Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:12-10-2015 Ran by COMPAQ (administrator) on COMPAQ-PC (13-10-2015 08:30:07) Running from C:\Users\COMPAQ\Downloads Loaded Profiles: COMPAQ (Available Profiles: COMPAQ) Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) Language: Português (Brasil) Internet Explorer Version 8 (Default browser: FF) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (IObit) C:\Program Files\IObit\Advanced SystemCare Ultimate 8\ASCService.exe (IOBit) C:\Program Files\IObit\Advanced SystemCare Ultimate 8\ASCAvSvc.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe (Broadcom Corporation) C:\Program Files\Broadcom\MgmtAgent\BrcmMgmtAgent.exe (SlimWare Utilities, Inc.) C:\Program Files\SlimService\SlimServiceFactory.exe (Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe (IObit) C:\Program Files\IObit\Advanced SystemCare Ultimate 8\Monitor.exe (SlimWare Utilities, Inc.) C:\Program Files\SlimDrivers\SlimDrivers.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Sun Microsystems, Inc.) C:\Program Files\Java\jre6\bin\jusched.exe (SlimWare Utilities, Inc.) C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe (IObit) C:\Program Files\IObit\Advanced SystemCare Ultimate 8\ASCTray.exe (SlimWare Utilities, Inc.) C:\Program Files\SlimService\SlimService.exe (Opera Software) C:\Program Files\Opera\32.0.1948.46\opera.exe (Opera Software) C:\Program Files\Opera\32.0.1948.46\opera_crashreporter.exe (Opera Software) C:\Program Files\Opera\32.0.1948.46\opera.exe (Opera Software) C:\Program Files\Opera\32.0.1948.46\opera.exe (Opera Software) C:\Program Files\Opera\32.0.1948.46\opera.exe (Opera Software) C:\Program Files\Opera\32.0.1948.46\opera.exe (Opera Software) C:\Program Files\Opera\32.0.1948.46\opera.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MpCmdRun.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [931200 2012-03-26] (Microsoft Corporation) HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation) HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [34672 2008-06-12] (Adobe Systems Incorporated) HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Java\jre6\bin\jusched.exe [148888 2015-10-04] (Sun Microsystems, Inc.) HKU\S-1-5-21-2174281751-3206236228-2501088044-1000\...\Run: [SlimCleaner Plus] => C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe [26169624 2015-10-05] (SlimWare Utilities, Inc.) HKU\S-1-5-21-2174281751-3206236228-2501088044-1000\...\Run: [Advanced SystemCare Ultimate] => C:\Program Files\IObit\Advanced SystemCare Ultimate 8\ASCTray.exe [2596640 2015-05-22] (IObit) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{B0503082-B8D8-4D10-A73F-88380E072A86}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKU\S-1-5-21-2174281751-3206236228-2501088044-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie HKU\S-1-5-21-2174281751-3206236228-2501088044-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie HKU\S-1-5-21-2174281751-3206236228-2501088044-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pt-br/?ocid=iehp SearchScopes: HKU\S-1-5-21-2174281751-3206236228-2501088044-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear BHO: No Name -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> => No File BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11] (Adobe Systems Incorporated) BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation) BHO: Advanced SystemCare Surfing Protection -> {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} -> C:\Program Files\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll [2015-04-01] (IObit) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll [2015-10-04] (Sun Microsystems, Inc.) DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation) FireFox: ======== FF ProfilePath: C:\Users\COMPAQ\AppData\Roaming\Mozilla\Firefox\Profiles\fqxi2xdo.default FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-10-08] () FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2014-06-06] (Google, Inc.) FF Plugin HKU\S-1-5-21-2174281751-3206236228-2501088044-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\COMPAQ\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-08-28] (Unity Technologies ApS) FF user.js: detected! => C:\Users\COMPAQ\AppData\Roaming\Mozilla\Firefox\Profiles\fqxi2xdo.default\user.js [2015-10-08] Chrome: ======= CHR HKLM\...