local\{96EA9C3D-C76E-44DF-A6AB-126CAD620619} -> [2011/08/30 00:50:50 | 000,000,000 | ---D | C]
{68CB66F2-E70E-4022-9743-F445E60C317F} -> C:\Users\Bruna\AppData\Local\{68CB66F2-E70E-4022-9743-F445E60C317F} -> [2011/08/30 00:50:33 | 000,000,000 | ---D | C]
{1D8F4BEA-C9E3-4ED3-95F6-DB386D6C53BB} -> C:\Users\Bruna\AppData\Local\{1D8F4BEA-C9E3-4ED3-95F6-DB386D6C53BB} -> [2011/08/29 21:41:22 | 000,000,000 | ---D | C]
{632F136C-7498-49D4-BD86-B2E82B8B54D5} -> C:\Users\Bruna\AppData\Local\{632F136C-7498-49D4-BD86-B2E82B8B54D5} -> [2011/08/29 21:41:06 | 000,000,000 | ---D | C]
{6655DEDB-220D-45FD-89F7-38916DD5227F} -> C:\Users\Bruna\AppData\Local\{6655DEDB-220D-45FD-89F7-38916DD5227F} -> [2011/08/29 11:10:28 | 000,000,000 | ---D | C]
{14C2C70A-04D6-4BF6-AEE8-5FAF8F48626D} -> C:\Users\Bruna\AppData\Local\{14C2C70A-04D6-4BF6-AEE8-5FAF8F48626D} -> [2011/08/29 11:10:12 | 000,000,000 | ---D | C]
{0480D2B0-5676-46D0-B7BE-7070DF5B4261} -> C:\Users\Bruna\AppData\Local\{0480D2B0-5676-46D0-B7BE-7070DF5B4261} -> [2011/08/29 00:10:36 | 000,000,000 | ---D | C]
{7C7DC861-441D-4660-9E42-3BC770A59EFB} -> C:\Users\Bruna\AppData\Local\{7C7DC861-441D-4660-9E42-3BC770A59EFB} -> [2011/08/29 00:10:17 | 000,000,000 | ---D | C]
{7F922044-72BB-4D4C-ADD0-5E181D2690E7} -> C:\Users\Bruna\AppData\Local\{7F922044-72BB-4D4C-ADD0-5E181D2690E7} -> [2011/08/28 18:39:12 | 000,000,000 | ---D | C]
{DA4D03FE-4525-459B-89CF-90D0E1B65D36} -> C:\Users\Bruna\AppData\Local\{DA4D03FE-4525-459B-89CF-90D0E1B65D36} -> [2011/08/28 18:38:56 | 000,000,000 | ---D | C]
{A713C8D5-83A9-4E41-8C07-C05DFF5DFB10} -> C:\Users\Bruna\AppData\Local\{A713C8D5-83A9-4E41-8C07-C05DFF5DFB10} -> [2011/08/28 15:52:42 | 000,000,000 | ---D | C]
{5EB59409-10E4-45F0-AE8E-E7AB273531F8} -> C:\Users\Bruna\AppData\Local\{5EB59409-10E4-45F0-AE8E-E7AB273531F8} -> [2011/08/28 15:52:25 | 000,000,000 | ---D | C]
{022D918D-A118-47D2-8D57-B02B312F7E0C} -> C:\Users\Bruna\AppData\Local\{022D918D-A118-47D2-8D57-B02B312F7E0C} -> [2011/08/28 01:14:13 | 000,000,000 | ---D | C]
{01884226-83C9-4905-87B7-DFBBA27E2AC0} -> C:\Users\Bruna\AppData\Local\{01884226-83C9-4905-87B7-DFBBA27E2AC0} -> [2011/08/28 01:13:56 | 000,000,000 | ---D | C]
{883739AB-2878-44C4-A677-FA14CB7321B5} -> C:\Users\Bruna\AppData\Local\{883739AB-2878-44C4-A677-FA14CB7321B5} -> [2011/08/27 18:25:06 | 000,000,000 | ---D | C]
{5EF560A7-4C22-495E-9105-0A607529B528} -> C:\Users\Bruna\AppData\Local\{5EF560A7-4C22-495E-9105-0A607529B528} -> [2011/08/27 18:24:47 | 000,000,000 | ---D | C]
{A4CA5CD2-F857-4781-BF12-9750F339775B} -> C:\Users\Bruna\AppData\Local\{A4CA5CD2-F857-4781-BF12-9750F339775B} -> [2011/08/27 02:35:55 | 000,000,000 | ---D | C]
{361B4A03-1959-44D7-8D2E-653518AC65FD} -> C:\Users\Bruna\AppData\Local\{361B4A03-1959-44D7-8D2E-653518AC65FD} -> [2011/08/27 02:35:36 | 000,000,000 | ---D | C]
{2F5DB5E0-0AC9-4E9F-97C9-4E682F74C9FA} -> C:\Users\Bruna\AppData\Local\{2F5DB5E0-0AC9-4E9F-97C9-4E682F74C9FA} -> [2011/08/26 20:47:34 | 000,000,000 | ---D | C]
{6DA111C7-29B8-4C1C-8E2B-908225F7BA1C} -> C:\Users\Bruna\AppData\Local\{6DA111C7-29B8-4C1C-8E2B-908225F7BA1C} -> [2011/08/26 20:47:12 | 000,000,000 | ---D | C]
{B0036A74-C8A4-4479-AB5E-9C97992C0F5E} -> C:\Users\Bruna\AppData\Local\{B0036A74-C8A4-4479-AB5E-9C97992C0F5E} -> [2011/08/26 02:00:46 | 000,000,000 | ---D | C]
{E574C8C3-AE50-4BC1-BF05-A3F58834D732} -> C:\Users\Bruna\AppData\Local\{E574C8C3-AE50-4BC1-BF05-A3F58834D732} -> [2011/08/26 02:00:30 | 000,000,000 | ---D | C]
{8FB64E8B-01C7-4664-A2AC-681473F1169E} -> C:\Users\Bruna\AppData\Local\{8FB64E8B-01C7-4664-A2AC-681473F1169E} -> [2011/08/25 10:56:32 | 000,000,000 | ---D | C]
{28BB1C87-6DA4-4776-943D-2266AA47F5D1} -> C:\Users\Bruna\AppData\Local\{28BB1C87-6DA4-4776-943D-2266AA47F5D1} -> [2011/08/25 10:56:14 | 000,000,000 | ---D | C]
{75AFF704-5F4E-4B6A-8AF0-7C74F1D548D8} -> C:\Users\Bruna\AppData\Local\{75AFF704-5F4E-4B6A-8AF0-7C74F1D548D8} -> [2011/08/25 00:35:24 | 000,000,000 | ---D | C]
{29ADF785-55DD-4C3B-A3C7-96E701439716} -> C:\Users\Bruna\AppData\Local\{29ADF785-55DD-4C3B-A3C7-96E701439716} -> [2011/08/25 00:34:54 | 000,000,000 | ---D | C]
{A7079B4B-A60D-457A-8A16-CA43CF73526D} -> C:\Users\Bruna\AppData\Local\{A7079B4B-A60D-457A-8A16-CA43CF73526D} -> [2011/08/24 22:04:03 | 000,000,000 | ---D | C]
{0AEF8303-0D56-4418-849F-D2561D017E10} -> C:\Users\Bruna\AppData\Local\{0AEF8303-0D56-4418-849F-D2561D017E10} -> [2011/08/24 22:03:41 | 000,000,000 | ---D | C]
{7CC58DE2-C7F2-497C-BA64-BC4C87AA5274} -> C:\Users\Bruna\AppData\Local\{7CC58DE2-C7F2-497C-BA64-BC4C87AA5274} -> [2011/08/24 20:21:00 | 000,000,000 | ---D | C]
{5331EE5A-82D5-4264-9C3B-0C231C4318E2} -> C:\Users\Bruna\AppData\Local\{5331EE5A-82D5-4264-9C3B-0C231C4318E2} -> [2011/08/24 20:20:42 | 000,000,000 | ---D | C]
IGFXDEVLib.dll -> C:\Windows\System32\IGFXDEVLib.dll -> [2010/08/25 18:59:08 | 000,004,096 | ---- | C] ( )
1 C:\Users\Bruna\Desktop\*.tmp files -> C:\Users\Bruna\Desktop\*.tmp -> 

