cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ÿþOTL logfile created on: 6/12/2015 17:49:50 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Layza\Desktop
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000416 | Country: Brasil | Language: PTB | Date Format: d/M/yyyy

1013,42 Mb Total Physical Memory | 533,93 Mb Available Physical Memory | 52,69% Memory free
2,38 Gb Paging File | 1,98 Gb Available in Paging File | 83,24% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Arquivos de programas
Drive C: | 58,59 Gb Total Space | 51,13 Gb Free Space | 87,26% Space Free | Partition Type: NTFS
Drive D: | 90,45 Gb Total Space | 90,38 Gb Free Space | 99,93% Space Free | Partition Type: NTFS

Computer Name: LAYZA-7557B1BD6 | User Name: Layza | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2015/12/06 17:48:39 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Layza\Desktop\OTL.com
PRC - [2015/10/30 00:22:40 | 000,462,504 | ---- | M] (Mozilla Corporation) -- C:\Arquivos de programas\Mozilla Firefox\firefox.exe
PRC - [2004/08/04 01:45:34 | 001,034,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe


[color=#E56717]========== Modules (No Company Name) ==========[/color]


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)
SRV - [2015/12/06 14:12:29 | 000,226,440 | ---- | M] (AVAST Software) [Disabled | Stopped] -- C:\Arquivos de programas\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2015/10/30 00:22:54 | 000,147,624 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Arquivos de programas\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\qmklr.sys -- (amsint32)
DRV - [2015/12/06 14:12:32 | 000,435,976 | ---- | M] (AVAST Software) [File_System | Disabled | Stopped] -- C:\WINDOWS\system32\drivers\aswSP.sys -- (aswSP)
DRV - [2015/12/06 14:12:32 | 000,209,432 | ---- | M] (AVAST Software) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\aswVmm.sys -- (aswVmm)
DRV - [2015/12/06 14:12:32 | 000,165,104 | ---- | M] (AVAST Software) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\aswStmXP.sys -- (aswStmXP)
DRV - [2015/12/06 14:12:32 | 000,081,168 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2015/12/06 14:12:32 | 000,058,016 | ---- | M] (AVAST Software) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2015/12/06 14:12:32 | 000,055,200 | ---- | M] (AVAST Software) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2015/12/06 14:12:32 | 000,049,776 | ---- | M] (AVAST Software) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\aswRvrt.sys -- (aswRvrt)
DRV - [2015/12/06 14:12:32 | 000,024,016 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\aswHwid.sys -- (aswHwid)
DRV - [2015/12/06 14:12:28 | 000,794,952 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2014/06/05 15:05:18 | 000,427,992 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2013/12/10 20:20:44 | 005,630,168 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService)
DRV - [2009/11/18 07:17:00 | 001,395,800 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)
DRV - [2009/11/18 07:16:00 | 001,691,480 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-507921405-1326574676-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = &http://home.microsoft.com/intl/br/access/allinone.asp
IE - HKU\S-1-5-21-507921405-1326574676-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/pt-br/?ocid=iehp
IE - HKU\S-1-5-21-507921405-1326574676-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = pt-br
IE - HKU\S-1-5-21-507921405-1326574676-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 1A AD 27 F4 F6 2F D1 01 [binary data]
IE - HKU\S-1-5-21-507921405-1326574676-682003330-1003\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-507921405-1326574676-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.search.cohort: "web.xml"
FF - prefs.js..browser.search.countryCode: "BR"
FF - prefs.js..browser.search.region: "BR"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:42.0
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Arquivos de programas\AVAST Software\Avast\WebRep\FF [2015/12/06 14:12:33 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 42.0\extensions\\Components: C:\Arquivos de programas\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 42.0\extensions\\Plugins: C:\Arquivos de programas\Mozilla Firefox\plugins

[2015/12/06 04:13:41 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Layza\Dados de aplicativos\Mozilla\Extensions
[2015/12/06 06:15:28 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Layza\Dados de aplicativos\Mozilla\Firefox\Profiles\f455fl12.default\extensions
[2015/12/06 06:15:28 | 005,921,416 | ---- | M] () (No name found) -- C:\Documents and Settings\Layza\Dados de aplicativos\Mozilla\Firefox\Profiles\f455fl12.default\extensions\firefox@mega.co.nz.xpi
[2015/12/06 04:13:30 | 000,000,000 | ---D | M] (No name found) -- C:\Arquivos de programas\Mozilla Firefox\browser\extensions
[2015/12/06 04:13:30 | 000,000,000 | ---D | M] (Default) -- C:\Arquivos de programas\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

