Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

iexplore.exe is not a Win32 valid application

Started by Meyer! , Apr 11 2012 09:50 AM

  • Please log in to reply

#1
Meyer!
Posted 11 April 2012 - 09:50 AM

Meyer!

    New Member

  • Member
  • Pip
  • 2 posts
I have this problem when I launch the IE x86: iexplore.exe is not a Win32 valid application...
I tried in security mode, and the IE x86 works perfectly...

OTL logfile created on: 11/04/2012 12:45:39 - Run 2
OTL by OldTimer - Version 3.2.36.3 Folder = C:\upx308w
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000416 | Country: Brasil | Language: PTB | Date Format: dd/MM/yyyy

3,48 Gb Total Physical Memory | 1,85 Gb Available Physical Memory | 53,19% Memory free
6,95 Gb Paging File | 4,92 Gb Available in Paging File | 70,71% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 205,82 Gb Total Space | 156,30 Gb Free Space | 75,94% Space Free | Partition Type: NTFS
Drive E: | 100,00 Mb Total Space | 60,79 Mb Free Space | 60,79% Space Free | Partition Type: NTFS
Drive F: | 259,84 Gb Total Space | 165,67 Gb Free Space | 63,76% Space Free | Partition Type: NTFS

Computer Name: MEYERPC | User Name: usuario | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/03/12 21:35:54 | 000,594,944 | ---- | M] (OldTimer Tools) -- C:\upx308w\OTL.exe
PRC - [2012/02/17 02:12:58 | 000,128,936 | ---- | M] () -- C:\Program Files (x86)\DFX\Universal\Apps\DfxSharedApp32.exe
PRC - [2012/02/17 02:12:56 | 001,060,776 | ---- | M] () -- C:\Program Files (x86)\DFX\DFX.exe
PRC - [2012/02/17 02:12:56 | 000,160,168 | ---- | M] () -- C:\Program Files (x86)\DFX\Universal\Apps\dfxItunesSong.exe
PRC - [2011/11/03 17:37:16 | 004,307,320 | ---- | M] (Emsi Software GmbH) -- C:\Program Files (x86)\Mamutu\mamutu.exe
PRC - [2011/07/08 10:01:00 | 002,978,720 | ---- | M] (Emsi Software GmbH) -- C:\Program Files (x86)\Mamutu\a2service.exe
PRC - [2011/02/01 12:20:48 | 002,656,280 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
PRC - [2011/02/01 12:20:46 | 000,326,168 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2010/06/16 18:42:58 | 000,839,680 | ---- | M] () -- C:\Program Files (x86)\OpenDNS Updater\OpenDNSUpdater.exe


========== Modules (No Company Name) ==========

MOD - [2012/02/17 02:13:04 | 000,049,064 | ---- | M] () -- C:\Program Files (x86)\Common Files\DFX\Dlls\dfxShared32.dll
MOD - [2012/02/17 02:12:58 | 000,128,936 | ---- | M] () -- C:\Program Files (x86)\DFX\Universal\Apps\DfxSharedApp32.exe
MOD - [2012/02/17 02:12:56 | 001,060,776 | ---- | M] () -- C:\Program Files (x86)\DFX\DFX.exe
MOD - [2012/02/17 02:12:56 | 000,160,168 | ---- | M] () -- C:\Program Files (x86)\DFX\Universal\Apps\dfxItunesSong.exe
MOD - [2011/12/12 01:33:52 | 000,498,760 | ---- | M] () -- C:\Program Files (x86)\ManyCam\Bin\cximagecrt.dll
MOD - [2010/06/16 18:42:58 | 000,839,680 | ---- | M] () -- C:\Program Files (x86)\OpenDNS Updater\OpenDNSUpdater.exe


