Ir para conteúdo

POWERED BY:

Arquivado

Este tópico foi arquivado e está fechado para novas respostas.

Hazumi

[Arquivado] Pc com suspeita de virus

Recommended Posts

Olá, meu pc se encontra com os seguintes sintomas:

 

-Está travando muito.

-Não consigo instalar anti-virus

-Ao reiniciar alguns programas simplesmente deixam de funcionar

 

gostaria de ajuda . Obrigado desde já

Compartilhar este post


Link para o post
Compartilhar em outros sites

Olá Hazumi

 

Seja bem vindo.

 

 

1.

*Baixe o SecurityCheck (...de screen317) e salve-o no desktop (Área de Trabalho)

 

*Execute-o. Usuários do Windows Vista ou do Windows 7 devem clicar com o botão direito do mouse no arquivo e selecionar Executar como administrador

 

*Tecle [Enter] e cole o relatório apresentado

 

 

2.

*Baixe o OTL (...de Old_Timer) e salve-o no desktop (Área de Trabalho)

 

*Execute-o. Usuários do Windows Vista ou do Windows 7 devem clicar com o botão direito do mouse no arquivo e selecionar Executar como administrador

 

aazekhVX.jpg

 

*Selecione as opções:

Verificar All Users

Ignorar Arquivos Microsoft

Usar WhiteList para Nomes de Companhias

Verificar Lop

Verificar Purity

 

*Clique [Verificar] e cole os relatórios OTL.txt e Extras.txt criados no desktop (Área de Trabalho)

 

*Caso os relatórios sejam grandes, acesse este link

 

*Clique [selecionar arquivo...]

 

*Localize o relatório OTL.txt no desktop (Área de Trabalho) e clique [Abrir]

 

*Clique [upload file]

 

*Cole o link gerado ao lado de Download link:

 

*Repita o procedimento para o relatório Extras.txt

Compartilhar este post


Link para o post
Compartilhar em outros sites

Olá, Wings.

Segue os relatorios solicitados:

 

SecurityCheck:

 

Results of screen317's Security Check version 0.99.24

Windows XP Service Pack 2 x86 (UAC is disabled!)

Out of date service pack!!

Internet Explorer 8

``````````````````````````````

Antivirus/Firewall Check:

AVG 2012

Kaspersky Internet Security 7.0

Antivirus out of date!

```````````````````````````````

Anti-malware/Other Utilities Check:

CCleaner

Java 6 Update 27

Adobe Flash Player 11.2.202.235

Mozilla Firefox (x86 pt-BR..)

````````````````````````````````

Process Check:

objlist.exe by Laurent

``````````End of Log````````````

 

OTL:

 

OTL logfile created on: 3/6/2012 19:23:41 - Run 1

OTL by OldTimer - Version 3.2.46.0 Folder = C:\Documents and Settings\EU\Desktop

Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 8.0.6001.18702)

Locale: 00000416 | Country: Brasil | Language: PTB | Date Format: d/M/yyyy

 

767,36 Mb Total Physical Memory | 340,61 Mb Available Physical Memory | 44,39% Memory free

1,83 Gb Paging File | 1,35 Gb Available in Paging File | 73,98% Paging File free

Paging file location(s): C:\pagefile.sys 1152 2304 [binary data]

 

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Arquivos de programas

Drive C: | 74,52 Gb Total Space | 8,14 Gb Free Space | 10,92% Space Free | Partition Type: NTFS

Drive D: | 18,64 Gb Total Space | 5,56 Gb Free Space | 29,82% Space Free | Partition Type: NTFS

Drive E: | 3,94 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF

 

Computer Name: USER-D9498B1BF2 | User Name: EU | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: All users

Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

 

========== Processes (SafeList) ==========

 

PRC - [2012/06/03 19:20:08 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\EU\Desktop\OTL.exe

PRC - [2012/06/03 19:19:46 | 000,869,194 | ---- | M] () -- C:\Documents and Settings\EU\Desktop\SecurityCheck.exe

PRC - [2012/06/03 19:09:11 | 000,051,882 | ---- | M] () -- C:\Documents and Settings\EU\Configurações locais\Temp\winocnepj.exe

PRC - [2012/05/26 12:04:52 | 000,913,792 | ---- | M] (IObit) -- C:\Arquivos de programas\IObit\Advanced SystemCare 5\ASCService.exe

PRC - [2012/04/20 22:16:21 | 000,994,232 | ---- | M] (Mozilla Corporation) -- C:\Arquivos de programas\Mozilla Firefox\firefox.exe

PRC - [2012/02/27 00:15:42 | 000,055,144 | ---- | M] (Apple Inc.) -- C:\Arquivos de programas\Arquivos comuns\Apple\Mobile Device Support\AppleMobileDeviceService.exe

PRC - [2004/08/04 00:45:34 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe

PRC - [2004/08/04 00:45:32 | 000,400,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cmd.exe

PRC - [2003/06/19 23:25:00 | 000,322,120 | ---- | M] (Microsoft Corporation) -- C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\VS7DEBUG\MDM.EXE

 

 

========== Modules (No Company Name) ==========

 

MOD - [2012/06/03 19:19:46 | 000,869,194 | ---- | M] () -- C:\Documents and Settings\EU\Desktop\SecurityCheck.exe

MOD - [2012/06/03 19:09:11 | 000,051,882 | ---- | M] () -- C:\Documents and Settings\EU\Configurações locais\Temp\winocnepj.exe

MOD - [2012/05/29 19:47:44 | 003,417,376 | ---- | M] () -- c:\Arquivos de programas\Arquivos comuns\Akamai\netsession_win_80c2ffa.dll

MOD - [2012/05/06 18:41:11 | 008,797,856 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll

MOD - [2012/04/20 22:16:53 | 001,952,696 | ---- | M] () -- C:\Arquivos de programas\Mozilla Firefox\mozjs.dll

MOD - [2012/02/20 21:29:04 | 000,087,912 | ---- | M] () -- C:\Arquivos de programas\Arquivos comuns\Apple\Apple Application Support\zlib1.dll

MOD - [2012/02/20 21:28:42 | 001,242,472 | ---- | M] () -- C:\Arquivos de programas\Arquivos comuns\Apple\Apple Application Support\libxml2.dll

MOD - [2011/04/21 16:54:40 | 000,347,024 | ---- | M] () -- C:\Arquivos de programas\IObit\Advanced SystemCare 5\madexcept_.bpl

MOD - [2011/04/21 16:54:40 | 000,179,088 | ---- | M] () -- C:\Arquivos de programas\IObit\Advanced SystemCare 5\madbasic_.bpl

MOD - [2011/04/21 16:54:40 | 000,046,480 | ---- | M] () -- C:\Arquivos de programas\IObit\Advanced SystemCare 5\maddisAsm_.bpl

 

 

========== Win32 Services (SafeList) ==========

 

SRV - File not found [Auto | Stopped] -- C:\Arquivos de programas\TeamViewer\Version6\TeamViewer_Service.exe -- (TeamViewer6)

SRV - File not found [On_Demand | Stopped] -- C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\Source Engine\OSE.EXE -- (ose)

SRV - File not found [Auto | Stopped] -- C:\Arquivos de programas\Yuna Software\Messenger Plus! for Skype\MsgPlusForSkypeService.exe -- (MsgPlusService)

SRV - File not found [Auto | Stopped] -- D:\HS\Hotspot Shield\bin\hsswd.exe -- (HssWd)

SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)

SRV - [2012/05/29 19:47:44 | 003,417,376 | ---- | M] () [Auto | Running] -- c:\arquivos de programas\arquivos comuns\akamai/netsession_win_80c2ffa.dll -- (Akamai)

SRV - [2012/05/26 12:04:52 | 000,913,792 | ---- | M] (IObit) [Auto | Running] -- C:\Arquivos de programas\IObit\Advanced SystemCare 5\ASCService.exe -- (AdvancedSystemCareService5)

SRV - [2012/05/06 18:41:12 | 000,257,696 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)

SRV - [2012/04/20 22:16:42 | 000,203,704 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Arquivos de programas\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)

SRV - [2012/04/08 05:35:41 | 000,987,136 | ---- | M] () [Auto | Stopped] -- C:\Arquivos de programas\Arquivos comuns\AVG Secure Search\vToolbarUpdater\10.2.0\ToolbarUpdater.exe -- (vToolbarUpdater10.2.0)

SRV - [2012/02/27 00:15:42 | 000,055,144 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Arquivos de programas\Arquivos comuns\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)

SRV - [2012/02/23 07:40:41 | 002,886,528 | ---- | M] (TeamViewer GmbH) [Auto | Stopped] -- C:\Arquivos de programas\TeamViewer\Version7\TeamViewer_Service.exe -- (TeamViewer7)

SRV - [2012/02/14 04:53:38 | 000,275,208 | ---- | M] (AVG Technologies CZ, s.r.o.) [Disabled | Stopped] -- C:\Arquivos de programas\AVG\AVG2012\avgwdsvc.exe -- (avgwd)

SRV - [2012/02/14 04:52:54 | 005,182,816 | ---- | M] (AVG Technologies CZ, s.r.o.) [Disabled | Stopped] -- C:\Arquivos de programas\AVG\AVG2012\avgidsagent.exe -- (AVGIDSAgent)

SRV - [2012/01/09 20:17:44 | 000,821,592 | ---- | M] (IObit) [Auto | Stopped] -- C:\Arquivos de programas\IObit\IObit Malware Fighter\IMFsrv.exe -- (IMFservice)

SRV - [2011/08/30 04:10:01 | 000,671,248 | ---- | M] (Wellbia.com Co., Ltd.) [On_Demand | Stopped] -- C:\WINDOWS\xsherlock.xem -- (xsherlock)

SRV - [2011/08/19 05:24:14 | 002,477,384 | ---- | M] (AVG Technologies CZ, s.r.o.) [Disabled | Stopped] -- C:\Arquivos de programas\AVG\AVG2012\avgfws.exe -- (avgfws)

SRV - [2011/06/19 14:57:00 | 004,122,968 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\WINDOWS\system32\GameMon.des -- (npggsvc)

SRV - [2008/07/29 19:16:38 | 000,132,096 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing)

SRV - [2004/08/04 00:45:44 | 000,073,728 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\system32\tlntsvr.exe -- (TlntSvr)

SRV - [2004/08/04 00:45:42 | 000,142,336 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\system32\sessmgr.exe -- (RDSessMgr)

SRV - [2004/08/04 00:45:42 | 000,099,328 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\system32\scardsvr.exe -- (SCardSvr)

SRV - [2004/08/04 00:45:40 | 000,113,664 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\system32\netdde.exe -- (NetDDEdsdm)

SRV - [2004/08/04 00:45:40 | 000,113,664 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\system32\netdde.exe -- (NetDDE)

SRV - [2004/08/04 00:45:38 | 000,032,768 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\system32\mnmsrvc.exe -- (mnmsrvc)

SRV - [2004/08/04 00:45:36 | 000,013,312 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\system32\lsass.exe -- (Netlogon)

SRV - [2004/08/04 00:45:32 | 000,033,280 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\system32\clipsrv.exe -- (ClipSrv)

SRV - [2004/08/04 00:45:30 | 000,129,536 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\system32\xmlprov.dll -- (xmlprov)

SRV - [2004/08/04 00:45:30 | 000,005,632 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\system32\cisvc.exe -- (CiSvc)

SRV - [2004/08/04 00:45:28 | 000,067,584 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\system32\webclnt.dll -- (WebClient)

SRV - [2004/08/04 00:45:26 | 000,059,904 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\system32\regsvc.dll -- (RemoteRegistry)

SRV - [2004/08/04 00:45:24 | 000,033,792 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\system32\msgsvc.dll -- (Messenger)

SRV - [2004/08/04 00:45:22 | 000,023,040 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\system32\ersvc.dll -- (ERSvc)

SRV - [2004/08/04 00:45:22 | 000,017,408 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\system32\alrsvc.dll -- (Alerter)

SRV - [2003/06/19 23:25:00 | 000,322,120 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\VS7DEBUG\MDM.EXE -- (MDM)

SRV - [2001/10/28 12:07:24 | 000,132,608 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\system32\rsvp.exe -- (RSVP)

SRV - [2001/10/28 12:07:00 | 000,049,152 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\system32\mprdim.dll -- (RemoteAccess)

 

 

========== Driver Services (SafeList) ==========

 

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\xhunter1.sys -- (xhunter1)

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\XDva397.sys -- (XDva397)

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\XDva393.sys -- (XDva393)

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\XDva392.sys -- (XDva392)

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\XDva391.sys -- (XDva391)

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\XDva390.sys -- (XDva390)

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\XDva387.sys -- (XDva387)

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\XDva359.sys -- (XDva359)

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\vtany.sys -- (vtany)

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)

DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\EU\CONFIG~1\Temp\oflpydin.sys -- (oflpydin)

DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)

DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)

DRV - File not found [Kernel | System | Stopped] -- -- (Changer)

DRV - File not found [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\romooq.sys -- (asc3360pr)

DRV - [2012/05/06 17:54:06 | 000,242,240 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\dtsoftbus01.sys -- (dtsoftbus01)

DRV - [2012/02/22 05:25:52 | 000,299,472 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (Avgtdix)

DRV - [2012/02/22 05:25:32 | 000,235,216 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (Avgldx86)

DRV - [2012/01/31 04:46:50 | 000,031,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\avgrkx86.sys -- (Avgrkx86)

DRV - [2011/12/23 13:32:14 | 000,041,040 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (Avgmfx86)

DRV - [2011/12/23 13:32:08 | 000,017,232 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\avgidsshimx.sys -- (AVGIDSShim)

DRV - [2011/12/23 13:32:06 | 000,024,144 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\avgidsfilterx.sys -- (AVGIDSFilter)

DRV - [2011/12/23 13:32:04 | 000,022,992 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\avgidsehx.sys -- (AVGIDSEH)

DRV - [2011/12/23 13:32:00 | 000,139,856 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\avgidsdriverx.sys -- (AVGIDSDriver)

DRV - [2011/07/06 12:14:42 | 000,101,616 | ---- | M] (Tonec Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\idmtdi.sys -- (IDMTDI)

DRV - [2011/05/24 20:40:12 | 000,037,376 | ---- | M] (AnchorFree Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HssDrv.sys -- (HssDrv)

DRV - [2011/03/18 13:08:54 | 000,025,240 | ---- | M] (Almico Software) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan)

DRV - [2010/11/26 18:02:52 | 000,014,776 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\SmartDefragDriver.sys -- (SmartDefragDriver)

DRV - [2010/02/11 09:01:43 | 000,226,880 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\tcpip6.sys -- (Tcpip6)

DRV - [2010/02/11 04:38:10 | 003,565,056 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)

DRV - [2010/01/26 23:09:02 | 000,050,704 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\npf.sys -- (npf)

DRV - [2007/12/28 18:51:04 | 000,195,344 | ---- | M] (Kaspersky Lab) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\klif.sys -- (klif)

DRV - [2007/12/13 12:28:40 | 000,024,592 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\klim5.sys -- (klim5)

DRV - [2007/10/31 12:41:16 | 000,110,096 | ---- | M] (Kaspersky Lab) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\kl1.sys -- (kl1)

DRV - [2005/01/01 06:43:08 | 000,004,682 | ---- | M] (INCA Internet Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\npptNT2.sys -- (NPPTNT2)

DRV - [2004/08/04 00:39:24 | 000,800,000 | ---- | M] (Microsoft Corp., Veritas Software) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\drivers\dmboot.sys -- (dmboot)

DRV - [2004/08/04 00:35:10 | 000,120,064 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\System32\drivers\pcmcia.sys -- (Pcmcia)

DRV - [2004/08/03 19:31:36 | 000,032,768 | ---- | M] (SiS Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sisnic.sys -- (SISNIC)

DRV - [2003/07/18 09:58:20 | 000,036,992 | R--- | M] (Silicon Integrated Systems Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\SISAGPX.SYS -- (SISAGP)

DRV - [2001/10/28 12:06:10 | 000,013,952 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\System32\drivers\cbidf2k.sys -- (cbidf2k)

DRV - [2001/10/28 12:06:06 | 000,011,904 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\System32\drivers\acpiec.sys -- (ACPIEC)

DRV - [1996/04/03 16:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio)

 

 

========== Standard Registry (SafeList) ==========

 

 

========== Internet Explorer ==========

 

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.v9.com/iob/iob_1332822683_882826

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.v9.com/iob/iob_1332822683_882826

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://www.google.com.br/cse?q={searchTerms}&cx=partner-pub-2489206448026482%3A8691855295&tbm=&ie=UTF-8#gsc.tab=0&gsc.q={searchTerms}'>http://www.google.com.br/cse?q={searchTerms}&cx=partner-pub-2489206448026482%3A8691855295&tbm=&ie=UTF-8#gsc.tab=0&gsc.q={searchTerms}

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com.br/cse?q={searchTerms}&cx=partner-pub-2489206448026482%3A8691855295&tbm=&ie=UTF-8#gsc.tab=0&gsc.q={searchTerms}'>http://www.google.com.br/cse?q={searchTerms}&cx=partner-pub-2489206448026482%3A8691855295&tbm=&ie=UTF-8#gsc.tab=0&gsc.q={searchTerms}

IE - HKLM\..\SearchScopes,DefaultScope = {006ee092-9658-4fd6-bd8e-a21a348e59f5}

IE - HKLM\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = http://www.plusnetwork.com/?sp=addr&q={searchTerms}

IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}

 

 

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>

 

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>

 

 

 

IE - HKU\S-1-5-21-1482476501-1390067357-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.v9.com/iob/iob_1332822683_882826

IE - HKU\S-1-5-21-1482476501-1390067357-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.plusnetwork.com/?sp=addr&q={searchTerms}

IE - HKU\S-1-5-21-1482476501-1390067357-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.plusnetwork.com/?sp=addr&q={searchTerms}

IE - HKU\S-1-5-21-1482476501-1390067357-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.google.com.br/ [binary data]

IE - HKU\S-1-5-21-1482476501-1390067357-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.plusnetwork.com/?sp=hp

IE - HKU\S-1-5-21-1482476501-1390067357-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = http://start.jdownloader.com/

IE - HKU\S-1-5-21-1482476501-1390067357-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.plusnetwork.com/?sp=addr&q={searchTerms}

IE - HKU\S-1-5-21-1482476501-1390067357-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.plusnetwork.com/?sp=addr&q={searchTerms}

IE - HKU\S-1-5-21-1482476501-1390067357-725345543-1003\..\URLSearchHook: {e0301295-ab3e-4af3-979f-3d453c5f9f48} - No CLSID value found

IE - HKU\S-1-5-21-1482476501-1390067357-725345543-1003\..\SearchScopes,DefaultScope = {006ee092-9658-4fd6-bd8e-a21a348e59f5}

IE - HKU\S-1-5-21-1482476501-1390067357-725345543-1003\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = http://www.plusnetwork.com/?sp=addr&q={searchTerms}