O1 HOSTS File: ([2001/10/28 10:06:36 | 000,000,776 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Arquivos de programas\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4 - HKLM..\Run: [AvastUI.exe] C:\Arquivos de programas\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 1
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-507921405-1326574676-682003330-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-507921405-1326574676-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 36
O7 - HKU\S-1-5-21-507921405-1326574676-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = FF FF FF FF [binary data]
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E82BF7BD-F2E9-4D22-88E6-B28DDD9C4D8F}: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Arquivos de programas\Arquivos comuns\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Arquivos de programas\Arquivos comuns\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Arquivos de programas\Arquivos comuns\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Minha página inicial atual) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Alegria.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Alegria.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2015/12/06 03:46:51 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2015/12/06 04:40:15 | 000,000,000 | ---D | M] - C:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2015/12/06 05:10:03 | 000,000,000 | ---D | M] - D:\autorun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2015/12/06 17:49:06 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Layza\Desktop\OTL.com
[2015/12/06 14:13:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\AVAST Software
[2015/12/06 14:12:36 | 000,209,432 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswVmm.sys
[2015/12/06 14:12:36 | 000,165,104 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswStmXP.sys
[2015/12/06 14:12:36 | 000,058,016 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2015/12/06 14:12:35 | 000,435,976 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2015/12/06 14:12:35 | 000,081,168 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswMonFlt.sys
[2015/12/06 14:12:35 | 000,055,200 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2015/12/06 14:12:35 | 000,049,776 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRvrt.sys
[2015/12/06 14:12:35 | 000,024,016 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswHwid.sys
[2015/12/06 14:12:34 | 000,794,952 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2015/12/06 14:12:33 | 000,322,760 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2015/12/06 14:12:30 | 000,043,112 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2015/12/06 14:08:06 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\AVAST Software
[2015/12/06 14:07:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dados de aplicativos\AVAST Software
[2015/12/06 06:31:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs
[2015/12/06 06:31:25 | 000,000,000 | ---D | C] -- C:\Riot Games
[2015/12/06 06:31:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\NewFeature1
[2015/12/06 06:30:51 | 000,000,000 | ---D | C] -- C:\League of Legends
[2015/12/06 06:26:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles
[2015/12/06 05:49:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2015/12/06 05:49:49 | 000,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- C:\WINDOWS\System32\CSVer.dll
[2015/12/06 05:49:49 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\Intel
[2015/12/06 05:49:34 | 000,000,000 | ---D | C] -- C:\Drivers
[2015/12/06 05:38:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2015/12/06 05:29:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dados de aplicativos\Riot Games
[2015/12/06 05:23:08 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Layza\PrivacIE
[2015/12/06 05:22:43 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Layza\IECompatCache
[2015/12/06 05:19:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump
[2015/12/06 05:10:49 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2015/12/06 05:07:06 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\MSBuild
[2015/12/06 05:07:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2015/12/06 05:07:02 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\Reference Assemblies
[2015/12/06 05:07:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-us
[2015/12/06 05:06:31 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly
[2015/12/06 05:06:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET
[2015/12/06 05:05:44 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\MSXML 6.0
[2015/12/06 04:58:15 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Layza\IETldCache
[2015/12/06 04:53:39 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
[2015/12/06 04:50:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2015/12/06 04:49:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dados de aplicativos\Adobe
[2015/12/06 04:49:36 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\Adobe
