I did scan with Avast, Spybot and Malwarebytes Anti-Malware and found no virus. On my computer I only have avast installed, i only have installed that anti virus to see if i have any virus.
OTL logfile created on: 13-12-2011 23:38:16 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Ricardo\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000816 | Country: Portugal | Language: PTG | Date Format: dd-MM-yyyy
4,00 Gb Total Physical Memory | 2,67 Gb Available Physical Memory | 66,69% Memory free
8,00 Gb Paging File | 6,30 Gb Available in Paging File | 78,82% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 97,66 Gb Total Space | 49,29 Gb Free Space | 50,48% Space Free | Partition Type: NTFS
Drive D: | 1862,89 Gb Total Space | 1226,44 Gb Free Space | 65,84% Space Free | Partition Type: NTFS
Drive E: | 200,43 Gb Total Space | 28,82 Gb Free Space | 14,38% Space Free | Partition Type: NTFS
Drive F: | 931,51 Gb Total Space | 147,64 Gb Free Space | 15,85% Space Free | Partition Type: NTFS
Computer Name: RICARDO-PC | User Name: Ricardo | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2011-12-13 23:37:41 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Ricardo\Desktop\OTL.exe
PRC - [2011-11-28 18:01:23 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Programas\AVAST Software\Avast\AvastSvc.exe
PRC - [2011-11-15 16:29:42 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2011-11-07 08:26:14 | 000,025,472 | ---- | M] (Uniblue Systems Limited) -- C:\Program Files (x86)\Uniblue\RegistryBooster\rbmonitor.exe
PRC - [2011-10-15 08:53:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2011-10-15 00:54:40 | 000,381,248 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2011-10-14 13:49:38 | 000,745,832 | ---- | M] (Tunngle.net GmbH) -- D:\Program Files (x86)\Tunngle\TnglCtrl.exe
PRC - [2011-06-06 11:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2009-08-19 11:56:38 | 000,090,112 | R--- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
PRC - [2009-08-04 17:31:56 | 000,219,360 | ---- | M] (DeviceVM, Inc.) -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe
PRC - [2009-08-04 17:31:54 | 000,346,320 | ---- | M] (DeviceVM, Inc.) -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe
PRC - [2009-07-17 15:25:02 | 000,319,488 | -H-- | M] (DeviceVM, Inc.) -- C:\ASUS.SYS\config\DVMExportService.exe
========== Modules (No Company Name) ==========
MOD - [2011-11-18 23:17:15 | 008,527,008 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
MOD - [2011-11-15 16:29:42 | 001,989,592 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
MOD - [2011-10-15 00:54:26 | 000,265,536 | ---- | M] () -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\Nv3DVStreaming.dll
MOD - [2011-03-17 00:11:16 | 004,297,568 | ---- | M] () -- C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE14\Cultures\office.odf
MOD - [2009-06-27 10:11:12 | 000,503,202 | ---- | M] () -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\sqlite3.dll
========== Win32 Services (SafeList) ==========
SRV:64bit: - [2011-11-28 18:01:23 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2011-09-07 09:54:44 | 000,027,760 | ---- | M] (VIA Technologies, Inc.) [Auto | Running] -- C:\Windows\SysNative\ViakaraokeSrv.exe -- (VIAKaraokeService)
SRV - [2011-12-08 01:52:14 | 000,419,624 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2011-10-15 08:53:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011-10-15 00:54:40 | 000,381,248 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2011-10-14 13:49:38 | 000,745,832 | ---- | M] (Tunngle.net GmbH) [Auto | Running] -- D:\Program Files (x86)\Tunngle\TnglCtrl.exe -- (TunngleService)
SRV - [2011-08-15 16:18:12 | 002,329,480 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2011-06-06 11:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2010-03-18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009-08-19 11:56:38 | 000,090,112 | R--- | M] (ASUSTeK Computer Inc.) [Auto | Running] -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe -- (AsSysCtrlService)
SRV - [2009-08-04 17:31:56 | 000,219,360 | ---- | M] (DeviceVM, Inc.) [Auto | Running] -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe -- (BCUService)
SRV - [2009-07-17 15:25:02 | 000,319,488 | -H-- | M] (DeviceVM, Inc.) [Auto | Running] -- C:\ASUS.SYS\config\DVMExportService.exe -- (DvmMDES)
SRV - [2009-06-10 21:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2011-11-28 17:54:06 | 000,591,192 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2011-11-28 17:53:58 | 000,304,472 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2011-11-28 17:52:22 | 000,042,328 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr.sys -- (aswRdr)
DRV:64bit: - [2011-11-28 17:52:20 | 000,058,712 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:64bit: - [2011-11-28 17:52:11 | 000,066,904 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2011-11-28 17:51:53 | 000,024,408 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV:64bit: - [2011-09-29 17:30:34 | 000,646,248 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011-09-16 19:00:32 | 000,106,496 | ---- | M] (SteelSeries Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SteelBus64.sys -- (busenum)
DRV:64bit: - [2011-09-16 19:00:28 | 000,034,944 | ---- | M] (SteelSeries Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SAlpham64.sys -- (SAlphamHid)
DRV:64bit: - [2011-09-07 09:54:38 | 002,173,552 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\viahduaa.sys -- (VIAHdAudAddService)
DRV:64bit: - [2011-07-07 23:21:28 | 000,174,184 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2011-05-13 14:37:54 | 000,048,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2011-03-11 06:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011-03-11 06:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010-11-21 03:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010-11-21 03:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010-11-21 03:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2009-07-18 05:18:48 | 000,109,480 | ---- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\jraid.sys -- (JRAID)
DRV:64bit: - [2009-07-16 03:38:40 | 000,015,416 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ASACPI.sys -- (MTsensor)
DRV:64bit: - [2009-07-14 01:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009-07-14 01:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009-07-14 01:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009-06-10 20:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009-06-10 20:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009-06-10 20:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009-06-10 20:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009-03-18 17:35:42 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)
DRV:64bit: - [2008-02-13 08:20:16 | 000,017,920 | ---- | M] (A4Tech Co.,Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Amusbx64.sys -- (Amusbprt)
DRV:64bit: - [2007-10-15 03:37:22 | 000,012,288 | ---- | M] ((Standard mouse types)) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\Amfltx64.sys -- (Amfilter)
DRV - [2010-03-17 23:34:36 | 000,068,440 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Program Files (x86)\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\x64\VSPerfDrv100.sys -- (VSPerfDrv100)
DRV - [2009-07-14 01:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\URLSearchHook: {e0301295-ab3e-4af3-979f-3d453c5f9f48} - C:\Program Files (x86)\uTorrentBar_PT\prxtbuTor.dll (Conduit Ltd.)
