Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPDiag v2015.9.14.141 Por Nicolas Coolman (2015/09/12)
~ iniciado por Murilo Costa (Administrator) (2015/09/16 15:23:13)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Status da versão: Rede de arquivo
~ Modo: Scanner
~ Relatório: C:\Users\Murilo Costa\Desktop\ZHPDiag.txt
~ Relatório: C:\Users\Murilo Costa\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Inicialização do sistema: Normal (Normal boot)
Windows 7 Ultimate, 64-bit Service Pack 1 (Build 7601)
---\\ Navegadores Internet (4) - 0s
GCIE: Google Chrome v45.0.2454.85
MFIE: Mozilla Firefox 39.0 (x86 pt-BR) v39.0
OPIE: Opera 27.0.1689.66 v27.0.1689.66
MSIE: Internet Explorer v11.0.9600.17914
---\\ Informações sobre os produtos Windows (4) - 3s
~ Windows Server License Manager Script : OK
System - VBScript Engine not found
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ Softwares de proteçao do sistema (3) - 6s
Avast Free Antivirus v10.3.2225
Malwarebytes Anti-Malware versão 2.1.8.1057
Windows Defender W7 (Activate)
---\\ Softwares d'optimização do sistema (1) - 7s
CCleaner v5.09
---\\ Monitoramento dos softwares (2) - 7s
Adobe Flash Player 18 PPAPI
Adobe Reader XI
---\\ Informações sobre o sistema (6) - 0s
~ Operating System: AMD64 Family 21 Model 1 Stepping 2, AuthenticAMD
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 8370.296 MB (69% free)
~ System Restore: Activé (Enable)
~ System drive C: has 256 GB free of 953 GB
---\\ Modo de conexão ao sistema (3) - 0s
~ Computer Name: MURILOCOSTA-PC
~ User Name: Murilo Costa
~ Logged in as Administrator
---\\ Enumeração das unidades dos discos (2) - 0s
~ Drive C: has 256 GB free of 953 GB (System)
~ Drive D: has 120 GB free of 476 GB
---\\ Estado do Centro de Segurança do Windows (13) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Pesquisa particular de ficheiros genéricos (25) - 0s
[MD5.70D758D2DBE79757421017EE68143763] - (.Microsoft Corporation - Windows Explorer.) () -- C:\Windows\Explorer.exe [2871296] ©
[MD5.DD81D91FF3B0763C392422865C9AC12E] - (.Microsoft Corporation - Processo de host do Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [45568] ©
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Aplicativo de Inicialização do Windows.) () -- C:\Windows\System32\Wininit.exe [129024] ©
[MD5.E066FDC3A2074D926903B8C31EF3B347] - (.Microsoft Corporation - Internet Extensions para Win32.) () -- C:\Windows\System32\wininet.dll [2427392] ©
[MD5.98AA0BFEE089C7E5DADB94190D93456C] - (.Microsoft Corporation - Aplicativo de Logon do Windows.) () -- C:\Windows\System32\Winlogon.exe [455680] ©
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Biblioteca de Licenciamento de Software.) () -- C:\Windows\System32\sppcomapi.dll [232448] ©
[MD5.98E998C5630C642F4AF00820BD63DCEC] - (.Microsoft Corporation - DLL da API de cliente DNS.) () -- C:\Windows\System32\dnsapi.dll [357376] ©
[MD5.C637C9AFA4A638D316D70686293F19D1] - (.Microsoft Corporation - DLL da API de cliente DNS.) () -- C:\Windows\Syswow64\dnsapi.dll [270336] ©
[MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [497152] ©
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [24128] ©
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [92160] ©
[MD5.E5F4FD3D59B9141560D4174AAE6E66E0] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [148992] ©
[MD5.9FCDC4EEBCE39173122F9FEE53A054FC] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [102912] ©
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [122368] ©
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Driver de porta i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [105472] ©
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [116224] ©
[MD5.E9DD0E8829567362C1051E0905174DDE] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [159744] ©
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [261632] ©
[MD5.48B6047F82D5A8D0AEC71593F4ACD79B] - (.Microsoft Corporation - Driver do Sistema de Arquivos NT.) () -- C:\Windows\System32\drivers\ntfs.sys [1684416] ©
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Driver de porta paralela.) () -- C:\Windows\System32\drivers\Parport.sys [97280] ©
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] ©
[MD5.B6E3CB704BCD9FA07CD35F202D64DCC2] - (.Microsoft Corporation - Microsoft RDP Device redirector.) () -- C:\Windows\System32\drivers\rdpdr.sys [165888] ©
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [93184] ©
[MD5.70988118145F5F10EF24720B97F35F65] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [119296] ©
[MD5.A56F2326CE33646CDA95E7A9E7163FFA] - (.Microsoft Corporation - Driver de cópia de sombra de volume.) () -- C:\Windows\System32\drivers\volsnap.sys [296304] ©
---\\ Processos lançados (34) - 1s
[MD5.E8E046DB17671161DE74D1BB4E42D4B5] - (.AMD - AMD External Events Service Module.) -- C:\Windows\system32\atiesrxx.exe [245760] [PID.968] ©
[MD5.94D9C7A4A631B0C193E49ED9C87ECB42] - (.AMD - AMD External Events Client Module.) -- C:\Windows\system32\atieclxx.exe [670720] [PID.1252] ©
[MD5.4956380A54B1C9E6BFDF3D80DACB9698] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600] [PID.1452] ©
[MD5.4C72FDD915D62EAEF149BD9C73AB9CF4] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [81088] [PID.1844] ©
[MD5.23B97097BE0DAF1583EFD9B22233CF5A] - (.Advanced Micro Devices, Inc. - AMD Fuel Service.) -- C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064] [PID.1928] ©
[MD5.1992CE1C0B68D1A2AC036433479FDB30] - (.Disc Soft Ltd - Disc soft bus service.) -- C:\Program Files (x86)\DAEMON Tools Pro\DiscSoftBusService.exe [2216208] [PID.2088] ©
[MD5.1CF03C69B49ACB70C722DF92755C0C8C] - (.Macrovision Corporation - IDriverT Module.) -- C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632] [PID.2156] ©
[MD5.CD421DDB5C6E5458CE52EDC36DE7DC5B] - (...) -- C:\Windows\SysWOW64\PnkBstrA.exe [76152] [PID.3028]
[MD5.4580AC6F8ADADB5CE9F296F7FF5B15DD] - (.TODO: <公司名> - TODO: <文件说明>.) -- C:\Program Files (x86)\SFK\SSFK.exe [450048] [PID.2896]
[MD5.809B39A1A036C20994E68CF322A2519A] - (.DTools LIMITED - DTools.) -- C:\ProgramData\aWdsManProa\WdsManPro.exe [451720] [PID.3248] =>PUP.Optional.WdsManPro
[MD5.357CABBF155AFD1D3926E62539D2A3A7] - (.Microsoft Corp. - Microsoft® Windows Live ID Service.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292480] [PID.3396] ©
[MD5.D790CAFEFF0291D0AF8C76F5A1EE2E4E] - (.Microsoft Corp. - Microsoft® Windows Live ID Service Monitor.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE [223488] [PID.3464] ©