[2015/12/06 04:49:33 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\Arquivos comuns\Adobe AIR
[2015/12/06 04:49:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Layza\Dados de aplicativos\Macromedia
[2015/12/06 04:49:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Layza\Dados de aplicativos\Adobe
[2015/12/06 04:49:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Layza\Configurações locais\Dados de aplicativos\Adobe
[2015/12/06 04:49:19 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2015/12/06 04:49:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pt-BR
[2015/12/06 04:40:15 | 000,000,000 | ---D | C] -- C:\autorun.inf
[2015/12/06 04:36:50 | 000,000,000 | ---D | C] -- C:\PenClean
[2015/12/06 04:33:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM
[2015/12/06 04:32:51 | 000,359,016 | ---- | C] (Realtek Semiconductor Crop.) -- C:\WINDOWS\vncutil.exe
[2015/12/06 04:32:51 | 000,084,584 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE
[2015/12/06 04:32:50 | 009,721,960 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTLCPL.EXE
[2015/12/06 04:32:50 | 005,630,168 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys
[2015/12/06 04:32:50 | 001,523,416 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlUpd.exe
[2015/12/06 04:32:50 | 000,891,976 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTSndMgr.CPL
[2015/12/06 04:32:49 | 002,180,712 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\MicCal.exe
[2015/12/06 04:32:49 | 001,395,800 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\Monfilt.sys
[2015/12/06 04:32:49 | 000,129,640 | ---- | C] (Realtek Semiconductor) -- C:\WINDOWS\RtkAudioService.exe
[2015/12/06 04:32:49 | 000,087,256 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RtkCoInstIIXP.dll
[2015/12/06 04:32:49 | 000,011,368 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RtkCoLDRXP.dll
[2015/12/06 04:32:48 | 001,691,480 | ---- | C] (Creative) -- C:\WINDOWS\System32\drivers\Ambfilt.sys
[2015/12/06 04:32:48 | 000,285,288 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\ALSNDMGR.CPL
[2015/12/06 04:32:47 | 002,815,592 | ---- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE
[2015/12/06 04:32:47 | 000,064,104 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\ALCMTR.EXE
[2015/12/06 04:32:45 | 002,080,472 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlExUpd.dll
[2015/12/06 04:32:26 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\Arquivos comuns\InstallShield
[2015/12/06 04:31:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Layza\Configurações locais\Dados de aplicativos\AvgSetupLog
[2015/12/06 04:31:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Layza\Configurações locais\Dados de aplicativos\Avg
[2015/12/06 04:30:34 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Dados de aplicativos\Common Files
[2015/12/06 04:30:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Layza\Configurações locais\Dados de aplicativos\MFAData
[2015/12/06 04:30:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dados de aplicativos\MFAData
[2015/12/06 04:30:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Layza\Configurações locais\Dados de aplicativos\Avg2015
[2015/12/06 04:17:18 | 002,686,368 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpdv32.dll
[2015/12/06 04:17:18 | 000,645,632 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxcfg.exe
[2015/12/06 04:17:18 | 000,304,640 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrita.lrc
[2015/12/06 04:17:18 | 000,303,104 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfra.lrc
[2015/12/06 04:17:18 | 000,294,912 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igldev32.dll
[2015/12/06 04:17:18 | 000,294,912 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptg.lrc
[2015/12/06 04:17:18 | 000,282,624 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrsve.lrc
[2015/12/06 04:17:18 | 000,282,624 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcsy.lrc
[2015/12/06 04:17:18 | 000,280,576 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdan.lrc
[2015/12/06 04:17:18 | 000,279,552 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnor.lrc
[2015/12/06 04:17:18 | 000,279,040 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtrk.lrc
[2015/12/06 04:17:18 | 000,262,656 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtha.lrc
[2015/12/06 04:17:18 | 000,252,416 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrara.lrc
[2015/12/06 04:17:18 | 000,249,856 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrheb.lrc
[2015/12/06 04:17:18 | 000,206,848 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrjpn.lrc
[2015/12/06 04:17:18 | 000,205,312 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrkor.lrc
[2015/12/06 04:17:18 | 000,183,808 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpgd32.dll
[2015/12/06 04:17:18 | 000,093,696 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\hccutils.dll
[2015/12/06 04:17:18 | 000,057,344 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxprd32.dll
[2015/12/06 04:17:18 | 000,051,712 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxsrvc.dll
