Hi askey127.
OTL only shows one log. Here it is:
OTL logfile created on: 11-11-2010 16:35:28 - Run 3
OTL by OldTimer - Version 3.2.17.3 Folder = C:\Users\Pedro\Desktop
Windows Vista Home Premium Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6000.16711)
Locale: 00000816 | Country: Portugal | Language: PTG | Date Format: dd-MM-yyyy
3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 63,00% Memory free
6,00 Gb Paging File | 5,00 Gb Available in Paging File | 81,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 116,44 Gb Total Space | 4,19 Gb Free Space | 3,60% Space Free | Partition Type: NTFS
Drive D: | 108,63 Gb Total Space | 9,92 Gb Free Space | 9,13% Space Free | Partition Type: NTFS
Computer Name: ASUSX53SA-AP138 | User Name: Pedro | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ========== PRC - [2010-11-11 16:34:17 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Pedro\Desktop\OTL.exe
PRC - [2010-03-04 22:38:00 | 000,071,096 | ---- | M] () -- C:\Software\CDBurnerXP\NMSAccessU.exe
PRC - [2008-09-23 02:26:02 | 002,923,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008-08-29 13:58:16 | 001,528,608 | ---- | M] (Cisco Systems, Inc.) -- C:\Software\Cisco Systems VPN\cvpnd.exe
PRC - [2008-02-03 12:43:11 | 000,033,136 | ---- | M] () -- C:\Windows\ASScrPro.exe
PRC - [2008-02-03 11:07:43 | 001,006,264 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe
PRC - [2007-11-30 19:20:44 | 000,051,768 | ---- | M] () -- C:\Program Files\ASUS\ASUS Live Update\ALU.exe
PRC - [2007-10-24 02:02:15 | 000,358,936 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
PRC - [2007-10-24 02:02:13 | 000,178,712 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANOTIF.EXE
PRC - [2007-09-03 10:39:21 | 004,702,208 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
PRC - [2007-09-01 01:38:12 | 000,180,224 | ---- | M] (ATK) -- C:\Program Files\P4G\BatteryLife.exe
PRC - [2007-08-08 08:08:40 | 000,094,208 | ---- | M] () -- C:\Program Files\ATKGFNEX\GFNEXSrv.exe
PRC - [2007-08-03 20:24:54 | 000,125,496 | ---- | M] () -- C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
PRC - [2007-07-10 18:59:56 | 000,851,968 | ---- | M] (ATK) -- C:\Program Files\ASUS\Splendid\ACMON.exe
PRC - [2007-05-18 10:31:16 | 000,073,728 | ---- | M] () -- C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
PRC - [2007-04-19 19:32:08 | 000,225,280 | ---- | M] (ATK0100) -- C:\Program Files\ATK Hotkey\Hcontrol.exe
PRC - [2007-04-17 21:39:42 | 000,077,824 | ---- | M] () -- C:\Program Files\ATK Hotkey\KBFiltr.exe
PRC - [2007-02-06 02:13:14 | 000,094,208 | ---- | M] () -- C:\Program Files\ATK Hotkey\ASLDRSrv.exe
PRC - [2007-01-18 03:26:36 | 007,708,672 | ---- | M] () -- C:\Program Files\ATKOSD2\ATKOSD2.exe
PRC - [2006-12-21 07:03:38 | 001,036,288 | ---- | M] () -- C:\Program Files\Wireless Console 2\wcourier.exe
PRC - [2006-12-19 01:26:26 | 002,420,736 | ---- | M] () -- C:\Program Files\ATK Hotkey\ATKOSD.exe
PRC - [2006-11-02 16:27:32 | 000,061,440 | ---- | M] (ASUSTeK Computer INC.) -- C:\Program Files\ASUS\ATK Media\DMedia.exe
PRC - [2006-08-11 10:15:36 | 000,200,704 | ---- | M] (InterVideo Inc.) -- C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe
PRC - [2005-07-06 23:43:42 | 000,155,648 | ---- | M] (ASUSTeK) -- C:\Windows\System32\ACEngSvr.exe
========== Modules (SafeList) ========== MOD - [2010-11-11 16:34:17 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Pedro\Desktop\OTL.exe
MOD - [2006-11-02 09:38:57 | 001,648,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll
========== Win32 Services (SafeList) ========== SRV - File not found [Disabled | Stopped] -- C:\Software\VIDEOT~1\Codecs\STORMC~1\Stormser.exe -- (Stormser)
SRV - File not found [On_Demand | Stopped] -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService)
SRV - File not found [Auto | Stopped] -- C:\Software\Video tools\Codecs\Storm Codec\stormliv.exe -- (ccosm)
SRV - [2010-05-08 16:04:02 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010-03-04 22:38:00 | 000,071,096 | ---- | M] () [Auto | Running] -- C:\Software\CDBurnerXP\NMSAccessU.exe -- (NMSAccess)
SRV - [2008-08-29 13:58:16 | 001,528,608 | ---- | M] (Cisco Systems, Inc.) [Auto | Running] -- C:\Software\Cisco Systems VPN\cvpnd.exe -- (CVPND)
SRV - [2008-05-24 20:43:11 | 000,306,432 | ---- | M] (TuneUp Software GmbH) [On_Demand | Stopped] -- C:\Windows\System32\TuneUpDefragService.exe -- (TuneUp.Defrag)
SRV - [2008-02-03 11:07:43 | 000,265,912 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
SRV - [2007-12-20 09:41:56 | 000,029,440 | ---- | M] (TuneUp Software GmbH) [Auto | Running] -- C:\Windows\System32\uxtuneup.dll -- (UxTuneUp)
SRV - [2007-10-24 02:02:15 | 000,358,936 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe -- (IAANTMON) Intel(R)
SRV - [2007-08-08 08:08:40 | 000,094,208 | ---- | M] () [Auto | Running] -- C:\Program Files\ATKGFNEX\GFNEXSrv.exe -- (ATKGFNEXSrv)
SRV - [2007-08-03 20:24:54 | 000,125,496 | ---- | M] () [Auto | Running] -- C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe -- (spmgr)
SRV - [2007-05-24 10:13:50 | 000,036,955 | ---- | M] (Check Point Software Technologies) [Disabled | Stopped] -- C:\Program Files\CheckPoint\SecuRemote\bin\SR_Watchdog.exe -- (SR_Watchdog)
SRV - [2007-05-24 10:13:48 | 000,106,586 | ---- | M] (Check Point Software Technologies) [Disabled | Stopped] -- C:\Program Files\CheckPoint\SecuRemote\bin\SR_Service.exe -- (SR_Service)
SRV - [2007-05-18 10:31:16 | 000,073,728 | ---- | M] () [Auto | Running] -- C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe -- (ADSMService)
SRV - [2007-02-06 02:13:14 | 000,094,208 | ---- | M] () [Auto | Running] -- C:\Program Files\ATK Hotkey\ASLDRSrv.exe -- (ASLDRService)
SRV - [2006-08-11 10:15:36 | 000,200,704 | ---- | M] (InterVideo Inc.) [Auto | Running] -- C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe -- (Capture Device Service)
========== Driver Services (SafeList) ========== DRV - File not found [Kernel | System | Stopped] -- C:\Windows\System32\DRIVERS\VClone.sys -- (VClone)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [File_System | Boot | Stopped] -- C:\Windows\System32\drivers\dwprot.sys -- (DwProt)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\Pedro\AppData\Local\Temp\catchme.sys -- (catchme)
DRV - File not found [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\blbdrive.sys -- (blbdrive)