[MD5.33BFEC2B102B196B62ABB9947C7D7E23] - (.Dropbox, Inc. - Dropbox Update.) -- C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048] [PID.1392] ©
[MD5.45042BE9FD94BBA8306D354696CA4E3B] - (.WiseCleaner.com - Wise Care 365 Tray.) -- C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe [2343984] [PID.2704] ©
[MD5.AD242E8C6A442F0B8A73DD3E3CC92653] - (.Auslogics - BoostSpeed.) -- C:\Program Files (x86)\Auslogics\BoostSpeed\BoostSpeed.exe [3389896] [PID.3164] ©
[MD5.DB367E8C8F46C26A05BA982715CC0DB5] - (.Pixart Imaging Inc - pximouse.) -- C:\Windows\System32\TiltWheelMouse.exe [241152] [PID.4040]
[MD5.7D0E11F1640F088BC4BF79C9B56133EE] - (.Disc Soft Ltd - DAEMON Tools Shell Extensions Helper.) -- C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe [3523344] [PID.3276] ©
[MD5.CCFA17673A0016BF96100392A6B1DAE7] - (.Realtek Semiconductor - Gerenciador de áudio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8466648] [PID.3740] ©
[MD5.7537122E032DD3B52AADF467B3E8553A] - (...) -- C:\Program Files (x86)\SFK\SFKEX64.exe [123392] [PID.4084]
[MD5.7DFCCC67990B6DE7F30F553A4E4612A4] - (...) -- C:\Program Files (x86)\RocketDock\RocketDock.exe [495616] [PID.3184]
[MD5.554C2CD072CC3917120D2A096CF8886E] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3907152] [PID.4236] ©
[MD5.F66203AF9C159E2CBD54DF981654F499] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe [6111824] [PID.4384] ©
[MD5.1C7C9F16762BB5D75B4E43B0BD9AC78D] - (.Internet Download Manager, Tonec Inc. - IDM Integration module.) -- C:\Program Files (x86)\Internet Download Manager\IDMIntegrator64.exe [67608] [PID.4420]
[MD5.E9C6EF9437ECB30911488F9313AD821A] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe [269848] [PID.4752] ©
[MD5.615209C5C8F920648E024A234201A404] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [871240] [PID.4120] ©
[MD5.615209C5C8F920648E024A234201A404] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [871240] [PID.5116] ©
[MD5.615209C5C8F920648E024A234201A404] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [871240] [PID.1692] ©
[MD5.615209C5C8F920648E024A234201A404] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [871240] [PID.4908] ©
[MD5.615209C5C8F920648E024A234201A404] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [871240] [PID.5092] ©
[MD5.615209C5C8F920648E024A234201A404] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [871240] [PID.4656] ©
[MD5.615209C5C8F920648E024A234201A404] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [871240] [PID.5032] ©
[MD5.615209C5C8F920648E024A234201A404] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [871240] [PID.4904] ©
[MD5.615209C5C8F920648E024A234201A404] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [871240] [PID.4464] ©
[MD5.018B44D6E41ABDD08403E6B9EC3575B3] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Murilo Costa\Documents\linha defensiva\ZHPDiag3.exe [1929728] [PID.500] ©
---\\ Google Chrome, Arranque,Pesquisa,Extensões (11) - 0s
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.google.com.br/
G2 - GCE: Preference [User Data\Default] [aknpkdffaafgjchaibgeefbgmgeghloj] Angry Birds
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [gomekmidlodglbbmalcneegieacbdmki] Avast Online Security
G2 - GCE: Preference [User Data\Default] [heaigjkhmboanopbhfjfpmlkoeeaeccc] __MSG_ext_name__
G2 - GCE: Preference [User Data\Default] [idnljhnpjegfbcohjhdnhjlnfnffmbnf] GBBD Banco Santander (Brasil) S.A.
G2 - GCE: Preference [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.
---\\ Mozilla Firefox, Plugins,Arranque,Pesquisa,Extensões (22) - 1s
M0 - MFSP: prefs.js [Murilo Costa - 35mz2grc.default] http://www.google.com/
P2 - EXT FILE: (...) -- C:\Users\Murilo Costa\AppData\Roaming\Mozilla\Firefox\Profiles\35mz2grc.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi
P2 - EXT FILE: (...) -- C:\Users\Murilo Costa\AppData\Roaming\Mozilla\Firefox\Profiles\35mz2grc.default\searchplugins\google-.xml
P2 - EXT FILE: (...) -- C:\Users\Murilo Costa\AppData\Roaming\Mozilla\Firefox\Profiles\35mz2grc.default\searchplugins\google-avast.xml
P2 - EXT FILE: (...) -- C:\Users\Murilo Costa\AppData\Roaming\Mozilla\Firefox\Profiles\35mz2grc.default\searchplugins\Google.xml
P2 - EXT FILE: (...) -- C:\Users\Murilo Costa\AppData\Roaming\Mozilla\Firefox\Profiles\35mz2grc.default\searchplugins\Google_1.xml
P2 - EXT FILE: (...) -- C:\Users\Murilo Costa\AppData\Roaming\Mozilla\Firefox\Profiles\35mz2grc.default\searchplugins\istartsurf.xml =>PUP.Optional.IsStart
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\bing.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\buscape.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\ddg.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\google.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\mercadolivre.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\twitter.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wikipedia-br.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo-br.xml
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ©
P2 - EXT: (.Microsoft Corporation - Bing Search.) -- C:\Users\Murilo Costa\AppData\Roaming\Mozilla\Firefox\Profiles\35mz2grc.default\extensions\bingsearch.full@microsoft.com ©
P2 - EXT: (.Vinícius Della Líbera - Verificador Ortográfico para Português do Brasil..) -- C:\Users\Murilo Costa\AppData\Roaming\Mozilla\Firefox\Profiles\35mz2grc.default\extensions\pt-BR@dellalibera.sf.net
P2 - FPN: [HKCU] [gastecnologia.com.br/sf/abn] - (.GAS Tecnologia.) -- C:\Users\Murilo Costa\AppData\Local\GAS Tecnologia\GBBD\npsf_abn.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll ©
P2 - FPN: [HKLM] [@esn.me/esnsonar,version=0.70.4] - (.ESN Social Software AB.) -- C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll
P2 - FPN: [HKLM] [@esn/esnlaunch,version=2.3.0] - (.ESN Social Software AB.) -- C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll
---\\ Opera, Plugins,Arranque,Pesquisa (1) - 1s
B2 - EXT: [download-videos] C:\Users\Murilo Costa\AppData\Roaming\Opera Software\Opera Stable\Extensions\beemgnphifpbdehfmohojkhlklfaddih
---\\ Internet Explorer, Arranque, Pesquisa, Phishing (15) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
---\\ Internet Explorer, Gestão do Proxy (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Análise das linhas, Carregamento Automático de programas (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.)
