Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows 7 64bit not starting


  • This topic is locked This topic is locked
15 replies to this topic

#1 Manojo

Manojo

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Brasil
  • Local time:10:12 PM

Posted 22 June 2011 - 11:44 PM

Hello

I have the same problem from the guy on this topic:
http://www.bleepingcomputer.com/forums/topic405133.html

and I need help to the last step, transforming my frst.txt in a fixlist.txt

Can someone help me please?

I am sending my frst list below

tnx

Scan result of Farbars's Recovery Tool (FRST written by farbar) Version 2.1.1
Ran by SYSTEM at 2011-06-23 00:44:35
Running from E:\
Windows 7 Ultimate Service Pack 1 (X64) OS Language: English(US)
The current controlset is ControlSet001

========================== Registry ==========================

HKLM\...\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE [566696 2010-10-18] (TOSHIBA Corporation)
HKLM\...\Run: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe [296824 2010-09-25] (TOSHIBA Corporation)
HKLM\...\Run: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe [508216 2009-07-28] (TOSHIBA Corporation)
HKLM\...\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe [915320 2010-05-10] (TOSHIBA Corporation)
HKLM\...\Run: [TosNC] %ProgramFiles%\Toshiba\BulletinBoard\TosNcCore.exe [597416 2010-11-01] (TOSHIBA Corporation)
HKLM\...\Run: [Teco] "%ProgramFiles%\TOSHIBA\TECO\Teco.exe" /r [1481568 2009-08-26] (TOSHIBA Corporation)
HKLM-x32\...\Run: [ToshibaServiceStation] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" /hide:60 [1294712 2010-11-29] (TOSHIBA Corporation)
HKLM-x32\...\Run: [TWebCamera] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorun [2475384 2010-11-02] (TOSHIBA CORPORATION.)
HKLM-x32\...\Run: [TUSBSleepChargeSrv] %ProgramFiles(x86)%\TOSHIBA\TOSHIBA USB Sleep and Charge Utility\TUSBSleepChargeSrv.exe
HKLM-x32\...\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin [406992 2010-02-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [messenger.exe] C:\Program Files (x86)\Common Files\Microsoft Shared\Web Components\messenger.exe [93395 2011-02-22] (© MICR0S0FT corporation)
HKLM-x32\...\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [31072 2008-10-25] (Microsoft Corporation)
HKLM-x32\...\Run: [nsiybnscjxc] C:\Windows\System32\regsvr32.exe /s "C:\Windows\SysWow64\olxflxhdxbmu.dll" [896000 2011-04-04] ()
HKLM-x32\...\Run: [Emurayden PSX Emulator]
HKU\Default\...\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun [1475584 2010-11-20] (Microsoft Corporation)
HKU\Default User\...\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun [1475584 2010-11-20] (Microsoft Corporation)
HKU\MANOJO\...\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun [1475584 2010-11-20] (Microsoft Corporation)
HKU\MANOJO\...\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background [4240760 2010-11-09] (Microsoft Corporation)
HKU\MANOJO\...\Run: [IncrediMail] C:\Program Files (x86)\IncrediMail\bin\IncMail.exe /c [357832 2011-05-21] (IncrediMail, Ltd.)
HKU\MANOJO\...\Run: [AdobeBridge]
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe, [30720 2010-11-20] (Microsoft Corporation)
HKLM-x32\...\Winlogon: [Userinit] userinit.exe [30720 2010-11-20] (Microsoft Corporation)
HKLM\...\Winlogon: [Shell] explorer.exe [2871808 2011-02-24] (Microsoft Corporation)
HKLM-x32\...\Winlogon: [Shell] explorer.exe [2871808 2011-02-24] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 200.204.0.10 200.204.0.138


==================== Services ====================

3 AeLookupSvc; C:\Windows\System32\aelupsvc.dll [72192 2009-07-13] (Microsoft Corporation)
3 ALG; C:\Windows\System32\alg.exe [79360 2009-07-13] (Microsoft Corporation)
3 AppIDSvc; C:\Windows\System32\appidsvc.dll [32256 2009-07-13] (Microsoft Corporation)
3 Appinfo; C:\Windows\System32\appinfo.dll [70656 2010-11-20] (Microsoft Corporation)
3 AppMgmt; C:\Windows\System32\appmgmts.dll [193536 2009-07-13] (Microsoft Corporation)
3 aspnet_state; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [44376 2010-03-18] (Microsoft Corporation)
2 AudioEndpointBuilder; C:\Windows\System32\Audiosrv.dll [679424 2010-11-20] (Microsoft Corporation)
2 AudioSrv; C:\Windows\System32\Audiosrv.dll [679424 2010-11-20] (Microsoft Corporation)
2 avast! Antivirus; "C:\Program Files\AVAST Software\Avast\AvastSvc.exe" [42184 2011-05-10] (AVAST Software)
3 AxInstSV; C:\Windows\System32\AxInstSV.dll [114688 2010-11-20] (Microsoft Corporation)
3 BDESVC; C:\Windows\System32\bdesvc.dll [100864 2009-07-13] (Microsoft Corporation)
2 BFE; C:\Windows\System32\bfe.dll [705024 2010-11-20] (Microsoft Corporation)
2 BITS; C:\Windows\System32\qmgr.dll [849920 2010-11-20] (Microsoft Corporation)
3 Browser; C:\Windows\System32\browser.dll [136192 2010-11-20] (Microsoft Corporation)
3 bthserv; C:\Windows\System32\bthserv.dll [83968 2009-07-13] (Microsoft Corporation)
3 CertPropSvc; C:\Windows\System32\certprop.dll [80384 2010-11-20] (Microsoft Corporation)
4 clr_optimization_v2.0.50727_32; C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [66384 2009-06-10] (Microsoft Corporation)
4 clr_optimization_v2.0.50727_64; C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [89920 2009-06-10] (Microsoft Corporation)
2 clr_optimization_v4.0.30319_32; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [130384 2010-03-18] (Microsoft Corporation)
2 clr_optimization_v4.0.30319_64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [138576 2010-03-18] (Microsoft Corporation)
3 COMSysApp; C:\Windows\System32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} [9728 2009-07-13] (Microsoft Corporation)
2 CronService; "C:\Prey\platform\windows\cronsvc.exe" [19968 2011-02-15] (Fork Ltd.)
2 CryptSvc; C:\Windows\System32\cryptsvc.dll [177152 2010-11-20] (Microsoft Corporation)
2 CscService; C:\Windows\System32\cscsvc.dll [692224 2010-11-20] (Microsoft Corporation)
2 DcomLaunch; C:\Windows\System32\rpcss.dll [512000 2010-11-20] (Microsoft Corporation)
3 defragsvc; C:\Windows\System32\defragsvc.dll [291328 2009-07-13] (Microsoft Corporation)
2 Dhcp; C:\Windows\System32\dhcpcore.dll [317952 2010-11-20] (Microsoft Corporation)
2 Dnscache; C:\Windows\System32\dnsrslvr.dll [183296 2011-03-02] (Microsoft Corporation)
3 dot3svc; C:\Windows\System32\dot3svc.dll [252416 2010-11-20] (Microsoft Corporation)
2 DPS; C:\Windows\System32\dps.dll [162816 2010-11-20] (Microsoft Corporation)
3 EapHost; C:\Windows\System32\eapsvc.dll [111104 2009-07-13] (Microsoft Corporation)
3 EFS; C:\Windows\System32\lsass.exe [31232 2009-07-13] (Microsoft Corporation)
3 ehRecvr; C:\Windows\ehome\ehRecvr.exe [696832 2010-11-20] (Microsoft Corporation)
3 ehSched; C:\Windows\ehome\ehsched.exe [127488 2009-07-13] (Microsoft Corporation)
2 eventlog; C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted [27136 2009-07-13] (Microsoft Corporation)
2 EventSystem; C:\Windows\System32\es.dll [402944 2009-07-13] (Microsoft Corporation)
3 Fax; C:\Windows\System32\fxssvc.exe [689152 2010-11-20] (Microsoft Corporation)
3 fdPHost; C:\Windows\System32\fdPHost.dll [16384 2009-07-13] (Microsoft Corporation)
3 FDResPub; C:\Windows\System32\fdrespub.dll [34816 2009-07-13] (Microsoft Corporation)
2 FontCache; C:\Windows\System32\FntCache.dll [1139200 2011-02-19] (Microsoft Corporation)
3 FontCache3.0.0.0; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [42856 2010-11-20] (Microsoft Corporation)
2 gpsvc; C:\Windows\System32\gpsvc.dll [777728 2010-11-20] (Microsoft Corporation)
2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [136176 2011-05-23] (Google Inc.)
3 hidserv; C:\Windows\System32\hidserv.dll [38912 2009-07-13] (Microsoft Corporation)
3 hkmsvc; C:\Windows\System32\kmsvc.dll [90624 2010-11-20] (Microsoft Corporation)
3 HomeGroupListener; C:\Windows\System32\ListSvc.dll [232448 2010-11-20] (Microsoft Corporation)
3 HomeGroupProvider; C:\Windows\System32\provsvc.dll [187904 2010-11-20] (Microsoft Corporation)
3 IDriverT; "C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe" [69632 2005-04-03] (Macrovision Corporation)
3 idsvc; "C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe" [856400 2010-11-20] (Microsoft Corporation)
2 IKEEXT; C:\Windows\System32\ikeext.dll [853504 2010-11-20] (Microsoft Corporation)
3 IPBusEnum; C:\Windows\System32\ipbusenum.dll [101888 2009-07-13] (Microsoft Corporation)
2 iphlpsvc; C:\Windows\System32\iphlpsvc.dll [569344 2010-11-20] (Microsoft Corporation)
2 IviRegMgr; "C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe" [110736 2010-05-20] (InterVideo)
3 KeyIso; C:\Windows\System32\lsass.exe [31232 2009-07-13] (Microsoft Corporation)
3 KtmRm; C:\Windows\System32\msdtckrm.dll [368640 2009-07-13] (Microsoft Corporation)
2 LanmanServer; C:\Windows\System32\srvsvc.dll [236032 2010-11-20] (Microsoft Corporation)
2 LanmanWorkstation; C:\Windows\System32\wkssvc.dll [118784 2010-11-20] (Microsoft Corporation)
3 lltdsvc; C:\Windows\System32\lltdsvc.dll [300032 2009-07-13] (Microsoft Corporation)
2 lmhosts; C:\Windows\System32\lmhsvc.dll [23552 2009-07-13] (Microsoft Corporation)
4 Mcx2Svc; C:\Windows\System32\Mcx2Svc.dll [84992 2010-11-20] (Microsoft Corporation)
3 Microsoft Office Groove Audit Service; "C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe" [65888 2008-10-25] (Microsoft Corporation)
2 MMCSS; C:\Windows\System32\mmcss.dll [67584 2009-07-13] (Microsoft Corporation)
2 MpsSvc; C:\Windows\System32\mpssvc.dll [828416 2010-11-20] (Microsoft Corporation)
3 MSDTC; C:\Windows\System32\msdtc.exe [141824 2009-07-13] (Microsoft Corporation)
3 MSiSCSI; C:\Windows\System32\iscsiexe.dll [156672 2009-07-13] (Microsoft Corporation)
3 msiserver; C:\Windows\System32\msiexec.exe /V [128000 2010-11-20] (Microsoft Corporation)
3 napagent; C:\Windows\System32\qagentRT.dll [476160 2010-11-20] (Microsoft Corporation)
3 Netlogon; C:\Windows\System32\lsass.exe [31232 2009-07-13] (Microsoft Corporation)
3 Netman; C:\Windows\System32\netman.dll [360448 2009-07-13] (Microsoft Corporation)
3 netprofm; C:\Windows\System32\netprofm.dll [459776 2009-07-13] (Microsoft Corporation)
2 NlaSvc; C:\Windows\System32\nlasvc.dll [303616 2010-11-20] (Microsoft Corporation)
2 nlsX86cc; C:\Windows\SysWOW64\nlssrv32.exe [66560 2011-02-04] (Nalpeiron Ltd.)
2 nsi; C:\Windows\System32\nsisvc.dll [25600 2009-07-13] (Microsoft Corporation)
2 NVSvc; C:\Windows\System32\nvvsvc.exe [993896 2010-11-17] (NVIDIA Corporation)
2 O2FLASH; C:\Windows\System32\DRIVERS\o2flash.exe [65536 2007-02-12] (O2Micro International)
3 odserv; "C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE" [441712 2008-11-03] (Microsoft Corporation)
3 ose; "C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE" [145184 2006-10-26] (Microsoft Corporation)
3 p2pimsvc; C:\Windows\System32\pnrpsvc.dll [327168 2009-07-13] (Microsoft Corporation)
3 p2psvc; C:\Windows\System32\p2psvc.dll [438784 2009-07-13] (Microsoft Corporation)
2 PcaSvc; C:\Windows\System32\pcasvc.dll [186368 2009-07-13] (Microsoft Corporation)
3 PeerDistSvc; C:\Windows\System32\peerdistsvc.dll [1361920 2009-07-13] (Microsoft Corporation)
3 PerfHost; C:\Windows\SysWow64\perfhost.exe [20992 2009-07-13] (Microsoft Corporation)
3 pla; C:\Windows\System32\pla.dll [1389056 2010-11-20] (Microsoft Corporation)
2 PlugPlay; C:\Windows\System32\umpnpmgr.dll [404480 2010-11-20] (Microsoft Corporation)
3 PNRPAutoReg; C:\Windows\System32\pnrpauto.dll [25088 2009-07-13] (Microsoft Corporation)
3 PNRPsvc; C:\Windows\System32\pnrpsvc.dll [327168 2009-07-13] (Microsoft Corporation)
3 PolicyAgent; C:\Windows\System32\ipsecsvc.dll [501248 2010-11-20] (Microsoft Corporation)
2 Power; C:\Windows\System32\umpo.dll [163840 2009-07-13] (Microsoft Corporation)
2 ProfSvc; C:\Windows\System32\profsvc.dll [209920 2010-11-20] (Microsoft Corporation)
3 ProtectedStorage; C:\Windows\System32\lsass.exe [31232 2009-07-13] (Microsoft Corporation)
2 PSI_SVC_2; "C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe" [189728 2009-07-24] (Protexis Inc.)
3 QWAVE; C:\Windows\system32\qwave.dll [242688 2009-07-13] (Microsoft Corporation)
3 RasAuto; C:\Windows\System32\rasauto.dll [99328 2009-07-13] (Microsoft Corporation)
3 RasMan; C:\Windows\System32\rasmans.dll [344064 2010-11-20] (Microsoft Corporation)
4 RemoteAccess; C:\Windows\System32\mprdim.dll [97792 2009-07-13] (Microsoft Corporation)
3 RemoteRegistry; C:\Windows\System32\regsvc.dll [159232 2009-07-13] (Microsoft Corporation)
2 RpcEptMapper; C:\Windows\System32\RpcEpMap.dll [67072 2009-07-13] (Microsoft Corporation)
3 RpcLocator; C:\Windows\System32\locator.exe [10240 2009-07-13] (Microsoft Corporation)
2 RpcSs; C:\Windows\System32\rpcss.dll [512000 2010-11-20] (Microsoft Corporation)
2 SamSs; C:\Windows\System32\lsass.exe [31232 2009-07-13] (Microsoft Corporation)
3 SCardSvr; C:\Windows\System32\SCardSvr.dll [190976 2009-07-13] (Microsoft Corporation)
2 Schedule; C:\Windows\System32\schedsvc.dll [1110016 2010-11-20] (Microsoft Corporation)
3 SCPolicySvc; C:\Windows\System32\certprop.dll [80384 2010-11-20] (Microsoft Corporation)
3 SDRSVC; C:\Windows\System32\SDRSVC.dll [170496 2010-11-20] (Microsoft Corporation)
3 seclogon; C:\Windows\system32\seclogon.dll [30720 2010-11-20] (Microsoft Corporation)
2 SENS; C:\Windows\System32\sens.dll [64512 2009-07-13] (Microsoft Corporation)
3 SensrSvc; C:\Windows\System32\sensrsvc.dll [29184 2009-07-13] (Microsoft Corporation)
3 SessionEnv; C:\Windows\System32\sessenv.dll [121856 2010-11-20] (Microsoft Corporation)
4 SharedAccess; C:\Windows\System32\ipnathlp.dll [359424 2009-07-13] (Microsoft Corporation)
2 ShellHWDetection; C:\Windows\System32\shsvcs.dll [370688 2010-11-20] (Microsoft Corporation)
3 SNMPTRAP; C:\Windows\System32\snmptrap.exe [14336 2009-07-13] (Microsoft Corporation)
2 Spooler; C:\Windows\System32\spoolsv.exe [559104 2010-11-20] (Microsoft Corporation)
2 sppsvc; C:\Windows\System32\sppsvc.exe [3524608 2010-11-20] (Microsoft Corporation)
3 sppuinotify; C:\Windows\System32\sppuinotify.dll [65536 2009-07-13] (Microsoft Corporation)
2 sp_rssrv; "C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe" [948775 2011-06-22] (Crawler.com)
3 SSDPSRV; C:\Windows\System32\ssdpsrv.dll [193024 2009-07-13] (Microsoft Corporation)
3 SstpSvc; C:\Windows\System32\sstpsvc.dll [75264 2009-07-13] (Microsoft Corporation)
3 Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe /RunAsService [403240 2011-06-02] (Valve Corporation)
2 Stereo Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [378472 2010-11-17] (NVIDIA Corporation)
2 stisvc; C:\Windows\System32\wiaservc.dll [580096 2010-11-20] (Microsoft Corporation)
3 SwitchBoard; "C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [517096 2010-02-19] (Adobe Systems Incorporated)
3 swprv; C:\Windows\System32\swprv.dll [524288 2009-07-13] (Microsoft Corporation)
2 SysMain; C:\Windows\System32\sysmain.dll [1743360 2010-11-20] (Microsoft Corporation)
3 TabletInputService; C:\Windows\System32\TabSvc.dll [92672 2010-11-20] (Microsoft Corporation)
3 TapiSrv; C:\Windows\System32\tapisrv.dll [316928 2010-11-20] (Microsoft Corporation)
3 TBS; C:\Windows\System32\tbssvc.dll [65536 2009-07-13] (Microsoft Corporation)
3 TermService; C:\Windows\System32\termsrv.dll [680960 2010-11-20] (Microsoft Corporation)
2 Themes; C:\Windows\System32\themeservice.dll [44544 2009-07-13] (Microsoft Corporation)
3 THREADORDER; C:\Windows\System32\mmcss.dll [67584 2009-07-13] (Microsoft Corporation)
3 TMachInfo; C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [54136 2010-11-29] (TOSHIBA Corporation)
2 TODDSrv; C:\Windows\system32\TODDSrv.exe [138656 2010-10-20] (TOSHIBA Corporation)
2 TosCoSrv; "C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe" [489384 2010-10-18] (TOSHIBA Corporation)
2 TOSHIBA eco Utility Service; "C:\Program Files\TOSHIBA\TECO\TecoService.exe" [251760 2009-08-27] (TOSHIBA Corporation)
2 TrkWks; C:\Windows\System32\trkwks.dll [119808 2009-07-13] (Microsoft Corporation)
3 TrustedInstaller; C:\Windows\servicing\TrustedInstaller.exe [194048 2010-11-20] (Microsoft Corporation)
3 UI0Detect; C:\Windows\System32\UI0Detect.exe [40960 2009-07-13] (Microsoft Corporation)
3 UmRdpService; C:\Windows\System32\umrdp.dll [214528 2010-11-20] (Microsoft Corporation)
3 upnphost; C:\Windows\System32\upnphost.dll [353792 2009-07-13] (Microsoft Corporation)
2 UxSms; C:\Windows\System32\uxsms.dll [38912 2009-07-13] (Microsoft Corporation)
3 VaultSvc; C:\Windows\System32\lsass.exe [31232 2009-07-13] (Microsoft Corporation)
3 vds; C:\Windows\System32\vds.exe [533504 2010-11-20] (Microsoft Corporation)
3 VSS; C:\Windows\System32\vssvc.exe [1600512 2010-11-20] (Microsoft Corporation)
3 W32Time; C:\Windows\System32\w32time.dll [381952 2009-07-13] (Microsoft Corporation)
3 WatAdminSvc; C:\Windows\System32\Wat\WatAdminSvc.exe [1255736 2011-02-22] (Microsoft Corporation)
3 wbengine; "C:\Windows\system32\wbengine.exe" [1504256 2010-11-20] (Microsoft Corporation)
3 WbioSrvc; C:\Windows\System32\wbiosrvc.dll [202240 2009-07-13] (Microsoft Corporation)
3 wcncsvc; C:\Windows\System32\wcncsvc.dll [367104 2010-11-20] (Microsoft Corporation)
3 WcsPlugInService; C:\Windows\System32\WcsPlugInService.dll [40960 2009-07-13] (Microsoft Corporation)
3 WdiServiceHost; C:\Windows\System32\wdi.dll [90624 2009-07-13] (Microsoft Corporation)
3 WdiSystemHost; C:\Windows\System32\wdi.dll [90624 2009-07-13] (Microsoft Corporation)
3 WebClient; C:\Windows\System32\webclnt.dll [258560 2010-11-20] (Microsoft Corporation)
3 Wecsvc; C:\Windows\System32\wecsvc.dll [237568 2009-07-13] (Microsoft Corporation)
3 wercplsupport; C:\Windows\System32\wercplsupport.dll [84480 2009-07-13] (Microsoft Corporation)
3 WerSvc; C:\Windows\System32\WerSvc.dll [76800 2009-07-13] (Microsoft Corporation)
4 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)
3 WinHttpAutoProxySvc; winhttp.dll [444416 2010-11-20] (Microsoft Corporation)
2 Winmgmt; C:\Windows\System32\wbem\WMIsvc.dll [242688 2009-07-13] (Microsoft Corporation)
3 WinRM; C:\Windows\System32\WsmSvc.dll [2018304 2010-11-20] (Microsoft Corporation)
2 Wlansvc; C:\Windows\System32\wlansvc.dll [886784 2009-07-13] (Microsoft Corporation)
2 wlidsvc; "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE" [2286976 2010-09-21] (Microsoft Corp.)
3 wmiApSrv; C:\Windows\System32\wbem\WmiApSrv.exe [203264 2009-07-13] (Microsoft Corporation)
2 WMPNetworkSvc; "C:\Program Files\Windows Media Player\wmpnetwk.exe" [1525248 2010-11-20] (Microsoft Corporation)
3 WPCSvc; C:\Windows\System32\wpcsvc.dll [12288 2009-07-13] (Microsoft Corporation)
3 WPDBusEnum; C:\Windows\System32\wpdbusenum.dll [117248 2010-11-20] (Microsoft Corporation)
4 wscsvc; C:\Windows\System32\wscsvc.dll [97280 2009-07-13] (Microsoft Corporation)
2 WSearch; C:\Windows\System32\SearchIndexer.exe /Embedding [593408 2009-07-13] (Microsoft Corporation)
2 wuauserv; C:\Windows\System32\wuaueng.dll [2420736 2010-11-20] (Microsoft Corporation)
2 wudfsvc; C:\Windows\System32\WUDFSvc.dll [78848 2010-11-20] (Microsoft Corporation)
3 WwanSvc; C:\Windows\System32\wwansvc.dll [229888 2009-07-13] (Microsoft Corporation)
2 MSSQL$SQLEXPRESS; "c:\Program Files\Microsoft SQL Server\MSSQL10_50.SQLEXPRESS\MSSQL\Binn\sqlservr.exe" -sSQLEXPRESS [x]
4 MSSQLServerADHelper100; "c:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE" [x]
4 NetMsmqActivator; "c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe" -NetMsmqActivator [x]
4 NetPipeActivator; c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [x]
4 NetTcpActivator; c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [x]
4 NetTcpPortSharing; c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [x]
4 SQLAgent$SQLEXPRESS; "c:\Program Files\Microsoft SQL Server\MSSQL10_50.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE" -i SQLEXPRESS [x]
4 SQLBrowser; "c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe" [x]
2 SQLWriter; "c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe" [x]