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2012/03/28 14:41:30 | 001,882,376 | ---- | M] (Raxco Software, Inc.) [Auto | Running] -- C:\Program Files\Raxco\PDFree\PDAgent.exe -- (PDAgent)
SRV:64bit: - [2012/03/28 14:41:20 | 003,290,376 | ---- | M] (Raxco Software, Inc.) [On_Demand | Running] -- C:\Program Files\Common Files\Raxco\Shared\PDEngine.exe -- (PDEngine)
SRV:64bit: - [2012/03/11 21:13:24 | 002,815,496 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe -- (cmdAgent)
SRV:64bit: - [2011/05/05 17:36:05 | 000,022,528 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\DAZ 3D\Content Management Service\ContentManagementServer.exe -- (DAZContentManagementService)
SRV:64bit: - [2011/02/17 11:51:10 | 000,027,760 | ---- | M] (VIA Technologies, Inc.) [Auto | Running] -- C:\Windows\SysNative\ViakaraokeSrv.exe -- (VIAKaraokeService)
SRV:64bit: - [2010/12/28 05:00:34 | 001,296,728 | ---- | M] (www.BitComet.com) [Disabled | Stopped] -- C:\Program Files\BitComet\tools\BitCometService.exe -- (BITCOMET_HELPER_SERVICE)
SRV:64bit: - [2010/09/22 17:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2009/07/13 22:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2012/04/08 12:45:43 | 000,253,600 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2011/11/23 07:27:10 | 001,267,000 | ---- | M] (COMODO) [Auto | Running] -- C:\Arquivos de Programas\COMODO\COMODO GeekBuddy\CLPSLS.exe -- (CLPSLS)
SRV - [2011/07/08 10:01:00 | 002,978,720 | ---- | M] (Emsi Software GmbH) [Auto | Running] -- C:\Program Files (x86)\Mamutu\a2service.exe -- (Mamutu)
SRV - [2011/02/01 12:20:48 | 002,656,280 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS) Intel®
SRV - [2011/02/01 12:20:46 | 000,326,168 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS) Intel®
SRV - [2010/05/04 11:07:22 | 000,503,080 | ---- | M] (Nero AG) [Disabled | Stopped] -- C:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate) @C:\Program Files (x86)
SRV - [2010/03/18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/07/13 01:08:04 | 000,024,168 | ---- | M] (The Within Network, LLC) [Disabled | Stopped] -- C:\Windows\UnsignedThemesSvc.exe -- (UnsignedThemes)
SRV - [2009/06/10 18:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2008/09/08 06:59:00 | 000,575,488 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2007/05/31 09:11:54 | 000,443,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm)
SRV - [2007/05/31 09:11:46 | 000,225,672 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2011/12/19 12:45:22 | 000,146,736 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\VBoxNetAdp.sys -- (VBoxNetAdp)
DRV:64bit: - [2011/12/02 10:56:48 | 000,140,816 | ---- | M] (Raxco Software, Inc.) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\DefragFs.sys -- (DefragFS)
DRV:64bit: - [2011/09/29 04:04:22 | 000,027,136 | ---- | M] (ManyCam LLC.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ManyCam_x64.sys -- (ManyCam)
DRV:64bit: - [2011/09/21 09:25:54 | 000,021,992 | ---- | M] (CPUID) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\cpuz135_x64.sys -- (cpuz135)
DRV:64bit: - [2011/08/31 11:53:22 | 012,306,848 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2011/03/11 03:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 03:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/01/15 13:21:04 | 000,036,352 | ---- | M] (Elaborate Bytes AG) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\VClone.sys -- (VClone)
DRV:64bit: - [2010/12/16 19:58:14 | 000,040,816 | ---- | M] (Elaborate Bytes AG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ElbyCDIO.sys -- (ElbyCDIO)
DRV:64bit: - [2010/11/20 10:34:04 | 000,360,832 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\vpcvmm.sys -- (vpcvmm)
DRV:64bit: - [2010/11/20 10:34:04 | 000,194,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\vpchbus.sys -- (vpcbus)
DRV:64bit: - [2010/11/20 10:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 08:35:34 | 000,095,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\vpcusb.sys -- (vpcusb)
DRV:64bit: - [2010/11/20 08:35:22 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\vpcnfltr.sys -- (vpcnfltr)
DRV:64bit: - [2010/11/20 08:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/20 08:03:42 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2010/10/19 15:34:26 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64) Intel®
DRV:64bit: - [2010/08/24 06:55:43 | 000,076,912 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1C62x64.sys -- (L1C)
DRV:64bit: - [2010/08/04 21:17:14 | 001,342,064 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\viahduaa.sys -- (VIAHdAudAddService)
DRV:64bit: - [2009/12/21 09:43:00 | 000,078,848 | ---- | M] (CSR, plc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthav.sys -- (csr_a2dp)
DRV:64bit: - [2009/07/13 22:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 22:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 22:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2009/07/13 22:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/13 01:09:20 | 000,030,568 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\uxpatch.sys -- (uxpatch)
DRV:64bit: - [2009/06/10 17:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 17:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 17:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 17:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2008/08/28 11:44:42 | 000,025,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pccsmcfdx64.sys -- (pccsmcfd)
DRV:64bit: - [2008/07/10 18:20:16 | 000,021,504 | ---- | M] (CSR, plc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BthAvrcp.sys -- (BthAvrcp)
DRV:64bit: - [2008/02/29 14:19:52 | 000,204,544 | ---- | M] (Windows ® Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TP6800.SYS -- (DCamUSBIntel)
DRV - [2011/11/02 09:13:26 | 000,041,728 | ---- | M] (Emsi Software GmbH) [File_System | System | Running] -- C:\Program Files (x86)\Mamutu\a2dix64.sys -- (a2injectiondriver)
DRV - [2011/11/02 09:13:12 | 000,063,880 | ---- | M] (Emsi Software GmbH) [File_System | On_Demand | Running] -- C:\PROGRAM FILES (X86)\MAMUTU\a2accx64.sys -- (a2acc)
DRV - [2010/05/05 07:40:54 | 000,014,720 | ---- | M] (Emsi Software GmbH) [Kernel | System | Running] -- C:\Program Files (x86)\Mamutu\a2util64.sys -- (a2util)
DRV - [2009/07/13 22:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = pt-br
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 39 29 50 C2 23 CF CC 01 [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {CCBEDAC6-9DE9-42CE-B64B-4C7BCE31F99E}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{CCBEDAC6-9DE9-42CE-B64B-4C7BCE31F99E}: "URL" = http://www.google.co...q={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========


FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_2_202_228.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_228.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Waterfox 10.0.2\extensions\\Components: C:\PROGRAM FILES\WATERFOX\COMPONENTS [2012/03/04 17:40:00 | 000,000,000 | ---D | M]
64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Waterfox 10.0.2\extensions\\Plugins: C:\PROGRAM FILES\WATERFOX\PLUGINS
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/02/17 10:53:19 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 10.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/02/17 10:53:19 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 10.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

[2012/01/18 15:53:42 | 000,000,000 | ---D | M] (No name found) -- C:\Users\usuario\AppData\Roaming\mozilla\Extensions
[2012/02/02 16:37:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\usuario\AppData\Roaming\mozilla\Firefox\Profiles\27q6mkm7.default\extensions
[2012/02/05 13:44:04 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
() (No name found) -- C:\PROGRAM FILES (X86)\HILLCREST LABS\KYLO\EXTENSIONS\{34685145-442A-4A29-A33E-AF4FFA3DDAEB}.XPI
() (No name found) -- C:\PROGRAM FILES (X86)\HILLCREST LABS\KYLO\EXTENSIONS\{448D473E-BEC6-11E0-8845-A93E4824019B}.XPI
[2012/02/17 10:53:19 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2011/11/03 03:59:20 | 000,917,816 | ---- | M] (BitComet) -- C:\Program Files (x86)\mozilla firefox\components\npBitCometAgent.dll
[2011/12/21 02:07:30 | 000,001,027 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\buscape.xml
[2011/12/21 02:07:30 | 000,001,212 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\mercadolivre.xml
[2011/12/21 01:46:39 | 000,002,040 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml
[2011/12/21 02:07:30 | 000,001,168 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-br.xml
[2011/12/21 02:07:30 | 000,000,952 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-br.xml