---\\ Redireção do ficheiro Hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (23)
---\\ Browser Helper Objects do navegador (7) - 0s
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll
O2 - BHO: Skype for Business Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Skype for Business.) -- C:\Program Files\Microsoft Office\Office15\OCHelper.dll ©
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll ©
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll ©
O2 - BHO: SkypeIEPluginBHO [64Bits] - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll ©
O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL ©
O2 - BHO: Microsoft SkyDrive Pro Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL ©
---\\ Aplicações iniciadas por registo & pastas (11) - 0s
O4 - HKLM\..\Run: [MouseDriver] . (.Pixart Imaging Inc - pximouse.) -- C:\Windows\System32\TiltWheelMouse.exe
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gerenciador de áudio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe ©
O4 - HKCU\..\Run: [RocketDock] . (...) -- C:\Program Files (x86)\RocketDock\RocketDock.exe
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe ©
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe ©
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets da Área de Trabalho do Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets da Área de Trabalho do Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-21-2687556472-4158628515-2680252711-1000\..\Run: [RocketDock] . (...) -- C:\Program Files (x86)\RocketDock\RocketDock.exe
O4 - HKUS\S-1-5-21-2687556472-4158628515-2680252711-1000\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe ©
---\\ Alteração Dominio/Clientes DNS (3) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 208.67.222.222 208.67.220.220 192.168.0.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 208.67.222.222 208.67.220.220 192.168.0.1
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 208.67.222.222 208.67.220.220 192.168.0.1
---\\ Protocolo adicional (24) - 0s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Controle ActiveX para streaming de vídeo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll ©
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll ©
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: osf [64Bits] - {D924BDC6-C83A-4BD5-90D0-095128A113D1} . (.Microsoft Corporation - Microsoft Office 2013 component.) -- C:\Program Files\Microsoft Office\Office15\MSOSB.DLL ©
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: skypec2c [64Bits] - {91774881-D725-4E58-B298-07617B9B86A8} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll ©
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Controle ActiveX para streaming de vídeo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: text/xml [64Bits] - {807583E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL ©
---\\ Serviços NT não Microsoft e não desativados (19) - 1s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe ©
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated - Adobe® Flash® Player Update Service 18.0 r0.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe ©
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\system32\atiesrxx.exe ©
O23 - Service: AMD FUEL Service (AMD FUEL Service) . (.Advanced Micro Devices, Inc. - AMD Fuel Service.) - C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe ©
O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe ©
O23 - Service: @comres.dll,-947 (COMSysApp) . (...) - %SystemRoot%\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
O23 - Service: Dropbox Update Service (dbupdate) (dbupdate) . (.Dropbox, Inc. - Dropbox Update.) - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ©
O23 - Service: Dropbox Update Service (dbupdatem) (dbupdatem) . (.Dropbox, Inc. - Dropbox Update.) - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ©
O23 - Service: Disc Soft Bus Service (Disc Soft Bus Service) . (.Disc Soft Ltd - Disc soft bus service.) - C:\Program Files (x86)\DAEMON Tools Pro\DiscSoftBusService.exe ©
O23 - Service: Google Update Service (gupdate1d0bd9c9f0dee6f) (gupdate1d0bd9c9f0dee6f) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
O23 - Service: Google Update Service (gupdatem1d0bd9c9f933b7f) (gupdatem1d0bd9c9f933b7f) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
O23 - Service: InstallDriver Table Manager (IDriverT) . (.Macrovision Corporation - IDriverT Module.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe ©
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe ©
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation - .) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe ©
O23 - Service: Origin Client Service (Origin Client Service) . (.Electronic Arts - OriginClientService.) - C:\Program Files (x86)\Origin\OriginClientService.exe ©
O23 - Service: PnkBstrA (PnkBstrA) . (...) - C:\Windows\System32\PnkBstrA.exe
O23 - Service: SSFK (SSFK) . (.TODO: <公司名> - TODO: <文件说明>.) - C:\Program Files (x86)\SFK\SSFK.exe =>PUP.Optional.MyWebSearch
O23 - Service: WdsManPro Service (WdsManPro) . (.DTools LIMITED - DTools.) - C:\ProgramData\aWdsManProa\WdsManPro.exe =>PUP.Optional.WpManager
O23 - Service: Wise Boot Assistant (WiseBootAssistant) . (.WiseCleaner.com - Wise BootTime Service.) - C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe ©
---\\ Tarefas planificadas automaticamente (14) - 4s
[MD5.BBF37D81780EBB4919636CF7E5C789BE] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269000] ©
[MD5.76F586CEF7018BD376CBBD74AEAC93F5] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [1373872] ©
[MD5.7245B4C192D20107B4A3E887AED3F76E] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [6490904] ©
[MD5.45042BE9FD94BBA8306D354696CA4E3B] [APT] [Wise Care 365] (.WiseCleaner.com.) -- C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe [2343984] ©
[MD5.4E59FD37BF7C0F5DC45FD73947A59DE4] [APT] [Wise Turbo Checker] (.WiseCleaner.COM.) -- C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe [1399616] ©
[MD5.AD242E8C6A442F0B8A73DD3E3CC92653] [APT] [Auslogics\BoostSpeed\Start BoostSpeed ?n Murilo Costa logon] (.Auslogics.) -- C:\Program Files (x86)\Auslogics\BoostSpeed\BoostSpeed.exe [3389896] ©
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [830] ©
O39 - APT: Wise Care 365 - (.WiseCleaner.com.) -- C:\Windows\Tasks\Wise Care 365.job [436] ©
O39 - APT: Wise Turbo Checker - (.WiseCleaner.COM.) -- C:\Windows\Tasks\Wise Turbo Checker.job [442] ©
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3768] ©
O39 - APT: avast! Emergency Update - (.AVAST Software.) -- C:\Windows\System32\Tasks\avast! Emergency Update [4182] ©
O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\Windows\System32\Tasks\CCleanerSkipUAC [2786] ©
O39 - APT: Wise Care 365 - (.WiseCleaner.com.) -- C:\Windows\System32\Tasks\Wise Care 365 [2876] ©
O39 - APT: Wise Turbo Checker - (.WiseCleaner.COM.) -- C:\Windows\System32\Tasks\Wise Turbo Checker [3124] ©
---\\ Software instalados (180) - 17s
O42 - Logiciel: Nexus Mod Manager - (.Black Tree Gaming.) [HKLM][64Bits] -- 6af12c54-643b-4752-87d0-8335503010de_is1 ©
O42 - Logiciel: 7-Zip 15.05 beta x64 - (...) [HKLM][64Bits] -- 7-Zip
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner ©
O42 - Logiciel: CPUID CPU-Z 1.72.1 - (...) [HKLM][64Bits] -- CPUID CPU-Z_is1
O42 - Logiciel: CPUID HWMonitor 1.28 - (...) [HKLM][64Bits] -- CPUID HWMonitor_is1