[2015/12/06 04:17:18 | 000,023,552 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxexps.dll
[2015/12/06 04:17:17 | 005,702,656 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxress.dll
[2015/12/06 04:17:17 | 003,773,440 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpdx32.dll
[2015/12/06 04:17:17 | 002,342,912 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\iglicd32.dll
[2015/12/06 04:17:17 | 000,310,784 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrell.lrc
[2015/12/06 04:17:17 | 000,303,616 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdeu.lrc
[2015/12/06 04:17:17 | 000,303,104 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxresp.lrc
[2015/12/06 04:17:17 | 000,299,008 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnld.lrc
[2015/12/06 04:17:17 | 000,291,328 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrrus.lrc
[2015/12/06 04:17:17 | 000,289,280 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptb.lrc
[2015/12/06 04:17:17 | 000,288,256 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrhun.lrc
[2015/12/06 04:17:17 | 000,287,744 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrplk.lrc
[2015/12/06 04:17:17 | 000,282,624 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrsky.lrc
[2015/12/06 04:17:17 | 000,281,088 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfin.lrc
[2015/12/06 04:17:17 | 000,277,504 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrslv.lrc
[2015/12/06 04:17:17 | 000,275,968 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrenu.lrc
[2015/12/06 04:17:17 | 000,199,168 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxpph.dll
[2015/12/06 04:17:17 | 000,179,712 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcht.lrc
[2015/12/06 04:17:17 | 000,178,176 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrchs.lrc
[2015/12/06 04:17:17 | 000,155,648 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxCoIn_v5029.dll
[2015/12/06 04:17:17 | 000,130,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxdo.dll
[2015/12/06 04:17:17 | 000,119,296 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxcpl.cpl
[2015/12/06 04:17:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE
[2015/12/06 04:17:16 | 000,993,816 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpun.exe
[2015/12/06 04:17:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang
[2015/12/06 04:16:54 | 000,000,000 | ---D | C] -- C:\Intel
[2015/12/06 04:15:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Layza\Meus documentos\Downloads
[2015/12/06 04:13:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Layza\Dados de aplicativos\Mozilla
[2015/12/06 04:13:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Layza\Configurações locais\Dados de aplicativos\Mozilla
[2015/12/06 04:13:30 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\Mozilla Maintenance Service
[2015/12/06 04:13:28 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\Mozilla Firefox
[2015/12/06 04:08:54 | 000,427,992 | ---- | C] (Realtek Semiconductor Corporation ) -- C:\WINDOWS\System32\drivers\Rtenicxp.sys
[2015/12/06 04:08:54 | 000,102,416 | ---- | C] (Realtek Semiconductor Corporation) -- C:\WINDOWS\System32\RTNUninst32.dll
[2015/12/06 04:08:54 | 000,076,872 | ---- | C] (Realtek Semiconductor Corporation) -- C:\WINDOWS\System32\RtNicProp32.dll
[2015/12/06 04:08:50 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\Realtek
[2015/12/06 04:08:49 | 000,000,000 | -H-D | C] -- C:\Arquivos de programas\InstallShield Installation Information
[2015/12/06 04:07:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Layza\Dados de aplicativos\Identities
[2015/12/06 04:07:37 | 000,000,000 | -H-D | C] -- C:\Arquivos de programas\Uninstall Information
[2015/12/06 04:07:36 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Layza\Meus documentos\Minhas músicas
[2015/12/06 04:07:36 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Layza\Meus documentos\Minhas imagens
[2015/12/06 04:07:28 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Layza\Ambiente de rede
[2015/12/06 04:07:28 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Layza\Ambiente de impressão
[2015/12/06 04:07:27 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Layza\Dados de aplicativos\Microsoft
[2015/12/06 04:07:27 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Layza\SendTo
[2015/12/06 04:07:27 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Layza\Recent
[2015/12/06 04:07:27 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Layza\Dados de aplicativos
[2015/12/06 04:07:27 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Layza\Meus documentos
[2015/12/06 04:07:27 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Layza\Menu Iniciar
[2015/12/06 04:07:27 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Layza\Menu Iniciar\Programas\Inicializar
[2015/12/06 04:07:27 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Layza\Favoritos
[2015/12/06 04:07:27 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Layza\Menu Iniciar\Programas\Acessórios