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://pt.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = pt-PT
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 42 BF E9 85 B7 B9 CC 01 [binary data]
IE - HKCU\..\URLSearchHook: {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll (DeviceVM, Inc.)
IE - HKCU\..\URLSearchHook: {e0301295-ab3e-4af3-979f-3d453c5f9f48} - C:\Program Files (x86)\uTorrentBar_PT\prxtbuTor.dll (Conduit Ltd.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.startup.homepage: "www.sapo.pt"
FF - prefs.js..network.proxy.type: 0
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_1_102.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@esn.me/esnsonar,version=0.70.4: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.102.0: C:\Program Files (x86)\Battlelog Web Plugins\1.102.0\npesnlaunch.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.104.0: C:\Program Files (x86)\Battlelog Web Plugins\1.104.0\npesnlaunch.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Ricardo\AppData\Local\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Ricardo\AppData\Local\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\AVAST Software\Avast\WebRep\FF [2011-12-13 03:46:23 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011-12-13 03:47:47 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 8.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
[2011-10-21 09:47:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Ricardo\AppData\Roaming\mozilla\Extensions
[2011-10-23 01:46:14 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Ricardo\AppData\Roaming\mozilla\Firefox\Profiles\mv6srx3w.default\extensions
[2011-12-13 03:47:47 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
[2011-12-13 03:47:47 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}
[2011-11-15 16:29:42 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2011-09-29 00:58:08 | 000,001,525 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazon-en-GB.xml
[2011-09-29 00:58:08 | 000,001,529 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\priberam.xml
[2011-09-29 00:58:08 | 000,002,071 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\sapo.xml
[2011-09-29 00:58:08 | 000,000,942 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-ptpt.xml
========== Chrome ==========
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Ricardo\AppData\Local\Google\Chrome\Application\15.0.874.121\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
CHR - plugin: Java Deployment Toolkit 6.0.290.11 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java Platform SE 6 U29 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Ricardo\AppData\Local\Google\Chrome\Application\15.0.874.121\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Ricardo\AppData\Local\Google\Chrome\Application\15.0.874.121\pdf.dll
CHR - plugin: ESN Launch Mozilla Plugin (Enabled) = C:\Program Files (x86)\Battlelog Web Plugins\1.96.0\npesnlaunch.dll
CHR - plugin: ESN Sonar API (Enabled) = C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.3\npesnsonar.dll
CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
CHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Ricardo\AppData\Local\Google\Update\1.3.21.79\npGoogleUpdate3.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: avast! WebRep = C:\Users\Ricardo\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1374_0\
CHR - Extension: Dropdown List of Most Visited Links = C:\Users\Ricardo\AppData\Local\Google\Chrome\User Data\Default\Extensions\logbmehmiacemkimbpcbjgaikobdndah\0.5_0\
O1 HOSTS File: ([2009-06-10 21:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Programas\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2:64bit: - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Programas\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programas\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Programas\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Programas\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Microsoft Web Test Recorder 10.0 Helper) - {DDA57003-0068-4ed2-9D32-4D1EC707D94D} - D:\Program Files (x86)\Microsoft Visual Studio 10.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll (Microsoft Corporation)
O2 - BHO: (uTorrentBar_PT Toolbar) - {e0301295-ab3e-4af3-979f-3d453c5f9f48} - C:\Program Files (x86)\uTorrentBar_PT\prxtbuTor.dll (Conduit Ltd.)
O3:64bit: - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Programas\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Programas\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (uTorrentBar_PT Toolbar) - {e0301295-ab3e-4af3-979f-3d453c5f9f48} - C:\Program Files (x86)\uTorrentBar_PT\prxtbuTor.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (uTorrentBar_PT Toolbar) - {E0301295-AB3E-4AF3-979F-3D453C5F9F48} - C:\Program Files (x86)\uTorrentBar_PT\prxtbuTor.dll (Conduit Ltd.)