O42 - Logiciel: Foxit Reader 7.1.5.425 - (.oszone.net.) [HKLM][64Bits] -- Foxit Reader
O42 - Logiciel: Unlocker 1.9.2 - (.Cedrick Collomb.) [HKLM][64Bits] -- Unlocker ©
O42 - Logiciel: WinRAR 5.20 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver ©
O42 - Logiciel: Corel Graphics - Windows Shell Extension - (.Corel Corporation.) [HKLM][64Bits] -- _{4DC318F5-1640-4417-A218-912ED9905FAA} ©
O42 - Logiciel: CorelDRAW Graphics Suite X7 (64-Bit) - (.Corel Corporation.) [HKLM][64Bits] -- _{5CB73140-806C-42C6-A05A-1AFD0E92DEB5} ©
O42 - Logiciel: HP Deskjet 1510 series Software básico do dispositivo - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {06FD25AF-70F0-4CA9-88EA-490799567F11} ©
O42 - Logiciel: CorelDRAW Graphics Suite X7 - IPM T (x64) - (.Corel Corporation.) [HKLM][64Bits] -- {13179AB2-69FD-459B-800F-81865A501AD4} ©
O42 - Logiciel: AMD Catalyst Install Manager - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {14D58A97-B60E-A858-34D8-95469C02F7EC} ©
O42 - Logiciel: Corel Graphics - Windows Shell Extension 32 Bit - (.Corel Corporation.) [HKLM][64Bits] -- {3B4AE1A9-C026-4D08-8004-DA9A85A411A4} ©
O42 - Logiciel: AMD Wireless Display v3.0 - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {426582A8-202F-D13C-8BD5-F00551BAFC93} ©
O42 - Logiciel: Corel Graphics - Windows Shell Extension - (.Corel Corporation.) [HKLM][64Bits] -- {4DC318F5-1640-4417-A218-912ED9905FAA} ©
O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM][64Bits] -- {503F672D-6C84-448A-8F8F-4BC35AC83441} ©
O42 - Logiciel: AMD Media Foundation Decoders - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {5125F6C3-E8E5-F400-182F-BFF022B47DBB} ©
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} ©
O42 - Logiciel: AMD Accelerated Video Transcoding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {8F2415FA-72F2-F029-0450-4EB2FAE484C5} ©
O42 - Logiciel: Microsoft Access MUI (Portuguese (Brazil)) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0015-0416-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Excel MUI (Portuguese (Brazil)) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0016-0416-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft PowerPoint MUI (Portuguese (Brazil)) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0018-0416-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Publisher MUI (Portuguese (Brazil)) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0019-0416-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Outlook MUI (Portuguese (Brazil)) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001A-0416-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Word MUI (Portuguese (Brazil)) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001B-0416-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft InfoPath MUI (Portuguese (Brazil)) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0044-0416-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft DCF MUI (Portuguese (Brazil)) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0090-0416-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft OneNote MUI (Portuguese (Brazil)) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00A1-0416-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Groove MUI (Portuguese (Brazil)) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00BA-0416-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Lync MUI (Portuguese (Brazil)) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-012B-0416-1000-0000000FF1CE} ©
O42 - Logiciel: Update for Skype for Business 2015 (KB2889853) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-012B-0416-1000-0000000FF1CE}_Office15.PROPLUS_{45AD9785-5503-4B26-981A-AF62A355ADF2} ©
O42 - Logiciel: AMD Drag and Drop Transcoding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {BB8B580B-8119-0235-C923-5F1EECE66561} ©
O42 - Logiciel: AMD Wireless Display v3.0 - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {C270821D-2479-D0F4-1BD1-7BBAF6762A98} ©
O42 - Logiciel: CorelDRAW Graphics Suite X7 - Writing Tools (x64) - (. Corel Corporation.) [HKLM][64Bits] -- {D63404AC-C2F1-4B3D-96EA-9727AC9D994C}
O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {E9FA781F-3E80-4399-825A-AD3E11C28C77} ©
O42 - Logiciel: CorelDRAW Graphics Suite X7 - IPM Content (x64) - (.Corel Corporation.) [HKLM][64Bits] -- {EF44BCCD-13F9-4974-862C-CCFAF43EE082} ©
O42 - Logiciel: Braveland Wizard - (.GOG.com.) [HKLM][64Bits] -- 1207667193_is1 ©
O42 - Logiciel: Toren - (.GOG.com.) [HKLM][64Bits] -- 1429865580_is1 ©
O42 - Logiciel: Adobe Flash Player 18 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX ©
O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI ©
O42 - Logiciel: Adobe Flash Player 18 PPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player PPAPI ©
O42 - Logiciel: Avast Free Antivirus - (.AVAST Software.) [HKLM][64Bits] -- Avast ©
O42 - Logiciel: Bastion Tradução BR v1.00 - (.Tribo Gamer Brasil®.) [HKLM][64Bits] -- Bastion BR
O42 - Logiciel: Battlelog Web Plugins - (.EA Digital Illusions CE AB.) [HKLM][64Bits] -- Battlelog Web Plugins ©
O42 - Logiciel: Blackguards - (.Daedalic Entertainment GmbH.) [HKLM][64Bits] -- Blackguards_is1
O42 - Logiciel: Breach and Clear Deadline - (...) [HKLM][64Bits] -- Breach and Clear Deadline_is1
O42 - Logiciel: Cheat Engine 6.4 - (.Cheat Engine.) [HKLM][64Bits] -- Cheat Engine 6.4_is1 ©
O42 - Logiciel: Cities Skylines - (...) [HKLM][64Bits] -- Cities Skylines_is1
O42 - Logiciel: Crysis 2 - Maximum Edition - (...) [HKLM][64Bits] -- Crysis 2 - Maximum Edition_is1
O42 - Logiciel: DAEMON Tools Pro - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Pro ©
O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKLM][64Bits] -- Dropbox ©
O42 - Logiciel: ESN Sonar - (.ESN Social Software AB.) [HKLM][64Bits] -- ESN Sonar-0.70.4
O42 - Logiciel: Fable Anniversary - (...) [HKLM][64Bits] -- Fable Anniversary_is1
O42 - Logiciel: Foxit Reader - (.Foxit Software Inc..) [HKLM][64Bits] -- Foxit Reader_is1 ©
O42 - Logiciel: Dark Souls Prepare to Die Edition - (.NAMCO BANDAI Games Europe S.A.S..) [HKLM][64Bits] -- GFWL_{4E4D0FA1-F880-4CCB-999A-501000008200} ©
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome ©
O42 - Logiciel: Grey Goo - (.Релиз от R.G. Steamgames.) [HKLM][64Bits] -- Grey Goo_is1
O42 - Logiciel: Heroes of the Storm - (.Blizzard Entertainment.) [HKLM][64Bits] -- Heroes of the Storm ©
O42 - Logiciel: Age of Empires III - (.Microsoft Game Studios.) [HKLM][64Bits] -- InstallShield_{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97} ©
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager ©
O42 - Logiciel: K-Lite Codec Pack 10.9.0 Full - (...) [HKLM][64Bits] -- KLiteCodecPack_is1
O42 - Logiciel: LogoMaker 2.0 - (.Studio V5.) [HKLM][64Bits] -- LogoMaker_is1
O42 - Logiciel: Lost Planet Extreme Condition Tradução BR v1.00 - (.Tribo dos Renegados Brasil®.) [HKLM][64Bits] -- Lost Planet Extreme Condition BR
O42 - Logiciel: Malwarebytes Anti-Malware versão 2.1.8.1057 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 ©
O42 - Logiciel: Mozilla Firefox 39.0 (x86 pt-BR) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 39.0 (x86 pt-BR) ©
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService ©
O42 - Logiciel: Neverwinter Nights 2 - Platinum Edition - (...) [HKLM][64Bits] -- Neverwinter Nights 2 - Platinum Edition_is1
O42 - Logiciel: Notepad++ - (.Notepad++ Team.) [HKLM][64Bits] -- Notepad++ ©