==================== Drivers ====================

3 1394ohci; C:\Windows\System32\DRIVERS\1394ohci.sys [229888 2010-11-20] (Microsoft Corporation)
0 ACPI; C:\Windows\System32\drivers\ACPI.sys [334208 2010-11-20] (Microsoft Corporation)
3 AcpiPmi; C:\Windows\System32\drivers\acpipmi.sys [12800 2010-11-20] (Microsoft Corporation)
3 adp94xx; C:\Windows\System32\drivers\adp94xx.sys [491088 2009-07-13] (Adaptec, Inc.)
3 adpahci; C:\Windows\System32\drivers\adpahci.sys [339536 2009-07-13] (Adaptec, Inc.)
3 adpu320; C:\Windows\System32\drivers\adpu320.sys [182864 2009-07-13] (Adaptec, Inc.)
1 AFD; C:\Windows\System32\drivers\afd.sys [499200 2011-04-24] (Microsoft Corporation)
3 agp440; C:\Windows\System32\drivers\agp440.sys [61008 2009-07-13] (Microsoft Corporation)
3 aliide; C:\Windows\System32\drivers\aliide.sys [15440 2009-07-13] (Acer Laboratories Inc.)
3 amdide; C:\Windows\System32\drivers\amdide.sys [15440 2009-07-13] (Microsoft Corporation)
3 AmdK8; C:\Windows\System32\drivers\amdk8.sys [64512 2009-07-13] (Microsoft Corporation)
3 AmdPPM; C:\Windows\System32\drivers\amdppm.sys [60928 2009-07-13] (Microsoft Corporation)
3 amdsata; C:\Windows\System32\drivers\amdsata.sys [107904 2010-11-20] (Advanced Micro Devices)
3 amdsbs; C:\Windows\System32\drivers\amdsbs.sys [194128 2009-07-13] (AMD Technologies Inc.)
0 amdxata; C:\Windows\System32\drivers\amdxata.sys [27008 2010-11-20] (Advanced Micro Devices)
3 AppID; C:\Windows\System32\drivers\appid.sys [61440 2010-11-20] (Microsoft Corporation)
3 arc; C:\Windows\System32\drivers\arc.sys [87632 2009-07-13] (Adaptec, Inc.)
3 arcsas; C:\Windows\System32\drivers\arcsas.sys [97856 2009-07-13] (Adaptec, Inc.)
2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [22360 2011-05-10] (AVAST Software)
2 aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [64344 2011-05-10] (AVAST Software)
1 aswRdr; C:\Windows\System32\Drivers\aswRdr.sys [31064 2011-05-10] (AVAST Software)
1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [600920 2011-05-10] (AVAST Software)
1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [287576 2011-05-10] (AVAST Software)
1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [53592 2011-05-10] (AVAST Software)
3 AsyncMac; C:\Windows\System32\DRIVERS\asyncmac.sys [23040 2009-07-13] (Microsoft Corporation)
0 atapi; C:\Windows\System32\drivers\atapi.sys [24128 2009-07-13] (Microsoft Corporation)
3 athr; C:\Windows\System32\DRIVERS\athrx.sys [2637824 2010-11-05] (Atheros Communications, Inc.)
3 b06bdrv; C:\Windows\System32\drivers\bxvbda.sys [468480 2009-06-10] (Broadcom Corporation)
3 b57nd60a; C:\Windows\System32\DRIVERS\b57nd60a.sys [270848 2009-06-10] (Broadcom Corporation)
1 Beep; C:\Windows\System32\Drivers\Beep.sys [6656 2009-07-13] (Microsoft Corporation)
1 blbdrive; C:\Windows\System32\DRIVERS\blbdrive.sys [45056 2009-07-13] (Microsoft Corporation)
3 bowser; C:\Windows\System32\DRIVERS\bowser.sys [90624 2011-02-22] (Microsoft Corporation)
3 BrFiltLo; C:\Windows\System32\drivers\BrFiltLo.sys [18432 2009-06-10] (Brother Industries, Ltd.)
3 BrFiltUp; C:\Windows\System32\drivers\BrFiltUp.sys [8704 2009-06-10] (Brother Industries, Ltd.)
3 Brserid; C:\Windows\System32\Drivers\Brserid.sys [286720 2009-07-13] (Brother Industries Ltd.)
3 BrSerWdm; C:\Windows\System32\Drivers\BrSerWdm.sys [47104 2009-06-10] (Brother Industries Ltd.)
3 BrUsbMdm; C:\Windows\System32\Drivers\BrUsbMdm.sys [14976 2009-06-10] (Brother Industries Ltd.)
3 BrUsbSer; C:\Windows\System32\Drivers\BrUsbSer.sys [14720 2009-06-10] (Brother Industries Ltd.)
3 BtFilter; C:\Windows\System32\DRIVERS\btfilter.sys [42096 2010-10-18] (Atheros)
3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [72192 2009-07-13] (Microsoft Corporation)
3 BTHPORT; C:\Windows\System32\Drivers\BTHport.sys [552448 2010-11-20] (Microsoft Corporation)
3 BTHUSB; C:\Windows\System32\Drivers\BTHUSB.sys [80384 2010-11-20] (Microsoft Corporation)
4 cdfs; C:\Windows\System32\DRIVERS\cdfs.sys [92160 2009-07-13] (Microsoft Corporation)
1 cdrom; C:\Windows\System32\DRIVERS\cdrom.sys [147456 2010-11-20] (Microsoft Corporation)
3 circlass; C:\Windows\System32\drivers\circlass.sys [45568 2009-07-13] (Microsoft Corporation)
0 CLFS; C:\Windows\System32\CLFS.sys [367696 2009-07-13] (Microsoft Corporation)
3 CmBatt; C:\Windows\System32\DRIVERS\CmBatt.sys [17664 2009-07-13] (Microsoft Corporation)
3 cmdide; C:\Windows\System32\drivers\cmdide.sys [17488 2009-07-13] (CMD Technology, Inc.)
0 CNG; C:\Windows\System32\Drivers\cng.sys [459248 2010-11-20] (Microsoft Corporation)
3 CnxtHdAudService; C:\Windows\System32\drivers\CHDRT64.sys [736896 2010-10-13] (Conexant Systems Inc.)
0 Compbatt; C:\Windows\System32\DRIVERS\compbatt.sys [21584 2009-07-13] (Microsoft Corporation)
3 CompositeBus; C:\Windows\System32\DRIVERS\CompositeBus.sys [38912 2010-11-20] (Microsoft Corporation)
4 crcdisk; C:\Windows\System32\drivers\crcdisk.sys [24144 2009-07-13] (Microsoft Corporation)
1 CSC; C:\Windows\System32\drivers\csc.sys [514560 2010-11-20] (Microsoft Corporation)
1 DfsC; C:\Windows\System32\Drivers\dfsc.sys [102400 2010-11-20] (Microsoft Corporation)
1 discache; C:\Windows\System32\drivers\discache.sys [40448 2009-07-13] (Microsoft Corporation)
0 Disk; C:\Windows\System32\drivers\disk.sys [73280 2009-07-13] (Microsoft Corporation)
3 dmvsc; C:\Windows\System32\drivers\dmvsc.sys [71168 2010-11-20] (Microsoft Corporation)
3 drmkaud; C:\Windows\System32\drivers\drmkaud.sys [5632 2009-07-13] (Microsoft Corporation)
1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [254528 2011-02-21] (DT Soft Ltd)
3 DXGKrnl; C:\Windows\System32\drivers\dxgkrnl.sys [982912 2010-11-20] (Microsoft Corporation)
3 ebdrv; C:\Windows\System32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
3 elxstor; C:\Windows\System32\drivers\elxstor.sys [530496 2009-07-13] (Emulex)
3 ErrDev; C:\Windows\System32\drivers\errdev.sys [9728 2009-07-13] (Microsoft Corporation)
3 exfat; C:\Windows\System32\Drivers\exfat.sys [195072 2009-07-13] (Microsoft Corporation)
3 fastfat; C:\Windows\System32\Drivers\fastfat.sys [204800 2009-07-13] (Microsoft Corporation)
3 fdc; C:\Windows\System32\drivers\fdc.sys [29696 2009-07-13] (Microsoft Corporation)
0 FileInfo; C:\Windows\System32\drivers\fileinfo.sys [70224 2009-07-13] (Microsoft Corporation)
3 Filetrace; C:\Windows\System32\drivers\filetrace.sys [34304 2009-07-13] (Microsoft Corporation)
3 flpydisk; C:\Windows\System32\drivers\flpydisk.sys [24576 2009-07-13] (Microsoft Corporation)
0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [289664 2010-11-20] (Microsoft Corporation)
3 FsDepends; C:\Windows\System32\drivers\FsDepends.sys [55376 2009-07-13] (Microsoft Corporation)
0 Fs_Rec; C:\Windows\System32\Drivers\Fs_Rec.sys [23104 2009-07-13] (Microsoft Corporation)
0 fvevol; C:\Windows\System32\DRIVERS\fvevol.sys [223248 2010-11-20] (Microsoft Corporation)
3 gagp30kx; C:\Windows\System32\drivers\gagp30kx.sys [65088 2009-07-13] (Microsoft Corporation)
3 hcw85cir; C:\Windows\System32\drivers\hcw85cir.sys [31232 2009-06-10] (Hauppauge Computer Works, Inc.)
3 HdAudAddService; C:\Windows\System32\drivers\HdAudio.sys [350208 2010-11-20] (Microsoft Corporation)
3 HDAudBus; C:\Windows\System32\DRIVERS\HDAudBus.sys [122368 2010-11-20] (Microsoft Corporation)
3 HidBatt; C:\Windows\System32\drivers\HidBatt.sys [26624 2009-07-13] (Microsoft Corporation)
3 HidBth; C:\Windows\System32\drivers\hidbth.sys [100864 2009-07-13] (Microsoft Corporation)
3 HidIr; C:\Windows\System32\drivers\hidir.sys [46592 2009-07-13] (Microsoft Corporation)
3 HidUsb; C:\Windows\System32\DRIVERS\hidusb.sys [30208 2010-11-20] (Microsoft Corporation)
3 HpSAMD; C:\Windows\System32\drivers\HpSAMD.sys [78720 2010-11-20] (Hewlett-Packard Company)
3 HTTP; C:\Windows\System32\drivers\HTTP.sys [753664 2010-11-20] (Microsoft Corporation)
0 hwpolicy; C:\Windows\System32\drivers\hwpolicy.sys [14720 2010-11-20] (Microsoft Corporation)
3 i8042prt; C:\Windows\System32\DRIVERS\i8042prt.sys [105472 2009-07-13] (Microsoft Corporation)
0 iaStor; C:\Windows\System32\DRIVERS\iaStor.sys [437272 2010-09-13] (Intel Corporation)
3 iaStorV; C:\Windows\System32\drivers\iaStorV.sys [410496 2010-11-20] (Intel Corporation)
3 iirsp; C:\Windows\System32\drivers\iirsp.sys [44112 2009-07-13] (Intel Corp./ICP vortex GmbH)
3 intelide; C:\Windows\System32\drivers\intelide.sys [16960 2009-07-13] (Microsoft Corporation)
3 intelppm; C:\Windows\System32\DRIVERS\intelppm.sys [62464 2009-07-13] (Microsoft Corporation)
3 IpFilterDriver; C:\Windows\System32\DRIVERS\ipfltdrv.sys [82944 2010-11-20] (Microsoft Corporation)
3 IPMIDRV; C:\Windows\System32\drivers\IPMIDrv.sys [78848 2010-11-20] (Microsoft Corporation)
3 IPNAT; C:\Windows\System32\drivers\ipnat.sys [116224 2009-07-13] (Microsoft Corporation)
3 IRENUM; C:\Windows\System32\drivers\irenum.sys [17920 2009-07-13] (Microsoft Corporation)
3 isapnp; C:\Windows\System32\drivers\isapnp.sys [20544 2009-07-13] (Microsoft Corporation)
3 iScsiPrt; C:\Windows\System32\drivers\msiscsi.sys [273792 2010-11-20] (Microsoft Corporation)
3 kbdclass; C:\Windows\System32\DRIVERS\kbdclass.sys [50768 2009-07-13] (Microsoft Corporation)
3 kbdhid; C:\Windows\System32\drivers\kbdhid.sys [33280 2010-11-20] (Microsoft Corporation)
0 KSecDD; C:\Windows\System32\Drivers\ksecdd.sys [95616 2010-11-20] (Microsoft Corporation)
0 KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [152960 2010-11-20] (Microsoft Corporation)
3 ksthunk; C:\Windows\System32\drivers\ksthunk.sys [20992 2009-07-13] (Microsoft Corporation)
2 lltdio; C:\Windows\System32\DRIVERS\lltdio.sys [60928 2009-07-13] (Microsoft Corporation)
3 LSI_FC; C:\Windows\System32\drivers\lsi_fc.sys [114752 2009-07-13] (LSI Corporation)
3 LSI_SAS; C:\Windows\System32\drivers\lsi_sas.sys [106560 2009-07-13] (LSI Corporation)
3 LSI_SAS2; C:\Windows\System32\drivers\lsi_sas2.sys [65600 2009-07-13] (LSI Corporation)
3 LSI_SCSI; C:\Windows\System32\drivers\lsi_scsi.sys [115776 2009-07-13] (LSI Corporation)
2 luafv; C:\Windows\System32\drivers\luafv.sys [113152 2009-07-13] (Microsoft Corporation)
3 megasas; C:\Windows\System32\drivers\megasas.sys [35392 2009-07-13] (LSI Corporation)
3 MegaSR; C:\Windows\System32\drivers\MegaSR.sys [284736 2009-07-13] (LSI Corporation, Inc.)
3 Modem; C:\Windows\System32\drivers\modem.sys [40448 2009-07-13] (Microsoft Corporation)
3 monitor; C:\Windows\System32\DRIVERS\monitor.sys [30208 2009-07-13] (Microsoft Corporation)
3 mouclass; C:\Windows\System32\DRIVERS\mouclass.sys [49216 2009-07-13] (Microsoft Corporation)
3 mouhid; C:\Windows\System32\DRIVERS\mouhid.sys [31232 2009-07-13] (Microsoft Corporation)
0 mountmgr; C:\Windows\System32\drivers\mountmgr.sys [94592 2010-11-20] (Microsoft Corporation)
3 mpio; C:\Windows\System32\drivers\mpio.sys [155008 2010-11-20] (Microsoft Corporation)
3 mpsdrv; C:\Windows\System32\drivers\mpsdrv.sys [77312 2009-07-13] (Microsoft Corporation)
3 MRxDAV; C:\Windows\System32\drivers\mrxdav.sys [140800 2010-11-20] (Microsoft Corporation)
3 mrxsmb; C:\Windows\System32\DRIVERS\mrxsmb.sys [158208 2011-04-26] (Microsoft Corporation)
3 mrxsmb10; C:\Windows\System32\DRIVERS\mrxsmb10.sys [289280 2011-04-26] (Microsoft Corporation)
3 mrxsmb20; C:\Windows\System32\DRIVERS\mrxsmb20.sys [128000 2011-04-26] (Microsoft Corporation)
0 msahci; C:\Windows\System32\drivers\msahci.sys [31104 2010-11-20] (Microsoft Corporation)
3 msdsm; C:\Windows\System32\drivers\msdsm.sys [140672 2010-11-20] (Microsoft Corporation)
1 Msfs; C:\Windows\System32\Drivers\Msfs.sys [26112 2009-07-13] (Microsoft Corporation)
3 mshidkmdf; C:\Windows\System32\drivers\mshidkmdf.sys [8192 2009-07-13] (Microsoft Corporation)
0 msisadrv; C:\Windows\System32\drivers\msisadrv.sys [15424 2009-07-13] (Microsoft Corporation)
3 MSKSSRV; C:\Windows\System32\drivers\MSKSSRV.sys [11136 2009-07-13] (Microsoft Corporation)
3 MSPCLOCK; C:\Windows\System32\drivers\MSPCLOCK.sys [7168 2009-07-13] (Microsoft Corporation)
3 MSPQM; C:\Windows\System32\drivers\MSPQM.sys [6784 2009-07-13] (Microsoft Corporation)
3 MsRPC; C:\Windows\System32\Drivers\MsRPC.sys [366976 2010-11-20] (Microsoft Corporation)
1 mssmbios; C:\Windows\System32\DRIVERS\mssmbios.sys [32320 2009-07-13] (Microsoft Corporation)
3 MSTEE; C:\Windows\System32\drivers\MSTEE.sys [8064 2009-07-13] (Microsoft Corporation)
3 MTConfig; C:\Windows\System32\drivers\MTConfig.sys [15360 2009-07-13] (Microsoft Corporation)
0 Mup; C:\Windows\System32\Drivers\mup.sys [60496 2009-07-13] (Microsoft Corporation)
3 NativeWifiP; C:\Windows\System32\DRIVERS\nwifi.sys [318976 2009-07-13] (Microsoft Corporation)
0 NDIS; C:\Windows\System32\drivers\ndis.sys [951680 2010-11-20] (Microsoft Corporation)
3 NdisCap; C:\Windows\System32\DRIVERS\ndiscap.sys [35328 2009-07-13] (Microsoft Corporation)
3 NdisTapi; C:\Windows\System32\DRIVERS\ndistapi.sys [24064 2009-07-13] (Microsoft Corporation)
3 Ndisuio; C:\Windows\System32\DRIVERS\ndisuio.sys [56832 2010-11-20] (Microsoft Corporation)
3 NdisWan; C:\Windows\System32\DRIVERS\ndiswan.sys [164352 2010-11-20] (Microsoft Corporation)
3 NDProxy; C:\Windows\System32\Drivers\NDProxy.sys [57856 2010-11-20] (Microsoft Corporation)
1 NetBIOS; C:\Windows\System32\DRIVERS\netbios.sys [44544 2009-07-13] (Microsoft Corporation)
1 NetBT; C:\Windows\System32\DRIVERS\netbt.sys [261632 2010-11-20] (Microsoft Corporation)
3 nfrd960; C:\Windows\System32\drivers\nfrd960.sys [51264 2009-07-13] (IBM Corporation)
1 Npfs; C:\Windows\System32\Drivers\Npfs.sys [44032 2009-07-13] (Microsoft Corporation)
1 nsiproxy; C:\Windows\System32\drivers\nsiproxy.sys [24576 2009-07-13] (Microsoft Corporation)
3 Ntfs; C:\Windows\System32\Drivers\Ntfs.sys [1659776 2011-03-10] (Microsoft Corporation)
1 Null; C:\Windows\System32\Drivers\Null.sys [6144 2009-07-13] (Microsoft Corporation)
3 NVHDA; C:\Windows\System32\drivers\nvhda64v.sys [155752 2010-09-07] (NVIDIA Corporation)
3 nvlddmkm; C:\Windows\System32\DRIVERS\nvlddmkm.sys [13006952 2010-11-18] (NVIDIA Corporation)
3 nvraid; C:\Windows\System32\drivers\nvraid.sys [148352 2010-11-20] (NVIDIA Corporation)
3 nvstor; C:\Windows\System32\drivers\nvstor.sys [166272 2010-11-20] (NVIDIA Corporation)
3 nv_agp; C:\Windows\System32\drivers\nv_agp.sys [122960 2009-07-13] (Microsoft Corporation)
3 O2MDGRDR; C:\Windows\System32\DRIVERS\o2mdgx64.sys [78568 2010-11-22] (O2Micro )
3 O2SDGRDR; C:\Windows\System32\DRIVERS\o2sdgx64.sys [49568 2009-08-18] (O2Micro )
3 ohci1394; C:\Windows\System32\drivers\ohci1394.sys [72832 2009-07-13] (Microsoft Corporation)
3 Parport; C:\Windows\System32\drivers\parport.sys [97280 2009-07-13] (Microsoft Corporation)
0 partmgr; C:\Windows\System32\drivers\partmgr.sys [75136 2010-11-20] (Microsoft Corporation)
0 pci; C:\Windows\System32\drivers\pci.sys [184704 2010-11-20] (Microsoft Corporation)
3 pciide; C:\Windows\System32\drivers\pciide.sys [12352 2009-07-13] (Microsoft Corporation)
3 pcmcia; C:\Windows\System32\drivers\pcmcia.sys [220752 2009-07-13] (Microsoft Corporation)
0 pcw; C:\Windows\System32\drivers\pcw.sys [50768 2009-07-13] (Microsoft Corporation)
2 PEAUTH; C:\Windows\System32\drivers\peauth.sys [651264 2009-07-13] (Microsoft Corporation)
3 PGEffect; C:\Windows\System32\DRIVERS\pgeffect.sys [35008 2009-06-22] (TOSHIBA Corporation)
3 PptpMiniport; C:\Windows\System32\DRIVERS\raspptp.sys [111104 2010-11-20] (Microsoft Corporation)
3 Processor; C:\Windows\System32\drivers\processr.sys [60416 2009-07-13] (Microsoft Corporation)
1 Psched; C:\Windows\System32\DRIVERS\pacer.sys [131584 2010-11-20] (Microsoft Corporation)
0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [55280 2009-07-08] (Sonic Solutions)
3 QIOMem; C:\Windows\System32\DRIVERS\QIOMem.sys [12800 2009-06-15] (TOSHIBA)
3 ql2300; C:\Windows\System32\drivers\ql2300.sys [1524816 2009-07-13] (QLogic Corporation)
3 ql40xx; C:\Windows\System32\drivers\ql40xx.sys [128592 2009-07-13] (QLogic Corporation)
3 QWAVEdrv; C:\Windows\System32\drivers\qwavedrv.sys [46592 2009-07-13] (Microsoft Corporation)
3 RasAcd; C:\Windows\System32\DRIVERS\rasacd.sys [14848 2009-07-13] (Microsoft Corporation)
3 RasAgileVpn; C:\Windows\System32\DRIVERS\AgileVpn.sys [60416 2009-07-13] (Microsoft Corporation)
3 Rasl2tp; C:\Windows\System32\DRIVERS\rasl2tp.sys [129536 2010-11-20] (Microsoft Corporation)
3 RasPppoe; C:\Windows\System32\DRIVERS\raspppoe.sys [92672 2009-07-13] (Microsoft Corporation)
3 RasSstp; C:\Windows\System32\DRIVERS\rassstp.sys [83968 2009-07-13] (Microsoft Corporation)
1 rdbss; C:\Windows\System32\DRIVERS\rdbss.sys [309248 2010-11-20] (Microsoft Corporation)
3 rdpbus; C:\Windows\System32\DRIVERS\rdpbus.sys [24064 2009-07-13] (Microsoft Corporation)
1 RDPCDD; C:\Windows\System32\DRIVERS\RDPCDD.sys [7680 2009-07-13] (Microsoft Corporation)
3 RDPDR; C:\Windows\System32\drivers\rdpdr.sys [165888 2010-11-20] (Microsoft Corporation)
1 RDPENCDD; C:\Windows\System32\drivers\rdpencdd.sys [7680 2009-07-13] (Microsoft Corporation)
1 RDPREFMP; C:\Windows\System32\drivers\rdprefmp.sys [8192 2009-07-13] (Microsoft Corporation)
3 RdpVideoMiniport; C:\Windows\System32\drivers\rdpvideominiport.sys [20992 2010-11-20] (Microsoft Corporation)
3 RDPWD; C:\Windows\System32\Drivers\RDPWD.sys [210944 2010-11-20] (Microsoft Corporation)
0 rdyboost; C:\Windows\System32\drivers\rdyboost.sys [213888 2010-11-20] (Microsoft Corporation)
2 regi; \??\C:\Windows\system32\drivers\regi.sys [14112 2007-04-17] (InterVideo)
4 RsFx0150; C:\Windows\System32\DRIVERS\RsFx0150.sys [313696 2010-04-03] (Microsoft Corporation)
2 rspndr; C:\Windows\System32\DRIVERS\rspndr.sys [76800 2009-07-13] (Microsoft Corporation)
3 s3cap; C:\Windows\System32\drivers\vms3cap.sys [6656 2010-11-20] (Microsoft Corporation)
3 sbp2port; C:\Windows\System32\drivers\sbp2port.sys [103808 2010-11-20] (Microsoft Corporation)
3 scfilter; C:\Windows\System32\DRIVERS\scfilter.sys [29696 2010-11-20] (Microsoft Corporation)
3 sdbus; C:\Windows\System32\DRIVERS\sdbus.sys [109056 2010-11-20] (Microsoft Corporation)
2 secdrv; C:\Windows\System32\Drivers\secdrv.sys [23040 2009-06-10] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
3 Serenum; C:\Windows\System32\drivers\serenum.sys [23552 2009-07-13] (Microsoft Corporation)
3 Serial; C:\Windows\System32\drivers\serial.sys [94208 2009-07-13] (Microsoft Corporation)
3 sermouse; C:\Windows\System32\drivers\sermouse.sys [26624 2009-07-13] (Microsoft Corporation)
3 sffdisk; C:\Windows\System32\drivers\sffdisk.sys [14336 2009-07-13] (Microsoft Corporation)
3 sffp_mmc; C:\Windows\System32\drivers\sffp_mmc.sys [13824 2009-07-13] (Microsoft Corporation)
3 sffp_sd; C:\Windows\System32\drivers\sffp_sd.sys [14336 2010-11-20] (Microsoft Corporation)
3 sfloppy; C:\Windows\System32\drivers\sfloppy.sys [16896 2009-07-13] (Microsoft Corporation)
3 SiSRaid2; C:\Windows\System32\drivers\SiSRaid2.sys [43584 2009-07-13] (Silicon Integrated Systems Corp.)
3 SiSRaid4; C:\Windows\System32\drivers\sisraid4.sys [80464 2009-07-13] (Silicon Integrated Systems)
3 Smb; C:\Windows\System32\DRIVERS\smb.sys [93184 2009-07-13] (Microsoft Corporation)
0 spldr; C:\Windows\System32\Drivers\spldr.sys [19008 2009-07-13] (Microsoft Corporation)
2 sp_rsdrv2; C:\Windows\System32\DRIVERS\stflt.sys [50696 2010-07-07] (Windows ® Win 7 DDK provider)
3 srv; C:\Windows\System32\DRIVERS\srv.sys [467456 2011-04-28] (Microsoft Corporation)
3 srv2; C:\Windows\System32\DRIVERS\srv2.sys [410112 2011-04-28] (Microsoft Corporation)
3 srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [168448 2011-04-28] (Microsoft Corporation)
3 stexstor; C:\Windows\System32\drivers\stexstor.sys [24656 2009-07-13] (Promise Technology)
0 storflt; C:\Windows\System32\drivers\vmstorfl.sys [46464 2010-11-20] (Microsoft Corporation)
3 storvsc; C:\Windows\System32\drivers\storvsc.sys [34688 2010-11-20] (Microsoft Corporation)
3 swenum; C:\Windows\System32\DRIVERS\swenum.sys [12496 2009-07-13] (Microsoft Corporation)
3 Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [88960 2010-11-20] (Microsoft Corporation)
0 Tcpip; C:\Windows\System32\drivers\tcpip.sys [1923968 2011-04-24] (Microsoft Corporation)
3 TCPIP6; C:\Windows\System32\DRIVERS\tcpip.sys [1923968 2011-04-24] (Microsoft Corporation)
2 tcpipreg; C:\Windows\System32\drivers\tcpipreg.sys [45056 2010-11-20] (Microsoft Corporation)
3 tdcmdpst; C:\Windows\System32\DRIVERS\tdcmdpst.sys [27784 2009-07-30] (TOSHIBA Corporation.)
3 TDPIPE; C:\Windows\System32\drivers\tdpipe.sys [15872 2009-07-13] (Microsoft Corporation)
3 TDTCP; C:\Windows\System32\drivers\tdtcp.sys [23552 2009-07-13] (Microsoft Corporation)
1 tdx; C:\Windows\System32\DRIVERS\tdx.sys [119296 2010-11-20] (Microsoft Corporation)
1 TermDD; C:\Windows\System32\DRIVERS\termdd.sys [63360 2010-11-20] (Microsoft Corporation)
3 terminpt; C:\Windows\System32\drivers\terminpt.sys [34816 2010-11-20] (Microsoft Corporation)
0 Thpevm; C:\Windows\System32\DRIVERS\Thpevm.SYS [14784 2009-06-29] (TOSHIBA Corporation)
3 tosrfec; C:\Windows\System32\DRIVERS\tosrfec.sys [18872 2010-06-18] (TOSHIBA Corporation)
0 tos_sps64; C:\Windows\System32\DRIVERS\tos_sps64.sys [482384 2010-11-28] (TOSHIBA Corporation)
3 tssecsrv; C:\Windows\System32\DRIVERS\tssecsrv.sys [39424 2010-11-20] (Microsoft Corporation)
3 TsUsbFlt; C:\Windows\System32\drivers\tsusbflt.sys [59392 2010-11-20] (Microsoft Corporation)
3 TsUsbGD; C:\Windows\System32\drivers\TsUsbGD.sys [31232 2010-11-20] (Microsoft Corporation)
3 tsusbhub; C:\Windows\System32\drivers\tsusbhub.sys [117248 2010-11-20] (Microsoft Corporation)
3 tunnel; C:\Windows\System32\DRIVERS\tunnel.sys [125440 2010-11-20] (Microsoft Corporation)
0 TVALZ; C:\Windows\System32\DRIVERS\TVALZ_O.SYS [26840 2009-07-14] (TOSHIBA Corporation)
3 uagp35; C:\Windows\System32\drivers\uagp35.sys [64080 2009-07-13] (Microsoft Corporation)
4 udfs; C:\Windows\System32\DRIVERS\udfs.sys [328192 2010-11-20] (Microsoft Corporation)
3 uliagpkx; C:\Windows\System32\drivers\uliagpkx.sys [64592 2009-07-13] (Microsoft Corporation)
3 umbus; C:\Windows\System32\DRIVERS\umbus.sys [48640 2010-11-20] (Microsoft Corporation)
3 UmPass; C:\Windows\System32\drivers\umpass.sys [9728 2009-07-13] (Microsoft Corporation)
3 usbccgp; C:\Windows\System32\DRIVERS\usbccgp.sys [98816 2011-03-24] (Microsoft Corporation)
3 usbcir; C:\Windows\System32\drivers\usbcir.sys [100352 2009-07-13] (Microsoft Corporation)
3 usbehci; C:\Windows\System32\drivers\usbehci.sys [52736 2011-03-24] (Microsoft Corporation)
3 usbhub; C:\Windows\System32\DRIVERS\usbhub.sys [343040 2011-03-24] (Microsoft Corporation)
3 usbohci; C:\Windows\System32\drivers\usbohci.sys [25600 2011-03-24] (Microsoft Corporation)
3 usbprint; C:\Windows\System32\drivers\usbprint.sys [25088 2009-07-13] (Microsoft Corporation)
3 USBSTOR; C:\Windows\System32\DRIVERS\USBSTOR.SYS [91648 2010-11-20] (Microsoft Corporation)
3 usbuhci; C:\Windows\System32\drivers\usbuhci.sys [30720 2011-03-24] (Microsoft Corporation)
3 usbvideo; C:\Windows\System32\Drivers\usbvideo.sys [184960 2010-11-20] (Microsoft Corporation)
0 vdrvroot; C:\Windows\System32\drivers\vdrvroot.sys [36432 2009-07-13] (Microsoft Corporation)
3 vga; C:\Windows\System32\DRIVERS\vgapnp.sys [29184 2009-07-13] (Microsoft Corporation)
1 VgaSave; C:\Windows\System32\drivers\vga.sys [29184 2009-07-13] (Microsoft Corporation)
3 vhdmp; C:\Windows\System32\drivers\vhdmp.sys [215936 2010-11-20] (Microsoft Corporation)
3 viaide; C:\Windows\System32\drivers\viaide.sys [17488 2009-07-13] (VIA Technologies, Inc.)
3 vmbus; C:\Windows\System32\drivers\vmbus.sys [199552 2010-11-20] (Microsoft Corporation)
3 VMBusHID; C:\Windows\System32\drivers\VMBusHID.sys [21760 2010-11-20] (Microsoft Corporation)
0 volmgr; C:\Windows\System32\drivers\volmgr.sys [71552 2010-11-20] (Microsoft Corporation)
0 volmgrx; C:\Windows\System32\drivers\volmgrx.sys [363392 2010-11-20] (Microsoft Corporation)
0 volsnap; C:\Windows\System32\drivers\volsnap.sys [295808 2010-11-20] (Microsoft Corporation)
3 vsmraid; C:\Windows\System32\drivers\vsmraid.sys [161872 2009-07-13] (VIA Technologies Inc.,Ltd)
3 vwifibus; C:\Windows\System32\DRIVERS\vwifibus.sys [24576 2009-07-13] (Microsoft Corporation)
1 vwififlt; C:\Windows\System32\DRIVERS\vwififlt.sys [59904 2009-07-13] (Microsoft Corporation)
3 WacomPen; C:\Windows\System32\drivers\wacompen.sys [27776 2009-07-13] (Microsoft Corporation)
3 WANARP; C:\Windows\System32\DRIVERS\wanarp.sys [88576 2010-11-20] (Microsoft Corporation)
1 Wanarpv6; C:\Windows\System32\DRIVERS\wanarp.sys [88576 2010-11-20] (Microsoft Corporation)
0 Wd; C:\Windows\System32\drivers\wd.sys [21056 2009-07-13] (Microsoft Corporation)
0 Wdf01000; C:\Windows\System32\drivers\Wdf01000.sys [654928 2009-07-13] (Microsoft Corporation)
1 WfpLwf; C:\Windows\System32\DRIVERS\wfplwf.sys [12800 2009-07-13] (Microsoft Corporation)
3 WIMMount; C:\Windows\System32\drivers\wimmount.sys [22096 2009-07-13] (Microsoft Corporation)
3 WinUsb; C:\Windows\System32\DRIVERS\WinUsb.sys [41984 2010-11-20] (Microsoft Corporation)
3 WmiAcpi; C:\Windows\System32\DRIVERS\wmiacpi.sys [14336 2009-07-13] (Microsoft Corporation)
4 ws2ifsl; C:\Windows\System32\drivers\ws2ifsl.sys [21504 2009-07-13] (Microsoft Corporation)
3 WudfPf; C:\Windows\System32\drivers\WudfPf.sys [112128 2010-11-20] (Microsoft Corporation)
3 WUDFRd; C:\Windows\System32\DRIVERS\WUDFRd.sys [172544 2010-11-20] (Microsoft Corporation)
3 xusb21; C:\Windows\System32\DRIVERS\xusb21.sys [73984 2009-08-13] (Microsoft Corporation)
1 PQNTDrv; [x]
3 Tosrfcom; [x]
3 VGPU; C:\Windows\System32\drivers\rdvgkmd.sys [x]