\Chrome\Extension: [olghjjajidfdflkafeekiojnfmiolccp] - hxxps://clients2.google.com/service/update2/crx ==================== Services (Whitelisted) ======================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AdvancedSystemCareService8; C:\Program Files\IObit\Advanced SystemCare Ultimate 8\ASCService.exe [911648 2014-11-22] (IObit) R2 ASCAntivirusSrv; C:\Program Files\IObit\Advanced SystemCare Ultimate 8\ascavsvc.exe [660768 2015-05-15] (IOBit) R2 BrcmMgmtAgent; C:\Program Files\Broadcom\MgmtAgent\BrcmMgmtAgent.exe [165376 2014-04-01] (Broadcom Corporation) [File not signed] S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2585376 2015-03-26] (IObit) S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation) R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [11552 2012-03-26] (Microsoft Corporation) S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [214952 2012-03-26] (Microsoft Corporation) R2 SlimService; C:\Program Files\SlimService\SlimServiceFactory.exe [222488 2015-10-05] (SlimWare Utilities, Inc.) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-13] (Microsoft Corporation) ===================== Drivers (Whitelisted) ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R3 ALCXWDM; C:\Windows\System32\drivers\RTKVAC.SYS [4172832 1999-12-31] (Realtek Semiconductor Corp.) S3 Blfp; C:\Windows\System32\DRIVERS\basp.sys [114688 2014-04-22] (Broadcom Corporation) R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2015-10-07] (REALiX(tm)) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-06-18] (Malwarebytes Corporation) S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-06-18] (Malwarebytes Corporation) R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [171064 2012-03-20] (Microsoft Corporation) S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [13368 2015-10-13] (SlimWare Utilities, Inc.) ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-10-13 08:30 - 2015-10-13 08:30 - 00008872 _____ C:\Users\COMPAQ\Downloads\FRST.txt 2015-10-13 08:28 - 2015-10-13 08:30 - 00000000 ____D C:\FRST 2015-10-13 08:26 - 2015-10-13 08:27 - 01699840 _____ (Farbar) C:\Users\COMPAQ\Downloads\FRST.exe 2015-10-13 07:17 - 2015-10-13 07:17 - 00000056 _____ C:\Windows\setupact.log 2015-10-13 07:17 - 2015-10-13 07:17 - 00000000 _____ C:\Windows\setuperr.log 2015-10-08 13:45 - 2015-10-08 13:45 - 00000000 ____D C:\Users\COMPAQ\AppData\Local\Macromedia 2015-10-08 06:43 - 2015-10-08 06:44 - 01190616 _____ (Adobe Systems Incorporated) C:\Users\COMPAQ\Downloads\flashplayer19_ga_install.exe 2015-10-07 15:27 - 2015-10-07 15:39 - 00000000 ____D C:\Users\COMPAQ\AppData\Local\Mozilla 2015-10-07 15:27 - 2015-10-07 15:27 - 00000000 ____D C:\Users\COMPAQ\AppData\Roaming\Mozilla 2015-10-07 15:26 - 2015-10-07 15:26 - 00001121 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2015-10-07 15:26 - 2015-10-07 15:26 - 00001109 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2015-10-07 15:26 - 2015-10-07 15:26 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service 2015-10-07 15:26 - 2015-10-07 15:26 - 00000000 ____D C:\Program Files\Mozilla Firefox 2015-10-07 15:14 - 2015-10-07 15:14 - 00269991 _____ C:\Users\COMPAQ\Downloads\Caçados - filme dublado e completo - YouTube.html 2015-10-07 15:14 - 2015-10-07 15:14 - 00000000 ____D C:\Users\COMPAQ\Downloads\Caçados - filme dublado e completo - YouTube_files 2015-10-07 06:39 - 2015-10-07 06:39 - 00098520 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\1FF94496.sys 2015-10-07 05:56 - 2015-10-08 12:46 - 00098520 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2015-10-07 05:56 - 2015-10-07 05:56 - 00001272 _____ C:\Users\COMPAQ\AppData\Local\Chrome .lnk 2015-10-07 05:56 - 2015-10-07 05:56 - 00001064 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2015-10-07 05:56 - 2015-10-07 05:56 - 00000298 _____ C:\Users\COMPAQ\AppData\Local\Firefox .lnk 2015-10-07 05:56 - 2015-10-07 05:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware 2015-10-07 05:55 - 2015-10-07 05:56 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware 2015-10-07 05:55 - 2015-10-07 05:55 - 00001122 _____ C:\Users\COMPAQ\AppData\Local\Iexplore .lnk 2015-10-07 05:55 - 2015-10-07 05:55 - 00001070 _____ C:\Users\COMPAQ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Iexplore .lnk 2015-10-07 05:55 - 2015-10-07 05:55 - 00001040 _____ C:\Users\COMPAQ\Desktop\Iexplore .lnk 2015-10-07 05:55 - 2015-10-07 05:55 - 00000298 _____ C:\Users\COMPAQ\Desktop\Firefox .lnk 2015-10-07 05:55 - 2015-10-07 05:55 - 00000298 _____ C:\Users\COMPAQ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox .lnk 2015-10-07 05:55 - 2015-10-07 05:55 - 00000000 ____D C:\Users\Todos os Usuários\Malwarebytes 2015-10-07 05:55 - 2015-10-07 05:55 - 00000000 ____D C:\ProgramData\Malwarebytes 2015-10-07 05:55 - 2015-06-18 08:41 - 00094936 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2015-10-07 05:55 - 2015-06-18 08:41 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2015-10-07 05:55 - 2015-06-18 08:41 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2015-10-07 04:55 - 2015-10-13 06:16 - 37650432 _____ C:\Windows\system32\config\SOFTWARE.iobit 2015-10-07 04:55 - 2015-10-13 06:16 - 25526272 _____ C:\Windows\system32\config\COMPONENTS.iobit 2015-10-07 04:55 - 2015-10-13 06:16 - 00233472 _____ C:\Windows\system32\config\DEFAULT.iobit 2015-10-07 04:55 - 2015-10-13 06:16 - 00065536 _____ C:\Windows\system32\config\SAM.iobit 2015-10-07 04:55 - 2015-10-13 06:16 - 00024576 _____ C:\Windows\system32\config\SECURITY.iobit 2015-10-07 04:46 - 2015-10-07 05:56 - 00002112 _____ C:\Users\Public\Desktop\Driver Booster 2.lnk 2015-10-07 04:46 - 2015-10-07 04:46 - 00023840 _____ (REALiX(tm)) C:\Windows\system32\Drivers\HWiNFO32.SYS 2015-10-07 04:45 - 2015-10-07 04:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 2 2015-10-07 04:11 - 2015-10-07 04:11 - 00000000 ____D C:\Windows\Tasks\ImCleanDisabled 2015-10-07 04:11 - 2015-10-07 04:11 - 00000000 ____D C:\Users\COMPAQ\AppData\Roaming\ProductData 2015-10-07 04:09 - 2015-10-07 08:35 - 00000000 ____D C:\Users\Todos os Usuários\ProductData 2015-10-07 04:09 - 2015-10-07 08:35 - 00000000 ____D C:\ProgramData\ProductData 2015-10-07 04:09 - 2015-10-07 04:14 - 00000000 ____D C:\Users\COMPAQ\AppData\LocalLow\IObit 2015-10-07 04:09 - 2015-10-07 04:09 - 00000000 ____D C:\Users\Todos os Usuários\{D76294E6-03B8-4971-AF2E-3F846161A690} 2015-10-07 04:09 - 2015-10-07 04:09 - 00000000 ____D C:\Users\COMPAQ\AppData\Roaming\Apple Computer 2015-10-07 04:09 - 2015-10-07 04:09 - 00000000 ____D C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690} 2015-10-07 04:08 - 2015-10-12 05:58 - 00002212 _____ C:\Users\Public\Desktop\Advanced SystemCare Ultimate 8.lnk 2015-10-07 04:08 - 2015-10-07 08:35 - 00000000 ____D C:\Users\Todos os Usuários\IObit 2015-10-07 04:08 - 2015-10-07 08:35 - 00000000 ____D C:\ProgramData\IObit 2015-10-07 04:08 - 2015-10-07 04:08 - 00000000 ____D C:\Users\Todos os Usuários\{ACBCD40A-42A8-4FF9-BD42-ABCD14998CBA} 2015-10-07 04:08 - 2015-10-07 04:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare Ultimate 8 2015-10-07 04:08 - 2015-10-07 04:08 - 00000000 ____D C:\ProgramData\{ACBCD40A-42A8-4FF9-BD42-ABCD14998CBA} 2015-10-07 04:08 - 2015-10-07 04:08 - 00000000 ____D C:\Program Files\Common Files\IObit 2015-10-07 04:07 - 2015-10-07 04:45 - 00000000 ____D C:\Program Files\IObit 2015-10-07 04:06 - 2015-10-07 04:46 - 00000000 ____D C:\Users\COMPAQ\AppData\Roaming\IObit 2015-10-07 03:58 - 2015-10-07 04:02 - 83096064 _____ (IObit ) C:\Users\COMPAQ\Downloads\asc-ultimate-setup.exe 2015-10-06 22:38 - 2015-10-07 02:57 - 00000368 _____ C:\Windows\Tasks\SlimCleaner Plus (Scheduled Scan - COMPAQ).job 2015-10-06 22:10 - 2015-10-13 07:36 - 00000902 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-10-06 22:10 - 2015-10-08 13:44 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2015-10-06 22:10 - 2015-10-08 13:44 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2015-10-06 