O4 - HKLM..\Run: [BCU] C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe (DeviceVM, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8:64bit: - Extra context menu item: E&nviar para o OneNote - C:\Programas\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O8:64bit: - Extra context menu item: E&xportar para o Microsoft Excel - C:\Programas\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: E&nviar para o OneNote - C:\Programas\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O8 - Extra context menu item: E&xportar para o Microsoft Excel - C:\Programas\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O9:64bit: - Extra Button: Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programas\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9:64bit: - Extra 'Tools' menuitem : E&nviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programas\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9:64bit: - Extra Button: &Notas Ligadas do OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programas\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9:64bit: - Extra 'Tools' menuitem : &Notas Ligadas do OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programas\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000005 [] - C:\Programas\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000006 [] - C:\Programas\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} http://www.pcpitstop...t/PCPitStop.CAB (PCPitstop Utility)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_29)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{484BA91E-2642-4336-A939-85E7DF6B955E}: DhcpNameServer = 192.168.1.254 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{89609ADE-7A54-4CAD-9DDC-A3B80D887932}: DhcpNameServer = 7.254.254.254
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programas\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Programas\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) -C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28:64bit: - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Programas\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2094-11-23 21:22:17 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{13D1C12F-B996-4D2E-9A33-36235ACB6ACC}
[2094-11-23 21:22:05 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{FB9884F0-330A-4D45-A7D6-4283FC82E437}
[2011-12-13 23:37:36 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Users\Ricardo\Desktop\OTL.exe
[2011-12-13 22:04:31 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\Desktop\Autoruns
[2011-12-13 16:36:05 | 000,000,000 | ---D | C] -- C:\Program Files\ASUS
[2011-12-13 16:27:01 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\DeviceVM
[2011-12-13 15:35:50 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2011-12-13 15:24:31 | 000,000,000 | -H-D | C] -- C:\ProgramData\{83C3B2FD-37EA-4C06-A228-E9B5E32FF0B1}
[2011-12-13 15:24:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue
[2011-12-13 15:24:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Uniblue
[2011-12-13 15:15:21 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Roaming\Uniblue
[2011-12-13 15:13:40 | 000,000,000 | ---D | C] -- C:\918c5c1a3f68e8b2b658
[2011-12-13 15:05:24 | 000,000,000 | ---D | C] -- C:\Windows\CheckSur
[2011-12-13 04:52:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
[2011-12-13 04:50:22 | 000,068,928 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2011-12-13 04:50:22 | 000,061,248 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2011-12-13 04:20:42 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2011-12-13 04:17:01 | 000,000,000 | -HSD | C] -- C:\Program Files\Common Files\Sistema
[2011-12-13 04:17:01 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Os meus vídeos
[2011-12-13 04:17:01 | 000,000,000 | -HSD | C] -- C:\ProgramData\Modelos
[2011-12-13 04:17:01 | 000,000,000 | -HSD | C] -- C:\ProgramData\Menu Iniciar
[2011-12-13 04:17:01 | 000,000,000 | -HSD | C] -- C:\Program Files\Ficheiros comuns
[2011-12-13 04:17:01 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favoritos
[2011-12-13 04:17:01 | 000,000,000 | -HSD | C] -- C:\ProgramData\Documentos
[2011-12-13 04:17:01 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\As minhas imagens
[2011-12-13 04:17:01 | 000,000,000 | -HSD | C] -- C:\ProgramData\Ambiente de trabalho
[2011-12-13 04:17:01 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\A minha música
[2011-12-13 03:44:26 | 000,000,000 | --SD | C] -- C:\Users\Ricardo\AppData\Roaming\Microsoft
[2011-12-13 03:44:26 | 000,000,000 | R--D | C] -- C:\Users\Ricardo\Videos
[2011-12-13 03:44:26 | 000,000,000 | R--D | C] -- C:\Users\Ricardo\Saved Games
[2011-12-13 03:44:26 | 000,000,000 | R--D | C] -- C:\Users\Ricardo\Pictures
[2011-12-13 03:44:26 | 000,000,000 | R--D | C] -- C:\Users\Ricardo\Music
[2011-12-13 03:44:26 | 000,000,000 | R--D | C] -- C:\Users\Ricardo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2011-12-13 03:44:26 | 000,000,000 | R--D | C] -- C:\Users\Ricardo\Links
[2011-12-13 03:44:26 | 000,000,000 | R--D | C] -- C:\Users\Ricardo\Favorites
[2011-12-13 03:44:26 | 000,000,000 | R--D | C] -- C:\Users\Ricardo\Downloads
[2011-12-13 03:44:26 | 000,000,000 | R--D | C] -- C:\Users\Ricardo\Documents
[2011-12-13 03:44:26 | 000,000,000 | R--D | C] -- C:\Users\Ricardo\Desktop
[2011-12-13 03:44:26 | 000,000,000 | R--D | C] -- C:\Users\Ricardo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2011-12-13 03:44:26 | 000,000,000 | -HSD | C] -- C:\Users\Ricardo\AppData\Local\Temporary Internet Files
[2011-12-13 03:44:26 | 000,000,000 | -HSD | C] -- C:\Users\Ricardo\SendTo
[2011-12-13 03:44:26 | 000,000,000 | -HSD | C] -- C:\Users\Ricardo\Recent
[2011-12-13 03:44:26 | 000,000,000 | -HSD | C] -- C:\Users\Ricardo\PrintHood
[2011-12-13 03:44:26 | 000,000,000 | -HSD | C] -- C:\Users\Ricardo\Documents\Os meus vídeos
[2011-12-13 03:44:26 | 000,000,000 | -HSD | C] -- C:\Users\Ricardo\Os meus documentos
[2011-12-13 03:44:26 | 000,000,000 | -HSD | C] -- C:\Users\Ricardo\NetHood