[2015/12/06 04:07:27 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Layza\Cookies
[2015/12/06 04:07:27 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Layza\Modelos
[2015/12/06 04:07:27 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Layza\Configurações locais
[2015/12/06 04:07:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Layza\Configurações locais\Dados de aplicativos\Microsoft
[2015/12/06 04:07:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Layza\Desktop
[2015/12/06 04:06:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2015/12/06 04:06:50 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2015/12/06 04:06:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2015/12/06 04:06:49 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Dados de aplicativos\Microsoft
[2015/12/06 04:06:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Configurações locais\Dados de aplicativos\Microsoft
[2015/12/06 03:49:38 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Dados de aplicativos\Microsoft
[2015/12/06 03:49:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Configurações locais\Dados de aplicativos\Microsoft
[2015/12/06 03:48:24 | 000,080,896 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2015/12/06 03:48:24 | 000,080,896 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2015/12/06 03:48:24 | 000,026,624 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll
[2015/12/06 03:47:42 | 000,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll
[2015/12/06 03:47:42 | 000,045,568 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll
[2015/12/06 03:47:42 | 000,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll
[2015/12/06 03:47:34 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2015/12/06 03:47:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom
[2015/12/06 03:47:10 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\xerox
[2015/12/06 03:47:10 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\microsoft frontpage
[2015/12/06 03:46:02 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM
[2015/12/06 03:45:54 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files
[2015/12/06 03:45:54 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages
[2015/12/06 03:45:46 | 000,000,000 | -H-D | C] -- C:\Arquivos de programas\WindowsUpdate
[2015/12/06 03:45:43 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\Serviços on-line
[2015/12/06 03:45:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX
[2015/12/06 03:45:05 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\Arquivos comuns\Serviços
[2015/12/06 03:45:03 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks
[2015/12/06 03:45:02 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\Arquivos comuns\MSSoap
[2015/12/06 03:44:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst
[2015/12/06 03:44:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed
[2015/12/06 03:44:52 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\Movie Maker
[2015/12/06 03:44:45 | 000,032,768 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\isrdbg32.dll
[2015/12/06 03:44:45 | 000,032,768 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\isrdbg32.dll
[2015/12/06 03:44:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore
[2015/12/06 03:44:42 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\NetMeeting
[2015/12/06 03:44:39 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\Outlook Express
[2015/12/06 03:44:34 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\Arquivos comuns\System
[2015/12/06 03:44:34 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\Internet Explorer
[2015/12/06 03:44:33 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documentos\Minhas imagens
[2015/12/06 03:44:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\Jogos
[2015/12/06 03:44:06 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\ComPlus Applications
[2015/12/06 03:44:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\Ferramentas administrativas
[2015/12/06 03:44:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration
[2015/12/06 03:43:55 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documentos\Minhas músicas
[2015/12/06 03:43:55 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\Windows Media Player
[2015/12/06 03:43:51 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\Messenger
[2015/12/06 03:43:48 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\MSN Gaming Zone
[2015/12/06 03:43:41 | 000,044,544 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hticons.dll
[2015/12/06 03:43:41 | 000,013,312 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\dllcache\htrn_jis.dll
[2015/12/06 03:43:27 | 000,283,648 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe
[2015/12/06 03:43:26 | 000,350,720 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hypertrm.dll
[2015/12/06 03:43:26 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\Windows NT
[2015/12/06 03:43:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc
[2015/12/06 03:43:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com