22:10 - 2015-10-06 22:33 - 00000964 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job 2015-10-06 22:10 - 2015-10-06 22:10 - 00000000 ____D C:\Windows\system32\Macromed 2015-10-06 22:09 - 2015-10-08 13:44 - 00000000 ____D C:\Users\COMPAQ\AppData\Local\Adobe 2015-10-06 22:08 - 2015-10-06 22:08 - 00331386 _____ C:\Users\COMPAQ\Downloads\_2270.swf 2015-10-06 22:02 - 2015-10-06 22:02 - 01089320 _____ (Unity Technologies ApS) C:\Users\COMPAQ\Downloads\UnityWebPlayer.exe 2015-10-06 22:02 - 2015-10-06 22:02 - 00000000 ____D C:\Users\COMPAQ\AppData\LocalLow\Unity 2015-10-06 22:02 - 2015-10-06 22:02 - 00000000 ____D C:\Users\COMPAQ\AppData\Local\Unity 2015-10-06 21:59 - 2015-10-07 05:56 - 00001091 _____ C:\Users\Public\Desktop\Opera.lnk 2015-10-06 21:59 - 2015-10-06 21:59 - 00000000 ____D C:\Users\COMPAQ\AppData\Roaming\Opera Software 2015-10-06 21:59 - 2015-10-06 21:59 - 00000000 ____D C:\Users\COMPAQ\AppData\Local\Opera Software 2015-10-06 21:59 - 2015-10-06 21:58 - 00001097 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk 2015-10-06 21:57 - 2015-10-07 15:32 - 00000000 ____D C:\Program Files\Opera 2015-10-06 21:56 - 2015-10-06 21:56 - 00724440 _____ (Opera Software) C:\Users\COMPAQ\Downloads\opera-32-bits [1].exe 2015-10-06 21:53 - 2015-10-06 21:59 - 04742948 _____ C:\Users\COMPAQ\Downloads\installer.zip 2015-10-04 20:18 - 2015-10-07 05:56 - 00002483 _____ C:\Users\Public\Desktop\SlimCleaner Plus.lnk 2015-10-04 20:18 - 2015-10-04 20:18 - 00000000 ____D C:\Users\Todos os Usuários\SlimWare Utilities Inc 2015-10-04 20:18 - 2015-10-04 20:18 - 00000000 ____D C:\ProgramData\SlimWare Utilities Inc 2015-10-04 20:18 - 2015-10-04 20:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimCleaner Plus 2015-10-04 20:18 - 2015-10-04 20:18 - 00000000 ____D C:\Program Files\SlimService 2015-10-04 20:18 - 2015-10-04 20:18 - 00000000 ____D C:\Program Files\SlimCleaner Plus 2015-10-04 20:17 - 2015-10-04 20:17 - 00000000 ____D C:\Users\COMPAQ\AppData\Local\Downloaded Installers 2015-10-04 20:15 - 2015-10-07 05:56 - 00002489 _____ C:\Users\Public\Desktop\SlimDrivers.lnk 2015-10-04 20:15 - 2015-10-04 20:15 - 00000000 ____D C:\Users\Public\Documents\Downloaded Installers 2015-10-04 20:14 - 2015-10-04 20:15 - 00981592 _____ (SlimWare Utilities, Inc.) C:\Users\COMPAQ\Downloads\SlimDrivers-setup.exe 2015-10-04 19:09 - 2015-10-04 19:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Broadcom 2015-10-04 19:09 - 2015-10-04 19:09 - 00000000 ____D C:\Program Files\Broadcom 2015-10-04 19:09 - 2014-04-22 17:44 - 00101376 _____ (Broadcom Corporation) C:\Windows\system32\basp.dll 2015-10-04 19:08 - 2015-10-04 19:08 - 00000000 ____D C:\Windows\Dell 2015-10-04 18:52 - 2015-10-04 18:52 - 00000000 ___HD C:\Program Files\InstallShield Installation Information 2015-10-04 18:52 - 2015-10-04 18:52 - 00000000 ____D C:\Program Files\Realtek AC97 2015-10-04 18:52 - 1999-12-31 21:00 - 04172832 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVAC.SYS 2015-10-04 18:52 - 1999-12-31 21:00 - 02510368 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO.dll 2015-10-04 18:52 - 1999-12-31 21:00 - 00965664 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll 2015-10-04 18:52 - 1999-12-31 21:00 - 00315392 _____ (Realtek Semiconductor Corp.) C:\Windows\alcupd.exe 2015-10-04 18:52 - 1999-12-31 21:00 - 00223776 _____ (Realtek Semiconductor Corp.) C:\Windows\alcrmv.exe 2015-10-04 18:52 - 1999-12-31 21:00 - 00154144 _____ () C:\Windows\system32\RTLCPAPI.dll 2015-10-04 18:52 - 1999-12-31 21:00 - 00141856 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg.dll 2015-10-04 18:50 - 2015-10-04 18:50 - 00319488 _____ (Realtek Semiconductor Corp.) C:\Windows\HideWin.exe 2015-10-04 18:50 - 2015-10-04 18:50 - 00000000 ____D C:\Program Files\Common Files\InstallShield 2015-10-04 18:50 - 1999-12-31 21:00 - 00524288 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll 2015-10-04 18:05 - 2015-10-04 18:05 - 00000000 ____D C:\Users\COMPAQ\AppData\Local\Downloaded Installations 2015-10-04 17:50 - 2015-10-04 17:50 - 00000000 ____D C:\Users\COMPAQ\AppData\Roaming\Macromedia 2015-10-04 