[2011-12-13 03:44:26 | 000,000,000 | -HSD | C] -- C:\Users\Ricardo\Modelos
[2011-12-13 03:44:26 | 000,000,000 | -HSD | C] -- C:\Users\Ricardo\Menu Iniciar
[2011-12-13 03:44:26 | 000,000,000 | -HSD | C] -- C:\Users\Ricardo\AppData\Local\Histórico
[2011-12-13 03:44:26 | 000,000,000 | -HSD | C] -- C:\Users\Ricardo\Definições locais
[2011-12-13 03:44:26 | 000,000,000 | -HSD | C] -- C:\Users\Ricardo\Cookies
[2011-12-13 03:44:26 | 000,000,000 | -HSD | C] -- C:\Users\Ricardo\Documents\As minhas imagens
[2011-12-13 03:44:26 | 000,000,000 | -HSD | C] -- C:\Users\Ricardo\Application Data
[2011-12-13 03:44:26 | 000,000,000 | -HSD | C] -- C:\Users\Ricardo\AppData\Local\Application Data
[2011-12-13 03:44:26 | 000,000,000 | -HSD | C] -- C:\Users\Ricardo\Documents\A minha música
[2011-12-13 03:44:26 | 000,000,000 | -H-D | C] -- C:\Users\Ricardo\AppData
[2011-12-13 03:44:26 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\Temp
[2011-12-13 03:44:26 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\Microsoft
[2011-12-13 03:44:26 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Roaming\Media Center Programs
[2011-12-13 03:42:45 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2011-12-13 03:42:37 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2011-12-13 03:40:47 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2011-12-13 03:38:47 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2011-12-13 03:27:45 | 000,000,000 | -H-D | C] -- C:\$WINDOWS.~Q
[2011-12-13 03:24:08 | 000,000,000 | -H-D | C] -- C:\$INPLACE.~TR
[2011-12-12 15:42:18 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\SPReview
[2011-12-12 13:56:22 | 000,017,920 | ---- | C] (A4Tech Co.,Ltd.) -- C:\Windows\SysNative\drivers\Amusbx64.sys
[2011-12-12 13:56:21 | 000,012,288 | ---- | C] ((Standard mouse types)) -- C:\Windows\SysNative\drivers\Amfltx64.sys
[2011-12-10 00:01:05 | 000,248,944 | ---- | C] (Windows ® Codename Longhorn DDK provider) -- C:\Windows\SysNative\Dts2APO.dll
[2011-12-10 00:01:05 | 000,085,504 | ---- | C] (QSound Labs, Inc.) -- C:\Windows\SysNative\nQPropPageExt.dll
[2011-12-10 00:01:05 | 000,083,968 | ---- | C] (QSound Labs, Inc.) -- C:\Windows\SysNative\nQAPO.dll
[2011-12-08 21:46:01 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\Diagnostics
[2011-12-08 20:35:00 | 000,646,248 | ---- | C] (Realtek ) -- C:\Windows\SysNative\drivers\Rt64win7.sys
[2011-12-08 20:13:17 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\Innovative Solutions
[2011-12-08 20:13:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverMax
[2011-12-08 00:49:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn
[2011-12-07 21:54:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Auslogics
[2011-12-07 21:04:55 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Roaming\Auslogics
[2011-12-07 21:03:55 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2011-12-07 21:03:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics
[2011-12-07 16:39:37 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{7AB0E2D1-A0A6-47C4-87E6-2707D99F0C7C}
[2011-12-07 16:39:03 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{BB53EDBD-873D-4868-B535-E35A7EAE5F45}
[2011-12-07 01:39:40 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{AD389095-36DB-4479-8756-81D954EC30B5}
[2011-12-07 01:39:18 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{98E2164D-D220-4CD3-908A-03F1778E2734}
[2011-12-06 13:52:54 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\SteelSeriesEngine
[2011-12-06 13:52:07 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Roaming\SteelSeries
[2011-12-06 13:51:50 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SteelSeries
[2011-12-06 13:51:50 | 000,000,000 | ---D | C] -- C:\ProgramData\SteelSeries
[2011-12-06 13:51:04 | 000,000,000 | ---D | C] -- C:\Program Files\SteelSeries
[2011-12-06 13:38:48 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{9FC889BF-4899-4B04-B14A-FA4BECB359EF}
[2011-12-06 13:38:16 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{59C7E1F2-E56A-4ABE-9821-B3466B924492}
[2011-12-05 23:59:31 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{DC1899A5-D297-4033-AEDD-AB6A52731ECC}
[2011-12-05 23:59:10 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{0C2635CC-353A-4BCA-AD34-5B0A0FA985D5}
[2011-12-05 12:10:28 | 000,000,000 | ---D | C] -- C:\Windows\pss
[2011-12-05 11:58:34 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{8BAB0D02-E534-4F45-8F91-A98E716D3A50}
[2011-12-05 11:58:13 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{660E8EF8-8163-460B-9324-2C2A7E67D9AF}
[2011-12-05 11:32:44 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{48695539-4208-459D-AB45-D2AD801A66E1}
[2011-12-05 11:32:14 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{5FD73398-828F-4DF9-A5DE-8907DB510298}
[2011-12-04 21:54:43 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{56F661BD-2078-4AED-AA6C-9873440423BA}
[2011-12-04 21:54:30 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{501A80DD-ED6C-438C-AA75-943BCF42D367}
[2011-12-04 17:36:05 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\Desktop\c#
[2011-12-04 14:32:48 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{A55265A0-849C-471F-B6AD-D1F0279343F3}
[2011-12-04 14:32:26 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{0C6C8DC1-22DF-4176-805C-D7D4BC2517E3}
[2011-12-03 20:49:18 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{A8CDBD0A-0228-4F41-A9BB-7BC4862E57E4}
[2011-12-03 20:48:52 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{40B280C8-D8C2-4AB2-A840-798B7E95DC15}
[2011-12-03 20:43:46 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{B6A1CBF6-1A1A-430F-B9A1-2B0462D345F2}
[2011-12-03 01:00:17 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Roaming\ImgBurn
[2011-12-02 17:27:48 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{AC4EC426-9258-4B4F-AA16-CE85ED6E4F50}
[2011-12-02 17:27:27 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{B8A7C65A-C30A-4616-BF13-9BAAD5307D3E}
[2011-12-02 05:27:01 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{0B294C39-ED0E-43D3-B8A2-9E63390A9760}