O1 HOSTS File: ([2012/04/06 14:37:44 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Arquivos de Programas\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
O2 - BHO: (BitComet Helper) - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Arquivos de Programas\BitComet\tools\BitCometBHO_1.5.4.11.dll (BitComet)
O4:64bit: - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cfp.exe (COMODO)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Windows Mobile-based device management] C:\Windows\WindowsMobile\wmdcBase.exe (Microsoft Corporation)
O4 - HKLM..\Run: [COMODO] C:\Arquivos de Programas\COMODO\COMODO GeekBuddy\CLPSLA.exe (COMODO)
O4 - HKLM..\Run: [CPA] C:\Arquivos de Programas\COMODO\COMODO GeekBuddy\VALA.exe (COMODO)
O4 - HKLM..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\vdeck.exe (VIA)
O4 - HKLM..\Run: [Mamutu Guard] C:\PROGRAM FILES (X86)\MAMUTU\mamutu.exe (Emsi Software GmbH)
O4 - HKCU..\Run: [OpenDNS Updater] C:\Program Files (x86)\OpenDNS Updater\OpenDNSUpdater.exe ()
O4 - HKLM..\RunOnce: [] File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8:64bit: - Extra context menu item: &B&aixar &com o BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O8:64bit: - Extra context menu item: &B&aixar tudo usando o BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O8:64bit: - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: &B&aixar &com o BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: &B&aixar tudo usando o BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found
O9 - Extra Button: Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll (BitComet)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Arquivos de Programas\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Arquivos de Programas\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O16 - DPF: {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} http://catalog.updat...b?1330003957278 (MUCatalogWebControl Class)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset...lineScanner.cab (OnlineScanner Control)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zon...nt.cab56907.cab (MessengerStatsClient Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E1B6422F-AAA9-4BD5-B06D-53414FAC90DA}: DhcpNameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18:64bit: - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Arquivos de Programas\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (PDBoot.exe)
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2012/04/10 12:29:00 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Virtual PC
[2012/04/10 12:29:00 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\zh-TW
[2012/04/10 12:29:00 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\zh-CN
[2012/04/10 12:29:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Virtual PC
[2012/04/10 12:29:00 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\tr-TR
[2012/04/10 12:29:00 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\th-TH
[2012/04/10 12:29:00 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\sv-SE
[2012/04/10 12:29:00 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\ru-RU
[2012/04/10 12:29:00 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\ro-RO
[2012/04/10 12:29:00 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\pt-PT
[2012/04/10 12:29:00 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\pl-PL
[2012/04/10 12:29:00 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\nl-NL
[2012/04/10 12:29:00 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\nb-NO
[2012/04/10 12:29:00 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\ko-KR
[2012/04/10 12:29:00 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\ja-JP
[2012/04/10 12:29:00 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\it-IT
[2012/04/10 12:29:00 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\hu-HU
[2012/04/10 12:29:00 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\he-IL
[2012/04/10 12:29:00 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\fr-FR
[2012/04/10 12:29:00 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\fi-FI