[2015/12/06 03:43:11 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documentos\Meus vídeos
[2015/12/06 03:42:55 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\Acessórios
[2015/12/06 01:27:00 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2015/12/06 01:26:59 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\Arquivos comuns\ODBC
[2015/12/06 01:26:57 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\Arquivos comuns\SpeechEngines
[2015/12/06 01:26:56 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\Arquivos comuns\Microsoft Shared
[2015/12/06 01:26:55 | 000,000,000 | R--D | C] -- C:\Arquivos de programas
[2015/12/06 01:26:55 | 000,000,000 | ---D | C] -- C:\Arquivos de programas\Arquivos comuns
[2015/12/06 01:26:46 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\dgrpsetu.dll
[2015/12/06 01:26:46 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dgrpsetu.dll
[2015/12/06 01:26:46 | 000,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dllcache\dgsetup.dll
[2015/12/06 01:26:46 | 000,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dgsetup.dll
[2015/12/06 01:26:45 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\EqnClass.Dll
[2015/12/06 01:26:45 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnclass.dll
[2015/12/06 01:26:45 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll
[2015/12/06 01:26:45 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll
[2015/12/06 01:26:33 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Iniciar
[2015/12/06 01:26:33 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\Inicializar
[2015/12/06 01:26:33 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documentos
[2015/12/06 01:26:33 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Modelos
[2015/12/06 01:26:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Favoritos
[2015/12/06 01:26:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Desktop
[2015/12/06 01:24:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2015/12/06 01:24:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2015/12/06 01:24:38 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dados de aplicativos\Microsoft
[2015/12/06 01:24:38 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Dados de aplicativos
[2015/12/06 01:24:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings
[2015/12/06 01:24:22 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2015/12/06 01:19:37 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2015/12/06 01:19:37 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache
[2015/12/06 01:19:37 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web
[2015/12/06 01:19:37 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\system
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\security
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\java
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1046
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2015/12/06 01:19:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2015/12/06 17:48:39 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Layza\Desktop\OTL.com
[2015/12/06 17:46:40 | 000,001,761 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Avast Free Antivirus.lnk
[2015/12/06 17:43:30 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
[2015/12/06 17:43:15 | 000,002,048 | ---- | M] () -- C:\WINDOWS\bootstat.dat
[2015/12/06 14:12:32 | 000,435,976 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2015/12/06 14:12:32 | 000,209,432 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswVmm.sys
[2015/12/06 14:12:32 | 000,165,104 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswStmXP.sys
[2015/12/06 14:12:32 | 000,081,168 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswMonFlt.sys
[2015/12/06 14:12:32 | 000,058,016 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2015/12/06 14:12:32 | 000,055,200 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2015/12/06 14:12:32 | 000,049,776 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRvrt.sys
[2015/12/06 14:12:32 | 000,024,016 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswHwid.sys
[2015/12/06 14:12:30 | 000,322,760 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2015/12/06 14:12:30 | 000,043,112 | ---- | M] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2015/12/06 14:12:28 | 000,794,952 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2015/12/06 14:03:02 | 000,001,919 | ---- | M] () -- C:\WINDOWS\epplauncher.mif
[2015/12/06 06:25:39 | 000,000,348 | ---- | M] () -- C:\Documents and Settings\Layza\Desktop\Meus documentos.lnk
[2015/12/06 05:09:32 | 000,094,272 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2015/12/06 05:08:08 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2015/12/06 05:07:22 | 000,465,986 | ---- | M] () -- C:\WINDOWS\System32\perfh016.dat
[2015/12/06 05:07:22 | 000,432,992 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2015/12/06 05:07:22 | 000,076,414 | ---- | M] () -- C:\WINDOWS\System32\perfc016.dat
[2015/12/06 05:07:22 | 000,067,696 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2015/12/06 04:49:27 | 000,012,384 | ---- | M] () -- C:\WINDOWS\System32\mlfcache.dat