DRV - [2010-05-10 18:41:30 | 000,067,656 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Software\PC Health\SUPERAntiSpyware Free Edition\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2010-02-17 18:25:48 | 000,012,872 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Software\PC Health\SUPERAntiSpyware Free Edition\sasdifsv.sys -- (SASDIFSV)
DRV - [2010-02-03 14:56:56 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hamachi.sys -- (hamachi)
DRV - [2009-11-12 13:48:56 | 000,007,168 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2009-10-22 12:54:18 | 000,037,392 | ---- | M] (Kaspersky Lab) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\65050172.sys -- (65050172)
DRV - [2009-10-09 22:31:02 | 000,311,312 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\Windows\System32\drivers\6505017.sys -- (setup_9.0.0.722_28.10.2010_22-08 Kaspersky virus removaldrv)
DRV - [2009-09-25 16:59:42 | 000,128,016 | ---- | M] (Kaspersky Lab) [Kernel | System | Running] -- C:\Windows\System32\drivers\65050171.sys -- (65050171)
DRV - [2009-05-28 11:28:56 | 000,721,904 | ---- | M] (Duplex Secure Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\sptd.sys -- (sptd)
DRV - [2008-08-29 13:57:18 | 000,306,299 | ---- | M] (Cisco Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\CVPNDRVA.sys -- (CVPNDRVA)
DRV - [2008-03-29 17:36:28 | 000,125,328 | ---- | M] (Deterministic Networks, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\dne2000.sys -- (DNE)
DRV - [2007-10-02 11:53:01 | 000,220,696 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\iaNvStor.sys -- (iaNvStor) Intel(R)
DRV - [2007-10-01 06:59:45 | 001,769,984 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\snp2uvc.sys -- (SNP2UVC) USB2.0 PC Camera (SNP2UVC)
DRV - [2007-09-29 15:03:11 | 000,308,248 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\iaStor.sys -- (iaStor)
DRV - [2007-09-05 09:36:25 | 001,953,944 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2007-08-29 16:38:59 | 000,046,080 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\l160x86.sys -- (AtcL001)
DRV - [2007-08-11 04:19:26 | 000,029,752 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [File_System | Boot | Running] -- C:\Windows\System32\drivers\AsDsm.sys -- (AsDsm)
DRV - [2007-08-03 04:26:21 | 000,020,936 | ---- | M] () [Kernel | Auto | Running] -- C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys -- (ghaio)
DRV - [2007-07-24 19:09:04 | 000,013,880 | ---- | M] () [Kernel | Auto | Running] -- C:\Program Files\ATKGFNEX\ASMMAP.sys -- (ASMMAP)
DRV - [2007-06-20 20:51:27 | 002,222,080 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NETw4v32.sys -- (NETw4v32) Intel(R)
DRV - [2007-06-13 07:28:11 | 002,600,448 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2007-05-24 10:13:58 | 000,036,368 | ---- | M] (Check Point Software Technologies) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\omdrv.sys -- (CP_OMDRV)
DRV - [2007-05-24 10:13:54 | 002,234,800 | ---- | M] (Check Point Software Technologies) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\fw.sys -- (FW1)
DRV - [2007-05-24 10:13:52 | 000,110,032 | ---- | M] (Check Point Software Technologies) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\vnasc.sys -- (VNASC)
DRV - [2007-05-24 10:13:50 | 000,673,456 | ---- | M] (Check Point Software Technologies) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\vpn.sys -- (VPN-1)
DRV - [2007-04-11 16:18:33 | 000,048,000 | ---- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\jraid.sys -- (JRAID)
DRV - [2007-03-21 14:02:03 | 000,037,376 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rixdptsk.sys -- (rismxdp)
DRV - [2007-03-01 13:24:29 | 000,182,456 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SynTP.sys -- (SynTP)
DRV - [2007-02-24 06:42:21 | 000,039,936 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rimmptsk.sys -- (rimmptsk)
DRV - [2007-01-24 10:08:39 | 000,005,632 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\kbfiltr.sys -- (kbfiltr)
DRV - [2007-01-23 08:40:19 | 000,042,496 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rimsptsk.sys -- (rimsptsk)
DRV - [2007-01-18 18:28:02 | 000,005,275 | ---- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\CVirtA.sys -- (CVirtA)
DRV - [2006-12-14 07:11:57 | 000,007,680 | ---- | M] (ATK0100) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ATKACPI.sys -- (MTsensor)
DRV - [2006-11-22 09:34:59 | 000,982,272 | ---- | M] (Motorola Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\smserial.sys -- (smserial)
DRV - [2006-11-02 09:51:45 | 000,900,712 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300)
DRV - [2006-11-02 09:51:38 | 000,420,968 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx)
DRV - [2006-11-02 09:51:34 | 000,316,520 | ---- | M] (Emulex) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor)
DRV - [2006-11-02 09:51:32 | 000,297,576 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci)
DRV - [2006-11-02 09:51:25 | 000,235,112 | ---- | M] (ULi Electronics Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci)
DRV - [2006-11-02 09:51:25 | 000,232,040 | ---- | M] (Intel Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV)
DRV - [2006-11-02 09:51:00 | 000,147,048 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320)
DRV - [2006-11-02 09:50:45 | 000,115,816 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2)
DRV - [2006-11-02 09:50:41 | 000,112,232 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid)
DRV - [2006-11-02 09:50:35 | 000,106,088 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx)
DRV - [2006-11-02 09:50:35 | 000,098,408 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata)
DRV - [2006-11-02 09:50:35 | 000,098,408 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m)
DRV - [2006-11-02 09:50:24 | 000,088,680 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid)
DRV - [2006-11-02 09:50:19 | 000,045,160 | ---- | M] (IBM Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960)
DRV - [2006-11-02 09:50:17 | 000,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp)
DRV - [2006-11-02 09:50:17 | 000,041,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tpm.sys -- (TPM)
DRV - [2006-11-02 09:50:16 | 000,071,784 | ---- | M] (Silicon Integrated Systems) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4)
DRV - [2006-11-02 09:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor)
DRV - [2006-11-02 09:50:11 | 000,071,272 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx)
DRV - [2006-11-02 09:50:10 | 000,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas)