[2012/04/10 12:29:00 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\es-ES
[2012/04/10 12:29:00 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\el-GR
[2012/04/10 12:29:00 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\de-DE
[2012/04/10 12:29:00 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\da-DK
[2012/04/10 12:29:00 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\cs-CZ
[2012/04/10 12:29:00 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\ar-SA
[2012/04/08 16:08:11 | 000,000,000 | ---D | C] -- C:\Users\usuario\AppData\Roaming\OpenDNS Updater
[2012/04/08 16:08:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\OpenDNS Updater
[2012/04/08 11:11:42 | 000,000,000 | ---D | C] -- C:\ProgramData\CPA_VA
[2012/04/08 11:10:39 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\COMODO
[2012/04/07 21:05:02 | 000,000,000 | ---D | C] -- C:\UsbFix
[2012/04/07 17:20:56 | 000,000,000 | -H-D | C] -- C:\VritualRoot
[2012/04/07 16:32:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Comodo
[2012/04/07 16:32:09 | 000,000,000 | ---D | C] -- C:\Program Files\COMODO
[2012/04/07 16:31:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
[2012/04/07 16:31:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Comodo
[2012/04/07 12:35:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Raxco
[2012/04/07 12:35:03 | 000,000,000 | ---D | C] -- C:\Program Files\Raxco
[2012/04/07 12:35:03 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Raxco
[2012/04/06 16:53:41 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2012/04/06 14:40:11 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2012/04/06 14:40:11 | 000,000,000 | ---D | C] -- C:\Users\usuario\AppData\Local\temp
[2012/04/06 12:59:05 | 000,000,000 | ---D | C] -- C:\sdg
[2012/04/05 18:17:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ESET
[2012/04/05 14:05:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WebShot
[2012/04/05 14:05:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WebShot
[2012/04/04 19:15:20 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2012/04/04 19:15:20 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2012/04/04 19:15:20 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2012/04/04 19:14:39 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2012/04/04 19:13:59 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012/04/04 12:14:16 | 000,000,000 | ---D | C] -- C:\Users\usuario\AppData\Roaming\Dev-Cpp
[2012/04/04 12:14:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bloodshed Dev-C++
[2012/04/04 11:05:26 | 000,000,000 | ---D | C] -- C:\Users\usuario\AppData\Roaming\NuGet
[2012/04/04 11:03:38 | 000,000,000 | ---D | C] -- C:\Users\usuario\AppData\Roaming\ICSharpCode
[2012/04/02 11:14:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SharpDevelop
[2012/04/01 16:22:29 | 000,000,000 | ---D | C] -- C:\cygwin
[2012/04/01 12:47:10 | 000,000,000 | ---D | C] -- C:\Users\usuario\AppData\Local\Anolis
[2012/03/31 19:49:10 | 000,000,000 | ---D | C] -- C:\xcb
[2012/03/31 19:12:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Nokia
[2012/03/30 10:53:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab
[2012/03/30 10:00:05 | 000,000,000 | ---D | C] -- C:\Downloads
[2012/03/29 19:22:46 | 000,248,944 | ---- | C] (Windows ® Codename Longhorn DDK provider) -- C:\Windows\SysNative\Dts2APO.dll
[2012/03/29 11:42:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DFX Audio Enhancer
[2012/03/29 11:42:23 | 000,000,000 | ---D | C] -- C:\ProgramData\DFX
[2012/03/29 11:42:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DFX
[2012/03/29 11:42:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DFX
[2012/03/28 14:41:26 | 000,268,552 | ---- | C] (Raxco Software, Inc.) -- C:\Windows\SysNative\PDBoot.exe
[2012/03/26 18:01:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes
[2012/03/26 18:01:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Elaborate Bytes
[2012/03/25 17:44:50 | 000,000,000 | ---D | C] -- C:\Users\usuario\AppData\Roaming\Image-Line
[2012/03/25 17:32:52 | 000,000,000 | ---D | C] -- C:\Users\usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line