[2011-12-02 05:26:39 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{EAB183EC-6A2A-4831-88FE-1549E9540C53}
[2011-12-01 19:56:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Visual Studio
[2011-12-01 17:26:12 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{67782799-565A-48E4-8D5C-44C7D630EC8F}
[2011-12-01 17:25:50 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{A70B608D-4CA9-415A-A713-8C4F488A9539}
[2011-12-01 15:16:30 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\Desktop\Coldplay
[2011-12-01 05:25:25 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{C2BD389D-A0D3-4471-8383-9592DD5FC707}
[2011-12-01 05:25:03 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{06FA0DE8-3C3B-4F0F-94AD-A29D8DEB9FFD}
[2011-11-30 17:24:39 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{FB9E9F70-1280-4A60-920F-146B21F7CD6B}
[2011-11-30 17:24:29 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{CC0A343E-56C7-4FC2-9328-CF87A12E75FA}
[2011-11-30 03:45:18 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{218E22FC-4E28-4DF9-9CE4-87ECF02C4277}
[2011-11-30 03:44:56 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{DE0B4939-854C-4615-ABC6-51D8E1925D3B}
[2011-11-29 21:16:12 | 000,000,000 | ---D | C] -- C:\ProgramData\EPU
[2011-11-29 21:16:11 | 000,000,000 | ---D | C] -- C:\ProgramData\ASUS OC Profiles
[2011-11-29 21:08:39 | 000,000,000 | -H-D | C] -- C:\temp
[2011-11-29 21:08:39 | 000,000,000 | -H-D | C] -- C:\dvmexp
[2011-11-29 21:08:07 | 000,000,000 | -H-D | C] -- C:\ASUS.000
[2011-11-29 21:07:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Express Gate
[2011-11-29 21:07:45 | 000,000,000 | -H-D | C] -- C:\ASUS.SYS
[2011-11-29 21:07:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Downloaded Installations
[2011-11-29 21:05:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
[2011-11-29 21:05:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ASUS
[2011-11-29 21:05:03 | 000,000,000 | ---D | C] -- C:\RaidTool
[2011-11-29 21:04:56 | 000,000,000 | ---D | C] -- C:\Windows\RaidTool
[2011-11-29 20:59:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VIA
[2011-11-29 20:53:30 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\LogMeIn Hamachi
[2011-11-29 20:53:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
[2011-11-29 20:53:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\LogMeIn Hamachi
[2011-11-29 20:23:50 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Roaming\Download Manager
[2011-11-29 16:56:59 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\PackageAware
[2011-11-29 16:36:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Driver Tool
[2011-11-29 15:44:23 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{96A7A057-FB63-46E6-BDBE-CEF34A1D3F5E}
[2011-11-29 15:43:57 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{06BC0CCE-E512-4273-A716-CE02A11B2A9E}
[2011-11-29 05:07:35 | 000,041,272 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2011-11-29 03:43:24 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{5A926026-CB41-446A-98CE-B947794945BE}
[2011-11-29 03:41:07 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{BB13C458-D151-4092-9953-4F7E7BE42505}
[2011-11-29 01:58:08 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\Aptana Rubles
[2011-11-29 01:57:53 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\My Documents
[2011-11-29 01:54:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Appcelerator
[2011-11-29 01:30:34 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Roaming\.minecraft
[2011-11-28 15:40:41 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{061A8FDD-2A96-4556-B8A6-42165826D3CA}
[2011-11-28 15:40:15 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{5DA4C53B-70DE-4B7E-A08E-61A915E5B319}
[2011-11-28 03:39:49 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{088B79A4-AC44-4174-8871-7B02250850B5}
[2011-11-28 03:39:39 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{A9D04931-CBB3-4341-ACFA-8CE31F271322}
[2011-11-27 15:39:11 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{FBD2F3DE-B239-47D1-B0D0-05BCE2FF7EA9}
[2011-11-27 15:39:00 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{BA5132BF-6397-4FA7-BF81-6DCE0FADE929}
[2011-11-27 03:38:33 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{C3210EFC-136B-4613-8E02-9F5EB87AFCE0}
[2011-11-27 03:38:21 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{2C5DDBB7-1701-4B38-8C84-36F3F08BB333}
[2011-11-26 15:37:55 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{A58853C1-7579-4DF9-865C-E9E09C4A179E}
[2011-11-26 15:37:44 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{D066076C-1FF9-44AA-81B8-8B7A0E9441E8}
[2011-11-26 03:36:47 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{F71EB8D6-2F97-4798-A6D6-931FDC68CEBF}
[2011-11-26 03:36:37 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{7363EE11-58C0-4EF6-A100-7D817B0452FB}
[2011-11-26 00:29:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek
[2011-11-26 00:29:36 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Temp
[2011-11-26 00:29:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield
[2011-11-26 00:08:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WhoCrashed
[2011-11-25 20:11:51 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\RsFx
[2011-11-25 20:11:20 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio 9.0
[2011-11-25 20:11:01 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2011-11-25 20:10:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008
[2011-11-25 20:08:18 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server
[2011-11-25 20:08:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SQL Server
[2011-11-25 20:07:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Sync Framework
[2011-11-25 20:07:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Synchronization Services
[2011-11-25 20:06:51 | 000,000,000 | ---D | C] -- C:\ProgramData\PreEmptive Solutions
[2011-11-25 20:05:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 3 SDK