DRV - [2006-11-02 09:50:10 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2006-11-02 09:50:10 | 000,038,504 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid2.sys -- (SiSRaid2)
DRV - [2006-11-02 09:50:10 | 000,037,480 | ---- | M] (Hewlett-Packard Company) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs)
DRV - [2006-11-02 09:50:09 | 000,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arc.sys -- (arc)
DRV - [2006-11-02 09:50:09 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid)
DRV - [2006-11-02 09:50:07 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi)
DRV - [2006-11-02 09:50:05 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS)
DRV - [2006-11-02 09:50:05 | 000,035,944 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx)
DRV - [2006-11-02 09:50:04 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC)
DRV - [2006-11-02 09:50:03 | 000,034,920 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3)
DRV - [2006-11-02 09:49:59 | 000,033,384 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x)
DRV - [2006-11-02 09:49:56 | 000,031,848 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi)
DRV - [2006-11-02 09:49:53 | 000,028,776 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\megasas.sys -- (megasas)
DRV - [2006-11-02 09:49:30 | 000,017,512 | ---- | M] (VIA Technologies, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\viaide.sys -- (viaide)
DRV - [2006-11-02 09:49:28 | 000,016,488 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide)
DRV - [2006-11-02 09:49:20 | 000,014,952 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\aliide.sys -- (aliide)
DRV - [2006-11-02 08:25:24 | 000,071,808 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2006-11-02 08:24:47 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer)
DRV - [2006-11-02 08:24:46 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp)
DRV - [2006-11-02 08:24:45 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo)
DRV - [2006-11-02 08:24:44 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm)
DRV - [2006-11-02 08:24:44 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm)
DRV - [2006-11-02 07:36:50 | 000,020,608 | ---- | M] (N-trig Innovative Technologies) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi)
DRV - [2006-11-02 07:30:56 | 000,044,544 | ---- | M] (Realtek Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2006-11-02 07:30:54 | 001,781,760 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NETw3v32.sys -- (NETw3v32) Intel(R)
DRV - [2006-11-02 07:30:54 | 000,117,760 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\E1G60I32.sys -- (E1G60) Intel(R)
DRV - [2006-10-19 02:10:57 | 001,380,864 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\igdkmd32.sys -- (ialm)
DRV - [2006-02-07 11:52:57 | 000,006,912 | ---- | M] (JMicron ) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\JGOGO.sys -- (JGOGO)
DRV - [2004-06-21 15:03:22 | 000,078,976 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\MarvinBus.sys -- (MarvinBus)
DRV - [2002-03-19 09:29:16 | 000,014,165 | ---- | M] (Pinnacle Systems GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\Pclepci.sys -- (PCLEPCI)
========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://www.asus.comIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://www.gmail.com/IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook: CFBFAE00-17A6-11D0-99CB-00C04FD64497} - Reg Error: Key error. File not found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = proxy.ipatimup.pt:8000
========== FireFox ========== FF - prefs.js..extensions.enabledItems:
personas@christopher.beard:1.5.3
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..network.proxy.http: "proxy.ipatimup.pt"
FF - prefs.js..network.proxy.http_port: 8000
FF - prefs.js..network.proxy.no_proxies_on: "localhost, 127.0.0.1,
www.ipatimup.pt"
FF - prefs.js..network.proxy.type: 4
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.10\extensions\\Components: C:\Software\Mozila Firefox\components [2010-09-22 14:29:23 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.10\extensions\\Plugins: C:\Software\Mozila Firefox\plugins [2010-09-22 15:19:05 | 000,000,000 | ---D | M]
[2008-09-23 19:01:59 | 000,000,000 | ---D | M] -- C:\Users\Pedro\AppData\Roaming\mozilla\Extensions
[2010-11-11 10:39:34 | 000,000,000 | ---D | M] -- C:\Users\Pedro\AppData\Roaming\mozilla\Firefox\Profiles\e86zdmoy.default\extensions
[2010-06-11 17:07:54 | 000,000,000 | ---D | M] -- C:\Users\Pedro\AppData\Roaming\mozilla\Firefox\Profiles\e86zdmoy.default\extensions\personas@christopher.beard
O1 HOSTS File: ([2010-09-20 21:23:39 | 000,419,366 | R--- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O1 - Hosts: 127.0.0.1
www.007guard.comO1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1
www.008k.comO1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1
www.00hq.comO1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1
www.032439.comO1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1
www.0scan.comO1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1
www.1000gratisproben.comO1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1
www.1001namen.comO1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1
www.100888290cs.comO1 - Hosts: 127.0.0.1
www.100sexlinks.comO1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1
www.10sek.comO1 - Hosts: 127.0.0.1
www.1-2005-search.comO1 - Hosts: 14473 more lines...
O2 - BHO: (Facilitador de Leitor de Link Adobe PDF) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll File not found
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Software\PC Health\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL (Microsoft Corporation)
O4 - HKLM..\Run: [ASUS Camera ScreenSaver] C:\Windows\ASScrProlog.exe ()
O4 - HKLM..\Run: [ASUS Screen Saver Protector] C:\Windows\ASScrPro.exe ()
O4 - HKLM..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMEDIA.EXE (ASUSTeK Computer INC.)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe (Intel Corporation)
O4 - HKLM..\Run: [IaNvSrv] C:\Program Files\Intel\Intel Matrix Storage Manager\OROM\IaNvSrv\IaNvSrv.exe (Intel Corporation)
O4 - HKLM..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe ()
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Skytel] C:\Windows\SkyTel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe ()
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\RunOnce: [FlashPlayerUpdate] C:\Windows\System32\Macromed\Flash\FlashUtil10k_Plugin.exe (Adobe Systems, Inc.)