[2012/03/25 17:32:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image-Line
[2012/03/23 11:09:05 | 000,000,000 | ---D | C] -- C:\Users\usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flux
[2012/03/23 11:08:59 | 000,000,000 | ---D | C] -- C:\Users\usuario\Local Settings
[2012/03/23 10:54:42 | 000,000,000 | ---D | C] -- C:\Users\usuario\AppData\Roaming\Mp3tag
[2012/03/20 11:37:56 | 000,000,000 | ---D | C] -- C:\Users\usuario\AppData\Roaming\TeamViewer
[2012/03/18 17:29:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KGB Archiver 2
[2012/03/18 17:29:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\KGB Archiver 2
[2012/03/18 12:26:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\reFX
[2012/03/18 12:21:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\reFX
[2012/03/18 12:21:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Digidesign
[2012/03/18 12:21:32 | 002,440,704 | ---- | C] (AD © 2010) -- C:\Windows\SysWow64\SYNSOEMU.DLL
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/04/11 12:31:02 | 000,000,902 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012/04/11 12:04:20 | 000,014,416 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/04/11 12:04:20 | 000,014,416 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/04/11 11:59:01 | 000,001,070 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/04/11 11:56:55 | 000,001,066 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/04/11 11:56:48 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/04/11 11:56:45 | 2800,230,400 | -HS- | M] () -- C:\hiberfil.sys
[2012/04/10 12:36:49 | 001,628,652 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/04/10 12:36:49 | 000,704,740 | ---- | M] () -- C:\Windows\SysNative\prfh0416.dat
[2012/04/10 12:36:49 | 000,653,308 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/04/10 12:36:49 | 000,147,526 | ---- | M] () -- C:\Windows\SysNative\prfc0416.dat
[2012/04/10 12:36:49 | 000,122,240 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/04/08 19:31:09 | 000,000,929 | ---- | M] () -- C:\Users\usuario\Desktop\Counter Strike Source 2010.lnk
[2012/04/08 19:02:34 | 000,471,248 | ---- | M] () -- C:\Windows\SysNative\drivers\sfi.dat
[2012/04/07 16:35:34 | 000,000,032 | ---- | M] () -- C:\Windows\SysWow64\deck.ini
[2012/04/07 16:32:53 | 000,001,846 | ---- | M] () -- C:\Users\Public\Desktop\COMODO Internet Security.lnk
[2012/04/07 16:32:28 | 000,001,052 | ---- | M] () -- C:\Users\Public\Desktop\COMODO GeekBuddy.lnk
[2012/04/07 16:31:58 | 000,001,117 | ---- | M] () -- C:\Users\Public\Desktop\Comodo Dragon.lnk
[2012/04/07 12:35:12 | 000,002,031 | ---- | M] () -- C:\Users\Public\Desktop\PerfectDisk Free Defrag.lnk
[2012/04/06 14:37:44 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2012/04/02 19:37:19 | 000,001,908 | ---- | M] () -- C:\Windows\diagwrn.xml
[2012/04/02 19:37:19 | 000,001,908 | ---- | M] () -- C:\Windows\diagerr.xml
[2012/04/02 11:14:49 | 000,002,122 | ---- | M] () -- C:\Users\Public\Desktop\SharpDevelop 4.1.lnk
[2012/03/31 19:30:54 | 000,000,032 | ---- | M] () -- C:\Windows\0
[2012/03/29 11:42:23 | 000,001,738 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\DFX.lnk
[2012/03/29 11:42:23 | 000,001,702 | ---- | M] () -- C:\Users\Public\Desktop\DFX.lnk
[2012/03/28 14:41:26 | 000,268,552 | ---- | M] (Raxco Software, Inc.) -- C:\Windows\SysNative\PDBoot.exe
[2012/03/27 11:35:35 | 000,001,209 | ---- | M] () -- C:\Users\Public\Desktop\HD VDeck.lnk
[2012/03/27 11:33:51 | 000,001,746 | ---- | M] () -- C:\Windows\Language_trs.ini
[2012/03/26 11:01:38 | 000,000,384 | ---- | M] () -- C:\Windows\SysWow64\checkOS.bat
[2012/03/25 17:39:26 | 000,002,032 | ---- | M] () -- C:\Users\usuario\Desktop\IL Slicex.lnk
[2012/03/25 17:37:18 | 000,002,131 | ---- | M] () -- C:\Users\usuario\Desktop\Hardcore.lnk
[2012/03/25 17:37:01 | 000,002,009 | ---- | M] () -- C:\Users\usuario\Desktop\Edison.lnk
[2012/03/25 17:36:04 | 000,002,105 | ---- | M] () -- C:\Users\usuario\Desktop\Deckadance.lnk
[2012/03/25 17:32:59 | 000,001,153 | ---- | M] () -- C:\Users\Public\Desktop\FL Studio 10.lnk
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/04/10 20:16:02 | 2800,230,400 | -HS- | C] () -- C:\hiberfil.sys