[2015/12/06 04:39:43 | 000,200,181 | ---- | M] () -- C:\Documents and Settings\Layza\Desktop\Flash_Disinfector.exe
[2015/12/06 04:38:49 | 000,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav
[2015/12/06 04:38:49 | 000,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav
[2015/12/06 04:13:31 | 000,000,780 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2015/12/06 04:07:26 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2015/12/06 03:49:41 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD
[2015/12/06 03:48:49 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2015/12/06 03:46:51 | 000,002,969 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2015/12/06 03:46:51 | 000,000,000 | ---- | M] () -- C:\MSDOS.SYS
[2015/12/06 03:46:51 | 000,000,000 | ---- | M] () -- C:\IO.SYS
[2015/12/06 03:46:51 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2015/12/06 03:46:51 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2015/12/06 03:46:43 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2015/12/06 03:46:42 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2015/12/06 03:46:42 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2015/12/06 03:46:34 | 000,004,205 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2015/12/06 03:44:13 | 000,021,844 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2015/12/06 03:42:36 | 000,000,211 | ---- | M] () -- C:\boot.ini
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2015/12/06 14:13:01 | 000,001,761 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Avast Free Antivirus.lnk
[2015/12/06 14:12:39 | 000,000,330 | -H-- | C] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
[2015/12/06 14:03:02 | 000,001,919 | ---- | C] () -- C:\WINDOWS\epplauncher.mif
[2015/12/06 06:25:39 | 000,000,348 | ---- | C] () -- C:\Documents and Settings\Layza\Desktop\Meus documentos.lnk
[2015/12/06 05:07:20 | 000,064,200 | ---- | C] () -- C:\Documents and Settings\LocalService\Configurações locais\Dados de aplicativos\FontCache3.0.0.0.dat
[2015/12/06 04:49:27 | 000,012,384 | ---- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2015/12/06 04:39:54 | 000,200,181 | ---- | C] () -- C:\Documents and Settings\Layza\Desktop\Flash_Disinfector.exe
[2015/12/06 04:38:49 | 000,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav
[2015/12/06 04:38:49 | 000,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav
[2015/12/06 04:36:39 | 000,792,064 | ---- | C] () -- C:\Documents and Settings\Layza\Desktop\PenClean.exe
[2015/12/06 04:32:49 | 000,026,084 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTAIODAT.DAT
[2015/12/06 04:17:17 | 000,032,416 | ---- | C] () -- C:\WINDOWS\System32\igxpxs32.vp
[2015/12/06 04:17:17 | 000,002,096 | ---- | C] () -- C:\WINDOWS\System32\igxpxk32.vp
[2015/12/06 04:13:31 | 000,000,786 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\Mozilla Firefox.lnk
[2015/12/06 04:13:31 | 000,000,780 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2015/12/06 04:07:39 | 000,000,778 | ---- | C] () -- C:\Documents and Settings\Layza\Menu Iniciar\Programas\Outlook Express.lnk
[2015/12/06 04:07:37 | 000,000,843 | ---- | C] () -- C:\Documents and Settings\Layza\Menu Iniciar\Programas\Internet Explorer.lnk
[2015/12/06 04:07:28 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\Layza\Menu Iniciar\Programas\Assistência remota.lnk
[2015/12/06 04:07:28 | 000,000,832 | ---- | C] () -- C:\Documents and Settings\Layza\Menu Iniciar\Programas\Windows Media Player.lnk
[2015/12/06 03:49:41 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD
[2015/12/06 03:48:49 | 000,002,048 | ---- | C] () -- C:\WINDOWS\bootstat.dat
[2015/12/06 03:48:19 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2015/12/06 03:48:04 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex
[2015/12/06 03:47:59 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe
[2015/12/06 03:47:58 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe
[2015/12/06 03:47:57 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2015/12/06 03:47:50 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2015/12/06 03:47:46 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2015/12/06 03:47:43 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll
[2015/12/06 03:47:36 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2015/12/06 03:46:51 | 000,002,969 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT
[2015/12/06 03:46:51 | 000,000,000 | ---- | C] () -- C:\MSDOS.SYS
[2015/12/06 03:46:51 | 000,000,000 | ---- | C] () -- C:\IO.SYS
[2015/12/06 03:46:51 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS
[2015/12/06 03:46:51 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT
[2015/12/06 03:46:42 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx
[2015/12/06 03:46:42 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2015/12/06 03:46:42 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2015/12/06 03:45:45 | 000,000,842 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\Windows Movie Maker.lnk