========================= NetSvcs ============================

============ One Month Created Files and folders =============

2011-06-22 19:38 - 2011-06-23 00:44 - 0000000 ____D C:\FRST
2011-06-22 19:14 - 2011-06-22 19:14 - 0000000 ____D C:\Windows\pss
2011-06-22 18:39 - 2011-06-22 18:39 - 0292176 ____A C:\Windows\Minidump\062211-82134-01.dmp
2011-06-22 18:27 - 2011-06-22 18:45 - 0002009 ____A C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2011-06-22 18:27 - 2011-06-22 18:27 - 0000000 ____D C:\Users\All Users\AVAST Software
2011-06-22 18:27 - 2011-06-22 18:27 - 0000000 ____D C:\ProgramData\AVAST Software
2011-06-22 18:27 - 2011-06-22 18:27 - 0000000 ____D C:\Program Files\AVAST Software
2011-06-22 18:27 - 2011-06-22 18:27 - 0000000 ____A C:\Windows\SysWOW64\config.nt
2011-06-22 18:27 - 2011-05-10 04:10 - 0253888 ____A (AVAST Software) C:\Windows\System32\aswBoot.exe
2011-06-22 18:27 - 2011-05-10 04:10 - 0199304 ____A (AVAST Software) C:\Windows\SysWOW64\aswBoot.exe
2011-06-22 18:27 - 2011-05-10 04:10 - 0040112 ____A (AVAST Software) C:\Windows\avastSS.scr
2011-06-22 18:27 - 2011-05-10 04:04 - 0600920 ____A (AVAST Software) C:\Windows\System32\Drivers\aswSnx.sys
2011-06-22 18:27 - 2011-05-10 04:04 - 0287576 ____A (AVAST Software) C:\Windows\System32\Drivers\aswSP.sys
2011-06-22 18:27 - 2011-05-10 04:02 - 0053592 ____A (AVAST Software) C:\Windows\System32\Drivers\aswTdi.sys
2011-06-22 18:27 - 2011-05-10 03:59 - 0064344 ____A (AVAST Software) C:\Windows\System32\Drivers\aswMonFlt.sys
2011-06-22 18:27 - 2011-05-10 03:59 - 0031064 ____A (AVAST Software) C:\Windows\System32\Drivers\aswRdr.sys
2011-06-22 18:27 - 2011-05-10 03:59 - 0022360 ____A (AVAST Software) C:\Windows\System32\Drivers\aswFsBlk.sys
2011-06-22 16:45 - 2011-06-22 16:45 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{4656F9ED-3B6E-43CC-AB76-639E2E823989}
2011-06-22 14:53 - 2011-06-22 14:55 - 58064040 ____A C:\Users\MANOJO\Downloads\setup_av_free.exe
2011-06-22 14:38 - 2011-06-22 14:38 - 0001137 ____A C:\Users\Public\Desktop\Spyware Terminator.lnk
2011-06-22 14:36 - 2011-06-22 18:38 - 0000000 ____D C:\Users\All Users\Spyware Terminator
2011-06-22 14:36 - 2011-06-22 18:38 - 0000000 ____D C:\ProgramData\Spyware Terminator
2011-06-22 14:36 - 2011-06-22 14:46 - 0000000 ____D C:\Program Files (x86)\Spyware Terminator
2011-06-22 14:36 - 2011-06-22 14:38 - 0000000 ____D C:\Users\MANOJO\AppData\Roaming\Spyware Terminator
2011-06-22 14:28 - 2011-06-22 14:28 - 0706184 ____A (Crawler Inc. ) C:\Users\MANOJO\Downloads\SpywareTerminatorSetup.exe
2011-06-22 14:10 - 2011-06-22 19:20 - 0000346 ____A C:\Windows\Tasks\RegistryBooster.job
2011-06-22 14:10 - 2011-06-22 14:10 - 0001804 ____A C:\Users\MANOJO\Desktop\Uniblue RegistryBooster.lnk
2011-06-22 14:10 - 2011-06-22 14:10 - 0000000 __HDC C:\Users\All Users\{AB2D8F2E-F7AD-4446-A11A-50D846B2CF2A}
2011-06-22 14:10 - 2011-06-22 14:10 - 0000000 __HDC C:\ProgramData\{AB2D8F2E-F7AD-4446-A11A-50D846B2CF2A}
2011-06-22 14:10 - 2011-06-22 14:10 - 0000000 ____D C:\Users\MANOJO\AppData\Roaming\Uniblue
2011-06-22 14:10 - 2011-06-22 14:10 - 0000000 ____D C:\Users\MANOJO\AppData\Local\PackageAware
2011-06-22 14:10 - 2011-06-22 14:10 - 0000000 ____D C:\Program Files (x86)\Uniblue
2011-06-22 14:06 - 2011-06-22 14:10 - 7212152 ____A (Uniblue Systems Ltd ) C:\Users\MANOJO\Downloads\registrybooster.exe
2011-06-22 04:44 - 2011-06-22 04:44 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{CBA503DC-4946-453C-BDAC-6601E0DDFBE1}
2011-06-21 16:43 - 2011-06-21 16:44 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{19731D43-9BE0-4305-A649-2E48EEA0234D}
2011-06-21 11:27 - 2011-06-21 11:27 - 0001024 ____A C:\Windows\SysWOW64\tsuknww.tgz
2011-06-21 11:27 - 2011-06-21 11:27 - 0000000 ____D C:\Program Files (x86)\Vertus Fluid Mask 3
2011-06-21 11:26 - 2011-06-22 13:02 - 0000380 ____A C:\Windows\Tasks\At1.job
2011-06-21 11:24 - 2011-06-21 11:28 - 29854183 ____A C:\Users\MANOJO\Downloads\jorge.rar
2011-06-21 09:49 - 2011-06-22 11:11 - 0000000 ____D C:\Users\MANOJO\Desktop\pupila
2011-06-21 09:32 - 2011-06-21 09:53 - 19858587 ____A C:\Users\MANOJO\Downloads\Vert_Fluid_Mask_3_2.1.rar
2011-06-21 09:21 - 2011-06-21 09:21 - 0077312 ____A (Simon Tatham) C:\Users\MANOJO\Downloads\Keygen-Vertus_Fluid_Mask_3_0_2.45303.exe
2011-06-21 09:12 - 2011-06-21 09:13 - 23903935 ____A (Vertus Ltd.) C:\Users\MANOJO\Downloads\fluid_mask_3_setup_vertus_3.2.1.exe
2011-06-21 04:43 - 2011-06-21 04:43 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{796395C0-7D31-4421-8CA5-315E5958FD98}
2011-06-20 16:12 - 2011-06-20 16:12 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{A7ABE8D8-676A-49E0-B5A5-C73A6A5B8E45}
2011-06-20 08:58 - 2011-06-20 09:12 - 0014006 ____A C:\Users\MANOJO\Desktop\menu1.swf
2011-06-20 08:54 - 2011-06-20 09:04 - 0014006 ____A C:\Users\MANOJO\Desktop\menu.swf
2011-06-20 08:53 - 2011-06-20 08:53 - 0013984 ____A C:\Users\MANOJO\Downloads\menu-vaz.swf
2011-06-20 08:51 - 2011-06-20 09:12 - 0044056 ____A C:\Users\MANOJO\Downloads\menu-vaz.fla
2011-06-20 08:27 - 2011-06-20 08:27 - 0116001 ____A C:\Users\MANOJO\Desktop\plg_content_arisexylightboxlite.zip
2011-06-20 06:33 - 2011-06-20 06:51 - 0000000 ____D C:\Users\MANOJO\Desktop\Titulos
2011-06-20 05:30 - 2011-06-20 05:30 - 7076020 ____A C:\Users\MANOJO\Desktop\vazsomeluz.swf
2011-06-19 15:27 - 2011-06-19 15:37 - 73676404 ____A C:\Users\MANOJO\Downloads\Fmg 09x18 Foreign Affairs.rmvb
2011-06-19 14:49 - 2011-06-19 15:09 - 73047151 ____A C:\Users\MANOJO\Downloads\Fmg 09x17 The Big Bang Theory.rmvb
2011-06-19 13:54 - 2011-06-19 14:02 - 74029560 ____A C:\Users\MANOJO\Downloads\Fmg 09x16 Brothers and Sisters.rmvb
2011-06-19 13:43 - 2011-06-19 13:53 - 74597486 ____A C:\Users\MANOJO\Downloads\FMG 09x15 Tiegs for Two.rmvb
2011-06-18 21:34 - 2011-06-20 19:33 - 0000359 ____A C:\Users\MANOJO\Desktop\presentes.txt
2011-06-18 18:27 - 2011-06-20 04:12 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{74080111-92D7-4164-ADFC-FBDEAD468A2C}
2011-06-18 09:19 - 2011-06-18 11:02 - 0000000 ____D C:\Users\MANOJO\AppData\Local\PokerStars
2011-06-18 09:19 - 2011-06-18 09:20 - 0000000 ____D C:\Program Files (x86)\PokerStars
2011-06-18 09:19 - 2011-06-18 09:19 - 0001076 ____A C:\Users\Public\Desktop\PokerStars.lnk
2011-06-18 09:18 - 2011-06-18 09:19 - 13084128 ____A (PokerStars) C:\Users\MANOJO\Downloads\PokerStarsInstall.exe
2011-06-18 06:57 - 2011-06-18 06:57 - 0703533 ____A C:\Users\MANOJO\Downloads\hldsupdatetool(1).exe
2011-06-18 06:26 - 2011-06-18 06:27 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{73E8AD44-DF2D-45C0-940C-5DBA85135260}
2011-06-17 18:26 - 2011-06-17 18:26 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{2DD4DAF2-6ADA-4179-9156-3E355453666A}
2011-06-17 06:26 - 2011-06-17 06:26 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{CEE1C1B4-F834-4C7C-B1E0-A1A369B1D276}
2011-06-16 18:25 - 2011-06-16 18:25 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{2DED0D14-7F0B-428E-9FC9-69D326925B33}
2011-06-16 10:53 - 2011-06-16 10:53 - 0000021 ____A C:\Windows\SurCode.INI
2011-06-16 10:53 - 2011-06-16 10:53 - 0000000 ____D C:\Users\MANOJO\Documents\Adobe
2011-06-16 10:53 - 2011-06-16 10:53 - 0000000 ____D C:\Users\MANOJO\AppData\Roaming\PACE Anti-Piracy
2011-06-16 10:53 - 2011-06-16 10:53 - 0000000 ____D C:\Users\MANOJO\AppData\Local\PACE Anti-Piracy
2011-06-16 10:53 - 2011-06-16 10:53 - 0000000 ____D C:\Users\All Users\PACE Anti-Piracy
2011-06-16 10:53 - 2011-06-16 10:53 - 0000000 ____D C:\ProgramData\PACE Anti-Piracy
2011-06-16 10:53 - 2011-06-16 10:53 - 0000000 ____D C:\Program Files\Common Files\PACE Anti-Piracy
2011-06-16 06:23 - 2011-06-16 06:23 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{D90A377F-EB0D-4E2E-94C1-6A868CF8B3BC}
2011-06-15 22:09 - 2011-04-22 17:37 - 17773568 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2011-06-15 22:09 - 2011-04-22 17:29 - 2303488 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2011-06-15 22:09 - 2011-04-22 17:27 - 10885632 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2011-06-15 22:09 - 2011-04-22 17:23 - 1344000 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2011-06-15 22:09 - 2011-04-22 17:20 - 0818176 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2011-06-15 22:09 - 2011-04-22 17:19 - 2382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2011-06-15 22:09 - 2011-04-22 17:19 - 2136064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2011-06-15 22:09 - 2011-04-22 17:19 - 0096256 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2011-06-15 22:09 - 2011-04-22 17:17 - 0248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2011-06-15 22:09 - 2011-04-22 15:36 - 12269056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2011-06-15 22:09 - 2011-04-22 15:35 - 1797632 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2011-06-15 22:09 - 2011-04-22 15:32 - 9703936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2011-06-15 22:09 - 2011-04-22 15:30 - 1102336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2011-06-15 22:09 - 2011-04-22 15:26 - 1785344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2011-06-15 22:09 - 2011-04-22 15:26 - 0716800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2011-06-15 22:09 - 2011-04-22 15:26 - 0072704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2011-06-15 22:09 - 2011-04-22 15:25 - 2382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2011-06-15 22:09 - 2011-04-22 15:24 - 0176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2011-06-15 18:22 - 2011-06-15 18:23 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{21C0D330-C6DC-42FF-B32E-167DDEEFFF51}
2011-06-15 07:13 - 2011-06-22 08:26 - 0000423 ____A C:\Users\MANOJO\Desktop\evidencia.txt
2011-06-15 06:41 - 2011-06-15 06:42 - 0000000 ____D C:\biblioteca
2011-06-15 06:22 - 2011-06-15 06:22 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{CE561A42-C871-4C13-AEB0-6B46896B18F1}
2011-06-15 04:30 - 2011-05-27 19:06 - 3135488 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2011-06-15 04:30 - 2011-04-28 19:06 - 0467456 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\srv.sys
2011-06-15 04:30 - 2011-04-28 19:05 - 0410112 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\srv2.sys
2011-06-15 04:30 - 2011-04-28 19:05 - 0168448 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\srvnet.sys
2011-06-15 04:30 - 2011-04-26 18:40 - 0158208 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb.sys
2011-06-15 04:30 - 2011-04-26 18:39 - 0289280 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb10.sys
2011-06-15 04:30 - 2011-04-26 18:39 - 0128000 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb20.sys
2011-06-15 04:30 - 2011-04-24 21:33 - 1923968 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2011-06-15 04:30 - 2011-04-24 18:34 - 0499200 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\afd.sys
2011-06-15 04:29 - 2011-05-02 21:29 - 0976896 ____A (Microsoft Corporation) C:\Windows\System32\inetcomm.dll
2011-06-15 04:29 - 2011-05-02 20:30 - 0741376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2011-06-15 04:29 - 2011-02-24 22:22 - 0861696 ____A (Microsoft Corporation) C:\Windows\System32\oleaut32.dll
2011-06-15 04:29 - 2011-02-24 21:34 - 0571904 ____A (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2011-06-14 18:21 - 2011-06-14 18:22 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{EC952311-23E6-4252-AA0B-88CAC3FC5ACF}
2011-06-14 12:44 - 2011-06-14 12:44 - 0031232 ____A C:\Users\MANOJO\Downloads\aula14out05.doc
2011-06-14 10:22 - 2011-06-14 10:22 - 0005055 ____A C:\Users\MANOJO\Downloads\mod_flashmod_v3.0.2.zip
2011-06-14 04:03 - 2011-06-14 04:03 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{BE6D8E1E-DFBE-4B78-AD82-60E47CE7E43B}
2011-06-13 07:57 - 2011-06-13 07:58 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{9E23E2A1-E0E0-485C-B7E3-02E3D4299E2B}
2011-06-12 19:21 - 2011-06-12 19:22 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{3336B841-3CD7-4F5D-97DB-A6B22797A097}
2011-06-12 16:14 - 2011-06-12 17:27 - 0000000 ____D C:\Users\MANOJO\Documents\Corel User Files
2011-06-12 12:04 - 2011-06-12 12:15 - 0001456 ____A C:\Users\MANOJO\AppData\Local\Adobe Save for Web 12.0 Prefs
2011-06-12 11:53 - 2011-06-12 11:53 - 0000000 ____D C:\Users\MANOJO\Downloads\Corel DRAW Graphics Suite X4 14.0.0 Full [M8]
2011-06-12 10:51 - 2011-06-12 10:51 - 3695416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2011-06-12 10:51 - 2011-06-12 10:51 - 3695416 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat
2011-06-12 10:51 - 2011-06-12 10:51 - 1492992 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2011-06-12 10:51 - 2011-06-12 10:51 - 1427456 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2011-06-12 10:51 - 2011-06-12 10:51 - 1389056 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 1126912 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0697344 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0603648 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0580608 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0534528 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0452608 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0448512 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2011-06-12 10:51 - 2011-06-12 10:51 - 0434176 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0420864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0403248 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0367104 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2011-06-12 10:51 - 2011-06-12 10:51 - 0353792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0353584 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0282112 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0267776 ____A (Microsoft Corporation) C:\Windows\System32\ieaksie.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0249344 ____A (Microsoft Corporation) C:\Windows\System32\webcheck.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0236544 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0231936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0227840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieaksie.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0223232 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0222208 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0203776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0197120 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0173056 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2011-06-12 10:51 - 2011-06-12 10:51 - 0165888 ____A (Microsoft Corporation) C:\Windows\System32\iexpress.exe
2011-06-12 10:51 - 2011-06-12 10:51 - 0163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieakui.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0163840 ____A (Microsoft Corporation) C:\Windows\System32\ieakui.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0162304 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0161792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0160256 ____A (Microsoft Corporation) C:\Windows\System32\wextract.exe
2011-06-12 10:51 - 2011-06-12 10:51 - 0160256 ____A (Microsoft Corporation) C:\Windows\System32\ieakeng.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0152064 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2011-06-12 10:51 - 2011-06-12 10:51 - 0150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2011-06-12 10:51 - 2011-06-12 10:51 - 0149504 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0145920 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0142848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2011-06-12 10:51 - 2011-06-12 10:51 - 0135168 ____A (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0130560 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieakeng.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0123392 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0118784 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0114176 ____A (Microsoft Corporation) C:\Windows\System32\admparse.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0111616 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0103936 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0101888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\admparse.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0091648 ____A (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe
2011-06-12 10:51 - 2011-06-12 10:51 - 0089088 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2011-06-12 10:51 - 2011-06-12 10:51 - 0089088 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2011-06-12 10:51 - 2011-06-12 10:51 - 0086528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0085504 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0082432 ____A (Microsoft Corporation) C:\Windows\System32\icardie.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0078848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0076800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2011-06-12 10:51 - 2011-06-12 10:51 - 0076800 ____A (Microsoft Corporation) C:\Windows\System32\tdc.ocx
2011-06-12 10:51 - 2011-06-12 10:51 - 0074752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2011-06-12 10:51 - 2011-06-12 10:51 - 0074752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0074240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ie4uinit.exe
2011-06-12 10:51 - 2011-06-12 10:51 - 0072822 ____A C:\Windows\SysWOW64\ieuinit.inf
2011-06-12 10:51 - 2011-06-12 10:51 - 0072822 ____A C:\Windows\System32\ieuinit.inf
2011-06-12 10:51 - 2011-06-12 10:51 - 0066048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0065024 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0063488 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2011-06-12 10:51 - 2011-06-12 10:51 - 0055296 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0054272 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0049664 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0048640 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0041472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0035840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0031744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0030720 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0023552 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0012288 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe
2011-06-12 10:51 - 2011-06-12 10:51 - 0011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2011-06-12 10:51 - 2011-06-12 10:51 - 0010752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2011-06-12 10:51 - 2011-06-12 10:51 - 0010752 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
2011-06-12 10:48 - 2011-06-12 10:51 - 0003449 ____A C:\Windows\IE9_main.log
2011-06-12 07:21 - 2011-06-12 07:21 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{05283624-7790-44A1-8F76-0D9B61640714}
2011-06-11 19:21 - 2011-06-11 19:21 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{977DEEB1-C106-475D-A2D5-00573A91A011}
2011-06-11 07:20 - 2011-06-11 07:21 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{B9B8008B-8A7C-4177-9A1B-965DBA6DF0A1}
2011-06-10 20:02 - 2011-06-10 20:02 - 0000063 ____A C:\Windows\WININIT.INI
2011-06-10 16:17 - 2011-06-10 16:18 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{DB38EB24-6FBD-4ADF-ADFA-71CE59FD1A8E}
2011-06-10 04:49 - 2011-06-10 04:50 - 3013426 ___AT C:\Users\MANOJO\Downloads\IMG_6166.JPG
2011-06-10 03:42 - 2011-06-10 03:42 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{A6E2ACB7-52BD-4FAA-AEF0-DD71236455BF}
2011-06-09 22:32 - 2011-06-10 19:52 - 0000000 ____D C:\Program Files (x86)\Cute Cute
2011-06-09 22:32 - 2011-06-09 22:32 - 0000000 ____D C:\Program Files (x86)\Firebird
2011-06-09 22:30 - 2011-06-09 22:32 - 24281600 ____A C:\Users\MANOJO\Downloads\CuteCute_instalar3036.exe
2011-06-09 22:03 - 2011-06-09 22:03 - 0771041 ____A C:\Users\MANOJO\Downloads\emailmarketing.zip
2011-06-09 15:42 - 2011-06-09 15:42 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{9F4FD1F5-8399-4BEC-8139-90209869CC62}
2011-06-09 02:55 - 2011-06-09 02:56 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{23EFB393-DD86-4164-9102-0DE12C51039E}
2011-06-08 06:46 - 2011-06-08 06:46 - 0539995 ____A C:\Users\MANOJO\Downloads\centro estetico estela maris logo 001.png
2011-06-08 06:28 - 2011-06-08 06:28 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{6C1F0445-EC2B-4643-B152-1CC0C31BFCDB}
2011-06-08 05:10 - 2011-06-08 05:10 - 0000000 ____A C:\Users\MANOJO\Downloads\index.htm
2011-06-08 05:02 - 2011-06-08 05:02 - 0127285 ____A C:\Users\MANOJO\Downloads\redpandasite8.sql
2011-06-08 04:50 - 2011-06-08 04:51 - 14995062 ____A C:\Users\MANOJO\Downloads\download_files(1).zip
2011-06-07 18:27 - 2011-06-07 18:28 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{7F6862B4-A2C1-49D2-87AC-ABC0DF43B506}
2011-06-07 16:28 - 2011-06-07 16:28 - 0000306 ____A C:\Users\MANOJO\Downloads\team_5_20110607.xls
2011-06-07 09:42 - 2011-06-22 11:50 - 0004997 ____A C:\Users\MANOJO\Documents\PhotoToolsConduit.log
2011-06-07 06:27 - 2011-06-07 06:27 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{EFFC56E1-8C79-479B-BF02-F1D72B5B82FA}
2011-06-07 05:02 - 2011-06-07 05:02 - 0230028 ____A C:\Users\MANOJO\Downloads\pareschi.sql
2011-06-06 18:26 - 2011-06-06 18:26 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{C9B4F6B7-51BD-4B10-BE88-A1625B16FE3E}
2011-06-06 16:47 - 2011-06-06 16:47 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{6FE94168-7406-4D04-8726-602C369C6398}
2011-06-06 06:04 - 2011-06-06 06:04 - 0167125 ____A C:\Users\MANOJO\Downloads\redpandasite.zip
2011-06-06 04:47 - 2011-06-06 04:47 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{3124F15D-619E-49F0-9A03-3CC3548B884D}
2011-06-05 20:37 - 2011-06-22 19:39 - 4288542 ___AH C:\Users\MANOJO\AppData\Local\IconCache.db
2011-06-05 15:51 - 2011-06-05 16:05 - 74850078 ____A C:\Users\MANOJO\Downloads\Fmg 09x14 Trading Places.rmvb
2011-06-05 15:18 - 2011-06-05 15:24 - 74794897 ____A C:\Users\MANOJO\Downloads\Fmg 09x13 The Hand That Rocks the Wheelchair.rmvb
2011-06-05 15:03 - 2011-06-05 15:14 - 74766165 ____A C:\Users\MANOJO\Downloads\FMG 09x12 German Guy.rmvb
2011-06-05 14:18 - 2011-06-05 14:48 - 88058653 ____A C:\Users\MANOJO\Downloads\FMG 09x11 Friends of Peter G.rmvb
2011-06-05 14:04 - 2011-06-05 14:17 - 75496776 ____A C:\Users\MANOJO\Downloads\FMG 09x10 And I'm Joyce Kinney.rmvb
2011-06-05 12:19 - 2011-06-05 13:29 - 0000000 ____D C:\Users\MANOJO\AppData\Roaming\Real
2011-06-05 12:19 - 2011-06-05 12:19 - 0272896 ____A (Progressive Networks) C:\Windows\SysWOW64\pncrt.dll
2011-06-05 12:19 - 2011-06-05 12:19 - 0198848 ____A (RealNetworks, Inc.) C:\Windows\SysWOW64\rmoc3260.dll
2011-06-05 12:19 - 2011-06-05 12:19 - 0006656 ____A (RealNetworks, Inc.) C:\Windows\SysWOW64\pndx5016.dll
2011-06-05 12:19 - 2011-06-05 12:19 - 0005632 ____A (RealNetworks, Inc.) C:\Windows\SysWOW64\pndx5032.dll
2011-06-05 12:19 - 2011-06-05 12:19 - 0000000 ____D C:\Users\All Users\Real
2011-06-05 12:19 - 2011-06-05 12:19 - 0000000 ____D C:\ProgramData\Real
2011-06-05 12:19 - 2011-06-05 12:19 - 0000000 ____D C:\Program Files (x86)\Real
2011-06-05 12:05 - 2011-06-05 12:05 - 0675600 ____A (RealNetworks, Inc.) C:\Users\MANOJO\Downloads\RealPlayer_br.exe
2011-06-05 11:51 - 2011-06-05 12:18 - 78013088 ____A C:\Users\MANOJO\Downloads\FMG 09x09 New Kidney in Town.rmvb
2011-06-05 11:23 - 2011-06-05 11:48 - 180328985 ____A C:\Users\MANOJO\Downloads\Fmg 09x07 Road to the North Pole.rmvb
2011-06-05 06:25 - 2008-09-28 03:54 - 0059265 ____A C:\Users\MANOJO\Downloads\com_lxmenu115_small_hack.zip
2011-06-05 06:24 - 2008-09-28 15:09 - 0008530 ____A C:\Users\MANOJO\Downloads\mod_lxmenu115_small_hack.zip
2011-06-05 06:23 - 2011-06-05 06:23 - 0068803 ____A C:\Users\MANOJO\Downloads\com_mod_lxmenu115_small_hack4J1_5_unzip_first.zip
2011-06-05 04:14 - 2011-06-05 16:15 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{6F4EAC64-CCE7-45F5-9347-ACD711559A4F}
2011-06-04 17:17 - 2011-06-04 17:17 - 0000000 ___AH C:\Windows\System32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2011-06-04 15:39 - 2011-06-04 15:39 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{B68B4F02-C452-4A0F-90C7-2B70D576EDB2}
2011-06-04 13:12 - 2011-06-04 13:12 - 0000000 ____D C:\Users\MANOJO\AppData\Roaming\Apple Computer
2011-06-04 13:12 - 2011-06-04 13:12 - 0000000 ____D C:\Users\MANOJO\AppData\Local\Apple Computer
2011-06-04 13:11 - 2011-06-04 13:11 - 0000000 ____D C:\Program Files (x86)\Artisteer 3
2011-06-04 12:55 - 2011-06-04 13:03 - 105404944 ____A C:\Users\MANOJO\Downloads\Artisteer.3.0.0.39952.exe
2011-06-04 03:35 - 2011-06-04 03:38 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{79C0C2F5-CA64-4A38-904D-369B715BA1B3}
2011-06-04 03:28 - 2011-06-04 03:28 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{835E43AE-AC04-4F02-AB8F-224CFA233D71}
2011-06-03 16:25 - 2011-06-03 16:25 - 0000028 ____A C:\Users\MANOJO\Documents\silvana pilon.txt
2011-06-03 06:30 - 2011-06-03 06:30 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{0B31BF6E-D9F3-4C25-8258-422F46794B05}
2011-06-03 05:29 - 2011-06-03 05:29 - 0010374 ____A C:\Users\MANOJO\Documents\dados cadastrais.docx
2011-06-03 05:26 - 2011-06-03 05:26 - 0052378 ____A C:\Users\MANOJO\Documents\Apresentação PandaOfertas.docx
2011-06-02 18:29 - 2011-06-02 18:30 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{C0BB77CD-44CC-4B74-B87A-DD30EF22EB2A}
2011-06-02 06:29 - 2011-06-02 06:29 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{BA50FDCE-CB68-49AC-836B-1D5A240EA9FB}
2011-06-01 18:49 - 2011-06-01 18:49 - 0030937 ____A C:\Users\MANOJO\Downloads\redpandasite9.sql
2011-06-01 18:28 - 2011-06-01 18:28 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{F84BFC94-5D5B-471F-B147-6472AC4054D5}
2011-06-01 04:49 - 2011-06-01 04:50 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{D92D4327-0101-4121-B2E9-34D4AEEFE880}
2011-05-31 16:48 - 2011-05-31 16:49 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{360AB3D9-9158-48C9-8454-94243C3B4BFB}
2011-05-31 09:26 - 2011-06-03 16:37 - 0000074 ____A C:\Users\MANOJO\Desktop\estela.txt
2011-05-31 04:35 - 2011-05-31 04:36 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{E8DB13EC-4B66-4835-8F2A-23F853CF18B0}
2011-05-30 08:04 - 2011-05-30 08:04 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{7BC3B390-C959-4B67-A3E1-0E7C98C7E3E1}
2011-05-29 08:03 - 2011-05-29 20:03 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{CC636F56-E63F-4B54-A420-AE7F40FDD7B0}
2011-05-28 20:02 - 2011-05-28 20:02 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{CD7731B2-E7DE-4D2D-8BB9-7DDD818CC484}
2011-05-28 08:01 - 2011-05-28 08:02 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{30E35E1A-D518-4415-870B-F068FD85E5BD}
2011-05-27 19:15 - 2011-05-27 19:15 - 0008097 ____A C:\Users\MANOJO\Downloads\ANASAYFA.html
2011-05-27 19:15 - 2011-05-27 19:15 - 0008097 ____A C:\Users\MANOJO\Downloads\ANASAYFA(2).html
2011-05-27 19:15 - 2011-05-27 19:15 - 0005395 ____A C:\Users\MANOJO\Downloads\SaatletHtml.html
2011-05-27 18:35 - 2011-05-27 18:35 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{52EE97A0-F708-407C-99DC-881BA4DCD376}
2011-05-27 09:10 - 2011-05-27 09:10 - 0000000 ____D C:\Users\MANOJO\AppData\Local\uTorrent
2011-05-27 09:09 - 2011-05-27 09:10 - 0000000 ____D C:\Users\MANOJO\Downloads\Dreamingsoft 123 Flash Menu v4.5.2.1720 Cracked - F4CG [express_1337] {h33t}
2011-05-27 06:03 - 2011-05-27 06:03 - 0000000 ____D C:\Users\All Users\Quadroland
2011-05-27 06:03 - 2011-05-27 06:03 - 0000000 ____D C:\ProgramData\Quadroland
2011-05-27 06:03 - 2011-05-27 06:03 - 0000000 ____D C:\Program Files (x86)\Flash Menu Labs Std v2
2011-05-27 06:01 - 2011-05-27 06:02 - 10703583 ____A ( ) C:\Users\MANOJO\Downloads\setup_flashmenulabs_std_v2.exe
2011-05-27 05:45 - 2011-05-27 05:46 - 0000000 ____D C:\Program Files (x86)\A4MenuBuilder
2011-05-27 05:43 - 2011-05-27 05:45 - 22260840 ____A (WebUnion Media Ltd. ) C:\Users\MANOJO\Downloads\a4mb_setup.exe
2011-05-26 18:31 - 2011-05-27 06:32 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{06046956-4FF0-41BB-9F53-1FD3425DFBED}
2011-05-26 06:31 - 2011-05-26 06:31 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{CB10636C-21B4-4777-B504-35675DFDB176}
2011-05-25 18:30 - 2011-05-25 18:31 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{C65E682C-EC5D-41CD-9716-FA176609E704}
2011-05-25 11:44 - 2011-05-25 11:45 - 0239739 ____A C:\Users\MANOJO\Downloads\word 2007 - desativar substituicao de texto ao digitar - autocorrecao.pdf
2011-05-25 10:45 - 2011-05-25 10:45 - 0125618 ____A C:\Users\MANOJO\Downloads\texto02.pdf
2011-05-25 05:29 - 2011-04-22 14:15 - 0027520 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\Diskdump.sys
2011-05-25 05:19 - 2011-05-25 05:19 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{7D56E58A-25FA-4DEE-8D9B-15FE92692F95}
2011-05-24 16:26 - 2011-05-24 16:26 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{4B95C8EB-35CA-4655-A7C0-58328319A76D}
2011-05-24 12:26 - 2011-05-24 12:26 - 0078288 ____A C:\Users\MANOJO\Downloads\vazsomeluz.sql
2011-05-24 10:58 - 2011-05-24 10:59 - 0000132 ____A C:\Users\MANOJO\AppData\Roaming\Adobe GIF Format CS5 Prefs
2011-05-24 04:26 - 2011-05-24 04:26 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{A01CE647-C47A-412F-8610-9D63243CD282}
2011-05-23 09:17 - 2011-06-22 19:22 - 0001044 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2011-05-23 09:17 - 2011-06-22 19:20 - 0001040 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2011-05-23 09:17 - 2011-05-23 09:18 - 0000000 ____D C:\Program Files (x86)\Google
2011-05-23 09:16 - 2011-05-23 09:16 - 0568664 ____A (Google Inc.) C:\Users\MANOJO\Downloads\GoogleEarthPluginSetup.exe
2011-05-23 07:48 - 2011-05-23 07:48 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{B8449E89-E6CD-4C04-9C28-CBE82DC6C264}