[2012/04/08 19:31:09 | 000,000,929 | ---- | C] () -- C:\Users\usuario\Desktop\Counter Strike Source 2010.lnk
[2012/04/08 16:08:18 | 000,002,027 | ---- | C] () -- C:\Users\usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenDNS Updater.lnk
[2012/04/08 12:45:46 | 000,000,902 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012/04/07 16:35:25 | 000,471,248 | ---- | C] () -- C:\Windows\SysNative\drivers\sfi.dat
[2012/04/07 16:32:53 | 000,001,846 | ---- | C] () -- C:\Users\Public\Desktop\COMODO Internet Security.lnk
[2012/04/07 16:32:28 | 000,001,052 | ---- | C] () -- C:\Users\Public\Desktop\COMODO GeekBuddy.lnk
[2012/04/07 16:31:58 | 000,001,117 | ---- | C] () -- C:\Users\Public\Desktop\Comodo Dragon.lnk
[2012/04/07 12:35:12 | 000,002,073 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PerfectDisk Free Defrag.lnk
[2012/04/07 12:35:12 | 000,002,031 | ---- | C] () -- C:\Users\Public\Desktop\PerfectDisk Free Defrag.lnk
[2012/04/04 19:15:20 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2012/04/04 19:15:20 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2012/04/04 19:15:20 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2012/04/04 19:15:20 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2012/04/04 19:15:20 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2012/04/02 19:36:58 | 000,001,908 | ---- | C] () -- C:\Windows\diagwrn.xml
[2012/04/02 19:36:58 | 000,001,908 | ---- | C] () -- C:\Windows\diagerr.xml
[2012/04/02 11:14:49 | 000,002,134 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharpDevelop 4.1.lnk
[2012/04/02 11:14:49 | 000,002,122 | ---- | C] () -- C:\Users\Public\Desktop\SharpDevelop 4.1.lnk
[2012/04/01 12:52:36 | 000,000,000 | ---- | C] () -- C:\Windows\win61_iso
[2012/03/29 11:42:23 | 000,001,738 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\DFX.lnk
[2012/03/29 11:42:23 | 000,001,702 | ---- | C] () -- C:\Users\Public\Desktop\DFX.lnk
[2012/03/27 11:35:35 | 000,001,209 | ---- | C] () -- C:\Users\Public\Desktop\HD VDeck.lnk
[2012/03/27 11:33:51 | 000,001,746 | ---- | C] () -- C:\Windows\Language_trs.ini
[2012/03/26 11:01:46 | 000,000,032 | ---- | C] () -- C:\Windows\SysWow64\deck.ini
[2012/03/26 11:01:38 | 000,000,384 | ---- | C] () -- C:\Windows\SysWow64\checkOS.bat
[2012/03/25 17:39:26 | 000,002,032 | ---- | C] () -- C:\Users\usuario\Desktop\IL Slicex.lnk
[2012/03/25 17:37:18 | 000,002,131 | ---- | C] () -- C:\Users\usuario\Desktop\Hardcore.lnk
[2012/03/25 17:37:01 | 000,002,009 | ---- | C] () -- C:\Users\usuario\Desktop\Edison.lnk
[2012/03/25 17:36:04 | 000,002,105 | ---- | C] () -- C:\Users\usuario\Desktop\Deckadance.lnk
[2012/03/25 17:33:00 | 000,001,153 | ---- | C] () -- C:\Users\Public\Desktop\FL Studio 10.lnk
[2012/03/04 18:45:47 | 001,598,524 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/03/02 19:06:13 | 000,002,240 | ---- | C] () -- C:\Windows\LENDIG.sys
[2012/02/17 17:34:47 | 000,000,337 | ---- | C] () -- C:\Users\usuario\AppData\Local\Perfmon.PerfmonCfg
[2012/02/15 18:29:31 | 000,013,304 | ---- | C] () -- C:\Windows\SysWow64\drivers\BTNetFilter.sys
[2012/02/15 18:29:31 | 000,011,860 | ---- | C] () -- C:\Windows\SysWow64\drivers\VBTEnum.sys
[2012/01/31 10:02:10 | 000,221,184 | ---- | C] () -- C:\Windows\ToproUI.exe
[2012/01/25 12:00:48 | 000,007,601 | ---- | C] () -- C:\Users\usuario\AppData\Local\Resmon.ResmonCfg
[2012/01/24 18:19:15 | 000,205,904 | ---- | C] () -- C:\Windows\ADDONS SITECS (STEAM) Uninstaller.exe
[2012/01/24 10:58:54 | 000,000,053 | ---- | C] () -- C:\Users\usuario\AppData\Roaming\contatos.dat
[2012/01/12 20:59:09 | 000,000,654 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2011/12/24 21:34:37 | 000,145,804 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng600.bin
[2011/08/31 11:51:16 | 000,963,116 | ---- | C] () -- C:\Windows\SysWow64\igkrng600.bin
[2011/08/31 11:51:16 | 000,216,000 | ---- | C] () -- C:\Windows\SysWow64\igfcg600m.bin
[2011/08/31 11:46:00 | 000,056,832 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll
[2011/08/31 11:26:20 | 013,903,872 | ---- | C] () -- C:\Windows\SysWow64\ig4icd32.dll