[2011-11-25 20:04:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft ASP.NET
[2011-11-25 20:04:41 | 000,000,000 | ---D | C] -- C:\Program Files\IIS
[2011-11-25 20:04:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\IIS
[2011-11-25 20:03:45 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\Documents\Visual Studio 2008
[2011-11-25 20:03:16 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\Documents\Visual Studio 2010
[2011-11-25 20:00:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Designer
[2011-11-25 20:00:07 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\1033
[2011-11-25 19:59:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010
[2011-11-25 19:59:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft F#
[2011-11-25 19:59:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Merge Modules
[2011-11-25 19:59:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\HTML Help Workshop
[2011-11-25 19:57:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 9.0
[2011-11-25 19:57:20 | 000,000,000 | ---D | C] -- C:\Windows\symbols
[2011-11-25 19:57:20 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\1033
[2011-11-25 19:57:19 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio 10.0
[2011-11-25 19:57:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SDKs
[2011-11-25 19:57:19 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Help Viewer
[2011-11-25 19:43:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2011-11-25 19:43:06 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2011-11-25 16:21:40 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Roaming\Malwarebytes
[2011-11-25 16:21:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011-11-25 16:21:30 | 000,025,416 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2011-11-25 15:35:51 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{BDD6E1FA-9CCD-4190-9A4B-DE5AF258F19D}
[2011-11-25 15:35:36 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{95787331-953A-4F2F-9243-A33FD7136871}
[2011-11-25 02:16:01 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{108974E8-2FAB-413A-B444-112D19D5DE18}
[2011-11-25 02:15:38 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{220F7B2A-E8A5-4740-B275-05E4CA350FBF}
[2011-11-24 14:15:12 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{D4599584-2ABE-4FA8-B6A0-F5BF55B9E06E}
[2011-11-24 14:14:58 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{9509331A-7C85-4CA9-84C3-33C0FB544A08}
[2011-11-23 21:26:25 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{FE9160D6-BBF8-4584-B886-BC0D4514E03D}
[2011-11-23 21:26:13 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{4F35B65F-2AF3-4B0D-AFE0-881ACF420B04}
[2011-11-23 14:46:40 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\SlimWare Utilities Inc
[2011-11-23 14:31:38 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Roaming\3v
[2011-11-23 13:47:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Uniblue
[2011-11-23 13:47:22 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Roaming\OpenCandy
[2011-11-23 13:47:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
[2011-11-23 13:45:00 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{AF5B55D2-D238-4B4D-9DBA-2B57EAB3CBFB}
[2011-11-23 13:44:44 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{F44CA49C-CB8A-4867-93FB-AB25C5DE5D59}
[2011-11-22 20:52:38 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{CAFB648D-6F13-446C-BBE2-F13FF35A5E86}
[2011-11-22 20:52:27 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{3058C058-A71E-4A57-A604-B34A405E1922}
[2011-11-22 08:52:01 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{029B8D17-2C20-4451-AE9E-D48D48BD0B3D}
[2011-11-22 08:51:40 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{D38B2537-7C3C-4B9D-B823-76AF7B7E6538}
[2011-11-21 20:51:12 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{D607D449-157C-4242-876D-8C04F8270045}
[2011-11-21 20:50:57 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{313B3A9D-E37E-42EE-AF91-CFAD1856F62D}
[2011-11-21 03:26:19 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{5919454A-6790-4950-B39E-6886D257C73C}
[2011-11-21 03:26:06 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{A9223BCB-E5AA-46F4-BA07-249AC2A44CBC}
[2011-11-20 15:25:54 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{C6D3AF7E-0C76-4D88-A715-F49E234A753F}
[2011-11-20 15:25:34 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{B172956D-C519-488A-B72E-CC8149ECB3BE}
[2011-11-20 03:25:09 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{F69106B7-197E-4E6E-B421-A6CCC47C273B}
[2011-11-20 03:24:50 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{4072C374-39EE-4840-977A-8A7D81E449C9}
[2011-11-19 15:24:25 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{02C5E703-2EC9-4017-B7E7-9C5C7CF6AD6E}
[2011-11-19 15:24:13 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{AB8EFAD9-E335-4603-A052-17CE6E18378F}
[2011-11-19 00:27:13 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\Skyrim
[2011-11-19 00:23:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razor 1911
[2011-11-18 23:17:23 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{34F1298F-DABC-43DB-BBF3-4715B6FE33E3}
[2011-11-18 23:17:13 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{DACD1947-076E-40FA-A194-DC2184C7503A}
[2011-11-15 16:27:09 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{8DBFD0F4-33A4-468E-8038-F99F52D6F2F6}
[2011-11-15 16:26:56 | 000,000,000 | ---D | C] -- C:\Users\Ricardo\AppData\Local\{F1B32FE6-2B97-4CFC-99C9-E90042D2D989}
[2011-10-21 11:49:26 | 000,216,064 | ---- | C] ( ) -- C:\Windows\SysWow64\lagarith.dll
========== Files - Modified Within 30 Days ==========
[2011-12-13 23:45:00 | 000,001,086 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-590952940-1983602806-593811447-1001UA.job
[2011-12-13 23:44:21 | 000,000,177 | -H-- | M] () -- C:\dvmexp.idx
[2011-12-13 23:43:35 | 000,019,856 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011-12-13 23:43:35 | 000,019,856 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011-12-13 23:40:14 | 001,830,790 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011-12-13 23:40:14 | 000,783,406 | ---- | M] () -- C:\Windows\SysNative\prfh0816.dat