O42 - Logiciel: Opera Stable 27.0.1689.66 - (.Opera Software ASA.) [HKLM][64Bits] -- Opera 27.0.1689.66 ©
O42 - Logiciel: Opera Stable 29.0.1795.60 - (.Opera Software ASA.) [HKLM][64Bits] -- Opera 29.0.1795.60 ©
O42 - Logiciel: Opera Stable 31.0.1889.174 - (.Opera Software.) [HKLM][64Bits] -- Opera 31.0.1889.174 ©
O42 - Logiciel: Ori and the Blind Forest - (...) [HKLM][64Bits] -- Ori and the Blind Forest_is1
O42 - Logiciel: Origin - (.Electronic Arts, Inc..) [HKLM][64Bits] -- Origin ©
O42 - Logiciel: PhotoScape - (...) [HKLM][64Bits] -- PhotoScape
O42 - Logiciel: Pier Solar and the Great Architects HD - (...) [HKLM][64Bits] -- Pier Solar and the Great Architects HD_is1
O42 - Logiciel: PokerStars - (.PokerStars.) [HKLM][64Bits] -- PokerStars
O42 - Logiciel: PrivaZer - (.Goversoft LLC.) [HKLM][64Bits] -- PrivaZer ©
O42 - Logiciel: Project CARS - (.Релиз от R.G. Steamgames.) [HKLM][64Bits] -- Project CARS_is1
O42 - Logiciel: PunkBuster Services - (.Even Balance, Inc..) [HKLM][64Bits] -- PunkBusterSvc ©
O42 - Logiciel: Revo Uninstaller 1.95 - (.VS Revo Group.) [HKLM][64Bits] -- Revo Uninstaller ©
O42 - Logiciel: Flame Over - (...) [HKLM][64Bits] -- RmxhbWVPdmVy_is1
O42 - Logiciel: RocketDock 1.3.5 - (.Punk Software.) [HKLM][64Bits] -- RocketDock_is1 ©
O42 - Logiciel: SpeedFan (remove only) - (...) [HKLM][64Bits] -- SpeedFan
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- Steam ©
O42 - Logiciel: Bastion - (.Supergiant Games.) [HKLM][64Bits] -- Steam App 107100
O42 - Logiciel: Waves - (.Squid In A Box Ltd.) [HKLM][64Bits] -- Steam App 107600
O42 - Logiciel: Shadowgrounds: Survivor - (.Frozenbyte.) [HKLM][64Bits] -- Steam App 11200 ©
O42 - Logiciel: Gumboy Tournament - (.CINEMAX, s.r.o..) [HKLM][64Bits] -- Steam App 11230
O42 - Logiciel: Toki Tori 2+ - (.Two Tribes.) [HKLM][64Bits] -- Steam App 201420
O42 - Logiciel: Dota 2 Test - (...) [HKLM][64Bits] -- Steam App 205790
O42 - Logiciel: The Witcher: Enhanced Edition - (.CD PROJEKT RED.) [HKLM][64Bits] -- Steam App 20900 ©
O42 - Logiciel: The Witcher 2: Assassins of Kings Enhanced Edition - (.CD Projekt RED.) [HKLM][64Bits] -- Steam App 20920 ©
O42 - Logiciel: Tiny Troopers - (.Kukouri.) [HKLM][64Bits] -- Steam App 216110
O42 - Logiciel: BRINK - (.Splash Damage.) [HKLM][64Bits] -- Steam App 22350 ©
O42 - Logiciel: DLC Quest - (.Going Loud Studios.) [HKLM][64Bits] -- Steam App 230050 ©
O42 - Logiciel: Medal of Honor: Airborne - (.EA Los Angeles.) [HKLM][64Bits] -- Steam App 24840 ©
O42 - Logiciel: Shadowgrounds - (.Frozenbyte.) [HKLM][64Bits] -- Steam App 2500 ©
O42 - Logiciel: Might & Magic: Duel of Champions - (.BlueByte.) [HKLM][64Bits] -- Steam App 256410
O42 - Logiciel: Nightmares from the Deep: The Cursed Heart - (.Artifex Mundi sp. z o.o..) [HKLM][64Bits] -- Steam App 259740
O42 - Logiciel: Kane & Lynch 2: Dog Days - (.IO Interactive.) [HKLM][64Bits] -- Steam App 28000 ©
O42 - Logiciel: Clockwork Tales: Of Glass and Ink - (.Artifex Mundi sp. z o.o..) [HKLM][64Bits] -- Steam App 284830
O42 - Logiciel: Total War: SHOGUN 2 - (.The Creative Assembly.) [HKLM][64Bits] -- Steam App 34330 ©
O42 - Logiciel: Trine - (.Frozenbyte.) [HKLM][64Bits] -- Steam App 35700 ©
O42 - Logiciel: Defend Your Life - (.Alda Games.) [HKLM][64Bits] -- Steam App 357780
O42 - Logiciel: Medal of Honor(TM) Single Player - (.Electronic Arts.) [HKLM][64Bits] -- Steam App 47790 ©
O42 - Logiciel: Medal of Honor(TM) Multiplayer - (.Electronic Arts.) [HKLM][64Bits] -- Steam App 47830 ©
O42 - Logiciel: Might & Magic: Heroes VI - (.Blackhole.) [HKLM][64Bits] -- Steam App 48220
O42 - Logiciel: Dota 2 - (.Valve.) [HKLM][64Bits] -- Steam App 570 ©
O42 - Logiciel: Lost Planet: Extreme Condition - (.CAPCOM Co., Ltd..) [HKLM][64Bits] -- Steam App 6510
O42 - Logiciel: Commandos: Behind Enemy Lines - (.Pyro Studios.) [HKLM][64Bits] -- Steam App 6800 ©
O42 - Logiciel: Commandos: Beyond the Call of Duty - (.Pyro Studios.) [HKLM][64Bits] -- Steam App 6810 ©
O42 - Logiciel: Commandos 2: Men of Courage - (.Pyro Studios.) [HKLM][64Bits] -- Steam App 6830 ©
O42 - Logiciel: Commandos 3: Destination Berlin - (.Pyro Studios.) [HKLM][64Bits] -- Steam App 6840 ©
O42 - Logiciel: BioShock 2 - (.2K Marin.) [HKLM][64Bits] -- Steam App 8850
O42 - Logiciel: Hydrophobia: Prophecy - (.Dark Energy Digital Ltd..) [HKLM][64Bits] -- Steam App 92000
O42 - Logiciel: TagScanner 5.1.668 - (.Sergey Serkov.) [HKLM][64Bits] -- TagScanner_is1
O42 - Logiciel: The Banner Saga - (.R.G. Gamblers, Fanfar.) [HKLM][64Bits] -- The Banner Saga_R.G. Gamblers_is1
O42 - Logiciel: TimeShift Tradução BR v1.00 - (.Tribo dos Renegados Brasil®.) [HKLM][64Bits] -- TimeShift 2 BR
O42 - Logiciel: TSEV Skyrim LE - (...) [HKLM][64Bits] -- TSEV Skyrim LE_is1
O42 - Logiciel: Resident Evil 6 version 1 - (...) [HKLM][64Bits] -- UmVzaWRlbnQgRXZpbCA2_is1
O42 - Logiciel: Sony Mobile Update Engine - (.Sony Mobile Communications Inc..) [HKLM][64Bits] -- Update Engine ©
O42 - Logiciel: WARMACHINE: Tactics - (...) [HKLM][64Bits] -- V0FSTUFDSElORVRhY3RpY3M=_is1
O42 - Logiciel: Warlords Battlecry 3 - (.GOG.com.) [HKLM][64Bits] -- Warlords Battlecry 3_is1 ©
O42 - Logiciel: Xion v1.5 (build 155) - (.r2 Studios.) [HKLM][64Bits] -- Xion
O42 - Logiciel: Dropbox Update Helper - (.Dropbox, Inc..) [HKLM][64Bits] -- {099218A5-A723-43DC-8DB5-6173656A1E94} ©
O42 - Logiciel: Zumas Revenge - (.PopCap Games.) [HKLM][64Bits] -- {0B153CAB-792B-4CA2-B2A5-AB0BBAF2FFA9} ©
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {0BE9E708-5DC0-4963-9CFD-0AA519090E79} ©
O42 - Logiciel: VirtualDJ 8 - (.Atomix Productions.) [HKLM][64Bits] -- {10C4696A-2915-47F2-A14A-78F70DA82E57} ©
O42 - Logiciel: Catalyst Control Center - Branding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {11087D24-567D-7D88-69C6-D7A08B5F4C47} ©
O42 - Logiciel: Google Drive - (.Google, Inc..) [HKLM][64Bits] -- {12ADFB82-D5A3-43E4-B2F4-FCD9B690315B} ©
O42 - Logiciel: TimeShift - (.Sierra Entertainment.) [HKLM][64Bits] -- {1367FA2F-2B3D-430F-872F-588B93420BFC}
O42 - Logiciel: Microsoft XNA Framework Redistributable 3.1 - (.Microsoft Corporation.) [HKLM][64Bits] -- {19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20} ©
O42 - Logiciel: Microsoft XNA Framework Redistributable 2.0 - (.Microsoft Corporation.) [HKLM][64Bits] -- {245F6C7A-0C22-4DE0-8202-2AAA620A1D3A} ©
O42 - Logiciel: Skype™ 7.0 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7} ©
O42 - Logiciel: Java 8 Update 45 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218045F0} ©
O42 - Logiciel: FEAR - (.Vivendi Universal Games, Inc..) [HKLM][64Bits] -- {2B653229-9854-4989-B780-D978F5F13EAB}
O42 - Logiciel: Microsoft XNA Framework Redistributable 4.0 - (.Microsoft Corporation.) [HKLM][64Bits] -- {2BFC7AA0-544C-4E3A-8796-67F3BE655BE9} ©
O42 - Logiciel: Microsoft XNA Framework Redistributable 3.0 - (.Microsoft Corporation.) [HKLM][64Bits] -- {3898934B-05AE-41CD-96BE-70DA9BFBCE1F} ©
O42 - Logiciel: EA SPORTS™ FIFA 15 - (.Electronic Arts.) [HKLM][64Bits] -- {3D4ADA2B-F028-4307-ADF4-6F9AA44725DA} ©
O42 - Logiciel: Foxit Cloud - (.Foxit Software Inc..) [HKLM][64Bits] -- {41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1 ©
O42 - Logiciel: Ultima 8 - (.Electronic Arts.) [HKLM][64Bits] -- {428C6B01-D292-46F9-9321-75668ED17DA2} ©
O42 - Logiciel: USB Vibration Joystick - (...) [HKLM][64Bits] -- {4999B2F1-3E74-409A-B8B5-E94448AA9EA6}
O42 - Logiciel: Microsoft Games for Windows Marketplace - (.Microsoft Corporation.) [HKLM][64Bits] -- {4CB0307C-565E-4441-86BE-0DF2E4FB828C} ©
O42 - Logiciel: Dark Souls Prepare to Die Edition - (.NAMCO BANDAI Games Europe S.A.S..) [HKLM][64Bits] -- {4E4D0FA1-F880-4CCB-999A-501000008200} ©
O42 - Logiciel: Plants vs. Zombies™ - (.Electronic Arts, Inc..) [HKLM][64Bits] -- {5E6536C2-E79A-49CF-83EA-817AD81F9FC8} ©
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {64467D47-FFE4-4FBC-ABBA-A0DB829A17EB} ©
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701} ©
O42 - Logiciel: Peggle - (.PopCap Games.) [HKLM][64Bits] -- {715AD72D-887A-459E-988B-D4F3E87FA24B} ©
O42 - Logiciel: Auslogics BoostSpeed 8 - (.Auslogics Labs Pty Ltd.) [HKLM][64Bits] -- {7216871F-869E-437C-B9BF-2A13F2DCE63F}_is1 ©
O42 - Logiciel: Battlefield 3™ - (.Electronic Arts.) [HKLM][64Bits] -- {76285C16-411A-488A-BCE3-C83CB933D8CF} ©
O42 - Logiciel: Módulo de Proteção - Banco Santander (Brasil) S.A. - (...) [HKLM][64Bits] -- {83033d93-48d0-48fc-9c5b-82e57e7e0dd6}_is1
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} ©
O42 - Logiciel: Command & Conquer™ 3 Kane's Wrath - (.Electronic Arts.) [HKLM][64Bits] -- {8D37C28B-D1A5-41C0-9E5E-80D01355FEBC} ©
O42 - Logiciel: Auslogics Registry Cleaner - (.Auslogics Labs Pty Ltd.) [HKLM][64Bits] -- {8D8024F1-2945-49A5-9B78-5AB7B11D7942}_is1 ©
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} ©
O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA} ©
O42 - Logiciel: Galeria de Fotos - (.Microsoft Corporation.) [HKLM][64Bits] -- {9EE1AE8B-4872-41CA-8C9A-C33D899523E0} ©
O42 - Logiciel: Battlefield 4™ - (.Electronic Arts.) [HKLM][64Bits] -- {ABADE36E-EC37-413B-8179-B432AD3FACE7} ©
O42 - Logiciel: Adobe Reader XI (11.0.10) - Português - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1046-7B44-AB0000000001} ©
O42 - Logiciel: Silent Hill Homecoming - (.Konami.) [HKLM][64Bits] -- {AE7D5AF6-E561-4711-BC5A-E2CE7AFD8CA7}_is1 ©
O42 - Logiciel: Dragon Age: Origins - (.Electronic Arts.) [HKLM][64Bits] -- {AEC81925-9C76-4707-84A9-40696C613ED3} ©
O42 - Logiciel: Command & Conquer 3 Tiberium Wars™ - (.Electronic Arts.) [HKLM][64Bits] -- {CAC9DCAF-0EA8-442C-97EA-CA6F5755390A} ©
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9} ©
O42 - Logiciel: Intel(R) C++ Redistributables for Windows* on Intel(R) 64 - (.Intel Corporation.) [HKLM][64Bits] -- {D2437C5C-2D8C-40D2-8059-689AD7239FA3} ©
O42 - Logiciel: Microsoft XNA Framework Redistributable 4.0 Refresh - (.Microsoft Corporation.) [HKLM][64Bits] -- {D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F} ©
O42 - Logiciel: Empire Earth II - (.Sierra.) [HKLM][64Bits] -- {DF315348-721C-40B8-BAE2-58C6C7D935A2} ©
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} ©
O42 - Logiciel: Wise Care 365 version 1.83 - (.WiseCleaner.com.) [HKLM][64Bits] -- {E864A1C8-EEE1-47D0-A7F8-00CC86D26D5E}_is1 ©
O42 - Logiciel: Bejeweled® 3 - (.Electronic Arts, Inc..) [HKLM][64Bits] -- {E99C27B2-EB2E-4244-9F5C-A96F55100F0C} ©
O42 - Logiciel: Sony PC Companion 2.10.275 - (.Sony.) [HKLM][64Bits] -- {F09EF8F2-0976-42C1-8D9D-8DF78337C6E3} ©
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} ©
O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {F2508213-9989-4E85-A078-72BE483917EF} ©
O42 - Logiciel: EA SPORTS Game Face Browser Plugin 1.8.0.0 - (.Electronic Arts.) [HKCU][64Bits] -- EA SPORTS Game Face Browser Plugin ©
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe ©
O42 - Logiciel: Opera_helper - (.Opera_helper.) [HKCU][64Bits] -- Opera_helper
O42 - Logiciel: Songr - (.Xamasoft.) [HKCU][64Bits] -- Songr ©
O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU][64Bits] -- UnityWebPlayer ©
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent
O42 - Logiciel: XBMC - (.Team XBMC.) [HKCU][64Bits] -- XBMC
---\\ HKCU & HKLM Software Keys (212) - 17s
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AdwCleaner
HKLM\SOFTWARE\Wow6432Node\AGEIA Technologies
HKLM\SOFTWARE\Wow6432Node\AMD
HKLM\SOFTWARE\Wow6432Node\ATI
HKLM\SOFTWARE\Wow6432Node\ATI Technologies
HKLM\SOFTWARE\Wow6432Node\Aureal
HKLM\SOFTWARE\Wow6432Node\Auslogics
HKLM\SOFTWARE\Wow6432Node\AVAST Software
HKLM\SOFTWARE\Wow6432Node\Baidu Security
HKLM\SOFTWARE\Wow6432Node\Battlelog Web Plugins
HKLM\SOFTWARE\Wow6432Node\Bethesda Softworks
HKLM\SOFTWARE\Wow6432Node\BioWare
HKLM\SOFTWARE\Wow6432Node\Blizzard Entertainment
HKLM\SOFTWARE\Wow6432Node\cd projekt red
HKLM\SOFTWARE\Wow6432Node\Clara =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\Corel
HKLM\SOFTWARE\Wow6432Node\CounterPath
HKLM\SOFTWARE\Wow6432Node\Crytek
HKLM\SOFTWARE\Wow6432Node\Cyberlink
HKLM\SOFTWARE\Wow6432Node\Daedalic Entertainment GmbH
HKLM\SOFTWARE\Wow6432Node\Disc Soft
HKLM\SOFTWARE\Wow6432Node\Dropbox
HKLM\SOFTWARE\Wow6432Node\DropboxUpdate
HKLM\SOFTWARE\Wow6432Node\DT Soft
HKLM\SOFTWARE\Wow6432Node\EA Games
HKLM\SOFTWARE\Wow6432Node\EA Sports
HKLM\SOFTWARE\Wow6432Node\Electronic Arts
HKLM\SOFTWARE\Wow6432Node\Eset
HKLM\SOFTWARE\Wow6432Node\ESN Launcher
HKLM\SOFTWARE\Wow6432Node\ESN Sonar-0.70.4
HKLM\SOFTWARE\Wow6432Node\FFPluginHp =>PUP.Optional.SweetSearch
HKLM\SOFTWARE\Wow6432Node\Foxit Software
HKLM\SOFTWARE\Wow6432Node\Gabest
HKLM\SOFTWARE\Wow6432Node\GameVicio
HKLM\SOFTWARE\Wow6432Node\Gearbox Software
HKLM\SOFTWARE\Wow6432Node\GNU
HKLM\SOFTWARE\Wow6432Node\GOG.com
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\HaaliMkx
HKLM\SOFTWARE\Wow6432Node\Hewlett-Packard
HKLM\SOFTWARE\Wow6432Node\HP
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\Internet Download Manager
HKLM\SOFTWARE\Wow6432Node\IObit
HKLM\SOFTWARE\Wow6432Node\istartsurfSoftware =>PUP.Optional.IsStart
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\KLCodecPack
HKLM\SOFTWARE\Wow6432Node\LAV
HKLM\SOFTWARE\Wow6432Node\Licenses
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\Maxis
HKLM\SOFTWARE\Wow6432Node\Monolith Productions
HKLM\SOFTWARE\Wow6432Node\Mooii
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\NAMCO BANDAI Games
HKLM\SOFTWARE\Wow6432Node\Notepad++
HKLM\SOFTWARE\Wow6432Node\Nuance
HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation
HKLM\SOFTWARE\Wow6432Node\Obsidian
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\OldTimer Tools
HKLM\SOFTWARE\Wow6432Node\Opera Software
HKLM\SOFTWARE\Wow6432Node\Origin
HKLM\SOFTWARE\Wow6432Node\Origin Games
HKLM\SOFTWARE\Wow6432Node\Origin Systems
HKLM\SOFTWARE\Wow6432Node\PocketSoft
HKLM\SOFTWARE\Wow6432Node\PopCap
HKLM\SOFTWARE\Wow6432Node\PopCap Games
HKLM\SOFTWARE\Wow6432Node\PowerPivot
HKLM\SOFTWARE\Wow6432Node\Pyro
HKLM\SOFTWARE\Wow6432Node\RealNetworks
HKLM\SOFTWARE\Wow6432Node\Remedy Entertainment
HKLM\SOFTWARE\Wow6432Node\Sierra
HKLM\SOFTWARE\Wow6432Node\Sierra Entertainment
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\Sony
HKLM\SOFTWARE\Wow6432Node\Sony Mobile
HKLM\SOFTWARE\Wow6432Node\SpeedFan
HKLM\SOFTWARE\Wow6432Node\SRS Labs
HKLM\SOFTWARE\Wow6432Node\Surreal
HKLM\SOFTWARE\Wow6432Node\TrendMicro
HKLM\SOFTWARE\Wow6432Node\Ubisoft
HKLM\SOFTWARE\Wow6432Node\Valve
HKLM\SOFTWARE\Wow6432Node\VirtualDJ
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\WdsManPro =>PUP.Optional.WdsManPro
HKLM\SOFTWARE\Wow6432Node\Windows X
HKLM\SOFTWARE\Wow6432Node\WiseCleaner
HKLM\SOFTWARE\Wow6432Node\Wow6432Node
HKLM\SOFTWARE\Wow6432Node\Even Balance
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\7-Zip
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Alda Games s.r.o.
HKCU\SOFTWARE\antiufo
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\ATI
HKCU\SOFTWARE\AVAST Software
HKCU\SOFTWARE\Baidu Security
HKCU\SOFTWARE\Baixaki
HKCU\SOFTWARE\Battle.net
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\Blizzard Entertainment
HKCU\SOFTWARE\BoBrowser =>PUP.Optional.BoBrowser
HKCU\SOFTWARE\Bugsplat
HKCU\SOFTWARE\BVRP Software
HKCU\SOFTWARE\CD Projekt RED
HKCU\SOFTWARE\cFos
HKCU\SOFTWARE\Cheat Engine
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\CoinisRevShare
HKCU\SOFTWARE\Colossal Order
HKCU\SOFTWARE\Corel
HKCU\SOFTWARE\CyberLink
HKCU\SOFTWARE\Daedalic Entertainment GmbH
HKCU\SOFTWARE\Dec 16 Productions
HKCU\SOFTWARE\Disc Soft
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\Dropbox
HKCU\SOFTWARE\DropboxUpdate
HKCU\SOFTWARE\drpsu
HKCU\SOFTWARE\DSS
HKCU\SOFTWARE\DT Soft
HKCU\SOFTWARE\Electronic Arts
HKCU\SOFTWARE\Enlight
HKCU\SOFTWARE\Epic Games
HKCU\SOFTWARE\ESET
HKCU\SOFTWARE\Foxit Software
HKCU\SOFTWARE\Gabest
HKCU\SOFTWARE\GameSpy
HKCU\SOFTWARE\GbAs
HKCU\SOFTWARE\GbPlugin
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\GOG.com
HKCU\SOFTWARE\GoldenGate
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\HP
HKCU\SOFTWARE\Icaros
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\Joint Custody Ltd
HKCU\SOFTWARE\Kukouri
HKCU\SOFTWARE\Lake
HKCU\SOFTWARE\Laughing Jackal Ltd.
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Link64
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\MediaInfo
HKCU\SOFTWARE\Mighty Rabbit Studios
HKCU\SOFTWARE\Mooii
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MPC-HC
HKCU\SOFTWARE\Ndemic Creations
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\Petroglyph
HKCU\SOFTWARE\PinballArcade
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\Pixart
HKCU\SOFTWARE\PopCap
HKCU\SOFTWARE\PrivaZer
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\Raptr
HKCU\SOFTWARE\Razer
HKCU\SOFTWARE\RealNetworks
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\Remedy Entertainment
HKCU\SOFTWARE\Remedy Entertainment Tools
HKCU\SOFTWARE\Revenger inc.
HKCU\SOFTWARE\RocketDock
HKCU\SOFTWARE\SecuROM
HKCU\SOFTWARE\SHINOHARATakayuki
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Sony
HKCU\SOFTWARE\SpeedFan
HKCU\SOFTWARE\StudioV5
HKCU\SOFTWARE\Swordtales
HKCU\SOFTWARE\TCP Optimizer
HKCU\SOFTWARE\The Creative Assembly
HKCU\SOFTWARE\Tortuga Team =>PUP.Optional.Tortuga
HKCU\SOFTWARE\Tribo Gamer
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Two Tribes
HKCU\SOFTWARE\Ubisoft
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\Valve
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\VirtualDJ
HKCU\SOFTWARE\VSRevoGroup
HKCU\SOFTWARE\WebApp
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\WLAN Optimizer .NET
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\XBMC
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\LastScanTime
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\Unity
---\\ Conteúdo das pastas Programs (400) - 14s
O43 - CFD: 2014/12/26 21:47:43 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 2014/12/21 10:38:22 - [] D -- C:\Program Files (x86)\AMD
O43 - CFD: 2014/12/16 22:02:52 - [] D -- C:\Program Files (x86)\AMD APP
O43 - CFD: 2014/12/21 10:47:59 - [] D -- C:\Program Files (x86)\AMD AVT
O43 - CFD: 2015/04/17 19:05:52 - [] D -- C:\Program Files (x86)\Atari
O43 - CFD: 2015/07/24 22:01:46 - [] D -- C:\Program Files (x86)\Auslogics
O43 - CFD: 2015/07/13 17:16:50 - [] D -- C:\Program Files (x86)\Battle.net
O43 - CFD: 2015/07/11 00:16:39 - [] D -- C:\Program Files (x86)\Battlelog Web Plugins
O43 - CFD: 2015/08/02 12:06:55 - [] D -- C:\Program Files (x86)\Breach and Clear Deadline
O43 - CFD: 2015/02/10 13:12:33 - [] D -- C:\Program Files (x86)\Cheat Engine 6.4
O43 - CFD: 2015/07/05 15:01:44 - [] D -- C:\Program Files (x86)\Cities Skylines
O43 - CFD: 2015/05/04 14:58:10 - [] D -- C:\Program Files (x86)\Codemasters
O43 - CFD: 2015/09/15 21:41:19 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2015/07/20 23:42:56 - [] D -- C:\Program Files (x86)\Crytek
O43 - CFD: 2014/12/26 22:54:35 - [] D -- C:\Program Files (x86)\Daedalic Entertainment GmbH
O43 - CFD: 2015/02/02 00:53:59 - [] D -- C:\Program Files (x86)\DAEMON Tools Pro
O43 - CFD: 2015/05/22 17:56:17 - [] D -- C:\Program Files (x86)\Diablo III
O43 - CFD: 2015/09/05 00:28:06 - [] D -- C:\Program Files (x86)\Dropbox
O43 - CFD: 2015/07/08 15:43:50 - [] D -- C:\Program Files (x86)\Fable Anniversary
O43 - CFD: 2015/07/31 07:46:27 - [] D -- C:\Program Files (x86)\Flame Over
O43 - CFD: 2015/02/07 14:06:56 - [] D -- C:\Program Files (x86)\Foxit Software
O43 - CFD: 2015/07/31 07:46:27 - [] D -- C:\Program Files (x86)\GameVicio
O43 - CFD: 2015/07/20 22:15:42 - [] D -- C:\Program Files (x86)\GOG.com
O43 - CFD: 2015/07/13 15:55:05 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2015/08/04 19:02:33 - [] D -- C:\Program Files (x86)\Grey Goo
O43 - CFD: 2015/07/13 17:29:30 - [] D -- C:\Program Files (x86)\Hearthstone
O43 - CFD: 2015/07/13 17:48:10 - [] D -- C:\Program Files (x86)\Heroes of the Storm
O43 - CFD: 2015/02/02 21:21:32 - [] D -- C:\Program Files (x86)\HP
O43 - CFD: 2015/08/25 13:20:30 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2015/09/12 22:13:00 - [] D -- C:\Program Files (x86)\Internet Download Manager
O43 - CFD: 2015/07/15 15:35:28 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2015/04/18 10:38:30 - [] D -- C:\Program Files (x86)\Java
O43 - CFD: 2015/01/11 13:28:32 - [] D -- C:\Program Files (x86)\K-Lite Codec Pack
O43 - CFD: 2015/07/01 03:17:46 - [] D -- C:\Program Files (x86)\Malwarebytes Anti-Malware
O43 - CFD: 2014/12/17 22:03:40 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 2015/01/03 12:34:11 - [] D -- C:\Program Files (x86)\Microsoft DirectX SDK (June 2010)
O43 - CFD: 2015/02/02 01:15:21 - [] D -- C:\Program Files (x86)\Microsoft Games
O43 - CFD: 2014/12/16 22:21:28 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 2015/08/10 17:50:04 - [] D -- C:\Program Files (x86)\Microsoft OneDrive
O43 - CFD: 2015/09/10 02:29:19 - [] D -- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 2014/12/17 22:09:05 - [] D -- C:\Program Files (x86)\Microsoft SQL Server
O43 - CFD: 2014/12/26 22:19:53 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 2015/04/12 22:25:30 - [] D -- C:\Program Files (x86)\Microsoft XNA
O43 - CFD: 2014/12/16 22:22:15 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2015/08/27 18:51:44 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 2015/07/15 19:45:39 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 2009/07/14 02:32:38 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2015/05/12 07:18:01 - [] D -- C:\Program Files (x86)\NAMCO BANDAI Games