========== LOP Check ==========

[2012/04/10 12:24:34 | 000,000,000 | ---D | M] -- C:\Users\usuario\AppData\Roaming\BitComet
[2012/03/04 12:27:26 | 000,000,000 | ---D | M] -- C:\Users\usuario\AppData\Roaming\DAZ 3D
[2012/04/04 12:45:20 | 000,000,000 | ---D | M] -- C:\Users\usuario\AppData\Roaming\Dev-Cpp
[2012/03/08 12:40:56 | 000,000,000 | ---D | M] -- C:\Users\usuario\AppData\Roaming\gtk-2.0
[2012/02/07 18:04:08 | 000,000,000 | ---D | M] -- C:\Users\usuario\AppData\Roaming\Hardcore
[2012/03/07 11:25:16 | 000,000,000 | ---D | M] -- C:\Users\usuario\AppData\Roaming\Hillcrest Labs
[2012/04/04 11:03:38 | 000,000,000 | ---D | M] -- C:\Users\usuario\AppData\Roaming\ICSharpCode
[2012/03/25 17:44:50 | 000,000,000 | ---D | M] -- C:\Users\usuario\AppData\Roaming\Image-Line
[2012/01/31 10:56:44 | 000,000,000 | ---D | M] -- C:\Users\usuario\AppData\Roaming\ManyCam
[2012/03/25 18:53:52 | 000,000,000 | ---D | M] -- C:\Users\usuario\AppData\Roaming\Mp3tag
[2012/04/04 11:05:26 | 000,000,000 | ---D | M] -- C:\Users\usuario\AppData\Roaming\NuGet
[2012/04/08 16:08:11 | 000,000,000 | ---D | M] -- C:\Users\usuario\AppData\Roaming\OpenDNS Updater
[2012/04/03 20:16:20 | 000,000,000 | ---D | M] -- C:\Users\usuario\AppData\Roaming\TeamViewer
[2012/02/25 11:17:31 | 000,032,586 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



< End of report >

The 64 bits version of IE works perfectly...
  • 0

Advertisements

#2
Meyer!
Posted 12 April 2012 - 03:44 PM

Meyer!

    New Member

  • Topic Starter
  • Member
  • Pip
  • 2 posts
UP!!!
  • 0

#3
Gammo
Posted 15 April 2012 - 05:51 AM

Gammo

    Member 2k

  • Malware Removal
  • 2,299 posts
Hello and welcome to Geekstogo!

We apologize for the delay in responding to your request for help.
If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine.

Please include a clear description of the problems you're having, along with any steps you may have performed so far.

Please refrain from running tools or applying updates other than those we suggest while we are cleaning up your computer. The reason for this is so we know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process.

If you haven't done so yet, please go to Malware and Spyware Cleaning Guide and follow the steps instructed there. If you have already done this, we still need a new log to see what has changed since you originally posted your problem.

We need to create an OTL Report
Download OTL to your Desktop
  • Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
  • Check the box that says Scan All Users.
  • Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
  • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
  • Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time and post them in your topic.

In the upper right hand corner of the topic you will see a button called Options. If you click on this in the drop-down menu you can choose Track this topic. I suggest you do this and select Immediate E-Mail notification and click on Proceed. This way you will be advised when we respond to your topic and facilitate the cleaning of your machine.

After 5 days if a topic is not replied to we assume it has been abandoned and it is closed.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP