API tools faq
paste
Advertisement
Guest User

relatório do OTS

a guest
Dec 29th, 2012
121
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 55.88 KB | None | 0 0
raw download clone embed print report
  1. [code]
  2. OTS logfile created on: 29/12/2012 13:49:58 - Run 1
  3. OTS by OldTimer - Version 3.1.47.2 Folder = C:\Users\Estéfany\Downloads
  4. Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
  5. Internet Explorer (Version = 8.0.7600.16385)
  6. Locale: 00000416 | Country: Brasil | Language: PTB | Date Format: dd/MM/yyyy
  7.  
  8. 2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 65,00% Memory free
  9. 4,00 Gb Paging File | 3,00 Gb Available in Paging File | 74,00% Paging File free
  10. Paging file location(s): ?:\pagefile.sys [binary data]
  11.  
  12. %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
  13. Drive C: | 244,14 Gb Total Space | 182,85 Gb Free Space | 74,90% Space Free | Partition Type: NTFS
  14. Drive D: | 221,61 Gb Total Space | 219,83 Gb Free Space | 99,20% Space Free | Partition Type: NTFS
  15. E: Drive not present or media not loaded
  16. Drive F: | 7,42 Gb Total Space | 5,99 Gb Free Space | 80,65% Space Free | Partition Type: FAT32
  17. G: Drive not present or media not loaded
  18. H: Drive not present or media not loaded
  19. I: Drive not present or media not loaded
  20.  
  21. Computer Name: ESTÉFANY-PC
  22. Current User Name: Estéfany
  23. Logged in as Administrator.
  24.  
  25. Current Boot Mode: Normal
  26. Scan Mode: All users
  27. Company Name Whitelist: Off
  28. Skip Microsoft Files: Off
  29. File Age = 30 Days
  30.  
  31. [Processes - Safe List]
  32. ots.exe -> C:\Users\Estéfany\Downloads\OTS.exe -> [2012/12/29 13:47:37 | 000,646,656 | ---- | M] (OldTimer Tools)
  33. flashplayerplugin_11_5_502_135.exe -> C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_5_502_135.exe -> [2012/12/28 13:47:58 | 001,807,800 | ---- | M] (Adobe Systems, Inc.)
  34. utorrent.exe -> C:\Arquivos de programas\uTorrent\uTorrent.exe -> [2012/11/13 21:10:45 | 000,968,592 | ---- | M] (BitTorrent, Inc.)
  35. avastui.exe -> C:\Program Files\AVAST Software\Avast\AvastUI.exe -> [2012/10/30 20:50:59 | 004,297,136 | ---- | M] (AVAST Software)
  36. avastsvc.exe -> C:\Program Files\AVAST Software\Avast\AvastSvc.exe -> [2012/10/30 20:50:59 | 000,044,808 | ---- | M] (AVAST Software)
  37. c2c_service.exe -> C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe -> [2012/10/02 12:13:44 | 003,064,000 | ---- | M] (Skype Technologies S.A.)
  38. armsvc.exe -> C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -> [2012/07/27 18:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated)
  39. doroserver.exe -> C:\Arquivos de programas\DoroPDFWriter\DoroServer.exe -> [2012/05/29 21:08:48 | 000,172,032 | ---- | M] (CompSoft)
  40. firefox.exe -> C:\Arquivos de programas\Mozilla Firefox\firefox.exe -> [2012/05/07 19:31:55 | 000,924,600 | ---- | M] (Mozilla Corporation)
  41. teamviewer_service.exe -> C:\Arquivos de programas\TeamViewer\Version7\TeamViewer_Service.exe -> [2012/03/19 09:38:47 | 002,666,880 | ---- | M] (TeamViewer GmbH)
  42. seaport.exe -> C:\Program Files\Microsoft\BingBar\SeaPort.EXE -> [2011/03/28 11:21:16 | 000,249,648 | ---- | M] (Microsoft Corporation)
  43. nbhgui.exe -> C:\Program Files\Nero\Tools\InCD\NBHGui.exe -> [2009/10/16 10:44:14 | 001,600,816 | ---- | M] (Nero AG)
  44. incdsrv.exe -> C:\Program Files\Nero\Tools\InCD\InCDSrv.exe -> [2009/10/16 10:44:10 | 001,420,592 | ---- | M] (Nero AG)
  45. incd.exe -> C:\Program Files\Nero\Tools\InCD\InCD.exe -> [2009/10/16 10:44:06 | 001,060,136 | ---- | M] (Nero AG)
  46. taskhost.exe -> C:\Windows\System32\taskhost.exe -> [2009/07/13 23:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation)
  47. explorer.exe -> C:\Windows\explorer.exe -> [2009/07/13 23:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation)
  48. wmpnetwk.exe -> C:\Arquivos de programas\Windows Media Player\wmpnetwk.exe -> [2006/11/03 00:31:44 | 000,914,944 | ---- | M] (Microsoft Corporation)
  49.  
  50. [Modules - No Company Name]
  51. npswf32_11_5_502_135.dll -> C:\Windows\System32\Macromed\Flash\NPSWF32_11_5_502_135.dll -> [2012/12/28 13:47:58 | 014,586,296 | ---- | M] ()
  52. mozjs.dll -> C:\Arquivos de programas\Mozilla Firefox\mozjs.dll -> [2012/05/07 19:31:55 | 001,952,696 | ---- | M] ()
  53. office.odf -> C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\office.odf -> [2010/01/30 02:41:12 | 004,254,560 | ---- | M] ()
  54.  
  55. [Win32 Services - Safe List]
  56. (AdobeFlashPlayerUpdateSvc) Adobe Flash Player Update Service [On_Demand | Stopped] -> C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -> [2012/12/28 13:47:58 | 000,250,808 | ---- | M] (Adobe Systems Incorporated)
  57. (MozillaMaintenance) Mozilla Maintenance Service [On_Demand | Stopped] -> C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -> [2012/11/29 06:26:17 | 000,115,168 | ---- | M] (Mozilla Foundation)
  58. (SkypeUpdate) Skype Updater [Auto | Stopped] -> C:\Program Files\Skype\Updater\Updater.exe -> [2012/11/09 12:12:16 | 000,160,944 | R--- | M] (Skype Technologies)
  59. (avast! Antivirus) avast! Antivirus [Auto | Running] -> C:\Program Files\AVAST Software\Avast\AvastSvc.exe -> [2012/10/30 20:50:59 | 000,044,808 | ---- | M] (AVAST Software)
  60. (Skype C2C Service) Skype C2C Service [Auto | Running] -> C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe -> [2012/10/02 12:13:44 | 003,064,000 | ---- | M] (Skype Technologies S.A.)
  61. (AdobeARMservice) Adobe Acrobat Update Service [Auto | Running] -> C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -> [2012/07/27 18:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated)
  62. (TeamViewer7) TeamViewer 7 [Auto | Running] -> C:\Arquivos de Programas\TeamViewer\Version7\TeamViewer_Service.exe -> [2012/03/19 09:38:47 | 002,666,880 | ---- | M] (TeamViewer GmbH)
  63. (BBSvc) Bing Bar Update Service [On_Demand | Stopped] -> C:\Program Files\Microsoft\BingBar\BBSvc.EXE -> [2011/04/01 11:14:30 | 000,183,560 | ---- | M] (Microsoft Corporation.)
  64. (SeaPort) SeaPort [Auto | Running] -> C:\Program Files\Microsoft\BingBar\SeaPort.EXE -> [2011/03/28 11:21:16 | 000,249,648 | ---- | M] (Microsoft Corporation)
  65. (Microsoft SharePoint Workspace Audit Service) Microsoft SharePoint Workspace Audit Service [On_Demand | Stopped] -> C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -> [2010/03/25 10:25:22 | 030,969,208 | ---- | M] (Microsoft Corporation)
  66. (NeroRegInCDSrv) Nero Registry InCD Service [Auto | Stopped] -> C:\Program Files\Nero\Tools\InCD\NBHRegInCDSrv.exe -> [2009/10/16 10:44:18 | 000,053,560 | ---- | M] (Nero AG)
  67. (InCDSrv) InCD Helper [Auto | Running] -> C:\Program Files\Nero\Tools\InCD\InCDSrv.exe -> [2009/10/16 10:44:10 | 001,420,592 | ---- | M] (Nero AG)
  68. (SensrSvc) Brilho Adaptável [On_Demand | Stopped] -> C:\Windows\System32\sensrsvc.dll -> [2009/07/13 23:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation)
  69. (PeerDistSvc) BranchCache [On_Demand | Stopped] -> C:\Windows\System32\PeerDistSvc.dll -> [2009/07/13 23:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation)
  70. (WinDefend) Windows Defender [Auto | Running] -> C:\Program Files\Windows Defender\mpsvc.dll -> [2009/07/13 23:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation)
  71.  
  72. [Driver Services - Safe List]
  73. (aswSnx) aswSnx [File_System | System | Running] -> C:\Windows\System32\drivers\aswSnx.sys -> [2012/10/30 20:51:58 | 000,738,504 | ---- | M] (AVAST Software)
  74. (aswSP) aswSP [Kernel | System | Running] -> C:\Windows\System32\drivers\aswSP.sys -> [2012/10/30 20:51:58 | 000,361,032 | ---- | M] (AVAST Software)
  75. (aswTdi) avast! Network Shield Support [Kernel | System | Running] -> C:\Windows\System32\drivers\aswTdi.sys -> [2012/10/30 20:51:58 | 000,054,232 | ---- | M] (AVAST Software)
  76. (aswMonFlt) aswMonFlt [File_System | Auto | Running] -> C:\Windows\System32\drivers\aswMonFlt.sys -> [2012/10/30 20:51:57 | 000,058,680 | ---- | M] (AVAST Software)
  77. (aswFsBlk) aswFsBlk [File_System | Auto | Running] -> C:\Windows\System32\drivers\aswFsBlk.sys -> [2012/10/30 20:51:56 | 000,021,256 | ---- | M] (AVAST Software)
  78. (aswRdr) aswRdr [Kernel | System | Running] -> C:\Windows\System32\Drivers\aswrdr2.sys -> [2012/10/15 12:59:28 | 000,044,784 | ---- | M] (AVAST Software)
  79. (InCDFs) Nero UDF File System Driver [File_System | On_Demand | Running] -> C:\Windows\System32\drivers\InCDFs.sys -> [2009/10/16 10:43:04 | 000,130,200 | ---- | M] (Nero AG)
  80. (InCDRec) Nero UDF File System Recognizer Driver [File_System | System | Running] -> C:\Windows\System32\drivers\InCDRec.sys -> [2009/10/16 10:42:58 | 000,019,096 | ---- | M] (Nero AG)
  81. (InCDPass) Nero InCDPass Driver [Kernel | On_Demand | Running] -> C:\Windows\System32\drivers\InCDPass.sys -> [2009/10/16 10:42:50 | 000,048,280 | ---- | M] (Nero AG)
  82. (vmbus) Barramento da Máquina Virtual [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\vmbus.sys -> [2009/07/13 23:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation)
  83. (storflt) Driver de Filtro de Aceleração do Barramento da Máquina Virtual do Disco [Kernel | Boot | Running] -> C:\Windows\system32\DRIVERS\vmstorfl.sys -> [2009/07/13 23:19:10 | 000,040,896 | ---- | M] (Microsoft Corporation)
  84. (storvsc) storvsc [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\storvsc.sys -> [2009/07/13 23:19:10 | 000,028,224 | ---- | M] (Microsoft Corporation)
  85. (WinUsb) WinUsb [Kernel | On_Demand | Stopped] -> C:\Windows\System32\drivers\winusb.sys -> [2009/07/13 21:51:11 | 000,034,944 | ---- | M] (Microsoft Corporation)
  86. (s3cap) s3cap [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\vms3cap.sys -> [2009/07/13 21:28:47 | 000,005,632 | ---- | M] (Microsoft Corporation)
  87. (VMBusHID) VMBusHID [Kernel | On_Demand | Stopped] -> C:\Windows\system32\DRIVERS\VMBusHID.sys -> [2009/07/13 21:28:45 | 000,017,920 | ---- | M] (Microsoft Corporation)
  88.  
  89. [Registry - Safe List]
  90. < Internet Explorer Settings [HKEY_LOCAL_MACHINE\] > -> ->
  91. HKEY_LOCAL_MACHINE\: Main\\"Start Page" -> ->
  92. < Internet Explorer Settings [HKEY_USERS\.DEFAULT\] > -> ->
  93. HKEY_USERS\.DEFAULT\: "ProxyEnable" -> 0 ->
  94. < Internet Explorer Settings [HKEY_USERS\S-1-5-18\] > -> ->
  95. HKEY_USERS\S-1-5-18\: "ProxyEnable" -> 0 ->
  96. < Internet Explorer Settings [HKEY_USERS\S-1-5-19\] > -> ->
  97. < Internet Explorer Settings [HKEY_USERS\S-1-5-20\] > -> ->
  98. < Internet Explorer Settings [HKEY_USERS\S-1-5-21-2416928252-1431641652-4129932973-1000\] > -> ->
  99. HKEY_USERS\S-1-5-21-2416928252-1431641652-4129932973-1000\: Main\\"Start Page" -> ->
  100. HKEY_USERS\S-1-5-21-2416928252-1431641652-4129932973-1000\: Main\\"Start Page Redirect Cache AcceptLangs" -> pt-br ->
  101. HKEY_USERS\S-1-5-21-2416928252-1431641652-4129932973-1000\: Main\\"Start Page Redirect Cache_TIMESTAMP" -> F7 E9 F2 82 E4 C4 CD 01 [binary data] ->
  102. HKEY_USERS\S-1-5-21-2416928252-1431641652-4129932973-1000\: "ProxyEnable" -> 0 ->
  103. < FireFox Settings [Prefs.js] > -> C:\Users\Estéfany\AppData\Roaming\Mozilla\FireFox\Profiles\u6j23vq6.default\prefs.js ->
  104. < FireFox Extensions [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla
  105. HKLM\software\mozilla\Firefox\Extensions -> ->
  106. HKLM\software\mozilla\Firefox\Extensions\\wrc@avast.com -> C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF [C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF] -> [2012/11/20 20:16:41 | 000,000,000 | ---D | M]
  107. HKLM\software\mozilla\Mozilla Firefox 17.0.1\extensions -> ->
  108. HKLM\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Components -> C:\Arquivos de Programas\Mozilla Firefox\components [C:\PROGRAM FILES\MOZILLA FIREFOX\COMPONENTS] -> [2012/09/25 17:24:29 | 000,000,000 | ---D | M]
  109. HKLM\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Plugins -> C:\PROGRAM FILES\MOZILLA FIREFOX\PLUGINS ->
  110. < FireFox Extensions [User Folders] > ->
  111. -> C:\Users\Estéfany\AppData\Roaming\mozilla\Extensions -> [2012/12/28 13:10:35 | 000,000,000 | ---D | M]
  112. < FireFox Extensions [Program Folders] > ->
  113. -> C:\Arquivos de Programas\Mozilla Firefox\extensions -> [2012/12/28 13:10:21 | 000,000,000 | ---D | M]
  114. avast! WebRep -> C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF -> [2012/11/20 20:16:41 | 000,000,000 | ---D | M]
  115. < HOSTS File > ([2009/06/10 19:39:37 | 000,000,824 | ---- | M] - 21 lines) -> C:\Windows\System32\drivers\etc\hosts ->
  116. Reset Hosts
  117. < BHO's [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ ->
  118. {72853161-30C5-4D22-B7F9-0BBC1D38A37E} [HKLM] -> C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [Groove GFS Browser Helper] -> [2010/03/25 10:25:22 | 004,222,864 | ---- | M] (Microsoft Corporation)
  119. {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} [HKLM] -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [avast! WebRep] -> [2012/10/30 20:50:50 | 001,227,736 | ---- | M] (AVAST Software)
  120. {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} [HKLM] -> C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [Skype Browser Helper] -> [2012/10/02 12:13:44 | 004,119,744 | ---- | M] (Skype Technologies S.A.)
  121. {B4F3A835-0E21-4959-BA22-42B3008E02FF} [HKLM] -> C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [Office Document Cache Handler] -> [2010/02/28 02:20:14 | 000,561,552 | ---- | M] (Microsoft Corporation)
  122. {d2ce3e00-f94a-4740-988e-03dc2f38c34f} [HKLM] -> C:\Program Files\Microsoft\BingBar\BingExt.dll [Bing Bar Helper] -> [2011/04/01 11:14:30 | 001,144,072 | ---- | M] (Microsoft Corporation.)
  123. < Internet Explorer ToolBars [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar ->
  124. "{8dcb7100-df86-4384-8842-8fa844297b3f}" [HKLM] -> C:\Program Files\Microsoft\BingBar\BingExt.dll [Bing Bar] -> [2011/04/01 11:14:30 | 001,144,072 | ---- | M] (Microsoft Corporation.)