O4 - Startup: C:\Users\Pedro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\setup_9.0.0.722_28.10.2010_22-08 Kaspersky virus removal.lnk = C:\Software\PC Health\Virus Removal Tool\setup_9.0.0.722_28.10.2010_22-08 Kaspersky virus removal\startup.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideFastUserSwitching = 1
O9 - Extra Button: Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Software\PC Health\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}
http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.2 192.168.254.2
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Pedro\AppData\Roaming\Microsoft\Windows Photo Gallery\Fundo da Galeria de Fotografias do Windows.jpg
O24 - Desktop BackupWallPaper: C:\Users\Pedro\AppData\Roaming\Microsoft\Windows Photo Gallery\Fundo da Galeria de Fotografias do Windows.jpg
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: UxTuneUp - C:\Windows\System32\uxtuneup.dll (TuneUp Software GmbH)
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - File not found
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
Drivers32: msacm.ac3acm - C:\Windows\System32\ac3acm.acm (fccHandler)
Drivers32: msacm.ac3filter - C:\Windows\System32\ac3filter.acm ()
Drivers32: msacm.avis - C:\Windows\System32\ff_acm.acm ()
Drivers32: msacm.divxa32 - C:\Windows\System32\divxa32.acm (Kristal StudioDFileDescription)
Drivers32: msacm.dvacm - C:\PROGRA~1\COMMON~1\ULEADS~1\vio\dvacm.acm File not found
Drivers32: msacm.iac2 - C:\Windows\System32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3fhg - C:\Windows\System32\mp3fhg.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - C:\Windows\System32\lameACM.acm (
http://www.mp3dev.org/)
Drivers32: msacm.vorbis - C:\Windows\System32\vorbis.acm (HMS
http://hp.vector.co.jp/authors/VA012897/)
Drivers32: msacm.voxacm160 - C:\Windows\System32\vct3216.acm (Voxware, Inc.)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\Windows\System32\DivX.dll (DivX, Inc.)
Drivers32: vidc.ffds - C:\Windows\System32\ff_vfw.dll ()
Drivers32: vidc.FLV4 - C:\Windows\System32\vp6vfw.dll (On2.com)
Drivers32: VIDC.HFYU - C:\Windows\System32\huffyuv.dll (Disappearing Inc.)
Drivers32: vidc.i263 - C:\Windows\System32\I263_32.drv (Intel Corporation)
Drivers32: vidc.iv31 - C:\Windows\System32\ir32_32.dll (Intel(R) Corporation)
Drivers32: vidc.iv32 - C:\Windows\System32\ir32_32.dll (Intel(R) Corporation)
Drivers32: vidc.iv41 - C:\Windows\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\Windows\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.uldx - C:\Software\VIDEOT~1\ULEADS~1\ULEADD~1\ULEADD~1\DivX_UL.dll File not found
Drivers32: vidc.VP60 - C:\Windows\System32\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - C:\Windows\System32\vp6vfw.dll (On2.com)
Drivers32: vidc.VP62 - C:\Windows\System32\vp6vfw.dll (On2.com)
Drivers32: vidc.VP6F - C:\Windows\System32\vp6vfw.dll (On2.com)
Drivers32: vidc.vp70 - C:\Windows\System32\vp7vfw.dll (On2.com)
Drivers32: VIDC.WMV3 - C:\Windows\System32\wmv9vcm.dll (Microsoft Corporation)
Drivers32: VIDC.X264 - C:\Windows\System32\x264vfw.dll ()
Drivers32: vidc.XVID - C:\Windows\System32\xvidvfw.dll ()
Drivers32: VIDC.YV12 - C:\Windows\System32\DivX.dll (DivX, Inc.)
Drivers32: wave1 - C:\Windows\System32\serwvdrv.dll (Microsoft Corporation)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
========== Files/Folders - Created Within 30 Days ========== [2010-11-11 16:34:14 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Users\Pedro\Desktop\OTL.exe
[2010-11-10 13:13:45 | 000,000,000 | ---D | C] -- C:\Users\Pedro\Desktop\5 days 26º C
[2010-11-08 09:17:04 | 000,000,000 | ---D | C] -- C:\Users\Pedro\Desktop\Asp e Cand
[2010-11-07 19:23:23 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2010-11-03 16:56:12 | 000,000,000 | ---D | C] -- C:\Users\Pedro\Desktop\Figs
[2010-11-02 10:37:42 | 000,000,000 | ---D | C] -- C:\Users\Pedro\DoctorWeb
[2010-11-01 20:58:15 | 000,000,000 | ---D | C] -- C:\Users\Pedro\Desktop\SPSS.13+Patch
[2010-10-29 21:54:54 | 000,311,312 | ---- | C] (Kaspersky Lab) -- C:\Windows\System32\drivers\6505017.sys
[2010-10-29 21:54:54 | 000,128,016 | ---- | C] (Kaspersky Lab) -- C:\Windows\System32\drivers\65050171.sys
[2010-10-29 21:54:54 | 000,037,392 | ---- | C] (Kaspersky Lab) -- C:\Windows\System32\drivers\65050172.sys
[2010-10-29 21:51:04 | 082,090,552 | ---- | C] ( ) -- C:\Users\Pedro\Desktop\setup_9.0.0.722_28.10.2010_22-08 Kaspersky virus removal.exe
[2010-10-29 13:32:32 | 000,000,000 | ---D | C] -- C:\Users\Pedro\Desktop\casa
[2010-10-28 18:57:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab
[2010-10-28 15:09:56 | 000,000,000 | ---D | C] -- C:\Users\Pedro\Desktop\Microarrays Neurospora
[2010-10-27 19:44:40 | 000,000,000 | ---D | C] -- C:\_OTL
[2010-10-25 11:18:57 | 000,000,000 | ---D | C] -- C:\usr
[2010-10-25 11:16:47 | 000,000,000 | ---D | C] -- C:\Program Files\UTAX TA
[2010-10-25 11:15:22 | 000,100,580 | ---- | C] (KYOCERA MITA Corporation) -- C:\Windows\System32\KMPJLMN.DLL
[2010-10-24 17:33:18 | 000,212,480 | ---- | C] (SteelWerX) -- C:\Windows\SWXCACLS.exe