[2011-12-13 23:40:14 | 000,716,762 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2011-12-13 23:40:14 | 000,175,478 | ---- | M] () -- C:\Windows\SysNative\prfc0816.dat
[2011-12-13 23:40:14 | 000,144,784 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2011-12-13 23:37:41 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Ricardo\Desktop\OTL.exe
[2011-12-13 23:34:21 | 000,000,348 | ---- | M] () -- C:\Windows\tasks\RegistryBooster.job
[2011-12-13 23:34:00 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011-12-13 23:33:58 | 543,026,600 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2011-12-13 23:33:52 | 3219,693,568 | -HS- | M] () -- C:\hiberfil.sys
[2011-12-13 22:04:17 | 000,532,781 | ---- | M] () -- C:\Users\Ricardo\Desktop\Autoruns.zip
[2011-12-13 21:50:16 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\Access.dat
[2011-12-13 16:36:45 | 000,035,726 | ---- | M] () -- C:\Windows\Ascd_log.ini
[2011-12-13 16:36:21 | 000,000,670 | ---- | M] () -- C:\Windows\setup.iss
[2011-12-13 16:35:26 | 000,001,769 | ---- | M] () -- C:\Windows\Language_trs.ini
[2011-12-13 16:35:11 | 000,026,147 | ---- | M] () -- C:\Windows\Ascd_tmp.ini
[2011-12-13 16:26:22 | 000,006,872 | ---- | M] () -- C:\Users\Ricardo\AppData\Local\Temp7.html
[2011-12-13 16:26:01 | 000,001,955 | ---- | M] () -- C:\Users\Ricardo\AppData\Local\Temp1.html
[2011-12-13 15:24:31 | 000,001,790 | ---- | M] () -- C:\Users\Ricardo\Application Data\Microsoft\Internet Explorer\Quick Launch\Uniblue RegistryBooster.lnk
[2011-12-13 05:25:34 | 000,001,429 | ---- | M] () -- C:\Users\Ricardo\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011-12-13 05:23:50 | 000,416,968 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2011-12-13 05:00:23 | 000,072,822 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2011-12-13 05:00:23 | 000,072,822 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
[2011-12-13 04:28:26 | 000,325,953 | RHS- | M] () -- C:\SMYOR
[2011-12-13 04:28:26 | 000,000,000 | RHS- | M] () -- C:\dvbx.ld
[2011-12-13 04:25:07 | 001,799,192 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2011-12-13 04:13:55 | 000,218,679 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2011-12-13 04:13:55 | 000,218,679 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2011-12-13 04:05:49 | 000,023,128 | ---- | M] () -- C:\Windows\SysNative\emptyregdb.dat
[2011-12-13 03:38:34 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2011-12-13 02:54:34 | 000,002,544 | ---- | M] () -- C:\Windows\diagwrn.xml
[2011-12-13 02:54:34 | 000,001,890 | ---- | M] () -- C:\Windows\diagerr.xml
[2011-12-13 01:45:01 | 000,001,034 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-590952940-1983602806-593811447-1001Core.job
[2011-12-06 13:47:27 | 000,000,829 | ---- | M] () -- C:\Users\Public\Desktop\Battlefield 3.lnk
[2011-12-06 13:46:57 | 000,189,248 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2011-12-06 13:46:49 | 000,189,248 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.ex0
[2011-12-06 13:46:45 | 000,075,136 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2011-12-01 15:45:08 | 001,045,703 | ---- | M] () -- C:\Windows\P7P55D-ASUS-2003.zip
[2011-12-01 15:38:17 | 000,000,057 | -H-- | M] () -- C:\splash.idx
[2011-11-30 19:14:49 | 000,138,844 | -H-- | M] () -- C:\Windows\SysWow64\mlfcache.dat
[2011-11-29 14:46:50 | 000,041,272 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2011-11-29 14:32:27 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2011-11-29 01:54:16 | 000,001,004 | ---- | M] () -- C:\Users\Ricardo\Application Data\Microsoft\Internet Explorer\Quick Launch\Aptana Studio 3.lnk
[2011-11-28 18:01:25 | 000,041,184 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2011-11-28 18:01:23 | 000,199,816 | ---- | M] (AVAST Software) -- C:\Windows\SysWow64\aswBoot.exe
[2011-11-28 18:01:14 | 000,256,960 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2011-11-28 17:54:06 | 000,591,192 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2011-11-28 17:53:58 | 000,304,472 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2011-11-28 17:52:22 | 000,042,328 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr.sys
[2011-11-28 17:52:20 | 000,058,712 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
[2011-11-28 17:52:11 | 000,066,904 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2011-11-28 17:51:53 | 000,024,408 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
[2011-11-24 03:31:55 | 000,000,221 | ---- | M] () -- C:\Users\Ricardo\Desktop\The Elder Scrolls V Skyrim.url
[2011-11-18 23:54:43 | 000,002,409 | ---- | M] () -- C:\Users\Ricardo\Desktop\Google Chrome.lnk
========== Files Created - No Company Name ==========
[2011-12-13 22:04:15 | 000,532,781 | ---- | C] () -- C:\Users\Ricardo\Desktop\Autoruns.zip
[2011-12-13 16:26:22 | 000,006,872 | ---- | C] () -- C:\Users\Ricardo\AppData\Local\Temp7.html
[2011-12-13 16:26:01 | 000,001,955 | ---- | C] () -- C:\Users\Ricardo\AppData\Local\Temp1.html
[2011-12-13 15:15:22 | 000,000,348 | ---- | C] () -- C:\Windows\tasks\RegistryBooster.job
[2011-12-13 15:15:20 | 000,001,790 | ---- | C] () -- C:\Users\Ricardo\Application Data\Microsoft\Internet Explorer\Quick Launch\Uniblue RegistryBooster.lnk
[2011-12-13 05:00:23 | 000,072,822 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2011-12-13 05:00:23 | 000,072,822 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2011-12-13 04:28:26 | 000,325,953 | RHS- | C] () -- C:\SMYOR
[2011-12-13 04:28:26 | 000,000,000 | RHS- | C] () -- C:\dvbx.ld
[2011-12-13 04:25:07 | 001,799,192 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2011-12-13 04:17:36 | 000,001,401 | ---- | C] () -- C:\Users\Ricardo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
[2011-12-13 04:17:32 | 000,001,435 | ---- | C] () -- C:\Users\Ricardo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2011-12-13 04:15:09 | 3219,693,568 | -HS- | C] () -- C:\hiberfil.sys