  125. "{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}" [HKLM] -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [avast! WebRep] -> [2012/10/30 20:50:50 | 001,227,736 | ---- | M] (AVAST Software)
  126. < Run [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ->
  127. "avast" -> C:\Program Files\AVAST Software\Avast\avastUI.exe ["C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui] -> [2012/10/30 20:50:59 | 004,297,136 | ---- | M] (AVAST Software)
  128. "BCSSync" -> C:\Program Files\Microsoft Office\Office14\BCSSync.exe ["C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices] -> [2010/03/13 14:54:26 | 000,091,520 | ---- | M] (Microsoft Corporation)
  129. "DoroServer" -> C:\Arquivos de Programas\DoroPDFWriter\DoroServer.exe [C:\Program Files\DoroPDFWriter\DoroServer.exe] -> [2012/05/29 21:08:48 | 000,172,032 | ---- | M] (CompSoft)
  130. "InCD" -> C:\Program Files\Nero\Tools\InCD\InCD.exe [C:\Program Files\Nero\Tools\InCD\InCD.exe] -> [2009/10/16 10:44:06 | 001,060,136 | ---- | M] (Nero AG)
  131. "LanguageShortcut" -> C:\Program Files\CyberLink\PowerDVD\Language\Language.exe ["C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"] -> [2006/09/29 21:58:20 | 000,049,152 | ---- | M] ()
  132. "NBHGui" -> C:\Program Files\Nero\Tools\InCD\NBHGui.exe [C:\Program Files\Nero\Tools\InCD\NBHGui.exe] -> [2009/10/16 10:44:14 | 001,600,816 | ---- | M] (Nero AG)
  133. < Run [HKEY_USERS\S-1-5-21-2416928252-1431641652-4129932973-1000\] > -> HKEY_USERS\S-1-5-21-2416928252-1431641652-4129932973-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ->
  134. "uTorrent" -> C:\Program Files\uTorrent\uTorrent.exe ["C:\Program Files\uTorrent\uTorrent.exe" /MINIMIZED] -> [2012/11/17 21:50:43 | 000,968,592 | ---- | M] (BitTorrent, Inc.)
  135. < Software Policy Settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Internet Explorer ->
  136. < Software Policy Settings [HKEY_USERS\S-1-5-21-2416928252-1431641652-4129932973-1000] > -> HKEY_USERS\S-1-5-21-2416928252-1431641652-4129932973-1000\SOFTWARE\Policies\Microsoft\Internet Explorer ->
  137. < CurrentVersion Policy Settings - Explorer [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer ->
  138. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer
  139. \\"NoDrives" -> [0] -> File not found
  140. < CurrentVersion Policy Settings - System [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System ->
  141. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System
  142. \\"ConsentPromptBehaviorAdmin" -> [5] -> File not found
  143. \\"ConsentPromptBehaviorUser" -> [3] -> File not found
  144. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats
  145. < CurrentVersion Policy Settings [HKEY_USERS\.DEFAULT] > -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer ->
  146. < CurrentVersion Policy Settings [HKEY_USERS\.DEFAULT] > -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System ->
  147. < CurrentVersion Policy Settings [HKEY_USERS\S-1-5-18] > -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer ->
  148. < CurrentVersion Policy Settings [HKEY_USERS\S-1-5-18] > -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System ->
  149. < CurrentVersion Policy Settings [HKEY_USERS\S-1-5-21-2416928252-1431641652-4129932973-1000] > -> HKEY_USERS\S-1-5-21-2416928252-1431641652-4129932973-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer ->
  150. HKEY_USERS\S-1-5-21-2416928252-1431641652-4129932973-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer
  151. \\"NoDrives" -> [0] -> File not found
  152. < CurrentVersion Policy Settings [HKEY_USERS\S-1-5-21-2416928252-1431641652-4129932973-1000] > -> HKEY_USERS\S-1-5-21-2416928252-1431641652-4129932973-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System ->
  153. < Internet Explorer Menu Extensions [HKEY_USERS\S-1-5-21-2416928252-1431641652-4129932973-1000\] > -> HKEY_USERS\S-1-5-21-2416928252-1431641652-4129932973-1000\Software\Microsoft\Internet Explorer\MenuExt\ ->
  154. &Enviar para o OneNote -> [res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105] -> File not found
  155. E&xportar para o Microsoft Excel -> [res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000] -> File not found
  156. < Internet Explorer Extensions [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\ ->
  157. {2670000A-7350-4f3c-8081-5663EE0C6C49}:{48E73304-E1D6-4330-914C-F5F514E3486C} [HKLM] -> C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll [Button: Enviar para o OneNote] -> [2010/02/28 04:41:04 | 000,643,472 | ---- | M] (Microsoft Corporation)
  158. {2670000A-7350-4f3c-8081-5663EE0C6C49}:{48E73304-E1D6-4330-914C-F5F514E3486C} [HKLM] -> C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll [Menu: &Enviar para o OneNote] -> [2010/02/28 04:41:04 | 000,643,472 | ---- | M] (Microsoft Corporation)
  159. {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA}:{FFFDC614-B694-4AE6-AB38-5D6374584B52} [HKLM] -> C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll [Button: &Anotações Vinculadas do OneNote] -> [2010/02/28 04:41:04 | 000,496,528 | ---- | M] (Microsoft Corporation)
  160. {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA}:{FFFDC614-B694-4AE6-AB38-5D6374584B52} [HKLM] -> C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll [Menu: &Anotações Vinculadas do OneNote] -> [2010/02/28 04:41:04 | 000,496,528 | ---- | M] (Microsoft Corporation)
  161. {898EA8C8-E7FF-479B-8935-AEC46303B9E5}:{898EA8C8-E7FF-479B-8935-AEC46303B9E5} [HKLM] -> C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [Button: Skype Click to Call] -> [2012/10/02 12:13:44 | 004,119,744 | ---- | M] (Skype Technologies S.A.)
  162. < Internet Explorer Plugins [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\ ->
  163. < Default Prefix > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix
  164. "" -> http://
  165. < Trusted Sites Domains [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ ->
  166. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. ->
  167. < Trusted Sites Ranges [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ ->
  168. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. ->
  169. < Trusted Sites Domains [HKEY_USERS\.DEFAULT\] > -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ ->
  170. HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. ->
  171. < Trusted Sites Ranges [HKEY_USERS\.DEFAULT\] > -> HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ ->
  172. HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. ->
  173. < Trusted Sites Domains [HKEY_USERS\S-1-5-18\] > -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ ->
  174. HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. ->
  175. < Trusted Sites Ranges [HKEY_USERS\S-1-5-18\] > -> HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ ->
  176. HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. ->
  177. < Trusted Sites Domains [HKEY_USERS\S-1-5-19\] > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ ->
  178. HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. ->
  179. < Trusted Sites Ranges [HKEY_USERS\S-1-5-19\] > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ ->
  180. HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. ->
  181. < Trusted Sites Domains [HKEY_USERS\S-1-5-20\] > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ ->
  182. HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. ->
  183. < Trusted Sites Ranges [HKEY_USERS\S-1-5-20\] > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ ->
  184. HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. ->
  185. < Trusted Sites Domains [HKEY_USERS\S-1-5-21-2416928252-1431641652-4129932973-1000\] > -> HKEY_USERS\S-1-5-21-2416928252-1431641652-4129932973-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ ->
  186. HKEY_USERS\S-1-5-21-2416928252-1431641652-4129932973-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. ->
  187. < Trusted Sites Ranges [HKEY_USERS\S-1-5-21-2416928252-1431641652-4129932973-1000\] > -> HKEY_USERS\S-1-5-21-2416928252-1431641652-4129932973-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ ->
  188. HKEY_USERS\S-1-5-21-2416928252-1431641652-4129932973-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. ->
  189. < Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\ ->
  190. DhcpNameServer -> 8.8.8.8 8.8.4.4 192.168.1.1 ->
  191. < Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\ ->
  192. {5A89A228-CF0C-4DEB-8B38-D92263895080}\\DhcpNameServer -> 8.8.8.8 8.8.4.4 192.168.1.1 (NIC Fast Ethernet PCI-E Realtek Família RTL8102E/RTL8103E (NDIS 6.20)) ->
  193. < Winlogon settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon ->
  194. *Shell* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell ->
  195. Explorer.exe -> C:\Windows\explorer.exe -> [2009/07/13 23:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation)
  196. *MultiFile Done* -> ->
  197. *UserInit* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\UserInit ->
  198. C:\Windows\system32\userinit.exe -> C:\Windows\System32\userinit.exe -> [2009/07/13 23:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation)
  199. *MultiFile Done* -> ->
  200. *VMApplet* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet ->
  201. SystemPropertiesPerformance.exe -> C:\Windows\System32\SystemPropertiesPerformance.exe -> [2009/07/13 23:14:42 | 000,081,920 | ---- | M] (Microsoft Corporation)
  202. /pagefile -> -> File not found
  203. *MultiFile Done* -> ->
  204. < SSODL [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad ->
  205. "{E6FB5E20-DE35-11CF-9C87-00AA005127ED}" [HKLM] -> Reg Error: Key error. [WebCheck] -> File not found
  206. < ShellExecuteHooks [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks ->
  207. "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}" [HKLM] -> C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [Groove GFS Stub Execution Hook] -> [2010/03/25 10:25:22 | 004,222,864 | ---- | M] (Microsoft Corporation)
  208. < Domain Profile Authorized Applications List > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List ->
  209. < Standard Profile Authorized Applications List > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List ->
  210. < SafeBoot AlternateShell [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot ->
  211. < CDROM Autorun Setting [HKEY_LOCAL_MACHINE]> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom ->
  212. "AutoRun" -> 1 ->
  213. "DisplayName" -> Driver de CD-ROM ->
  214. "ImagePath" -> [system32\DRIVERS\cdrom.sys] -> File not found
  215. < Drives with AutoRun files > -> ->
  216. C:\autoexec.bat [REM Dummy file for NTVDM | ] -> C:\autoexec.bat [ NTFS ] -> [2009/06/10 19:42:20 | 000,000,024 | ---- | M] ()
  217. < MountPoints2 [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2 ->
  218. < Registry Shell Spawning - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command ->
  219. comfile [open] -> "%1" %* ->
  220. exefile [open] -> "%1" %* ->
  221. < File Associations - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>\ ->
  222. .com [@ = ComFile] -> "%1" %* ->
  223. .exe [@ = exefile] -> "%1" %* ->
  224.  