17:50 - 2015-10-04 17:50 - 00000000 ____D C:\Users\COMPAQ\AppData\Roaming\Adobe 2015-10-04 17:40 - 2015-07-05 07:11 - 00246952 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2015-10-04 17:27 - 2015-10-13 07:24 - 00000388 _____ C:\Windows\Tasks\SlimDrivers Startup.job 2015-10-04 17:27 - 2015-10-13 07:23 - 00013368 _____ (SlimWare Utilities, Inc.) C:\Windows\system32\Drivers\SWDUMon.sys 2015-10-04 17:27 - 2015-10-06 22:38 - 00000000 ____D C:\Users\COMPAQ\AppData\Local\SlimWare Utilities Inc 2015-10-04 17:24 - 2015-10-07 05:56 - 00002699 _____ C:\Users\COMPAQ\Desktop\Microsoft Office Word 2007.lnk 2015-10-04 17:24 - 2015-10-07 05:56 - 00002669 _____ C:\Users\COMPAQ\Desktop\Microsoft Office PowerPoint 2007.lnk 2015-10-04 17:24 - 2015-10-07 05:56 - 00002635 _____ C:\Users\COMPAQ\Desktop\Microsoft Office Excel 2007.lnk 2015-10-04 17:24 - 2015-10-07 05:56 - 00002615 _____ C:\Users\COMPAQ\Desktop\Microsoft Office Publisher 2007.lnk 2015-10-04 17:24 - 2015-10-07 05:56 - 00001246 _____ C:\Users\COMPAQ\Desktop\Disk Cleanup.lnk 2015-10-04 17:23 - 2015-10-07 05:55 - 00001230 _____ C:\Users\COMPAQ\Desktop\Calculator.lnk 2015-10-04 16:36 - 2015-10-04 17:50 - 00000000 ____D C:\Users\COMPAQ\AppData\Roaming\Desktopicon 2015-10-04 16:36 - 2015-10-04 16:36 - 00000000 ____D C:\Program Files\DsNET Corp 2015-10-04 16:36 - 2004-03-09 01:00 - 00124688 _____ (Microsoft Corporation) C:\Windows\system32\MSWINSCK.OCX 2015-10-04 16:35 - 2015-10-07 05:56 - 00001053 _____ C:\Users\Public\Desktop\FLV Media Player.lnk 2015-10-04 16:35 - 2015-10-04 16:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FLV Media Player 2015-10-04 16:35 - 2015-10-04 16:35 - 00000000 ____D C:\Program Files\FLV Media Player 2015-10-04 16:33 - 2015-10-04 16:33 - 00410984 _____ (Sun Microsystems, Inc.) C:\Windows\system32\deploytk.dll 2015-10-04 16:33 - 2015-10-04 16:33 - 00148888 _____ (Sun Microsystems, Inc.) C:\Windows\system32\javaws.exe 2015-10-04 16:33 - 2015-10-04 16:33 - 00144792 _____ (Sun Microsystems, Inc.) C:\Windows\system32\javaw.exe 2015-10-04 16:33 - 2015-10-04 16:33 - 00144792 _____ (Sun Microsystems, Inc.) C:\Windows\system32\java.exe 2015-10-04 16:33 - 2015-10-04 16:33 - 00000000 ____D C:\Program Files\Java 2015-10-04 16:32 - 2015-10-04 16:32 - 00000000 ____D C:\Users\COMPAQ\AppData\LocalLow\Sun 2015-10-04 16:32 - 2015-10-04 16:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack 2015-10-04 16:32 - 2015-10-04 16:32 - 00000000 ____D C:\Program Files\K-Lite Codec Pack 2015-10-04 16:32 - 2009-11-09 15:00 - 00085504 _____ C:\Windows\system32\ff_vfw.dll 2015-10-04 16:32 - 2009-11-09 15:00 - 00000038 _____ C:\Windows\avisplitter.ini 2015-10-04 16:32 - 2009-08-16 12:08 - 00178176 _____ C:\Windows\system32\unrar.dll 2015-10-04 16:32 - 2009-05-29 18:37 - 00205824 _____ C:\Windows\system32\xvidvfw.dll 2015-10-04 16:32 - 2009-05-29 18:31 - 00881664 _____ C:\Windows\system32\xvidcore.dll 2015-10-04 16:32 - 2008-10-03 09:30 - 00000414 _____ C:\Windows\system32\lame_acm.xml 2015-10-04 16:32 - 2008-09-24 15:41 - 00839680 _____ (http://www.mp3dev.org/) C:\Windows\system32\lameACM.acm 2015-10-04 16:32 - 2007-09-20 21:52 - 00118784 _____ (fccHandler) C:\Windows\system32\ac3acm.acm 2015-10-04 16:32 - 2007-07-10 13:10 - 00000547 _____ C:\Windows\system32\ff_vfw.dll.manifest 2015-10-04 16:32 - 2004-01-25 13:18 - 00217088 _____ (www.helixcommunity.org) C:\Windows\system32\yv12vfw.dll 2015-10-04 16:31 - 2015-10-07 05:56 - 00001086 _____ C:\Users\Public\Desktop\Picasa 3.lnk 2015-10-04 16:31 - 2015-10-06 21:54 - 00000000 ____D C:\Users\COMPAQ\AppData\Roaming\WinRAR 2015-10-04 16:31 - 2015-10-04 16:31 - 00000000 ____D C:\Users\COMPAQ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2015-10-04 16:31 - 2015-10-04 16:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2015-10-04 16:31 - 2015-10-04 16:31 - 00000000 ____D C:\Program Files\WinRAR 2015-10-04 16:30 - 2015-10-08 04:05 - 00000000 ____D C:\Users\COMPAQ\AppData\Local\Google 2015-10-04 16:30 - 2015-10-04 16:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3 2015-10-04 16:30 - 2015-10-04 16:30 - 00000000 ____D C:\Program