rendered paste bodyOTL logfile created on: 27/01/2012 00:31:11 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Lucas\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000416 | Country: Brasil | Language: PTB | Date Format: dd/MM/yyyy
3,25 Gb Total Physical Memory | 1,73 Gb Available Physical Memory | 53,17% Memory free
6,49 Gb Paging File | 5,07 Gb Available in Paging File | 78,11% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 74,52 Gb Total Space | 14,20 Gb Free Space | 19,05% Space Free | Partition Type: NTFS
Drive E: | 931,51 Gb Total Space | 719,36 Gb Free Space | 77,23% Space Free | Partition Type: NTFS
Computer Name: ATLANTIS | User Name: Lucas | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
[color=#E56717]========== Processes (SafeList) ==========[/color]
PRC - C:\Users\Lucas\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
PRC - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
PRC - C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
PRC - C:\Users\Lucas\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc)
PRC - C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
PRC - C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
PRC - C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe (Lavasoft Limited)
PRC - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe (Lavasoft Limited)
PRC - C:\Program Files\Google\Update\1.3.21.79\GoogleCrashHandler.exe (Google Inc.)
PRC - C:\Program Files\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.)
PRC - C:\Program Files\Yuna Software\Messenger Plus!\PlusService.exe (Yuna Software)
PRC - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.)
PRC - C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
PRC - C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe (Nokia)
PRC - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (Nokia)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Winamp\winampa.exe (Nullsoft, Inc.)
PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
PRC - C:\Windows\System32\audiodg.exe (Microsoft Corporation)
PRC - C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe (TeamViewer GmbH)
PRC - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
PRC - C:\Program Files\Microsoft LifeChat\LifeChat.exe (Microsoft Corporation)
PRC - C:\Program Files\Winamp Remote\bin\orbtray.exe (Orb Networks)
PRC - C:\Program Files\Winamp Remote\bin\Orb.exe (Orb Networks, Inc.)
PRC - C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
PRC - C:\Windows\vsnpstd2.exe ()
PRC - C:\Users\Lucas\AppData\Roaming\Google\Google Talk\googletalk.exe (Google)
[color=#E56717]========== Modules (No Company Name) ==========[/color]
MOD - C:\Program Files\Google\Chrome\Application\16.0.912.77\ppGoogleNaClPluginChrome.dll ()
MOD - C:\Program Files\Google\Chrome\Application\16.0.912.77\pdf.dll ()
MOD - C:\Program Files\Google\Chrome\Application\16.0.912.77\avutil-51.dll ()
MOD - C:\Program Files\Google\Chrome\Application\16.0.912.77\avformat-53.dll ()
MOD - C:\Program Files\Google\Chrome\Application\16.0.912.77\avcodec-53.dll ()
MOD - C:\Program Files\Adobe\Reader 9.0\Reader\viewerps.dll ()
MOD - C:\Program Files\Yuna Software\Messenger Plus!\detour32.dll ()
MOD - C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll ()
MOD - C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
MOD - C:\Program Files\WinRAR\rarext.dll ()
MOD - C:\Program Files\Notepad++\NppShell_01.dll ()
MOD - C:\Program Files\Winamp Remote\bin\OrbMedia.dll ()
MOD - C:\Program Files\Winamp Remote\bin\OrbWebServer.dll ()
MOD - C:\Program Files\Winamp Remote\bin\OrbPVR.dll ()
MOD - C:\Program Files\Winamp Remote\bin\Cab.dll ()
MOD - C:\Program Files\Winamp Remote\bin\sqlite3.dll ()
MOD - C:\Windows\vsnpstd2.exe ()
MOD - C:\Program Files\Winamp Remote\bin\ogg.dll ()
MOD - C:\Program Files\Winamp Remote\bin\TVGrabber.dll ()
MOD - C:\Program Files\Winamp Remote\bin\ZLIB1.dll ()
MOD - C:\Program Files\Winamp Remote\bin\LIBEXPAT.dll ()
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
SRV - (Akamai) -- C:/Program Files/Common Files/Akamai/netsession_win_b427739.dll ()
SRV - (Steam Client Service) -- C:\Program Files\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (MBAMService) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (avast! Antivirus) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
SRV - (Lavasoft Ad-Aware Service) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe (Lavasoft Limited)
SRV - (Hamachi2Svc) -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.)
SRV - (npggsvc) -- C:\Windows\System32\GameMon.des (INCA Internet Co., Ltd.)
SRV - (ServiceLayer) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (Nokia)
SRV - (TeamViewer5) -- C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (WatAdminSvc) -- C:\Windows\System32\Wat\WatAdminSvc.exe (Microsoft Corporation)
SRV - (Stereo Service) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
SRV - (PeerDistSvc) -- C:\Windows\System32\PeerDistSvc.dll (Microsoft Corporation)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV - (MBAMProtector) -- C:\Windows\System32\drivers\mbam.sys (Malwarebytes Corporation)
DRV - (aswSnx) -- C:\Windows\System32\drivers\aswSnx.sys (AVAST Software)
DRV - (aswSP) -- C:\Windows\System32\drivers\aswSP.sys (AVAST Software)
DRV - (aswRdr) -- C:\Windows\System32\drivers\aswRdr.sys (AVAST Software)
DRV - (aswTdi) -- C:\Windows\System32\drivers\aswTdi.sys (AVAST Software)
DRV - (aswMonFlt) -- C:\Windows\System32\drivers\aswMonFlt.sys (AVAST Software)
DRV - (aswFsBlk) -- C:\Windows\System32\drivers\aswFsBlk.sys (AVAST Software)
DRV - (Lbd) -- C:\Windows\system32\DRIVERS\Lbd.sys (Lavasoft AB)
DRV - (Lavasoft Kernexplorer) -- C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys ()
DRV - (vmm) -- C:\Windows\System32\drivers\VMM.sys (Microsoft Corporation)
DRV - (vmbus) -- C:\Windows\system32\drivers\vmbus.sys (Microsoft Corporation)
DRV - (storflt) -- C:\Windows\system32\drivers\vmstorfl.sys (Microsoft Corporation)
DRV - (storvsc) -- C:\Windows\system32\drivers\storvsc.sys (Microsoft Corporation)
DRV - (TsUsbFlt) -- C:\Windows\System32\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV - (RdpVideoMiniport) -- C:\Windows\System32\drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV - (WinUsb) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation)
DRV - (VMBusHID) -- C:\Windows\system32\drivers\VMBusHID.sys (Microsoft Corporation)
DRV - (s3cap) -- C:\Windows\system32\drivers\vms3cap.sys (Microsoft Corporation)
DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation)
DRV - (Serial) -- C:\Windows\System32\drivers\serial.sys (Brother Industries Ltd.)