[2011-12-13 04:05:49 | 000,023,128 | ---- | C] () -- C:\Windows\SysNative\emptyregdb.dat
[2011-12-13 03:44:26 | 000,000,290 | ---- | C] () -- C:\Users\Ricardo\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2011-12-13 03:44:26 | 000,000,272 | ---- | C] () -- C:\Users\Ricardo\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2011-12-13 03:43:58 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2011-12-08 20:35:00 | 000,074,272 | ---- | C] () -- C:\Windows\SysNative\RtNicProp64.dll
[2011-12-08 00:49:37 | 000,000,796 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn.lnk
[2011-12-08 00:03:58 | 000,002,544 | ---- | C] () -- C:\Windows\diagwrn.xml
[2011-12-08 00:03:58 | 000,001,890 | ---- | C] () -- C:\Windows\diagerr.xml
[2011-12-01 15:45:08 | 002,097,152 | ---- | C] () -- C:\Windows\P7P55D-ASUS-2003.ROM
[2011-12-01 15:44:11 | 001,045,703 | ---- | C] () -- C:\Windows\P7P55D-ASUS-2003.zip
[2011-11-30 19:14:49 | 000,138,844 | -H-- | C] () -- C:\Windows\SysWow64\mlfcache.dat
[2011-11-30 17:23:41 | 000,002,486 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
[2011-11-29 21:14:32 | 000,000,177 | -H-- | C] () -- C:\dvmexp.idx
[2011-11-29 21:05:23 | 000,024,576 | R--- | C] () -- C:\Windows\SysWow64\AsIO.dll
[2011-11-29 21:05:23 | 000,013,368 | R--- | C] () -- C:\Windows\SysWow64\drivers\AsIO.sys
[2011-11-29 21:05:05 | 000,000,670 | ---- | C] () -- C:\Windows\setup.iss
[2011-11-29 21:04:18 | 000,035,726 | ---- | C] () -- C:\Windows\Ascd_log.ini
[2011-11-29 21:03:53 | 000,026,147 | ---- | C] () -- C:\Windows\Ascd_tmp.ini
[2011-11-29 20:59:44 | 000,001,214 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD VDeck.lnk
[2011-11-29 20:49:19 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini
[2011-11-29 16:18:48 | 000,007,384 | ---- | C] () -- C:\Windows\SysNative\nvinfo.pb
[2011-11-29 04:15:29 | 000,000,863 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader.lnk
[2011-11-29 04:15:29 | 000,000,848 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader Uninstaller.lnk
[2011-11-29 04:15:29 | 000,000,833 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader Update.lnk
[2011-11-29 01:54:16 | 000,001,004 | ---- | C] () -- C:\Users\Ricardo\Application Data\Microsoft\Internet Explorer\Quick Launch\Aptana Studio 3.lnk
[2011-11-25 23:58:34 | 543,026,600 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2011-11-24 03:31:55 | 000,000,221 | ---- | C] () -- C:\Users\Ricardo\Desktop\The Elder Scrolls V Skyrim.url
[2011-11-02 17:13:38 | 000,008,192 | ---- | C] () -- C:\Windows\SysWow64\srvany.exe
[2011-10-23 01:39:55 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\Access.dat
[2011-10-21 15:13:19 | 002,434,856 | ---- | C] () -- C:\Windows\SysWow64\pbsvc_bc2.exe
[2011-10-21 15:01:12 | 000,189,248 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2011-10-21 15:01:10 | 000,075,136 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2011-10-21 11:49:27 | 000,175,616 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2011-10-21 11:49:27 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
[2011-10-21 11:49:26 | 003,164,160 | ---- | C] () -- C:\Windows\SysWow64\x264vfw.dll
[2011-10-21 11:49:26 | 000,650,752 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2011-10-21 11:49:26 | 000,243,200 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2011-10-21 11:49:26 | 000,074,752 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2011-10-15 00:54:52 | 000,321,856 | ---- | C] () -- C:\Windows\SysWow64\nvStreaming.exe
[2009-07-14 05:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009-07-14 02:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009-07-14 02:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009-07-14 00:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009-07-13 23:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009-07-13 21:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009-07-06 02:48:34 | 000,013,368 | R--- | C] () -- C:\Windows\SysWow64\drivers\AsUpIO.sys
[2009-06-10 21:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2009-04-02 12:30:14 | 000,010,296 | ---- | C] () -- C:\Windows\SysWow64\drivers\ASUSHWIO.SYS
[2008-12-01 18:32:32 | 000,362,029 | ---- | C] () -- C:\Windows\SysWow64\sqlite3.dll
========== LOP Check ==========
[2011-12-13 03:59:23 | 000,000,000 | ---D | M] -- C:\Users\Ricardo\AppData\Roaming\.minecraft
[2011-12-13 03:59:23 | 000,000,000 | ---D | M] -- C:\Users\Ricardo\AppData\Roaming\3v
[2011-12-13 03:59:24 | 000,000,000 | ---D | M] -- C:\Users\Ricardo\AppData\Roaming\Auslogics
[2011-12-13 03:59:24 | 000,000,000 | ---D | M] -- C:\Users\Ricardo\AppData\Roaming\com.aspiro.musicbox
[2011-12-13 03:59:27 | 000,000,000 | ---D | M] -- C:\Users\Ricardo\AppData\Roaming\DAEMON Tools Lite
[2011-12-13 03:59:28 | 000,000,000 | ---D | M] -- C:\Users\Ricardo\AppData\Roaming\Dropbox
[2011-12-13 03:59:30 | 000,000,000 | ---D | M] -- C:\Users\Ricardo\AppData\Roaming\ImgBurn
[2011-12-13 03:59:30 | 000,000,000 | ---D | M] -- C:\Users\Ricardo\AppData\Roaming\LolClient
[2011-12-13 03:59:35 | 000,000,000 | ---D | M] -- C:\Users\Ricardo\AppData\Roaming\OpenCandy
[2011-12-13 03:59:35 | 000,000,000 | ---D | M] -- C:\Users\Ricardo\AppData\Roaming\Origin
[2011-12-13 03:59:35 | 000,000,000 | ---D | M] -- C:\Users\Ricardo\AppData\Roaming\SteelSeries
[2011-12-13 03:59:35 | 000,000,000 | ---D | M] -- C:\Users\Ricardo\AppData\Roaming\SystemRequirementsLab
[2011-12-13 03:59:36 | 000,000,000 | ---D | M] -- C:\Users\Ricardo\AppData\Roaming\TS3Client
[2011-12-13 03:59:37 | 000,000,000 | ---D | M] -- C:\Users\Ricardo\AppData\Roaming\Tunngle
[2011-12-13 15:15:21 | 000,000,000 | ---D | M] -- C:\Users\Ricardo\AppData\Roaming\Uniblue
[2011-12-13 15:20:11 | 000,000,000 | ---D | M] -- C:\Users\Ricardo\AppData\Roaming\uTorrent
[2011-10-29 18:34:05 | 000,000,000 | ---D | M] -- C:\Users\Ricardo\AppData\Roaming\Windows Live Writer
[2011-12-13 23:34:21 | 000,000,348 | ---- | M] () -- C:\Windows\Tasks\RegistryBooster.job
[2009-07-14 05:08:49 | 000,006,970 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
< End of report >