[Files/Folders - Modified Within 30 Days]
OTS.exe -> C:\Users\Bruna\Desktop\OTS.exe -> [2011/09/22 18:48:00 | 000,646,656 | ---- | M] (OldTimer Tools)
GoogleUpdateTaskUserS-1-5-21-3331449484-3200966063-500050860-1000UA.job -> C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3331449484-3200966063-500050860-1000UA.job -> [2011/09/22 18:42:00 | 000,001,078 | ---- | M] ()
7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 -> C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 -> [2011/09/22 18:20:58 | 000,017,168 | -H-- | M] ()
7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 -> C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 -> [2011/09/22 18:20:58 | 000,017,168 | -H-- | M] ()
GoogleUpdateTaskMachineCore.job -> C:\Windows\tasks\GoogleUpdateTaskMachineCore.job -> [2011/09/22 18:13:49 | 000,001,050 | ---- | M] ()
bootstat.dat -> C:\Windows\bootstat.dat -> [2011/09/22 18:13:31 | 000,067,584 | --S- | M] ()
hiberfil.sys -> C:\hiberfil.sys -> [2011/09/22 18:13:21 | 1579,843,584 | -HS- | M] ()
GoogleUpdateTaskMachineUA.job -> C:\Windows\tasks\GoogleUpdateTaskMachineUA.job -> [2011/09/22 02:03:00 | 000,001,054 | ---- | M] ()
Malwarebytes' Anti-Malware.lnk -> C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk -> [2011/09/22 00:16:56 | 000,001,067 | ---- | M] ()
Google Chrome.lnk -> C:\Users\Public\Desktop\Google Chrome.lnk -> [2011/09/21 01:04:20 | 000,002,286 | ---- | M] ()
prfh0416.dat -> C:\Windows\System32\prfh0416.dat -> [2011/09/20 17:03:38 | 000,663,804 | ---- | M] ()
perfh009.dat -> C:\Windows\System32\perfh009.dat -> [2011/09/20 17:03:38 | 000,616,008 | ---- | M] ()
prfc0416.dat -> C:\Windows\System32\prfc0416.dat -> [2011/09/20 17:03:38 | 000,128,094 | ---- | M] ()
perfc009.dat -> C:\Windows\System32\perfc009.dat -> [2011/09/20 17:03:38 | 000,106,388 | ---- | M] ()
GoogleUpdateTaskUserS-1-5-21-3331449484-3200966063-500050860-1000Core.job -> C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3331449484-3200966063-500050860-1000Core.job -> [2011/09/17 04:42:00 | 000,001,026 | ---- | M] ()
config.nt -> C:\Windows\System32\config.nt -> [2011/09/12 09:40:08 | 000,002,577 | ---- | M] ()
aswBoot.exe -> C:\Windows\System32\aswBoot.exe -> [2011/09/06 17:45:29 | 000,199,304 | ---- | M] (AVAST Software)
avastSS.scr -> C:\Windows\avastSS.scr -> [2011/09/06 17:45:29 | 000,041,184 | ---- | M] (AVAST Software)
aswSnx.sys -> C:\Windows\System32\drivers\aswSnx.sys -> [2011/09/06 17:38:05 | 000,442,200 | ---- | M] (AVAST Software)
aswSP.sys -> C:\Windows\System32\drivers\aswSP.sys -> [2011/09/06 17:37:53 | 000,320,856 | ---- | M] (AVAST Software)
aswRdr.sys -> C:\Windows\System32\drivers\aswRdr.sys -> [2011/09/06 17:36:38 | 000,034,392 | ---- | M] (AVAST Software)
aswTdi.sys -> C:\Windows\System32\drivers\aswTdi.sys -> [2011/09/06 17:36:36 | 000,052,568 | ---- | M] (AVAST Software)
aswMonFlt.sys -> C:\Windows\System32\drivers\aswMonFlt.sys -> [2011/09/06 17:36:26 | 000,054,616 | ---- | M] (AVAST Software)
aswFsBlk.sys -> C:\Windows\System32\drivers\aswFsBlk.sys -> [2011/09/06 17:36:12 | 000,020,568 | ---- | M] (AVAST Software)
Mozilla Firefox.lnk -> C:\Users\Public\Desktop\Mozilla Firefox.lnk -> [2011/09/04 19:14:20 | 000,001,096 | ---- | M] ()
mbam.sys -> C:\Windows\System32\drivers\mbam.sys -> [2011/08/31 17:00:50 | 000,022,216 | ---- | M] (Malwarebytes Corporation)
1 C:\Users\Bruna\Desktop\*.tmp files -> C:\Users\Bruna\Desktop\*.tmp -> 

[Files - No Company Name]
Mozilla Firefox.lnk -> C:\Users\Public\Desktop\Mozilla Firefox.lnk -> [2011/09/04 19:14:20 | 000,001,096 | ---- | C] ()
NPSWF32.dll -> C:\Windows\System32\NPSWF32.dll -> [2011/02/17 14:31:30 | 002,463,976 | ---- | C] ()
WinPcapNmap.exe -> C:\Program Files\Common Files\WinPcapNmap.exe -> [2011/02/16 23:52:41 | 000,444,283 | ---- | C] ()
HdmiCoin.dll -> C:\Windows\System32\HdmiCoin.dll -> [2010/12/03 14:53:17 | 000,004,608 | ---- | C] ()
igcompkrng500.bin -> C:\Windows\System32\igcompkrng500.bin -> [2010/08/25 19:30:02 | 000,439,308 | ---- | C] ()
igkrng500.bin -> C:\Windows\System32\igkrng500.bin -> [2010/08/25 19:30:00 | 000,982,240 | ---- | C] ()
igfcg500m.bin -> C:\Windows\System32\igfcg500m.bin -> [2010/08/25 19:30:00 | 000,092,356 | ---- | C] ()
GfxUI.exe.config -> C:\Windows\System32\GfxUI.exe.config -> [2010/08/25 18:57:00 | 000,000,151 | ---- | C] ()
iglhsip32.dll -> C:\Windows\System32\iglhsip32.dll -> [2010/08/25 18:52:00 | 000,208,896 | ---- | C] ()
iglhcp32.dll -> C:\Windows\System32\iglhcp32.dll -> [2010/08/25 18:52:00 | 000,143,360 | ---- | C] ()
pthreadVC.dll -> C:\Windows\System32\pthreadVC.dll -> [2010/01/26 23:09:02 | 000,053,299 | ---- | C] ()
prfh0416.dat -> C:\Windows\System32\prfh0416.dat -> [2009/07/14 05:31:12 | 000,663,804 | ---- | C] ()
prfi0416.dat -> C:\Windows\System32\prfi0416.dat -> [2009/07/14 05:31:12 | 000,323,154 | ---- | C] ()
prfc0416.dat -> C:\Windows\System32\prfc0416.dat -> [2009/07/14 05:31:12 | 000,128,094 | ---- | C] ()
prfd0416.dat -> C:\Windows\System32\prfd0416.dat -> [2009/07/14 05:31:12 | 000,038,536 | ---- | C] ()
bootstat.dat -> C:\Windows\bootstat.dat -> [2009/07/14 01:57:37 | 000,067,584 | --S- | C] ()
FNTCACHE.DAT -> C:\Windows\System32\FNTCACHE.DAT -> [2009/07/14 01:33:53 | 001,773,512 | ---- | C] ()
perfh009.dat -> C:\Windows\System32\perfh009.dat -> [2009/07/13 23:05:48 | 000,616,008 | ---- | C] ()
perfi009.dat -> C:\Windows\System32\perfi009.dat -> [2009/07/13 23:05:48 | 000,291,294 | ---- | C] ()
perfc009.dat -> C:\Windows\System32\perfc009.dat -> [2009/07/13 23:05:48 | 000,106,388 | ---- | C] ()
perfd009.dat -> C:\Windows\System32\perfd009.dat -> [2009/07/13 23:05:48 | 000,031,548 | ---- | C] ()
NOISE.DAT -> C:\Windows\System32\NOISE.DAT -> [2009/07/13 23:05:05 | 000,000,741 | ---- | C] ()
dssec.dat -> C:\Windows\System32\dssec.dat -> [2009/07/13 23:04:11 | 000,215,943 | ---- | C] ()
PrintBrmUi.exe -> C:\Windows\System32\PrintBrmUi.exe -> [2009/07/13 21:19:49 | 000,066,048 | ---- | C] ()
mib.bin -> C:\Windows\mib.bin -> [2009/07/13 20:55:01 | 000,043,131 | ---- | C] ()
BthpanContextHandler.dll -> C:\Windows\System32\BthpanContextHandler.dll -> [2009/07/13 20:51:43 | 000,073,728 | ---- | C] ()
BWContextHandler.dll -> C:\Windows\System32\BWContextHandler.dll -> [2009/07/13 20:42:10 | 000,064,000 | ---- | C] ()
igfcg500.bin -> C:\Windows\System32\igfcg500.bin -> [2009/07/13 19:09:19 | 000,139,824 | ---- | C] ()
mlang.dat -> C:\Windows\System32\mlang.dat -> [2009/06/10 18:26:10 | 000,673,088 | ---- | C] ()