Files\Google 2015-10-04 16:28 - 2015-10-07 05:56 - 00002002 _____ C:\Users\Public\Desktop\Adobe Reader 9.lnk 2015-10-04 16:28 - 2015-10-04 16:29 - 00000000 ____D C:\Users\Todos os Usuários\Adobe 2015-10-04 16:28 - 2015-10-04 16:29 - 00000000 ____D C:\ProgramData\Adobe 2015-10-04 16:28 - 2015-10-04 16:28 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk 2015-10-04 16:28 - 2015-10-04 16:28 - 00000000 ____D C:\Program Files\Common Files\Adobe 2015-10-04 16:28 - 2015-10-04 16:28 - 00000000 ____D C:\Program Files\Adobe 2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WonderFox Soft 2015-10-04 16:27 - 2015-10-04 16:27 - 00000000 ____D C:\Program Files\WonderFox Soft 2015-10-04 16:26 - 2015-10-07 05:56 - 00001354 _____ C:\Users\COMPAQ\Desktop\WonderFox DVD Video Converter.lnk 2015-10-04 16:26 - 2015-10-04 16:26 - 00000000 ____D C:\Users\COMPAQ\Documents\WonderFox Soft 2015-10-04 16:26 - 2015-10-04 16:26 - 00000000 ____D C:\Users\COMPAQ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WonderFox Soft 2015-10-04 16:12 - 2015-10-04 16:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2015-10-04 16:11 - 2006-10-26 19:56 - 00032592 _____ (Microsoft Corporation) C:\Windows\system32\msonpmon.dll 2015-10-04 16:10 - 2015-10-04 16:10 - 00000000 ____D C:\Program Files\Microsoft Works 2015-10-04 16:09 - 2015-10-04 16:09 - 00000000 ____D C:\Windows\PCHEALTH 2015-10-04 16:09 - 2015-10-04 16:09 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 2015-10-04 16:09 - 2015-10-04 16:09 - 00000000 ____D C:\Program Files\Common Files\DESIGNER 2015-10-04 16:08 - 2015-10-04 16:08 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 8 2015-10-04 16:07 - 2015-10-04 16:12 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help 2015-10-04 16:07 - 2015-10-04 16:12 - 00000000 ____D C:\ProgramData\Microsoft Help 2015-10-04 16:07 - 2015-10-04 16:09 - 00000000 ____D C:\Program Files\Microsoft Office 2015-10-04 16:07 - 2015-10-04 16:07 - 00000000 __RHD C:\MSOCache 2015-10-04 16:07 - 2015-10-04 16:07 - 00000000 ____D C:\Users\COMPAQ\Documents\Livros de Libras 2015-10-04 16:07 - 2015-10-04 16:07 - 00000000 ____D C:\Users\COMPAQ\AppData\Local\Microsoft Help 2015-10-04 16:05 - 2015-10-04 16:05 - 00008109 _____ C:\Windows\WDIC.INI 2015-10-04 16:05 - 2015-10-04 16:05 - 00000656 _____ C:\Users\COMPAQ\Desktop\Dicionário Michaelis - UOL.LNK 2015-10-04 16:05 - 2015-10-04 16:05 - 00000000 ____D C:\Users\COMPAQ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dic Michaelis - UOL 2015-10-04 16:05 - 2015-10-04 16:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dic Michaelis - UOL 2015-10-04 16:05 - 2015-10-04 16:05 - 00000000 ____D C:\Dic 2015-10-04 16:04 - 2015-10-07 05:55 - 00001012 _____ C:\Users\COMPAQ\Desktop\Biblia Eletrônica.lnk 2015-10-04 16:04 - 2015-10-04 16:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Biblia Eletrônica 2015-10-04 16:04 - 2015-10-04 16:04 - 00000000 ____D C:\Program Files\RkSoft 2015-10-04 16:04 - 2004-03-09 18:45 - 00212240 _____ (Microsoft Corporation) C:\Windows\system32\Richtx32.ocx 2015-10-04 16:04 - 2003-07-25 19:14 - 00380928 _____ () C:\Windows\system32\ACTSKIN4.OCX 2015-10-04 16:04 - 2003-07-25 19:14 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\STKIT432.DLL 2015-10-04 15:52 - 2015-10-04 15:52 - 00000000 ____D C:\Users\COMPAQ\Documents\Avast free 7.0 +serial 2015-10-04 15:52 - 2013-06-20 16:51 - 29675520 _____ C:\Users\COMPAQ\Documents\Slim Driver_Atualização.msi 2015-10-04 15:49 - 2015-10-07 05:56 - 00002473 _____ C:\Users\Public\Desktop\Configurar Drivers.lnk 2015-10-04 15:48 - 2015-10-04 17:22 - 00108824 _____ C:\Users\COMPAQ\AppData\Local\GDIPFONTCACHEV1.DAT 2015-10-04 15:48 - 2015-10-04 15:48 - 00001915 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk 2015-10-04 15:48 - 2015-10-04 15:48 - 00001912 _____ C:\Windows\epplauncher.mif 2015-10-04 15:48 - 2015-10-04 15:48 - 00000000 ____D C:\Program Files\Microsoft Security Client 2015-10-04 15:43 - 2015-10-04 16:09 - 00000000 ____D C:\Program Files\Microsoft.NET 2015-10-04 15:42 - 2015-10-04 15:42 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf 2015-10-04 15:37 - 2015-10-07 15:16 - 00001393 _____ C:\Users\COMPAQ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2015-10-04 15:37 - 2015-10-04 16:26 - 00000000 ____D C:\Users\COMPAQ\AppData\Local\VirtualStore 2015-10-04 15:36 - 2015-10-04 15:37 - 00000000 ____D C:\Users\COMPAQ 2015-10-04 15:36 - 2015-10-04 15:36 - 00000020 ___SH C:\Users\COMPAQ\ntuser.ini 2015-10-04 15:36 - 2015-10-04 15:36 - 00000000 _SHDL C:\Users\COMPAQ\Modelos 2015-10-04 15:36 - 2015-10-04 15:36 - 00000000 _SHDL C:\Users\COMPAQ\Meus documentos 2015-10-04 15:36 - 2015-10-04 15:36 - 00000000 _SHDL C:\Users\COMPAQ\Menu Iniciar 2015-10-04 15:36 - 2015-10-04 15:36 - 00000000 _SHDL C:\Users\COMPAQ\Documents\Minhas músicas 2015-10-04 15:36 - 2015-10-04 15:36 - 00000000 _SHDL C:\Users\COMPAQ\Documents\Minhas imagens 2015-10-04 15:36 - 2015-10-04 15:36 - 00000000 _SHDL C:\Users\COMPAQ\Documents\Meus vídeos 2015-10-04 15:36 - 2015-10-04 15:36 - 00000000 _SHDL C:\Users\COMPAQ\Dados de aplicativos 2015-10-04 15:36 - 2015-10-04 15:36 - 00000000 _SHDL C:\Users\COMPAQ\Configurações locais 2015-10-04 15:36 - 2015-10-04 15:36 - 00000000 _SHDL C:\Users\COMPAQ\AppData\Roaming\Microsoft\Windows\Start Menu\Programas 2015-10-04 15:36 - 2015-10-04 15:36 - 00000000 _SHDL C:\Users\COMPAQ\AppData\Local\Histórico 2015-10-04 15:36 - 2015-10-04 15:36 - 00000000 _SHDL C:\Users\COMPAQ\AppData\Local\Dados de aplicativos 2015-10-04 15:36 - 2015-10-04 15:36 - 00000000 _SHDL C:\Users\COMPAQ\Ambiente de rede 2015-10-04 15:36 - 2015-10-04 15:36 - 00000000 _SHDL C:\Users\COMPAQ\Ambiente de impressão 2015-10-04 15:36 - 2009-07-14 01:42 - 00000000 ___RD C:\Users\COMPAQ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-10-04 15:36 - 2009-07-14 01:37 - 00000000 ___RD C:\Users\COMPAQ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas músicas 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Minhas imagens 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Usuário Padrão\Documents\Meus vídeos 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Roaming\Microsoft\Windows\Start Menu\Programas 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Histórico 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Usuário Padrão\AppData\Local\Dados de aplicativos 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Usuário Padrão 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Todos os Usuários\Modelos 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Todos os Usuários\Menu Iniciar 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Todos os Usuários\Favoritos 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Todos os Usuários\Documentos 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Todos os Usuários\Dados de aplicativos 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Todos os Usuários 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Public\Documents\Minhas músicas 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Public\Documents\Minhas imagens 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Public\Documents\Meus vídeos 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Default\Modelos 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Default\Meus documentos 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Default\Menu Iniciar 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Default\Documents\Minhas músicas 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Default\Documents\Minhas imagens 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Default\Documents\Meus vídeos 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Default\Dados de aplicativos 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Default\Configurações locais 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Default\AppData\Local\Histórico 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Default\AppData\Local\Dados de aplicativos 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Default\Ambiente de rede 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Default\Ambiente de impressão 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Default User\Documents\Minhas