[2010-10-24 17:33:18 | 000,161,792 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2010-10-24 17:33:18 | 000,136,704 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2010-10-24 17:33:18 | 000,031,232 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2010-10-21 09:30:02 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2010-10-21 09:19:48 | 000,000,000 | ---D | C] -- C:\Qoobox
[2009-07-09 14:36:31 | 005,079,326 | ---- | C] (MRC-Holland) -- C:\Program Files\Coffalyser v8.exe
[2008-09-22 20:56:33 | 000,047,360 | ---- | C] (VSO Software) -- C:\Users\Pedro\AppData\Roaming\pcouffin.sys
[2007-01-24 10:08:39 | 000,005,632 | ---- | C] ( ) -- C:\Windows\System32\drivers\kbfiltr.sys
[6 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ]
[6 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ]
[3 C:\Users\Pedro\*.tmp files -> C:\Users\Pedro\*.tmp -> ]
========== Files - Modified Within 30 Days ========== [2010-11-11 16:34:17 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Pedro\Desktop\OTL.exe
[2010-11-11 16:19:02 | 000,003,072 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010-11-11 16:19:02 | 000,003,072 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010-11-11 16:09:00 | 000,001,032 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2553703031-1697210116-371060287-1000UA.job
[2010-11-11 14:09:04 | 000,000,980 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2553703031-1697210116-371060287-1000Core.job
[2010-11-11 09:23:49 | 000,524,088 | ---- | M] () -- C:\Windows\System32\prfh0816.dat
[2010-11-11 09:23:49 | 000,087,352 | ---- | M] () -- C:\Windows\System32\prfc0816.dat
[2010-11-11 09:23:48 | 000,613,046 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010-11-11 09:23:48 | 000,104,768 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010-11-11 09:18:58 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010-11-10 17:51:27 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2010-11-09 20:12:17 | 053,123,856 | ---- | M] () -- C:\Users\Pedro\Desktop\avira_antivir_personal_en.exe
[2010-11-09 20:01:06 | 000,045,056 | ---- | M] () -- C:\Windows\System32\acovcnt.exe
[2010-11-09 15:42:45 | 000,002,684 | ---- | M] () -- C:\Users\Pedro\.jalview_properties
[2010-11-09 15:41:09 | 000,017,372 | ---- | M] () -- C:\Program Files\BioEdit.ini
[2010-11-09 11:52:20 | 000,020,992 | ---- | M] () -- C:\Users\Pedro\Desktop\Contas_Apart_Porto.xls
[2010-11-09 11:41:22 | 000,006,439 | ---- | M] () -- C:\Users\Pedro\AppData\Roaming\PrimoPDFSet.xml
[2010-11-09 09:59:12 | 319,728,738 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2010-11-08 09:48:16 | 000,058,524 | ---- | M] () -- C:\Users\Pedro\Desktop\Yanai_Mellor_DeLisi_TIG_2002.pdf
[2010-11-07 11:35:34 | 000,184,320 | ---- | M] () -- C:\Users\Pedro\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-11-05 17:48:18 | 000,000,386 | ---- | M] () -- C:\Windows\tasks\1-Click Maintenance.job
[2010-11-04 19:49:36 | 000,039,936 | ---- | M] () -- C:\Users\Pedro\Desktop\MSchecklist.doc
[2010-11-03 13:47:14 | 000,000,680 | ---- | M] () -- C:\Users\Pedro\AppData\Local\d3d9caps.dat
[2010-11-02 12:19:29 | 000,012,126 | ---- | M] () -- C:\Users\Pedro\Desktop\revistas SOV.docx
[2010-11-01 18:13:32 | 000,027,178 | ---- | M] () -- C:\Users\Pedro\Desktop\which is a dose shown to block RET.docx
[2010-10-29 21:55:44 | 000,002,724 | ---- | M] () -- C:\Users\Pedro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\setup_9.0.0.722_28.10.2010_22-08 Kaspersky virus removal.lnk
[2010-10-29 21:48:28 | 000,015,813 | ---- | M] () -- C:\Users\Pedro\Desktop\Apoptosis decision.docx
[2010-10-29 14:29:31 | 000,290,727 | ---- | M] () -- C:\Users\Pedro\Desktop\bi061441j.pdf
[2010-10-29 13:29:04 | 000,365,427 | ---- | M] () -- C:\Users\Pedro\Desktop\10 J Cell Phys, Tyrosine Phosphorylation Modulates Store-operated Calcium Entry in Cultured Rat.pdf
[2010-10-28 18:47:54 | 082,090,552 | ---- | M] ( ) -- C:\Users\Pedro\Desktop\setup_9.0.0.722_28.10.2010_22-08 Kaspersky virus removal.exe
[2010-10-25 20:48:52 | 001,852,848 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2010-10-25 09:34:16 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010-10-25 09:34:16 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[6 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ]
[6 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ]
[3 C:\Users\Pedro\*.tmp files -> C:\Users\Pedro\*.tmp -> ]
========== Files Created - No Company Name ========== [2010-11-09 20:07:05 | 053,123,856 | ---- | C] () -- C:\Users\Pedro\Desktop\avira_antivir_personal_en.exe
[2010-11-08 09:48:16 | 000,058,524 | ---- | C] () -- C:\Users\Pedro\Desktop\Yanai_Mellor_DeLisi_TIG_2002.pdf
[2010-11-07 14:18:46 | 000,020,992 | ---- | C] () -- C:\Users\Pedro\Desktop\Contas_Apart_Porto.xls
[2010-11-04 19:49:35 | 000,039,936 | ---- | C] () -- C:\Users\Pedro\Desktop\MSchecklist.doc
[2010-11-02 12:19:29 | 000,012,126 | ---- | C] () -- C:\Users\Pedro\Desktop\revistas SOV.docx
[2010-11-01 18:13:31 | 000,027,178 | ---- | C] () -- C:\Users\Pedro\Desktop\which is a dose shown to block RET.docx
[2010-10-29 21:55:44 | 000,002,724 | ---- | C] () -- C:\Users\Pedro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\setup_9.0.0.722_28.10.2010_22-08 Kaspersky virus removal.lnk