DRV - (netr73) -- C:\Windows\System32\drivers\netr73.sys (Ralink Technology, Corp.)
DRV - (hamachi) -- C:\Windows\System32\drivers\hamachi.sys (LogMeIn, Inc.)
DRV - (UsbDiag) -- C:\Windows\System32\drivers\lgusbdiag.sys (LG Electronics Inc.)
DRV - (USBModem) -- C:\Windows\System32\drivers\lgusbmodem.sys (LG Electronics Inc.)
DRV - (usbbus) -- C:\Windows\System32\drivers\lgusbbus.sys (LG Electronics Inc.)
DRV - (pccsmcfd) -- C:\Windows\System32\drivers\pccsmcfd.sys (Nokia)
DRV - (AmdLLD) -- C:\Windows\System32\drivers\AmdLLD.sys (AMD, Inc.)
DRV - (snpstd2) -- C:\Windows\System32\drivers\snpstd2.sys ()
DRV - (speedfan) -- C:\Windows\system32\speedfan.sys (Windows (R) 2000 DDK provider)
DRV - (ASPI) -- C:\Windows\System32\drivers\ASPI32.SYS (Adaptec)
DRV - (giveio) -- C:\Windows\system32\giveio.sys ()
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKLM\..\URLSearchHook: {1d80d668-2160-46a2-b3a7-e166795b0b28} - No CLSID value found
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2390034119-2516364890-1244695793-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://br.msn.com/?ocid=iehp
IE - HKU\S-1-5-21-2390034119-2516364890-1244695793-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = pt-BR
IE - HKU\S-1-5-21-2390034119-2516364890-1244695793-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = A9 B5 6A 20 6F BB CC 01 [binary data]
IE - HKU\S-1-5-21-2390034119-2516364890-1244695793-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2390034119-2516364890-1244695793-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = 127.0.0.1:9421
[color=#E56717]========== FireFox ==========[/color]
FF - prefs.js..browser.search.defaultthis.engineName: "Messenger Plus BR Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2905346&SearchSource=3&q={searchTerms}"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.com.br"
FF - prefs.js..extensions.enabledItems: {000a9d1c-beef-4f90-9363-039d445309b8}:0.5.36.0
FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.9.2
FF - prefs.js..extensions.enabledItems: {87F8774F-B485-47E2-A755-A40A8A5E8874}:1.0.14.5
FF - prefs.js..extensions.enabledItems: video.downloader.plugin@ffpimp.com:3.3.5
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}:7.3.3.42
FF - prefs.js..extensions.enabledItems: {87F8774F-B485-47E2-A755-A40A8A5E8873}:1.0.11.9
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {59c81df5-4b7a-477b-912d-4e0fdf64e5f2}:0.9.86.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..extensions.enabledItems: wrc@avast.com:20110101
FF - prefs.js..keyword.URL: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2905346&SearchSource=2&q="
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=12.0.1.669: c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=12.0.1.669: c:\program files\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=12.0.1.669: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.669: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.669: c:\program files\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@soe.sony.com/installer,version=1.0.3: C:\Users\Lucas\AppData\Roaming\Mozilla\Firefox\Profiles\7mtkp6yh.default\extensions\{38AB6A6C-CC4C-4f9e-A3DD-3C5681EF18A1}\plugins\npsoe.dll File not found
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{000a9d1c-beef-4f90-9363-039d445309b8}: C:\Program Files\Google\Google Gears\Firefox\ [2010/03/06 02:01:33 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2011/12/04 12:09:17 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011/10/24 18:55:20 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012/01/16 23:32:49 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/01/13 16:05:45 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012/01/10 23:20:14 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\{CCB7D94B-CA92-4E3F-B79D-ADE0F07ADC74}: C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Thunderbird Connector\ThunderbirdExtension\ [2011/09/12 00:52:27 | 000,000,000 | ---D | M]
[2010/01/18 00:49:12 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Lucas\AppData\Roaming\mozilla\Extensions
[2012/01/25 16:48:19 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Lucas\AppData\Roaming\mozilla\Firefox\Profiles\7mtkp6yh.default\extensions
[2011/12/26 21:57:35 | 000,000,000 | ---D | M] (ChatZilla) -- C:\Users\Lucas\AppData\Roaming\mozilla\Firefox\Profiles\7mtkp6yh.default\extensions\{59c81df5-4b7a-477b-912d-4e0fdf64e5f2}
[2011/11/14 11:36:21 | 000,000,000 | ---D | M] (Guardiao Itau 30 horas) -- C:\Users\Lucas\AppData\Roaming\mozilla\Firefox\Profiles\7mtkp6yh.default\extensions\{87F8774F-B485-47E2-A755-A40A8A5E8873}
[2011/11/26 00:53:02 | 000,000,000 | ---D | M] (Modulo de Protecao) -- C:\Users\Lucas\AppData\Roaming\mozilla\Firefox\Profiles\7mtkp6yh.default\extensions\{87F8774F-B485-47E2-A755-A40A8A5E8874}
[2012/01/21 20:02:30 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Users\Lucas\AppData\Roaming\mozilla\Firefox\Profiles\7mtkp6yh.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
[2011/06/23 12:04:28 | 000,000,000 | ---D | M] (Conduit Engine) -- C:\Users\Lucas\AppData\Roaming\mozilla\Firefox\Profiles\7mtkp6yh.default\extensions\engine@conduit.com
[2012/01/25 16:48:19 | 000,000,000 | ---D | M] (Download Youtube Videos +) -- C:\Users\Lucas\AppData\Roaming\mozilla\Firefox\Profiles\7mtkp6yh.default\extensions\video.downloader.plugin@ffpimp.com
[2011/06/20 15:06:44 | 000,000,937 | ---- | M] () -- C:\Users\Lucas\AppData\Roaming\Mozilla\Firefox\Profiles\7mtkp6yh.default\searchplugins\conduit.xml
[2012/01/22 13:29:35 | 000,002,281 | ---- | M] () -- C:\Users\Lucas\AppData\Roaming\Mozilla\Firefox\Profiles\7mtkp6yh.default\searchplugins\s-amazon.xml
[2012/01/13 16:05:53 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\extensions
[2012/01/13 16:05:44 | 000,121,816 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011/10/03 05:06:04 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2010/12/09 08:47:06 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll
[2011/10/05 23:49:48 | 000,001,027 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\buscape.xml
[2011/10/05 23:49:48 | 000,001,212 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\mercadolivre.xml
[2011/11/09 22:40:16 | 000,002,040 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml
[2011/10/05 23:49:48 | 000,001,168 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-br.xml
[2011/10/05 23:49:48 | 000,000,952 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-br.xml
[color=#E56717]========== Chrome ==========[/color]
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\16.0.912.77\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.6.9 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: Java Deployment Toolkit 6.0.260.3 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U26 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll
CHR - plugin: DivX Web Player (Enabled) = C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll
CHR - plugin: RealPlayer(tm) HTML5VideoShim Plug-In (32-bit) (Enabled) = C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
CHR - plugin: 2007 Microsoft Office system (Enabled) = C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\16.0.912.77\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\16.0.912.77\pdf.dll
CHR - plugin: RealJukebox NS Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nprjplug.dll
CHR - plugin: Winamp Application Detector (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npwachk.dll
CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll
CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: Angry Birds = C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj\1.1.2.1_0\
CHR - Extension: avast! WebRep = C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1374_0\
CHR - Extension: RealPlayer HTML5Video Downloader Extension = C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.5_0\
CHR - Extension: DivX Plus Web Player HTML5 \u003Cvideo\u003E = C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\
O1 HOSTS File: ([2011/12/13 01:21:44 | 000,438,933 | R--- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 127.0.0.1 123fporn.info
O1 - Hosts: 15094 more lines...