[2015/12/06 03:45:36 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex
[2015/12/06 03:45:12 | 000,048,680 | ---- | C] () -- C:\WINDOWS\winnt256.bmp
[2015/12/06 03:45:12 | 000,048,680 | ---- | C] () -- C:\WINDOWS\winnt.bmp
[2015/12/06 03:45:07 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf
[2015/12/06 03:44:57 | 000,004,639 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.exe
[2015/12/06 03:44:48 | 000,380,928 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll
[2015/12/06 03:44:15 | 000,000,619 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\Windows Messenger.lnk
[2015/12/06 03:44:13 | 000,021,844 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2015/12/06 03:43:36 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Bolhas de sabão.bmp
[2015/12/06 03:43:36 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Bruma.bmp
[2015/12/06 03:43:36 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Deserto.bmp
[2015/12/06 03:43:36 | 000,026,680 | ---- | C] () -- C:\WINDOWS\Leques.bmp
[2015/12/06 03:43:36 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Areia.bmp
[2015/12/06 03:43:36 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rododentro.bmp
[2015/12/06 03:43:36 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Pescaria.bmp
[2015/12/06 03:43:36 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Cafezinho.bmp
[2015/12/06 03:43:36 | 000,016,730 | ---- | C] () -- C:\WINDOWS\Seda.bmp
[2015/12/06 03:43:36 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Tapete.bmp
[2015/12/06 03:43:36 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Renda azul 16.bmp
[2015/12/06 03:43:34 | 000,001,221 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd
[2015/12/06 03:43:33 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h
[2015/12/06 03:43:33 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h
[2015/12/06 03:43:28 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc
[2015/12/06 01:27:02 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2015/12/06 01:26:59 | 000,004,205 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2015/12/06 01:26:57 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd
[2015/12/06 01:26:57 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa
[2015/12/06 01:26:57 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa
[2015/12/06 01:26:57 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf
[2015/12/06 01:26:44 | 000,000,515 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT
[2015/12/06 01:24:54 | 001,014,492 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT
[2015/12/06 01:24:54 | 000,809,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2015/12/06 01:24:54 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2015/12/06 01:24:54 | 000,141,702 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat
[2015/12/06 01:24:54 | 000,102,826 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat
[2015/12/06 01:24:54 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2015/12/06 01:24:54 | 000,031,965 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat
[2015/12/06 01:24:54 | 000,030,983 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT
[2015/12/06 01:24:54 | 000,014,043 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT
[2015/12/06 01:24:54 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2015/12/06 01:24:54 | 000,009,581 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT
[2015/12/06 01:24:54 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2015/12/06 01:24:54 | 000,007,407 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2015/12/06 01:24:54 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat
[2015/12/06 01:24:54 | 000,007,245 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT
[2015/12/06 01:24:53 | 001,896,102 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT
[2015/12/06 01:24:53 | 000,620,790 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT
[2015/12/06 01:24:22 | 000,094,272 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2015/12/06 01:23:24 | 000,000,211 | ---- | C] () -- C:\boot.ini
[2015/12/06 01:23:22 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2015/12/06 05:06:31 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2009/01/07 18:21:34 | 001,497,088 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2004/08/04 01:45:22 | 000,472,064 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2004/08/04 01:45:28 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[color=#E56717]========== LOP Check ==========[/color]

[2015/12/06 14:07:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dados de aplicativos\AVAST Software
[2015/12/06 04:30:34 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dados de aplicativos\Common Files
[2015/12/06 04:31:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dados de aplicativos\MFAData
[2015/12/06 05:29:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dados de aplicativos\Riot Games

[color=#E56717]========== Purity Check ==========[/color]



< End of report >

Publicité


Signaler le contenu de ce document

Publicité