  225. [Registry - Additional Scans - Safe List]
  226. < ActiveX StubPath [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\ ->
  227. {2C7339CF-2B09-4501-B3F3-F3508C9228ED} [StubPath] -> %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll [(default): Themes Setup; IsInstalled: 1] ->
  228. {3af36230-a269-11d1-b5bf-0000f8051515} [HKLM] -> Reg Error: Key error. [(default): Offline Browsing Pack; IsInstalled: 1] -> File not found
  229. {44BBA840-CC51-11CF-AAFA-00AA00B6015C} [StubPath] -> "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE [(default): Microsoft Windows; IsInstalled: 1] ->
  230. {44BBA855-CC51-11CF-AAFA-00AA00B6015F} [HKLM] -> Reg Error: Key error. [(default): DirectDrawEx; IsInstalled: 1] -> File not found
  231. {45ea75a0-a269-11d1-b5bf-0000f8051515} [HKLM] -> Reg Error: Key error. [(default): Internet Explorer Help; IsInstalled: 1] -> File not found
  232. {49C187D7-91E1-459E-9759-2925384BD397} [HKLM] -> Reg Error: Key error. [(default): .NET Framework] -> File not found
  233. {4f645220-306d-11d2-995d-00c04f98bbc9} [HKLM] -> Reg Error: Key error. [(default): Microsoft Windows Script 5.6; IsInstalled: 1] -> File not found
  234. {5fd399c0-a70a-11d1-9948-00c04f98bbc9} [HKLM] -> Reg Error: Key error. [(default): Internet Explorer Setup Tools; IsInstalled: 1] -> File not found
  235. {6BF52A52-394A-11d3-B153-00C04F79FAA6} [StubPath] -> %SystemRoot%\system32\unregmp2.exe /FirstLogon /Shortcuts /RegBrowsers /ResetMUI [(default): Microsoft Windows Media Player; IsInstalled: 1] ->
  236. {6fab99d0-bab8-11d1-994a-00c04f98bbc9} [HKLM] -> Reg Error: Key error. [(default): MSN Site Access; IsInstalled: 1] -> File not found
  237. {7790769C-0471-11d2-AF11-00C04FA35D02} [HKLM] -> Reg Error: Key error. [(default): Address Book 7; IsInstalled: 1] -> File not found
  238. {7C028AF8-F614-47B3-82DA-BA94E41B1089} [HKLM] -> Reg Error: Key error. [(default): .NET Framework] -> File not found
  239. {89820200-ECBD-11cf-8B85-00AA005B4340} [StubPath] -> regsvr32.exe /s /n /i:U shell32.dll [(default): Windows Desktop Update; IsInstalled: 1] ->
  240. {89820200-ECBD-11cf-8B85-00AA005B4383} [StubPath] -> C:\Windows\System32\ie4uinit.exe -BaseSettings [(default): Web Platform Customizations; IsInstalled: 1] ->
  241. {89B4C1CD-B018-4511-B0A1-5476DBF70820} [StubPath] -> C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install [ComponentID: DOTNETFRAMEWORKS; IsInstalled: 1] ->
  242. {9381D8F2-0288-11D0-9501-00AA00B911A5} [HKLM] -> Reg Error: Key error. [(default): Dynamic HTML Data Binding; IsInstalled: 1] -> File not found
  243. {C9E9A340-D1F1-11D0-821E-444553540600} [HKLM] -> Reg Error: Key error. [(default): Internet Explorer Core Fonts; IsInstalled: 1] -> File not found
  244. {D27CDB6E-AE6D-11CF-96B8-444553540000} [HKLM] -> C:\Windows\System32\Macromed\Flash\Flash10d.ocx [(default): Adobe Flash Player; IsInstalled: 01 00 00 00 [binary data]] -> [2009/11/02 22:24:58 | 003,982,240 | R--- | M] (Adobe Systems, Inc.)
  245. {de5aed00-a4bf-11d1-9948-00c04f98bbc9} [HKLM] -> Reg Error: Key error. [(default): HTML Help; IsInstalled: 1] -> File not found
  246. {E92B03AB-B707-11d2-9CBD-0000F87A369E} [HKLM] -> Reg Error: Key error. [(default): Active Directory Service Interface; IsInstalled: 1] -> File not found
  247. >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} [StubPath] -> %SystemRoot%\system32\unregmp2.exe /ShowWMP [(default): Microsoft Windows Media Player; IsInstalled: 0] ->
  248. >{26923b43-4d38-484f-9b9e-de460746276c} [StubPath] -> C:\Windows\System32\ie4uinit.exe -UserIconConfig [(default): Internet Explorer; IsInstalled: 1] ->
  249. >{60B49E34-C7CC-11D0-8953-00A0C90347FF} [StubPath] -> "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP [(default): Browser Customizations; IsInstalled: 1] ->
  250. < ActiveX StubPath [HKEY_USERS\S-1-5-21-2416928252-1431641652-4129932973-1000\] > -> HKEY_USERS\S-1-5-21-2416928252-1431641652-4129932973-1000\SOFTWARE\Microsoft\Active Setup\Installed Components\ ->
  251. {2C7339CF-2B09-4501-B3F3-F3508C9228ED} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found
  252. {44BBA840-CC51-11CF-AAFA-00AA00B6015C} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found
  253. {89820200-ECBD-11cf-8B85-00AA005B4340} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found
  254. {89820200-ECBD-11cf-8B85-00AA005B4383} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found
  255. {89B4C1CD-B018-4511-B0A1-5476DBF70820} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found
  256. >{26923b43-4d38-484f-9b9e-de460746276c} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found
  257. >{60B49E34-C7CC-11D0-8953-00A0C90347FF} [HKLM] -> Reg Error: Key error. [(no name)] -> File not found
  258. < HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost > -> ->
  259. *netsvcs* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ->
  260. FastUserSwitchingCompatibility -> -> File not found
  261. Ias -> C:\Windows\System32\ias.dll -> [2009/07/13 23:15:26 | 000,019,456 | ---- | M] (Microsoft Corporation)
  262. Nla -> -> File not found
  263. Ntmssvc -> -> File not found
  264. NWCWorkstation -> -> File not found
  265. Nwsapagent -> -> File not found
  266. SRService -> -> File not found
  267. WmdmPmSp -> -> File not found
  268. LogonHours -> -> File not found
  269. PCAudit -> -> File not found
  270. helpsvc -> -> File not found
  271. uploadmgr -> -> File not found
  272. *MultiFile Done* -> ->
  273. < Security Center Settings > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center ->
  274. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center
  275. \\"cval" -> [1] -> File not found
  276. \\"FirewallDisableNotify" -> [0] -> File not found
  277. \\"AntiVirusDisableNotify" -> [0] -> File not found
  278. \\"UpdatesDisableNotify" -> [0] -> File not found
  279. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ -> ->
  280. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\ -> ->
  281. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc
  282. \Svc\\"VistaSp1" -> Reg Error: Unknown registry data type [Reg Error: Unknown registry data type] -> File not found
  283. \Svc\\"AntiVirusOverride" -> [0] -> File not found
  284. \Svc\\"AntiSpywareOverride" -> [0] -> File not found