músicas 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Default User\Documents\Minhas imagens 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Default User\Documents\Meus vídeos 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programas 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Histórico 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Dados de aplicativos 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\ProgramData\Modelos 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programas 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\ProgramData\Menu Iniciar 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\ProgramData\Favoritos 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\ProgramData\Documentos 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\ProgramData\Dados de aplicativos 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Program Files\Common Files\Sistema 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Program Files\Arquivos Comuns 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 _SHDL C:\Arquivos de Programas 2015-10-04 15:33 - 2015-10-04 15:33 - 00000000 __SHD C:\Recovery 2015-10-04 15:19 - 2015-10-13 07:31 - 01094888 _____ C:\Windows\WindowsUpdate.log 2015-10-04 15:19 - 2015-10-04 15:19 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk 2015-10-04 15:19 - 2015-10-04 15:19 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-10-13 07:25 - 2009-07-14 01:34 - 00014032 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-10-13 07:25 - 2009-07-14 01:34 - 00014032 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-10-13 07:18 - 2009-07-14 01:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-10-08 03:15 - 2009-07-13 23:37 - 00000000 ____D C:\Windows\Microsoft.NET 2015-10-08 01:06 - 2011-02-04 14:30 - 01633428 _____ C:\Windows\system32\PerfStringBackup.INI 2015-10-08 01:06 - 2009-07-14 05:31 - 00704982 _____ C:\Windows\system32\prfh0416.dat 2015-10-08 01:06 - 2009-07-14 05:31 - 00146668 _____ C:\Windows\system32\prfc0416.dat 2015-10-07 07:08 - 2009-07-14 01:52 - 00000000 ____D C:\Windows\Offline Web Pages 2015-10-07 07:06 - 2009-07-13 23:04 - 00000606 _____ C:\Windows\win.ini 2015-10-07 05:03 - 2011-02-04 14:58 - 00000000 ____D C:\Windows\Panther 2015-10-04 17:22 - 2009-07-14 01:33 - 00413368 _____ C:\Windows\system32\FNTCACHE.DAT 2015-10-04 16:36 - 2009-07-13 23:37 - 00000000 ____D C:\Windows\system32\NDF 2015-10-04 16:10 - 2009-07-14 01:52 - 00000000 ____D C:\Program Files\MSBuild 2015-10-04 16:10 - 2009-07-13 23:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2015-10-04 16:09 - 2011-02-05 14:50 - 00000000 ____D C:\Windows\ShellNew 2015-10-04 16:07 - 2009-07-13 23:37 - 00000000 ____D C:\Program Files\Common Files\System 2015-10-04 15:43 - 2009-07-14 01:52 - 00000000 ____D C:\Windows\system32\restore 2015-10-04 15:34 - 2009-07-13 23:37 - 00000000 ____D C:\Windows\rescache 2015-10-04 15:33 - 2009-07-13 23:37 - 00000000 __RHD C:\Users\Default 2015-10-04 15:33 - 2009-07-13 23:37 - 00000000 ____D C:\Program Files\Windows NT 2015-10-04 15:19 - 2009-07-13 23:37 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories 2015-10-04 15:16 - 2011-02-05 14:50 - 00000000 ____D C:\Windows\CSC 2015-10-04 15:14 - 2009-07-14 01:57 - 00025600 ___SH C:\Windows\system32\config\BCD-Template.LOG 2015-10-04 15:14 - 2009-07-14 01:52 - 00028672 _____ C:\Windows\system32\config\BCD-Template ==================== Files in the root of some directories ======= 2015-10-07 05:56 - 2015-10-07 05:56 - 0001272 _____ () C:\Users\COMPAQ\AppData\Local\Chrome .lnk 2015-10-07 05:56 - 2015-10-07 05:56 - 0000298 _____ () C:\Users\COMPAQ\AppData\Local\Firefox .lnk 2015-10-07 05:55 - 2015-10-07 05:55 - 0001122 _____ () C:\Users\COMPAQ\AppData\Local\Iexplore .lnk ==================== Bamital & volsnap ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\explorer.exe => File is digitally signed C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\dnsapi.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-10-08 03:22 ==================== End of FRST.txt ============================