[2010-10-29 21:48:28 | 000,015,813 | ---- | C] () -- C:\Users\Pedro\Desktop\Apoptosis decision.docx
[2010-10-29 14:29:31 | 000,290,727 | ---- | C] () -- C:\Users\Pedro\Desktop\bi061441j.pdf
[2010-10-29 13:29:04 | 000,365,427 | ---- | C] () -- C:\Users\Pedro\Desktop\10 J Cell Phys, Tyrosine Phosphorylation Modulates Store-operated Calcium Entry in Cultured Rat.pdf
[2010-10-25 09:34:16 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2010-10-25 09:34:16 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2010-10-24 18:19:17 | 000,001,593 | ---- | C] () -- C:\Users\Pedro\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2010-10-24 17:33:18 | 000,256,512 | ---- | C] () -- C:\Windows\PEV.exe
[2010-10-24 17:33:18 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2010-10-24 17:33:18 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2010-10-24 17:33:18 | 000,077,312 | ---- | C] () -- C:\Windows\MBR.exe
[2010-10-24 17:33:18 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2010-06-19 01:06:20 | 000,000,678 | ---- | C] () -- C:\ProgramData\tmpE350.log
[2010-05-02 14:23:05 | 000,007,168 | ---- | C] () -- C:\Windows\System32\drivers\StarOpen.sys
[2010-05-02 13:27:57 | 000,001,936 | ---- | C] () -- C:\Windows\System32\nethasp.ini
[2010-03-21 01:08:09 | 002,392,064 | ---- | C] () -- C:\Windows\System32\videotrans.dll
[2010-03-21 01:08:09 | 000,215,040 | ---- | C] () -- C:\Windows\System32\videoformat.dll
[2010-03-21 01:08:09 | 000,017,920 | ---- | C] () -- C:\Windows\System32\videocore.dll
[2010-03-21 01:08:08 | 000,061,440 | ---- | C] () -- C:\Windows\System32\imgscaler.dll
[2010-03-21 01:08:08 | 000,022,016 | ---- | C] () -- C:\Windows\System32\img_utils.dll
[2010-02-15 16:32:16 | 000,000,648 | ---- | C] () -- C:\ProgramData\tmpB02E.log
[2009-11-22 19:10:14 | 000,000,248 | ---- | C] () -- C:\Windows\chromas.ini
[2009-07-04 13:08:25 | 000,000,693 | ---- | C] () -- C:\ProgramData\tmpDA38.log
[2009-05-28 09:11:26 | 000,000,006 | -HS- | C] () -- C:\ProgramData\.SSysID
[2009-05-28 09:11:26 | 000,000,006 | -HS- | C] () -- C:\Users\Pedro\AppData\Local\.BSysID
[2009-05-04 00:05:19 | 000,000,163 | ---- | C] () -- C:\Windows\STATVIEW.INI
[2009-04-27 11:56:22 | 000,037,888 | ---- | C] () -- C:\Windows\System32\el379ux.dll
[2009-04-27 11:56:22 | 000,001,025 | ---- | C] () -- C:\Windows\System32\grcauth2.dll
[2009-04-27 11:56:22 | 000,001,025 | ---- | C] () -- C:\Windows\System32\grcauth1.dll
[2009-04-27 11:56:22 | 000,000,204 | ---- | C] () -- C:\Windows\System32\wgezc24.dll
[2009-04-27 11:56:22 | 000,000,100 | ---- | C] () -- C:\Windows\System32\prsgrc.dll
[2009-04-27 11:56:19 | 000,000,016 | -H-- | C] () -- C:\Windows\System32\mb6a5lr.dll
[2009-04-19 01:32:06 | 000,000,753 | ---- | C] () -- C:\ProgramData\tmp943A.log
[2009-03-01 11:35:02 | 000,000,723 | ---- | C] () -- C:\ProgramData\tmpE994.log
[2009-01-17 19:31:52 | 000,000,738 | ---- | C] () -- C:\ProgramData\tmp1D80.log
[2008-10-18 20:40:30 | 000,000,029 | ---- | C] () -- C:\Windows\AviMerin.INI
[2008-10-16 22:13:10 | 000,000,274 | ---- | C] () -- C:\Windows\autogk.ini
[2008-10-15 00:24:52 | 000,056,320 | ---- | C] () -- C:\Windows\System32\iyvu9_32.dll
[2008-10-15 00:04:34 | 002,041,363 | ---- | C] () -- C:\Windows\System32\x264vfw.dll
[2008-09-22 21:02:51 | 000,087,608 | ---- | C] () -- C:\Users\Pedro\AppData\Roaming\ezpinst.exe
[2008-09-22 20:58:39 | 000,000,668 | ---- | C] () -- C:\Users\Pedro\AppData\Roaming\vso_ts_preview.xml
[2008-09-22 20:57:35 | 000,034,308 | ---- | C] () -- C:\Windows\System32\Chip.dll
[2008-09-22 20:57:08 | 000,000,034 | ---- | C] () -- C:\Users\Pedro\AppData\Roaming\pcouffin.log
[2008-09-22 20:56:33 | 000,087,608 | ---- | C] () -- C:\Users\Pedro\AppData\Roaming\inst.exe
[2008-09-22 20:56:33 | 000,007,887 | ---- | C] () -- C:\Users\Pedro\AppData\Roaming\pcouffin.cat
[2008-09-22 20:56:33 | 000,001,144 | ---- | C] () -- C:\Users\Pedro\AppData\Roaming\pcouffin.inf
[2008-09-19 23:17:24 | 000,006,439 | ---- | C] () -- C:\Users\Pedro\AppData\Roaming\PrimoPDFSet.xml
[2008-09-19 23:16:04 | 000,176,235 | ---- | C] () -- C:\Windows\System32\Primomonnt.dll
[2008-09-19 11:43:20 | 000,204,800 | ---- | C] () -- C:\Windows\System32\IVIresizeW7.dll
[2008-09-19 11:43:20 | 000,200,704 | ---- | C] () -- C:\Windows\System32\IVIresizeA6.dll
[2008-09-19 11:43:20 | 000,192,512 | ---- | C] () -- C:\Windows\System32\IVIresizeP6.dll
[2008-09-19 11:43:20 | 000,192,512 | ---- | C] () -- C:\Windows\System32\IVIresizeM6.dll
[2008-09-19 11:43:20 | 000,188,416 | ---- | C] () -- C:\Windows\System32\IVIresizePX.dll
[2008-09-19 11:43:20 | 000,020,480 | ---- | C] () -- C:\Windows\System32\IVIresize.dll
[2008-09-16 00:14:24 | 003,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll
[2008-09-16 00:11:10 | 000,012,288 | ---- | C] () -- C:\Windows\System32\DivXWMPExtType.dll
[2008-08-29 13:58:26 | 000,197,408 | ---- | C] () -- C:\Windows\System32\vpnapi.dll
[2008-06-20 19:10:19 | 000,000,391 | ---- | C] () -- C:\Windows\Globocan2002.ini
[2008-06-20 18:06:42 | 000,001,025 | ---- | C] () -- C:\Windows\System32\sysprs7.dll