  285. \Svc\\"FirewallOverride" -> [0] -> File not found
  286. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol\ -> ->
  287. < System Restore User Settings > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore ->
  288. "DisableSR" -> 0 ->
  289. < Windows Firewall Group Policy Settings > -> HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall ->
  290. HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\ -> ->
  291. HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile\ -> ->
  292. < Windows DomainProfile Firewall Policy Settings > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile ->
  293. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile
  294. \\"DisableNotifications" -> [0] -> File not found
  295. \\"EnableFirewall" -> [1] -> File not found
  296. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\ -> ->
  297. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\Logging\ -> ->
  298. < Windows StandardProfile Firewall Policy Settings > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile ->
  299. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile
  300. \\"DisableNotifications" -> [0] -> File not found
  301. \\"EnableFirewall" -> [1] -> File not found
  302. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\ -> ->
  303. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\ -> ->
  304. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\Logging\ -> ->
  305. < Windows StandardProfile GloballyOpenPorts Settings > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List ->
  306. < Default Protocols [HKEY_LOCAL_MACHINE\] - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults ->
  307. ldap -> 4 = Restricted sites (Not a Default Protocol) ->
  308. news -> 4 = Restricted sites (Not a Default Protocol) ->
  309. nntp -> 4 = Restricted sites (Not a Default Protocol) ->
  310. oecmd -> 4 = Restricted sites (Not a Default Protocol) ->
  311. snews -> 4 = Restricted sites (Not a Default Protocol) ->
  312. < Default Protocols [HKEY_USERS\S-1-5-19\] - Select to Repair > -> HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults ->
  313. @ivt -> @ivt protocol not assigned ->
  314. file -> file protocol not assigned ->
  315. ftp -> ftp protocol not assigned ->
  316. http -> http protocol not assigned ->
  317. https -> https protocol not assigned ->
  318. shell -> shell protocol not assigned ->
  319. < Default Protocols [HKEY_USERS\S-1-5-20\] - Select to Repair > -> HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults ->
  320. @ivt -> @ivt protocol not assigned ->
  321. file -> file protocol not assigned ->
  322. ftp -> ftp protocol not assigned ->
  323. http -> http protocol not assigned ->
  324. https -> https protocol not assigned ->
  325. shell -> shell protocol not assigned ->
  326. < Uninstall List [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ ->
  327. {0B0F231F-CE6A-483D-AA23-77B364F75917} -> Windows Live Installer
  328. {14FAA5DD-A6B2-4A7B-8960-4A30DC8D9D35}_is1 -> PegaJogo 3.0
  329. {19A4A990-5343-4FF7-B3B5-6F046C091EDF} -> Windows Live Remote Client
  330. {1F1C2DFC-2D24-3E06-BCB8-725134ADF989} -> Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
  331. {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4} -> Junk Mail filter update
  332. {2003AD47-45AA-41C5-B4E3-817209FA96A6} -> Software básico do dispositivo HP Deskjet 1050 J410 series
  333. {200FEC62-3C34-4D60-9CE8-EC372E01C08F} -> Windows Live SOXE Definitions
  334. {227E8782-B2F4-4E97-B0EE-49DE9CC1C0C0} -> Windows Live Remote Service
  335. {2922DB34-682F-4A9C-BE18-6E579DBD1420} -> Windows Live Family Safety
  336. {2D6E3D97-1FDF-4993-AC75-72F59EC445C5} -> Windows Live Family Safety
  337. {3336F667-9049-4D46-98B6-4C743EEBC5B1} -> Windows Live Photo Gallery
  338. {3889988F-762B-4B85-AB17-71C9CC3AE445} -> Messenger Companion
  339. {39B3184E-0BFB-40FA-ADDC-E7E2D535CDA9} -> Controle ActiveX do Windows Live Mesh para Conexões Remotas
  340. {41B72CAF-036B-4E0A-8D22-F5DF7C970434} -> Windows Live Remote Client Resources
  341. {43B43577-2514-4CE0-B14A-7E85C17C0453} -> Windows Live Essentials
  342. {449CE12D-E2C7-4B97-B19E-55D163EA9435} -> Bing Bar
  343. {4664ED39-C80A-48F7-93CD-EBDCAFAB6CC5} -> Windows Live Writer Resources
  344. {59482AA7-3E30-4B5E-A52F-4101DACC2707} -> Nero InCD
  345. {5C90D8CF-F12A-41C6-9007-3B651A1F0D78} -> HP Deskjet 1050 J410 series Ajuda
  346. {644063FA-ABA3-42AC-A8AC-3EDC0706018B} -> Windows Live Mesh
  347. {6811CAA0-BF12-11D4-9EA1-0050BAE317E1} -> PowerDVD
  348. {682B3E4F-696A-42DE-A41C-4C07EA1678B4} -> Windows Live SOXE
  349. {78A96B4C-A643-4D0F-98C2-A8E16A6669F9} -> Windows Live Messenger Companion Core
  350. {837b34e3-7c30-493c-8f6a-2b0f04e2912c} -> Microsoft Visual C++ 2005 Redistributable
  351. {83C292B7-38A5-440B-A731-07070E81A64F} -> Windows Live PIMT Platform
  352. {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} -> Microsoft Silverlight
  353. {8C6D6116-B724-4810-8F2D-D047E6B7D68E} -> Mesh Runtime
  354. {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} -> MSVCRT
  355. {90140000-0011-0000-0000-0000000FF1CE} -> Microsoft Office Professional Plus 2010
  356. {90140000-0015-0416-0000-0000000FF1CE} -> Microsoft Office Access MUI (Portuguese (Brazil)) 2010
  357. {90140000-0016-0416-0000-0000000FF1CE} -> Microsoft Office Excel MUI (Portuguese (Brazil)) 2010
  358. {90140000-0018-0416-0000-0000000FF1CE} -> Microsoft Office PowerPoint MUI (Portuguese (Brazil)) 2010
  359. {90140000-0019-0416-0000-0000000FF1CE} -> Microsoft Office Publisher MUI (Portuguese (Brazil)) 2010
  360. {90140000-001A-0416-0000-0000000FF1CE} -> Microsoft Office Outlook MUI (Portuguese (Brazil)) 2010
  361. {90140000-001B-0416-0000-0000000FF1CE} -> Microsoft Office Word MUI (Portuguese (Brazil)) 2010
  362. {90140000-001F-0409-0000-0000000FF1CE} -> Microsoft Office Proof (English) 2010
  363. {90140000-001F-0416-0000-0000000FF1CE} -> Microsoft Office Proof (Portuguese (Brazil)) 2010
  364. {90140000-001F-0C0A-0000-0000000FF1CE} -> Microsoft Office Proof (Spanish) 2010
  365. {90140000-002C-0416-0000-0000000FF1CE} -> Microsoft Office Proofing (Portuguese (Brazil)) 2010
  366. {90140000-0044-0416-0000-0000000FF1CE} -> Microsoft Office InfoPath MUI (Portuguese (Brazil)) 2010