============ 3 Months Modified Files and folders =============

2011-06-23 00:44 - 2011-06-22 19:38 - 0000000 ____D C:\FRST
2011-06-22 19:39 - 2011-06-05 20:37 - 4288542 ___AH C:\Users\MANOJO\AppData\Local\IconCache.db
2011-06-22 19:39 - 2011-02-23 06:22 - 0000912 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3020998964-4291547618-1084622284-1000UA.job
2011-06-22 19:39 - 2011-02-21 16:23 - 1704472 ____A C:\Windows\WindowsUpdate.log
2011-06-22 19:39 - 2009-07-13 21:13 - 0875390 ____A C:\Windows\System32\PerfStringBackup.INI
2011-06-22 19:39 - 2009-07-13 18:36 - 0728886 ____A C:\Windows\System32\perfh009.dat
2011-06-22 19:39 - 2009-07-13 18:36 - 0146812 ____A C:\Windows\System32\perfc009.dat
2011-06-22 19:28 - 2009-07-13 20:45 - 0021280 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2011-06-22 19:28 - 2009-07-13 20:45 - 0021280 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2011-06-22 19:22 - 2011-05-23 09:17 - 0001044 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2011-06-22 19:20 - 2011-06-22 14:10 - 0000346 ____A C:\Windows\Tasks\RegistryBooster.job
2011-06-22 19:20 - 2011-05-23 09:17 - 0001040 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2011-06-22 19:20 - 2011-03-21 09:53 - 0000298 ___AH C:\Windows\Tasks\Acrobat Update.job
2011-06-22 19:20 - 2011-03-03 07:26 - 0000310 __ASH C:\Windows\Tasks\uvpjwpkyx.job
2011-06-22 19:20 - 2009-07-13 21:08 - 0000006 ___AH C:\Windows\Tasks\SA.DAT
2011-06-22 19:19 - 2011-02-21 16:21 - 522604544 __ASH C:\hiberfil.sys
2011-06-22 19:19 - 2009-07-13 20:51 - 0050337 ____A C:\Windows\setupact.log
2011-06-22 19:14 - 2011-06-22 19:14 - 0000000 ____D C:\Windows\pss
2011-06-22 18:45 - 2011-06-22 18:27 - 0002009 ____A C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2011-06-22 18:39 - 2011-06-22 18:39 - 0292176 ____A C:\Windows\Minidump\062211-82134-01.dmp
2011-06-22 18:39 - 2011-03-22 14:07 - 0000000 ____D C:\Windows\Minidump
2011-06-22 18:38 - 2011-06-22 14:36 - 0000000 ____D C:\Users\All Users\Spyware Terminator
2011-06-22 18:38 - 2011-06-22 14:36 - 0000000 ____D C:\ProgramData\Spyware Terminator
2011-06-22 18:38 - 2011-03-22 14:07 - 834625552 ____A C:\Windows\MEMORY.DMP
2011-06-22 18:27 - 2011-06-22 18:27 - 0000000 ____D C:\Users\All Users\AVAST Software
2011-06-22 18:27 - 2011-06-22 18:27 - 0000000 ____D C:\ProgramData\AVAST Software
2011-06-22 18:27 - 2011-06-22 18:27 - 0000000 ____D C:\Program Files\AVAST Software
2011-06-22 18:27 - 2011-06-22 18:27 - 0000000 ____A C:\Windows\SysWOW64\config.nt
2011-06-22 18:27 - 2011-03-29 19:16 - 0000000 __SHD C:\Windows\SysWOW64\JAYQPM
2011-06-22 18:20 - 2011-03-19 18:46 - 0000029 ____A C:\Windows\SysWOW64\TempWmicBatchFile.bat
2011-06-22 16:45 - 2011-06-22 16:45 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{4656F9ED-3B6E-43CC-AB76-639E2E823989}
2011-06-22 14:55 - 2011-06-22 14:53 - 58064040 ____A C:\Users\MANOJO\Downloads\setup_av_free.exe
2011-06-22 14:54 - 2011-04-10 20:10 - 0000000 ____D C:\Program Files (x86)\Steam
2011-06-22 14:46 - 2011-06-22 14:36 - 0000000 ____D C:\Program Files (x86)\Spyware Terminator
2011-06-22 14:46 - 2009-07-13 19:20 - 0000000 ___RD C:\Program Files (x86)
2011-06-22 14:39 - 2011-04-26 04:40 - 0454380 ____A C:\Program Files (x86)\Drivers_pack_v4.55.63_fix.exe
2011-06-22 14:38 - 2011-06-22 14:38 - 0001137 ____A C:\Users\Public\Desktop\Spyware Terminator.lnk
2011-06-22 14:38 - 2011-06-22 14:36 - 0000000 ____D C:\Users\MANOJO\AppData\Roaming\Spyware Terminator
2011-06-22 14:29 - 2011-03-09 18:46 - 0002516 __ASH C:\Users\All Users\KGyGaAvL.sys
2011-06-22 14:29 - 2011-03-09 18:46 - 0002516 __ASH C:\ProgramData\KGyGaAvL.sys
2011-06-22 14:28 - 2011-06-22 14:28 - 0706184 ____A (Crawler Inc. ) C:\Users\MANOJO\Downloads\SpywareTerminatorSetup.exe
2011-06-22 14:21 - 2011-02-21 11:32 - 0000000 ____D C:\users\MANOJO
2011-06-22 14:20 - 2011-02-21 20:27 - 0000000 ____D C:\Users\All Users\NVIDIA
2011-06-22 14:20 - 2011-02-21 20:27 - 0000000 ____D C:\ProgramData\NVIDIA
2011-06-22 14:18 - 2010-11-20 19:47 - 0247910 ____A C:\Windows\PFRO.log
2011-06-22 14:10 - 2011-06-22 14:10 - 0001804 ____A C:\Users\MANOJO\Desktop\Uniblue RegistryBooster.lnk
2011-06-22 14:10 - 2011-06-22 14:10 - 0000000 __HDC C:\Users\All Users\{AB2D8F2E-F7AD-4446-A11A-50D846B2CF2A}
2011-06-22 14:10 - 2011-06-22 14:10 - 0000000 __HDC C:\ProgramData\{AB2D8F2E-F7AD-4446-A11A-50D846B2CF2A}
2011-06-22 14:10 - 2011-06-22 14:10 - 0000000 ____D C:\Users\MANOJO\AppData\Roaming\Uniblue
2011-06-22 14:10 - 2011-06-22 14:10 - 0000000 ____D C:\Users\MANOJO\AppData\Local\PackageAware
2011-06-22 14:10 - 2011-06-22 14:10 - 0000000 ____D C:\Program Files (x86)\Uniblue
2011-06-22 14:10 - 2011-06-22 14:06 - 7212152 ____A (Uniblue Systems Ltd ) C:\Users\MANOJO\Downloads\registrybooster.exe
2011-06-22 13:02 - 2011-06-21 11:26 - 0000380 ____A C:\Windows\Tasks\At1.job
2011-06-22 11:59 - 2011-02-26 10:25 - 0000000 ____D C:\Users\MANOJO\AppData\Roaming\uTorrent
2011-06-22 11:50 - 2011-06-07 09:42 - 0004997 ____A C:\Users\MANOJO\Documents\PhotoToolsConduit.log
2011-06-22 11:11 - 2011-06-21 09:49 - 0000000 ____D C:\Users\MANOJO\Desktop\pupila
2011-06-22 10:39 - 2011-02-23 06:22 - 0000860 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3020998964-4291547618-1084622284-1000Core.job
2011-06-22 08:26 - 2011-06-15 07:13 - 0000423 ____A C:\Users\MANOJO\Desktop\evidencia.txt
2011-06-22 08:05 - 2011-03-01 05:54 - 0000132 ____A C:\Users\MANOJO\AppData\Roaming\Adobe PNG Format CS5 Prefs
2011-06-22 06:10 - 2011-03-30 07:16 - 0083010 ____A C:\Windows\FontData.fdb
2011-06-22 04:44 - 2011-06-22 04:44 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{CBA503DC-4946-453C-BDAC-6601E0DDFBE1}
2011-06-21 16:44 - 2011-06-21 16:43 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{19731D43-9BE0-4305-A649-2E48EEA0234D}
2011-06-21 13:08 - 2011-03-10 07:42 - 0173056 ____A C:\Users\MANOJO\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2011-06-21 11:28 - 2011-06-21 11:24 - 29854183 ____A C:\Users\MANOJO\Downloads\jorge.rar
2011-06-21 11:27 - 2011-06-21 11:27 - 0001024 ____A C:\Windows\SysWOW64\tsuknww.tgz
2011-06-21 11:27 - 2011-06-21 11:27 - 0000000 ____D C:\Program Files (x86)\Vertus Fluid Mask 3
2011-06-21 11:27 - 2010-11-20 19:24 - 0001024 ____A C:\Windows\SysWOW64\tsuknww.dll
2011-06-21 11:27 - 2010-11-20 19:24 - 0001024 ____A C:\Windows\SysWOW64\grcauth2.dll
2011-06-21 11:27 - 2010-11-20 19:24 - 0001024 ____A C:\Windows\SysWOW64\grcauth1.dll
2011-06-21 11:27 - 2010-11-20 19:24 - 0001024 ____A C:\Windows\SysWOW64\clauth2.dll
2011-06-21 11:27 - 2010-11-20 19:24 - 0001024 ____A C:\Windows\SysWOW64\clauth1.dll
2011-06-21 11:27 - 2010-11-20 19:24 - 0000218 ____A C:\Windows\SysWOW64\ebfej4c.tgz
2011-06-21 11:27 - 2010-11-20 19:24 - 0000204 ____A C:\Windows\SysWOW64\ebfej4c.dll
2011-06-21 11:27 - 2010-11-20 19:24 - 0000114 ____A C:\Windows\SysWOW64\prsgrc.tgz
2011-06-21 11:27 - 2010-11-20 19:24 - 0000100 ____A C:\Windows\SysWOW64\prsgrc.dll
2011-06-21 11:27 - 2010-11-20 19:24 - 0000086 ____A C:\Windows\SysWOW64\ssprs.tgz
2011-06-21 11:27 - 2010-11-20 19:24 - 0000072 ____A C:\Windows\SysWOW64\ssprs.dll
2011-06-21 09:53 - 2011-06-21 09:32 - 19858587 ____A C:\Users\MANOJO\Downloads\Vert_Fluid_Mask_3_2.1.rar
2011-06-21 09:24 - 2011-05-01 05:25 - 0000000 ____D C:\Users\MANOJO\Downloads\OnOne PhotoTools .v.2.6 with KEYGEN [h33t][mkrandow]
2011-06-21 09:21 - 2011-06-21 09:21 - 0077312 ____A (Simon Tatham) C:\Users\MANOJO\Downloads\Keygen-Vertus_Fluid_Mask_3_0_2.45303.exe
2011-06-21 09:13 - 2011-06-21 09:12 - 23903935 ____A (Vertus Ltd.) C:\Users\MANOJO\Downloads\fluid_mask_3_setup_vertus_3.2.1.exe
2011-06-21 08:52 - 2011-05-01 05:14 - 0000000 ____D C:\Program Files (x86)\onOne Software
2011-06-21 08:52 - 2011-02-21 11:37 - 0000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2011-06-21 08:34 - 2009-07-13 20:45 - 5018528 ____A C:\Windows\System32\FNTCACHE.DAT
2011-06-21 04:43 - 2011-06-21 04:43 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{796395C0-7D31-4421-8CA5-315E5958FD98}
2011-06-20 19:33 - 2011-06-18 21:34 - 0000359 ____A C:\Users\MANOJO\Desktop\presentes.txt
2011-06-20 16:12 - 2011-06-20 16:12 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{A7ABE8D8-676A-49E0-B5A5-C73A6A5B8E45}
2011-06-20 09:12 - 2011-06-20 08:58 - 0014006 ____A C:\Users\MANOJO\Desktop\menu1.swf
2011-06-20 09:12 - 2011-06-20 08:51 - 0044056 ____A C:\Users\MANOJO\Downloads\menu-vaz.fla
2011-06-20 09:04 - 2011-06-20 08:54 - 0014006 ____A C:\Users\MANOJO\Desktop\menu.swf
2011-06-20 08:53 - 2011-06-20 08:53 - 0013984 ____A C:\Users\MANOJO\Downloads\menu-vaz.swf
2011-06-20 08:27 - 2011-06-20 08:27 - 0116001 ____A C:\Users\MANOJO\Desktop\plg_content_arisexylightboxlite.zip
2011-06-20 06:51 - 2011-06-20 06:33 - 0000000 ____D C:\Users\MANOJO\Desktop\Titulos
2011-06-20 06:30 - 2011-02-21 18:52 - 0123608 ____A C:\Users\MANOJO\AppData\Local\GDIPFONTCACHEV1.DAT
2011-06-20 05:30 - 2011-06-20 05:30 - 7076020 ____A C:\Users\MANOJO\Desktop\vazsomeluz.swf
2011-06-20 04:12 - 2011-06-18 18:27 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{74080111-92D7-4164-ADFC-FBDEAD468A2C}
2011-06-19 15:37 - 2011-06-19 15:27 - 73676404 ____A C:\Users\MANOJO\Downloads\Fmg 09x18 Foreign Affairs.rmvb
2011-06-19 15:09 - 2011-06-19 14:49 - 73047151 ____A C:\Users\MANOJO\Downloads\Fmg 09x17 The Big Bang Theory.rmvb
2011-06-19 14:26 - 2011-02-22 14:04 - 0000000 ____D C:\Users\MANOJO\AppData\Local\ElevatedDiagnostics
2011-06-19 14:02 - 2011-06-19 13:54 - 74029560 ____A C:\Users\MANOJO\Downloads\Fmg 09x16 Brothers and Sisters.rmvb
2011-06-19 13:53 - 2011-06-19 13:43 - 74597486 ____A C:\Users\MANOJO\Downloads\FMG 09x15 Tiegs for Two.rmvb
2011-06-18 11:02 - 2011-06-18 09:19 - 0000000 ____D C:\Users\MANOJO\AppData\Local\PokerStars
2011-06-18 09:20 - 2011-06-18 09:19 - 0000000 ____D C:\Program Files (x86)\PokerStars
2011-06-18 09:19 - 2011-06-18 09:19 - 0001076 ____A C:\Users\Public\Desktop\PokerStars.lnk
2011-06-18 09:19 - 2011-06-18 09:18 - 13084128 ____A (PokerStars) C:\Users\MANOJO\Downloads\PokerStarsInstall.exe
2011-06-18 07:42 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\Microsoft.NET
2011-06-18 06:57 - 2011-06-18 06:57 - 0703533 ____A C:\Users\MANOJO\Downloads\hldsupdatetool(1).exe
2011-06-18 06:27 - 2011-06-18 06:26 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{73E8AD44-DF2D-45C0-940C-5DBA85135260}
2011-06-17 18:26 - 2011-06-17 18:26 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{2DD4DAF2-6ADA-4179-9156-3E355453666A}
2011-06-17 06:26 - 2011-06-17 06:26 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{CEE1C1B4-F834-4C7C-B1E0-A1A369B1D276}
2011-06-16 18:25 - 2011-06-16 18:25 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{2DED0D14-7F0B-428E-9FC9-69D326925B33}
2011-06-16 10:53 - 2011-06-16 10:53 - 0000021 ____A C:\Windows\SurCode.INI
2011-06-16 10:53 - 2011-06-16 10:53 - 0000000 ____D C:\Users\MANOJO\Documents\Adobe
2011-06-16 10:53 - 2011-06-16 10:53 - 0000000 ____D C:\Users\MANOJO\AppData\Roaming\PACE Anti-Piracy
2011-06-16 10:53 - 2011-06-16 10:53 - 0000000 ____D C:\Users\MANOJO\AppData\Local\PACE Anti-Piracy
2011-06-16 10:53 - 2011-06-16 10:53 - 0000000 ____D C:\Users\All Users\PACE Anti-Piracy
2011-06-16 10:53 - 2011-06-16 10:53 - 0000000 ____D C:\ProgramData\PACE Anti-Piracy
2011-06-16 10:53 - 2011-06-16 10:53 - 0000000 ____D C:\Program Files\Common Files\PACE Anti-Piracy
2011-06-16 10:53 - 2010-11-07 05:54 - 0000000 __AHD C:\Users\MANOJO\AppData\Local\oENO2CgQX0qt1
2011-06-16 10:53 - 2009-07-13 19:20 - 0000000 ___AD C:\Program Files\Common Files\System
2011-06-16 09:08 - 2011-02-22 14:56 - 0000000 ____D C:\Users\All Users\regid.1986-12.com.adobe
2011-06-16 09:08 - 2011-02-22 14:56 - 0000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2011-06-16 06:23 - 2011-06-16 06:23 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{D90A377F-EB0D-4E2E-94C1-6A868CF8B3BC}
2011-06-15 22:11 - 2011-03-19 19:36 - 49454024 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2011-06-15 22:11 - 2011-03-03 11:41 - 0000000 ____D C:\Users\All Users\Microsoft Help
2011-06-15 22:11 - 2011-03-03 11:41 - 0000000 ____D C:\ProgramData\Microsoft Help
2011-06-15 22:09 - 2009-07-13 19:20 - 0000000 ____D C:\Program Files\Common Files\Microsoft Shared
2011-06-15 18:23 - 2011-06-15 18:22 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{21C0D330-C6DC-42FF-B32E-167DDEEFFF51}
2011-06-15 10:17 - 2009-07-13 21:08 - 0032590 ____A C:\Windows\Tasks\SCHEDLGU.TXT
2011-06-15 06:42 - 2011-06-15 06:41 - 0000000 ____D C:\biblioteca
2011-06-15 06:22 - 2011-06-15 06:22 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{CE561A42-C871-4C13-AEB0-6B46896B18F1}
2011-06-14 18:22 - 2011-06-14 18:21 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{EC952311-23E6-4252-AA0B-88CAC3FC5ACF}
2011-06-14 12:44 - 2011-06-14 12:44 - 0031232 ____A C:\Users\MANOJO\Downloads\aula14out05.doc
2011-06-14 10:22 - 2011-06-14 10:22 - 0005055 ____A C:\Users\MANOJO\Downloads\mod_flashmod_v3.0.2.zip
2011-06-14 06:58 - 2011-02-21 20:52 - 0000000 ____D C:\Users\MANOJO\AppData\Roaming\Adobe
2011-06-14 06:58 - 2011-02-21 20:52 - 0000000 ____D C:\Users\All Users\Adobe
2011-06-14 06:58 - 2011-02-21 20:52 - 0000000 ____D C:\ProgramData\Adobe
2011-06-14 06:58 - 2009-07-13 19:20 - 0000000 ___RD C:\users\Public
2011-06-14 04:03 - 2011-06-14 04:03 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{BE6D8E1E-DFBE-4B78-AD82-60E47CE7E43B}
2011-06-13 07:58 - 2011-06-13 07:57 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{9E23E2A1-E0E0-485C-B7E3-02E3D4299E2B}
2011-06-12 19:22 - 2011-06-12 19:21 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{3336B841-3CD7-4F5D-97DB-A6B22797A097}
2011-06-12 17:27 - 2011-06-12 16:14 - 0000000 ____D C:\Users\MANOJO\Documents\Corel User Files
2011-06-12 16:52 - 2011-03-09 18:46 - 0000088 __RSH C:\Users\All Users\B1A31120E0.sys
2011-06-12 16:52 - 2011-03-09 18:46 - 0000088 __RSH C:\ProgramData\B1A31120E0.sys
2011-06-12 16:52 - 2011-02-21 20:24 - 0000000 ____D C:\Users\All Users\Corel
2011-06-12 16:52 - 2011-02-21 20:24 - 0000000 ____D C:\ProgramData\Corel
2011-06-12 14:26 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\rescache
2011-06-12 12:32 - 2011-02-21 20:24 - 0000000 ____D C:\Program Files (x86)\Corel
2011-06-12 12:15 - 2011-06-12 12:04 - 0001456 ____A C:\Users\MANOJO\AppData\Local\Adobe Save for Web 12.0 Prefs
2011-06-12 11:53 - 2011-06-12 11:53 - 0000000 ____D C:\Users\MANOJO\Downloads\Corel DRAW Graphics Suite X4 14.0.0 Full [M8]
2011-06-12 11:37 - 2011-03-09 18:46 - 0000000 ____D C:\Users\MANOJO\AppData\Roaming\Corel
2011-06-12 10:53 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\PolicyDefinitions
2011-06-12 10:51 - 2011-06-12 10:51 - 3695416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2011-06-12 10:51 - 2011-06-12 10:51 - 3695416 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat
2011-06-12 10:51 - 2011-06-12 10:51 - 1492992 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2011-06-12 10:51 - 2011-06-12 10:51 - 1427456 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2011-06-12 10:51 - 2011-06-12 10:51 - 1389056 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 1126912 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0697344 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0603648 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0580608 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0534528 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0452608 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0448512 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2011-06-12 10:51 - 2011-06-12 10:51 - 0434176 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0420864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0403248 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0367104 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2011-06-12 10:51 - 2011-06-12 10:51 - 0353792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0353584 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0282112 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0267776 ____A (Microsoft Corporation) C:\Windows\System32\ieaksie.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0249344 ____A (Microsoft Corporation) C:\Windows\System32\webcheck.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0236544 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0231936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0227840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieaksie.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0223232 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0222208 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0203776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0197120 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0173056 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2011-06-12 10:51 - 2011-06-12 10:51 - 0165888 ____A (Microsoft Corporation) C:\Windows\System32\iexpress.exe
2011-06-12 10:51 - 2011-06-12 10:51 - 0163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieakui.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0163840 ____A (Microsoft Corporation) C:\Windows\System32\ieakui.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0162304 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0161792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0160256 ____A (Microsoft Corporation) C:\Windows\System32\wextract.exe
2011-06-12 10:51 - 2011-06-12 10:51 - 0160256 ____A (Microsoft Corporation) C:\Windows\System32\ieakeng.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0152064 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2011-06-12 10:51 - 2011-06-12 10:51 - 0150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2011-06-12 10:51 - 2011-06-12 10:51 - 0149504 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0145920 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0142848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2011-06-12 10:51 - 2011-06-12 10:51 - 0135168 ____A (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0130560 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieakeng.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0123392 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0118784 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0114176 ____A (Microsoft Corporation) C:\Windows\System32\admparse.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0111616 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0103936 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0101888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\admparse.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0091648 ____A (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe
2011-06-12 10:51 - 2011-06-12 10:51 - 0089088 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2011-06-12 10:51 - 2011-06-12 10:51 - 0089088 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2011-06-12 10:51 - 2011-06-12 10:51 - 0086528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0085504 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0082432 ____A (Microsoft Corporation) C:\Windows\System32\icardie.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0078848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0076800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2011-06-12 10:51 - 2011-06-12 10:51 - 0076800 ____A (Microsoft Corporation) C:\Windows\System32\tdc.ocx
2011-06-12 10:51 - 2011-06-12 10:51 - 0074752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2011-06-12 10:51 - 2011-06-12 10:51 - 0074752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0074240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ie4uinit.exe
2011-06-12 10:51 - 2011-06-12 10:51 - 0072822 ____A C:\Windows\SysWOW64\ieuinit.inf
2011-06-12 10:51 - 2011-06-12 10:51 - 0072822 ____A C:\Windows\System32\ieuinit.inf
2011-06-12 10:51 - 2011-06-12 10:51 - 0066048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0065024 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0063488 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2011-06-12 10:51 - 2011-06-12 10:51 - 0055296 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0054272 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0049664 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0048640 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0041472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0035840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0031744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0030720 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0023552 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2011-06-12 10:51 - 2011-06-12 10:51 - 0012288 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe
2011-06-12 10:51 - 2011-06-12 10:51 - 0011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2011-06-12 10:51 - 2011-06-12 10:51 - 0010752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2011-06-12 10:51 - 2011-06-12 10:51 - 0010752 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
2011-06-12 10:51 - 2011-06-12 10:48 - 0003449 ____A C:\Windows\IE9_main.log
2011-06-12 10:45 - 2011-02-23 15:16 - 0000000 ____D C:\Program Files (x86)\Pando Networks
2011-06-12 07:21 - 2011-06-12 07:21 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{05283624-7790-44A1-8F76-0D9B61640714}
2011-06-11 19:21 - 2011-06-11 19:21 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{977DEEB1-C106-475D-A2D5-00573A91A011}
2011-06-11 07:21 - 2011-06-11 07:20 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{B9B8008B-8A7C-4177-9A1B-965DBA6DF0A1}
2011-06-10 20:02 - 2011-06-10 20:02 - 0000063 ____A C:\Windows\WININIT.INI
2011-06-10 20:02 - 2011-04-24 16:59 - 0000000 ____D C:\Program Files (x86)\winbraz
2011-06-10 19:57 - 2011-05-20 04:29 - 0000000 ____D C:\Program Files (x86)\Microsoft SDKs
2011-06-10 19:52 - 2011-06-09 22:32 - 0000000 ____D C:\Program Files (x86)\Cute Cute
2011-06-10 16:18 - 2011-06-10 16:17 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{DB38EB24-6FBD-4ADF-ADFA-71CE59FD1A8E}
2011-06-10 04:50 - 2011-06-10 04:49 - 3013426 ___AT C:\Users\MANOJO\Downloads\IMG_6166.JPG
2011-06-10 03:42 - 2011-06-10 03:42 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{A6E2ACB7-52BD-4FAA-AEF0-DD71236455BF}
2011-06-09 22:32 - 2011-06-09 22:32 - 0000000 ____D C:\Program Files (x86)\Firebird
2011-06-09 22:32 - 2011-06-09 22:30 - 24281600 ____A C:\Users\MANOJO\Downloads\CuteCute_instalar3036.exe
2011-06-09 22:03 - 2011-06-09 22:03 - 0771041 ____A C:\Users\MANOJO\Downloads\emailmarketing.zip
2011-06-09 15:42 - 2011-06-09 15:42 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{9F4FD1F5-8399-4BEC-8139-90209869CC62}
2011-06-09 11:40 - 2011-05-01 05:14 - 0000000 ____D C:\Users\MANOJO\AppData\Roaming\onOne Software
2011-06-09 02:56 - 2011-06-09 02:55 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{23EFB393-DD86-4164-9102-0DE12C51039E}
2011-06-08 06:46 - 2011-06-08 06:46 - 0539995 ____A C:\Users\MANOJO\Downloads\centro estetico estela maris logo 001.png
2011-06-08 06:28 - 2011-06-08 06:28 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{6C1F0445-EC2B-4643-B152-1CC0C31BFCDB}
2011-06-08 05:10 - 2011-06-08 05:10 - 0000000 ____A C:\Users\MANOJO\Downloads\index.htm
2011-06-08 05:02 - 2011-06-08 05:02 - 0127285 ____A C:\Users\MANOJO\Downloads\redpandasite8.sql
2011-06-08 04:51 - 2011-06-08 04:50 - 14995062 ____A C:\Users\MANOJO\Downloads\download_files(1).zip
2011-06-07 18:28 - 2011-06-07 18:27 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{7F6862B4-A2C1-49D2-87AC-ABC0DF43B506}
2011-06-07 16:28 - 2011-06-07 16:28 - 0000306 ____A C:\Users\MANOJO\Downloads\team_5_20110607.xls
2011-06-07 09:41 - 2011-02-21 21:03 - 0000000 ____D C:\Program Files\Common Files\Adobe
2011-06-07 09:40 - 2011-02-21 21:02 - 0000000 ____D C:\Program Files\Adobe
2011-06-07 06:27 - 2011-06-07 06:27 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{EFFC56E1-8C79-479B-BF02-F1D72B5B82FA}
2011-06-07 05:02 - 2011-06-07 05:02 - 0230028 ____A C:\Users\MANOJO\Downloads\pareschi.sql
2011-06-06 18:26 - 2011-06-06 18:26 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{C9B4F6B7-51BD-4B10-BE88-A1625B16FE3E}
2011-06-06 16:47 - 2011-06-06 16:47 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{6FE94168-7406-4D04-8726-602C369C6398}
2011-06-06 06:04 - 2011-06-06 06:04 - 0167125 ____A C:\Users\MANOJO\Downloads\redpandasite.zip
2011-06-06 04:47 - 2011-06-06 04:47 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{3124F15D-619E-49F0-9A03-3CC3548B884D}
2011-06-05 16:15 - 2011-06-05 04:14 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{6F4EAC64-CCE7-45F5-9347-ACD711559A4F}
2011-06-05 16:05 - 2011-06-05 15:51 - 74850078 ____A C:\Users\MANOJO\Downloads\Fmg 09x14 Trading Places.rmvb
2011-06-05 15:24 - 2011-06-05 15:18 - 74794897 ____A C:\Users\MANOJO\Downloads\Fmg 09x13 The Hand That Rocks the Wheelchair.rmvb
2011-06-05 15:14 - 2011-06-05 15:03 - 74766165 ____A C:\Users\MANOJO\Downloads\FMG 09x12 German Guy.rmvb
2011-06-05 14:48 - 2011-06-05 14:18 - 88058653 ____A C:\Users\MANOJO\Downloads\FMG 09x11 Friends of Peter G.rmvb
2011-06-05 14:17 - 2011-06-05 14:04 - 75496776 ____A C:\Users\MANOJO\Downloads\FMG 09x10 And I'm Joyce Kinney.rmvb
2011-06-05 13:29 - 2011-06-05 12:19 - 0000000 ____D C:\Users\MANOJO\AppData\Roaming\Real
2011-06-05 12:19 - 2011-06-05 12:19 - 0272896 ____A (Progressive Networks) C:\Windows\SysWOW64\pncrt.dll
2011-06-05 12:19 - 2011-06-05 12:19 - 0198848 ____A (RealNetworks, Inc.) C:\Windows\SysWOW64\rmoc3260.dll
2011-06-05 12:19 - 2011-06-05 12:19 - 0006656 ____A (RealNetworks, Inc.) C:\Windows\SysWOW64\pndx5016.dll
2011-06-05 12:19 - 2011-06-05 12:19 - 0005632 ____A (RealNetworks, Inc.) C:\Windows\SysWOW64\pndx5032.dll
2011-06-05 12:19 - 2011-06-05 12:19 - 0000000 ____D C:\Users\All Users\Real
2011-06-05 12:19 - 2011-06-05 12:19 - 0000000 ____D C:\ProgramData\Real
2011-06-05 12:19 - 2011-06-05 12:19 - 0000000 ____D C:\Program Files (x86)\Real
2011-06-05 12:19 - 2003-03-18 15:14 - 0499712 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2011-06-05 12:19 - 2003-02-21 02:42 - 0348160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2011-06-05 12:18 - 2011-06-05 11:51 - 78013088 ____A C:\Users\MANOJO\Downloads\FMG 09x09 New Kidney in Town.rmvb
2011-06-05 12:05 - 2011-06-05 12:05 - 0675600 ____A (RealNetworks, Inc.) C:\Users\MANOJO\Downloads\RealPlayer_br.exe
2011-06-05 11:48 - 2011-06-05 11:23 - 180328985 ____A C:\Users\MANOJO\Downloads\Fmg 09x07 Road to the North Pole.rmvb
2011-06-05 06:43 - 2011-02-26 10:26 - 0000000 ____D C:\Users\MANOJO\Downloads\100 Amazing Windows 7 Wallpapers 1920 X 1200 (www.allwallpapersfree.blogspot.com)
2011-06-05 06:23 - 2011-06-05 06:23 - 0068803 ____A C:\Users\MANOJO\Downloads\com_mod_lxmenu115_small_hack4J1_5_unzip_first.zip
2011-06-04 17:17 - 2011-06-04 17:17 - 0000000 ___AH C:\Windows\System32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2011-06-04 15:39 - 2011-06-04 15:39 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{B68B4F02-C452-4A0F-90C7-2B70D576EDB2}
2011-06-04 13:12 - 2011-06-04 13:12 - 0000000 ____D C:\Users\MANOJO\AppData\Roaming\Apple Computer
2011-06-04 13:12 - 2011-06-04 13:12 - 0000000 ____D C:\Users\MANOJO\AppData\Local\Apple Computer
2011-06-04 13:12 - 2011-02-22 11:42 - 0000000 ____D C:\Users\MANOJO\AppData\Roaming\Artisteer
2011-06-04 13:11 - 2011-06-04 13:11 - 0000000 ____D C:\Program Files (x86)\Artisteer 3
2011-06-04 13:03 - 2011-06-04 12:55 - 105404944 ____A C:\Users\MANOJO\Downloads\Artisteer.3.0.0.39952.exe
2011-06-04 03:38 - 2011-06-04 03:35 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{79C0C2F5-CA64-4A38-904D-369B715BA1B3}
2011-06-04 03:28 - 2011-06-04 03:28 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{835E43AE-AC04-4F02-AB8F-224CFA233D71}
2011-06-03 16:37 - 2011-05-31 09:26 - 0000074 ____A C:\Users\MANOJO\Desktop\estela.txt
2011-06-03 16:25 - 2011-06-03 16:25 - 0000028 ____A C:\Users\MANOJO\Documents\silvana pilon.txt
2011-06-03 06:30 - 2011-06-03 06:30 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{0B31BF6E-D9F3-4C25-8258-422F46794B05}
2011-06-03 05:29 - 2011-06-03 05:29 - 0010374 ____A C:\Users\MANOJO\Documents\dados cadastrais.docx
2011-06-03 05:26 - 2011-06-03 05:26 - 0052378 ____A C:\Users\MANOJO\Documents\Apresentação PandaOfertas.docx
2011-06-02 18:30 - 2011-06-02 18:29 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{C0BB77CD-44CC-4B74-B87A-DD30EF22EB2A}
2011-06-02 06:29 - 2011-06-02 06:29 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{BA50FDCE-CB68-49AC-836B-1D5A240EA9FB}
2011-06-01 18:49 - 2011-06-01 18:49 - 0030937 ____A C:\Users\MANOJO\Downloads\redpandasite9.sql
2011-06-01 18:28 - 2011-06-01 18:28 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{F84BFC94-5D5B-471F-B147-6472AC4054D5}
2011-06-01 08:51 - 2011-02-21 20:59 - 0000000 ____D C:\Users\MANOJO\AppData\Local\Adobe
2011-06-01 04:50 - 2011-06-01 04:49 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{D92D4327-0101-4121-B2E9-34D4AEEFE880}
2011-06-01 04:47 - 2011-02-23 14:40 - 0000000 ____D C:\Users\MANOJO\Documents\Meus arquivos recebidos
2011-05-31 16:49 - 2011-05-31 16:48 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{360AB3D9-9158-48C9-8454-94243C3B4BFB}
2011-05-31 04:36 - 2011-05-31 04:35 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{E8DB13EC-4B66-4835-8F2A-23F853CF18B0}
2011-05-30 08:04 - 2011-05-30 08:04 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{7BC3B390-C959-4B67-A3E1-0E7C98C7E3E1}
2011-05-29 20:03 - 2011-05-29 08:03 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{CC636F56-E63F-4B54-A420-AE7F40FDD7B0}
2011-05-28 20:02 - 2011-05-28 20:02 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{CD7731B2-E7DE-4D2D-8BB9-7DDD818CC484}
2011-05-28 08:02 - 2011-05-28 08:01 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{30E35E1A-D518-4415-870B-F068FD85E5BD}
2011-05-27 19:15 - 2011-05-27 19:15 - 0008097 ____A C:\Users\MANOJO\Downloads\ANASAYFA.html
2011-05-27 19:15 - 2011-05-27 19:15 - 0008097 ____A C:\Users\MANOJO\Downloads\ANASAYFA(2).html
2011-05-27 19:15 - 2011-05-27 19:15 - 0005395 ____A C:\Users\MANOJO\Downloads\SaatletHtml.html
2011-05-27 19:06 - 2011-06-15 04:30 - 3135488 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2011-05-27 18:35 - 2011-05-27 18:35 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{52EE97A0-F708-407C-99DC-881BA4DCD376}
2011-05-27 15:39 - 2011-02-26 10:25 - 0000000 ____D C:\Program Files (x86)\uTorrent
2011-05-27 09:10 - 2011-05-27 09:10 - 0000000 ____D C:\Users\MANOJO\AppData\Local\uTorrent
2011-05-27 09:10 - 2011-05-27 09:09 - 0000000 ____D C:\Users\MANOJO\Downloads\Dreamingsoft 123 Flash Menu v4.5.2.1720 Cracked - F4CG [express_1337] {h33t}
2011-05-27 06:32 - 2011-05-26 18:31 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{06046956-4FF0-41BB-9F53-1FD3425DFBED}
2011-05-27 06:03 - 2011-05-27 06:03 - 0000000 ____D C:\Users\All Users\Quadroland
2011-05-27 06:03 - 2011-05-27 06:03 - 0000000 ____D C:\ProgramData\Quadroland
2011-05-27 06:03 - 2011-05-27 06:03 - 0000000 ____D C:\Program Files (x86)\Flash Menu Labs Std v2
2011-05-27 06:02 - 2011-05-27 06:01 - 10703583 ____A ( ) C:\Users\MANOJO\Downloads\setup_flashmenulabs_std_v2.exe
2011-05-27 05:46 - 2011-05-27 05:45 - 0000000 ____D C:\Program Files (x86)\A4MenuBuilder
2011-05-27 05:45 - 2011-05-27 05:43 - 22260840 ____A (WebUnion Media Ltd. ) C:\Users\MANOJO\Downloads\a4mb_setup.exe
2011-05-26 06:31 - 2011-05-26 06:31 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{CB10636C-21B4-4777-B504-35675DFDB176}
2011-05-25 18:31 - 2011-05-25 18:30 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{C65E682C-EC5D-41CD-9716-FA176609E704}
2011-05-25 11:45 - 2011-05-25 11:44 - 0239739 ____A C:\Users\MANOJO\Downloads\word 2007 - desativar substituicao de texto ao digitar - autocorrecao.pdf
2011-05-25 10:45 - 2011-05-25 10:45 - 0125618 ____A C:\Users\MANOJO\Downloads\texto02.pdf
2011-05-25 05:19 - 2011-05-25 05:19 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{7D56E58A-25FA-4DEE-8D9B-15FE92692F95}
2011-05-24 16:26 - 2011-05-24 16:26 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{4B95C8EB-35CA-4655-A7C0-58328319A76D}
2011-05-24 12:26 - 2011-05-24 12:26 - 0078288 ____A C:\Users\MANOJO\Downloads\vazsomeluz.sql
2011-05-24 10:59 - 2011-05-24 10:58 - 0000132 ____A C:\Users\MANOJO\AppData\Roaming\Adobe GIF Format CS5 Prefs
2011-05-24 04:26 - 2011-05-24 04:26 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{A01CE647-C47A-412F-8610-9D63243CD282}
2011-05-23 09:26 - 2011-02-21 11:32 - 0000000 ____D C:\Users\MANOJO\AppData\LocalLow
2011-05-23 09:18 - 2011-05-23 09:17 - 0000000 ____D C:\Program Files (x86)\Google
2011-05-23 09:16 - 2011-05-23 09:16 - 0568664 ____A (Google Inc.) C:\Users\MANOJO\Downloads\GoogleEarthPluginSetup.exe
2011-05-23 07:48 - 2011-05-23 07:48 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{B8449E89-E6CD-4C04-9C28-CBE82DC6C264}
2011-05-22 19:47 - 2011-05-22 19:47 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{122B3830-EB0F-4FEC-8532-7107F13DA4E7}
2011-05-22 07:47 - 2011-05-20 18:58 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{14D2B7BA-F093-4385-AA55-D7630C5522FD}
2011-05-21 15:15 - 2011-04-13 17:05 - 0000000 ____D C:\Users\MANOJO\AppData\Local\Microsoft Games
2011-05-21 03:12 - 2011-05-21 03:11 - 2965916 ____A C:\Users\MANOJO\Downloads\wrar400br.exe
2011-05-20 15:20 - 2011-03-26 12:04 - 0000000 ____D C:\Users\MANOJO\Desktop\Documentos de Jorge
2011-05-20 06:58 - 2011-05-20 06:58 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{C6908742-07F4-4AC3-B6EA-216B03271B5D}
2011-05-20 05:15 - 2011-04-13 10:33 - 0869238 ____A C:\Windows\SysWOW64\PerfStringBackup.INI
2011-05-20 05:03 - 2011-05-20 05:03 - 0000000 ____D C:\Windows\symbols
2011-05-20 04:33 - 2011-05-20 04:33 - 0000000 ____D C:\Users\All Users\VS
2011-05-20 04:33 - 2011-05-20 04:33 - 0000000 ____D C:\ProgramData\VS
2011-05-20 04:32 - 2011-05-20 04:29 - 0000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 10.0
2011-05-20 04:31 - 2011-05-20 04:31 - 0000000 ____D C:\Program Files (x86)\Microsoft ASP.NET
2011-05-20 04:30 - 2011-05-20 04:30 - 0000000 ____D C:\Users\MANOJO\Documents\Visual Studio 2010
2011-05-20 04:29 - 2011-05-20 04:29 - 0000000 ____D C:\Program Files\Microsoft Visual Studio 10.0
2011-05-20 04:29 - 2011-05-20 04:29 - 0000000 ____D C:\Program Files\Microsoft Help Viewer
2011-05-20 04:11 - 2011-05-20 04:08 - 0000000 ____D C:\Program Files\Microsoft SQL Server
2011-05-20 04:10 - 2011-05-20 04:10 - 0000000 ____D C:\Windows\System32\RsFx
2011-05-20 04:10 - 2011-05-20 04:10 - 0000000 ____D C:\Program Files\Microsoft.NET
2011-05-20 04:10 - 2011-05-20 04:10 - 0000000 ____D C:\Program Files\Microsoft Visual Studio 9.0
2011-05-20 04:10 - 2011-05-20 04:10 - 0000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 9.0
2011-05-20 04:10 - 2011-05-20 04:09 - 0000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2011-05-20 04:10 - 2011-02-21 18:57 - 0000000 ____D C:\Program Files (x86)\Microsoft.NET
2011-05-20 04:09 - 2011-05-20 04:09 - 0000000 ____D C:\Windows\SysWOW64\1033
2011-05-20 04:09 - 2011-05-20 04:09 - 0000000 ____D C:\Windows\System32\1033
2011-05-20 03:58 - 2011-05-20 03:58 - 0094560 ____A (Microsoft Corporation) C:\Users\MANOJO\Downloads\silverlight4tools.26silverlight4toolkit.26riaservicestoolkit.exe
2011-05-19 18:58 - 2011-05-19 18:57 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{7E01D511-C4D8-4F5E-A2D3-FE4FE2FE7385}
2011-05-19 06:57 - 2011-05-19 06:57 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{889D8369-51D3-4CBB-89EC-FCD6DDD7C8A0}
2011-05-18 18:51 - 2011-05-18 18:51 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{4279EED6-64AB-4552-97B0-9F6E4B8777C2}
2011-05-18 09:54 - 2011-05-18 09:54 - 0016050 ____A C:\Users\MANOJO\Downloads\itu_joomgallery_config.sql
2011-05-18 06:50 - 2011-05-18 06:50 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{EE9AB130-59ED-4C6D-A382-9515549E8762}
2011-05-18 04:21 - 2011-03-15 18:53 - 0000000 ____D C:\Program Files (x86)\Pokemon Online