[2008-06-20 18:06:42 | 000,001,025 | ---- | C] () -- C:\Windows\System32\clauth2.dll
[2008-06-20 18:06:42 | 000,001,025 | ---- | C] () -- C:\Windows\System32\clauth1.dll
[2008-06-20 18:06:42 | 000,000,205 | ---- | C] () -- C:\Windows\System32\lsprst7.dll
[2008-06-20 18:06:42 | 000,000,073 | ---- | C] () -- C:\Windows\System32\ssprs.dll
[2008-06-14 18:29:25 | 000,000,685 | ---- | C] () -- C:\Windows\winmdi.ini
[2008-06-09 19:25:27 | 000,010,848 | ---- | C] () -- C:\Windows\hpdj5100.ini
[2008-05-25 22:45:08 | 000,000,317 | ---- | C] () -- C:\ProgramData\hpzinstall.log
[2008-05-25 12:02:30 | 000,000,196 | ---- | C] () -- C:\Windows\ulead32.ini
[2008-05-24 18:20:51 | 000,000,024 | ---- | C] () -- C:\Windows\ATKPF.ini
[2008-05-23 22:50:40 | 000,184,320 | ---- | C] () -- C:\Users\Pedro\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008-05-23 20:21:53 | 000,027,503 | ---- | C] () -- C:\Users\Pedro\AppData\Roaming\UserTile.png
[2008-05-23 19:31:57 | 000,000,680 | ---- | C] () -- C:\Users\Pedro\AppData\Local\d3d9caps.dat
[2008-04-28 16:13:33 | 000,000,280 | ---- | C] () -- C:\Windows\primopdf.ini
[2008-02-03 12:43:23 | 000,012,288 | ---- | C] () -- C:\Windows\impborl.dll
[2007-10-02 11:52:13 | 000,167,936 | ---- | C] () -- C:\Windows\System32\nvccoin.dll
[2007-10-01 06:59:45 | 001,769,984 | ---- | C] () -- C:\Windows\System32\drivers\snp2uvc.sys
[2007-09-04 11:56:10 | 000,164,352 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2007-06-13 07:18:53 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2007-05-24 10:14:02 | 000,004,133 | ---- | C] () -- C:\Windows\entrust.ini
[2007-05-24 10:13:48 | 000,106,584 | ---- | C] () -- C:\Windows\System32\fwnetcfg.dll
[2007-05-09 07:16:39 | 000,028,160 | ---- | C] () -- C:\Windows\System32\drivers\sncduvc.sys
[2007-04-20 16:15:53 | 000,000,010 | ---- | C] () -- C:\Windows\System32\ABLKSR.ini
[2007-02-05 19:05:26 | 000,000,038 | ---- | C] () -- C:\Windows\AviSplitter.INI
[2006-11-02 12:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006-11-02 10:25:26 | 000,557,568 | ---- | C] () -- C:\Windows\System32\hpotscl1.dll
[2006-11-02 10:25:21 | 000,061,440 | ---- | C] () -- C:\Windows\System32\igfxTMM.dll
[2006-11-02 07:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006-11-01 06:54:30 | 000,180,224 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2006-11-01 06:52:38 | 000,765,952 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2006-05-26 13:29:14 | 000,007,680 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2006-03-09 02:57:59 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2005-10-28 11:23:16 | 002,255,872 | ---- | C] () -- C:\Program Files\BioEdit.exe
[2005-05-31 08:02:46 | 000,001,303 | ---- | C] () -- C:\Program Files\LICENSE.TXT
[2005-05-31 08:02:30 | 000,066,598 | ---- | C] () -- C:\Program Files\ReadMe.txt
[2005-05-07 04:05:59 | 000,016,480 | ---- | C] () -- C:\Windows\System32\rixdicon.dll
[2004-06-19 11:43:04 | 000,017,372 | ---- | C] () -- C:\Program Files\BioEdit.ini
[2004-04-29 19:01:54 | 000,959,370 | ---- | C] () -- C:\Program Files\treev32.zip
[2004-03-18 07:44:29 | 001,663,068 | ---- | C] () -- C:\Windows\System32\libmmd.dll
[2003-09-16 15:52:28 | 000,147,456 | ---- | C] () -- C:\Windows\System32\vorbis.dll
[2003-09-16 15:43:31 | 000,884,736 | ---- | C] () -- C:\Windows\System32\vorbisenc.dll
[2003-09-16 15:41:43 | 000,045,056 | ---- | C] () -- C:\Windows\System32\ogg.dll
[2003-06-04 15:32:42 | 000,001,120 | ---- | C] () -- C:\Program Files\TreeView.txt
[2002-05-15 04:58:38 | 000,122,880 | ---- | C] () -- C:\Windows\System32\v2k2_dec.dll
========== LOP Check ========== [2010-03-20 22:17:17 | 000,000,000 | ---D | M] -- C:\Users\Pedro\AppData\Roaming\AnvSoft
[2009-05-31 15:53:57 | 000,000,000 | ---D | M] -- C:\Users\Pedro\AppData\Roaming\Astro Gemini Software
[2010-11-09 17:58:03 | 000,000,000 | ---D | M] -- C:\Users\Pedro\AppData\Roaming\Azureus
[2009-08-05 20:33:56 | 000,000,000 | ---D | M] -- C:\Users\Pedro\AppData\Roaming\Camfrog
[2010-05-02 14:23:17 | 000,000,000 | ---D | M] -- C:\Users\Pedro\AppData\Roaming\Canneverbe Limited
[2009-05-28 11:33:12 | 000,000,000 | ---D | M] -- C:\Users\Pedro\AppData\Roaming\DAEMON Tools Lite
[2010-11-11 11:50:36 | 000,000,000 | ---D | M] -- C:\Users\Pedro\AppData\Roaming\EndNote
[2009-08-19 15:03:43 | 000,000,000 | ---D | M] -- C:\Users\Pedro\AppData\Roaming\FlowJo7
[2010-09-08 10:11:46 | 000,000,000 | ---D | M] -- C:\Users\Pedro\AppData\Roaming\Image Zone Express
[2010-04-12 21:43:26 | 000,000,000 | ---D | M] -- C:\Users\Pedro\AppData\Roaming\InfraRecorder
[2008-10-06 10:41:45 | 000,000,000 | ---D | M] -- C:\Users\Pedro\AppData\Roaming\Leadertech
[2010-10-11 14:05:40 | 000,000,000 | ---D | M] -- C:\Users\Pedro\AppData\Roaming\MEGA4_4028
[2009-08-10 23:09:39 | 000,000,000 | ---D | M] -- C:\Users\Pedro\AppData\Roaming\ooVoo Details
[2008-05-23 20:21:53 | 000,000,000 | ---D | M] -- C:\Users\Pedro\AppData\Roaming\PeerNetworking
[2008-05-24 15:16:39 | 000,000,000 | ---D | M] -- C:\Users\Pedro\AppData\Roaming\Seven Zip
[2009-07-03 15:40:05 | 000,000,000 | ---D | M] -- C:\Users\Pedro\AppData\Roaming\Sports Interactive