  367. {90140000-006E-0416-0000-0000000FF1CE} -> Microsoft Office Shared MUI (Portuguese (Brazil)) 2010
  368. {90140000-00A1-0416-0000-0000000FF1CE} -> Microsoft Office OneNote MUI (Portuguese (Brazil)) 2010
  369. {90140000-00BA-0416-0000-0000000FF1CE} -> Microsoft Office Groove MUI (Portuguese (Brazil)) 2010
  370. {92EA4134-10D1-418A-91E1-5A0453131A38} -> Windows Live Movie Maker
  371. {95120000-00B9-0409-0000-0000000FF1CE} -> Microsoft Application Error Reporting
  372. {95140000-007A-0416-0000-0000000FF1CE} -> Microsoft Office Outlook Connector
  373. {9D56775A-93F3-44A3-8092-840E3826DE30} -> Windows Live Mail
  374. {9DA3F03B-2CEE-4344-838E-117861E61FAF} -> Windows Live Mail
  375. {9FB5E72F-5216-4778-8777-040EF0513491} -> Estudo de melhoria do produto HP Deskjet 1050 J410 series
  376. {A199DB88-E22D-4CE7-90AC-B8BE396D7BF4} -> Windows Live Movie Maker
  377. {A726AE06-AAA3-43D1-87E3-70F510314F04} -> Windows Live Writer
  378. {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} -> Google Update Helper
  379. {A9BDCA6B-3653-467B-AC83-94367DA3BFE3} -> Windows Live Photo Common
  380. {AAAFC670-569B-4A2F-82B4-42945E0DE3EF} -> Windows Live Writer
  381. {AC76BA86-7AD7-1046-7B44-AA1000000001} -> Adobe Reader X (10.1.4) - Português
  382. {AF844339-2F8A-4593-81B3-9F4C54038C4E} -> Windows Live MIME IFilter
  383. {B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE} -> HP Update
  384. {B33B61FE-701F-425F-98AB-2B85725CBF68} -> Windows Live Photo Common
  385. {B3BE54A4-8DFE-4593-8E66-56AB7133B812} -> Windows Live Writer
  386. {B6CF2967-C81E-40C0-9815-C05774FEF120} -> Skype Click to Call
  387. {C6150D8A-86ED-41D3-87BB-F3BB51B0B77F} -> Windows Live ID Sign-in Assistant
  388. {C9E1343D-E21E-4508-A1BE-04A089EC137D} -> Windows Live Messenger
  389. {CE95A79E-E4FC-4FFF-8A75-29F04B942FF2} -> Windows Live UX Platform
  390. {D45240D3-B6B3-4FF9-B243-54ECE3E10066} -> Windows Live Communications Platform
  391. {DECDCB7C-58CC-4865-91AF-627F9798FE48} -> Windows Live Mesh
  392. {DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1 -> Auslogics Disk Defrag
  393. {DF71ABBB-B834-41C0-BB58-80B0545D754C} -> Windows Live UX Platform Language Pack
  394. {E09C4DB7-630C-4F06-A631-8EA7239923AF} -> D3DX10
  395. {E5B21F11-6933-4E0B-A25C-7963E3C07D11} -> Windows Live Messenger
  396. {E6617B44-D556-49AC-B2A3-01451E115043} -> Windows Live Remote Service Resources
  397. {EA17F4FC-FDBF-4CF8-A529-2D983132D053} -> Skype™ 6.0
  398. {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8} -> Microsoft SQL Server 2005 Compact Edition [ENU]
  399. {F0C3E5D1-1ADE-321E-8167-68EF0DE699A5} -> Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
  400. {F7A46527-DF1F-4B0F-9637-98547E189442} -> Windows Live Galeria de Fotos
  401. Adobe Flash Player ActiveX -> Adobe Flash Player 10 ActiveX
  402. Adobe Flash Player Plugin -> Adobe Flash Player 11 Plugin
  403. aTube Catcher -> aTube Catcher
  404. avast -> avast! Free Antivirus
  405. CCleaner -> CCleaner
  406. Doro_is1 -> Doro 1.77
  407. DVD Shrink_is1 -> DVD Shrink 3.2
  408. Free Video to JPG Converter_is1 -> Free Video to JPG Converter version 5.0.18.1005
  409. Free WMA to MP3 Converter_is1 -> Free WMA to MP3 Converter 1.16
  410. Google Chrome -> Google Chrome
  411. HP Photo Creations -> HP Photo Creations
  412. Mozilla Firefox 17.0.1 (x86 pt-BR) -> Mozilla Firefox 17.0.1 (x86 pt-BR)
  413. MozillaMaintenanceService -> Mozilla Maintenance Service
  414. Office14.PROPLUS -> Microsoft Office Professional Plus 2010
  415. PhotoScape -> PhotoScape
  416. Revo Uninstaller -> Revo Uninstaller 1.94
  417. TeamViewer 7 -> TeamViewer 7
  418. uTorrent -> µTorrent
  419. VLC media player -> VLC media player 1.1.11
  420. WinLiveSuite -> Windows Live Essentials
  421. WinRAR archiver -> WinRAR 4.11 (32-bit)
  422. < Uninstall List [HKEY_USERS\S-1-5-21-2416928252-1431641652-4129932973-1000\] > -> HKEY_USERS\S-1-5-21-2416928252-1431641652-4129932973-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ ->
  423. Songr -> Songr
  424.  
  425. [Files/Folders - Created Within 30 Days]
  426. Macromedia -> C:\Users\Estéfany\AppData\Local\Macromedia -> [2012/12/28 13:48:07 | 000,000,000 | ---D | C]
  427. FlashPlayerApp.exe -> C:\Windows\System32\FlashPlayerApp.exe -> [2012/12/28 13:40:58 | 000,697,272 | ---- | C] (Adobe Systems Incorporated)
  428. FlashPlayerCPLApp.cpl -> C:\Windows\System32\FlashPlayerCPLApp.cpl -> [2012/12/28 13:40:58 | 000,073,656 | ---- | C] (Adobe Systems Incorporated)
  429. Mozilla -> C:\Users\Estéfany\AppData\Roaming\Mozilla -> [2012/12/28 13:10:27 | 000,000,000 | ---D | C]
  430. Mozilla -> C:\Users\Estéfany\AppData\Local\Mozilla -> [2012/12/28 13:10:27 | 000,000,000 | ---D | C]
  431. Mozilla Maintenance Service -> C:\Program Files\Mozilla Maintenance Service -> [2012/12/28 13:10:22 | 000,000,000 | ---D | C]
  432. Mozilla -> C:\ProgramData\Mozilla -> [2012/12/28 13:10:22 | 000,000,000 | ---D | C]
  433. Mozilla Firefox -> C:\Program Files\Mozilla Firefox -> [2012/12/28 13:10:19 | 000,000,000 | ---D | C]
  434. temp -> C:\Windows\temp -> [2012/12/27 17:48:49 | 000,000,000 | ---D | C]
  435. $RECYCLE.BIN -> C:\$RECYCLE.BIN -> [2012/12/27 17:48:34 | 000,000,000 | -HSD | C]
  436. SWREG.exe -> C:\Windows\SWREG.exe -> [2012/12/27 17:41:01 | 000,518,144 | ---- | C] (SteelWerX)
  437. SWSC.exe -> C:\Windows\SWSC.exe -> [2012/12/27 17:41:01 | 000,406,528 | ---- | C] (SteelWerX)
  438. NIRCMD.exe -> C:\Windows\NIRCMD.exe -> [2012/12/27 17:41:01 | 000,060,416 | ---- | C] (NirSoft)
  439. Qoobox -> C:\Qoobox -> [2012/12/27 17:39:58 | 000,000,000 | ---D | C]
  440. erdnt -> C:\Windows\erdnt -> [2012/12/27 17:39:38 | 000,000,000 | ---D | C]
  441. BDF.exe -> C:\Users\Estéfany\Desktop\BDF.exe -> [2012/12/27 17:14:51 | 000,265,216 | ---- | C] (Bytessence Software)
  442. {7C568A48-7589-4F78-A891-F36E25D9FC7C} -> C:\Users\Estéfany\AppData\Local\{7C568A48-7589-4F78-A891-F36E25D9FC7C} -> [2012/12/27 13:03:04 | 000,000,000 | ---D | C]
  443. {4A875502-9250-404B-9CBF-51FE35A22AAF} -> C:\Users\Estéfany\AppData\Local\{4A875502-9250-404B-9CBF-51FE35A22AAF} -> [2012/12/26 12:55:43 | 000,000,000 | ---D | C]
  444. {5123C1FD-CFAC-4552-B752-50180858E605} -> C:\Users\Estéfany\AppData\Local\{5123C1FD-CFAC-4552-B752-50180858E605} -> [2012/12/25 23:29:22 | 000,000,000 | ---D | C]
  445. {7096DD4B-07FD-48CB-890F-0DC135426178} -> C:\Users\Estéfany\AppData\Local\{7096DD4B-07FD-48CB-890F-0DC135426178} -> [2012/12/24 10:05:54 | 000,000,000 | ---D | C]
  446. TeamViewer -> C:\Users\Estéfany\AppData\Roaming\TeamViewer -> [2012/12/23 21:06:24 | 000,000,000 | ---D | C]
  447. {6CF30AFD-D446-437E-8C04-515664B94206} -> C:\Users\Estéfany\AppData\Local\{6CF30AFD-D446-437E-8C04-515664B94206} -> [2012/12/23 19:57:28 | 000,000,000 | ---D | C]
  448. {D1359E49-6A85-4FF7-BD03-65CEED448710} -> C:\Users\Estéfany\AppData\Local\{D1359E49-6A85-4FF7-BD03-65CEED448710} -> [2012/12/22 23:08:54 | 000,000,000 | ---D | C]
  449. Skype -> C:\Users\Estéfany\AppData\Roaming\Skype -> [2012/12/22 19:23:08 | 000,000,000 | ---D | C]
  450. Skype -> C:\Program Files\Skype -> [2012/12/22 19:23:02 | 000,000,000 | R--D | C]
  451. Skype -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype -> [2012/12/22 19:23:02 | 000,000,000 | ---D | C]
  452. Skype -> C:\Program Files\Common Files\Skype -> [2012/12/22 19:23:02 | 000,000,000 | ---D | C]
  453. Skype -> C:\ProgramData\Skype -> [2012/12/22 19:22:56 | 000,000,000 | ---D | C]
  454. trend micro -> C:\Program Files\trend micro -> [2012/12/22 14:42:16 | 000,000,000 | ---D | C]
  455. rsit -> C:\rsit -> [2012/12/22 14:42:16 | 000,000,000 | ---D | C]
  456. _OTL -> C:\_OTL -> [2012/12/22 11:07:16 | 000,000,000 | ---D | C]
  457. {19982444-2510-4E0D-B874-639ED1BA7A79} -> C:\Users\Estéfany\AppData\Local\{19982444-2510-4E0D-B874-639ED1BA7A79} -> [2012/12/22 11:00:24 | 000,000,000 | ---D | C]
  458. {3F10D3C8-46A8-4927-8BCF-12A773016700} -> C:\Users\Estéfany\AppData\Local\{3F10D3C8-46A8-4927-8BCF-12A773016700} -> [2012/12/21 18:23:47 | 000,000,000 | ---D | C]
  459. {70EFA857-9CF9-428B-B287-3BDD63768823} -> C:\Users\Estéfany\AppData\Local\{70EFA857-9CF9-428B-B287-3BDD63768823} -> [2012/12/20 11:22:04 | 000,000,000 | ---D | C]
  460. {3BBA0269-AD6F-4D3C-99EB-4D5D58740287} -> C:\Users\Estéfany\AppData\Local\{3BBA0269-AD6F-4D3C-99EB-4D5D58740287} -> [2012/12/19 09:36:34 | 000,000,000 | ---D | C]
  461. {18E66E54-2221-456C-875D-0B5F80B5941F} -> C:\Users\Estéfany\AppData\Local\{18E66E54-2221-456C-875D-0B5F80B5941F} -> [2012/12/18 16:36:18 | 000,000,000 | ---D | C]
  462. {99762D87-F1E8-4E74-88CD-209BB5063554} -> C:\Users\Estéfany\AppData\Local\{99762D87-F1E8-4E74-88CD-209BB5063554} -> [2012/12/17 21:39:32 | 000,000,000 | ---D | C]
  463. Adobe -> C:\Program Files\Adobe -> [2012/12/17 09:24:44 | 000,000,000 | ---D | C]
  464. {BAEDE0E7-6E5C-4358-A548-B0CB100DFE74} -> C:\Users\Estéfany\AppData\Local\{BAEDE0E7-6E5C-4358-A548-B0CB100DFE74} -> [2012/12/17 07:38:33 | 000,000,000 | ---D | C]
  465. {A6AC459C-7B90-4773-9AEC-1F4AE30A1888} -> C:\Users\Estéfany\AppData\Local\{A6AC459C-7B90-4773-9AEC-1F4AE30A1888} -> [2012/12/16 09:09:54 | 000,000,000 | ---D | C]
  466. {E2BE3C03-CFBF-412B-91F4-6BD75FDA57CF} -> C:\Users\Estéfany\AppData\Local\{E2BE3C03-CFBF-412B-91F4-6BD75FDA57CF} -> [2012/12/15 19:35:51 | 000,000,000 | ---D | C]
  467. {590F5523-D314-45BA-B049-1C489E87F4D8} -> C:\Users\Estéfany\AppData\Local\{590F5523-D314-45BA-B049-1C489E87F4D8} -> [2012/12/15 19:27:27 | 000,000,000 | ---D | C]
  468. Microsoft Games -> C:\Users\Estéfany\AppData\Local\Microsoft Games -> [2012/12/14 22:39:43 | 000,000,000 | ---D | C]
  469. {3D538A84-1F4E-4AE6-871E-04642BCEF1E5} -> C:\Users\Estéfany\AppData\Local\{3D538A84-1F4E-4AE6-871E-04642BCEF1E5} -> [2012/12/14 22:34:10 | 000,000,000 | ---D | C]
  470. {491C1E99-8BEE-4A2E-B8CF-07B48673FCCD} -> C:\Users\Estéfany\AppData\Local\{491C1E99-8BEE-4A2E-B8CF-07B48673FCCD} -> [2012/12/14 20:14:20 | 000,000,000 | ---D | C]
  471. {6D295609-9E6C-4C3E-8FEA-BB79776CE737} -> C:\Users\Estéfany\AppData\Local\{6D295609-9E6C-4C3E-8FEA-BB79776CE737} -> [2012/12/14 20:10:17 | 000,000,000 | ---D | C]
  472. {98F4ECC3-4F8C-43F5-9DB5-B8DBBE67F639} -> C:\Users\Estéfany\AppData\Local\{98F4ECC3-4F8C-43F5-9DB5-B8DBBE67F639} -> [2012/12/13 21:34:08 | 000,000,000 | ---D | C]
  473. {6C1CD312-32C6-45CF-9E41-745DEECA7338} -> C:\Users\Estéfany\AppData\Local\{6C1CD312-32C6-45CF-9E41-745DEECA7338} -> [2012/12/11 20:11:52 | 000,000,000 | ---D | C]
  474. {9A3E8788-59A1-40A5-B10F-5B3F0C5464E0} -> C:\Users\Estéfany\AppData\Local\{9A3E8788-59A1-40A5-B10F-5B3F0C5464E0} -> [2012/12/10 21:14:39 | 000,000,000 | ---D | C]
  475. {86B3B302-A06E-43B9-9D65-7809D7C5F596} -> C:\Users\Estéfany\AppData\Local\{86B3B302-A06E-43B9-9D65-7809D7C5F596} -> [2012/12/09 23:34:40 | 000,000,000 | ---D | C]
  476. {A3B6BE5A-B47C-4A25-B094-AD8706E6B12B} -> C:\Users\Estéfany\AppData\Local\{A3B6BE5A-B47C-4A25-B094-AD8706E6B12B} -> [2012/12/07 21:42:07 | 000,000,000 | ---D | C]
  477. {AF17E1D3-1D29-4C46-B8D5-D2A994DDE7C3} -> C:\Users\Estéfany\AppData\Local\{AF17E1D3-1D29-4C46-B8D5-D2A994DDE7C3} -> [2012/12/06 21:19:03 | 000,000,000 | ---D | C]
  478. {AEE87083-6BAE-4E60-A29D-15856B51A98D} -> C:\Users\Estéfany\AppData\Local\{AEE87083-6BAE-4E60-A29D-15856B51A98D} -> [2012/12/06 21:14:17 | 000,000,000 | ---D | C]
  479. {4C2F064E-A2E5-486C-80EB-F170BC5D4671} -> C:\Users\Estéfany\AppData\Local\{4C2F064E-A2E5-486C-80EB-F170BC5D4671} -> [2012/12/05 20:14:24 | 000,000,000 | ---D | C]
  480. {B92A6C6D-4841-4A03-A128-C975F410DEB0} -> C:\Users\Estéfany\AppData\Local\{B92A6C6D-4841-4A03-A128-C975F410DEB0} -> [2012/12/04 21:04:18 | 000,000,000 | ---D | C]
  481. {476EB8BC-F3BE-45B0-931D-E36085591FAC} -> C:\Users\Estéfany\AppData\Local\{476EB8BC-F3BE-45B0-931D-E36085591FAC} -> [2012/12/03 22:55:55 | 000,000,000 | ---D | C]
  482. ana márcia -> C:\Users\Estéfany\Documents\ana márcia -> [2012/12/01 12:06:54 | 000,000,000 | ---D | C]
  483. {E33D514A-84F2-4BAA-B471-9E7EC625C177} -> C:\Users\Estéfany\AppData\Local\{E33D514A-84F2-4BAA-B471-9E7EC625C177} -> [2012/12/01 11:22:30 | 000,000,000 | ---D | C]
  484. {08783EB9-0CC8-4AAE-BEB6-E51F83E72031} -> C:\Users\Estéfany\AppData\Local\{08783EB9-0CC8-4AAE-BEB6-E51F83E72031} -> [2012/11/30 23:21:34 | 000,000,000 | ---D | C]
  485. {EC764DFF-CDD0-4237-8B4E-5E955292CFD0} -> C:\Users\Estéfany\AppData\Local\{EC764DFF-CDD0-4237-8B4E-5E955292CFD0} -> [2012/11/29 21:02:13 | 000,000,000 | ---D | C]
  486. {6A1E48C8-44BE-4586-9E84-C89FCB546250} -> C:\Users\Estéfany\AppData\Local\{6A1E48C8-44BE-4586-9E84-C89FCB546250} -> [2012/11/29 20:12:00 | 000,000,000 | ---D | C]
  487.  