IE - HKU\S-1-5-21-1482476501-1390067357-725345543-1003\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC

IE - HKU\S-1-5-21-1482476501-1390067357-725345543-1003\..\SearchScopes\{0D7562AE-8EF6-416d-A838-AB665251703A}: "URL" = http://start.facemoods.com/?a=pcmega1&s={searchTerms}&f=4

IE - HKU\S-1-5-21-1482476501-1390067357-725345543-1003\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylon.com/web/{searchTerms}?babsrc=SP_ss&affID=101035&mntrId=e8dc36c100000000000000142a451cb8

IE - HKU\S-1-5-21-1482476501-1390067357-725345543-1003\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://www.google.com.br/cse?q={searchTerms}&cx=partner-pub-2489206448026482%3A8691855295&tbm=&ie=UTF-8#gsc.tab=0&gsc.q={searchTerms}'>http://www.google.com.br/cse?q={searchTerms}&cx=partner-pub-2489206448026482%3A8691855295&tbm=&ie=UTF-8#gsc.tab=0&gsc.q={searchTerms}

IE - HKU\S-1-5-21-1482476501-1390067357-725345543-1003\..\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}: "URL" = http://www.mystart.com/results.php?pr=pando&id=pandoleveluptb&v=1_0&gen=ms&ent=ch&q={searchTerms}

IE - HKU\S-1-5-21-1482476501-1390067357-725345543-1003\..\SearchScopes\{6E5B8C2E-6E1E-428D-8A67-D2B3F0D5EDE1}: "URL" = http://www.bing.com/search?FORM=IE8SRC&q={searchTerms}&src={referrer:source?}

IE - HKU\S-1-5-21-1482476501-1390067357-725345543-1003\..\SearchScopes\{7F4EFF06-7032-458e-AE16-1C1D8255C28A}: "URL" = http://home.speedbit.com/search.aspx?aff=106&q={searchTerms}

IE - HKU\S-1-5-21-1482476501-1390067357-725345543-1003\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://isearch.avg.com/search?cid={9DD6FD73-496B-4409-BAF5-E780FB3B3BE6}&mid=87d2d6b293bb47d1b453d15d6ca1f54b-ad1491be2ce6c122f6b66faa90e70c2decf7d34c〈=pt-br&ds=AVG&pr=fr&d=2012-04-08 03:51:54&v=10.2.0.3&sap=dsp&q={searchTerms}

IE - HKU\S-1-5-21-1482476501-1390067357-725345543-1003\..\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}: "URL" = http://www.daemon-search.com/search?q={searchTerms}

IE - HKU\S-1-5-21-1482476501-1390067357-725345543-1003\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2851643

IE - HKU\S-1-5-21-1482476501-1390067357-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1482476501-1390067357-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = 127.0.0.1:9421;<local>;*.local

IE - HKU\S-1-5-21-1482476501-1390067357-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = 190.90.25.26:8080

 

========== FireFox ==========

 

FF - prefs.js..browser.search.defaultenginename: "AVG Secure Search"

FF - prefs.js..browser.search.defaulturl: "http://home.speedbit.com/search.aspx?aff=106&q="

FF - prefs.js..browser.search.order.1: "Search the web (Babylon)"

FF - prefs.js..browser.search.selectedEngine: "AVG Secure Search"

FF - prefs.js..browser.search.useDBForOrder: true

FF - prefs.js..browser.startup.homepage: "http://search.babylon.com/?AF=108921&babsrc=HP_ss&mntrId=e8dc36c100000000000000142a451cb8"

FF - prefs.js..extensions.enabledItems: helperbar@helperbar.com:1.0

FF - prefs.js..extensions.enabledItems: linkuryfirefoxremoteplugin@linkury.com:1.0

FF - prefs.js..extensions.enabledItems: DTToolbar@toolbarnet.com:1.1.4.0024

FF - prefs.js..extensions.enabledItems: afurladvisor@anchorfree.com:1.0

FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0

FF - prefs.js..extensions.enabledItems: {35379F86-8CCB-4724-AE33-4278DE266C70}:1.0.7

FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}:6.0.27

FF - prefs.js..extensions.enabledItems: {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:5.6.0.8153

FF - prefs.js..extensions.enabledItems: ffxtlbr@babylon.com:1.1.9

FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:14.0.3

 

 

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll ()

FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found

FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Arquivos de programas\iTunes\Mozilla Plugins\npitunes.dll ()

FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: C:\Arquivos de programas\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)

FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: D:\picasa\Picasa3\npPicasa3.dll (Google, Inc.)

FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Arquivos de programas\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)

FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416: C:\Arquivos de programas\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Arquivos de programas\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

FF - HKLM\Software\MozillaPlugins\@perfectworld.com/npPlayNowPlugin: D:\Rise\CORE Client\Plugins\npCorePluginFF.dll (Perfect World Entertainment Inc)

FF - HKLM\Software\MozillaPlugins\@raidcall.com/RCplugin: C:\Documents and Settings\EU\Dados de aplicativos\raidcall\plugins\webplugin_en.dll (Raidcall)

FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=15.0.4.53: c:\arquivos de programas\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)

FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=15.0.4.53: c:\arquivos de programas\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)

FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.4.53: C:\Documents and Settings\All Users\Dados de aplicativos\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)

FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.4.53: C:\Documents and Settings\All Users\Dados de aplicativos\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)

FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=15.0.4.53: c:\arquivos de programas\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)

FF - HKLM\Software\MozillaPlugins\@Webzen.com/NPBrowserExt: C:\Arquivos de programas\WEBZEN\BrowserExtension\NPWZCmnCtrl.dll File not found

FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\EU\Configurações locais\Dados de aplicativos\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)

FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\EU\Configurações locais\Dados de aplicativos\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)

FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Arquivos de programas\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

 

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Dados de aplicativos\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012/05/22 15:18:03 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Arquivos de programas\AVG\AVG2012\Firefox4\ [2012/05/06 16:27:37 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\avg@toolbar: C:\Documents and Settings\All Users\Dados de aplicativos\AVG Secure Search\10.2.0.3\ [2012/03/27 16:11:56 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{F53C93F1-07D5-430c-86D4-C9531B27DFAF}: C:\Arquivos de programas\AVG\AVG2012\Firefox\DoNotTrack\ [2012/05/06 16:27:37 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{97E22097-9A2F-45b1-8DAF-36AD648C7EF4}: C:\Documents and Settings\All Users\Dados de aplicativos\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012/05/22 15:18:03 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Components: C:\Arquivos de programas\Mozilla Firefox\components [2012/06/03 14:40:36 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Plugins: C:\Arquivos de programas\Mozilla Firefox\plugins [2012/05/22 15:19:15 | 000,000,000 | ---D | M]

FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Documents and Settings\EU\Dados de aplicativos\IDM\idmmzcc5 [2011/10/25 20:50:15 | 000,000,000 | ---D | M]

FF - HKEY_CURRENT_USER\software\mozilla\SeaMonkey\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Documents and Settings\EU\Dados de aplicativos\IDM\idmmzcc5 [2011/10/25 20:50:15 | 000,000,000 | ---D | M]

 

[2011/06/23 21:04:45 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\EU\Dados de aplicativos\Mozilla\Extensions

[2012/05/17 14:32:28 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\EU\Dados de aplicativos\Mozilla\Firefox\Profiles\i1kum8ld.default\extensions

[2012/05/06 16:24:38 | 000,000,000 | ---D | M] (uTorrentBar_PT Community Toolbar) -- C:\Documents and Settings\EU\Dados de aplicativos\Mozilla\Firefox\Profiles\i1kum8ld.default\extensions\{e0301295-ab3e-4af3-979f-3d453c5f9f48}(2)

[2012/05/06 16:24:48 | 000,000,000 | ---D | M] ("DAEMON Tools Toolbar") -- C:\Documents and Settings\EU\Dados de aplicativos\Mozilla\Firefox\Profiles\i1kum8ld.default\extensions\DTToolbar@toolbarnet(2).com

[2012/05/06 16:25:38 | 000,000,000 | ---D | M] ("Messenger Plus! Community Smartbar") -- C:\Documents and Settings\EU\Dados de aplicativos\Mozilla\Firefox\Profiles\i1kum8ld.default\extensions\helperbar@helperbar(2).com

[2011/08/02 10:35:27 | 000,001,819 | ---- | M] () -- C:\Documents and Settings\EU\Dados de aplicativos\Mozilla\Firefox\Profiles\i1kum8ld.default\searchplugins\bing.xml

[2011/06/30 09:34:49 | 000,002,055 | ---- | M] () -- C:\Documents and Settings\EU\Dados de aplicativos\Mozilla\Firefox\Profiles\i1kum8ld.default\searchplugins\daemon-search.xml

[2012/04/05 23:10:48 | 000,002,244 | ---- | M] () -- C:\Documents and Settings\EU\Dados de aplicativos\Mozilla\Firefox\Profiles\i1kum8ld.default\searchplugins\Messenger Plus Smartbar Search.xml

[2011/10/25 20:32:32 | 000,002,516 | ---- | M] () -- C:\Documents and Settings\EU\Dados de aplicativos\Mozilla\Firefox\Profiles\i1kum8ld.default\searchplugins\speedbit.xml

[2012/06/03 14:40:36 | 000,000,000 | ---D | M] (No name found) -- C:\Arquivos de programas\Mozilla Firefox\extensions

[2011/09/30 20:10:08 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Arquivos de programas\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}

[2011/08/16 23:34:38 | 000,000,000 | ---D | M] (afurladvisor) -- C:\Arquivos de programas\Mozilla Firefox\extensions\afurladvisor@anchorfree.com

[2012/06/03 16:45:28 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION

[2012/04/20 22:18:00 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Arquivos de programas\mozilla firefox\components\browsercomps.dll

[2011/10/10 07:14:56 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Arquivos de programas\mozilla firefox\plugins\npdeployJava1.dll

[2012/05/22 15:16:53 | 000,129,144 | ---- | M] (RealPlayer) -- C:\Arquivos de programas\mozilla firefox\plugins\nprpplugin.dll

[2012/05/04 01:34:42 | 000,003,769 | ---- | M] () -- C:\Arquivos de programas\mozilla firefox\searchplugins\avg-secure-search.xml

[2012/04/24 00:02:42 | 000,002,310 | ---- | M] () -- C:\Arquivos de programas\mozilla firefox\searchplugins\babylon.xml

[2012/04/20 23:26:25 | 000,001,027 | ---- | M] () -- C:\Arquivos de programas\mozilla firefox\searchplugins\buscape.xml

[2012/01/14 22:05:25 | 000,002,050 | ---- | M] () -- C:\Arquivos de programas\mozilla firefox\searchplugins\fcmdSrch.xml

[2012/04/20 23:26:25 | 000,001,212 | ---- | M] () -- C:\Arquivos de programas\mozilla firefox\searchplugins\mercadolivre.xml

[2011/04/20 15:53:10 | 000,002,281 | ---- | M] () -- C:\Arquivos de programas\mozilla firefox\searchplugins\search.xml

[2012/04/20 23:26:24 | 000,002,040 | ---- | M] () -- C:\Arquivos de programas\mozilla firefox\searchplugins\twitter.xml

[2012/03/27 01:31:51 | 000,002,424 | ---- | M] () -- C:\Arquivos de programas\mozilla firefox\searchplugins\v9.xml

[2012/04/20 23:26:25 | 000,001,168 | ---- | M] () -- C:\Arquivos de programas\mozilla firefox\searchplugins\wikipedia-br.xml

[2012/04/20 23:26:24 | 000,000,952 | ---- | M] () -- C:\Arquivos de programas\mozilla firefox\searchplugins\yahoo-br.xml

 

========== Chrome ==========

 

CHR - default_search_provider: Messenger Plus Smartbar Search (Enabled)

CHR - default_search_provider: search_url = http://www.plusnetwork.com/?sp=ctb&q={searchTerms}&dp=MessengerPlus

CHR - default_search_provider: suggest_url =

CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer

CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\EU\Configura\u00E7\u00F5es locais\Dados de aplicativos\Google\Chrome\Application\18.0.1025.151\ppGoogleNaClPluginChrome.dll

CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\EU\Configura\u00E7\u00F5es locais\Dados de aplicativos\Google\Chrome\Application\18.0.1025.151\pdf.dll

CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\EU\Configura\u00E7\u00F5es locais\Dados de aplicativos\Google\Chrome\Application\18.0.1025.151\gcswf32.dll

CHR - plugin: Shockwave Flash (Disabled) = C:\Documents and Settings\EU\Configura\u00E7\u00F5es locais\Dados de aplicativos\Google\Chrome\User Data\PepperFlash\11.1.31.203\pepflashplayer.dll

CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll

CHR - plugin: Java Deployment Toolkit 6.0.270.7 (Enabled) = C:\Arquivos de programas\Java\jre6\bin\new_plugin\npdeployJava1.dll

CHR - plugin: Java Platform SE 6 U27 (Enabled) = C:\Arquivos de programas\Java\jre6\bin\new_plugin\npjp2.dll

CHR - plugin: RealPlayer G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Arquivos de programas\Mozilla Firefox\plugins\nppl3260.dll

CHR - plugin: RealPlayer Download Plugin (Enabled) = C:\Arquivos de programas\Mozilla Firefox\plugins\nprpplugin.dll

CHR - plugin: RealPlayer HTML5VideoShim Plug-In (32-bit) (Enabled) = C:\Documents and Settings\All Users\Dados de aplicativos\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll

CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Arquivos de programas\Mozilla Firefox\plugins\npqtplugin.dll

CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Arquivos de programas\Mozilla Firefox\plugins\npqtplugin2.dll

CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Arquivos de programas\Mozilla Firefox\plugins\npqtplugin3.dll

CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Arquivos de programas\Mozilla Firefox\plugins\npqtplugin4.dll

CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Arquivos de programas\Mozilla Firefox\plugins\npqtplugin5.dll

CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Arquivos de programas\Mozilla Firefox\plugins\npqtplugin6.dll

CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Arquivos de programas\Mozilla Firefox\plugins\npqtplugin7.dll

CHR - plugin: RealJukebox NS Plugin (Enabled) = C:\Arquivos de programas\Mozilla Firefox\plugins\nprjplug.dll

CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Arquivos de programas\Windows Media Player\npdrmv2.dll

CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Arquivos de programas\Windows Media Player\npwmsdrm.dll

CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Arquivos de programas\Windows Media Player\npdsplay.dll

CHR - plugin: Foxit Reader Plugin for Mozilla (Enabled) = C:\Arquivos de programas\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

CHR - plugin: Pando Web Plugin (Enabled) = C:\Arquivos de programas\Pando Networks\Media Booster\npPandoWebPlugin.dll

CHR - plugin: Windows Live\u00AE Photo Gallery (Enabled) = C:\Arquivos de programas\Windows Live\Photo Gallery\NPWLPG.dll

CHR - plugin: iTunes Application Detector (Enabled) = C:\Arquivos de programas\iTunes\Mozilla Plugins\npitunes.dll

CHR - plugin: RealNetworks Chrome Background Extension Plug-In (32-bit) (Enabled) = C:\Documents and Settings\All Users\Dados de aplicativos\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll

CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\EU\Configura\u00E7\u00F5es locais\Dados de aplicativos\Google\Update\1.3.21.111\npGoogleUpdate3.dll

CHR - plugin: Raidcall plugin (Enabled) = C:\Documents and Settings\EU\Dados de aplicativos\raidcall\plugins\webplugin_en.dll

CHR - plugin: Windows Presentation Foundation (Enabled) = C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

CHR - plugin: CorePlugin (Enabled) = D:\Rise\CORE Client\Plugins\npCorePluginFF.dll

CHR - plugin: Picasa (Enabled) = D:\picasa\Picasa3\npPicasa3.dll

CHR - Extension: YouTube = C:\Documents and Settings\EU\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\

CHR - Extension: Pesquisa do Google = C:\Documents and Settings\EU\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\

CHR - Extension: Complitly plugin for chrome = C:\Documents and Settings\EU\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Extensions\defdhglnppeioeflggkmglipcecffkhk\1.1_0\

CHR - Extension: DealPly = C:\Documents and Settings\EU\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Extensions\gaiilaahiahdejapggenmdmafpmbipje\3.0.7.2_0\

CHR - Extension: RealPlayer HTML5Video Downloader Extension = C:\Documents and Settings\EU\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.5_0\

CHR - Extension: uTorrentBar_PT = C:\Documents and Settings\EU\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Extensions\mdebcffgnijbblbinknkbefciofebcda\2.3.7.1_0\

CHR - Extension: Gmail = C:\Documents and Settings\EU\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

 

O1 HOSTS File: ([2001/10/28 12:06:36 | 000,000,776 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts

O1 - Hosts: 127.0.0.1 localhost

O2 - BHO: (Octh Class) - {000123B4-9B42-4900-B3F7-F4B073EFC214} - D:\Gerenciador\Orbitdownloader\orbitcth.dll (Orbitdownloader.com)

O2 - BHO: (Browser Companion Helper) - {00cbb66b-1d3b-46d3-9577-323a336acb50} - C:\Arquivos de programas\BrowserCompanion\jsloader.dll ( )

O2 - BHO: (AC-Pro) - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Documents and Settings\EU\Dados de aplicativos\Complitly\AutocompletePro.dll (SimplyGen)

O2 - BHO: (CorePluginIEBHO Class) - {13FA2453-9287-4F18-8554-976D7C02F4EE} - D:\Rise\CORE Client\plugins\CorePluginIE.dll (Perfect World Entertainment Inc)

O2 - BHO: (Shopping Assistant Plugin) - {1631550F-191D-4826-B069-D9439253D926} - C:\Arquivos de programas\PriceGong\2.5.2\PriceGongIE.dll (PriceGong)

O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Arquivos de programas\Arquivos comuns\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)

O2 - BHO: (Babylon toolbar helper) - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Arquivos de programas\BabylonToolbar\BabylonToolbar\1.4.35.10\bh\BabylonToolbar.dll (Babylon BHO)

O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Dados de aplicativos\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)

O2 - BHO: (AVG Do-Not-Track) - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Arquivos de programas\AVG\AVG2012\avgdtiex.dll (AVG Technologies CZ, s.r.o.)

O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Arquivos de programas\AVG\AVG2012\avgssie.dll (AVG Technologies CZ, s.r.o.)

O2 - BHO: (V9BHOLoader) - {4DE0953E-490E-4D6F-BDDA-0516C372F3AF} - C:\WINDOWS\system32\v9loader.dll (Beijing Elex Technology Co., Ltd)

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.

O2 - BHO: (no name) - {64182481-4F71-486b-A045-B233BD0DA8FC} - No CLSID value found.