2011-05-17 20:00 - 2011-05-17 10:54 - 7532423 ____A C:\Users\MANOJO\Desktop\marina.psb
2011-05-17 18:50 - 2011-05-17 18:50 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{F5CAD713-A7D8-4D29-BD08-38AB2CBB23FA}
2011-05-17 06:49 - 2011-05-17 06:49 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{9285E5A7-EE2D-49EE-87C2-9FD2EDDD3ED8}
2011-05-17 05:40 - 2011-04-22 17:11 - 0000000 ____D C:\Users\MANOJO\Desktop\Playstation
2011-05-16 19:18 - 2011-05-16 19:18 - 0119943 ____A C:\Users\MANOJO\Downloads\alpha(1).sql
2011-05-16 18:46 - 2011-05-16 18:46 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{CC01085B-621E-4BFD-8C02-D81B8108D2D2}
2011-05-16 15:51 - 2011-05-16 15:51 - 0000489 ____A C:\Users\MANOJO\Downloads\coupon_20110516(1).xls
2011-05-16 12:22 - 2011-03-21 08:03 - 0000000 ____D C:\Users\MANOJO\AppData\Roaming\SSH
2011-05-16 06:46 - 2011-05-16 06:46 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{89F603E2-A374-4B04-A986-763BF9B81403}
2011-05-16 06:22 - 2011-05-16 06:22 - 0000309 ____A C:\Users\MANOJO\Downloads\coupon_20110516.xls
2011-05-15 18:46 - 2011-05-15 18:45 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{0E8865B2-A853-43CD-AAFE-0B3C85769C29}
2011-05-15 06:45 - 2011-05-15 06:45 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{B250B010-95EC-44F4-9824-F0555413257A}
2011-05-14 18:45 - 2011-05-14 18:44 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{AC75BB06-EDC9-4E45-8059-88BC953736F2}
2011-05-14 11:22 - 2011-05-14 11:22 - 0057892 ____A C:\Users\MANOJO\Downloads\mod_samilyftencal_1.5.zip
2011-05-14 10:48 - 2011-05-14 10:48 - 0108667 ____A C:\Users\MANOJO\Downloads\JSCal2-1.9.zip
2011-05-14 06:44 - 2011-05-14 06:44 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{856CEDEA-9BFC-4B62-9385-BA4E6C094548}
2011-05-14 06:23 - 2011-05-14 06:23 - 3081376 ____A (Adobe Systems, Inc.) C:\Users\MANOJO\Downloads\install_flash_player.exe
2011-05-13 18:44 - 2011-05-13 18:44 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{F3F6D2A7-B7FE-4FDC-ADC3-86853140329E}
2011-05-13 09:31 - 2011-05-13 09:31 - 4586404 ____A (A Software Plus ) C:\Users\MANOJO\Downloads\CoolWMVToFLVConverterSetup.exe
2011-05-13 09:31 - 2011-05-13 09:31 - 0000000 ____D C:\Program Files (x86)\Cool WMV To FLV Converter
2011-05-13 09:28 - 2011-05-13 09:28 - 0000000 ____D C:\Users\MANOJO\AppData\Local\Seven Zip
2011-05-13 09:28 - 2011-05-13 09:28 - 0000000 ____D C:\Users\All Users\{1A5B87F2-2D79-46CF-B9B6-209E9C84F7A4}
2011-05-13 09:28 - 2011-05-13 09:28 - 0000000 ____D C:\ProgramData\{1A5B87F2-2D79-46CF-B9B6-209E9C84F7A4}
2011-05-13 09:28 - 2011-05-13 09:28 - 0000000 ____D C:\Program Files (x86)\Blaze Media Pro
2011-05-13 09:28 - 2011-05-13 09:27 - 17216993 ____A (Mystik Media ) C:\Users\MANOJO\Downloads\setup_blazemp.exe
2011-05-13 06:44 - 2011-05-13 06:43 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{EB58FDBB-7AB4-4EC9-91D5-0935C3B663F6}
2011-05-12 18:43 - 2011-05-12 18:43 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{F0C6D075-2332-4A37-A919-A11BE9D710C1}
2011-05-12 06:43 - 2011-05-12 06:42 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{796AC3FD-F18A-4A0A-91D0-B64D761B011F}
2011-05-12 05:09 - 2011-05-12 05:09 - 0000000 ____D C:\Program Files (x86)\A-PDF Merger
2011-05-12 05:09 - 2011-05-12 05:08 - 2428362 ____A (A-PDF.com ) C:\Users\MANOJO\Downloads\a-pdf-mg.exe
2011-05-12 04:52 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\DriverStore
2011-05-11 18:42 - 2011-05-11 18:42 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{8C94F98A-8AF8-43D8-B9CF-4150E65A0376}
2011-05-11 11:32 - 2011-05-11 11:32 - 0000162 ___AH C:\Users\MANOJO\Desktop\~$TERAÇÃO SITE.docx
2011-05-11 10:47 - 2011-05-11 10:47 - 0754177 ____A C:\Users\MANOJO\Downloads\download-1305139670.zip
2011-05-11 09:54 - 2011-05-11 09:54 - 0754177 ____A C:\Users\MANOJO\Downloads\download-1305136499.zip
2011-05-11 06:41 - 2011-05-11 06:41 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{B3DB0D47-17F4-4DF6-91A2-92E30A412010}
2011-05-11 05:24 - 2011-05-11 05:23 - 0754177 ____A C:\Users\MANOJO\Downloads\download-1305120251.zip
2011-05-11 05:22 - 2011-05-11 05:21 - 0008282 ____A C:\Users\MANOJO\Downloads\download-1305120130.zip
2011-05-11 05:08 - 2011-04-11 09:11 - 0000000 ____D C:\Users\MANOJO\AppData\Roaming\Skype
2011-05-11 04:51 - 2011-03-19 18:58 - 0000000 ____D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2011-05-11 04:49 - 2011-04-11 09:14 - 0000000 ____D C:\Users\MANOJO\AppData\Roaming\skypePM
2011-05-10 18:41 - 2011-05-10 18:41 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{302325DA-F590-4795-8D54-27DC850C50B1}
2011-05-10 12:18 - 2011-05-10 12:18 - 0479056 ____A C:\Windows\Minidump\051011-14118-01.dmp
2011-05-10 05:31 - 2011-05-10 05:30 - 1662724 ____A C:\Users\MANOJO\Downloads\Bamboo_Brushes_by_hawksmont.zip
2011-05-10 04:55 - 2011-05-09 16:54 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{D91CB4A2-2621-4BBF-8790-DEC6989BD8D5}
2011-05-10 04:10 - 2011-06-22 18:27 - 0253888 ____A (AVAST Software) C:\Windows\System32\aswBoot.exe
2011-05-10 04:10 - 2011-06-22 18:27 - 0199304 ____A (AVAST Software) C:\Windows\SysWOW64\aswBoot.exe
2011-05-10 04:10 - 2011-06-22 18:27 - 0040112 ____A (AVAST Software) C:\Windows\avastSS.scr
2011-05-10 04:04 - 2011-06-22 18:27 - 0600920 ____A (AVAST Software) C:\Windows\System32\Drivers\aswSnx.sys
2011-05-10 04:04 - 2011-06-22 18:27 - 0287576 ____A (AVAST Software) C:\Windows\System32\Drivers\aswSP.sys
2011-05-10 04:02 - 2011-06-22 18:27 - 0053592 ____A (AVAST Software) C:\Windows\System32\Drivers\aswTdi.sys
2011-05-10 03:59 - 2011-06-22 18:27 - 0064344 ____A (AVAST Software) C:\Windows\System32\Drivers\aswMonFlt.sys
2011-05-10 03:59 - 2011-06-22 18:27 - 0031064 ____A (AVAST Software) C:\Windows\System32\Drivers\aswRdr.sys
2011-05-10 03:59 - 2011-06-22 18:27 - 0022360 ____A (AVAST Software) C:\Windows\System32\Drivers\aswFsBlk.sys
2011-05-09 13:40 - 2011-04-11 09:14 - 0000000 ____D C:\Users\All Users\Skype Extras
2011-05-09 13:40 - 2011-04-11 09:14 - 0000000 ____D C:\ProgramData\Skype Extras
2011-05-09 08:42 - 2011-05-09 08:42 - 0556312 ____A C:\Windows\Minidump\050911-35303-01.dmp
2011-05-09 04:54 - 2011-05-09 04:53 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{1597CBBE-2A9F-4557-9E74-09061A61D658}
2011-05-08 09:21 - 2011-05-08 09:21 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{A74A9689-852B-4119-B307-A80027D25F1A}
2011-05-07 18:58 - 2011-05-07 18:58 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{DD432ED1-949C-4E00-A7F4-1969FACC66AB}
2011-05-07 12:21 - 2011-05-07 12:21 - 0046475 ____A C:\Users\MANOJO\Downloads\plg_admin-user-access_system_v1.0.0_j1.5.zip
2011-05-07 12:21 - 2011-05-07 12:21 - 0009422 ____A C:\Users\MANOJO\Downloads\plg_admin-user-access_user_v1.2.0_j1.5.zip
2011-05-07 12:16 - 2011-05-07 12:15 - 0463605 ____A C:\Users\MANOJO\Downloads\com_admin-user-access_v2.3.0_j1.5_free.zip
2011-05-07 12:15 - 2011-05-07 12:15 - 0038571 ____A C:\Users\MANOJO\Downloads\mod_admin_user_access_backend_v2.1.2_j1.5_free.zip
2011-05-07 06:58 - 2011-05-07 06:57 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{238BC609-F59C-451B-8C89-FD7B6FCA7170}
2011-05-06 18:49 - 2011-05-06 18:49 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{23E2D215-2C08-4BE9-899A-16150E23B1D6}
2011-05-06 06:48 - 2011-05-06 06:48 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{12BD4880-EB54-44BE-900A-F007837058FA}
2011-05-06 06:02 - 2011-05-06 06:02 - 0513175 ____A C:\Users\MANOJO\Downloads\mod_artuniversallightbox.zip
2011-05-06 05:22 - 2011-05-06 05:22 - 0310329 ____A C:\Users\MANOJO\Downloads\com_jckman1.5_light_edition2.6.zip
2011-05-06 05:18 - 2011-05-06 05:18 - 0338456 ____A C:\Users\MANOJO\Downloads\mod_slideshow_pro.zip
2011-05-06 05:04 - 2011-05-06 05:04 - 0034233 ____A C:\Users\MANOJO\Downloads\joomler-greybox-1-0-1-for-joomla1-5.zip
2011-05-05 18:48 - 2011-05-05 18:48 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{9D306BF7-0031-4C19-9D44-9A4F21FD09BA}
2011-05-05 07:16 - 2011-05-05 07:15 - 0487736 ____A C:\Windows\Minidump\050511-12558-01.dmp
2011-05-05 06:47 - 2011-05-05 06:47 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{94FBE051-C9DC-4DAD-A81A-59C1CE79E668}
2011-05-05 04:59 - 2011-05-05 04:59 - 0000000 ____D C:\Users\MANOJO\AppData\Roaming\IrfanView
2011-05-05 04:59 - 2011-05-05 04:59 - 0000000 ____D C:\Program Files (x86)\IrfanView
2011-05-05 04:58 - 2011-05-05 04:58 - 1474048 ____A (Irfan Skiljan) C:\Users\MANOJO\Downloads\iview428_setup.exe
2011-05-04 18:47 - 2011-05-04 18:46 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{07CF25A8-5C5A-4B8D-AB4C-A68D543DEBE1}
2011-05-04 07:53 - 2011-05-04 07:53 - 0003638 ____A C:\Users\MANOJO\Downloads\mod_content_plugins_v15_0.zip
2011-05-04 06:46 - 2011-05-04 06:46 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{5C77DF21-5CA4-49AE-B0DB-4DB2AFAD4D86}
2011-05-04 06:36 - 2011-05-04 06:36 - 0004011 ____A C:\Users\MANOJO\Downloads\mod_plugin_module_1.5.zip
2011-05-04 05:51 - 2011-05-04 05:51 - 0008436 ____A C:\Users\MANOJO\Downloads\plg_AutoReadMore(1).zip
2011-05-03 19:09 - 2011-05-03 19:09 - 0001916 ____A C:\Users\MANOJO\Downloads\plg_readmorelink12.zip
2011-05-03 18:46 - 2011-05-03 18:46 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{5916D4AC-63BC-4336-B3A8-88CCE373F9E0}
2011-05-03 13:55 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\NDF
2011-05-03 09:39 - 2011-05-03 09:39 - 0008436 ____A C:\Users\MANOJO\Downloads\plg_AutoReadMore.zip
2011-05-03 08:44 - 2011-05-03 08:44 - 0411732 ____A C:\Users\MANOJO\Downloads\com_acesearch_j15_basic.zip
2011-05-03 08:36 - 2011-05-03 08:36 - 0006427 ____A C:\Users\MANOJO\Downloads\mod-google-customsearch-1-1-1-for-1-5-x.zip
2011-05-03 04:53 - 2011-05-03 04:52 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{94EE7E1F-B696-4F73-9931-CAA3D9C967FC}
2011-05-03 04:49 - 2011-05-03 04:49 - 0225246 ____A C:\Users\MANOJO\Downloads\comp-res(1).jpg
2011-05-02 21:29 - 2011-06-15 04:29 - 0976896 ____A (Microsoft Corporation) C:\Windows\System32\inetcomm.dll
2011-05-02 20:30 - 2011-06-15 04:29 - 0741376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2011-05-02 16:52 - 2011-05-02 16:52 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{CE348F00-0EEA-47C1-BFD6-82790D75D059}
2011-05-02 04:52 - 2011-05-02 04:52 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{B6576A4B-F957-48E2-9D5E-5B2433815B02}
2011-05-01 15:49 - 2011-05-01 15:49 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{8B8B5142-ECC8-4D3D-B3B2-B79AAB9B2D7F}
2011-05-01 05:15 - 2011-05-01 05:15 - 0000000 ____D C:\Users\Default\AppData\Roaming\Adobe
2011-05-01 05:15 - 2011-05-01 05:15 - 0000000 ____D C:\Users\Default User\AppData\Roaming\Adobe
2011-05-01 05:14 - 2011-05-01 05:14 - 0000000 ____D C:\Windows\SysWOW64\spool
2011-05-01 05:14 - 2011-05-01 05:14 - 0000000 ____D C:\Users\Default\AppData\Roaming\onOne Software
2011-05-01 05:14 - 2011-05-01 05:14 - 0000000 ____D C:\Users\Default User\AppData\Roaming\onOne Software
2011-05-01 05:14 - 2011-05-01 05:14 - 0000000 ____D C:\Users\All Users\onOne Software
2011-05-01 05:14 - 2011-05-01 05:14 - 0000000 ____D C:\ProgramData\onOne Software
2011-05-01 05:14 - 2011-05-01 05:14 - 0000000 ____D C:\Program Files\onOne Software
2011-05-01 03:05 - 2011-05-01 03:04 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{6C2E3E3C-AAE6-4507-BF16-5E28C44A0DA5}
2011-04-30 07:35 - 2011-04-30 07:35 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{CBA93DD0-8790-4ADC-BBFE-28D8E1EE03D9}
2011-04-29 18:52 - 2011-04-29 18:52 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{B636CE6C-8D53-467C-B7CC-013DC302F023}
2011-04-29 09:57 - 2011-04-29 09:57 - 0117779 ____A C:\Users\MANOJO\Downloads\medicina.sql
2011-04-29 09:21 - 2011-03-21 10:01 - 0000000 ____D C:\Users\MANOJO\Documents\Corel
2011-04-29 06:52 - 2011-04-29 06:52 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{7A88442F-6279-4EB8-ABF4-A186C55FC6EE}
2011-04-29 06:15 - 2011-03-31 09:32 - 0000000 ____D C:\Program Files (x86)\Mozilla Firefox
2011-04-28 19:06 - 2011-06-15 04:30 - 0467456 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\srv.sys
2011-04-28 19:05 - 2011-06-15 04:30 - 0410112 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\srv2.sys
2011-04-28 19:05 - 2011-06-15 04:30 - 0168448 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\srvnet.sys
2011-04-28 18:52 - 2011-04-28 18:51 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{97F02553-9A4F-4936-9203-3AE403B27244}
2011-04-28 17:44 - 2011-04-28 17:44 - 0102619 ____A C:\bg.jpg
2011-04-28 06:51 - 2011-04-28 06:51 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{C5F0C6B7-BBEC-4590-B6F5-69273C8949AB}
2011-04-27 07:56 - 2011-04-27 07:56 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{4EB65FE6-1436-4356-9D36-CD105D8F57A6}
2011-04-26 19:31 - 2011-04-26 19:30 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{B10E042E-401B-4FE4-B3B8-00C5AAF03845}
2011-04-26 18:40 - 2011-06-15 04:30 - 0158208 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb.sys
2011-04-26 18:39 - 2011-06-15 04:30 - 0289280 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb10.sys
2011-04-26 18:39 - 2011-06-15 04:30 - 0128000 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb20.sys
2011-04-26 07:30 - 2011-04-26 07:30 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{240CE897-AD4D-4804-865F-69B53F5B834B}
2011-04-26 05:42 - 2011-04-26 05:42 - 0000000 ____D C:\Users\MANOJO\Downloads\eMule
2011-04-26 05:42 - 2011-04-26 05:42 - 0000000 ____D C:\Users\MANOJO\AppData\Local\eMule
2011-04-26 05:42 - 2011-04-26 05:42 - 0000000 ____D C:\Users\All Users\eMule
2011-04-26 05:42 - 2011-04-26 05:42 - 0000000 ____D C:\ProgramData\eMule
2011-04-26 05:42 - 2011-04-26 05:42 - 0000000 ____D C:\Program Files (x86)\eMule
2011-04-26 05:38 - 2011-04-26 05:38 - 3389035 ____A C:\Users\MANOJO\Downloads\eMule0.50a-Installer.exe
2011-04-26 05:28 - 2011-04-26 05:28 - 0007344 ____A C:\Users\MANOJO\Downloads\alstrasoft_readme.zip
2011-04-26 04:00 - 2011-04-26 04:00 - 0479056 ____A C:\Windows\Minidump\042611-20233-01.dmp
2011-04-25 19:19 - 2011-04-25 19:18 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{FA675F06-B831-41BF-85C4-3BCBA68CE2B5}
2011-04-25 07:18 - 2011-04-25 07:18 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{1104DAB7-ABB5-4FD6-A111-3B09A3B57223}
2011-04-24 21:33 - 2011-06-15 04:30 - 1923968 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2011-04-24 20:41 - 2011-04-24 20:39 - 23809883 ____A C:\Users\MANOJO\Downloads\magento-1.5.0.1.zip
2011-04-24 19:18 - 2011-04-24 19:18 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{CF45E345-DD79-47FF-9883-84BFB9897F40}
2011-04-24 18:34 - 2011-06-15 04:30 - 0499200 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\afd.sys
2011-04-24 16:37 - 2011-04-24 16:36 - 11319257 ____A C:\Users\MANOJO\Downloads\winbraz.exe
2011-04-24 16:28 - 2009-07-13 21:32 - 0000000 ____D C:\Windows\Downloaded Program Files
2011-04-24 07:17 - 2011-04-24 07:17 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{063EF083-85CA-4ECD-8EFA-BB2F4BDD8084}
2011-04-23 19:00 - 2011-04-23 18:59 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{7813EABE-EC07-4498-B6B8-7753BADBAA3E}
2011-04-23 07:45 - 2011-04-23 07:41 - 21689551 ____A C:\Users\MANOJO\Downloads\Tekkem_3.rar
2011-04-23 06:59 - 2011-04-23 06:59 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{3190BFEE-B151-4687-82B8-5A1B4282974F}
2011-04-22 18:59 - 2011-04-22 18:59 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{4B065FCC-3438-419C-9AFB-A5AAACCD0A6E}
2011-04-22 18:55 - 2011-04-22 18:43 - 78882936 ____A C:\Users\MANOJO\Downloads\Gamestnt_Mortal_Kombat_4.rar
2011-04-22 18:05 - 2011-04-22 18:05 - 0233476 ____A C:\Users\MANOJO\Downloads\scph1001.zip
2011-04-22 18:04 - 2011-04-22 18:04 - 0282630 ____A C:\Users\MANOJO\Downloads\scph1000.zip
2011-04-22 18:02 - 2011-04-22 18:02 - 0032686 ____A C:\Users\MANOJO\Downloads\zlib1.zip
2011-04-22 17:44 - 2011-04-22 17:44 - 0000000 ____D C:\Program Files (x86)\ePSXe 1.7.0
2011-04-22 17:40 - 2011-04-22 17:34 - 0003639 ____A C:\Windows\VGSCDAPI.VXD
2011-04-22 17:37 - 2011-06-15 22:09 - 17773568 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2011-04-22 17:35 - 2011-04-22 17:35 - 0000000 ____D C:\Users\Public\Documents\DAEMON Tools Images
2011-04-22 17:29 - 2011-06-15 22:09 - 2303488 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2011-04-22 17:28 - 2011-04-22 17:28 - 0367120 ____A C:\Users\MANOJO\Downloads\nrg2iso.rar
2011-04-22 17:28 - 2011-04-22 17:28 - 0367120 ____A C:\Users\MANOJO\Downloads\nrg2iso (1).rar
2011-04-22 17:27 - 2011-06-15 22:09 - 10885632 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2011-04-22 17:23 - 2011-06-15 22:09 - 1344000 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2011-04-22 17:20 - 2011-06-15 22:09 - 0818176 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2011-04-22 17:19 - 2011-06-15 22:09 - 2382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2011-04-22 17:19 - 2011-06-15 22:09 - 2136064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2011-04-22 17:19 - 2011-06-15 22:09 - 0096256 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2011-04-22 17:17 - 2011-06-15 22:09 - 0248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2011-04-22 17:16 - 2011-04-22 17:16 - 0000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2011-04-22 17:11 - 2011-04-22 17:10 - 1157768 ____A C:\Users\MANOJO\Downloads\AdriPSX ILE Edition 1-0-5.zip
2011-04-22 15:36 - 2011-06-15 22:09 - 12269056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2011-04-22 15:35 - 2011-06-15 22:09 - 1797632 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2011-04-22 15:32 - 2011-06-15 22:09 - 9703936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2011-04-22 15:30 - 2011-06-15 22:09 - 1102336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2011-04-22 15:26 - 2011-06-15 22:09 - 1785344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2011-04-22 15:26 - 2011-06-15 22:09 - 0716800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2011-04-22 15:26 - 2011-06-15 22:09 - 0072704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2011-04-22 15:25 - 2011-06-15 22:09 - 2382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2011-04-22 15:24 - 2011-06-15 22:09 - 0176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2011-04-22 14:15 - 2011-05-25 05:29 - 0027520 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\Diskdump.sys
2011-04-22 06:59 - 2011-04-22 06:58 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{9E670FE2-D80F-4E22-B838-FC9B1DBAE13D}
2011-04-22 06:43 - 2011-04-22 06:19 - 80177889 ____A C:\Users\MANOJO\Downloads\lt 30.rar
2011-04-21 18:58 - 2011-04-21 18:58 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{2B0608DD-9F68-4804-A1B1-1AD24AC52CEE}
2011-04-21 06:58 - 2011-04-21 06:57 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{1744DD34-B09D-4337-B1F6-02E051E71956}
2011-04-20 13:22 - 2011-04-10 20:53 - 0000000 ____D C:\Program Files (x86)\VALVe
2011-04-20 13:21 - 2011-04-20 13:21 - 0703533 ____A C:\Users\MANOJO\Downloads\hldsupdatetool.exe
2011-04-20 10:58 - 2011-04-20 10:57 - 2031620 ____A C:\Users\MANOJO\Downloads\01.mpg
2011-04-20 10:04 - 2011-04-20 10:04 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{F20ADD3C-0E87-4575-AFAC-87C49BEBA732}
2011-04-20 07:49 - 2011-04-20 07:49 - 0379349 ____A C:\Users\MANOJO\Downloads\cssdm-2.1.3.zip
2011-04-19 22:04 - 2011-04-19 22:03 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{7B7429E9-22AC-4202-9931-1E07DD55B738}
2011-04-19 10:15 - 2011-04-19 10:15 - 0123581 ____A C:\Users\MANOJO\Downloads\com_google_1_4.zip
2011-04-19 07:36 - 2011-04-19 07:35 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{BF069F61-1F6C-4299-8453-CD8A902EA597}
2011-04-19 06:17 - 2011-04-19 06:17 - 0137554 ____A C:\Users\MANOJO\Downloads\SSWv6.6 www.tkt-cheats.net.rar
2011-04-19 06:02 - 2011-04-19 06:02 - 0160848 ____A C:\Users\MANOJO\Downloads\AeroHacks+CS_S+v1.4 www.tkt-cheats.net.rar
2011-04-19 05:58 - 2011-04-19 05:55 - 5490944 ____A (New IT Solutions) C:\Users\MANOJO\Downloads\4shared_Desktop_3.3.5.exe
2011-04-18 19:27 - 2011-04-18 19:26 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{205DD4CB-AC42-4169-A047-9F10042033B7}
2011-04-18 15:45 - 2011-02-23 06:23 - 0000000 ____D C:\Users\MANOJO\AppData\Local\Windows Live
2011-04-18 08:11 - 2011-04-18 08:11 - 0068857 ____A C:\Users\MANOJO\Downloads\mod_dionefileuploader.zip
2011-04-18 07:26 - 2011-04-18 07:26 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{245234AE-E0D8-4444-BF4C-E144055990CA}
2011-04-17 17:26 - 2011-04-17 17:26 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{3B71983B-6682-4D37-AEFA-DA7D774C77AF}
2011-04-15 06:29 - 2011-04-15 06:28 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{5207609B-C2BA-4D2E-9C1F-F6936EC5FAE0}
2011-04-14 18:28 - 2011-04-14 18:28 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{1727B452-BCAA-4BB7-B21D-4CE56FEA6EA9}
2011-04-14 06:28 - 2011-04-14 06:28 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{492963AE-79ED-47B6-B080-8B3F7390C930}
2011-04-14 05:29 - 2011-04-14 05:29 - 0102764 ____A C:\Users\MANOJO\Downloads\freebooter.ttf
2011-04-13 18:56 - 2011-04-13 18:56 - 0000688 ____A C:\Users\MANOJO\Downloads\Mouse FIX - CS Online.zip
2011-04-13 18:28 - 2011-04-13 18:27 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{57A56DFF-7E6A-49B4-8AE5-303B9ED3E945}
2011-04-13 11:16 - 2011-04-13 11:16 - 0104577 ____A C:\Users\MANOJO\Downloads\quinelato.sql
2011-04-13 06:27 - 2011-04-13 06:27 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{A5EA7F83-A496-42F0-91A4-466EE38C2C77}
2011-04-12 18:27 - 2011-04-12 18:27 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{405B8E61-5F46-42A7-A178-854A744EB3D3}
2011-04-12 03:51 - 2011-04-12 03:50 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{89729134-4446-4C7B-A978-4E10FB93657F}
2011-04-11 16:20 - 2011-04-11 16:20 - 0035352 ____A C:\Untitled.jpeg
2011-04-11 16:20 - 2011-04-11 16:13 - 0034956 ____A C:\Untitled.jpg
2011-04-11 16:08 - 2011-04-11 16:12 - 0004674 ____A C:\Untitled.png
2011-04-11 09:14 - 2011-04-11 09:14 - 0000056 ___AH C:\Windows\SysWOW64\ezsidmv.dat
2011-04-11 09:11 - 2011-04-11 09:11 - 0000000 ___RD C:\Program Files (x86)\Skype
2011-04-11 09:11 - 2011-04-11 09:10 - 0000000 ____D C:\Users\All Users\Skype
2011-04-11 09:11 - 2011-04-11 09:10 - 0000000 ____D C:\ProgramData\Skype
2011-04-11 09:08 - 2011-04-11 09:08 - 1029512 ____A (Skype Technologies S.A.) C:\Users\MANOJO\Downloads\SkypeSetup.exe
2011-04-11 09:08 - 2011-04-11 09:08 - 1029512 ____A (Skype Technologies S.A.) C:\Users\MANOJO\Downloads\SkypeSetup (1).exe
2011-04-11 07:43 - 2011-04-11 07:43 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{B8440BC7-AD98-40BF-AE37-986D35E6E98D}
2011-04-10 20:11 - 2011-04-10 20:11 - 0000928 ____A C:\Users\Public\Desktop\Steam.lnk
2011-04-10 20:10 - 2011-04-10 20:10 - 1606656 ____A C:\Users\MANOJO\Downloads\SteamInstall.msi
2011-04-10 19:39 - 2011-04-10 19:39 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{0519222D-16D2-4967-BEED-CBAE86444387}
2011-04-10 19:35 - 2011-02-24 07:43 - 0000000 ____D C:\Users\MANOJO\AppData\Local\IM
2011-04-10 17:13 - 2011-04-10 17:13 - 0094069 ____A C:\Users\MANOJO\Downloads\hotelzanata.sql
2011-04-10 15:43 - 2011-04-10 15:43 - 0000020 ____A C:\Users\MANOJO\Downloads\info.php
2011-04-10 09:35 - 2011-04-10 09:35 - 5075246 ____A C:\Users\MANOJO\Downloads\download_files (2).zip
2011-04-10 07:39 - 2011-04-10 07:39 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{165353FC-FF1C-44BB-BF60-A7E824FADDBF}
2011-04-09 19:39 - 2011-04-09 19:39 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{46F20D49-046A-4B5C-A576-21ED30B2B5D8}
2011-04-09 13:55 - 2011-04-09 13:55 - 15453336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xlive.dll
2011-04-09 13:55 - 2011-04-09 13:55 - 13642904 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xlivefnt.dll
2011-04-09 13:55 - 2011-04-09 13:55 - 0179261 ____A C:\Windows\SysWOW64\xlive.dll.cat
2011-04-09 07:39 - 2011-04-09 07:38 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{D0E6128B-F39A-4127-80BA-E69205509F9D}
2011-04-09 04:09 - 2011-04-09 04:09 - 0739328 ____A C:\Users\MANOJO\Downloads\apostilacompleta Interface.doc
2011-04-08 23:02 - 2011-05-11 08:08 - 5562240 ____A (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2011-04-08 22:58 - 2011-05-12 18:30 - 0142336 ____A (Microsoft Corporation) C:\Windows\System32\poqexec.exe
2011-04-08 22:02 - 2011-05-11 08:08 - 3967872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2011-04-08 22:02 - 2011-05-11 08:08 - 3912576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2011-04-08 21:56 - 2011-05-12 18:30 - 0123904 ____A (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2011-04-08 20:37 - 2011-04-08 20:37 - 0519656 ____A C:\Windows\Minidump\040911-24351-01.dmp
2011-04-08 19:56 - 2011-04-08 19:56 - 0049918 ____A C:\Users\MANOJO\Downloads\CODE_UPLOAD6460652000.zip
2011-04-08 19:33 - 2011-04-08 19:33 - 0000000 ____D C:\Windows\Sun
2011-04-08 19:33 - 2011-04-08 19:33 - 0000000 ____D C:\Users\All Users\Sun
2011-04-08 19:33 - 2011-04-08 19:33 - 0000000 ____D C:\ProgramData\Sun
2011-04-08 19:32 - 2011-04-08 19:33 - 0472808 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\deployJava1.dll
2011-04-08 19:32 - 2011-04-08 19:33 - 0157472 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\javaws.exe
2011-04-08 19:32 - 2011-04-08 19:33 - 0145184 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\javaw.exe
2011-04-08 19:32 - 2011-04-08 19:33 - 0145184 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\java.exe
2011-04-08 19:32 - 2011-04-08 19:32 - 0000000 ____D C:\Program Files (x86)\Java
2011-04-08 19:31 - 2011-04-08 19:31 - 0884512 ____A (Sun Microsystems, Inc.) C:\Users\MANOJO\Downloads\chromeinstall-6u24.exe
2011-04-08 18:38 - 2011-04-08 18:38 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{F47FEEF4-0ADD-4E00-8C4C-65C3A24B8048}
2011-04-08 16:12 - 2011-04-01 16:10 - 0001668 ____A C:\Program Files (x86)\Microsoft.NET4.6 SP5.exe
2011-04-08 13:03 - 2011-04-08 13:03 - 0479056 ____A C:\Windows\Minidump\040811-41870-01.dmp
2011-04-08 06:38 - 2011-04-08 06:37 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{39BE7B8A-5987-4B64-8271-123F4DD6D054}
2011-04-07 18:37 - 2011-04-07 18:37 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{964C49F7-B801-449B-B1D8-C3F24A271295}
2011-04-07 09:12 - 2011-04-07 09:12 - 0722842 ____A C:\Users\MANOJO\Downloads\Sem Título-9.jpg
2011-04-07 06:35 - 2011-04-07 06:34 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{E1C49B6B-410F-4DF5-9847-412191D11412}
2011-04-07 05:21 - 2011-04-07 05:21 - 0012369 ____A C:\Users\MANOJO\Downloads\l25o1iv.png
2011-04-06 19:02 - 2011-04-06 19:02 - 0000000 ____A C:\Users\MANOJO\Downloads\unzip.lock
2011-04-06 18:34 - 2011-04-06 18:34 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{1F7F362D-9368-4914-9D02-E686F1376E63}
2011-04-06 12:41 - 2011-04-06 12:41 - 0038639 ____A C:\Users\MANOJO\Downloads\download_files (1).zip
2011-04-06 06:34 - 2011-04-06 06:33 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{DF2FBE20-A04A-4A09-AE84-63CB17CA0C8D}
2011-04-05 18:33 - 2011-04-05 18:33 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{1EB62064-0200-4EA0-B100-1B84AFC1D0D8}
2011-04-05 14:33 - 2011-04-05 14:33 - 0000000 ____D C:\Program Files (x86)\Apoio
2011-04-05 11:56 - 2011-04-05 11:55 - 0001033 ____A C:\Users\MANOJO\Downloads\index (4).html
2011-04-05 08:36 - 2011-03-01 12:40 - 0054455 ____A C:\Windows\SysWOW64\opfgpazvslyp.exe
2011-04-05 05:58 - 2011-04-05 05:57 - 0000535 ____A C:\Users\MANOJO\Downloads\index (3).html
2011-04-05 05:56 - 2011-04-05 05:56 - 0001030 ____A C:\Users\MANOJO\Downloads\index (2).html
2011-04-05 05:56 - 2011-04-05 05:56 - 0001030 ____A C:\Users\MANOJO\Downloads\index (1).html
2011-04-05 04:41 - 2011-04-05 04:41 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{E0565AB9-A741-4BBE-A46F-6A35604657CB}
2011-04-04 11:52 - 2011-02-23 01:03 - 0896000 ____A C:\Windows\SysWOW64\olxflxhdxbmu.dll
2011-04-04 10:53 - 2011-04-04 10:53 - 0000000 ____D C:\Users\MANOJO\Downloads\Harry Potter And The Deathly Hallows Part 1 TS XViD - IMAGiNE.[UsaBit.com]
2011-04-04 10:51 - 2011-04-04 10:51 - 0015242 ____A C:\Users\MANOJO\Downloads\[isoHunt] Harry_Potter_And_The_Deathly_Hallows_Part_1_TS_XViD_-_IMAGiNE.5991374.TPB.torrent
2011-04-04 10:33 - 2011-04-04 10:33 - 0000383 ____A C:\Users\MANOJO\Downloads\download_files.zip
2011-04-04 10:33 - 2011-04-04 10:33 - 0000379 ____A C:\Users\MANOJO\Downloads\index.html
2011-04-04 03:52 - 2011-04-04 03:52 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{78C465A4-B3F7-463A-8501-8C4FF609E0E3}
2011-04-03 21:10 - 2011-04-03 21:10 - 0479056 ____A C:\Windows\Minidump\040411-14492-01.dmp
2011-04-03 12:33 - 2011-04-03 12:33 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{0699FCFF-CB61-4051-8288-8EC23D08FB0F}
2011-04-03 00:33 - 2011-04-03 00:32 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{DD1CD62A-7BF5-4B10-8F6C-26E7633ADC4D}
2011-04-02 12:32 - 2011-04-02 12:32 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{75273BAF-A4DB-4A82-BE7A-C3DD5120E2A4}
2011-04-02 00:32 - 2011-04-02 00:31 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{D204F808-56AE-4F32-8215-72B92287DDEB}
2011-04-01 12:31 - 2011-04-01 12:31 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{846AED71-D673-4BF5-AA19-4F60A503979F}
2011-04-01 00:31 - 2011-03-31 12:30 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{8668DC65-626C-476B-B848-703B1D239EF0}
2011-03-31 11:52 - 2011-03-31 11:52 - 0000000 ____D C:\Users\MANOJO\AppData\Roaming\Adobe Mini Bridge CS5
2011-03-31 09:32 - 2011-03-31 09:32 - 0000000 ____D C:\Users\MANOJO\AppData\Roaming\Mozilla
2011-03-31 09:32 - 2011-03-31 09:32 - 0000000 ____D C:\Users\MANOJO\AppData\Local\Mozilla
2011-03-31 09:32 - 2011-03-31 09:32 - 0000000 ____A C:\Windows\nsreg.dat
2011-03-31 09:31 - 2011-03-31 09:30 - 12411584 ____A (Mozilla) C:\Users\MANOJO\Downloads\Firefox Setup 4.0.exe
2011-03-31 08:34 - 2011-03-31 08:34 - 0103753 ____A C:\Users\MANOJO\Downloads\alpha.sql
2011-03-31 07:02 - 2011-03-31 07:00 - 0001683 ____A C:\Users\MANOJO\Downloads\configuration.php
2011-03-31 06:56 - 2011-03-31 06:56 - 0000000 ____D C:\Users\MANOJO\AppData\Roaming\Foxit Software
2011-03-31 06:55 - 2011-03-31 06:55 - 7935480 ____A (Foxit Corporation) C:\Users\MANOJO\Downloads\FoxitReader431_enu_Setup (1).exe
2011-03-31 06:55 - 2011-03-31 06:55 - 0000000 ____D C:\Program Files (x86)\Foxit Software
2011-03-31 06:55 - 2011-03-31 06:54 - 7935480 ____A (Foxit Corporation) C:\Users\MANOJO\Downloads\FoxitReader431_enu_Setup.exe
2011-03-31 06:48 - 2011-03-31 06:48 - 0120360 ____A C:\Users\MANOJO\Downloads\primax.sql
2011-03-31 00:20 - 2011-03-31 00:20 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{44410766-F17B-41A9-9C81-5527D719AFCD}
2011-03-30 12:20 - 2011-03-30 12:19 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{2A0941F0-F108-4E3B-B408-724D15125BE3}
2011-03-30 07:22 - 2011-03-30 07:22 - 0121121 ____A C:\Users\MANOJO\Downloads\alpha_logo.png
2011-03-30 00:19 - 2011-03-30 00:19 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{3A9455B6-BA07-48B5-96EC-B034BF0A2479}
2011-03-29 19:07 - 2011-03-29 19:06 - 10921040 ____A C:\Users\MANOJO\Downloads\Pokebot Shiny Invasion.rar
2011-03-29 12:19 - 2011-03-29 12:18 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{926F98F1-4475-404B-A8B7-37324F386A58}
2011-03-29 11:41 - 2011-03-29 11:41 - 6919357 ____A C:\Users\MANOJO\Downloads\Joomla-1-15-22 (1).zip
2011-03-29 10:24 - 2011-03-29 10:24 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{7B99EF9D-0563-4113-8C86-83B916F4C413}
2011-03-29 09:27 - 2011-03-29 09:27 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{B612F7B3-52BB-4611-8DE2-EC975AEF92B8}
2011-03-29 06:29 - 2011-03-29 06:29 - 15139328 ____A C:\Users\MANOJO\Downloads\AdbeRdrUpd943_all_incr (1).msp
2011-03-29 06:29 - 2011-03-29 06:28 - 15139328 ____A C:\Users\MANOJO\Downloads\AdbeRdrUpd943_all_incr.msp
2011-03-28 21:27 - 2011-03-28 21:27 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{945AA5AD-C9FC-45AA-BAA5-3A51CBCDD49A}
2011-03-28 20:53 - 2011-03-28 20:53 - 0000000 ____D C:\Users\MANOJO\AppData\Roaming\TS3Client
2011-03-28 20:53 - 2011-03-28 20:53 - 0000000 ____D C:\Program Files\TeamSpeak 3 Client
2011-03-28 20:52 - 2011-03-28 20:50 - 15422664 ____A (TeamSpeak Systems GmbH) C:\Users\MANOJO\Downloads\TeamSpeak3-Client-win64-3.0.0-beta36.exe
2011-03-28 20:51 - 2011-03-28 20:49 - 13326816 ____A (TeamSpeak Systems GmbH) C:\Users\MANOJO\Downloads\TeamSpeak3-Client-win32-3.0.0-beta36.exe
2011-03-28 20:10 - 2011-03-28 20:10 - 0000000 ____D C:\Users\MANOJO\AppData\Local\Vitalwerks
2011-03-28 20:09 - 2011-03-28 20:09 - 1117296 ____A C:\Users\MANOJO\Downloads\ducsetup.exe
2011-03-28 20:09 - 2011-03-28 20:09 - 0000000 ____D C:\Program Files (x86)\No-IP
2011-03-28 19:14 - 2011-03-28 19:14 - 0861720 ____A C:\Users\MANOJO\Downloads\Teleport_Pro_Installer.exe
2011-03-28 19:14 - 2011-03-28 19:14 - 0000000 ____D C:\Program Files (x86)\Teleport Pro
2011-03-28 09:27 - 2011-03-28 09:26 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{5CF53521-E731-4BEF-A9F4-24FA4E80C6DE}
2011-03-27 21:26 - 2011-03-27 09:26 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{207B5FA1-82A4-407B-8A0E-F8BFD6BE74AC}
2011-03-26 18:58 - 2011-03-26 18:57 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{2C631E9D-A1F1-4917-AC6A-5AD86EE6A97A}
2011-03-26 06:57 - 2011-03-25 18:57 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{5D7C5AD1-DD7C-4A60-B43E-D634D8EDF8D6}
2011-03-25 10:01 - 2011-03-25 10:01 - 0006459 ____A C:\Users\MANOJO\Downloads\Efeito Bolhas.rar
2011-03-25 06:56 - 2011-03-25 06:56 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{4CF3B7BB-127D-415C-9527-9B53E6248B28}
2011-03-24 22:01 - 2011-03-24 22:01 - 0000255 ____A C:\Users\MANOJO\Downloads\Som.zip
2011-03-24 20:59 - 2011-03-24 20:52 - 0000000 ____D C:\My Video
2011-03-24 20:54 - 2011-03-24 20:54 - 0000118 ____A C:\Windows\Video To Audio Converter.ini
2011-03-24 20:54 - 2011-03-24 20:51 - 0000001 ____A C:\Windows\SysWOW64\Video To Audio Converter.dat
2011-03-24 20:51 - 2011-03-24 20:51 - 6481728 ____A ( ) C:\Users\MANOJO\Downloads\videotoaudioconverter.exe
2011-03-24 20:51 - 2011-03-24 20:51 - 6481728 ____A ( ) C:\Users\MANOJO\Downloads\videotoaudioconverter (1).exe
2011-03-24 20:42 - 2011-03-24 20:42 - 0000000 ____D C:\Users\MANOJO\AppData\Local\QuickStores
2011-03-24 20:42 - 2011-03-24 20:42 - 0000000 ____D C:\Program Files (x86)\DsNET Corp
2011-03-24 20:41 - 2011-03-24 20:41 - 13348688 ____A (DsNET Corp) C:\Users\MANOJO\Downloads\aTube_Catcher (1).exe
2011-03-24 20:41 - 2011-03-24 20:40 - 13348688 ____A (DsNET Corp) C:\Users\MANOJO\Downloads\aTube_Catcher.exe
2011-03-24 19:29 - 2011-05-11 08:08 - 0343040 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbhub.sys
2011-03-24 19:29 - 2011-05-11 08:08 - 0325120 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbport.sys
2011-03-24 19:29 - 2011-05-11 08:08 - 0098816 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbccgp.sys
2011-03-24 19:29 - 2011-05-11 08:08 - 0052736 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbehci.sys
2011-03-24 19:29 - 2011-05-11 08:08 - 0030720 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbuhci.sys
2011-03-24 19:29 - 2011-05-11 08:08 - 0025600 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbohci.sys
2011-03-24 19:28 - 2011-05-11 08:08 - 0007936 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\usbd.sys
2011-03-24 19:14 - 2011-03-24 19:14 - 0168566 ____A C:\Users\MANOJO\Downloads\logo_primax_site.png
2011-03-24 18:56 - 2011-03-24 18:56 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{7686B7DC-75D8-4F00-A4EF-81AAEEE8B5B5}
2011-03-24 10:02 - 2011-03-24 10:02 - 0017632 ____A C:\Users\MANOJO\Downloads\logo_padi.cdr
2011-03-24 09:33 - 2011-03-24 09:33 - 0093391 ____A C:\topo.png
2011-03-24 06:55 - 2011-03-23 06:54 - 0000000 ____D C:\Users\MANOJO\AppData\Local\{8C57ADEE-A977-452C-AD6C-CCA29959AF0A}
2011-03-23 19:49 - 2011-03-23 19:41 - 103689466 ____A C:\Users\MANOJO\Downloads\Artisteer.3.0.0.37990.exe