O2 - BHO: (Facilitador de Leitor de Link Adobe PDF) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Google Gears Helper) - {E0FEFE40-FBF9-42AE-BA58-794CA7E3FB53} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.36.0\gears.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe (AMD)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [LifeChat] C:\Program Files\Microsoft LifeChat\LifeChat.exe (Microsoft Corporation)
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NokiaMServer] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe (Nokia)
O4 - HKLM..\Run: [PlusService] C:\Program Files\Yuna Software\Messenger Plus!\PlusService.exe (Yuna Software)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [snpstd2] C:\Windows\vsnpstd2.exe ()
O4 - HKLM..\Run: [TkBellExe] c:\program files\real\realplayer\Update\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe (Nullsoft, Inc.)
O4 - HKU\S-1-5-21-2390034119-2516364890-1244695793-1000..\Run: [] File not found
O4 - HKU\S-1-5-21-2390034119-2516364890-1244695793-1000..\Run: [Akamai NetSession Interface] C:\Users\Lucas\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc)
O4 - HKU\S-1-5-21-2390034119-2516364890-1244695793-1000..\Run: [googletalk] C:\Users\Lucas\AppData\Roaming\Google\Google Talk\googletalk.exe (Google)
O4 - HKU\S-1-5-21-2390034119-2516364890-1244695793-1000..\Run: [NokiaOviSuite2] C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe (Nokia)
O4 - HKU\S-1-5-21-2390034119-2516364890-1244695793-1000..\Run: [Steam] E:\Program Files\Steam\steam.exe (Valve Corporation)
O4 - HKLM..\RunOnce: [Malwarebytes Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - Startup: C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\Lucas\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000 File not found
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL (Microsoft Corporation)
O12 - Plugin for: .spop - C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll (InterTrust Technologies Corporation, Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 201.17.0.62 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C12E6658-AED3-4852-8877-B5014DAA79CA}: DhcpNameServer = 201.17.0.62 192.168.0.1
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) -C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 19:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2011/03/27 19:44:39 | 000,000,000 | ---D | M] - E:\Autodesk -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (lsdelete)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
MsConfig - State: "bootini" - 2
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: Lavasoft Ad-Aware Service - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe (Lavasoft Limited)
SafeBootMin: NTDS - File not found
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vmms - Service
SafeBootMin: WinDefend - C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: Hamachi2Svc - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.)
SafeBootNet: HelpSvc - Service
SafeBootNet: Lavasoft Ad-Aware Service - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe (Lavasoft Limited)
SafeBootNet: Messenger - Service
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: NTDS - File not found
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: rdsessmgr - Service
SafeBootNet: sacsvr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vmms - Service
SafeBootNet: WinDefend - C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SafeBootNet: WudfUsbccidDriver - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
ActiveX: {03433987-447F-D00D-0874-DCEBA257C5FD} - Browser Customizations
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {33A1F4C4-CB9B-7100-F622-06AF564B33AE} - Themes Setup
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {3C3901C5-3455-3E0A-A214-0B093A5070A6} - .NET Framework
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {49C187D7-91E1-459E-9759-2925384BD397} - .NET Framework
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6988AE7C-F9BE-538F-716F-8AC9B2B4CE9A} - Internet Explorer
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - .NET Framework
ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} - Adobe Flash Player
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {EC48360B-8F7A-7002-7142-A2A9B364297B} - Browser Customizations
ActiveX: {FE80F23B-788A-6329-E36C-FFAEB4D3958B} - Microsoft Windows Media Player
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\System32\ie4uinit.exe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\Windows\System32\DivX.dll (DivX, Inc.)