O2 - BHO: (Auxiliar de Conexão do Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)

O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Arquivos de programas\AVG Secure Search\10.2.0.3\AVG Secure Search_toolbar.dll ()

O2 - BHO: (Browser Companion Helper Verifier) - {963B125B-8B21-49A2-A3A8-E37092276531} - C:\Arquivos de programas\BrowserCompanion\updatebhoWin32.dll ( )

O2 - BHO: (DealPly) - {A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} - C:\Arquivos de programas\DealPly\DealPlyIE.dll (DealPly Technologies Ltd)

O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Arquivos de programas\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)

O2 - BHO: (FrostWire Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Arquivos de programas\Ask.com\GenericAskToolbar.dll (Ask)

O2 - BHO: (no name) - {e0301295-ab3e-4af3-979f-3d453c5f9f48} - No CLSID value found.

O2 - BHO: (no name) - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - No CLSID value found.

O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Arquivos de programas\DAEMON Tools Toolbar\DTToolbar.dll ()

O3 - HKLM\..\Toolbar: (V9-ToolBar) - {742E70CF-7770-412d-86CB-230B322E807C} - C:\WINDOWS\system32\v9-toolbar.dll (FOF_SILENT

Beijing Elex Technology Co., Ltd)

O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Arquivos de programas\AVG Secure Search\10.2.0.3\AVG Secure Search_toolbar.dll ()

O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Arquivos de programas\BabylonToolbar\BabylonToolbar\1.4.35.10\BabylonToolbarTlbr.dll (Babylon Ltd.)

O3 - HKLM\..\Toolbar: (Grab Pro) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - D:\Gerenciador\Orbitdownloader\GrabPro.dll ()

O3 - HKLM\..\Toolbar: (FrostWire Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Arquivos de programas\Ask.com\GenericAskToolbar.dll (Ask)

O3 - HKLM\..\Toolbar: (no name) - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - No CLSID value found.

O3 - HKLM\..\Toolbar: (no name) - {e0301295-ab3e-4af3-979f-3d453c5f9f48} - No CLSID value found.

O3 - HKU\S-1-5-21-1482476501-1390067357-725345543-1003\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Arquivos de programas\DAEMON Tools Toolbar\DTToolbar.dll ()

O3 - HKU\S-1-5-21-1482476501-1390067357-725345543-1003\..\Toolbar\WebBrowser: (Grab Pro) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - D:\Gerenciador\Orbitdownloader\GrabPro.dll ()

O4 - HKU\S-1-5-21-1482476501-1390067357-725345543-1003..\Run: [Advanced SystemCare 5] C:\Arquivos de programas\IObit\Advanced SystemCare 5\ASCTray.exe (IObit)

O4 - HKLM..\RunOnce: [AvgUninstallURL] C:\WINDOWS\System32\cmd.exe (Microsoft Corporation)

O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0

O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-21-1482476501-1390067357-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O8 - Extra context menu item: &Download by Orbit - D:\Gerenciador\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)

O8 - Extra context menu item: &Grab video by Orbit - D:\Gerenciador\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)

O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)

O8 - Extra context menu item: Do&wnload selected by Orbit - D:\Gerenciador\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)

O8 - Extra context menu item: Down&load all by Orbit - D:\Gerenciador\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)

O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\ARQUIV~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 File not found

O8 - Extra context menu item: Fazer o download de todos os links usando o IDM - D:\jd3\Internet Download Manager\IEGetAll.htm ()

O8 - Extra context menu item: Fazer o download usando o IDM - D:\jd3\Internet Download Manager\IEExt.htm ()

O9 - Extra Button: Estatísticas do Antivírus da Web - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Arquivos de programas\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll (Kaspersky Lab)

O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Arquivos de programas\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)

O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Arquivos de programas\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)

O9 - Extra Button: AVG Do-Not-Track - {DA58ACA7-18A6-403A-93DA-6E4172D43709} - C:\Arquivos de programas\AVG\AVG2012\avgdtiex.dll (AVG Technologies CZ, s.r.o.)

O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Arquivos de programas\Bonjour\mdnsNSP.dll (Apple Inc.)

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab (Java Plug-in 1.6.0_27)

O16 - DPF: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab (Java Plug-in 1.6.0_27)

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_27-windows-i586.cab (Java Plug-in 1.6.0_27)

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{BB1919BE-A109-4325-81F6-3D2FD87AD576}: DhcpNameServer = 192.168.1.1

O18 - Protocol\Handler\base64 {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - C:\Arquivos de programas\BrowserCompanion\tdataprotocol.dll (Blabbers Communications Ltd)

O18 - Protocol\Handler\chrome {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - C:\Arquivos de programas\BrowserCompanion\tdataprotocol.dll (Blabbers Communications Ltd)

O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Arquivos de programas\Arquivos comuns\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Arquivos de programas\AVG\AVG2012\avgpp.dll (AVG Technologies CZ, s.r.o.)

O18 - Protocol\Handler\livecall - No CLSID value found

O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Arquivos de programas\Arquivos comuns\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Arquivos de programas\Arquivos comuns\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)

O18 - Protocol\Handler\msnim - No CLSID value found

O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)

O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)

O18 - Protocol\Handler\prox {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - C:\Arquivos de programas\BrowserCompanion\tdataprotocol.dll (Blabbers Communications Ltd)

O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Arquivos de programas\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)

O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Arquivos de programas\Arquivos comuns\AVG Secure Search\ViProtocolInstaller\10.2.0\ViProtocol.dll ()

O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)

O20 - AppInit_DLLs: (C:\ARQUIV~1\KASPER~1\KASPER~1.0\adialhk.dll) - C:\Arquivos de programas\Kaspersky Lab\Kaspersky Internet Security 7.0\adialhk.dll (Kaspersky Lab)

O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)

O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)

O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)

O20 - Winlogon\Notify\klogon: DllName - (C:\WINDOWS\system32\klogon.dll) - C:\WINDOWS\system32\klogon.dll (Kaspersky Lab)

O24 - Desktop Components:0 (Minha página inicial atual) - About:Home

O24 - Desktop WallPaper: C:\Documents and Settings\EU\Configurações locais\Dados de aplicativos\Microsoft\Wallpaper1.bmp

O24 - Desktop BackupWallPaper: C:\Documents and Settings\EU\Configurações locais\Dados de aplicativos\Microsoft\Wallpaper1.bmp

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2011/06/23 09:31:58 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]

O32 - AutoRun File - [2005/02/25 17:24:46 | 000,000,051 | R--- | M] () - E:\autorun.inf -- [ UDF ]

O33 - MountPoints2\{4c9a51e5-a315-11e0-97fc-00142a451cb8}\Shell - "" = AutoRun

O33 - MountPoints2\{4c9a51e5-a315-11e0-97fc-00142a451cb8}\Shell\AutoRun\command - "" = I:\autorun.exe

O33 - MountPoints2\{4c9a51e5-a315-11e0-97fc-00142a451cb8}\Shell\directx\command - "" = I:\DirectX9\dxsetup.exe

O33 - MountPoints2\{4c9a51e5-a315-11e0-97fc-00142a451cb8}\Shell\setup\command - "" = I:\setup.exe

O34 - HKLM BootExecute: (autocheck autochk *)

O35 - HKLM\..comfile [open] -- "%1" %*

O35 - HKLM\..exefile [open] -- "%1" %*

O37 - HKLM\...com [@ = comfile] -- "%1" %*

O37 - HKLM\...exe [@ = exefile] -- "%1" %*

O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)

O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

 

========== Files/Folders - Created Within (All) ==========

 

[2012/06/03 19:20:08 | 000,596,480 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\EU\Desktop\OTL.exe

[2012/06/03 17:38:40 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\MSXML 4.0

[2012/06/03 15:28:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\CCleaner

[2012/06/03 14:55:13 | 000,000,000 | R--D | C] -- C:\Documents and Settings\EU\Menu Iniciar\Programas\Ferramentas administrativas

[2012/05/31 20:45:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\Bethesda Softworks

[2012/05/31 20:45:32 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\Bethesda Softworks

[2012/05/29 22:52:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\Picasa 3

[2012/05/23 23:47:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\EU\Menu Iniciar\Programas\BS.Player

[2012/05/23 23:43:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\EU\Dados de aplicativos\BSplayer Pro

[2012/05/23 23:43:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\EU\Dados de aplicativos\BSplayer

[2012/05/23 23:43:50 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\Webteh

[2012/05/23 19:15:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\EU\Meus documentos\TORRENT DOWNLOAD

[2012/05/23 19:14:24 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\uTorrent

[2012/05/23 19:13:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\EU\Dados de aplicativos\uTorrent

[2012/05/23 18:21:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\EU\Meus documentos\FF Download

[2012/05/22 15:16:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\RealNetworks

[2012/05/21 12:17:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\EU\Dados de aplicativos\Ventrilo

[2012/05/21 12:15:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\Ventrilo

[2012/05/21 12:14:46 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\Ventrilo

[2012/05/21 12:12:51 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\Arquivos comuns\Wise Installation Wizard

[2012/05/20 04:55:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\EU\Desktop\Nova pasta

[2012/05/16 14:36:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\Last.fm

[2012/05/16 14:35:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\iTunes

[2012/05/16 14:35:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Dados de aplicativos\Apple Computer

[2012/05/16 14:34:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\EU\Configurações locais\Dados de aplicativos\Conduit

[2012/05/16 14:34:24 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\Conduit

[2012/05/16 14:34:22 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\Mozilla Maintenance Service

[2012/05/09 06:40:38 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\iPod

[2012/05/09 06:40:30 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\iTunes

[2012/05/09 06:37:38 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\Bonjour

[2012/05/06 17:54:05 | 000,242,240 | ---- | C] (DT Soft Ltd) -- C:\WINDOWS\System32\drivers\dtsoftbus01.sys

[2012/05/06 16:36:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\gamigo

[2012/05/06 16:36:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\Skype

[2012/05/06 16:34:12 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\Windows Live

[2012/05/06 16:30:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\Windows Live

[2012/05/06 16:29:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\EU\Desktop\ts3

[2012/05/06 16:29:28 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\Messenger

[2012/05/06 16:29:21 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\Yuna Software

[2012/05/06 16:27:34 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\AVG Secure Search

[2012/05/06 16:24:07 | 000,000,000 | ---D | C] -- C:\Config.Msi

[2012/04/25 10:55:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\EU\Meus documentos\Dungeons and Dragons Online

[2012/04/23 20:03:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages

[2012/04/23 03:01:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates

[2012/04/17 19:48:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\EU\Meus documentos\Lindsey Stirling

[2012/04/16 17:31:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\EU\Meus documentos\tls3

[2012/04/15 07:24:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\EU\Meus documentos\Level Up! Games

[2012/04/05 22:47:48 | 000,000,000 | ---D | C] -- C:\temp

[2012/04/05 22:39:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer

[2012/04/05 22:39:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US

[2012/04/05 22:38:08 | 000,000,000 | ---D | C] -- C:\a555bacdfbf1dfbaa12c71c900c6

[2012/04/05 06:34:37 | 000,000,000 | ---D | C] -- C:\0a66fc92a7642f2932848e

[2012/04/05 06:34:05 | 000,000,000 | ---D | C] -- C:\73bbdca998bf14cb603af12a

[2012/03/27 01:32:41 | 000,029,016 | ---- | C] (IObit) -- C:\WINDOWS\System32\SmartDefragBootTime.exe

[2012/03/27 01:31:46 | 000,567,200 | ---- | C] (FOF_SILENT

Beijing Elex Technology Co., Ltd) -- C:\WINDOWS\System32\v9-toolbar.dll

[2012/03/27 01:31:46 | 000,093,088 | ---- | C] (Beijing Elex Technology Co., Ltd) -- C:\WINDOWS\System32\v9loader.dll

[2012/03/14 09:16:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\EU\Meus documentos\TS3

[2012/03/10 16:52:41 | 000,000,000 | ---D | C] -- C:\aaaaaaaaaaaa

[2012/02/26 11:04:16 | 000,674,400 | ---- | C] (Wellbia.com Co., Ltd.) -- C:\WINDOWS\System32\xsherlock.xem

[2012/02/26 11:00:59 | 000,230,920 | ---- | C] (WEBZEN, INC.) -- C:\WINDOWS\System32\EPWZCmnCtrl.dll

[2012/02/23 02:29:03 | 000,000,000 | ---D | C] -- C:\AeriaGames

[2012/02/17 12:24:15 | 005,110,960 | ---- | C] (Perfect World Entertainment ) -- C:\Documents and Settings\EU\Meus documentos\BOI_SETUP_V198_0708.exe

[2012/02/11 22:29:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\EU\Meus documentos\FrostWire

[2012/02/10 19:36:14 | 000,000,000 | ---D | C] -- C:\ProgramData

[2012/02/01 17:59:20 | 000,021,376 | ---- | C] (IObit) -- C:\WINDOWS\System32\RegistryDefragBootTime.exe

[2012/02/01 16:14:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\EU\Meus documentos\pcsx2

[2012/01/30 06:56:06 | 000,000,000 | ---D | C] -- C:\FW

[2012/01/26 13:06:16 | 000,000,000 | ---D | C] -- C:\Download Chrome

[2012/01/20 21:59:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\EU\Meus documentos\All The Rage! - 2011

[2012/01/14 21:51:02 | 000,000,000 | ---D | C] -- C:\Skyrim

[2012/01/09 17:41:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\EU\Meus documentos\aaaaaa

[2011/12/30 22:30:20 | 000,000,000 | ---D | C] -- C:\PWRD

[2011/12/28 08:45:19 | 000,319,488 | ---- | C] (Asprate) -- C:\Documents and Settings\EU\Meus documentos\1.da_

[2011/12/28 08:45:19 | 000,045,056 | ---- | C] (Asprate) -- C:\Documents and Settings\EU\Meus documentos\2.da_

[2011/12/28 08:45:19 | 000,036,864 | ---- | C] (Asprate) -- C:\Documents and Settings\EU\Meus documentos\4.da_

[2011/12/28 08:39:43 | 001,122,304 | ---- | C] (The OpenSSL Project, http://www.openssl.org/) -- C:\WINDOWS\libeay32.dll

[2011/12/28 08:39:43 | 000,315,392 | ---- | C] (Asprate) -- C:\WINDOWS\ipchanger.exe

[2011/12/28 08:39:43 | 000,274,432 | ---- | C] (The OpenSSL Project, http://www.openssl.org/) -- C:\WINDOWS\ssleay32.dll

[2011/12/28 08:39:43 | 000,176,128 | ---- | C] (The cURL library, http://curl.haxx.se/) -- C:\WINDOWS\libcurl.dll

[2011/12/28 08:39:43 | 000,045,056 | ---- | C] (Asprate) -- C:\WINDOWS\Ip Changer Updater.exe

[2011/12/27 00:12:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\EU\Meus documentos\GTA San Andreas User Files

[2011/12/26 10:56:02 | 000,098,304 | ---- | C] (Sony DADC Austria AG.) -- C:\WINDOWS\System32\CmdLineExt.dll

[2011/12/23 13:32:08 | 000,017,232 | ---- | C] (AVG Technologies CZ, s.r.o. ) -- C:\WINDOWS\System32\drivers\avgidsshimx.sys

[2011/12/23 13:32:06 | 000,024,144 | ---- | C] (AVG Technologies CZ, s.r.o. ) -- C:\WINDOWS\System32\drivers\avgidsfilterx.sys

[2011/12/23 13:32:04 | 000,022,992 | ---- | C] (AVG Technologies CZ, s.r.o. ) -- C:\WINDOWS\System32\drivers\avgidsehx.sys

[2011/12/23 13:32:00 | 000,139,856 | ---- | C] (AVG Technologies CZ, s.r.o. ) -- C:\WINDOWS\System32\drivers\avgidsdriverx.sys

[2011/12/22 11:49:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt

[2011/12/21 17:42:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\EU\Meus documentos\Aspyr

[2011/12/21 17:30:19 | 000,000,000 | ---D | C] -- C:\Nova pasta

[2011/11/10 06:04:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\cache

[2011/10/27 22:07:31 | 000,000,000 | ---D | C] -- C:\Sound

[2011/10/25 20:30:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\EU\Meus documentos\My DAP Downloads

[2011/10/25 20:29:42 | 000,172,032 | ---- | C] (Jin Hui E-mail: jinhui@jcomsoft.com Web: http://www.jcomsoft.com) -- C:\WINDOWS\System32\AniGIF.ocx

[2011/10/25 19:47:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\EU\Meus documentos\Nova pasta (3)

[2011/10/25 05:22:14 | 000,101,616 | ---- | C] (Tonec Inc.) -- C:\WINDOWS\System32\drivers\idmtdi.sys

[2011/10/20 10:07:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss

[2011/10/13 13:43:20 | 000,302,592 | ---- | C] (InstallShield Corporation, Inc.) -- C:\WINDOWS\unin0416.exe

[2011/10/09 03:03:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\EU\Meus documentos\Messenger Plus

[2011/10/08 11:28:21 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly

[2011/10/08 11:24:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET

[2011/09/28 23:31:58 | 000,272,896 | ---- | C] (Progressive Networks) -- C:\WINDOWS\System32\pncrt.dll

[2011/09/21 12:29:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles

[2011/09/14 19:28:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\madll

[2011/09/13 05:30:10 | 000,031,952 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgrkx86.sys

[2011/09/07 13:00:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\EU\Meus documentos\TikGames

[2011/08/31 16:28:27 | 004,122,968 | ---- | C] (INCA Internet Co., Ltd.) -- C:\WINDOWS\System32\GameMon.des

[2011/08/31 16:27:39 | 000,004,682 | ---- | C] (INCA Internet Co., Ltd.) -- C:\WINDOWS\System32\npptNT2.sys

[2011/08/30 04:10:01 | 000,671,248 | ---- | C] (Wellbia.com Co., Ltd.) -- C:\WINDOWS\xsherlock.xem

[2011/08/26 06:47:59 | 000,413,696 | ---- | C] (Creative Labs) -- C:\WINDOWS\System32\wrap_oal.dll

[2011/08/26 05:39:34 | 000,000,000 | ---D | C] -- C:\downloads

[2011/08/24 01:14:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun

[2011/08/23 21:58:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\EU\Meus documentos\ipchange

[2011/08/21 21:22:38 | 000,237,568 | ---- | C] (www.helixcommunity.org) -- C:\WINDOWS\System32\yv12vfw.dll

[2011/08/21 21:22:38 | 000,151,552 | ---- | C] (fccHandler) -- C:\WINDOWS\System32\ac3acm.acm

[2011/08/20 03:21:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs

[2011/08/16 23:34:42 | 000,000,000 | ---D | C] -- C:\Hotspot Shield

[2011/08/10 16:50:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\EU\Meus documentos\Meus arquivos recebidos

[2011/08/08 05:08:58 | 000,041,040 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgmfx86.sys

[2011/08/03 03:25:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot_bak

[2011/08/03 03:01:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall

[2011/08/03 03:00:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles

[2011/08/02 10:33:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documentos\microsoft

[2011/08/01 09:45:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\EU\Meus documentos\Downloads

[2011/08/01 09:25:43 | 000,000,000 | ---D | C] -- C:\Perfect World Entertainment

[2011/07/29 19:04:02 | 000,000,000 | R--D | C] -- C:\Program Files

[2011/07/27 06:08:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\EU\Meus documentos\Nova pasta (2)

[2011/07/27 06:03:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\EU\Meus documentos\Programas

[2011/07/21 21:59:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\EU\Meus documentos\Nova pasta

[2011/07/13 17:09:35 | 000,000,000 | R--D | C] -- C:\Documents and Settings\EU\Meus documentos\Meus vídeos

[2011/07/13 11:58:01 | 000,048,128 | ---- | C] (PixArt Imaging Incorporation) -- C:\WINDOWS\System32\Remove.exe

[2011/07/13 11:57:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\PixArt

[2011/07/12 15:01:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE

[2011/07/11 00:14:38 | 000,299,472 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgtdix.sys

[2011/07/11 00:13:46 | 000,235,216 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgldx86.sys

[2011/06/30 05:48:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump

[2011/06/23 17:36:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\EU\Meus documentos\My Games

[2011/06/23 14:49:30 | 000,000,000 | -H-D | C] -- C:\$AVG

[2011/06/23 12:38:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution

[2011/06/23 12:16:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM

[2011/06/23 12:11:46 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8

[2011/06/23 12:11:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pt-BR

[2011/06/23 12:04:53 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$

[2011/06/23 11:53:25 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$MSI31Uninstall_KB893803v2$

[2011/06/23 11:49:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\AVG

[2011/06/23 11:44:07 | 000,000,000 | -HSD | C] -- C:\RECYCLER

[2011/06/23 11:17:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\EU\Desktop\BKP TUDO

[2011/06/23 11:15:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups

[2011/06/23 11:12:04 | 002,568,192 | R--- | C] (C-Media Corporation) -- C:\WINDOWS\System\cmicnfg.cpl

[2011/06/23 11:12:04 | 001,458,176 | R--- | C] (C-Media Electronics Inc.) -- C:\WINDOWS\System\SmWizard.exe

[2011/06/23 11:12:04 | 000,917,504 | R--- | C] (C-Media Electronics Inc.) -- C:\WINDOWS\System\cmids3d.dll

[2011/06/23 11:12:04 | 000,821,760 | R--- | C] (C-Media Inc) -- C:\WINDOWS\System32\drivers\cmuda.sys

[2011/06/23 11:12:04 | 000,163,840 | R--- | C] (C-Media) -- C:\WINDOWS\System32\cmuda.dll

[2011/06/23 11:12:04 | 000,032,768 | R--- | C] (C-Media Corporation) -- C:\WINDOWS\System32\udaprop.dll

[2011/06/23 09:41:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW

[2011/06/23 09:38:03 | 000,000,000 | R--D | C] -- C:\Documents and Settings\EU\Meus documentos\Minhas músicas

[2011/06/23 09:38:03 | 000,000,000 | R--D | C] -- C:\Documents and Settings\EU\Meus documentos\Minhas imagens

[2011/06/23 09:37:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution

[2011/06/23 09:37:07 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft

[2011/06/23 09:37:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch

[2011/06/23 09:34:22 | 000,080,896 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll

[2011/06/23 09:34:22 | 000,080,896 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll

[2011/06/23 09:34:22 | 000,026,624 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll

[2011/06/23 09:32:48 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys

[2011/06/23 09:32:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom

[2011/06/23 09:30:51 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files

[2011/06/23 09:30:51 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages

[2011/06/23 09:30:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX

[2011/06/23 09:29:37 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks

[2011/06/23 09:29:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst

[2011/06/23 09:29:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed

[2011/06/23 09:29:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore

[2011/06/23 09:28:42 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documentos\Minhas imagens

[2011/06/23 09:28:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration

[2011/06/23 09:28:01 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documentos\Minhas músicas

[2011/06/23 09:27:12 | 000,283,648 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe

[2011/06/23 09:27:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc

[2011/06/23 09:27:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com

[2011/06/23 09:26:43 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documentos\Meus vídeos

[2011/06/23 06:22:02 | 000,032,768 | ---- | C] (SiS Corporation) -- C:\WINDOWS\System32\drivers\sisnic.sys

[2011/06/23 06:21:00 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer

[2011/06/23 06:20:55 | 000,000,000 | R--D | C] -- C:\Arquivos de programas

[2011/06/23 06:20:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2

[2011/06/23 06:20:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot

[2011/06/23 06:19:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings

[2011/06/23 06:19:37 | 000,000,000 | -HSD | C] -- C:\System Volume Information

[2011/06/23 06:13:54 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts

[2011/06/23 06:13:54 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache

[2011/06/23 06:13:54 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web

[2011/06/23 06:13:54 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\system

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\security

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\java

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1046

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028

[2011/06/23 06:13:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025

[2011/05/24 20:40:12 | 000,037,376 | ---- | C] (AnchorFree Inc.) -- C:\WINDOWS\System32\drivers\HssDrv.sys

[2011/03/18 13:08:54 | 000,025,240 | ---- | C] (Almico Software) -- C:\WINDOWS\System32\speedfan.sys

[2010/01/26 23:09:02 | 000,281,104 | ---- | C] (CACE Technologies, Inc.) -- C:\WINDOWS\System32\wpcap.dll

[2010/01/26 23:09:02 | 000,100,880 | ---- | C] (CACE Technologies, Inc.) -- C:\WINDOWS\System32\Packet.dll

[2010/01/26 23:09:02 | 000,050,704 | ---- | C] (CACE Technologies, Inc.) -- C:\WINDOWS\System32\drivers\npf.sys

[2008/02/08 17:37:44 | 000,219,664 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\klogon.dll

[2007/12/28 18:51:04 | 000,195,344 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klif.sys

[2007/12/13 12:28:40 | 000,024,592 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klim5.sys

[2007/10/31 12:41:16 | 000,110,096 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\kl1.sys

[2005/05/17 12:22:04 | 000,285,472 | ---- | C] (InterActual Technologies, Inc.) -- C:\WINDOWS\System32\itiimg3.dll

[2001/10/28 12:07:32 | 003,374,640 | ---- | C] (Macromedia, Inc.) -- C:\WINDOWS\System32\dllcache\tourW.exe

[1999/01/05 17:30:02 | 000,225,280 | ---- | C] (VideoSoft) -- C:\WINDOWS\System32\VSFLEX3.OCX

[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[26 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

 

========== Files - Modified Within 30 Days ==========

 

[2012/06/03 19:34:00 | 000,000,244 | ---- | M] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job

[2012/06/03 19:20:08 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\EU\Desktop\OTL.exe

[2012/06/03 19:19:46 | 000,869,194 | ---- | M] () -- C:\Documents and Settings\EU\Desktop\SecurityCheck.exe

[2012/06/03 19:17:23 | 000,000,262 | ---- | M] () -- C:\WINDOWS\tasks\Game_Booster_Startup.job

[2012/06/03 19:16:44 | 000,000,290 | ---- | M] () -- C:\WINDOWS\tasks\SmartDefrag_Startup.job

[2012/06/03 19:11:07 | 000,000,374 | ---- | M] () -- C:\WINDOWS\tasks\Windows Codec Update Service.job

[2012/06/03 19:10:00 | 000,001,156 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1482476501-1390067357-725345543-1003UA.job

[2012/06/03 19:05:37 | 000,510,540 | ---- | M] () -- C:\WINDOWS\System32\perfh016.dat

[2012/06/03 19:05:37 | 000,471,340 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat

[2012/06/03 19:05:37 | 000,098,542 | ---- | M] () -- C:\WINDOWS\System32\perfc016.dat

[2012/06/03 19:05:37 | 000,083,594 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat

[2012/06/03 19:01:19 | 000,000,288 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-1482476501-1390067357-725345543-1003.job

[2012/06/03 19:01:11 | 000,000,270 | ---- | M] () -- C:\WINDOWS\tasks\DriverScanner.job

[2012/06/03 19:01:00 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat

[2012/06/03 19:00:56 | 000,247,104 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT

[2012/06/03 18:59:54 | 001,130,016 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox2.dat

[2012/06/03 18:59:54 | 000,085,820 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox2.idx

[2012/06/03 18:42:05 | 024,977,440 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox.dat

[2012/06/03 18:41:00 | 000,000,902 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job

[2012/06/03 17:03:52 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx

[2012/06/03 15:31:12 | 000,000,981 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Uninstaller.lnk

[2012/06/03 15:31:11 | 000,000,930 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Advanced SystemCare 5.lnk

[2012/06/03 15:00:24 | 000,280,268 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox.idx

[2012/06/03 14:59:59 | 000,000,211 | -HS- | M] () -- C:\boot.ini

[2012/06/03 14:40:42 | 000,000,780 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk

[2012/06/03 12:56:06 | 000,012,122 | ---- | M] () -- C:\Documents and Settings\EU\Meus documentos\preço.rtf

[2012/06/03 01:10:00 | 000,001,104 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1482476501-1390067357-725345543-1003Core.job

[2012/06/02 22:55:34 | 000,101,376 | ---- | M] () -- C:\Documents and Settings\EU\Configurações locais\Dados de aplicativos\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2012/06/02 15:18:24 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl

[2012/05/31 20:49:33 | 000,001,713 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\The Elder Scrolls Construction Set.lnk

[2012/05/31 20:45:35 | 000,000,787 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Morrowind.lnk

[2012/05/31 13:15:00 | 000,000,300 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job

[2012/05/30 19:43:41 | 000,000,296 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-1482476501-1390067357-725345543-1003.job

[2012/05/29 22:58:09 | 000,000,527 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Picasa 3.lnk

[2012/05/28 14:56:30 | 000,629,886 | ---- | M] () -- C:\Documents and Settings\EU\Desktop\HN1N3.png

[2012/05/24 10:48:10 | 000,021,376 | ---- | M] (IObit) -- C:\WINDOWS\System32\RegistryDefragBootTime.exe

[2012/05/23 23:47:09 | 000,000,831 | ---- | M] () -- C:\Documents and Settings\EU\Desktop\BS.Player FREE.lnk

[2012/05/23 19:14:28 | 000,000,670 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\µTorrent.lnk

[2012/05/22 15:19:00 | 000,000,819 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\RealPlayer.lnk

[2012/05/22 15:16:38 | 000,272,896 | ---- | M] (Progressive Networks) -- C:\WINDOWS\System32\pncrt.dll

[2012/05/22 12:41:15 | 000,000,685 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Ventrilo.lnk

[2012/05/21 12:15:06 | 000,000,270 | ---- | M] () -- C:\WINDOWS\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini

[2012/05/20 11:07:26 | 000,009,981 | ---- | M] () -- C:\Documents and Settings\EU\Desktop\pokeprices.rtf

[2012/05/19 15:56:16 | 000,000,691 | ---- | M] () -- C:\Documents and Settings\EU\Desktop\Atalho para PO.lnk

[2012/05/19 08:40:43 | 002,359,350 | ---- | M] () -- C:\Documents and Settings\EU\Desktop\poke8.bmp

[2012/05/18 08:36:28 | 002,359,350 | ---- | M] () -- C:\Documents and Settings\EU\Desktop\ban3.bmp

[2012/05/18 06:34:35 | 002,359,350 | ---- | M] () -- C:\Documents and Settings\EU\Desktop\poke7.bmp

[2012/05/17 17:21:49 | 002,359,350 | ---- | M] () -- C:\Documents and Settings\EU\Desktop\ban2.bmp

[2012/05/17 08:51:45 | 002,359,350 | ---- | M] () -- C:\Documents and Settings\EU\Desktop\poke6.bmp

[2012/05/16 16:33:06 | 000,000,162 | -H-- | M] () -- C:\Documents and Settings\EU\Desktop\~$keprices.rtf

[2012/05/16 05:43:16 | 002,359,350 | ---- | M] () -- C:\Documents and Settings\EU\Desktop\poke5.bmp

[2012/05/15 09:14:25 | 001,142,884 | ---- | M] () -- C:\Documents and Settings\EU\Desktop\denuncia.PNG

[2012/05/15 09:12:51 | 000,659,403 | ---- | M] () -- C:\Documents and Settings\EU\Desktop\denuncia1.PNG

[2012/05/15 05:16:36 | 002,359,350 | ---- | M] () -- C:\Documents and Settings\EU\Desktop\poke4.bmp

[2012/05/14 13:47:05 | 002,359,350 | ---- | M] () -- C:\Documents and Settings\EU\Desktop\poke3.bmp

[2012/05/13 02:32:54 | 002,359,350 | ---- | M] () -- C:\Documents and Settings\EU\Desktop\poke2.bmp

[2012/05/12 11:33:47 | 002,359,350 | ---- | M] () -- C:\Documents and Settings\EU\Desktop\poke.bmp

[2012/05/11 17:55:50 | 000,395,954 | ---- | M] () -- C:\Documents and Settings\EU\Desktop\report2.PNG

[2012/05/11 17:54:12 | 001,348,127 | ---- | M] () -- C:\Documents and Settings\EU\Desktop\report.PNG

[2012/05/11 07:00:28 | 000,057,586 | ---- | M] () -- C:\Documents and Settings\EU\Desktop\lv 70.PNG

[2012/05/10 05:17:21 | 000,002,795 | ---- | M] () -- C:\Documents and Settings\EU\Meus documentos\Game.rtf

[2012/05/09 06:42:01 | 000,001,582 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk

[2012/05/06 18:18:18 | 000,043,520 | ---- | M] () -- C:\WINDOWS\System32\CmdLineExt03.dll

[2012/05/06 17:54:06 | 000,242,240 | ---- | M] (DT Soft Ltd) -- C:\WINDOWS\System32\drivers\dtsoftbus01.sys

[2012/05/06 17:52:22 | 000,001,685 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\DAEMON Tools Lite.lnk

[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[26 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

 

========== Files Created - No Company Name ==========

 

[2012/06/03 19:19:43 | 000,869,194 | ---- | C] () -- C:\Documents and Settings\EU\Desktop\SecurityCheck.exe

[2012/06/03 15:31:11 | 000,000,981 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Uninstaller.lnk

[2012/06/03 15:31:11 | 000,000,930 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Advanced SystemCare 5.lnk

[2012/06/03 13:06:58 | 004,322,552 | -H-- | C] () -- C:\Documents and Settings\EU\Configurações locais\Dados de aplicativos\IconCache.db

[2012/06/03 12:56:05 | 000,012,122 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\preço.rtf

[2012/05/31 20:49:33 | 000,001,713 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\The Elder Scrolls Construction Set.lnk

[2012/05/31 20:45:35 | 000,000,787 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Morrowind.lnk

[2012/05/29 22:58:09 | 000,000,527 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Picasa 3.lnk

[2012/05/28 14:56:23 | 000,629,886 | ---- | C] () -- C:\Documents and Settings\EU\Desktop\HN1N3.png

[2012/05/23 23:47:09 | 000,000,831 | ---- | C] () -- C:\Documents and Settings\EU\Desktop\BS.Player FREE.lnk

[2012/05/23 19:14:28 | 000,000,670 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\µTorrent.lnk

[2012/05/22 15:19:00 | 000,000,819 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\RealPlayer.lnk

[2012/05/21 12:15:00 | 000,000,685 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Ventrilo.lnk

[2012/05/21 12:14:02 | 000,000,270 | ---- | C] () -- C:\WINDOWS\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini

[2012/05/19 15:56:16 | 000,000,691 | ---- | C] () -- C:\Documents and Settings\EU\Desktop\Atalho para PO.lnk

[2012/05/19 08:40:42 | 002,359,350 | ---- | C] () -- C:\Documents and Settings\EU\Desktop\poke8.bmp

[2012/05/18 08:36:27 | 002,359,350 | ---- | C] () -- C:\Documents and Settings\EU\Desktop\ban3.bmp

[2012/05/18 06:34:34 | 002,359,350 | ---- | C] () -- C:\Documents and Settings\EU\Desktop\poke7.bmp

[2012/05/17 17:21:46 | 002,359,350 | ---- | C] () -- C:\Documents and Settings\EU\Desktop\ban2.bmp

[2012/05/17 08:51:43 | 002,359,350 | ---- | C] () -- C:\Documents and Settings\EU\Desktop\poke6.bmp

[2012/05/16 16:33:06 | 000,000,162 | -H-- | C] () -- C:\Documents and Settings\EU\Desktop\~$keprices.rtf

[2012/05/16 05:43:15 | 002,359,350 | ---- | C] () -- C:\Documents and Settings\EU\Desktop\poke5.bmp

[2012/05/15 08:39:14 | 000,659,403 | ---- | C] () -- C:\Documents and Settings\EU\Desktop\denuncia1.PNG

[2012/05/15 08:38:36 | 001,142,884 | ---- | C] () -- C:\Documents and Settings\EU\Desktop\denuncia.PNG

[2012/05/15 05:16:35 | 002,359,350 | ---- | C] () -- C:\Documents and Settings\EU\Desktop\poke4.bmp

[2012/05/14 13:47:03 | 002,359,350 | ---- | C] () -- C:\Documents and Settings\EU\Desktop\poke3.bmp

[2012/05/13 02:32:52 | 002,359,350 | ---- | C] () -- C:\Documents and Settings\EU\Desktop\poke2.bmp

[2012/05/12 11:33:46 | 002,359,350 | ---- | C] () -- C:\Documents and Settings\EU\Desktop\poke.bmp

[2012/05/11 18:15:19 | 000,009,981 | ---- | C] () -- C:\Documents and Settings\EU\Desktop\pokeprices.rtf

[2012/05/11 17:55:41 | 000,395,954 | ---- | C] () -- C:\Documents and Settings\EU\Desktop\report2.PNG

[2012/05/11 17:54:10 | 001,348,127 | ---- | C] () -- C:\Documents and Settings\EU\Desktop\report.PNG

[2012/05/11 07:00:28 | 000,057,586 | ---- | C] () -- C:\Documents and Settings\EU\Desktop\lv 70.PNG

[2012/05/10 05:17:20 | 000,002,795 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\Game.rtf

[2012/05/09 06:42:01 | 000,001,582 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk

[2012/05/06 18:18:18 | 000,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll

[2012/05/06 17:52:22 | 000,001,685 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\DAEMON Tools Lite.lnk

[2012/05/06 17:03:48 | 000,000,780 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk

[2012/05/04 01:51:16 | 061,733,713 | ---- | C] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm

[2012/05/03 00:57:47 | 002,359,350 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\ban.bmp

[2012/04/29 01:45:52 | 001,164,816 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\PO2.PNG

[2012/04/28 22:11:46 | 000,053,398 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\PO.PNG

[2012/04/25 21:23:51 | 000,001,685 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\DAEMON Tools Lite.lnk

[2012/04/25 01:14:48 | 000,000,135 | ---- | C] () -- C:\Documents and Settings\EU\Configurações locais\Dados de aplicativos\fusioncache.dat

[2012/04/24 00:02:54 | 000,000,237 | ---- | C] () -- C:\user.js

[2012/04/23 01:10:08 | 000,045,517 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\rádio ts.m3u

[2012/04/22 21:20:04 | 012,829,174 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\DangerSilentCrystallizeRemix.mp3

[2012/04/18 23:19:26 | 000,000,270 | ---- | C] () -- C:\WINDOWS\tasks\DriverScanner.job

[2012/04/17 20:50:25 | 000,000,822 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\baã.bmp

[2012/04/17 19:52:01 | 000,015,756 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\ts.JPG

[2012/04/17 18:42:51 | 005,160,975 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\7fa2d2e7cd39e22bd9236b6e2f346695.mp3

[2012/04/15 12:58:18 | 000,143,150 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\ts4.PNG

[2012/04/15 12:57:09 | 000,149,655 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\ts3.PNG

[2012/04/15 12:56:07 | 000,174,692 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\ts2.PNG

[2012/04/15 12:48:04 | 002,359,350 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\ts1.bmp

[2012/04/08 03:54:16 | 000,000,760 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\AVG 2012.lnk

[2012/04/05 06:37:55 | 000,002,351 | ---- | C] () -- C:\Documents and Settings\EU\Desktop\Google Chrome.lnk

[2012/04/02 03:33:40 | 000,000,131 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\Forsaken World.url

[2012/03/31 01:16:25 | 000,000,902 | ---- | C] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job

[2012/03/31 01:07:52 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\ts3_clientui-win32-1329301801-2012-03-31 01_07_52.687500.dmp

[2012/03/31 01:05:48 | 000,001,156 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1482476501-1390067357-725345543-1003UA.job

[2012/03/31 01:05:48 | 000,001,104 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1482476501-1390067357-725345543-1003Core.job

[2012/03/27 01:33:14 | 000,000,290 | ---- | C] () -- C:\WINDOWS\tasks\SmartDefrag_Startup.job

[2012/03/27 01:32:32 | 000,014,776 | ---- | C] () -- C:\WINDOWS\System32\drivers\SmartDefragDriver.sys

[2012/03/27 01:32:28 | 000,000,882 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\IObit Malware Fighter.lnk

[2012/03/27 01:32:23 | 000,000,879 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\Smart Defrag 2.lnk

[2012/03/27 01:32:05 | 000,000,262 | ---- | C] () -- C:\WINDOWS\tasks\Game_Booster_Startup.job

[2012/03/27 01:31:23 | 000,000,891 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\Switch to Gaming Mode.lnk

[2012/03/27 01:31:23 | 000,000,879 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\Game Booster 3.lnk

[2012/03/27 01:24:58 | 006,792,767 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\8549338808a8a92da44b808fed860d24.mp3

[2012/03/27 00:10:20 | 000,001,065 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\guildmark3.PNG

[2012/03/27 00:08:57 | 000,001,153 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\guildmark2.PNG

[2012/03/27 00:06:31 | 000,001,043 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\guildmark1.PNG

[2012/03/26 04:50:05 | 000,000,610 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\tasee.PNG

[2012/03/26 04:05:37 | 000,000,780 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\SAA.PNG

[2012/03/26 04:05:11 | 000,000,708 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\pk.PNG

[2012/03/26 04:02:34 | 000,000,615 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\star2.PNG

[2012/03/26 04:02:07 | 000,000,472 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\star1.PNG

[2012/03/26 04:00:04 | 000,000,606 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\star.PNG

[2012/03/26 03:56:24 | 000,000,715 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\concil.PNG

[2012/03/26 03:49:04 | 000,000,742 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\SA.PNG

[2012/03/25 23:31:56 | 000,023,749 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\gandalf.PNG

[2012/03/23 22:17:16 | 000,160,211 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\thi.PNG

[2012/03/21 23:18:11 | 000,167,233 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\xinxila.PNG

[2012/03/21 23:11:48 | 000,114,988 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\imagem.PNG

[2012/03/20 21:33:05 | 000,013,403 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\skill.JPG

[2012/03/20 18:45:00 | 000,021,303 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\Aiaiai hein!.JPG

[2012/03/20 01:11:55 | 000,000,517 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\líder.PNG

[2012/03/19 13:11:27 | 000,000,706 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\fusion.PNG

[2012/03/18 23:32:54 | 000,000,608 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\elsi.PNG

[2012/03/16 15:08:08 | 000,000,871 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\TeamViewer 7.lnk

[2012/03/16 13:31:57 | 000,000,893 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\TeamSpeak 3 Client.lnk

[2012/03/14 18:36:59 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\ts3_clientui-win32-14642-2012-03-14 18_36_59.185016.dmp

[2012/03/14 17:47:06 | 000,008,612 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\Cópia de 1.jpg

[2012/03/14 17:45:02 | 000,003,317 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\6.jpg

[2012/03/14 17:44:04 | 000,008,075 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\5.jpg

[2012/03/14 17:43:51 | 000,009,399 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\4.jpg

[2012/03/14 17:43:36 | 000,007,804 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\3.jpg

[2012/03/14 17:43:13 | 000,003,104 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\2.jpg

[2012/03/14 17:42:59 | 000,007,521 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\1.jpg

[2012/03/14 16:43:42 | 000,155,540 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\tststs.PNG

[2012/03/14 09:18:39 | 000,017,596 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\TS3.zip

[2012/03/12 21:21:03 | 000,000,758 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\fusion.JPG

[2012/03/10 20:59:06 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\ts3_clientui-win32-14642-2012-03-10 20_59_06.296875.dmp

[2012/03/10 20:50:23 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\ts3_clientui-win32-14642-2012-03-10 20_50_23.484375.dmp

[2012/03/06 13:17:22 | 000,064,512 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\ts3_clientui-win32-14642-2012-03-06 13_17_22.750000.dmp

[2012/03/06 13:10:17 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\ts3_clientui-win32-14642-2012-03-06 13_10_17.062500.dmp

[2012/03/06 13:10:10 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\ts3_clientui-win32-14642-2012-03-06 13_10_10.421875.dmp

[2012/03/05 22:12:02 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\ts3_clientui-win32-14642-2012-03-05 22_12_02.387621.dmp

[2012/03/03 07:50:50 | 000,000,534 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\basilica.bmp

[2012/02/28 10:31:21 | 000,000,579 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\aika.PNG

[2012/02/28 10:24:10 | 000,000,791 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\tp.PNG

[2012/02/28 10:23:45 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\at.PNG

[2012/02/28 10:23:05 | 000,000,799 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\Dual.PNG

[2012/02/28 10:21:18 | 000,000,794 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\glad.PNG

[2012/02/28 10:20:54 | 000,000,769 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\fc.PNG

[2012/02/28 10:14:34 | 000,000,814 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\cleriga.PNG

[2012/02/27 09:36:29 | 000,037,976 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\aaaaaaaax1.JPG

[2012/02/27 09:35:11 | 000,018,847 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\ts3.JPG

[2012/02/27 09:23:09 | 000,025,965 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\aaaaaaaaaa.JPG

[2012/02/27 08:45:13 | 000,000,774 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\PhotoFiltre.lnk

[2012/02/17 18:07:51 | 772,515,920 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\grandfantasia_pt_install_20110711.exe

[2012/02/15 19:59:19 | 000,009,315 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\aaaaaa.PNG

[2012/02/15 04:16:33 | 000,195,172 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\aaaaaaaaaaaaaaa.PNG

[2012/02/14 22:27:19 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\ts3_clientui-win32-14642-2012-02-14 22_27_18.930360.dmp

[2012/02/11 22:29:47 | 000,000,244 | ---- | C] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job

[2012/02/10 19:36:19 | 000,001,668 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\VDownloader.lnk

[2012/02/02 20:17:55 | 000,005,300 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\f1.JPG

[2012/02/01 17:26:09 | 000,000,875 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\Internet Explorer.lnk

[2012/02/01 17:26:09 | 000,000,854 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\Mozilla Firefox.lnk

[2012/02/01 17:24:21 | 000,000,981 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\Uninstaller.lnk

[2012/02/01 17:24:20 | 000,000,930 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\Advanced SystemCare 5.lnk

[2012/02/01 16:13:06 | 000,001,720 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\PCSX2 0.9.7 (r3113).lnk

[2012/02/01 09:20:27 | 000,002,241 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\King of Kings 3.lnk

[2012/01/31 01:13:10 | 000,061,299 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\ts3_clientui-win32-14642-2012-01-31 02_13_10.859375.dmp

[2012/01/30 13:27:30 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\ts3_clientui-win32-14642-2012-01-30 14_27_30.777192.dmp

[2012/01/28 16:07:42 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\ts3_clientui-win32-14642-2012-01-28 17_07_42.125000.dmp

[2012/01/23 13:55:59 | 000,000,415 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\Launch CORE Client.lnk

[2012/01/19 09:44:42 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\ts3_clientui-win32-14642-2012-01-19 10_44_42.250000.dmp

[2012/01/16 08:51:18 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\ts3_clientui-win32-14642-2012-01-16 09_51_18.318862.dmp

[2012/01/15 05:23:07 | 000,000,925 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\WOI.PNG

[2012/01/15 04:46:40 | 000,000,925 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\Ellorats.PNG

[2012/01/09 17:42:24 | 000,000,325 | ---- | C] () -- C:\WINDOWS\WPE PRO - modified.INI

[2012/01/01 03:10:38 | 000,000,601 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\Battle of Immortals War Downloader.lnk

[2011/12/28 22:19:13 | 011,715,972 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\pkg.idx

[2011/12/28 22:19:13 | 000,000,996 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\pkg.sp

[2011/12/28 22:19:13 | 000,000,261 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\pkg.pkg

[2011/12/28 15:06:31 | 000,464,678 | ---- | C] () -- C:\Documents and Settings\All Users\Dados de aplicativos\Tibia_dat.bak

[2011/12/28 14:20:00 | 000,000,788 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\After Life OT.lnk

[2011/12/28 08:45:19 | 000,002,205 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\7.da_

[2011/12/28 08:45:19 | 000,002,199 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\6.da_

[2011/12/28 08:45:19 | 000,002,073 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\8.da_

[2011/12/28 08:45:19 | 000,002,049 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\5.da_

[2011/12/28 08:39:45 | 000,514,321 | ---- | C] () -- C:\WINDOWS\windate.exe

[2011/12/28 08:39:45 | 000,105,760 | ---- | C] () -- C:\WINDOWS\os4.exe

[2011/12/28 08:39:43 | 000,059,904 | ---- | C] () -- C:\WINDOWS\zlib1.dll

[2011/12/28 08:39:43 | 000,002,205 | ---- | C] () -- C:\WINDOWS\Bosanski.lang

[2011/12/28 08:39:43 | 000,002,199 | ---- | C] () -- C:\WINDOWS\Svenska.lang

[2011/12/28 08:39:43 | 000,002,073 | ---- | C] () -- C:\WINDOWS\Dutch.lang

[2011/12/28 08:39:43 | 000,002,056 | ---- | C] () -- C:\WINDOWS\English.lang

[2011/12/28 08:39:43 | 000,000,329 | ---- | C] () -- C:\WINDOWS\Last.dat

[2011/12/28 08:39:43 | 000,000,042 | ---- | C] () -- C:\WINDOWS\Ic.Inf

[2011/12/28 08:39:43 | 000,000,031 | ---- | C] () -- C:\WINDOWS\memlist.dat

[2011/12/28 08:39:43 | 000,000,009 | ---- | C] () -- C:\WINDOWS\Language.dat

[2011/12/28 08:39:43 | 000,000,004 | ---- | C] () -- C:\WINDOWS\test.dat

[2011/12/28 08:39:43 | 000,000,004 | ---- | C] () -- C:\WINDOWS\Open.inf

[2011/12/28 08:15:40 | 000,000,090 | ---- | C] () -- C:\WINDOWS\My Settings.ini

[2011/12/27 19:36:47 | 000,215,900 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\Image.jpg

[2011/12/27 11:57:12 | 093,607,804 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\imelwoas.flv

[2011/12/27 11:53:56 | 000,000,999 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\Redtube Video Downloader.lnk

[2011/12/26 17:39:22 | 000,000,546 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Speedy.lnk

[2011/12/22 12:06:22 | 000,001,917 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Need for Speed Underground 2.lnk

[2011/12/16 00:42:01 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\EU\Configurações locais\Dados de aplicativos\{16EA3BF2-BD55-4B8C-8F6F-952812A2F024}

[2011/12/15 06:24:21 | 000,000,000 | ---- | C] () -- C:\WINDOWS\iPlayer.INI

[2011/12/15 05:06:35 | 000,000,763 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\InterActual Player.lnk

[2011/12/06 14:12:20 | 000,000,162 | -H-- | C] () -- C:\Documents and Settings\EU\Meus documentos\~$iamond.rtf

[2011/12/03 15:02:58 | 000,000,674 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\Atalho para winamp.lnk

[2011/12/01 21:11:06 | 000,001,486 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\trama.rtf

[2011/12/01 00:27:29 | 000,025,274 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\femalebands2.m3u

[2011/11/30 18:46:39 | 000,022,363 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\femalebands.m3u

[2011/10/31 12:26:42 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\ts3_clientui-win32-14642-2011-10-31 13_26_42.056000.dmp

[2011/10/25 20:29:56 | 000,109,216 | ---- | C] () -- C:\WINDOWS\System32\EasyHook64.dll

[2011/10/25 20:29:55 | 000,084,480 | ---- | C] () -- C:\WINDOWS\System32\EasyHook32.dll

[2011/10/16 07:53:12 | 000,662,551 | ---- | C] () -- C:\WINDOWS\System32\drivers\AVG\iavifw.avm

[2011/10/16 07:03:53 | 000,091,700 | ---- | C] () -- C:\WINDOWS\System32\drivers\klin.dat

[2011/10/16 07:03:51 | 000,085,860 | ---- | C] () -- C:\WINDOWS\System32\drivers\klick.dat

[2011/10/16 07:01:56 | 024,977,440 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox.dat

[2011/10/16 07:01:56 | 001,130,016 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox2.dat

[2011/10/16 07:01:56 | 000,280,268 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox.idx

[2011/10/16 07:01:56 | 000,085,820 | -HS- | C] () -- C:\WINDOWS\System32\drivers\fidbox2.idx

[2011/10/11 15:36:47 | 000,047,912 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat

[2011/10/08 00:05:54 | 000,000,045 | ---- | C] () -- C:\WINDOWS\System32\initdebug.nfo

[2011/10/04 21:23:42 | 000,049,967 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\diamond.rtf

[2011/09/28 23:33:31 | 000,000,288 | ---- | C] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-1482476501-1390067357-725345543-1003.job

[2011/09/28 23:33:28 | 000,000,296 | ---- | C] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-1482476501-1390067357-725345543-1003.job

[2011/09/24 04:44:45 | 000,000,374 | ---- | C] () -- C:\WINDOWS\tasks\Windows Codec Update Service.job

[2011/08/31 16:27:39 | 000,005,174 | ---- | C] () -- C:\WINDOWS\System32\nppt9x.vxd

[2011/08/29 08:03:19 | 000,001,896 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\Skype.lnk

[2011/08/21 21:22:39 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini

[2011/08/21 21:22:38 | 000,650,752 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll

[2011/08/21 21:22:38 | 000,243,200 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll

[2011/08/21 21:22:37 | 000,074,752 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll

[2011/08/21 21:22:37 | 000,000,714 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest

[2011/08/02 10:40:00 | 000,000,776 | ---- | C] () -- C:\WINDOWS\System32\drivers\etc\hosts.msn

[2011/07/29 23:47:49 | 000,000,534 | ---- | C] () -- C:\WINDOWS\eReg.dat

[2011/07/22 14:16:33 | 000,175,616 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll

[2011/07/13 11:58:00 | 000,000,321 | ---- | C] () -- C:\WINDOWS\System32\Remover.ini

[2011/07/13 11:57:53 | 000,000,566 | ---- | C] () -- C:\WINDOWS\System32\SP7302.ini

[2011/07/12 15:02:16 | 000,000,300 | ---- | C] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job

[2011/06/26 22:16:15 | 000,031,697 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\all.m3u

[2011/06/25 23:54:33 | 000,008,871 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\despa.m3u

[2011/06/23 21:04:50 | 000,000,276 | ---- | C] () -- C:\WINDOWS\System\cmicnfg.ini

[2011/06/23 17:44:12 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat

[2011/06/23 12:38:23 | 000,000,022 | ---- | C] () -- C:\WINDOWS\System32\ati64hl2.stb

[2011/06/23 12:36:58 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin

[2011/06/23 12:16:58 | 000,064,200 | ---- | C] () -- C:\Documents and Settings\EU\Configurações locais\Dados de aplicativos\GDIPFONTCACHEV1.DAT

[2011/06/23 11:48:42 | 000,101,376 | ---- | C] () -- C:\Documents and Settings\EU\Configurações locais\Dados de aplicativos\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2011/06/23 11:25:55 | 000,593,920 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe

[2011/06/23 11:24:59 | 000,001,247 | ---- | C] () -- C:\WINDOWS\ATICIM.INI

[2011/06/23 11:15:12 | 000,032,768 | ---- | C] () -- C:\WINDOWS\SIS_LIB.DLL

[2011/06/23 11:12:04 | 000,233,472 | R--- | C] () -- C:\WINDOWS\System32\cmirmdrv.exe

[2011/06/23 11:12:04 | 000,028,672 | R--- | C] () -- C:\WINDOWS\System32\cmirmdrv.dll

[2011/06/23 11:09:53 | 000,000,099 | ---- | C] () -- C:\WINDOWS\System32\VGAunistlog.ini

[2011/06/23 09:44:30 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI

[2011/06/23 09:37:07 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\tasks\SA.DAT

[2011/06/23 09:35:52 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD

[2011/06/23 09:35:03 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat

[2011/06/23 09:34:58 | 000,028,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xjis.nls

[2011/06/23 09:34:16 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prcp.nls

[2011/06/23 09:34:15 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prc.nls

[2011/06/23 09:34:13 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll

[2011/06/23 09:33:49 | 000,047,066 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ksc.nls

[2011/06/23 09:33:48 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex

[2011/06/23 09:33:30 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe

[2011/06/23 09:33:29 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe

[2011/06/23 09:33:26 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex

[2011/06/23 09:33:15 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll

[2011/06/23 09:33:09 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex

[2011/06/23 09:33:04 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll

[2011/06/23 09:32:51 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll

[2011/06/23 09:32:47 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_864.nls

[2011/06/23 09:32:47 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_862.nls

[2011/06/23 09:32:47 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_870.nls

[2011/06/23 09:32:46 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_858.nls

[2011/06/23 09:32:46 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_720.nls

[2011/06/23 09:32:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_708.nls

[2011/06/23 09:32:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28596.nls

[2011/06/23 09:32:45 | 000,180,770 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20932.nls

[2011/06/23 09:32:45 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20949.nls

[2011/06/23 09:32:45 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20936.nls

[2011/06/23 09:32:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21027.nls

[2011/06/23 09:32:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21025.nls

[2011/06/23 09:32:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20924.nls

[2011/06/23 09:32:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20880.nls

[2011/06/23 09:32:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20871.nls

[2011/06/23 09:32:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20838.nls

[2011/06/23 09:32:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20833.nls

[2011/06/23 09:32:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20424.nls

[2011/06/23 09:32:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20423.nls

[2011/06/23 09:32:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20420.nls

[2011/06/23 09:32:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20297.nls

[2011/06/23 09:32:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20290.nls

[2011/06/23 09:32:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20285.nls

[2011/06/23 09:32:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20284.nls

[2011/06/23 09:32:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20280.nls

[2011/06/23 09:32:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20278.nls

[2011/06/23 09:32:43 | 000,187,938 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20005.nls

[2011/06/23 09:32:43 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20277.nls

[2011/06/23 09:32:43 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20273.nls

[2011/06/23 09:32:43 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20269.nls

[2011/06/23 09:32:43 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20108.nls

[2011/06/23 09:32:43 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20107.nls

[2011/06/23 09:32:43 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20106.nls

[2011/06/23 09:32:43 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20105.nls

[2011/06/23 09:32:42 | 000,189,986 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1361.nls

[2011/06/23 09:32:42 | 000,186,402 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20001.nls

[2011/06/23 09:32:42 | 000,185,378 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20003.nls

[2011/06/23 09:32:42 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20004.nls

[2011/06/23 09:32:42 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20000.nls

[2011/06/23 09:32:42 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20002.nls

[2011/06/23 09:32:42 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1149.nls

[2011/06/23 09:32:41 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1148.nls

[2011/06/23 09:32:41 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1147.nls

[2011/06/23 09:32:41 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1146.nls

[2011/06/23 09:32:41 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1145.nls

[2011/06/23 09:32:41 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1144.nls

[2011/06/23 09:32:41 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1143.nls

[2011/06/23 09:32:41 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1142.nls

[2011/06/23 09:32:41 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1141.nls

[2011/06/23 09:32:41 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1140.nls

[2011/06/23 09:32:41 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1047.nls

[2011/06/23 09:32:40 | 000,195,618 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10002.nls

[2011/06/23 09:32:40 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10003.nls

[2011/06/23 09:32:40 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10008.nls

[2011/06/23 09:32:40 | 000,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10001.nls

[2011/06/23 09:32:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10021.nls

[2011/06/23 09:32:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10005.nls

[2011/06/23 09:32:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10004.nls

[2011/06/23 09:32:39 | 000,082,172 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bopomofo.nls

[2011/06/23 09:32:38 | 000,066,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\big5.nls

[2011/06/23 09:31:58 | 000,002,969 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT

[2011/06/23 09:31:58 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS

[2011/06/23 09:31:58 | 000,000,000 | RHS- | C] () -- C:\IO.SYS

[2011/06/23 09:31:58 | 000,000,000 | ---- | C] () -- C:\WINDOWS\control.ini

[2011/06/23 09:31:58 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS

[2011/06/23 09:31:58 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT

[2011/06/23 09:31:48 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb

[2011/06/23 09:31:48 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb

[2011/06/23 09:31:47 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx

[2011/06/23 09:30:50 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\WindowsLogon.manifest

[2011/06/23 09:30:50 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest

[2011/06/23 09:30:44 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest

[2011/06/23 09:30:44 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest

[2011/06/23 09:30:44 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest

[2011/06/23 09:30:44 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest

[2011/06/23 09:30:44 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest

[2011/06/23 09:30:44 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest

[2011/06/23 09:30:29 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex

[2011/06/23 09:29:50 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp

[2011/06/23 09:29:50 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp

[2011/06/23 09:29:43 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf

[2011/06/23 09:29:23 | 000,004,639 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.exe

[2011/06/23 09:29:08 | 000,380,928 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll

[2011/06/23 09:28:18 | 000,021,844 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat

[2011/06/23 09:28:10 | 000,000,037 | ---- | C] () -- C:\WINDOWS\vbaddin.ini

[2011/06/23 09:28:10 | 000,000,036 | ---- | C] () -- C:\WINDOWS\vb.ini

[2011/06/23 09:27:29 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Deserto.bmp

[2011/06/23 09:27:29 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Tapete.bmp

[2011/06/23 09:27:28 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Bruma.bmp

[2011/06/23 09:27:28 | 000,026,680 | ---- | C] () -- C:\WINDOWS\Leques.bmp

[2011/06/23 09:27:28 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Areia.bmp

[2011/06/23 09:27:28 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rododentro.bmp

[2011/06/23 09:27:28 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Pescaria.bmp

[2011/06/23 09:27:28 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Cafezinho.bmp

[2011/06/23 09:27:28 | 000,016,730 | ---- | C] () -- C:\WINDOWS\Seda.bmp

[2011/06/23 09:27:27 | 000,093,702 | ---- | C] () -- C:\WINDOWS\System32\subrange.uce

[2011/06/23 09:27:27 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Bolhas de sabão.bmp

[2011/06/23 09:27:27 | 000,016,740 | ---- | C] () -- C:\WINDOWS\System32\shiftjis.uce

[2011/06/23 09:27:27 | 000,012,876 | ---- | C] () -- C:\WINDOWS\System32\korean.uce

[2011/06/23 09:27:27 | 000,008,484 | ---- | C] () -- C:\WINDOWS\System32\kanji_2.uce

[2011/06/23 09:27:27 | 000,006,948 | ---- | C] () -- C:\WINDOWS\System32\kanji_1.uce

[2011/06/23 09:27:27 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Renda azul 16.bmp

[2011/06/23 09:27:26 | 000,060,458 | ---- | C] () -- C:\WINDOWS\System32\ideograf.uce

[2011/06/23 09:27:26 | 000,024,006 | ---- | C] () -- C:\WINDOWS\System32\gb2312.uce

[2011/06/23 09:27:26 | 000,022,984 | ---- | C] () -- C:\WINDOWS\System32\bopomofo.uce

[2011/06/23 09:27:23 | 000,026,931 | ---- | C] () -- C:\WINDOWS\System32\tslabels.ini

[2011/06/23 09:27:23 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h

[2011/06/23 09:27:23 | 000,001,221 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd

[2011/06/23 09:27:22 | 000,003,828 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.ini

[2011/06/23 09:27:22 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h

[2011/06/23 09:27:13 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc

[2011/06/23 06:21:00 | 001,179,474 | ---- | C] () -- C:\WINDOWS\System32\PerfStringBackup.INI

[2011/06/23 06:21:00 | 000,004,205 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI

[2011/06/23 06:20:57 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd

[2011/06/23 06:20:57 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa

[2011/06/23 06:20:57 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf

[2011/06/23 06:20:56 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa

[2011/06/23 06:20:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28603.nls

[2011/06/23 06:20:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28603.nls

[2011/06/23 06:20:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28599.nls

[2011/06/23 06:20:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28599.nls

[2011/06/23 06:20:51 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_857.nls

[2011/06/23 06:20:51 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_857.nls

[2011/06/23 06:20:51 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10081.nls

[2011/06/23 06:20:51 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10081.nls

[2011/06/23 06:20:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28595.nls

[2011/06/23 06:20:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28595.NLS

[2011/06/23 06:20:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10017.nls

[2011/06/23 06:20:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10017.nls

[2011/06/23 06:20:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10007.nls

[2011/06/23 06:20:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10007.nls

[2011/06/23 06:20:46 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_869.nls

[2011/06/23 06:20:46 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_869.nls

[2011/06/23 06:20:46 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_737.nls

[2011/06/23 06:20:46 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_737.nls

[2011/06/23 06:20:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_875.nls

[2011/06/23 06:20:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_875.nls

[2011/06/23 06:20:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28597.nls

[2011/06/23 06:20:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28597.NLS

[2011/06/23 06:20:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10006.nls

[2011/06/23 06:20:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10006.nls

[2011/06/23 06:20:43 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_866.nls

[2011/06/23 06:20:43 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_866.nls

[2011/06/23 06:20:43 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_855.nls

[2011/06/23 06:20:43 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_855.nls

[2011/06/23 06:20:43 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28594.nls

[2011/06/23 06:20:43 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28594.NLS

[2011/06/23 06:20:39 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_852.nls

[2011/06/23 06:20:39 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_852.nls

[2011/06/23 06:20:39 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10082.nls

[2011/06/23 06:20:39 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10082.nls

[2011/06/23 06:20:39 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10029.nls

[2011/06/23 06:20:39 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10029.nls

[2011/06/23 06:20:39 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10010.nls

[2011/06/23 06:20:39 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10010.nls

[2011/06/23 06:20:37 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20127.nls

[2011/06/23 06:20:37 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_20127.nls

[2011/06/23 06:20:33 | 000,000,515 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT

[2011/06/23 06:20:23 | 000,141,702 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat

[2011/06/23 06:20:23 | 000,031,965 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat

[2011/06/23 06:20:22 | 001,086,058 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NTPRINT.CAT

[2011/06/23 06:20:22 | 001,014,492 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT

[2011/06/23 06:20:22 | 000,809,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT

[2011/06/23 06:20:22 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT

[2011/06/23 06:20:22 | 000,102,826 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat

[2011/06/23 06:20:22 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT

[2011/06/23 06:20:22 | 000,030,983 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT

[2011/06/23 06:20:22 | 000,014,043 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT

[2011/06/23 06:20:22 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT

[2011/06/23 06:20:22 | 000,009,581 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT

[2011/06/23 06:20:22 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT

[2011/06/23 06:20:22 | 000,007,407 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT

[2011/06/23 06:20:22 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat

[2011/06/23 06:20:22 | 000,007,245 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT

[2011/06/23 06:20:21 | 001,896,102 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT

[2011/06/23 06:20:21 | 000,620,790 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT

[2011/06/23 06:19:37 | 000,247,104 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT

[2011/06/23 06:18:52 | 000,000,211 | -HS- | C] () -- C:\boot.ini

[2011/06/23 06:18:49 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf

[2010/06/07 08:20:25 | 000,152,496 | ---- | C] () -- C:\WINDOWS\System32\ativvaxx.cap

[2010/06/07 08:20:24 | 000,887,724 | ---- | C] () -- C:\WINDOWS\System32\ativva6x.dat

[2010/06/07 08:20:21 | 003,107,788 | ---- | C] () -- C:\WINDOWS\System32\ativva5x.dat

[2010/06/07 08:20:15 | 000,015,577 | ---- | C] () -- C:\WINDOWS\atiogl.xml

[2010/06/07 08:20:13 | 000,189,051 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat

[2010/06/07 08:20:13 | 000,007,167 | ---- | C] () -- C:\WINDOWS\System32\atifglpf.xml

[2010/01/26 23:09:02 | 000,053,299 | ---- | C] () -- C:\WINDOWS\System32\pthreadVC.dll

[2009/07/13 19:59:22 | 000,113,461 | ---- | C] () -- C:\WINDOWS\System32\drivers\AVG\iavichjw.avm

[2009/05/14 06:15:22 | 000,037,790 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\q.rtf

[2009/05/14 06:15:22 | 000,014,447 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\q1.rtf

[2009/05/14 06:15:18 | 000,021,468 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\OgAAAGGY4eKzWKiBjFLr09ulOldYmlXQeMjVkV-4o5YncDBJqA7mcS_EcJv0yUDMQwpLcxxROXYFkl3VExEb1nDIrUwAm1T1UD_zx8UcepWi9c3UAuwMjtrO4JsH.jpg

[2009/02/12 22:20:42 | 000,006,681 | ---- | C] () -- C:\WINDOWS\System32\IE8Eula.rtf

[2009/01/07 18:20:36 | 000,066,384 | ---- | C] () -- C:\WINDOWS\System32\normnfkc.nls

[2009/01/07 18:20:36 | 000,060,294 | ---- | C] () -- C:\WINDOWS\System32\normnfkd.nls

[2009/01/07 18:20:36 | 000,059,342 | ---- | C] () -- C:\WINDOWS\System32\normidna.nls

[2009/01/07 18:20:36 | 000,045,794 | ---- | C] () -- C:\WINDOWS\System32\normnfc.nls

[2009/01/07 18:20:36 | 000,039,284 | ---- | C] () -- C:\WINDOWS\System32\normnfd.nls

[2009/01/07 18:20:20 | 000,008,798 | ---- | C] () -- C:\WINDOWS\System32\icrav03.rat

[2009/01/07 18:20:20 | 000,001,988 | ---- | C] () -- C:\WINDOWS\System32\ticrf.rat

[2008/02/08 17:35:42 | 000,023,604 | ---- | C] () -- C:\WINDOWS\System32\drivers\klopp.dat

[2007/07/06 22:03:05 | 000,353,872 | ---- | C] () -- C:\Documents and Settings\EU\Meus documentos\24465.jpg

[2004/08/04 00:57:52 | 000,001,788 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin

[2004/08/04 00:47:42 | 000,083,312 | ---- | C] () -- C:\WINDOWS\System32\dllcache\apps.chm

[2004/08/04 00:47:26 | 001,196,000 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sysmain.sdb

[2004/08/04 00:47:26 | 000,759,966 | ---- | C] () -- C:\WINDOWS\System32\dllcache\apph_sp.sdb

[2004/08/04 00:47:26 | 000,198,736 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msimain.sdb

[2004/08/04 00:47:26 | 000,009,424 | ---- | C] () -- C:\WINDOWS\System32\dllcache\drvmain.sdb

[2004/08/04 00:47:20 | 000,228,694 | ---- | C] () -- C:\WINDOWS\System32\dllcache\apphelp.sdb

[2004/08/04 00:45:48 | 000,239,616 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wstrendr.ax

[2004/08/04 00:45:48 | 000,239,616 | ---- | C] () -- C:\WINDOWS\System32\wstrenderer.ax

[2004/08/04 00:45:48 | 000,164,352 | ---- | C] () -- C:\WINDOWS\System32\wstpager.ax

[2004/08/04 00:45:48 | 000,164,352 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wstpager.ax

[2004/08/04 00:45:46 | 000,148,992 | ---- | C] () -- C:\WINDOWS\System32\mpg2splt.ax

[2004/08/04 00:45:46 | 000,148,992 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mpg2splt.ax

[2004/08/04 00:45:46 | 000,118,272 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mpg2data.ax

[2004/08/04 00:45:46 | 000,118,272 | ---- | C] () -- C:\WINDOWS\System32\mpeg2data.ax

[2004/08/04 00:45:46 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\vbicodec.ax

[2004/08/04 00:45:46 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\dllcache\vbicodec.ax

[2004/08/04 00:45:28 | 000,279,040 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tshoot.dll

[2004/08/04 00:45:28 | 000,034,816 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sniffpol.dll

[2004/08/04 00:45:28 | 000,033,280 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sstub.dll

[2004/08/04 00:45:26 | 000,270,848 | ---- | C] () -- C:\WINDOWS\System32\sbe.dll

[2004/08/04 00:45:26 | 000,270,848 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sbe.dll

[2004/08/04 00:45:24 | 000,014,336 | ---- | C] () -- C:\WINDOWS\System32\msdmo.dll

[2004/08/04 00:45:24 | 000,014,336 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msdmo.dll

[2004/08/04 00:45:22 | 000,253,440 | ---- | C] () -- C:\WINDOWS\System32\dllcache\compatui.dll

[2004/08/04 00:45:22 | 000,253,440 | ---- | C] () -- C:\WINDOWS\System32\compatUI.dll

[2004/08/04 00:45:22 | 000,186,368 | ---- | C] () -- C:\WINDOWS\System32\encdec.dll

[2004/08/04 00:45:22 | 000,186,368 | ---- | C] () -- C:\WINDOWS\System32\dllcache\encdec.dll

[2004/08/04 00:45:22 | 000,070,656 | ---- | C] () -- C:\WINDOWS\System32\dllcache\amstream.dll

[2004/08/04 00:45:22 | 000,070,656 | ---- | C] () -- C:\WINDOWS\System32\amstream.dll

[2004/08/04 00:44:46 | 000,733,696 | ---- | C] () -- C:\WINDOWS\System32\qedwipes.dll

[2004/08/04 00:44:46 | 000,733,696 | ---- | C] () -- C:\WINDOWS\System32\dllcache\qedwipes.dll

[2004/08/04 00:41:20 | 000,057,667 | ---- | C] () -- C:\WINDOWS\System32\ieuinit.inf

[2004/08/03 22:59:34 | 000,251,168 | RHS- | C] () -- C:\ntldr

[2004/08/03 22:51:26 | 000,054,048 | ---- | C] () -- C:\WINDOWS\System32\dosx.exe

[2004/08/03 22:51:26 | 000,054,048 | ---- | C] () -- C:\WINDOWS\System32\dllcache\dosx.exe

[2004/08/03 22:48:46 | 000,003,346 | ---- | C] () -- C:\WINDOWS\System32\redir.exe

[2004/08/03 22:48:46 | 000,003,346 | ---- | C] () -- C:\WINDOWS\System32\dllcache\redir.exe

[2004/08/03 22:46:56 | 000,042,537 | ---- | C] () -- C:\WINDOWS\System32\keyboard.sys

[2004/08/03 22:46:56 | 000,042,537 | ---- | C] () -- C:\WINDOWS\System32\dllcache\keyboard.sys

[2004/08/03 22:45:20 | 000,033,984 | ---- | C] () -- C:\WINDOWS\System32\ntio.sys

[2004/08/03 22:45:20 | 000,033,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ntio.sys

[2004/08/03 22:45:16 | 000,035,424 | ---- | C] () -- C:\WINDOWS\System32\ntio412.sys

[2004/08/03 22:45:16 | 000,035,424 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ntio412.sys

[2004/08/03 22:45:16 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio404.sys

[2004/08/03 22:45:16 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ntio404.sys

[2004/08/03 22:45:14 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio804.sys

[2004/08/03 22:45:14 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ntio804.sys

[2004/08/03 22:45:12 | 000,035,648 | ---- | C] () -- C:\WINDOWS\System32\ntio411.sys

[2004/08/03 22:45:12 | 000,035,648 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ntio411.sys

[2004/08/03 22:38:34 | 000,047,564 | RHS- | C] () -- C:\NTDETECT.COM

[2004/08/03 22:22:26 | 000,000,929 | ---- | C] () -- C:\WINDOWS\System32\homepage.inf

[2004/08/03 22:21:44 | 000,004,310 | ---- | C] () -- C:\WINDOWS\System32\odbcconf.rsp

[2004/08/03 22:21:44 | 000,004,310 | ---- | C] () -- C:\WINDOWS\System32\dllcache\odbcconf.rsp

[2004/08/02 14:20:40 | 000,007,208 | ---- | C] () -- C:\WINDOWS\System32\secupd.sig

[2004/08/02 14:20:40 | 000,007,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\secupd.sig

[2004/08/02 14:20:40 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat

[2004/08/02 14:20:40 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\dllcache\secupd.dat

[2004/07/17 22:55:00 | 000,460,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\micross.ttf

[2004/07/17 22:55:00 | 000,383,140 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tahoma.ttf

[2004/07/17 22:55:00 | 000,355,436 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tahomabd.ttf

[2004/07/17 11:48:44 | 000,262,148 | ---- | C] () -- C:\WINDOWS\System32\sortkey.nls

[2004/07/17 11:48:44 | 000,262,148 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sortkey.nls

[2004/07/17 11:48:44 | 000,249,270 | ---- | C] () -- C:\WINDOWS\System32\locale.nls

[2004/07/17 11:48:44 | 000,249,270 | ---- | C] () -- C:\WINDOWS\System32\dllcache\locale.nls

[2004/07/17 11:48:44 | 000,022,040 | ---- | C] () -- C:\WINDOWS\System32\sorttbls.nls

[2004/07/17 11:48:44 | 000,022,040 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sorttbls.nls

[2004/07/17 11:46:14 | 000,053,478 | ---- | C] () -- C:\WINDOWS\System32\tcpmon.ini

[2004/07/17 11:42:40 | 000,000,862 | ---- | C] () -- C:\WINDOWS\System32\termcap

[2004/07/17 11:40:30 | 000,000,488 | ---- | C] () -- C:\WINDOWS\System32\login.cmd

[2004/07/17 11:38:22 | 000,956,990 | ---- | C] () -- C:\WINDOWS\System32\instcat.sql

[2004/07/17 11:36:38 | 000,011,376 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys

[2004/07/17 11:35:16 | 001,354,752 | ---- | C] () -- C:\WINDOWS\System32\webfldrs.msi

[2003/04/07 11:30:02 | 000,005,383 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI

[2003/01/07 23:05:06 | 000,000,551 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.H

[2001/10/28 12:07:50 | 000,000,707 | ---- | C] () -- C:\WINDOWS\_default.pif

[2001/10/28 12:07:48 | 000,034,666 | ---- | C] () -- C:\WINDOWS\wmprfPTB.prx

[2001/10/28 12:07:48 | 000,002,206 | ---- | C] () -- C:\WINDOWS\System32\wpa.dbl

[2001/10/28 12:07:44 | 000,033,865 | ---- | C] () -- C:\WINDOWS\System32\winhelp.hlp

[2001/10/28 12:07:38 | 000,013,312 | ---- | C] () -- C:\WINDOWS\System32\win87em.dll

[2001/10/28 12:07:38 | 000,013,312 | ---- | C] () -- C:\WINDOWS\System32\dllcache\win87em.dll

[2001/10/28 12:07:38 | 000,000,818 | ---- | C] () -- C:\WINDOWS\win.ini

[2001/10/28 12:07:36 | 001,309,184 | ---- | C] () -- C:\WINDOWS\System32\wbdbase.deu

[2001/10/28 12:07:36 | 001,095,680 | ---- | C] () -- C:\WINDOWS\System32\wbdbase.nld

[2001/10/28 12:07:36 | 000,957,440 | ---- | C] () -- C:\WINDOWS\System32\wbdbase.enu

[2001/10/28 12:07:36 | 000,937,984 | ---- | C] () -- C:\WINDOWS\System32\wbdbase.sve

[2001/10/28 12:07:36 | 000,867,840 | ---- | C] () -- C:\WINDOWS\System32\wbdbase.ita

[2001/10/28 12:07:36 | 000,786,944 | ---- | C] () -- C:\WINDOWS\System32\wbdbase.fra

[2001/10/28 12:07:36 | 000,750,080 | ---- | C] () -- C:\WINDOWS\System32\wbdbase.esn

[2001/10/28 12:07:36 | 000,065,489 | ---- | C] () -- C:\WINDOWS\System32\wbcache.sve

[2001/10/28 12:07:36 | 000,065,489 | ---- | C] () -- C:\WINDOWS\System32\wbcache.nld

[2001/10/28 12:07:36 | 000,065,489 | ---- | C] () -- C:\WINDOWS\System32\wbcache.ita

[2001/10/28 12:07:36 | 000,065,489 | ---- | C] () -- C:\WINDOWS\System32\wbcache.fra

[2001/10/28 12:07:36 | 000,065,489 | ---- | C] () -- C:\WINDOWS\System32\wbcache.esn

[2001/10/28 12:07:36 | 000,065,489 | ---- | C] () -- C:\WINDOWS\System32\wbcache.enu

[2001/10/28 12:07:36 | 000,065,489 | ---- | C] () -- C:\WINDOWS\System32\wbcache.deu

[2001/10/28 12:07:36 | 000,040,448 | ---- | C] () -- C:\WINDOWS\System32\wiasf.ax

[2001/10/28 12:07:36 | 000,040,448 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wiasf.ax

[2001/10/28 12:07:36 | 000,004,096 | ---- | C] () -- C:\WINDOWS\System32\wdl.trm

[2001/10/28 12:07:36 | 000,001,144 | ---- | C] () -- C:\WINDOWS\System32\vwipxspx.exe

[2001/10/28 12:07:36 | 000,001,144 | ---- | C] () -- C:\WINDOWS\System32\dllcache\vwipxspx.exe

[2001/10/28 12:07:34 | 000,089,588 | ---- | C] () -- C:\WINDOWS\System32\unicode.nls

[2001/10/28 12:07:34 | 000,089,588 | ---- | C] () -- C:\WINDOWS\System32\dllcache\unicode.nls

[2001/10/28 12:07:34 | 000,018,832 | ---- | C] () -- C:\WINDOWS\System32\v7vga.rom

[2001/10/28 12:07:32 | 000,015,360 | ---- | C] () -- C:\WINDOWS\System32\tsd32.dll

[2001/10/28 12:07:32 | 000,015,360 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tsd32.dll

[2001/10/28 12:07:30 | 000,003,577 | ---- | C] () -- C:\WINDOWS\System32\sysprtj.sep

[2001/10/28 12:07:30 | 000,003,214 | ---- | C] () -- C:\WINDOWS\System32\sysprint.sep

[2001/10/28 12:07:30 | 000,000,265 | ---- | C] () -- C:\WINDOWS\system.ini

[2001/10/28 12:07:28 | 000,049,345 | ---- | C] () -- C:\WINDOWS\System32\sqlsodbc.chm

[2001/10/28 12:07:26 | 000,240,120 | ---- | C] () -- C:\WINDOWS\System32\setup.bmp

[2001/10/28 12:07:26 | 000,059,167 | ---- | C] () -- C:\WINDOWS\System\setup.inf

[2001/10/28 12:07:26 | 000,035,716 | ---- | C] () -- C:\WINDOWS\System32\secpol.msc

[2001/10/28 12:07:26 | 000,033,074 | ---- | C] () -- C:\WINDOWS\System32\services.msc

[2001/10/28 12:07:26 | 000,011,995 | ---- | C] () -- C:\WINDOWS\System32\setver.exe

[2001/10/28 12:07:26 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\scriptpw.dll

[2001/10/28 12:07:26 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\dllcache\scriptpw.dll

[2001/10/28 12:07:26 | 000,006,953 | ---- | C] () -- C:\WINDOWS\System32\drivers\etc\services

[2001/10/28 12:07:26 | 000,000,882 | ---- | C] () -- C:\WINDOWS\System32\share.exe

[2001/10/28 12:07:26 | 000,000,882 | ---- | C] () -- C:\WINDOWS\System32\dllcache\share.exe

[2001/10/28 12:07:24 | 000,043,974 | R--- | C] () -- C:\WINDOWS\System32\rsop.msc

[2001/10/28 12:07:24 | 000,015,799 | ---- | C] () -- C:\WINDOWS\System32\rsvp.ini

[2001/10/28 12:07:24 | 000,003,282 | ---- | C] () -- C:\WINDOWS\System32\rsaci.rat

[2001/10/28 12:07:24 | 000,003,178 | ---- | C] () -- C:\WINDOWS\System32\rsvpcnts.h

[2001/10/28 12:07:22 | 000,013,712 | ---- | C] () -- C:\WINDOWS\System32\pschdprf.ini

[2001/10/28 12:07:22 | 000,006,107 | ---- | C] () -- C:\WINDOWS\System32\rasctrs.ini

[2001/10/28 12:07:22 | 000,003,788 | ---- | C] () -- C:\WINDOWS\System32\pubprn.vbs

[2001/10/28 12:07:22 | 000,003,788 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pubprn.vbs

[2001/10/28 12:07:22 | 000,003,010 | ---- | C] () -- C:\WINDOWS\System32\pschdcnt.h

[2001/10/28 12:07:22 | 000,001,818 | ---- | C] () -- C:\WINDOWS\System32\rasctrnm.h

[2001/10/28 12:07:22 | 000,000,051 | ---- | C] () -- C:\WINDOWS\System32\pscript.sep

[2001/10/28 12:07:18 | 000,510,540 | ---- | C] () -- C:\WINDOWS\System32\perfh016.dat

[2001/10/28 12:07:18 | 000,471,340 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat

[2001/10/28 12:07:18 | 000,301,776 | ---- | C] () -- C:\WINDOWS\System32\perfi016.dat

[2001/10/28 12:07:18 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat

[2001/10/28 12:07:18 | 000,098,542 | ---- | C] () -- C:\WINDOWS\System32\perfc016.dat

[2001/10/28 12:07:18 | 000,083,594 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat

[2001/10/28 12:07:18 | 000,057,837 | R--- | C] () -- C:\WINDOWS\System32\perfmon.msc

[2001/10/28 12:07:18 | 000,036,056 | ---- | C] () -- C:\WINDOWS\System32\prncnfg.vbs

[2001/10/28 12:07:18 | 000,036,056 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prncnfg.vbs

[2001/10/28 12:07:18 | 000,035,178 | ---- | C] () -- C:\WINDOWS\System32\perfd016.dat

[2001/10/28 12:07:18 | 000,032,801 | ---- | C] () -- C:\WINDOWS\System32\prnmngr.vbs

[2001/10/28 12:07:18 | 000,032,801 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prnmngr.vbs

[2001/10/28 12:07:18 | 000,029,728 | ---- | C] () -- C:\WINDOWS\System32\prnport.vbs

[2001/10/28 12:07:18 | 000,029,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prnport.vbs

[2001/10/28 12:07:18 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat

[2001/10/28 12:07:18 | 000,025,646 | ---- | C] () -- C:\WINDOWS\System32\prndrvr.vbs

[2001/10/28 12:07:18 | 000,025,646 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prndrvr.vbs

[2001/10/28 12:07:18 | 000,021,776 | ---- | C] () -- C:\WINDOWS\System32\prnjobs.vbs

[2001/10/28 12:07:18 | 000,021,776 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prnjobs.vbs

[2001/10/28 12:07:18 | 000,016,004 | ---- | C] () -- C:\WINDOWS\System32\prnqctl.vbs

[2001/10/28 12:07:18 | 000,016,004 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prnqctl.vbs

[2001/10/28 12:07:18 | 000,003,043 | ---- | C] () -- C:\WINDOWS\System32\perfci.ini

[2001/10/28 12:07:18 | 000,002,924 | ---- | C] () -- C:\WINDOWS\System32\perfwci.ini

[2001/10/28 12:07:18 | 000,001,300 | ---- | C] () -- C:\WINDOWS\System32\perffilt.ini

[2001/10/28 12:07:18 | 000,000,878 | ---- | C] () -- C:\WINDOWS\System32\drivers\etc\protocol

[2001/10/28 12:07:18 | 000,000,435 | ---- | C] () -- C:\WINDOWS\System32\perfwci.h

[2001/10/28 12:07:18 | 000,000,427 | ---- | C] () -- C:\WINDOWS\System32\perfci.h

[2001/10/28 12:07:18 | 000,000,361 | ---- | C] () -- C:\WINDOWS\System32\prodspec.ini

[2001/10/28 12:07:18 | 000,000,140 | ---- | C] () -- C:\WINDOWS\System32\perffilt.h

[2001/10/28 12:07:18 | 000,000,114 | ---- | C] () -- C:\WINDOWS\System32\pcl.sep

[2001/10/28 12:07:16 | 000,168,063 | ---- | C] () -- C:\WINDOWS\System32\pagefileconfig.vbs

[2001/10/28 12:07:16 | 000,168,063 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pagefile.vbs

[2001/10/28 12:07:14 | 000,003,258 | ---- | C] () -- C:\WINDOWS\System32\nw16.exe

[2001/10/28 12:07:14 | 000,003,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nw16.exe

[2001/10/28 12:07:10 | 000,048,794 | ---- | C] () -- C:\WINDOWS\System32\ntimage.gif

[2001/10/28 12:07:10 | 000,032,603 | ---- | C] () -- C:\WINDOWS\System32\ntmsoprq.msc

[2001/10/28 12:07:10 | 000,029,370 | ---- | C] () -- C:\WINDOWS\System32\ntdos411.sys

[2001/10/28 12:07:10 | 000,029,370 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ntdos411.sys

[2001/10/28 12:07:10 | 000,029,274 | ---- | C] () -- C:\WINDOWS\System32\ntdos412.sys

[2001/10/28 12:07:10 | 000,029,274 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ntdos412.sys

[2001/10/28 12:07:10 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos804.sys

[2001/10/28 12:07:10 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ntdos804.sys

[2001/10/28 12:07:10 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos404.sys

[2001/10/28 12:07:10 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ntdos404.sys

[2001/10/28 12:07:10 | 000,027,900 | ---- | C] () -- C:\WINDOWS\System32\ntdos.sys

[2001/10/28 12:07:10 | 000,027,900 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ntdos.sys

[2001/10/28 12:07:10 | 000,025,912 | ---- | C] () -- C:\WINDOWS\System32\ntmsmgr.msc

[2001/10/28 12:07:08 | 000,149,848 | ---- | C] () -- C:\WINDOWS\System32\noise.deu

[2001/10/28 12:07:08 | 000,108,328 | ---- | C] () -- C:\WINDOWS\System32\net.hlp

[2001/10/28 12:07:08 | 000,049,196 | ---- | C] () -- C:\WINDOWS\System32\noise.fra

[2001/10/28 12:07:08 | 000,019,684 | ---- | C] () -- C:\WINDOWS\System32\noise.esn

[2001/10/28 12:07:08 | 000,019,618 | ---- | C] () -- C:\WINDOWS\System32\noise.ita

[2001/10/28 12:07:08 | 000,013,730 | ---- | C] () -- C:\WINDOWS\System32\noise.sve

[2001/10/28 12:07:08 | 000,013,256 | ---- | C] () -- C:\WINDOWS\System32\noise.nld

[2001/10/28 12:07:08 | 000,007,132 | ---- | C] () -- C:\WINDOWS\System32\nlsfunc.exe

[2001/10/28 12:07:08 | 000,007,132 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nlsfunc.exe

[2001/10/28 12:07:08 | 000,002,656 | ---- | C] () -- C:\WINDOWS\System32\netware.drv

[2001/10/28 12:07:08 | 000,001,696 | ---- | C] () -- C:\WINDOWS\System32\noise.cht

[2001/10/28 12:07:08 | 000,001,696 | ---- | C] () -- C:\WINDOWS\System32\noise.chs

[2001/10/28 12:07:08 | 000,000,751 | ---- | C] () -- C:\WINDOWS\System32\noise.enu

[2001/10/28 12:07:08 | 000,000,751 | ---- | C] () -- C:\WINDOWS\System32\noise.eng

[2001/10/28 12:07:08 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat

[2001/10/28 12:07:08 | 000,000,697 | ---- | C] () -- C:\WINDOWS\System32\noise.tha

[2001/10/28 12:07:08 | 000,000,429 | ---- | C] () -- C:\WINDOWS\System32\drivers\etc\networks

[2001/10/28 12:07:02 | 000,094,282 | ---- | C] () -- C:\WINDOWS\System32\msencode.dll

[2001/10/28 12:07:02 | 000,001,405 | ---- | C] () -- C:\WINDOWS\msdfmap.ini

[2001/10/28 12:07:02 | 000,000,817 | ---- | C] () -- C:\WINDOWS\System32\mscdexnt.exe

[2001/10/28 12:07:02 | 000,000,817 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mscdexnt.exe

[2001/10/28 12:07:00 | 000,021,111 | ---- | C] () -- C:\WINDOWS\System32\mqperf.ini

[2001/10/28 12:07:00 | 000,002,755 | ---- | C] () -- C:\WINDOWS\System32\mqprfsym.h

[2001/10/28 12:07:00 | 000,001,492 | ---- | C] () -- C:\WINDOWS\System32\mmdriver.inf

[2001/10/28 12:06:58 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat

[2001/10/28 12:06:58 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mlang.dat

[2001/10/28 12:06:58 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin

[2001/10/28 12:06:58 | 000,039,386 | ---- | C] () -- C:\WINDOWS\System32\mem.exe

[2001/10/28 12:06:58 | 000,039,386 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mem.exe

[2001/10/28 12:06:58 | 000,024,124 | ---- | C] () -- C:\WINDOWS\System32\dllcache\marlett.ttf

[2001/10/28 12:06:56 | 000,041,834 | ---- | C] () -- C:\WINDOWS\System32\lusrmgr.msc

[2001/10/28 12:06:56 | 000,007,046 | ---- | C] () -- C:\WINDOWS\System32\l_intl.nls

[2001/10/28 12:06:56 | 000,007,046 | ---- | C] () -- C:\WINDOWS\System32\dllcache\l_intl.nls

[2001/10/28 12:06:56 | 000,003,957 | ---- | C] () -- C:\WINDOWS\System32\drivers\etc\lmhosts.sam

[2001/10/28 12:06:56 | 000,001,153 | ---- | C] () -- C:\WINDOWS\System32\loadfix.com

[2001/10/28 12:06:56 | 000,000,168 | ---- | C] () -- C:\WINDOWS\System32\l_except.nls

[2001/10/28 12:06:56 | 000,000,168 | ---- | C] () -- C:\WINDOWS\System32\dllcache\l_except.nls

[2001/10/28 12:06:40 | 000,042,809 | ---- | C] () -- C:\WINDOWS\System32\key01.sys

[2001/10/28 12:06:40 | 000,042,809 | ---- | C] () -- C:\WINDOWS\System32\dllcache\key01.sys

[2001/10/28 12:06:40 | 000,014,950 | ---- | C] () -- C:\WINDOWS\System32\kb16.com

[2001/10/28 12:06:38 | 000,199,168 | ---- | C] () -- C:\WINDOWS\System32\ir32_32.dll

[2001/10/28 12:06:36 | 000,004,896 | ---- | C] () -- C:\WINDOWS\System32\himem.sys

[2001/10/28 12:06:36 | 000,004,896 | ---- | C] () -- C:\WINDOWS\System32\dllcache\himem.sys

[2001/10/28 12:06:36 | 000,000,776 | ---- | C] () -- C:\WINDOWS\System32\drivers\etc\hosts