========================= Known DLLs =========================

[2009-07-13 16:41] - [2009-07-13 17:40] - 0877056 ____A (Microsoft Corporation) C:\Windows\System32\advapi32.dll
[2010-11-20 19:24] - [2010-11-20 19:24] - 0640512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
[2009-07-13 16:00] - [2009-07-13 17:40] - 0607744 ____A (Microsoft Corporation) C:\Windows\System32\clbcatq.dll
[2009-07-13 15:44] - [2009-07-13 17:15] - 0522240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\clbcatq.dll
[2010-11-20 19:24] - [2010-11-20 19:24] - 0594432 ____A (Microsoft Corporation) C:\Windows\System32\comdlg32.dll
[2010-11-20 19:23] - [2010-11-20 19:23] - 0485888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\COMDLG32.dll
[2010-11-20 19:24] - [2010-11-20 19:24] - 0403968 ____A (Microsoft Corporation) C:\Windows\System32\gdi32.dll
[2010-11-20 19:24] - [2010-11-20 19:24] - 0311296 ____A (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
[2011-06-15 22:09] - [2011-04-22 17:19] - 2136064 ____A (Microsoft Corporation) C:\Windows\System32\IERTUTIL.dll
[2011-06-15 22:09] - [2011-04-22 15:26] - 1785344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IERTUTIL.dll
[2010-11-20 19:24] - [2010-11-20 19:24] - 0076800 ____A (Microsoft Corporation) C:\Windows\System32\imagehlp.dll
[2010-11-20 19:24] - [2010-11-20 19:24] - 0155136 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IMAGEHLP.dll
[2009-07-13 15:38] - [2009-07-13 17:41] - 0167424 ____A (Microsoft Corporation) C:\Windows\System32\IMM32.dll
[2010-11-20 19:24] - [2010-11-20 19:24] - 0119808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IMM32.dll
[2010-11-20 19:24] - [2010-11-20 19:24] - 1161216 ____A (Microsoft Corporation) C:\Windows\System32\kernel32.dll
[2010-11-20 19:24] - [2010-11-20 19:24] - 0837632 ____A (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
[2009-07-13 15:38] - [2009-07-13 17:41] - 0041984 ____A (Microsoft Corporation) C:\Windows\System32\LPK.dll
[2009-07-13 15:25] - [2009-07-13 17:11] - 0025600 ____A (Microsoft Corporation) C:\Windows\SysWOW64\LPK.dll
[2009-07-13 15:40] - [2009-07-13 17:41] - 1067008 ____A (Microsoft Corporation) C:\Windows\System32\MSCTF.dll
[2009-07-13 15:28] - [2009-07-13 17:15] - 0828928 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MSCTF.dll
[2009-07-13 15:19] - [2009-07-13 17:41] - 0634880 ____A (Microsoft Corporation) C:\Windows\System32\MSVCRT.dll
[2009-07-13 15:12] - [2009-07-13 17:15] - 0690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MSVCRT.dll
[2009-07-13 15:26] - [2009-07-13 17:31] - 0002560 ____A (Microsoft Corporation) C:\Windows\System32\NORMALIZ.dll
[2009-07-13 15:15] - [2009-07-13 17:09] - 0002048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\NORMALIZ.dll
[2009-07-13 15:21] - [2009-07-13 17:41] - 0013824 ____A (Microsoft Corporation) C:\Windows\System32\NSI.dll
[2009-07-13 15:12] - [2009-07-13 17:16] - 0008704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\NSI.dll
[2010-11-20 19:23] - [2010-11-20 19:23] - 2086912 ____A (Microsoft Corporation) C:\Windows\System32\ole32.dll
[2010-11-20 19:24] - [2010-11-20 19:24] - 1414144 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
[2011-06-15 04:29] - [2011-02-24 22:22] - 0861696 ____A (Microsoft Corporation) C:\Windows\System32\oleaut32.dll
[2011-06-15 04:29] - [2011-02-24 21:34] - 0571904 ____A (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
[2009-07-13 15:26] - [2009-07-13 17:41] - 0009216 ____A (Microsoft Corporation) C:\Windows\System32\PSAPI.dll
[2009-07-13 15:15] - [2009-07-13 17:16] - 0006144 ____A (Microsoft Corporation) C:\Windows\SysWOW64\PSAPI.dll
[2010-11-20 19:24] - [2010-11-20 19:24] - 1219584 ____A (Microsoft Corporation) C:\Windows\System32\rpcrt4.dll
[2010-11-20 19:24] - [2010-11-20 19:24] - 0663040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
[2009-07-13 15:20] - [2009-07-13 17:41] - 0113664 ____A (Microsoft Corporation) C:\Windows\System32\sechost.dll
[2009-07-13 15:11] - [2009-07-13 17:16] - 0092160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
[2010-11-20 19:24] - [2010-11-20 19:24] - 1900544 ____A (Microsoft Corporation) C:\Windows\System32\Setupapi.dll
[2010-11-20 19:23] - [2010-11-20 19:23] - 1667584 ____A (Microsoft Corporation) C:\Windows\SysWOW64\Setupapi.dll
[2010-11-20 19:23] - [2010-11-20 19:23] - 14174208 ____A (Microsoft Corporation) C:\Windows\System32\shell32.dll
[2010-11-20 19:24] - [2010-11-20 19:24] - 12872192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
[2010-11-20 19:24] - [2010-11-20 19:24] - 0448512 ____A (Microsoft Corporation) C:\Windows\System32\SHLWAPI.dll
[2010-11-20 19:23] - [2010-11-20 19:23] - 0350208 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SHLWAPI.dll
[2011-06-15 22:09] - [2011-04-22 17:23] - 1344000 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
[2011-06-15 22:09] - [2011-04-22 15:30] - 1102336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
[2010-11-20 19:24] - [2010-11-20 19:24] - 1008128 ____A (Microsoft Corporation) C:\Windows\System32\user32.dll
[2010-11-20 19:24] - [2010-11-20 19:24] - 0833024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
[2010-11-20 19:24] - [2010-11-20 19:24] - 0800256 ____A (Microsoft Corporation) C:\Windows\System32\USP10.dll
[2010-11-20 19:24] - [2010-11-20 19:24] - 0626176 ____A (Microsoft Corporation) C:\Windows\SysWOW64\USP10.dll
[2009-07-13 15:57] - [2009-07-13 17:41] - 0029184 ____A (Microsoft Corporation) C:\Windows\System32\version.dll
[2009-07-13 15:41] - [2009-07-13 17:16] - 0021504 ____A (Microsoft Corporation) C:\Windows\SysWOW64\version.dll
[2011-06-12 10:51] - [2011-06-12 10:51] - 1389056 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
[2011-06-12 10:51] - [2011-06-12 10:51] - 1126912 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
[2010-11-20 19:24] - [2010-11-20 19:24] - 0312832 ____A (Microsoft Corporation) C:\Windows\System32\wldap32.dll
[2010-11-20 19:24] - [2010-11-20 19:24] - 0269824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wldap32.dll
[2010-11-20 19:24] - [2010-11-20 19:24] - 0297984 ____A (Microsoft Corporation) C:\Windows\System32\WS2_32.dll
[2010-11-20 19:23] - [2010-11-20 19:23] - 0206848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WS2_32.dll

================== Bamital & volsnap Check ===================

C:\Windows\System32\winlogon.exe
[2010-11-20 19:24] - [2010-11-20 19:24] - 0390656 ____A (Microsoft Corporation) 1151B1BAA6F350B1DB6598E0FEA7C457

C:\Windows\System32\wininit.exe
[2009-07-13 15:52] - [2009-07-13 17:39] - 0129024 ____A (Microsoft Corporation) 94355C28C1970635A31B3FE52EB7CEBA

C:\Windows\explorer.exe
[2011-04-27 03:46] - [2011-02-24 22:19] - 2871808 ____A (Microsoft Corporation) 332FEAB1435662FC6C672E25BEB37BE3

C:\Windows\System32\Drivers\volsnap.sys
[2010-11-20 19:23] - [2010-11-20 19:23] - 0295808 ____A (Microsoft Corporation) 0D08D2F3B3FF84E433346669B5E0F639


========================= Memory info ========================

Percentage of memory in use: 11%
Total physical RAM: 6125.86 MB
Available physical RAM: 5402.58 MB
Total Pagefile: 6124.06 MB
Available Pagefile: 5396.22 MB
Total Virtual: 8192 MB
Available Virtual: 8191.91 MB

======================= Partitions ===========================

1 Drive c: (TI106040W0F) (Fixed) (Total:582.88 GB) (Free:426.29 GB) NTFS
2 Drive d: (System) (Fixed) (Total:1.46 GB) (Free:1.27 GB) NTFS
3 Drive e: (TOSHIBA EXT) (Fixed) (Total:698.64 GB) (Free:561.66 GB) NTFS
4 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
Attached File  FRST.txt   158.98KB   0 downloads
--------------------------------
http://www.redpandasite.com.br
http://www.pandaofertas.com.br
--------------------------------

BC AdBot (Login to Remove)

 


#2 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,707 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:03:12 AM

Posted 23 June 2011 - 08:40 AM

Hi,

Welcome to our forum. I will be assisting you.

Please shortly explain your current issue. If you know tell me how long your computer is infected, what have you done up to now. If the system gives you any error what is the error?

#3 Manojo

Manojo
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Brasil
  • Local time:10:12 PM

Posted 23 June 2011 - 09:03 AM

Hello Just Curious,

My computer problem was caused 1 day ago.

Every time when I try to start my windows in normal mode, I enter in setup repair. The only way to get in my windows is disabling driver signing on f8 menu.