Drivers32: vidc.yv12 - C:\Windows\System32\DivX.dll (DivX, Inc.)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2012/01/27 00:27:07 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Users\Lucas\Desktop\OTL.exe
[2012/01/27 00:11:01 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Roaming\Malwarebytes
[2012/01/27 00:08:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012/01/27 00:08:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2012/01/27 00:08:16 | 000,020,464 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2012/01/27 00:08:16 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2012/01/26 16:00:53 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{012B1A54-AE77-48A6-A691-FB03DDEB1EA4}
[2012/01/26 16:00:25 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{4D463B6F-9DD8-434F-907A-117145D9778F}
[2012/01/26 02:56:13 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{F3C5349B-2CCE-47CC-A65D-A1DCD08B3796}
[2012/01/26 02:55:38 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{EFEAFC46-467F-4EA3-B64C-9571A993F47D}
[2012/01/25 14:55:11 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{607344C5-F93E-4463-B011-140FE93610D4}
[2012/01/25 14:54:36 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{7E886076-5F1E-49A7-AEF0-2DC18BBE34B0}
[2012/01/25 02:54:08 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{170F21CB-9C2C-4AAC-8A6E-71E8082F4A58}
[2012/01/25 02:53:34 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{64EC6B41-3A34-4B3B-804D-F28221546D1E}
[2012/01/24 14:53:19 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{69DFC020-C510-40B0-8437-7486121B05F2}
[2012/01/24 14:52:44 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{9931E72E-1140-431A-9A46-3987AD3A30B8}
[2012/01/24 02:52:11 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{74FBDF5A-7536-41F3-AFF1-6176A6999E75}
[2012/01/24 02:51:33 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{AF4D66F9-DA0D-4338-933A-661529FD20BB}
[2012/01/23 14:51:19 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{0310AC9F-00FF-4540-B5C3-D83F9B21FFD8}
[2012/01/23 14:50:44 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{9E49AB95-8D61-4C85-9E71-820239E4BC52}
[2012/01/23 02:49:52 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{866F968B-FE38-4259-880A-FEF9C5236341}
[2012/01/23 02:49:40 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{2236907B-1AFC-47C1-B6E1-4FF9873BDD2B}
[2012/01/22 14:49:26 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{0C620182-5B95-45D4-917B-C734144024D0}
[2012/01/22 14:48:49 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{EB0CB46B-7D70-435E-A50C-C864888794E4}
[2012/01/22 13:05:07 | 000,000,000 | R--D | C] -- C:\Users\Lucas\Dropbox
[2012/01/22 13:03:00 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
[2012/01/22 13:02:08 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Roaming\Dropbox
[2012/01/22 02:48:21 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{97FA5DBC-514D-4303-9176-A33F59E13CBF}
[2012/01/22 02:47:46 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{2E5E7484-DBB3-41D3-AB8E-85F81255E0C3}
[2012/01/21 14:47:30 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{B54892D9-B26C-4F5D-B517-458D4BE42964}
[2012/01/21 14:47:02 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{A0BC1618-DBA7-497B-9339-F38844083316}
[2012/01/21 02:07:28 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{C31DA981-DABC-434D-8C02-A11BB84FFF4C}
[2012/01/21 02:06:53 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{7FF607F0-FB6F-4B39-86C2-284E628CBAA4}
[2012/01/20 14:06:15 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{92A4D6AD-DFE1-496C-816C-4B50D2F461D3}
[2012/01/20 14:05:57 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{0E62CCA8-6871-4D88-AE33-65028A88B4C3}
[2012/01/20 01:08:33 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{37CF7212-B0E2-4FDF-A60F-79E519B03374}
[2012/01/20 01:07:58 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{9E30E3D0-20AC-49C4-886A-EC7D829C57E0}
[2012/01/19 13:06:06 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{9196EF1C-0CE2-45FD-976A-92F45887B711}
[2012/01/19 13:05:00 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{C1C9F761-8946-4C6C-9E50-43F1737236BF}
[2012/01/19 01:04:05 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{B3A79593-F63D-40D0-860A-FA19C5FA86F5}
[2012/01/19 01:03:17 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{6A598B89-A83A-4C90-AFF8-77F9CE840CD2}
[2012/01/18 13:03:01 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{4F78D7C8-DA4C-4A32-A01C-39FE073D2AE0}
[2012/01/18 13:02:19 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{F8D7680C-64FB-4793-A067-664D5A48496D}
[2012/01/17 21:23:42 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{E3EC667A-3290-4374-BEC7-9F82C6547F5E}
[2012/01/17 21:23:24 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{A0C99913-BE58-4195-913E-CAA8AD644279}
[2012/01/16 23:34:18 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\DDMSettings
[2012/01/16 17:04:43 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{A28DF161-F466-4041-975C-E3BDCB6E5144}
[2012/01/16 17:04:18 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{A5513468-F65C-49E4-8121-D0F07024C922}
[2012/01/16 03:02:59 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{3C58C1DF-58B4-4DC2-ACFB-C7807A39390D}
[2012/01/16 03:02:24 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{C97B5170-3026-4A0A-A778-EE38D0C0120F}
[2012/01/15 19:09:22 | 004,865,496 | ---- | C] (INCA Internet Co., Ltd.) -- C:\Windows\System32\GameMon.des
[2012/01/15 19:08:22 | 000,004,682 | ---- | C] (INCA Internet Co., Ltd.) -- C:\Windows\System32\npptNT2.sys
[2012/01/15 19:08:20 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\INCA Shared
[2012/01/15 15:02:09 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{93A91EED-31C1-406D-A029-9E6CD060B50E}
[2012/01/15 15:01:34 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{FCE9B3FD-F852-4611-82BC-3679977DF81F}
[2012/01/15 13:57:25 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Roaming\NationRed
[2012/01/15 03:01:05 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{4339AF58-B865-4BFB-A364-15CDA33D250E}
[2012/01/15 03:00:50 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{E6A77CE6-C74D-442A-9EF4-4B41BCB2C1B2}