[File - Lop Check]
AnvSoft -> C:\Users\Bruna\AppData\Roaming\AnvSoft -> [2011/04/27 23:57:23 | 000,000,000 | ---D | M]
Audacity -> C:\Users\Bruna\AppData\Roaming\Audacity -> [2011/06/20 00:04:29 | 000,000,000 | ---D | M]
AVG10 -> C:\Users\Bruna\AppData\Roaming\AVG10 -> [2011/01/10 13:15:11 | 000,000,000 | ---D | M]
BSplayer -> C:\Users\Bruna\AppData\Roaming\BSplayer -> [2011/01/23 03:46:47 | 000,000,000 | ---D | M]
BSplayer Pro -> C:\Users\Bruna\AppData\Roaming\BSplayer Pro -> [2011/01/22 21:37:31 | 000,000,000 | ---D | M]
ManyCam -> C:\Users\Bruna\AppData\Roaming\ManyCam -> [2011/08/20 04:55:06 | 000,000,000 | ---D | M]
Octoshape -> C:\Users\Bruna\AppData\Roaming\Octoshape -> [2011/08/20 03:25:27 | 000,000,000 | ---D | M]
River Past G5 -> C:\Users\Bruna\AppData\Roaming\River Past G5 -> [2011/06/13 03:25:16 | 000,000,000 | ---D | M]
uTorrent -> C:\Users\Bruna\AppData\Roaming\uTorrent -> [2011/07/05 00:47:54 | 000,000,000 | ---D | M]
VDownloader -> C:\Users\Bruna\AppData\Roaming\VDownloader -> [2011/07/31 22:09:05 | 000,000,000 | ---D | M]
Video DVD Maker FREE -> C:\Users\Bruna\AppData\Roaming\Video DVD Maker FREE -> [2011/07/08 02:47:31 | 000,000,000 | ---D | M]
SCHEDLGU.TXT -> C:\Windows\Tasks\SCHEDLGU.TXT -> [2011/09/17 15:24:15 | 000,032,608 | ---- | M] ()