If I wait the repair setup try to find any errors, I can see there is a problem on the file ci.dll

Well thats it, I just cant start my windows on normal mode
--------------------------------
http://www.redpandasite.com.br
http://www.pandaofertas.com.br
--------------------------------

#4 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,707 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:03:12 AM

Posted 23 June 2011 - 09:13 AM

Well done.

I think your system is infected when a crack was used for Vertus Fluid Mask 3.We are going to delete some bad files and fix the main infection too. But you need to uninstall Vertus Fluid Mask 3 and remove its folder from program file after we booted the computer.

Please don't run the registry cleaner. Here at BC we don't recommend using registry cleaners. It applies to p2p programs too.

Open notepad. Please copy the contents of the code box below. (To do this highlight the contents of the box, right click on it and select copy. Right-click in the open notepad and select Paste). Save it on the flashdrive as fixlist.txt

HKLM-x32\...\Run: [nsiybnscjxc] C:\Windows\System32\regsvr32.exe /s "C:\Windows\SysWow64\olxflxhdxbmu.dll" [896000 2011-04-04] ()
C:\Windows\SysWow64\olxflxhdxbmu.dll
2011-06-21 11:27 - 2011-06-21 11:27 - 0001024 ____A C:\Windows\SysWOW64\tsuknww.tgz
2011-06-21 11:26 - 2011-06-22 13:02 - 0000380 ____A C:\Windows\Tasks\At1.job
2011-06-21 11:24 - 2011-06-21 11:28 - 29854183 ____A C:\Users\MANOJO\Downloads\jorge.rar
2011-06-21 09:32 - 2011-06-21 09:53 - 19858587 ____A C:\Users\MANOJO\Downloads\Vert_Fluid_Mask_3_2.1.rar
2011-06-21 09:21 - 2011-06-21 09:21 - 0077312 ____A (Simon Tatham) C:\Users\MANOJO\Downloads\Keygen-Vertus_Fluid_Mask_3_0_2.45303.exe
2011-06-22 19:20 - 2011-03-03 07:26 - 0000310 __ASH C:\Windows\Tasks\uvpjwpkyx.job
2011-06-22 19:20 - 2009-07-13 21:08 - 0000006 ___AH C:\Windows\Tasks\SA.DAT
2011-06-22 14:10 - 2011-06-22 19:20 - 0000346 ____A C:\Windows\Tasks\RegistryBooster.job
cmd: bootrec /FixMbr
cmd: bcdedit /set {default} winpe no

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

Now please enter System Recovery Options.
Run FRST and press the Fix button just once and wait.
The tool will make a log on the flashdrive (Fixlog.txt) please post it to your reply.

Also restart the computer and let it boot normally without disabling Driver Signature Enforcement and let me know how it went.

#5 Manojo

Manojo
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Brasil
  • Local time:10:12 PM

Posted 23 June 2011 - 10:23 AM

there is the fixlog

Fix result of Farbars's Recovery Tool (FRST written by farbar version 2.1.1)
Ran by SYSTEM at 2011-06-23 12:20:11 R:1
Running from E:\

==============================================

HKLM-x32\\\.\.\.\\Run\\nsiybnscjxc Value not found.
C:\Windows\SysWow64\olxflxhdxbmu.dll not found.
C:\Windows\SysWOW64\tsuknww.tgz moved successfully.
C:\Windows\Tasks\At1.job moved successfully.
C:\Users\MANOJO\Downloads\jorge.rar moved successfully.
C:\Users\MANOJO\Downloads\Vert_Fluid_Mask_3_2.1.rar not found.
C:\Users\MANOJO\Downloads\Keygen-Vertus_Fluid_Mask_3_0_2.45303.exe not found.
C:\Windows\Tasks\uvpjwpkyx.job not found.
C:\Windows\Tasks\SA.DAT moved successfully.
C:\Windows\Tasks\RegistryBooster.job moved successfully.

========= bootrec /FixMbr =========

ÿþT h e o p e r a t i o n c o m p l e t e d s u c c e s s f u l l y .

========= End of CMD: =========


========= bcdedit /set {default} winpe no =========

The operation completed successfully.

========= End of CMD: =========




I only have to tnx you so much. It worked like a charm. Thanks to for the hints.
--------------------------------
http://www.redpandasite.com.br
http://www.pandaofertas.com.br
--------------------------------

#6 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,707 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:03:12 AM

Posted 23 June 2011 - 11:09 AM

Great. :thumbsup:

Do you want me to take a look at vulnerabilities or you want to take it over from here?

#7 Manojo

Manojo
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Brasil
  • Local time:10:12 PM

Posted 23 June 2011 - 11:16 AM

I will apreciate. Do you need additional information?
--------------------------------
http://www.redpandasite.com.br
http://www.pandaofertas.com.br
--------------------------------

#8 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,707 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:03:12 AM

Posted 23 June 2011 - 11:19 AM

Let's first run this scan, then I'll ask for another log.

Please download Malwarebytes' Anti-Malware from one of these locations:
malwarebytes.org
majorgeeks.com
  • Double Click mbam-setup.exe to install the application.
  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Quick Scan", then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy&Paste the MBAM log.
Extra Note:
If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process,if asked to restart the computer,please do so immediately.


#9 Manojo

Manojo
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Brasil
  • Local time:10:12 PM

Posted 23 June 2011 - 11:44 AM

Was generated 2 logs.

1 - mbam-log

Malwarebytes' Anti-Malware 1.51.0.1200
www.malwarebytes.org

Database version: 6928

Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421

6/23/2011 1:39:15 PM
mbam-log-2011-06-23 (13-39-15).txt

Scan type: Quick scan
Objects scanned: 175921
Time elapsed: 4 minute(s), 59 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 14

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
c:\messenger.exe (Malware.Gen) -> Quarantined and deleted successfully.
c:\Users\MANOJO\AppData\Local\Temp\Keygen.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
c:\Users\MANOJO\AppData\Local\Temp\~os1BA0.tmp\rlvknlg.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully.
c:\Users\MANOJO\AppData\Local\Temp\~os1BA0.tmp\rlvknlg64.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully.
c:\Users\MANOJO\AppData\Local\Temp\~os4964.tmp\rlvknlg.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully.
c:\Users\MANOJO\AppData\Local\Temp\~os4964.tmp\rlvknlg64.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully.
c:\Users\MANOJO\AppData\Local\Temp\~os4964.tmp\rlxf.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully.
c:\Users\MANOJO\AppData\Local\Temp\~os4964.tmp\rlxg.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully.
c:\Users\MANOJO\AppData\Local\Temp\~osA74F.tmp\rlvknlg.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully.
c:\Users\MANOJO\AppData\Local\Temp\~osA74F.tmp\rlvknlg64.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully.
c:\Windows\Temp\297983.exe (Trojan.FakeMS) -> Quarantined and deleted successfully.
c:\Users\MANOJO\downloads\apply wc3 widescreen.exe (Trojan.MSIL) -> Quarantined and deleted successfully.
c:\Users\MANOJO\downloads\SETUP.EXE (Malware.Generic) -> Quarantined and deleted successfully.
c:\bg.jpg (Trojan.Traces) -> Quarantined and deleted successfully.


2 - protection log

13:33:17 MANOJO MESSAGE Protection started successfully
13:33:21 MANOJO MESSAGE IP Protection started successfully
13:41:33 MANOJO MESSAGE Protection started successfully
13:41:37 MANOJO MESSAGE IP Protection started successfully



TNX
--------------------------------
http://www.redpandasite.com.br
http://www.pandaofertas.com.br
--------------------------------

#10 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,707 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:03:12 AM

Posted 23 June 2011 - 12:23 PM

Well done. Malwarebytes got some of them. I'm sure there more to clean.

Please download OTL by OldTimer.
  • Save it to your desktop.
  • Double click on the OTL icon on your desktop.
  • Check the "Scan All Users" checkbox.
  • Check the "Standard Output".
  • Click Run Scan button.
  • Two reports will open, copy and paste OTL.txt and attacht Extra.txt to your reply:
  • OTL.txt <-- Will be opened
  • Extra.txt <-- Will be minimized


#11 Manojo

Manojo
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Brasil
  • Local time:10:12 PM

Posted 23 June 2011 - 01:13 PM

Sorry about the delay.

I attachted Search.txt and below you can see the otl.txt

OTL logfile created on: 6/23/2011 3:00:38 PM - Run 1
OTL by OldTimer - Version 3.2.24.1 Folder = C:\Users\MANOJO\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

5.98 Gb Total Physical Memory | 3.64 Gb Available Physical Memory | 60.89% Memory free
11.96 Gb Paging File | 8.99 Gb Available in Paging File | 75.13% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 582.88 Gb Total Space | 423.92 Gb Free Space | 72.73% Space Free | Partition Type: NTFS
Drive H: | 1.46 Gb Total Space | 1.27 Gb Free Space | 86.91% Space Free | Partition Type: NTFS

Computer Name: MANOJO-PC | User Name: MANOJO | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - File not found --
PRC - [2011/06/23 14:56:00 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Users\MANOJO\Desktop\OTL.exe
PRC - [2011/06/23 12:28:12 | 000,366,024 | ---- | M] (IncrediMail, Ltd.) -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
PRC - [2011/06/23 12:28:11 | 000,263,624 | ---- | M] (IncrediMail, Ltd.) -- C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe
PRC - [2011/06/02 06:42:53 | 000,025,472 | ---- | M] (Uniblue Systems Limited) -- C:\Program Files (x86)\Uniblue\RegistryBooster\rbmonitor.exe
PRC - [2011/05/29 09:11:28 | 000,449,584 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2011/05/29 09:11:28 | 000,366,640 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2011/05/29 09:11:22 | 001,047,656 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
PRC - [2011/05/10 09:10:57 | 000,042,184 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2011/04/29 11:15:32 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2011/02/15 13:01:48 | 000,019,968 | ---- | M] (Fork Ltd.) -- C:\Prey\platform\windows\cronsvc.exe
PRC - [2011/02/04 16:08:08 | 000,066,560 | ---- | M] (Nalpeiron Ltd.) -- C:\Windows\SysWOW64\nlssrv32.exe
PRC - [2010/11/21 00:24:27 | 000,257,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
PRC - [2010/11/17 15:42:08 | 000,378,472 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2010/05/20 16:15:00 | 000,110,736 | R--- | M] (InterVideo) -- C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
PRC - [2009/07/24 19:38:50 | 000,189,728 | ---- | M] (Protexis Inc.) -- C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe


========== Modules (SafeList) ==========

MOD - [2011/06/23 14:56:00 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Users\MANOJO\Desktop\OTL.exe
MOD - [2011/06/16 03:10:32 | 000,653,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
MOD - [2011/06/16 03:10:32 | 000,569,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
MOD - [2011/06/05 17:19:15 | 000,043,520 | ---- | M] (RealNetworks, Inc.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Hook\rpchrome10browserrecordhelper.dll
MOD - [2011/05/10 09:10:55 | 000,199,792 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\snxhk.dll
MOD - [2010/11/21 00:23:55 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2011/05/10 09:10:57 | 000,042,184 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2010/10/20 14:41:50 | 000,138,656 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Windows\SysNative\TODDSrv.exe -- (TODDSrv)
SRV:64bit: - [2010/10/18 19:28:48 | 000,489,384 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe -- (TosCoSrv)
SRV:64bit: - [2009/08/27 13:38:22 | 000,251,760 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\TOSHIBA\TECO\TecoService.exe -- (TOSHIBA eco Utility Service)
SRV:64bit: - [2009/07/13 22:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/07/13 22:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2007/02/12 16:43:00 | 000,065,536 | ---- | M] (O2Micro International) [Auto | Running] -- C:\Windows\SysNative\drivers\o2flash.exe -- (O2FLASH)
SRV - [2011/06/22 19:36:28 | 000,948,775 | ---- | M] (Crawler.com) [Auto | Running] -- C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe -- (sp_rssrv)
SRV - [2011/06/02 17:41:42 | 000,403,240 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2011/05/29 09:11:28 | 000,366,640 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011/02/15 13:01:48 | 000,019,968 | ---- | M] (Fork Ltd.) [Auto | Running] -- C:\Prey\platform\windows\cronsvc.exe -- (CronService)
SRV - [2011/02/04 16:08:08 | 000,066,560 | ---- | M] (Nalpeiron Ltd.) [Auto | Running] -- C:\Windows\SysWOW64\nlssrv32.exe -- (nlsX86cc)
SRV - [2010/11/29 14:58:30 | 000,054,136 | ---- | M] (TOSHIBA Corporation) [On_Demand | Running] -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe -- (TMachInfo)
SRV - [2010/11/17 15:42:08 | 000,378,472 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2010/05/20 16:15:00 | 000,110,736 | R--- | M] (InterVideo) [Auto | Running] -- C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe -- (IviRegMgr)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/02/19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009/07/24 19:38:50 | 000,189,728 | ---- | M] (Protexis Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)
SRV - [2009/06/10 18:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2011/05/29 09:11:20 | 000,025,912 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2011/05/10 08:59:48 | 000,064,344 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2011/02/22 01:19:57 | 000,254,528 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2010/11/28 19:11:02 | 000,482,384 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\tos_sps64.sys -- (tos_sps64)
DRV:64bit: - [2010/11/22 16:22:48 | 000,078,568 | ---- | M] (O2Micro ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\o2mdgx64.sys -- (O2MDGRDR)
DRV:64bit: - [2010/11/21 00:24:43 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2010/11/21 00:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/21 00:23:48 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tsusbhub.sys -- (tsusbhub)
DRV:64bit: - [2010/11/21 00:23:48 | 000,088,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV:64bit: - [2010/11/21 00:23:48 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2010/11/21 00:23:48 | 000,034,816 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2010/11/21 00:23:47 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2010/11/21 00:23:47 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2010/11/21 00:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/21 00:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2010/11/21 00:23:47 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010/11/05 17:03:08 | 002,637,824 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2010/10/18 14:14:02 | 000,042,096 | ---- | M] (Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btfilter.sys -- (BtFilter)
DRV:64bit: - [2010/10/13 13:20:02 | 000,736,896 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CHDRT64.sys -- (CnxtHdAudService)
DRV:64bit: - [2010/09/13 18:24:26 | 000,437,272 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2010/09/07 13:08:56 | 000,155,752 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2010/07/07 11:26:46 | 000,050,696 | ---- | M] (Windows ® Win 7 DDK provider) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\stflt.sys -- (sp_rsdrv2)
DRV:64bit: - [2010/06/18 16:45:58 | 000,018,872 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tosrfec.sys -- (tosrfec)
DRV:64bit: - [2010/04/03 10:30:40 | 000,313,696 | ---- | M] (Microsoft Corporation) [File_System | Disabled | Stopped] -- C:\Windows\SysNative\drivers\RsFx0150.sys -- (RsFx0150)
DRV:64bit: - [2009/08/18 18:41:06 | 000,049,568 | ---- | M] (O2Micro ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\o2sdgx64.sys -- (O2SDGRDR)
DRV:64bit: - [2009/08/13 22:10:18 | 000,073,984 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xusb21.sys -- (xusb21)
DRV:64bit: - [2009/07/30 20:22:04 | 000,027,784 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tdcmdpst.sys -- (tdcmdpst)
DRV:64bit: - [2009/07/14 15:31:18 | 000,026,840 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\TVALZ_O.SYS -- (TVALZ)
DRV:64bit: - [2009/07/13 22:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 22:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 22:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/09 03:00:00 | 000,055,280 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2009/06/29 08:16:20 | 000,014,784 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\Thpevm.sys -- (Thpevm)
DRV:64bit: - [2009/06/22 17:06:38 | 000,035,008 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\PGEffect.sys -- (PGEffect)
DRV:64bit: - [2009/06/15 13:58:50 | 000,012,800 | ---- | M] (TOSHIBA) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\QIOMem.sys -- (QIOMem)
DRV:64bit: - [2009/06/10 17:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009/06/10 17:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 17:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 17:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 17:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2007/04/17 11:51:50 | 000,014,112 | ---- | M] (InterVideo) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\regi.sys -- (regi)
DRV - [2002/09/16 17:14:32 | 000,004,228 | ---- | M] (PowerQuest Corporation) [Kernel | System | Stopped] -- C:\Windows\SysWow64\drivers\PQNTDRV.sys -- (PQNTDrv)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=vsl&s={searchTerms}&f=4
IE - HKLM\..\URLSearchHook: {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - C:\Program Files (x86)\IncrediMail_MediaBar_2\prxtbIncr.dll (Conduit Ltd.)


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-3020998964-4291547618-1084622284-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-3020998964-4291547618-1084622284-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://br.msn.com/?rd=1
IE - HKU\S-1-5-21-3020998964-4291547618-1084622284-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKU\S-1-5-21-3020998964-4291547618-1084622284-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = EB C8 18 C6 22 FE CB 01 [binary data]
IE - HKU\S-1-5-21-3020998964-4291547618-1084622284-1000\..\URLSearchHook: {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - C:\Program Files (x86)\IncrediMail_MediaBar_2\prxtbIncr.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-3020998964-4291547618-1084622284-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "MyStart Search"
FF - prefs.js..browser.search.selectedEngine: "MyStart Search"
FF - prefs.js..browser.startup.homepage: "about:home"
FF - prefs.js..keyword.URL: "http://mystart.incredimail.com/?loc=ff_address_bar&a=DgVltQHnWC&search="

FF - HKLM\software\mozilla\Firefox\Extensions\\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}: C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9} [2011/02/22 10:36:14 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011/06/05 17:19:15 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2011/06/22 23:27:22 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011/06/05 17:19:14 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

[2011/03/31 14:32:45 | 000,000,000 | ---D | M] (No name found) -- C:\Users\MANOJO\AppData\Roaming\Mozilla\Extensions
[2011/06/23 12:29:27 | 000,000,000 | ---D | M] (No name found) -- C:\Users\MANOJO\AppData\Roaming\Mozilla\Firefox\Profiles\pz9en5q2.default\extensions
[2011/06/23 12:29:33 | 000,000,000 | ---D | M] (IncrediMail MediaBar 2 Community Toolbar) -- C:\Users\MANOJO\AppData\Roaming\Mozilla\Firefox\Profiles\pz9en5q2.default\extensions\{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0}
[2011/06/23 12:26:16 | 000,002,183 | ---- | M] () -- C:\Users\MANOJO\AppData\Roaming\Mozilla\Firefox\Profiles\pz9en5q2.default\searchplugins\MyStart Search.xml
[2011/04/11 14:11:17 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2011/04/11 14:11:17 | 000,000,000 | ---D | M] (Skype extension) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
[2011/04/09 00:33:02 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
File not found (No name found) --
[2011/02/22 10:36:14 | 000,000,000 | ---D | M] (Adobe Contribute Toolbar) -- C:\PROGRAM FILES (X86)\ADOBE\ADOBE CONTRIBUTE CS5\PLUGINS\FIREFOXPLUGIN\{01A8CA0A-4C96-465B-A49B-65C46FAD54F9}
[2011/06/22 23:27:22 | 000,000,000 | ---D | M] (avast! WebRep) -- C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF
[2011/06/05 17:19:15 | 000,000,000 | ---D | M] (RealPlayer Browser Record Plugin) -- C:\PROGRAMDATA\REAL\REALPLAYER\BROWSERRECORDPLUGIN\FIREFOX\EXT
() (No name found) -- C:\USERS\MANOJO\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\PZ9EN5Q2.DEFAULT\EXTENSIONS\{C45C406E-AB73-11D8-BE73-000A95BE3B12}.XPI
() (No name found) -- C:\USERS\MANOJO\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\PZ9EN5Q2.DEFAULT\EXTENSIONS\FIREBUG@SOFTWARE.JOEHEWITT.COM.XPI
[2011/04/29 11:15:32 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\Mozilla Firefox\components\browsercomps.dll
[2010/01/01 05:00:00 | 000,001,027 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\buscape.xml
[2011/05/13 14:35:07 | 000,002,046 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\fcmdSrchvsl.xml
[2010/01/01 05:00:00 | 000,001,212 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\mercadolivre.xml
[2010/01/01 05:00:00 | 000,001,168 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\wikipedia-br.xml
[2010/01/01 05:00:00 | 000,000,952 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\yahoo-br.xml