[2009-09-01 09:23:20 | 000,000,000 | ---D | M] -- C:\Users\Pedro\AppData\Roaming\The Discovery Series
[2008-05-24 20:43:19 | 000,000,000 | ---D | M] -- C:\Users\Pedro\AppData\Roaming\TuneUp Software
[2010-03-21 15:38:40 | 000,000,000 | ---D | M] -- C:\Users\Pedro\AppData\Roaming\Ulead Systems
[2010-03-21 00:05:41 | 000,000,000 | ---D | M] -- C:\Users\Pedro\AppData\Roaming\VistaCodecs
[2010-10-05 21:31:33 | 000,000,000 | ---D | M] -- C:\Users\Pedro\AppData\Roaming\Vso
[2010-11-05 17:48:18 | 000,000,386 | ---- | M] () -- C:\Windows\Tasks\1-Click Maintenance.job
[2010-11-10 17:51:27 | 000,032,536 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ========== ========== Custom Scans ========== < %SYSTEMDRIVE%\*.* >[2006-11-02 09:53:57 | 000,438,840 | RHS- | M] () -- C:\bootmgr
[2010-10-25 09:34:16 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010-10-25 09:34:16 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010-11-11 09:18:53 | 3534,356,480 | -HS- | M] () -- C:\pagefile.sys
< %systemroot%\Fonts\*.com >[2006-11-02 12:37:12 | 000,026,040 | ---- | M] () -- C:\Windows\Fonts\GlobalMonospace.CompositeFont
[2006-11-02 12:37:12 | 000,026,489 | ---- | M] () -- C:\Windows\Fonts\GlobalSansSerif.CompositeFont
[2006-11-02 12:37:12 | 000,029,779 | ---- | M] () -- C:\Windows\Fonts\GlobalSerif.CompositeFont
[2006-11-02 12:37:12 | 000,030,808 | ---- | M] () -- C:\Windows\Fonts\GlobalUserInterface.CompositeFont
< %systemroot%\Fonts\*.dll > < %systemroot%\Fonts\*.ini >[2006-09-18 21:37:34 | 000,000,065 | ---- | M] () -- C:\Windows\Fonts\desktop.ini
< %systemroot%\Fonts\*.ini2 > < %systemroot%\Fonts\*.exe > < %systemroot%\system32\spool\prtprocs\w32x86\*.* >[2006-11-02 09:46:05 | 000,089,600 | ---- | M] (Hewlett-Packard Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\HPZPPLHN.DLL
[2006-11-02 12:35:48 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\jnwppr.dll
[2006-10-26 18:56:12 | 000,033,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\msonpppr.dll
< %systemroot%\REPAIR\*.bak1 > < %systemroot%\REPAIR\*.ini > < %systemroot%\system32\*.jpg > < %systemroot%\*.jpg > < %systemroot%\*.png > < %systemroot%\*.scr >[2008-02-03 12:43:24 | 000,503,808 | ---- | M] (ScreenTime Media) -- C:\Windows\Asus_Camera_ScreenSaver.scr
< %systemroot%\*._sy > < %APPDATA%\Adobe\Update\*.* > < %ALLUSERSPROFILE%\Favorites\*.* > < %APPDATA%\Microsoft\*.* > < %PROGRAMFILES%\*.* >[2005-10-28 11:23:16 | 002,255,872 | ---- | M] () -- C:\Program Files\BioEdit.exe
[2010-11-09 15:41:09 | 000,017,372 | ---- | M] () -- C:\Program Files\BioEdit.ini
[2009-07-09 14:36:34 | 005,079,326 | ---- | M] (MRC-Holland) -- C:\Program Files\Coffalyser v8.exe
[2008-09-23 02:44:21 | 000,000,174 | -HS- | M] () -- C:\Program Files\desktop.ini
[2005-05-31 08:02:46 | 000,001,303 | ---- | M] () -- C:\Program Files\LICENSE.TXT
[2005-05-31 08:02:30 | 000,066,598 | ---- | M] () -- C:\Program Files\ReadMe.txt
[2004-04-29 19:01:54 | 000,959,370 | ---- | M] () -- C:\Program Files\treev32.zip
[2003-06-04 15:32:42 | 000,001,120 | ---- | M] () -- C:\Program Files\TreeView.txt
< %APPDATA%\Update\*.* > < %systemroot%\*. /mp /s > < %systemroot%\System32\config\*.sav >[2006-11-02 10:34:05 | 000,008,192 | ---- | M] () -- C:\Windows\System32\config\COMPONENTS.SAV
[2006-11-02 10:34:05 | 000,020,480 | ---- | M] () -- C:\Windows\System32\config\DEFAULT.SAV
[2006-11-02 10:34:05 | 000,008,192 | ---- | M] () -- C:\Windows\System32\config\SECURITY.SAV
[2006-11-02 10:34:08 | 010,133,504 | ---- | M] () -- C:\Windows\System32\config\SOFTWARE.SAV
[2006-11-02 10:34:08 | 001,826,816 | ---- | M] () -- C:\Windows\System32\config\SYSTEM.SAV
< %PROGRAMFILES%\bak. /s > < %systemroot%\system32\bak. /s > < %ALLUSERSPROFILE%\Start Menu\*.lnk /x > < %systemroot%\system32\config\systemprofile\*.dat /x > < %systemroot%\*.config > < %systemroot%\system32\*.db > < %PROGRAMFILES%\Internet Explorer\*.dat > < %APPDATA%\Microsoft\Internet Explorer\Quick Launch\*.lnk /x >[2008-09-23 02:44:45 | 000,000,286 | -HS- | M] () -- C:\Users\Pedro\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\desktop.ini
< %USERPROFILE%\Desktop\*.exe >[2010-11-09 20:12:17 | 053,123,856 | ---- | M] () -- C:\Users\Pedro\Desktop\avira_antivir_personal_en.exe
[2010-11-11 16:34:17 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Pedro\Desktop\OTL.exe
[2010-10-28 18:47:54 | 082,090,552 | ---- | M] ( ) -- C:\Users\Pedro\Desktop\setup_9.0.0.722_28.10.2010_22-08 Kaspersky virus removal.exe
< %PROGRAMFILES%\Common Files\*.* > < %systemroot%\*.src > < %systemroot%\install\*.* > < %systemroot%\system32\DLL\*.* > < %systemroot%\system32\HelpFiles\*.* > < %systemroot%\system32\rundll\*.* > < %systemroot%\winn32\*.* > < %systemroot%\Java\*.* > < %systemroot%\system32\test\*.* > < %systemroot%\system32\Rundll32\*.* > < HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU > < HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2008-09-25 09:44:50
< End of report >
About your questions: I use an Asus X53Sseries and I think I don't have a Vista disk because I don't remember of been given one when I bought the computer.
Thanks again for your help.