[2012/01/14 15:00:10 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{6CB5A2A1-7278-4B59-900F-B4FEECA34BA7}
[2012/01/14 14:59:38 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{120FE177-6CFC-49D8-A0AE-B2F7D62C3877}
[2012/01/14 02:57:27 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{EF0D4C2C-78DC-4853-BFE6-3DEC235EAA8F}
[2012/01/14 02:56:53 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{E591439B-16CC-42F8-B16F-CA1F08E58E17}
[2012/01/13 14:56:13 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{161AB77B-9610-4CA9-807D-E7838AD8AC29}
[2012/01/13 14:55:58 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{E7B6B847-ADEF-4756-91B0-3A0F47D80D18}
[2012/01/13 02:12:18 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{43242C4F-5167-4170-A90C-91F94BA4E68C}
[2012/01/13 02:11:43 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{A7ED0BE7-90C9-46CF-84AB-3807AFA00C88}
[2012/01/12 23:29:51 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\Akamai
[2012/01/12 23:24:54 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Akamai
[2012/01/12 23:24:51 | 000,000,000 | ---D | C] -- C:\AeriaGames
[2012/01/12 14:11:26 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{B0FD86EB-883C-461E-8378-62FE9135B869}
[2012/01/12 14:10:48 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{B77766EB-1EBE-492D-A9B1-DD398EC596A9}
[2012/01/12 02:08:47 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{22EC8BD2-B545-4864-9532-991F355CFFBC}
[2012/01/12 02:08:12 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{A18EF1DF-17FB-4492-A696-53EEDA38C417}
[2012/01/11 14:07:52 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{A2B5E6A5-F1CB-4BA2-A2C0-A7D14EC57038}
[2012/01/11 14:07:17 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{EFE62D16-3A2E-4667-9565-B45B95BCCED0}
[2012/01/10 22:59:59 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\packager.dll
[2012/01/10 22:59:20 | 001,328,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2012/01/10 22:59:18 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qdvd.dll
[2012/01/10 22:44:23 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{32D068B7-12F1-44A2-A609-77C1B49B9E58}
[2012/01/10 22:43:45 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{FC333613-7B6F-4D3A-98DC-235907CE0878}
[2012/01/10 04:29:16 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{8A6EEEE3-F5DC-4F1A-9BFF-1DEE97995DD1}
[2012/01/10 04:28:40 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{49723A8D-CE52-46C4-BEDE-4A3D6FCF78BE}
[2012/01/09 16:28:09 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{85B7611F-5CCD-4050-B850-0351204DF10F}
[2012/01/09 16:27:34 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{85DAB525-5EED-4F82-98E7-4758A9B32EF3}
[2012/01/09 00:51:50 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{C6FDC4E3-0E3F-44BB-A932-FCFFE860FA5A}
[2012/01/09 00:51:15 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{227EEF5A-5F24-4E1C-B17B-F7860B0E5110}
[2012/01/08 12:51:00 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{A63AB3E3-BF80-4C75-AD22-4BF215149FF8}
[2012/01/08 12:50:20 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{39ADE6A1-5451-499E-9A10-AF69F5633D09}
[2012/01/08 01:02:51 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\SSDD
[2012/01/07 19:47:04 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{A4971A52-A6C6-4290-BA16-92453E46737A}
[2012/01/07 19:46:43 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{72677B0B-56B1-488D-9B8C-682975F89F14}
[2012/01/03 22:48:42 | 000,354,176 | ---- | C] (DivX, Inc.) -- C:\Windows\System32\DivXControlPanelApplet.cpl
[2011/12/30 08:18:47 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\BoH
[2011/12/29 21:53:34 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{6D328DEF-0DA9-4710-9496-22B3F1CD8FCC}
[2011/12/29 21:52:51 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{A6F4E2A3-A95F-45A7-AB6D-9F329370357B}
[2011/12/29 01:07:41 | 000,000,000 | ---D | C] -- C:\Down
[2011/12/29 01:07:00 | 000,000,000 | ---D | C] -- C:\Perfect World Entertainment
[2011/12/29 00:05:17 | 000,000,000 | ---D | C] -- C:\Users\Lucas\Documents\SavedGames
[2011/12/28 22:48:35 | 000,000,000 | ---D | C] -- C:\Users\Lucas\Documents\Hard Reset
[2011/12/28 20:13:16 | 000,000,000 | ---D | C] -- C:\Users\Lucas\Documents\Anomaly Warzone Earth
[2011/12/28 19:22:09 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{DED01767-0A93-47B6-832C-7A496A73EC7C}
[2011/12/28 19:21:25 | 000,000,000 | ---D | C] -- C:\Users\Lucas\AppData\Local\{385B5AF9-EAF5-4C52-95D5-D406C59052E9}
[2010/01/18 02:23:15 | 000,057,344 | ---- | C] ( ) -- C:\Windows\System32\rsnpstd2.dll
[2010/01/18 02:23:15 | 000,036,864 | ---- | C] ( ) -- C:\Windows\System32\vsnpstd2.dll
[2010/01/18 02:23:13 | 000,053,248 | ---- | C] ( ) -- C:\Windows\System32\csnpstd2.dll
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2012/01/27 00:27:09 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Lucas\Desktop\OTL.exe
[2012/01/27 00:00:01 | 000,000,386 | ---- | M] () -- C:\Windows\tasks\Ad-Aware Update (Weekly).job
[2012/01/26 23:59:06 | 000,001,050 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/01/26 23:54:25 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/01/26 23:54:22 | 2614,812,672 | -HS- | M] () -- C:\hiberfil.sys
[2012/01/26 23:43:32 | 000,001,054 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/01/26 03:25:37 | 000,016,352 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/01/26 03:25:36 | 000,016,352 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/01/25 01:44:08 | 000,000,064 | ---- | M] () -- C:\Windows\System32\rp_stats.dat
[2012/01/25 01:44:08 | 000,000,044 | ---- | M] () -- C:\Windows\System32\rp_rules.dat
[2012/01/24 19:45:09 | 000,002,290 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2012/01/22 13:05:07 | 000,001,039 | ---- | M] () -- C:\Users\Lucas\Desktop\Dropbox.lnk
[2012/01/22 13:03:15 | 000,001,019 | ---- | M] () -- C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
[2012/01/15 18:16:58 | 000,000,918 | ---- | M] () -- C:\Users\Lucas\Desktop\Repulse.lnk
[2012/01/11 03:06:27 | 000,713,750 | ---- | M] () -- C:\Windows\System32\prfh0416.dat