O1 HOSTS File: ([2011/02/25 13:49:49 | 000,001,290 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe.com
O1 - Hosts: 127.0.0.1 ereg.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
O1 - Hosts: 127.0.0.1 wip3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com
O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
O2:64bit: - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2 - BHO: (ContributeBHO Class) - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll (Adobe Systems, Inc.)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (IncrediMail MediaBar 2 Toolbar) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - C:\Program Files (x86)\IncrediMail_MediaBar_2\prxtbIncr.dll (Conduit Ltd.)
O3:64bit: - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Contribute Toolbar) - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll (Adobe Systems, Inc.)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (IncrediMail MediaBar 2 Toolbar) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - C:\Program Files (x86)\IncrediMail_MediaBar_2\prxtbIncr.dll (Conduit Ltd.)
O4:64bit: - HKLM..\Run: [00TCrdMain] C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [HSON] C:\Program Files\TOSHIBA\TBS\HSON.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [SmoothView] C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [Teco] C:\Program Files\TOSHIBA\TECO\Teco.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [TosNC] C:\Program Files\TOSHIBA\BulletinBoard\TosNcCore.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [TPwrMain] C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Emurayden PSX Emulator] File not found
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [ToshibaServiceStation] C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [TUSBSleepChargeSrv] C:\Program Files (x86)\TOSHIBA\TOSHIBA USB Sleep and Charge Utility\TUSBSleepChargeSrv.exe (TOSHIBA)
O4 - HKLM..\Run: [TWebCamera] C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe (TOSHIBA CORPORATION.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3020998964-4291547618-1084622284-1000..\Run: [AdobeBridge] File not found
O4 - HKU\S-1-5-21-3020998964-4291547618-1084622284-1000..\Run: [IncrediMail] C:\Program Files (x86)\IncrediMail\bin\IncMail.exe (IncrediMail, Ltd.)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O8:64bit: - Extra context menu item: Add to TOSHIBA Bulletin Board - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll (TODO: <会社名>)
O8 - Extra context menu item: Add to TOSHIBA Bulletin Board - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll (TODO: <会社名>)
O9:64bit: - Extra Button: Add to TOSHIBA Bulletin Board - {97F922BD-8563-4184-87EE-8C4ACA438823} - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom64.dll (TODO: <会社名>)
O9:64bit: - Extra 'Tools' menuitem : Add to TOSHIBA Bulletin Board - {97F922BD-8563-4184-87EE-8C4ACA438823} - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom64.dll (TODO: <会社名>)
O9 - Extra Button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe (PokerStars)
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Add to TOSHIBA Bulletin Board - {97F922BD-8563-4184-87EE-8C4ACA438823} - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll (TODO: <会社名>)
O9 - Extra 'Tools' menuitem : Add to TOSHIBA Bulletin Board - {97F922BD-8563-4184-87EE-8C4ACA438823} - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll (TODO: <会社名>)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab (Checkers Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab (MessengerStatsClient Class)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 200.204.0.10 200.204.0.138
O18:64bit: - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - Reg Error: Key error. File not found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (C:\PROGRA~3\SPYWAR~1\sp_rsdel.exe "\??\C:\PROGRA~3\SPYWAR~1\sp_rsdel.dat,) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/06/23 14:55:54 | 000,579,072 | ---- | C] (OldTimer Tools) -- C:\Users\MANOJO\Desktop\OTL.exe
[2011/06/23 13:29:11 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Roaming\Malwarebytes
[2011/06/23 13:28:35 | 000,039,984 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2011/06/23 13:28:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/06/23 13:28:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/06/23 13:28:32 | 000,025,912 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2011/06/23 13:28:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2011/06/23 12:46:39 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FreePOPs
[2011/06/23 12:46:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreePOPs
[2011/06/23 12:46:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\FreePOPs
[2011/06/23 12:29:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Photo Notifier and Animation Creator
[2011/06/23 12:29:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Photo Notifier and Animation Creator
[2011/06/23 12:29:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Conduit
[2011/06/23 12:29:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ConduitEngine
[2011/06/23 12:29:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\IncrediMail_MediaBar_2
[2011/06/23 12:29:15 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\Conduit
[2011/06/23 12:23:10 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{7C68B8DB-E870-4AC8-A0E8-84B0BD345181}
[2011/06/23 00:38:54 | 000,000,000 | ---D | C] -- C:\FRST
[2011/06/23 00:14:18 | 000,000,000 | ---D | C] -- C:\Windows\pss
[2011/06/22 23:27:31 | 000,600,920 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2011/06/22 23:27:31 | 000,287,576 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2011/06/22 23:27:31 | 000,053,592 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
[2011/06/22 23:27:31 | 000,031,064 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr.sys
[2011/06/22 23:27:31 | 000,022,360 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
[2011/06/22 23:27:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus
[2011/06/22 23:27:30 | 000,253,888 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2011/06/22 23:27:30 | 000,064,344 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2011/06/22 23:27:22 | 000,199,304 | ---- | C] (AVAST Software) -- C:\Windows\SysWow64\aswBoot.exe
[2011/06/22 23:27:22 | 000,040,112 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2011/06/22 23:27:17 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2011/06/22 23:27:17 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2011/06/22 21:45:11 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{4656F9ED-3B6E-43CC-AB76-639E2E823989}
[2011/06/22 19:36:27 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Roaming\Spyware Terminator
[2011/06/22 19:36:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Spyware Terminator
[2011/06/22 19:36:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spyware Terminator
[2011/06/22 19:36:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Spyware Terminator
[2011/06/22 19:10:26 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Roaming\Uniblue
[2011/06/22 19:10:25 | 000,000,000 | -H-D | C] -- C:\ProgramData\{AB2D8F2E-F7AD-4446-A11A-50D846B2CF2A}
[2011/06/22 19:10:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue
[2011/06/22 19:10:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Uniblue
[2011/06/22 19:10:16 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\PackageAware
[2011/06/22 09:44:36 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{CBA503DC-4946-453C-BDAC-6601E0DDFBE1}
[2011/06/21 21:43:59 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{19731D43-9BE0-4305-A649-2E48EEA0234D}
[2011/06/21 16:27:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Vertus Fluid Mask 3
[2011/06/21 14:49:40 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\Desktop\pupila
[2011/06/21 09:43:31 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{796395C0-7D31-4421-8CA5-315E5958FD98}
[2011/06/20 21:12:44 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{A7ABE8D8-676A-49E0-B5A5-C73A6A5B8E45}
[2011/06/20 11:33:36 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\Desktop\Titulos
[2011/06/18 23:27:23 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{74080111-92D7-4164-ADFC-FBDEAD468A2C}
[2011/06/18 14:19:57 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\PokerStars
[2011/06/18 14:19:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PokerStars
[2011/06/18 14:19:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PokerStars
[2011/06/18 11:26:48 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{73E8AD44-DF2D-45C0-940C-5DBA85135260}
[2011/06/17 23:26:25 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{2DD4DAF2-6ADA-4179-9156-3E355453666A}
[2011/06/17 11:26:01 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{CEE1C1B4-F834-4C7C-B1E0-A1A369B1D276}
[2011/06/16 23:25:37 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{2DED0D14-7F0B-428E-9FC9-69D326925B33}
[2011/06/16 15:53:31 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Roaming\PACE Anti-Piracy
[2011/06/16 15:53:31 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\PACE Anti-Piracy
[2011/06/16 15:53:31 | 000,000,000 | ---D | C] -- C:\ProgramData\PACE Anti-Piracy
[2011/06/16 15:53:31 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PACE Anti-Piracy
[2011/06/16 15:53:29 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\Documents\Adobe
[2011/06/16 11:23:29 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{D90A377F-EB0D-4E2E-94C1-6A868CF8B3BC}
[2011/06/16 03:09:29 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2011/06/16 03:09:28 | 002,303,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2011/06/16 03:09:28 | 001,797,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9.dll
[2011/06/16 03:09:28 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2011/06/16 03:09:28 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2011/06/16 03:09:28 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2011/06/16 03:09:28 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2011/06/16 03:09:27 | 000,818,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2011/06/15 23:22:54 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{21C0D330-C6DC-42FF-B32E-167DDEEFFF51}
[2011/06/15 11:41:49 | 000,000,000 | ---D | C] -- C:\biblioteca
[2011/06/15 11:22:19 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{CE561A42-C871-4C13-AEB0-6B46896B18F1}
[2011/06/15 09:29:34 | 000,861,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
[2011/06/14 23:21:56 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{EC952311-23E6-4252-AA0B-88CAC3FC5ACF}
[2011/06/14 09:03:31 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{BE6D8E1E-DFBE-4B78-AD82-60E47CE7E43B}
[2011/06/13 12:57:58 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{9E23E2A1-E0E0-485C-B7E3-02E3D4299E2B}
[2011/06/13 00:21:59 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{3336B841-3CD7-4F5D-97DB-A6B22797A097}
[2011/06/12 21:51:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Suite de Aplicativos Gráficos CorelDRAW X4
[2011/06/12 21:51:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Corel
[2011/06/12 21:14:07 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\Documents\Corel User Files
[2011/06/12 15:51:29 | 003,695,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
[2011/06/12 15:51:29 | 003,695,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat
[2011/06/12 15:51:29 | 001,492,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2011/06/12 15:51:29 | 001,427,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2011/06/12 15:51:29 | 000,697,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2011/06/12 15:51:29 | 000,603,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2011/06/12 15:51:29 | 000,580,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeeds.dll
[2011/06/12 15:51:29 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2011/06/12 15:51:29 | 000,452,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2011/06/12 15:51:29 | 000,448,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2011/06/12 15:51:29 | 000,434,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2011/06/12 15:51:29 | 000,367,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2011/06/12 15:51:29 | 000,353,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dxtmsft.dll
[2011/06/12 15:51:29 | 000,282,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2011/06/12 15:51:29 | 000,267,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieaksie.dll
[2011/06/12 15:51:29 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2011/06/12 15:51:29 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2011/06/12 15:51:29 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieaksie.dll
[2011/06/12 15:51:29 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dxtrans.dll
[2011/06/12 15:51:29 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll
[2011/06/12 15:51:29 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2011/06/12 15:51:29 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2011/06/12 15:51:29 | 000,165,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe
[2011/06/12 15:51:29 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakui.dll
[2011/06/12 15:51:29 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieakui.dll
[2011/06/12 15:51:29 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2011/06/12 15:51:29 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msls31.dll
[2011/06/12 15:51:29 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe
[2011/06/12 15:51:29 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieakeng.dll
[2011/06/12 15:51:29 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2011/06/12 15:51:29 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2011/06/12 15:51:29 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2011/06/12 15:51:29 | 000,145,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2011/06/12 15:51:29 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2011/06/12 15:51:29 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll
[2011/06/12 15:51:29 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakeng.dll
[2011/06/12 15:51:29 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2011/06/12 15:51:29 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2011/06/12 15:51:29 | 000,114,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\admparse.dll
[2011/06/12 15:51:29 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2011/06/12 15:51:29 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2011/06/12 15:51:29 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2011/06/12 15:51:29 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\admparse.dll
[2011/06/12 15:51:29 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe
[2011/06/12 15:51:29 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2011/06/12 15:51:29 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2011/06/12 15:51:29 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2011/06/12 15:51:29 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2011/06/12 15:51:29 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll
[2011/06/12 15:51:29 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2011/06/12 15:51:29 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx
[2011/06/12 15:51:29 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
[2011/06/12 15:51:29 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2011/06/12 15:51:29 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2011/06/12 15:51:29 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ie4uinit.exe
[2011/06/12 15:51:29 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
[2011/06/12 15:51:29 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll
[2011/06/12 15:51:29 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2011/06/12 15:51:29 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2011/06/12 15:51:29 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll
[2011/06/12 15:51:29 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
[2011/06/12 15:51:29 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll
[2011/06/12 15:51:29 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2011/06/12 15:51:29 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\imgutil.dll
[2011/06/12 15:51:29 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2011/06/12 15:51:29 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2011/06/12 15:51:29 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2011/06/12 15:51:29 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe
[2011/06/12 15:51:29 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2011/06/12 15:51:29 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2011/06/12 12:21:24 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{05283624-7790-44A1-8F76-0D9B61640714}
[2011/06/12 00:21:01 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{977DEEB1-C106-475D-A2D5-00573A91A011}
[2011/06/11 12:20:48 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{B9B8008B-8A7C-4177-9A1B-965DBA6DF0A1}
[2011/06/10 21:17:54 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{DB38EB24-6FBD-4ADF-ADFA-71CE59FD1A8E}
[2011/06/10 08:42:34 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{A6E2ACB7-52BD-4FAA-AEF0-DD71236455BF}
[2011/06/10 03:32:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Firebird
[2011/06/10 03:32:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Cute Cute
[2011/06/09 20:42:38 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{9F4FD1F5-8399-4BEC-8139-90209869CC62}
[2011/06/09 07:55:48 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{23EFB393-DD86-4164-9102-0DE12C51039E}
[2011/06/08 11:28:19 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{6C1F0445-EC2B-4643-B152-1CC0C31BFCDB}
[2011/06/07 23:27:44 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{7F6862B4-A2C1-49D2-87AC-ABC0DF43B506}
[2011/06/07 11:27:08 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{EFFC56E1-8C79-479B-BF02-F1D72B5B82FA}
[2011/06/06 23:26:44 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{C9B4F6B7-51BD-4B10-BE88-A1625B16FE3E}
[2011/06/06 21:47:49 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{6FE94168-7406-4D04-8726-602C369C6398}
[2011/06/06 09:47:10 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{3124F15D-619E-49F0-9A03-3CC3548B884D}
[2011/06/05 17:19:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\xing shared
[2011/06/05 17:19:13 | 000,198,848 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\SysWow64\rmoc3260.dll
[2011/06/05 17:19:12 | 000,272,896 | ---- | C] (Progressive Networks) -- C:\Windows\SysWow64\pncrt.dll
[2011/06/05 17:19:12 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5016.dll
[2011/06/05 17:19:12 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5032.dll
[2011/06/05 17:19:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Real
[2011/06/05 17:19:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Real
[2011/06/05 17:19:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Real
[2011/06/05 17:19:08 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Roaming\Real
[2011/06/05 09:14:51 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{6F4EAC64-CCE7-45F5-9347-ACD711559A4F}
[2011/06/04 20:39:00 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{B68B4F02-C452-4A0F-90C7-2B70D576EDB2}
[2011/06/04 18:12:51 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Roaming\Apple Computer
[2011/06/04 18:12:51 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\Apple Computer
[2011/06/04 18:12:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Artisteer 3
[2011/06/04 18:11:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Artisteer 3
[2011/06/04 08:35:10 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{79C0C2F5-CA64-4A38-904D-369B715BA1B3}
[2011/06/04 08:28:09 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{835E43AE-AC04-4F02-AB8F-224CFA233D71}
[2011/06/03 11:30:03 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{0B31BF6E-D9F3-4C25-8258-422F46794B05}
[2011/06/02 23:29:33 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{C0BB77CD-44CC-4B74-B87A-DD30EF22EB2A}
[2011/06/02 11:29:07 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{BA50FDCE-CB68-49AC-836B-1D5A240EA9FB}
[2011/06/01 23:28:19 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{F84BFC94-5D5B-471F-B147-6472AC4054D5}
[2011/06/01 09:49:53 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{D92D4327-0101-4121-B2E9-34D4AEEFE880}
[2011/05/31 21:48:45 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{360AB3D9-9158-48C9-8454-94243C3B4BFB}
[2011/05/31 09:35:45 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{E8DB13EC-4B66-4835-8F2A-23F853CF18B0}
[2011/05/30 13:04:06 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{7BC3B390-C959-4B67-A3E1-0E7C98C7E3E1}
[2011/05/29 13:03:03 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{CC636F56-E63F-4B54-A420-AE7F40FDD7B0}
[2011/05/29 01:02:28 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{CD7731B2-E7DE-4D2D-8BB9-7DDD818CC484}
[2011/05/28 13:01:52 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{30E35E1A-D518-4415-870B-F068FD85E5BD}
[2011/05/27 23:35:05 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{52EE97A0-F708-407C-99DC-881BA4DCD376}
[2011/05/27 14:10:39 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\uTorrent
[2011/05/27 11:03:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Quadroland
[2011/05/27 11:03:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Flash Menu Labs Std v2
[2011/05/27 11:03:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Flash Menu Labs Std v2
[2011/05/27 10:46:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\A4MenuBuilder
[2011/05/27 10:45:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\A4MenuBuilder
[2011/05/26 23:31:54 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{06046956-4FF0-41BB-9F53-1FD3425DFBED}
[2011/05/26 11:31:09 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{CB10636C-21B4-4777-B504-35675DFDB176}
[2011/05/25 23:30:27 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{C65E682C-EC5D-41CD-9716-FA176609E704}
[2011/05/25 10:29:44 | 000,027,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Diskdump.sys
[2011/05/25 10:19:05 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{7D56E58A-25FA-4DEE-8D9B-15FE92692F95}
[2011/05/24 21:26:14 | 000,000,000 | ---D | C] -- C:\Users\MANOJO\AppData\Local\{4B95C8EB-35CA-4655-A7C0-58328319A76D}
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/06/23 15:00:54 | 000,000,029 | ---- | M] () -- C:\Windows\SysWow64\TempWmicBatchFile.bat
[2011/06/23 14:56:00 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Users\MANOJO\Desktop\OTL.exe
[2011/06/23 14:39:00 | 000,000,912 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3020998964-4291547618-1084622284-1000UA.job
[2011/06/23 14:22:00 | 000,001,044 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/06/23 14:22:00 | 000,001,040 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/06/23 13:48:24 | 000,021,280 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/06/23 13:48:24 | 000,021,280 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/06/23 13:40:35 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/06/23 13:40:31 | 522,604,543 | -HS- | M] () -- C:\hiberfil.sys
[2011/06/23 12:57:42 | 000,176,128 | ---- | M] () -- C:\Users\MANOJO\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/06/23 12:28:29 | 000,002,224 | ---- | M] () -- C:\Users\Public\Desktop\Wallpapers by IncrediMail.lnk
[2011/06/23 12:28:29 | 000,002,024 | ---- | M] () -- C:\Users\Public\Desktop\IncrediMail.lnk
[2011/06/23 12:28:29 | 000,002,016 | ---- | M] () -- C:\Users\Public\Desktop\Speed up your computer!.lnk
[2011/06/23 12:28:29 | 000,002,016 | ---- | M] () -- C:\Users\MANOJO\Application Data\Microsoft\Internet Explorer\Quick Launch\IncrediMail 2.0.lnk
[2011/06/23 00:39:46 | 000,875,390 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011/06/23 00:39:46 | 000,728,886 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2011/06/23 00:39:46 | 000,146,812 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2011/06/22 23:45:53 | 000,002,009 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2011/06/22 23:38:19 | 834,625,552 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2011/06/22 23:27:30 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2011/06/22 19:38:27 | 000,001,137 | ---- | M] () -- C:\Users\Public\Desktop\Spyware Terminator.lnk
[2011/06/22 19:29:49 | 000,002,516 | -HS- | M] () -- C:\ProgramData\KGyGaAvL.sys
[2011/06/22 19:10:25 | 000,001,804 | ---- | M] () -- C:\Users\MANOJO\Desktop\Uniblue RegistryBooster.lnk
[2011/06/22 19:10:25 | 000,001,794 | ---- | M] () -- C:\Users\MANOJO\Application Data\Microsoft\Internet Explorer\Quick Launch\Uniblue RegistryBooster.lnk
[2011/06/22 15:39:00 | 000,000,860 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3020998964-4291547618-1084622284-1000Core.job
[2011/06/22 13:05:54 | 000,000,132 | ---- | M] () -- C:\Users\MANOJO\AppData\Roaming\Adobe PNG Format CS5 Prefs
[2011/06/22 11:10:31 | 000,083,010 | ---- | M] () -- C:\Windows\FontData.fdb
[2011/06/21 16:27:13 | 000,001,024 | ---- | M] () -- C:\Windows\SysWow64\tsuknww.dll
[2011/06/21 16:27:13 | 000,000,218 | ---- | M] () -- C:\Windows\SysWow64\ebfej4c.tgz
[2011/06/21 16:27:13 | 000,000,204 | ---- | M] () -- C:\Windows\SysWow64\ebfej4c.dll
[2011/06/21 16:27:12 | 000,001,024 | ---- | M] () -- C:\Windows\SysWow64\grcauth2.dll
[2011/06/21 16:27:12 | 000,001,024 | ---- | M] () -- C:\Windows\SysWow64\grcauth1.dll
[2011/06/21 16:27:12 | 000,001,024 | ---- | M] () -- C:\Windows\SysWow64\clauth2.dll
[2011/06/21 16:27:12 | 000,001,024 | ---- | M] () -- C:\Windows\SysWow64\clauth1.dll
[2011/06/21 16:27:12 | 000,000,114 | ---- | M] () -- C:\Windows\SysWow64\prsgrc.tgz
[2011/06/21 16:27:12 | 000,000,100 | ---- | M] () -- C:\Windows\SysWow64\prsgrc.dll
[2011/06/21 16:27:12 | 000,000,086 | ---- | M] () -- C:\Windows\SysWow64\ssprs.tgz
[2011/06/21 16:27:12 | 000,000,072 | ---- | M] () -- C:\Windows\SysWow64\ssprs.dll
[2011/06/21 13:34:12 | 005,018,528 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2011/06/20 14:12:24 | 000,014,006 | ---- | M] () -- C:\Users\MANOJO\Desktop\menu1.swf
[2011/06/20 14:04:31 | 000,014,006 | ---- | M] () -- C:\Users\MANOJO\Desktop\menu.swf
[2011/06/20 13:27:19 | 000,116,001 | ---- | M] () -- C:\Users\MANOJO\Desktop\plg_content_arisexylightboxlite.zip
[2011/06/20 10:30:17 | 007,076,020 | ---- | M] () -- C:\Users\MANOJO\Desktop\vazsomeluz.swf
[2011/06/18 14:19:55 | 000,001,100 | ---- | M] () -- C:\Users\MANOJO\Application Data\Microsoft\Internet Explorer\Quick Launch\PokerStars.lnk
[2011/06/18 14:19:55 | 000,001,076 | ---- | M] () -- C:\Users\Public\Desktop\PokerStars.lnk
[2011/06/16 15:53:31 | 000,000,021 | ---- | M] () -- C:\Windows\SurCode.INI
[2011/06/12 21:52:24 | 000,000,088 | RHS- | M] () -- C:\ProgramData\B1A31120E0.sys
[2011/06/12 17:15:38 | 000,001,456 | ---- | M] () -- C:\Users\MANOJO\AppData\Local\Adobe Save for Web 12.0 Prefs
[2011/06/12 15:55:56 | 000,001,452 | ---- | M] () -- C:\Users\MANOJO\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/06/12 15:51:29 | 003,695,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
[2011/06/12 15:51:29 | 003,695,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat
[2011/06/12 15:51:29 | 001,492,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2011/06/12 15:51:29 | 001,427,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2011/06/12 15:51:29 | 000,697,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2011/06/12 15:51:29 | 000,603,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2011/06/12 15:51:29 | 000,580,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeeds.dll
[2011/06/12 15:51:29 | 000,534,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2011/06/12 15:51:29 | 000,452,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2011/06/12 15:51:29 | 000,448,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2011/06/12 15:51:29 | 000,434,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2011/06/12 15:51:29 | 000,367,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2011/06/12 15:51:29 | 000,353,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\dxtmsft.dll
[2011/06/12 15:51:29 | 000,282,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2011/06/12 15:51:29 | 000,267,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieaksie.dll
[2011/06/12 15:51:29 | 000,236,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2011/06/12 15:51:29 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2011/06/12 15:51:29 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieaksie.dll
[2011/06/12 15:51:29 | 000,223,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\dxtrans.dll
[2011/06/12 15:51:29 | 000,222,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll
[2011/06/12 15:51:29 | 000,197,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2011/06/12 15:51:29 | 000,173,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2011/06/12 15:51:29 | 000,165,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe
[2011/06/12 15:51:29 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakui.dll
[2011/06/12 15:51:29 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieakui.dll
[2011/06/12 15:51:29 | 000,162,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2011/06/12 15:51:29 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msls31.dll
[2011/06/12 15:51:29 | 000,160,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe
[2011/06/12 15:51:29 | 000,160,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieakeng.dll
[2011/06/12 15:51:29 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2011/06/12 15:51:29 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2011/06/12 15:51:29 | 000,149,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2011/06/12 15:51:29 | 000,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2011/06/12 15:51:29 | 000,142,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2011/06/12 15:51:29 | 000,135,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll
[2011/06/12 15:51:29 | 000,130,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakeng.dll
[2011/06/12 15:51:29 | 000,123,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2011/06/12 15:51:29 | 000,118,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2011/06/12 15:51:29 | 000,114,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\admparse.dll
[2011/06/12 15:51:29 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2011/06/12 15:51:29 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2011/06/12 15:51:29 | 000,103,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2011/06/12 15:51:29 | 000,101,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\admparse.dll
[2011/06/12 15:51:29 | 000,091,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe
[2011/06/12 15:51:29 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2011/06/12 15:51:29 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2011/06/12 15:51:29 | 000,086,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2011/06/12 15:51:29 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2011/06/12 15:51:29 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll
[2011/06/12 15:51:29 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2011/06/12 15:51:29 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx
[2011/06/12 15:51:29 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
[2011/06/12 15:51:29 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2011/06/12 15:51:29 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2011/06/12 15:51:29 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ie4uinit.exe
[2011/06/12 15:51:29 | 000,072,822 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2011/06/12 15:51:29 | 000,072,822 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
[2011/06/12 15:51:29 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
[2011/06/12 15:51:29 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll
[2011/06/12 15:51:29 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2011/06/12 15:51:29 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2011/06/12 15:51:29 | 000,049,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll
[2011/06/12 15:51:29 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
[2011/06/12 15:51:29 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll
[2011/06/12 15:51:29 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2011/06/12 15:51:29 | 000,035,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\imgutil.dll
[2011/06/12 15:51:29 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2011/06/12 15:51:29 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2011/06/12 15:51:29 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2011/06/12 15:51:29 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe
[2011/06/12 15:51:29 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2011/06/12 15:51:29 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2011/06/11 01:02:57 | 000,000,063 | ---- | M] () -- C:\Windows\WININIT.INI
[2011/06/05 17:19:13 | 000,198,848 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\rmoc3260.dll
[2011/06/05 17:19:12 | 000,272,896 | ---- | M] (Progressive Networks) -- C:\Windows\SysWow64\pncrt.dll
[2011/06/05 17:19:12 | 000,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5016.dll
[2011/06/05 17:19:12 | 000,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5032.dll
[2011/06/05 17:19:10 | 000,499,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcp71.dll
[2011/06/05 17:19:10 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcr71.dll
[2011/06/04 22:17:56 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2011/06/04 18:12:11 | 000,001,164 | ---- | M] () -- C:\Users\MANOJO\Application Data\Microsoft\Internet Explorer\Quick Launch\Artisteer 3.lnk
[2011/05/29 09:11:30 | 000,039,984 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2011/05/29 09:11:20 | 000,025,912 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2011/05/24 15:59:03 | 000,000,132 | ---- | M] () -- C:\Users\MANOJO\AppData\Roaming\Adobe GIF Format CS5 Prefs
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/06/23 12:28:29 | 000,002,224 | ---- | C] () -- C:\Users\Public\Desktop\Wallpapers by IncrediMail.lnk
[2011/06/23 12:28:29 | 000,002,024 | ---- | C] () -- C:\Users\Public\Desktop\IncrediMail.lnk
[2011/06/23 12:28:29 | 000,002,016 | ---- | C] () -- C:\Users\Public\Desktop\Speed up your computer!.lnk
[2011/06/22 23:27:31 | 000,002,009 | ---- | C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2011/06/22 23:27:30 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\config.nt
[2011/06/22 19:38:27 | 000,001,137 | ---- | C] () -- C:\Users\Public\Desktop\Spyware Terminator.lnk
[2011/06/22 19:10:25 | 000,001,804 | ---- | C] () -- C:\Users\MANOJO\Desktop\Uniblue RegistryBooster.lnk
[2011/06/22 19:10:25 | 000,001,794 | ---- | C] () -- C:\Users\MANOJO\Application Data\Microsoft\Internet Explorer\Quick Launch\Uniblue RegistryBooster.lnk
[2011/06/20 13:58:59 | 000,014,006 | ---- | C] () -- C:\Users\MANOJO\Desktop\menu1.swf
[2011/06/20 13:54:12 | 000,014,006 | ---- | C] () -- C:\Users\MANOJO\Desktop\menu.swf
[2011/06/20 13:27:18 | 000,116,001 | ---- | C] () -- C:\Users\MANOJO\Desktop\plg_content_arisexylightboxlite.zip
[2011/06/20 10:30:16 | 007,076,020 | ---- | C] () -- C:\Users\MANOJO\Desktop\vazsomeluz.swf
[2011/06/18 14:19:55 | 000,001,100 | ---- | C] () -- C:\Users\MANOJO\Application Data\Microsoft\Internet Explorer\Quick Launch\PokerStars.lnk
[2011/06/18 14:19:55 | 000,001,076 | ---- | C] () -- C:\Users\Public\Desktop\PokerStars.lnk
[2011/06/16 15:53:31 | 000,000,021 | ---- | C] () -- C:\Windows\SurCode.INI
[2011/06/12 17:04:11 | 000,001,456 | ---- | C] () -- C:\Users\MANOJO\AppData\Local\Adobe Save for Web 12.0 Prefs
[2011/06/12 15:51:29 | 000,072,822 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2011/06/12 15:51:29 | 000,072,822 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2011/06/11 01:02:57 | 000,000,063 | ---- | C] () -- C:\Windows\WININIT.INI
[2011/06/04 22:17:56 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2011/06/04 18:12:11 | 000,001,164 | ---- | C] () -- C:\Users\MANOJO\Application Data\Microsoft\Internet Explorer\Quick Launch\Artisteer 3.lnk
[2011/05/24 15:58:22 | 000,000,132 | ---- | C] () -- C:\Users\MANOJO\AppData\Roaming\Adobe GIF Format CS5 Prefs
[2011/04/13 15:33:03 | 000,869,238 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2011/04/11 14:14:16 | 000,000,056 | -H-- | C] () -- C:\Windows\SysWow64\ezsidmv.dat
[2011/04/09 18:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2011/04/01 21:10:33 | 000,001,668 | ---- | C] () -- C:\Program Files (x86)\Microsoft.NET4.6 SP5.exe
[2011/03/31 14:32:42 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2011/03/25 01:54:07 | 000,000,118 | ---- | C] () -- C:\Windows\Video To Audio Converter.ini
[2011/03/25 01:51:59 | 000,000,001 | ---- | C] () -- C:\Windows\SysWow64\Video To Audio Converter.dat
[2011/03/10 12:42:30 | 000,176,128 | ---- | C] () -- C:\Users\MANOJO\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/03/09 23:46:14 | 000,002,516 | -HS- | C] () -- C:\ProgramData\KGyGaAvL.sys
[2011/03/09 23:46:14 | 000,000,088 | RHS- | C] () -- C:\ProgramData\B1A31120E0.sys
[2011/03/01 18:27:55 | 000,000,530 | ---- | C] () -- C:\Windows\eReg.dat
[2011/03/01 17:40:38 | 000,054,455 | ---- | C] () -- C:\Windows\SysWow64\opfgpazvslyp.exe
[2011/03/01 10:54:44 | 000,000,132 | ---- | C] () -- C:\Users\MANOJO\AppData\Roaming\Adobe PNG Format CS5 Prefs
[2011/02/27 14:04:21 | 000,125,927 | ---- | C] () -- C:\Windows\SysWow64\a40bf869.exe
[2011/02/27 14:04:03 | 000,050,168 | ---- | C] () -- C:\Windows\SysWow64\.exe
[2011/02/15 10:57:58 | 002,666,496 | ---- | C] () -- C:\Windows\SysWow64\29f0bdbe.dll.ren
[2010/11/21 00:24:15 | 000,001,024 | ---- | C] () -- C:\Windows\SysWow64\tsuknww.dll
[2010/11/21 00:24:15 | 000,001,024 | ---- | C] () -- C:\Windows\SysWow64\grcauth2.dll
[2010/11/21 00:24:15 | 000,001,024 | ---- | C] () -- C:\Windows\SysWow64\grcauth1.dll
[2010/11/21 00:24:15 | 000,001,024 | ---- | C] () -- C:\Windows\SysWow64\clauth2.dll
[2010/11/21 00:24:15 | 000,001,024 | ---- | C] () -- C:\Windows\SysWow64\clauth1.dll
[2010/11/21 00:24:15 | 000,000,204 | ---- | C] () -- C:\Windows\SysWow64\ebfej4c.dll
[2010/11/21 00:24:15 | 000,000,100 | ---- | C] () -- C:\Windows\SysWow64\prsgrc.dll
[2010/11/21 00:24:15 | 000,000,072 | ---- | C] () -- C:\Windows\SysWow64\ssprs.dll
[2010/11/21 00:24:15 | 000,000,016 | -H-- | C] () -- C:\Windows\SysWow64\ubl9clt.dll
[2009/07/14 02:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/13 23:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009/07/13 23:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009/07/13 21:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/13 20:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 18:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009/06/10 18:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2008/12/27 11:18:20 | 000,005,120 | ---- | C] () -- C:\Windows\SysWow64\lwel-manifest.dll
[2006/11/12 15:56:50 | 000,065,536 | ---- | C] () -- C:\Windows\SysWow64\NMSAccess.exe
[2006/10/21 14:59:59 | 000,262,144 | ---- | C] () -- C:\Windows\SysWow64\Manipulate.dll
[2006/09/24 15:53:54 | 000,268,242 | ---- | C] () -- C:\Windows\SysWow64\erdmpg-parse.dll
[2006/09/24 15:53:42 | 002,518,779 | ---- | C] () -- C:\Windows\SysWow64\erdmpg-enc.dll
[2006/09/24 15:52:04 | 000,030,693 | ---- | C] () -- C:\Windows\SysWow64\erdmpg-int.dll
[2006/06/01 12:39:30 | 000,110,592 | ---- | C] () -- C:\Windows\SysWow64\LDECMPG22.dll
[2006/06/01 12:39:20 | 000,159,744 | ---- | C] () -- C:\Windows\SysWow64\LENCMPG22.dll
[2006/06/01 12:38:36 | 000,172,032 | ---- | C] () -- C:\Windows\SysWow64\LENCMPG2KRN2.dll
[2006/05/31 13:52:54 | 000,135,168 | ---- | C] () -- C:\Windows\SysWow64\LDECMPG2KRN2.dll
[2006/05/28 20:31:26 | 000,405,504 | ---- | C] () -- C:\Windows\SysWow64\LEncMPG4Krn.dll
[2006/05/23 10:35:22 | 001,814,528 | ---- | C] () -- C:\Windows\SysWow64\ltmm15_n.dll
[2005/11/17 14:57:30 | 000,258,560 | ---- | C] () -- C:\Windows\SysWow64\MusicTagsAX.dll
[2005/11/05 20:34:50 | 000,145,408 | ---- | C] () -- C:\Windows\SysWow64\Lame.exe
[2005/10/15 00:10:24 | 000,065,536 | ---- | C] () -- C:\Windows\SysWow64\comLyricGetter.dll
[2004/02/01 16:21:56 | 000,097,280 | ---- | C] () -- C:\Windows\SysWow64\Uncommon.dll
[2003/08/07 17:01:50 | 000,237,568 | ---- | C] () -- C:\Windows\SysWow64\lame_enc.dll
[2002/07/19 13:48:22 | 000,157,696 | ---- | C] () -- C:\Windows\SysWow64\OggEnc.exe

========== Alternate Data Streams ==========

@Alternate Data Stream - 130 bytes -> C:\ProgramData\TEMP:DBC416F8
@Alternate Data Stream - 1095 bytes -> C:\ProgramData\Microsoft:y04DBBHHSwM6gyNHcLqIFUJNxU
@Alternate Data Stream - 1063 bytes -> C:\ProgramData\Microsoft:W6KyjGyV0jRIJwG7cgbdHm7sF
@Alternate Data Stream - 1054 bytes -> C:\Users\MANOJO\AppData\Local\oENO2CgQX0qt1:Q6Bgly5VCNoERtxD29a3ohUdCE
@Alternate Data Stream - 1040 bytes -> C:\Program Files\Common Files\System:zhiMC1DQ3KL5EXOLmvnfQ

< End of report >

Attached Files


--------------------------------
http://www.redpandasite.com.br
http://www.pandaofertas.com.br
--------------------------------

#12 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,707 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:03:12 AM

Posted 23 June 2011 - 01:33 PM

No worries about the delay.

This will be our last round before we round off.

  • Please delete FRST tool as we don't need it any more. Also go to C:\FRST and delete the entire FRST folder.
  • I recommend to uninstall Conduit Engine as it is often related to adware stuff.
  • Important Note: Your version of Java is out of date. Older versions have vulnerabilities that malicious sites can use to exploit and infect your system.
    • Please follow these steps to remove older version Java components and update:[list]
    • Download the latest version of Java Runtime Environment (JRE) Version 6 and save it to your desktop.
    • Look for "JDK 6 Update 26 (JDK or JRE)".
    • Click the "Download JRE" button to the right.
    • Select your Platform: "Windows".
    • Select your Language: "Multi-language".
    • Read the License Agreement, and then check the box that says: "I agree to the Java SE...License Agreement".
    • Click Continue and the page will refresh.
    • Under Required Files, check the box for Windows Offline Installation, click the link below it and save the file to your desktop.
    • Close any programs you may have running - especially your web browser.
    Go to Posted Image > Control Panel, double-click on Add/Remove Programs or Programs and Features in Vista/Windows 7 and remove all older versions of Java.
    • Check (highlight) any item with Java Runtime Environment (JRE or J2SE) in the name.
    • Click the Remove or Change/Remove button and follow the onscreen instructions for the Java uninstaller.
    • Repeat as many times as necessary to remove each Java versions.
    • Reboot your computer once all Java components are removed.
    • Then from your desktop double-click on jre-6u26-windows-i586.exe to install the newest version.
    • If using Windows 7 or Vista and the installer refuses to launch due to insufficient user permissions, then Run As Administrator.
    • When the Java Setup - Welcome window opens, click the Install > button.
    • If offered to install a Toolbar, just uncheck the box before continuing unless you want it.
    -- Starting with Java 6u10, the uninstaller incorporated in each new release uses Enhanced Auto update to automatically remove the previous version when updating to a later update release. It will not remove older versions, so they will need to be removed manually.
    -- Java is updated frequently. If you want to be automatically notified of future updates, just turn on the Java Automatic Update feature and you will not have to remember to update when Java releases a new version.


    Note: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications but it's not necessary.
    To disable the JQS service if you don't want to use it:
    • Go to Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for Java Quick Starter.
    • Click Ok and reboot your computer.
  • This small application you may want to keep and use to keep the computer clean.
    Download CCleaner from here http://www.ccleaner.com/

    • Run the installer to install the application.
    • When it gives you the option to install Yahoo toolbar uncheck the box next to it.
    • Run CCleaner. (make sure under Windows tab all the boxes of Internet Explorer and Windows explorer are checked. Under System check Empty Recycle Bin and Temporary Files. Under Application tab all the boxes should be checked).
    • Click Run Cleaner.
    • Close CCleaner.
  • ESET Online Scanner:

    Note: You can use either Internet Explorer or Mozilla FireFox for this scan. You will however need to disable your current installed Anti-Virus, how to do so can be read here.

    Vista users: You will need to to right-click on the either the IE or FF icon in the Start Menu or Quick Launch Bar on the Taskbar and select Run as Administrator from the context menu.

    • Please go here then click on: Posted Image

      Note: If using Mozilla Firefox you will need to download esetsmartinstaller_enu.exe when prompted then double click on it to install.
      All of the below instructions are compatible with either Internet Explorer or Mozilla FireFox.

    • Select the option YES, I accept the Terms of Use then click on: Posted Image
    • When prompted allow the Add-On/Active X to install.
    • Make sure that the option Remove found threats and the option Scan archives are checked.
    • Now click on Advanced Settings and select the following:
    • Enable Anti-Stealth Technology
    • Now click on: Posted Image
    • The virus signature database... will begin to download. Be patient this make take some time depending on the speed of your Internet Connection.
    • When completed the Online Scan will begin automatically.
    • Do not touch either the Mouse or keyboard during the scan otherwise it may stall.
    • When completed select Uninstall application on close if you so wish, make sure you copy the logfile first!
    • Now click on: Posted Image
    • Use notepad to open the logfile located at C:\Program Files\ESET\EsetOnlineScanner\log.txt.
    • Copy and paste that log as a reply to this topic.
    Note: Do not forget to re-enable your Anti-Virus application after running the above scan!


#13 Manojo

Manojo
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Brasil
  • Local time:10:12 PM

Posted 23 June 2011 - 02:16 PM

Wonderful, I did all the steps now Im feeling with a brand new laptop like the day when I bought it!

Many thanks to you Just Curious, Now my nightmare is over, and other little problems too!

I will recomend this forum for everybody.

The internet needs mnre people like you.
--------------------------------
http://www.redpandasite.com.br
http://www.pandaofertas.com.br
--------------------------------

#14 Farbar

Farbar

    Just Curious


  • Security Developer
  • 21,707 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Netherlands
  • Local time:03:12 AM

Posted 23 June 2011 - 02:29 PM

You are most welcome.:)

Just one more thing.

  • You may delete any tool or log we used from your computer.
  • Remove the old restore points and create a new restore point to prevent possible reinfection from an old one. Some of the malware you picked up could have been saved in System Restore. Setting a new restore point AFTER cleaning your system will enable your computer to "roll-back" to a clean working state if needed. :
  • Go to Start => Right-click "Computer" and select "Properties".
  • In the left pane select "System Protection".
  • Press "Configure".
  • Select "Delete". Then press "Continue" close and "OK".
  • Select your drive (drive C) and press "Create".
    Fill in a name for the restore point and press "Create".
    After finished press "Close".
Recommendations:
  • I recommend using Site Advisor for safe surfing. It is a free extension both for Internet Explorer and Firefox. When you search a site it gives you an indication of how safe a site is.
  • I recommend installing this small application for safe surfing: Javacools© SpywareBlaster
    SpywareBlaster will add a large list of programs and sites into your Internet Explorer and Firefox settings and that will protect you from running and downloading known malicious programs.
  • Download and install it.
  • Update it manually by clicking on Updates in the left pane and then Check for Updates.
  • Then enable all the protections by clicking on Protection Status on the left pane. Then click on Enable All Protection.
  • The free version doesn't have an automatic update. Update it once in two or three weeks and enable all protection again.

Happy surfing Manojo.:)

#15 Manojo

Manojo
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Brasil
  • Local time:10:12 PM

Posted 23 June 2011 - 03:18 PM

There go! any stupid mistake now will be verified by 3 kinds of software before infect my computer haha.

Wonderful post..

just Thank You
--------------------------------
http://www.redpandasite.com.br
http://www.pandaofertas.com.br
--------------------------------




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users