[File - Purity Scan]

[Custom Scans]
< %ALLUSERSPROFILE%\*.* >
< %ALLUSERSPROFILE%\Dados de aplicativos\* >
< %ALLUSERSPROFILE%\Dados de aplicativos\*.* >
< %APPDATA%\* >
< %APPDATA%\*.* >
< %LOCALAPPDATA%\*.* >
GDIPFONTCACHEV1.DAT -> C:\Users\Bruna\AppData\Local\GDIPFONTCACHEV1.DAT -> [2011/02/17 15:29:05 | 000,117,576 | ---- | M] ()
IconCache.db -> C:\Users\Bruna\AppData\Local\IconCache.db -> [2011/09/22 01:07:31 | 001,625,180 | -H-- | M] ()
< %SYSTEMDRIVE%\* >
autoexec.bat -> C:\autoexec.bat -> [2009/06/10 18:42:20 | 000,000,024 | ---- | M] ()
config.sys -> C:\config.sys -> [2009/06/10 18:42:20 | 000,000,010 | ---- | M] ()
hiberfil.sys -> C:\hiberfil.sys -> [2011/09/22 18:13:21 | 1579,843,584 | -HS- | M] ()
pagefile.sys -> C:\pagefile.sys -> [2011/09/22 18:13:35 | 2106,458,112 | -HS- | M] ()
< %SYSTEMDRIVE%\*.* >
autoexec.bat -> C:\autoexec.bat -> [2009/06/10 18:42:20 | 000,000,024 | ---- | M] ()
config.sys -> C:\config.sys -> [2009/06/10 18:42:20 | 000,000,010 | ---- | M] ()
hiberfil.sys -> C:\hiberfil.sys -> [2011/09/22 18:13:21 | 1579,843,584 | -HS- | M] ()
pagefile.sys -> C:\pagefile.sys -> [2011/09/22 18:13:35 | 2106,458,112 | -HS- | M] ()
< %USERPROFILE%\*.* >
NTUSER.DAT -> C:\Users\Bruna\NTUSER.DAT -> [2011/09/22 19:02:40 | 004,456,448 | -HS- | M] ()
ntuser.dat.LOG1 -> C:\Users\Bruna\ntuser.dat.LOG1 -> [2011/09/22 19:02:40 | 000,262,144 | -HS- | M] ()
ntuser.dat.LOG2 -> C:\Users\Bruna\ntuser.dat.LOG2 -> [2011/01/10 11:52:26 | 000,000,000 | -HS- | M] ()
NTUSER.DAT{6035edf3-34db-11e0-824b-00030df176a0}.TM.blf -> C:\Users\Bruna\NTUSER.DAT{6035edf3-34db-11e0-824b-00030df176a0}.TM.blf -> [2011/02/10 03:05:17 | 000,065,536 | -HS- | M] ()
NTUSER.DAT{6035edf3-34db-11e0-824b-00030df176a0}.TMContainer00000000000000000001.regtrans-ms -> C:\Users\Bruna\NTUSER.DAT{6035edf3-34db-11e0-824b-00030df176a0}.TMContainer00000000000000000001.regtrans-ms -> [2011/02/10 03:05:17 | 000,524,288 | -HS- | M] ()
NTUSER.DAT{6035edf3-34db-11e0-824b-00030df176a0}.TMContainer00000000000000000002.regtrans-ms -> C:\Users\Bruna\NTUSER.DAT{6035edf3-34db-11e0-824b-00030df176a0}.TMContainer00000000000000000002.regtrans-ms -> [2011/02/10 03:05:17 | 000,524,288 | -HS- | M] ()
NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf -> C:\Users\Bruna\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf -> [2011/01/10 12:12:07 | 000,065,536 | -HS- | M] ()
NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms -> C:\Users\Bruna\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms -> [2011/01/10 12:12:07 | 000,524,288 | -HS- | M] ()
NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms -> C:\Users\Bruna\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms -> [2011/01/10 12:12:07 | 000,524,288 | -HS- | M] ()
ntuser.ini -> C:\Users\Bruna\ntuser.ini -> [2011/01/10 11:52:26 | 000,000,020 | -HS- | M] ()

[Alternate Data Streams]
@Alternate Data Stream - 124 bytes -> C:\ProgramData\TEMP:0B4227B4
@Alternate Data Stream - 2 bytes -> C:\Windows\System32:93066733_Bb.gbp
@Alternate Data Stream - 2 bytes -> C:\Windows\System32:93066733_Cef.gbp
@Alternate Data Stream - 304 bytes -> C:\Windows\System32\drivers:GbpKmAp.lst
< End of report >

Compartilhar este post


Link para o post
Compartilhar em outros sites

Seu log está limpo.

 

 

1.

*Execute o OTS, clique [CleanUp] > [Yes]

*O PC será reiniciado

 

2.

*Baixe o ATF Cleaner

*Execute-o e selecione:

[X] Select All

*Clique [Empty Selected]

*Feche o programa

 

3.

*Baixe e instale o CCleaner

*Clique [Executar Limpeza]

*Clique [Registro] > [Procurar erros] > [Corrigir Erros Selecionados] > [Corrigir Todos os Erros Selecionados]

Compartilhar este post


Link para o post
Compartilhar em outros sites

PROBLEMA RESOLVIDO

 

Caso o autor necessite que o tópico seja reaberto basta enviar uma Mensagem Privada para um Moderador com um link para o tópico.

Compartilhar este post


Link para o post
Compartilhar em outros sites

×

Informação importante

Ao usar o fórum, você concorda com nossos Termos e condições.