  488. [Files/Folders - Modified Within 30 Days]
  489. GoogleUpdateTaskMachineUA.job -> C:\Windows\tasks\GoogleUpdateTaskMachineUA.job -> [2012/12/29 13:10:00 | 000,001,060 | ---- | M] ()
  490. Adobe Flash Player Updater.job -> C:\Windows\tasks\Adobe Flash Player Updater.job -> [2012/12/29 13:09:00 | 000,000,902 | ---- | M] ()
  491. prfh0416.dat -> C:\Windows\System32\prfh0416.dat -> [2012/12/29 12:29:46 | 000,654,272 | ---- | M] ()
  492. perfh009.dat -> C:\Windows\System32\perfh009.dat -> [2012/12/29 12:29:46 | 000,606,992 | ---- | M] ()
  493. prfc0416.dat -> C:\Windows\System32\prfc0416.dat -> [2012/12/29 12:29:46 | 000,124,724 | ---- | M] ()
  494. perfc009.dat -> C:\Windows\System32\perfc009.dat -> [2012/12/29 12:29:46 | 000,103,370 | ---- | M] ()
  495. 7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 -> C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 -> [2012/12/29 11:48:01 | 000,014,016 | -H-- | M] ()
  496. 7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 -> C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 -> [2012/12/29 11:48:01 | 000,014,016 | -H-- | M] ()
  497. GoogleUpdateTaskMachineCore.job -> C:\Windows\tasks\GoogleUpdateTaskMachineCore.job -> [2012/12/29 11:41:02 | 000,001,056 | ---- | M] ()
  498. bootstat.dat -> C:\Windows\bootstat.dat -> [2012/12/29 11:40:40 | 000,067,584 | --S- | M] ()
  499. hiberfil.sys -> C:\hiberfil.sys -> [2012/12/29 11:40:37 | 1558,110,208 | -HS- | M] ()
  500. FlashPlayerApp.exe -> C:\Windows\System32\FlashPlayerApp.exe -> [2012/12/28 13:47:58 | 000,697,272 | ---- | M] (Adobe Systems Incorporated)
  501. FlashPlayerCPLApp.cpl -> C:\Windows\System32\FlashPlayerCPLApp.cpl -> [2012/12/28 13:47:58 | 000,073,656 | ---- | M] (Adobe Systems Incorporated)
  502. Mozilla Firefox.lnk -> C:\Users\Public\Desktop\Mozilla Firefox.lnk -> [2012/12/28 13:10:23 | 000,001,109 | ---- | M] ()
  503. MEMORY.DMP -> C:\Windows\MEMORY.DMP -> [2012/12/28 12:44:05 | 190,125,823 | ---- | M] ()
  504. 602931_510709762295308_1523169002_n.jpg -> C:\Users\Estéfany\Desktop\602931_510709762295308_1523169002_n.jpg -> [2012/12/27 13:49:18 | 000,038,789 | ---- | M] ()
  505. show ana carolina cabo frio 2011 007.jpg -> C:\Users\Estéfany\Desktop\show ana carolina cabo frio 2011 007.jpg -> [2012/12/26 16:27:06 | 000,109,636 | ---- | M] ()
  506. show ana carolina cabo frio 2011 004.jpg -> C:\Users\Estéfany\Desktop\show ana carolina cabo frio 2011 004.jpg -> [2012/12/26 16:24:47 | 000,235,668 | ---- | M] ()
  507. Skype.lnk -> C:\Users\Public\Desktop\Skype.lnk -> [2012/12/22 19:23:02 | 000,002,505 | ---- | M] ()
  508. Adobe Reader X.lnk -> C:\Users\Public\Desktop\Adobe Reader X.lnk -> [2012/12/17 09:24:49 | 000,001,989 | ---- | M] ()
  509. config.nt -> C:\Windows\System32\config.nt -> [2012/12/06 21:18:48 | 000,002,577 | ---- | M] ()
  510. avast! Free Antivirus.lnk -> C:\Users\Public\Desktop\avast! Free Antivirus.lnk -> [2012/12/06 21:18:48 | 000,002,039 | ---- | M] ()
  511.  
  512. [Files - No Company Name]
  513. Adobe Flash Player Updater.job -> C:\Windows\tasks\Adobe Flash Player Updater.job -> [2012/12/28 13:40:59 | 000,000,902 | ---- | C] ()
  514. Mozilla Firefox.lnk -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> [2012/12/28 13:10:23 | 000,001,121 | ---- | C] ()
  515. Mozilla Firefox.lnk -> C:\Users\Public\Desktop\Mozilla Firefox.lnk -> [2012/12/28 13:10:23 | 000,001,109 | ---- | C] ()
  516. PEV.exe -> C:\Windows\PEV.exe -> [2012/12/27 17:41:01 | 000,256,000 | ---- | C] ()
  517. MBR.exe -> C:\Windows\MBR.exe -> [2012/12/27 17:41:01 | 000,208,896 | ---- | C] ()
  518. sed.exe -> C:\Windows\sed.exe -> [2012/12/27 17:41:01 | 000,098,816 | ---- | C] ()
  519. grep.exe -> C:\Windows\grep.exe -> [2012/12/27 17:41:01 | 000,080,412 | ---- | C] ()
  520. zip.exe -> C:\Windows\zip.exe -> [2012/12/27 17:41:01 | 000,068,096 | ---- | C] ()
  521. 602931_510709762295308_1523169002_n.jpg -> C:\Users\Estéfany\Desktop\602931_510709762295308_1523169002_n.jpg -> [2012/12/27 13:49:17 | 000,038,789 | ---- | C] ()
  522. show ana carolina cabo frio 2011 007.jpg -> C:\Users\Estéfany\Desktop\show ana carolina cabo frio 2011 007.jpg -> [2012/12/26 18:15:00 | 000,109,636 | ---- | C] ()
  523. show ana carolina cabo frio 2011 004.jpg -> C:\Users\Estéfany\Desktop\show ana carolina cabo frio 2011 004.jpg -> [2012/12/26 18:14:55 | 000,235,668 | ---- | C] ()
  524. Skype.lnk -> C:\Users\Public\Desktop\Skype.lnk -> [2012/12/22 19:23:02 | 000,002,505 | ---- | C] ()
  525. Adobe Reader X.lnk -> C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk -> [2012/12/17 09:24:49 | 000,002,441 | ---- | C] ()
  526. Adobe Reader X.lnk -> C:\Users\Public\Desktop\Adobe Reader X.lnk -> [2012/12/17 09:24:49 | 000,001,989 | ---- | C] ()
  527. .NANotifyHere -> C:\Users\Estéfany\AppData\Roaming\.NANotifyHere -> [2012/11/26 19:28:20 | 000,000,000 | ---- | C] ()
  528. ODBCINST.INI -> C:\Windows\ODBCINST.INI -> [2012/11/17 21:51:48 | 000,000,208 | ---- | C] ()
  529. dt.dat -> C:\Users\Estéfany\AppData\Local\dt.dat -> [2012/11/17 21:46:40 | 000,027,520 | ---- | C] ()
  530.  
  531. [File - Lop Check]
  532. AnvSoft -> C:\Users\Estéfany\AppData\Roaming\AnvSoft -> [2012/11/17 22:32:03 | 000,000,000 | ---D | M]
  533. Auslogics -> C:\Users\Estéfany\AppData\Roaming\Auslogics -> [2012/11/17 22:29:08 | 000,000,000 | ---D | M]
  534. DMCache -> C:\Users\Estéfany\AppData\Roaming\DMCache -> [2012/12/17 10:31:46 | 000,000,000 | ---D | M]
  535. DVDVideoSoft -> C:\Users\Estéfany\AppData\Roaming\DVDVideoSoft -> [2012/11/20 20:36:13 | 000,000,000 | ---D | M]
  536. PhotoScape -> C:\Users\Estéfany\AppData\Roaming\PhotoScape -> [2012/11/17 22:15:52 | 000,000,000 | ---D | M]
  537. TeamViewer -> C:\Users\Estéfany\AppData\Roaming\TeamViewer -> [2012/12/23 21:20:21 | 000,000,000 | ---D | M]
  538. uTorrent -> C:\Users\Estéfany\AppData\Roaming\uTorrent -> [2012/12/29 13:51:09 | 000,000,000 | ---D | M]
  539. SCHEDLGU.TXT -> C:\Windows\Tasks\SCHEDLGU.TXT -> [2009/07/14 02:53:46 | 000,031,196 | ---- | M] ()
  540.  
  541. [File - Purity Scan]
  542.  
  543. < End of report >
  544. [/code]
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!