[2001/10/28 12:06:34 | 003,440,660 | ---- | C] () -- C:\WINDOWS\System32\drivers\gm.dls

[2001/10/28 12:06:34 | 003,440,660 | ---- | C] () -- C:\WINDOWS\System32\dllcache\gm.dls

[2001/10/28 12:06:34 | 000,034,348 | ---- | C] () -- C:\WINDOWS\System32\gpedit.msc

[2001/10/28 12:06:34 | 000,032,412 | ---- | C] () -- C:\WINDOWS\System32\fsmgmt.msc

[2001/10/28 12:06:34 | 000,024,772 | ---- | C] () -- C:\WINDOWS\System32\geo.nls

[2001/10/28 12:06:34 | 000,024,772 | ---- | C] () -- C:\WINDOWS\System32\dllcache\geo.nls

[2001/10/28 12:06:34 | 000,021,232 | ---- | C] () -- C:\WINDOWS\System32\graphics.pro

[2001/10/28 12:06:34 | 000,019,918 | ---- | C] () -- C:\WINDOWS\System32\graphics.com

[2001/10/28 12:06:32 | 001,015,477 | ---- | C] () -- C:\WINDOWS\System32\esentprf.ini

[2001/10/28 12:06:32 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat

[2001/10/28 12:06:32 | 000,152,844 | ---- | C] () -- C:\WINDOWS\System32\dllcache\framdit.ttf

[2001/10/28 12:06:32 | 000,135,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\framd.ttf

[2001/10/28 12:06:32 | 000,127,213 | ---- | C] () -- C:\WINDOWS\System32\ega.cpi

[2001/10/28 12:06:32 | 000,098,268 | ---- | C] () -- C:\WINDOWS\System32\dllcache\evtquery.vbs

[2001/10/28 12:06:32 | 000,098,268 | ---- | C] () -- C:\WINDOWS\System32\eventquery.vbs

[2001/10/28 12:06:32 | 000,070,750 | ---- | C] () -- C:\WINDOWS\System32\edit.com

[2001/10/28 12:06:32 | 000,056,263 | ---- | C] () -- C:\WINDOWS\System32\eventvwr.msc

[2001/10/28 12:06:32 | 000,013,106 | ---- | C] () -- C:\WINDOWS\System32\edlin.exe

[2001/10/28 12:06:32 | 000,013,106 | ---- | C] () -- C:\WINDOWS\System32\dllcache\edlin.exe

[2001/10/28 12:06:32 | 000,012,447 | ---- | C] () -- C:\WINDOWS\System32\edit.hlp

[2001/10/28 12:06:32 | 000,008,600 | ---- | C] () -- C:\WINDOWS\System32\exe2bin.exe

[2001/10/28 12:06:32 | 000,008,600 | ---- | C] () -- C:\WINDOWS\System32\dllcache\exe2bin.exe

[2001/10/28 12:06:32 | 000,006,708 | ---- | C] () -- C:\WINDOWS\System32\esentprf.hxx

[2001/10/28 12:06:32 | 000,000,882 | ---- | C] () -- C:\WINDOWS\System32\fastopen.exe

[2001/10/28 12:06:32 | 000,000,882 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fastopen.exe

[2001/10/28 12:06:32 | 000,000,080 | ---- | C] () -- C:\WINDOWS\explorer.scf

[2001/10/28 12:06:30 | 000,000,081 | ---- | C] () -- C:\WINDOWS\System32\dsound.vxd

[2001/10/28 12:06:18 | 000,196,642 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_950.nls

[2001/10/28 12:06:18 | 000,196,642 | ---- | C] () -- C:\WINDOWS\System32\c_950.nls

[2001/10/28 12:06:18 | 000,196,642 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_949.nls

[2001/10/28 12:06:18 | 000,196,642 | ---- | C] () -- C:\WINDOWS\System32\c_949.nls

[2001/10/28 12:06:18 | 000,196,642 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_936.nls

[2001/10/28 12:06:18 | 000,196,642 | ---- | C] () -- C:\WINDOWS\System32\c_936.nls

[2001/10/28 12:06:18 | 000,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_932.nls

[2001/10/28 12:06:18 | 000,162,850 | ---- | C] () -- C:\WINDOWS\System32\c_932.nls

[2001/10/28 12:06:18 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_874.nls

[2001/10/28 12:06:18 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_874.nls

[2001/10/28 12:06:18 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_865.nls

[2001/10/28 12:06:18 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_865.nls

[2001/10/28 12:06:18 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_863.nls

[2001/10/28 12:06:18 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_863.nls

[2001/10/28 12:06:18 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_861.nls

[2001/10/28 12:06:18 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_861.nls

[2001/10/28 12:06:18 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_860.nls

[2001/10/28 12:06:18 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_860.nls

[2001/10/28 12:06:18 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_850.nls

[2001/10/28 12:06:18 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_850.nls

[2001/10/28 12:06:18 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_775.nls

[2001/10/28 12:06:18 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_775.nls

[2001/10/28 12:06:18 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_437.nls

[2001/10/28 12:06:18 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_437.nls

[2001/10/28 12:06:18 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_500.nls

[2001/10/28 12:06:18 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_500.nls

[2001/10/28 12:06:18 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28605.nls

[2001/10/28 12:06:18 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28605.nls

[2001/10/28 12:06:18 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28598.nls

[2001/10/28 12:06:18 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28598.nls

[2001/10/28 12:06:18 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28593.nls

[2001/10/28 12:06:18 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28593.nls

[2001/10/28 12:06:18 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28592.nls

[2001/10/28 12:06:18 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28592.nls

[2001/10/28 12:06:18 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28591.nls

[2001/10/28 12:06:18 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28591.nls

[2001/10/28 12:06:18 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21866.nls

[2001/10/28 12:06:18 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_21866.nls

[2001/10/28 12:06:18 | 000,041,128 | ---- | C] () -- C:\WINDOWS\System32\dfrg.msc

[2001/10/28 12:06:18 | 000,033,311 | ---- | C] () -- C:\WINDOWS\System32\diskmgmt.msc

[2001/10/28 12:06:18 | 000,032,724 | ---- | C] () -- C:\WINDOWS\System32\devmgmt.msc

[2001/10/28 12:06:18 | 000,021,130 | ---- | C] () -- C:\WINDOWS\System32\dllcache\debug.exe

[2001/10/28 12:06:18 | 000,021,130 | ---- | C] () -- C:\WINDOWS\System32\debug.exe

[2001/10/28 12:06:16 | 000,139,810 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20261.nls

[2001/10/28 12:06:16 | 000,139,810 | ---- | C] () -- C:\WINDOWS\System32\c_20261.nls

[2001/10/28 12:06:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20905.nls

[2001/10/28 12:06:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_20905.nls

[2001/10/28 12:06:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20866.nls

[2001/10/28 12:06:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_20866.nls

[2001/10/28 12:06:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1258.nls

[2001/10/28 12:06:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_1258.nls

[2001/10/28 12:06:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1257.nls

[2001/10/28 12:06:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_1257.nls

[2001/10/28 12:06:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1256.nls

[2001/10/28 12:06:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_1256.nls

[2001/10/28 12:06:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1255.nls

[2001/10/28 12:06:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_1255.nls

[2001/10/28 12:06:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1254.nls

[2001/10/28 12:06:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_1254.nls

[2001/10/28 12:06:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1253.nls

[2001/10/28 12:06:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_1253.nls

[2001/10/28 12:06:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1252.nls

[2001/10/28 12:06:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_1252.nls

[2001/10/28 12:06:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1251.nls

[2001/10/28 12:06:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_1251.nls

[2001/10/28 12:06:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1250.nls

[2001/10/28 12:06:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_1250.nls

[2001/10/28 12:06:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1026.nls

[2001/10/28 12:06:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_1026.nls

[2001/10/28 12:06:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10079.nls

[2001/10/28 12:06:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10079.nls

[2001/10/28 12:06:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10000.nls

[2001/10/28 12:06:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10000.nls

[2001/10/28 12:06:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_037.nls

[2001/10/28 12:06:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_037.nls

[2001/10/28 12:06:16 | 000,037,362 | ---- | C] () -- C:\WINDOWS\System32\compmgmt.msc

[2001/10/28 12:06:16 | 000,027,097 | ---- | C] () -- C:\WINDOWS\System32\dllcache\country.sys

[2001/10/28 12:06:16 | 000,027,097 | ---- | C] () -- C:\WINDOWS\System32\country.sys

[2001/10/28 12:06:16 | 000,008,386 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ctype.nls

[2001/10/28 12:06:16 | 000,008,386 | ---- | C] () -- C:\WINDOWS\System32\ctype.nls

[2001/10/28 12:06:12 | 000,082,944 | ---- | C] () -- C:\WINDOWS\clock.avi

[2001/10/28 12:06:12 | 000,061,126 | ---- | C] () -- C:\WINDOWS\System32\cliconf.chm

[2001/10/28 12:06:12 | 000,060,504 | ---- | C] () -- C:\WINDOWS\System32\cmmgr32.hlp

[2001/10/28 12:06:12 | 000,052,472 | ---- | C] () -- C:\WINDOWS\System32\command.com

[2001/10/28 12:06:12 | 000,041,461 | ---- | C] () -- C:\WINDOWS\System32\ciadv.msc

[2001/10/28 12:06:12 | 000,040,593 | ---- | C] () -- C:\WINDOWS\System32\cmdlib.wsc

[2001/10/28 12:06:12 | 000,000,075 | ---- | C] () -- C:\WINDOWS\System32\Exibir canais.scf

[2001/10/28 12:06:12 | 000,000,064 | ---- | C] () -- C:\WINDOWS\System32\cmos.ram

[2001/10/28 12:06:10 | 000,041,985 | ---- | C] () -- C:\WINDOWS\System32\certmgr.msc

[2001/10/28 12:06:10 | 000,028,420 | ---- | C] () -- C:\WINDOWS\System32\bios1.rom

[2001/10/28 12:06:10 | 000,008,191 | ---- | C] () -- C:\WINDOWS\System32\bios4.rom

[2001/10/28 12:06:10 | 000,004,952 | RHS- | C] () -- C:\Bootfont.bin

[2001/10/28 12:06:08 | 000,012,578 | ---- | C] () -- C:\WINDOWS\System32\dllcache\append.exe

[2001/10/28 12:06:08 | 000,012,578 | ---- | C] () -- C:\WINDOWS\System32\append.exe

[2001/10/28 12:06:08 | 000,009,032 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ansi.sys

[2001/10/28 12:06:08 | 000,009,032 | ---- | C] () -- C:\WINDOWS\System32\ansi.sys

[2001/10/28 12:06:06 | 000,002,233 | ---- | C] () -- C:\WINDOWS\System32\dllcache\12520850.cpx

[2001/10/28 12:06:06 | 000,002,233 | ---- | C] () -- C:\WINDOWS\System32\12520850.cpx

[2001/10/28 12:06:06 | 000,002,151 | ---- | C] () -- C:\WINDOWS\System32\dllcache\12520437.cpx

[2001/10/28 12:06:06 | 000,002,151 | ---- | C] () -- C:\WINDOWS\System32\12520437.cpx

[2001/09/05 20:50:34 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\dvdplay.exe

[2001/09/05 20:50:20 | 000,157,696 | ---- | C] () -- C:\WINDOWS\System32\paqsp.dll

[2001/08/23 10:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin

[2001/08/23 10:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\dllcache\oembios.bin

[2001/08/23 10:00:00 | 000,006,761 | ---- | C] () -- C:\WINDOWS\System32\oembios.sig

[2001/08/23 10:00:00 | 000,006,761 | ---- | C] () -- C:\WINDOWS\System32\dllcache\oembios.sig

[2001/08/23 10:00:00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat

[2001/08/23 10:00:00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\dllcache\oembios.dat

[1999/01/08 19:19:44 | 000,025,360 | ---- | C] () -- C:\WINDOWS\System32\VBAPTB32.OLB

[1996/04/03 16:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys

 

========== LOP Check ==========

 

[2011/07/20 13:49:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dados de aplicativos\Age of Empires 3

[2011/10/15 17:43:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dados de aplicativos\ashampoo

[2012/05/04 01:35:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dados de aplicativos\AVG Secure Search

[2011/08/17 13:44:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dados de aplicativos\AVG10

[2012/04/08 10:58:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dados de aplicativos\AVG2012

[2011/09/24 04:44:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dados de aplicativos\Babylon

[2011/06/23 11:51:47 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dados de aplicativos\Common Files

[2012/05/16 14:34:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dados de aplicativos\DAEMON Tools Lite

[2011/08/31 16:17:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dados de aplicativos\GamesCampus

[2011/08/18 14:12:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dados de aplicativos\hssff

[2012/03/27 01:31:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dados de aplicativos\IObit

[2011/10/09 08:11:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dados de aplicativos\Last.fm

[2012/04/05 22:47:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dados de aplicativos\levelup downloader

[2012/02/11 17:23:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dados de aplicativos\Linkury

[2012/05/03 02:57:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dados de aplicativos\Messenger Plus!

[2012/04/07 09:33:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dados de aplicativos\Messenger Plus! for Skype

[2012/05/06 16:27:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dados de aplicativos\MFAData

[2012/04/24 22:31:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dados de aplicativos\PMB Files

[2012/04/06 00:19:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dados de aplicativos\PWD

[2011/12/26 19:25:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dados de aplicativos\SpeedBit

[2011/12/26 19:24:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dados de aplicativos\TEMP

[2012/02/26 11:00:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dados de aplicativos\WEBZEN

[2011/08/16 22:54:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dados de aplicativos\xOcean

[2011/07/12 15:06:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dados de aplicativos\{429CAD59-35B1-4DBC-BB6D-1DB246563521}

[2011/12/03 23:40:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\Ashampoo

[2012/02/23 22:06:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\Audacity

[2011/10/16 07:42:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\AVG Secure Search

[2011/06/23 12:01:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\AVG10

[2011/10/08 09:22:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\AVG2012

[2011/09/24 04:44:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\Babylon

[2011/09/30 03:30:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\BabylonToolbar

[2012/05/24 00:04:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\BSplayer

[2012/05/23 23:43:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\BSplayer Pro

[2011/10/11 16:24:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\com.rpgonline.rpg2ic.3829905B60559FBE76E221DB1B906373178BB26A.1

[2012/02/10 19:36:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\Complitly

[2012/06/03 16:43:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\DAEMON Tools Lite

[2011/12/06 17:13:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\DMCache

[2011/08/30 09:20:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\Dpoke

[2011/10/04 21:32:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\eType

[2011/10/10 07:55:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\facemoods.com

[2012/02/01 16:09:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\GetRightToGo

[2011/08/26 05:39:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\GrabPro

[2011/08/31 09:07:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\HTML Executable

[2011/10/25 20:51:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\IDM

[2012/03/27 01:32:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\IObit

[2011/08/20 04:12:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\LolClient

[2011/12/18 01:10:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\My Battle for Middle-earth Files

[2011/07/04 11:18:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\My Battle for Middle-earth II Files

[2011/09/24 04:42:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\Nullsoft

[2012/05/16 14:34:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\OpenCandy

[2012/02/01 23:59:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\Orbit

[2012/04/26 00:18:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\Petroglyph

[2012/02/27 09:16:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\PhotoFiltre

[2011/09/29 21:28:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\POunc

[2012/02/22 03:52:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\PriceGong

[2011/08/26 05:39:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\ProgSense

[2012/04/04 00:33:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\RaidCall

[2012/01/01 03:10:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\SysLipe

[2012/03/25 18:59:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\TeamViewer

[2012/05/16 14:34:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\Tibia

[2011/09/01 02:20:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\TibiaME

[2012/03/24 21:35:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\TS3Client

[2012/04/18 23:18:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\Uniblue

[2012/06/03 16:43:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\uTorrent

[2012/05/16 14:34:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\VDownloader

[2011/10/06 03:42:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\WoDBO

[2011/11/07 08:40:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\EU\Dados de aplicativos\{4916c8ce-b9e7-4e25-9a23-25493e41e04c}

[2011/06/23 12:37:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dados de aplicativos\TeamViewer

[2012/06/03 19:01:11 | 000,000,270 | ---- | M] () -- C:\WINDOWS\Tasks\DriverScanner.job

[2012/06/03 19:17:23 | 000,000,262 | ---- | M] () -- C:\WINDOWS\Tasks\Game_Booster_Startup.job

[2012/06/03 19:34:00 | 000,000,244 | ---- | M] () -- C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job

[2012/06/03 19:16:44 | 000,000,290 | ---- | M] () -- C:\WINDOWS\Tasks\SmartDefrag_Startup.job

[2012/06/03 19:11:07 | 000,000,374 | ---- | M] () -- C:\WINDOWS\Tasks\Windows Codec Update Service.job

 

========== Purity Check ==========

 

 

 

========== Alternate Data Streams ==========

 

@Alternate Data Stream - 108 bytes -> C:\Documents and Settings\All Users\Dados de aplicativos\TEMP:553CA6CA

 

< End of report >

Compartilhar este post


Link para o post
Compartilhar em outros sites

Olá Hazumi

 

 

 

1.

*Faltou o relatório Extras.txt.. :thumbsup:

 

Ele deve estar no desktop.

 

 

2.

*Baixe o SalityKiller (...da Kaspersky) e salve-o em C:\

 

*Desative a Restauração do Sistema

*Clique com o botão direito do mouse em Meu Computador e selecione Propriedades

*Clique em Restauração do Sistema

*Selecione a opção Desativar Restauração do Sistema

*Clique [Aplicar] > [sim] > [OK]

 

 

*Este programa será executado em 2 janelas distintas ao mesmo tempo!!

 

*A primeira janela:

 

*Clique [iniciar] > [Executar] > copie e cole: C:\salitykiller.exe -m

 

*Clique [OK]

 

*Não feche esta janela!! Se desejar, minimize-a.

 

*A segunda janela:

 

*Clique [iniciar] > [Executar] > copie e cole: C:\salitykiller.exe -y -l sality.txt

 

*Clique [OK]

 

*Ao término, a janela 2 será fechada automaticamente. Feche, então, a janela 1.

 

*Cole o resumo localizado no final do arquivo C:\sality.txt, conforme mostrado abaixo:

23:57:51:0 Infected files: 8

23:57:51:0 Infected processes: 0

23:57:51:0 Infected threads: 2

23:57:51:0 Cured files: 8

23:57:51:0 Executed registry scripts: 1

Compartilhar este post


Link para o post
Compartilhar em outros sites

Tópico Arquivado

 

Como o autor não respondeu por mais de 10 dias, o tópico foi arquivado.

 

Caso você seja o autor do tópico e quer reabrir, envie uma mensagem privada para um moderador da área juntamente com o link para este tópico e explique o motivo da reabertura.

Compartilhar este post


Link para o post
Compartilhar em outros sites

×

Informação importante

Ao usar o fórum, você concorda com nossos Termos e condições.