[2012/01/11 03:06:27 | 000,661,592 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/01/11 03:06:27 | 000,152,082 | ---- | M] () -- C:\Windows\System32\prfc0416.dat
[2012/01/11 03:06:27 | 000,125,782 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/01/10 23:20:14 | 000,001,984 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2012/01/03 22:48:42 | 000,354,176 | ---- | M] (DivX, Inc.) -- C:\Windows\System32\DivXControlPanelApplet.cpl
[2011/12/30 08:18:18 | 000,444,952 | ---- | M] (Creative Labs) -- C:\Windows\System32\wrap_oal.dll
[2011/12/30 08:18:18 | 000,109,080 | ---- | M] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\System32\OpenAL32.dll
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2012/01/25 14:47:32 | 000,000,386 | ---- | C] () -- C:\Windows\tasks\Ad-Aware Update (Weekly).job
[2012/01/22 13:05:07 | 000,001,039 | ---- | C] () -- C:\Users\Lucas\Desktop\Dropbox.lnk
[2012/01/22 13:03:15 | 000,001,019 | ---- | C] () -- C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
[2012/01/15 19:08:21 | 000,005,174 | ---- | C] () -- C:\Windows\System32\nppt9x.vxd
[2012/01/15 18:16:58 | 000,000,918 | ---- | C] () -- C:\Users\Lucas\Desktop\Repulse.lnk
[2012/01/10 23:20:14 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk
[2012/01/10 23:20:14 | 000,001,984 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2011/12/13 00:29:49 | 000,016,432 | ---- | C] () -- C:\Windows\System32\lsdelete.exe
[2011/07/11 00:09:42 | 000,000,032 | R--- | C] () -- C:\ProgramData\hash.dat
[2011/07/01 17:11:15 | 000,080,896 | ---- | C] () -- C:\Windows\System32\RDVGHelper.exe
[2011/07/01 17:09:24 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2011/04/23 06:50:19 | 000,000,064 | ---- | C] () -- C:\Windows\System32\rp_stats.dat
[2011/04/23 06:50:19 | 000,000,044 | ---- | C] () -- C:\Windows\System32\rp_rules.dat
[2011/04/16 04:41:30 | 000,001,456 | ---- | C] () -- C:\Users\Lucas\AppData\Local\Adobe Salvar para a Web 12.0 Prefs
[2011/04/10 22:06:26 | 000,012,920 | ---- | C] () -- C:\Windows\System32\apl001.sys
[2011/04/10 22:06:26 | 000,010,872 | ---- | C] () -- C:\Windows\System32\apf001.sys
[2011/04/08 03:34:09 | 000,065,536 | ---- | C] () -- C:\Windows\IFinst27.exe
[2010/08/31 23:32:52 | 000,000,025 | ---- | C] () -- C:\Windows\wpd99.drv
[2010/08/31 23:32:51 | 000,051,716 | ---- | C] () -- C:\Windows\System32\pdf995mon.dll
[2010/06/17 21:08:41 | 000,000,093 | ---- | C] () -- C:\Users\Lucas\AppData\Local\fusioncache.dat
[2010/06/17 21:05:24 | 000,022,328 | ---- | C] () -- C:\Users\Lucas\AppData\Roaming\PnkBstrK.sys
[2010/05/16 14:19:15 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010/04/02 17:17:34 | 000,179,091 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat
[2010/01/18 04:06:44 | 001,481,728 | ---- | C] () -- C:\Windows\System32\LegitCheckControl.DLL
[2010/01/18 02:23:16 | 000,307,200 | ---- | C] () -- C:\Windows\vsnpstd2.exe
[2010/01/18 02:23:15 | 000,343,680 | ---- | C] () -- C:\Windows\System32\drivers\snpstd2.sys
[2010/01/18 02:23:15 | 000,015,532 | ---- | C] () -- C:\Windows\snpstd2.ini
[2009/08/05 00:58:37 | 000,713,750 | ---- | C] () -- C:\Windows\System32\prfh0416.dat
[2009/08/05 00:58:37 | 000,323,154 | ---- | C] () -- C:\Windows\System32\prfi0416.dat
[2009/08/05 00:58:37 | 000,152,082 | ---- | C] () -- C:\Windows\System32\prfc0416.dat
[2009/08/05 00:58:37 | 000,038,536 | ---- | C] () -- C:\Windows\System32\prfd0416.dat
[2009/08/03 15:07:42 | 000,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll
[2009/08/03 15:07:42 | 000,230,768 | ---- | C] () -- C:\Windows\System32\OGAEXEC.exe
[2009/07/14 02:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/14 02:33:53 | 003,761,848 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2009/07/14 00:05:48 | 000,661,592 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2009/07/14 00:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2009/07/14 00:05:48 | 000,125,782 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2009/07/14 00:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2009/07/14 00:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2009/07/14 00:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2009/07/13 21:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/13 21:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/07/13 21:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009/06/10 19:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2002/10/15 20:54:04 | 000,153,088 | ---- | C] () -- C:\Windows\System32\unrar.dll
[1996/04/03 17:33:26 | 000,005,248 | ---- | C] () -- C:\Windows\System32\giveio.sys
[color=#E56717]========== LOP Check ==========[/color]
[2011/06/14 19:52:48 | 000,000,000 | ---D | M] -- C:\Users\Lucas\AppData\Roaming\Alien Skin
[2010/11/30 21:51:12 | 000,000,000 | ---D | M] -- C:\Users\Lucas\AppData\Roaming\Atlus
[2011/10/02 00:29:06 | 000,000,000 | ---D | M] -- C:\Users\Lucas\AppData\Roaming\AtomZombieData
[2011/01/21 17:34:20 | 000,000,000 | ---D | M] -- C:\Users\Lucas\AppData\Roaming\Autodesk
[2011/12/26 22:45:21 | 000,000,000 | ---D | M] -- C:\Users\Lucas\AppData\Roaming\Beat Hazard
[2010/01/21 00:13:02 | 000,000,000 | ---D | M] -- C:\Users\Lucas\AppData\Roaming\BrOffice.org
[2011/12/26 23:24:49 | 000,000,000 | ---D | M] -- C:\Users\Lucas\AppData\Roaming\Broken Rules
[2010/04/13 00:15:25 | 000,000,000 | ---D | M] -- C:\Users\Lucas\AppData\Roaming\BSplayer
[2010/04/13 00:04:04 | 000,000,000 | ---D | M] -- C:\Users\Lucas\AppData\Roaming\BSplayer Pro
[2011/11/20 00:29:19 | 000,000,000 | ---D | M] -- C:\Users\Lucas\AppData\Roaming\Crayon Physics Deluxe
[2010/07/07 22:16:46 | 000,000,000 | ---D | M] -- C:\Users\Lucas\AppData\Roaming\DeskSoft
[2011/03/20 03:57:14 | 000,000,000 | ---D | M] -- C:\Users\Lucas\AppData\Roaming\Dev-Cpp
[2012/01/26 23:55:32 | 000,000,000 | ---D | M] -- C:\Users\Lucas\AppData\Roaming\Dropbox
[2011/05/21 01:07:40 | 000,000,000 | ---D | M] -- C:\Users\Lucas\AppData\Roaming\fltk.org
[2010/01/18 01:19:54 | 000,000,000 | ---D | M] -- C:\Users\Lucas\AppData\Roaming\InterTrust
[2011/04/17 19:42:20 | 000,000,000 | ---D | M] -- C:\Users\Lucas\AppData\Roaming\Lazy 8 Studios
[2010/11/12 08:01:56 | 000,000,000 | ---D | M] -- C:\Users\Lucas\AppData\Roaming\LG Electronics
[2012/01/15 14:19:55 | 000,000,000 | ---D | M] -- C:\Users\Lucas\AppData\Roaming\NationRed
[2010/07/07 23:42:43 | 000,000,000 | ---D | M] -- C:\Users\Lucas\AppData\Roaming\NetMeter
[2010/11/12 08:57:27 | 000,000,000 | ---D | M] -- C:\Users\Lucas\AppData\Roaming\Nokia
[2010/11/12 08:57:28 | 000,000,000 | ---D | M] -- C:\Users\Lucas\AppData\Roaming\Nokia Ovi Suite
[2010/04/16 20:39:32 | 000,000,000 | ---D | M] -- C:\Users\Lucas\AppData\Roaming\Notepad++
[2010/11/12 08:57:11 | 000,000,000 | ---D | M] -- C:\Users\Lucas\AppData\Roaming\PC Suite
[2011/04/08 03:35:38 | 000,000,000 | ---D | M] -- C:\Users\Lucas\AppData\Roaming\Rovio
[2010/11/27 19:33:14 | 000,000,000 | ---D | M] -- C:\Users\Lucas\AppData\Roaming\runic games
[2010/08/02 22:56:14 | 000,000,000 | ---D | M] -- C:\Users\Lucas\AppData\Roaming\TeamViewer
[2011/07/26 21:19:29 | 000,000,000 | ---D | M] -- C:\Users\Lucas\AppData\Roaming\TweakNow RegCleaner
[2011/07/26 21:18:37 | 000,000,000 | ---D | M] -- C:\Users\Lucas\AppData\Roaming\TweakNow RegCleaner 2011
[2010/12/02 21:21:42 | 000,000,000 | ---D | M] -- C:\Users\Lucas\AppData\Roaming\Unity
[2011/07/01 21:10:17 | 000,000,000 | ---D | M] -- C:\Users\Lucas\AppData\Roaming\uTorrent
[2010/07/04 22:42:13 | 000,000,000 | ---D | M] -- C:\Users\Lucas\AppData\Roaming\Wireshark
[2012/01/27 00:00:01 | 000,000,386 | ---- | M] () -- C:\Windows\Tasks\Ad-Aware Update (Weekly).job
[2011/12/04 14:54:53 | 000,032,608 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[color=#E56717]========== Purity Check ==========[/color]
[color=#E56717]========== Custom Scans ==========[/color]
[color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
[2009/07/13 23:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\drivers\AGP440.sys
[2009/07/13 23:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_a97a2a0d0fbc6696\AGP440.sys
[2009/07/13 23:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_b9e9435f20046eeb\AGP440.sys
[2009/07/13 23:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_bc1a57271cf2f285\AGP440.sys
[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
[2009/07/13 23:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\drivers\atapi.sys
[2009/07/13 23:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_fab873f3e8a3315c\atapi.sys
[2009/07/13 23:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_dd0e7e3d82dd640d\atapi.sys
[2009/07/13 23:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_df3f92057fcbe7a7\atapi.sys
[color=#A23BEC]< MD5 for: CNGAUDIT.DLL >[/color]
[2009/07/13 23:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\System32\cngaudit.dll
[2009/07/13 23:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[color=#A23BEC]< MD5 for: IASTORV.SYS >[/color]
[2011/03/11 03:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62D8B76E -- C:\Windows\System32\drivers\iaStorV.sys
[2011/03/11 03:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62D8B76E -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_neutral_0bcee2057afcc090\iaStorV.sys
[2011/03/11 03:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62D8B76E -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.17577_none_b0daddb9e6380745\iaStorV.sys
[2011/03/11 03:43:55 | 000,332,160 | ---- | M] (Intel Corporation) MD5=71F1A494FEDF4B33C02C4A6A28D6D9E9 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7600.16778_none_aef580fde910b4b0\iaStorV.sys
[2011/03/11 03:28:00 | 000,332,160 | ---- | M] (Intel Corporation) MD5=778D0E6D7D9EBA0C403BADBAAD41DB20 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.21680_none_b152a892ff64119f\iaStorV.sys
[2009/07/13 23:20:36 | 000,332,352 | ---- | M] (Intel Corporation) MD5=934AF4D7C5F457B9F0743F4299B77B67 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_aee7a89be91b9000\iaStorV.sys
[2010/11/20 10:29:54 | 000,332,160 | ---- | M] (Intel Corporation) MD5=A3CAE5D281DB4CFF7CFF8233507EE5AD -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_neutral_668286aa35d55928\iaStorV.sys
[2010/11/20 10:29:54 | 000,332,160 | ---- | M] (Intel Corporation) MD5=A3CAE5D281DB4CFF7CFF8233507EE5AD -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.17514_none_b118bc63e60a139a\iaStorV.sys
[2011/03/11 03:52:21 | 000,332,160 | ---- | M] (Intel Corporation) MD5=B9039A34C2F8769490DCC494E2402445 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7600.20921_none_afae2d45020c148b\iaStorV.sys
[color=#A23BEC]< MD5 for: NETLOGON.DLL >[/color]
[2010/11/20 10:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\System32\netlogon.dll
[2010/11/20 10:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_ffbf212e963c0162\netlogon.dll
[2009/07/13 23:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_fd8e0d66994d7dc8\netlogon.dll
[color=#A23BEC]< MD5 for: NVSTOR.SYS >[/color]
[2011/03/11 03:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF6719A8A4 -- C:\Windows\System32\drivers\nvstor.sys
[2011/03/11 03:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF6719A8A4 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_0276fc3b3ea60d41\nvstor.sys
[2011/03/11 03:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF6719A8A4 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_3ba44e691d6eb11d\nvstor.sys
[2011/03/11 03:44:01 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4520B63899E867F354EE012D34E11536 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16778_none_39bef1ad20475e88\nvstor.sys
[2011/03/11 03:28:10 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=66D468654A58594F5F3BA63D5AD5B1AF -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_3c1c1942369abb77\nvstor.sys
[2011/03/11 03:52:25 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=8A7583A3B58D3EEB28BB26626526BC91 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.20921_none_3a779df43942be63\nvstor.sys
[2010/11/20 10:30:06 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=9283C58EBAA2618F93482EB5DABCEC82 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_dd659ed032d28a14\nvstor.sys
[2010/11/20 10:30:06 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=9283C58EBAA2618F93482EB5DABCEC82 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_3be22d131d40bd72\nvstor.sys
[2009/07/13 23:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) MD5=C99F251A5DE63C6F129CF71933ACED0F -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_39b1194b205239d8\nvstor.sys
[color=#A23BEC]< MD5 for: SCECLI.DLL >[/color]
[2009/07/13 23:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_37e4387f3a6f0483\scecli.dll
[2010/11/20 10:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\System32\scecli.dll
[2010/11/20 10:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_3a154c47375d881d\scecli.dll
[color=#A23BEC]< %SYSTEMDRIVE%\*.* >[/color]
[2010/01/18 02:25:49 | 000,000,003 | ---- | M] () -- C:\7Loader.TAG
[2012/01/26 23:54:21 | 000,173,200 | ---- | M] () -- C:\aaw7boot.log
[2009/06/10 19:42:20 | 000,000,024 | ---- | M] () -- C:\autoexec.bat
[2008/09/23 18:14:22 | 000,000,211 | -H-- | M] () -- C:\Boot.BAK
[2010/01/18 06:00:19 | 000,000,355 | RHS- | M] () -- C:\Boot.ini.saved
[2001/10/28 13:06:10 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin
[2010/11/20 10:40:07 | 000,383,786 | RHS- | M] () -- C:\bootmgr
[2010/01/18 06:00:21 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2010/03/11 23:10:20 | 000,140,408 | ---- | M] () -- C:\Comix-Zone-(4)-[!].gs0
[2010/03/11 23:11:35 | 000,140,408 | ---- | M] () -- C:\Comix-Zone-(4)-[!].gs1
[2010/03/11 23:13:54 | 000,000,050 | ---- | M] () -- C:\Comix-Zone-(4)-[!].pat
[2009/06/10 19:42:20 | 000,000,010 | ---- | M] () -- C:\config.sys
[2011/08/04 19:12:25 | 000,203,316 | RHS- | M] () -- C:\grldr
[2009/08/02 09:59:51 | 000,171,136 | ---- | M] () -- C:\grldr.bak
[2012/01/26 23:54:22 | 2614,812,672 | -HS- | M] () -- C:\hiberfil.sys
[2010/04/13 22:39:09 | 000,230,424 | ---- | M] () -- C:\img2-001.raw
[2008/09/23 18:19:08 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010/01/18 01:12:33 | 000,000,087 | ---- | M] () -- C:\lan.log
[2008/09/23 18:19:08 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2002/01/05 04:38:38 | 000,054,784 | ---- | M] (Microsoft Corporation) -- C:\msvci70.dll
[2004/08/03 23:38:34 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2008/09/23 20:45:21 | 000,251,696 | RHS- | M] () -- C:\ntldr
[2010/04/02 08:34:38 | 000,000,000 | ---- | M] () -- C:\OrbPVR.db
[2012/01/26 23:54:22 | 3486,416,896 | -HS- | M] () -- C:\pagefile.sys
[2008/10/15 14:45:14 | 000,000,012 | -H-- | M] () -- C:\reachd.cz
[2010/01/18 01:21:46 | 000,000,207 | ---- | M] () -- C:\realtek.log
[2010/01/18 01:21:47 | 000,000,477 | ---- | M] () -- C:\RHDSetup.log
[2008/10/08 20:57:39 | 000,000,232 | -H-- | M] () -- C:\sqmdata00.sqm
[2008/10/08 20:57:39 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt00.sqm
[2010/11/12 07:52:01 | 000,000,000 | ---- | M] () -- C:\Tech_Vista.log
[2008/11/19 09:35:37 | 000,000,024 | ---- | M] () -- C:\url_history.xml
[2011/08/04 19:12:28 | 000,000,003 | RHS- | M] () -- C:\win7ldr
[2009/09/19 17:42:17 | 000,000,000 | ---- | M] () -- C:\winlog.txt
[color=#A23BEC]< %PROGRAMFILES%\*.* >[/color]
[2009/07/14 02:41:57 | 000,000,174 | -HS- | M] () -- C:\Program Files\desktop.ini
[color=#A23BEC]< %PROGRAMFILES%\Internet Explorer\*.* >[/color]
[2011/05/07 00:36:09 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\ExtExport.exe
[2011/05/07 00:36:10 | 000,002,535 | ---- | M] () -- C:\Program Files\Internet Explorer\ie9props.propdesc
[2011/05/07 00:36:09 | 000,107,008 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\iecleanup.exe
[2011/05/07 00:36:09 | 000,307,200 | ---- | M] () -- C:\Program Files\Internet Explorer\iediagcmd.exe
[2011/11/03 20:42:14 | 000,678,912 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\iedvtool.dll
[2011/05/07 00:36:08 | 000,466,432 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\ieinstal.exe
[2011/05/07 00:36:08 | 000,222,720 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\ielowutil.exe
[2011/05/07 00:36:07 | 000,193,536 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\ieproxy.dll
[2011/11/03 20:37:40 | 000,194,048 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\IEShims.dll
[2010/11/05 00:20:53 | 000,005,436 | ---- | M] () -- C:\Program Files\Internet Explorer\iessetup.ceb
[2009/07/13 23:15:28 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\iessetup.dll
[2011/05/07 00:36:10 | 000,748,336 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\iexplore.exe
[2011/05/07 00:36:09 | 000,386,560 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\jsdbgui.dll
[2011/05/07 00:36:06 | 000,104,448 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\jsdebuggeride.dll
[2011/05/07 00:36:07 | 000,049,664 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\JSProfilerCore.dll
[2011/05/07 00:36:09 | 000,149,504 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\jsprofilerui.dll
[2009/06/10 19:14:14 | 000,265,720 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\msdbg2.dll
[2011/05/07 00:36:07 | 000,301,056 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\networkinspection.dll
[2009/06/10 19:14:15 | 000,355,832 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\pdm.dll
[2011/11/03 21:16:15 | 000,141,112 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\sqmapi.dll
[color=#A23BEC]< %systemroot%\*. /mp /s >[/color]
[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
[2011/05/07 00:36:08 | 000,353,792 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\dxtmsft.dll
[2011/05/07 00:36:08 | 000,223,232 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\dxtrans.dll
[color=#A23BEC]< %systemroot%\system32\config\*.sav >[/color]
[color=#A23BEC]< %systemroot%\system32\drivers\*.sys /lockedfiles >[/color]
[color=#A23BEC]< %systemroot%\system32\drivers\*.sys /90 >[/color]
[2011/11/28 15:51:50 | 000,020,568 | ---- | M] (AVAST Software) -- C:\Windows\system32\drivers\aswFsBlk.sys
[2011/11/28 15:52:07 | 000,055,128 | ---- | M] (AVAST Software) -- C:\Windows\system32\drivers\aswMonFlt.sys
[2011/11/28 15:52:19 | 000,034,392 | ---- | M] (AVAST Software) -- C:\Windows\system32\drivers\aswRdr.sys
[2011/11/28 15:53:53 | 000,435,032 | ---- | M] (AVAST Software) -- C:\Windows\system32\drivers\aswSnx.sys
[2011/11/28 15:53:35 | 000,314,456 | ---- | M] (AVAST Software) -- C:\Windows\system32\drivers\aswSP.sys
[2011/11/28 15:52:16 | 000,052,952 | ---- | M] (AVAST Software) -- C:\Windows\system32\drivers\aswTdi.sys
[2011/12/10 15:24:06 | 000,020,464 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\system32\drivers\mbam.sys
[color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color]
< End of report >