O43 - CFD: 2015/07/15 00:08:18 - [] D -- C:\Program Files (x86)\Notepad++
O43 - CFD: 2015/01/21 13:48:56 - [] D -- C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 2015/08/19 21:49:31 - [] D -- C:\Program Files (x86)\Opera
O43 - CFD: 2014/12/18 21:57:48 - [] D -- C:\Program Files (x86)\OperaHelper
O43 - CFD: 2015/07/05 21:21:31 - [] D -- C:\Program Files (x86)\Ori and the Blind Forest
O43 - CFD: 2015/09/06 15:16:59 - [] D -- C:\Program Files (x86)\Origin
O43 - CFD: 2015/07/11 19:08:06 - [] D -- C:\Program Files (x86)\Origin Games
O43 - CFD: 2015/06/12 23:08:20 - [] D -- C:\Program Files (x86)\PC Blast
O43 - CFD: 2015/05/23 15:14:37 - [] D -- C:\Program Files (x86)\PhotoScape
O43 - CFD: 2015/07/23 21:32:12 - [] D -- C:\Program Files (x86)\PokerStars
O43 - CFD: 2015/04/13 20:09:42 - [] D -- C:\Program Files (x86)\PokerStars.NET
O43 - CFD: 2015/07/24 18:54:33 - [] D -- C:\Program Files (x86)\PrivaZer
O43 - CFD: 2015/08/04 19:02:33 - [] D -- C:\Program Files (x86)\Project CARS
O43 - CFD: 2015/06/08 17:25:22 - [] D -- C:\Program Files (x86)\R.G. Gamblers
O43 - CFD: 2015/08/29 19:36:05 - [] D -- C:\Program Files (x86)\r2 Studios
O43 - CFD: 2015/07/31 13:41:37 - [] D -- C:\Program Files (x86)\Real
O43 - CFD: 2009/07/14 02:32:38 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2015/03/14 19:18:03 - [] D -- C:\Program Files (x86)\Resident Evil 6
O43 - CFD: 2015/08/08 01:05:10 - [] D -- C:\Program Files (x86)\RocketDock
O43 - CFD: 2015/09/16 13:46:25 - [] D -- C:\Program Files (x86)\SFK =>PUP.Optional.MyWebSearch
O43 - CFD: 2015/02/01 22:31:57 - [] D -- C:\Program Files (x86)\Sierra
O43 - CFD: 2015/06/23 15:50:10 - [] D -- C:\Program Files (x86)\Sierra Entertainment
O43 - CFD: 2015/08/03 00:22:24 - [] D -- C:\Program Files (x86)\Silent Hill Homecoming
O43 - CFD: 2015/06/11 15:40:40 - [] RD -- C:\Program Files (x86)\Skype
O43 - CFD: 2015/02/08 13:30:53 - [] D -- C:\Program Files (x86)\Sony
O43 - CFD: 2015/08/17 14:38:00 - [] D -- C:\Program Files (x86)\Sony Mobile
O43 - CFD: 2015/09/15 21:44:55 - [] D -- C:\Program Files (x86)\SpeedFan
O43 - CFD: 2015/09/16 02:17:58 - [] D -- C:\Program Files (x86)\Steam
O43 - CFD: 2015/04/27 22:16:43 - [] D -- C:\Program Files (x86)\Studio V5
O43 - CFD: 2015/07/31 07:46:31 - [] D -- C:\Program Files (x86)\TagScanner
O43 - CFD: 2015/02/08 16:04:22 - [] D -- C:\Program Files (x86)\THQ
O43 - CFD: 2015/06/16 19:07:20 - [] D -- C:\Program Files (x86)\Tribo Gamer
O43 - CFD: 2015/09/14 11:35:11 - [] D -- C:\Program Files (x86)\TSEV Skyrim LE
O43 - CFD: 2015/08/25 16:51:47 - [] D -- C:\Program Files (x86)\Ubisoft
O43 - CFD: 2015/03/14 10:27:33 - [] D -- C:\Program Files (x86)\USB Vibration
O43 - CFD: 2015/07/28 16:40:43 - [] D -- C:\Program Files (x86)\uTorrent
O43 - CFD: 2014/12/18 21:02:01 - [] D -- C:\Program Files (x86)\UXTheme Multi-Patcher
O43 - CFD: 2015/08/29 11:05:26 - [] D -- C:\Program Files (x86)\VirtualDJ
O43 - CFD: 2015/02/19 00:18:37 - [] D -- C:\Program Files (x86)\VS Revo Group
O43 - CFD: 2015/07/14 21:09:38 - [] D -- C:\Program Files (x86)\WARMACHINE Tactics
O43 - CFD: 2015/05/18 13:02:54 - [] D -- C:\Program Files (x86)\WaterMelon
O43 - CFD: 2014/12/17 06:52:50 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2015/06/11 01:54:39 - [] D -- C:\Program Files (x86)\Windows Live
O43 - CFD: 2014/12/17 06:52:51 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2015/06/10 19:02:36 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2009/07/14 02:32:38 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2014/12/17 06:52:50 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2010/11/21 00:31:38 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2014/12/17 06:52:51 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2015/08/27 18:38:23 - [] D -- C:\Program Files (x86)\Wise
O43 - CFD: 2015/07/28 16:40:43 - [] D -- C:\Program Files (x86)\World of Warcraft
O43 - CFD: 2015/06/17 14:28:27 - [] D -- C:\Program Files (x86)\XBMC
O43 - CFD: 2015/07/07 21:32:10 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
O43 - CFD: 2014/12/17 06:59:11 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2014/12/16 19:42:10 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/07/17 02:41:27 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
O43 - CFD: 2015/04/17 19:14:59 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Atari
O43 - CFD: 2015/07/24 22:01:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics
O43 - CFD: 2015/07/31 07:46:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
O43 - CFD: 2015/02/22 20:57:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 3
O43 - CFD: 2015/02/21 09:42:45 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 4
O43 - CFD: 2014/12/18 08:34:47 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bejeweled 3
O43 - CFD: 2015/08/02 12:05:39 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Breach and Clear Deadline
O43 - CFD: 2015/07/31 07:46:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 2015/02/10 13:12:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.4
O43 - CFD: 2015/07/24 20:18:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cities Skylines
O43 - CFD: 2015/06/11 00:11:08 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X7 (64-bit)
O43 - CFD: 2015/06/20 15:33:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
O43 - CFD: 2015/07/20 23:56:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crytek
O43 - CFD: 2014/12/26 23:13:27 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Daedalic Entertainment GmbH
O43 - CFD: 2015/02/02 00:51:59 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Pro
O43 - CFD: 2015/01/21 13:49:59 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon Age Origins
O43 - CFD: 2015/09/05 00:27:45 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
O43 - CFD: 2015/07/08 15:43:54 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fable Anniversary
O43 - CFD: 2014/12/17 03:37:39 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FIFA 15
O43 - CFD: 2015/05/23 15:59:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
O43 - CFD: 2015/08/14 11:21:46 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2015/02/08 15:52:21 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameVicio
O43 - CFD: 2015/08/14 11:21:48 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
O43 - CFD: 2015/07/31 07:46:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2015/08/18 17:08:26 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
O43 - CFD: 2015/02/24 16:41:23 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grey Goo
O43 - CFD: 2015/04/10 03:53:05 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of the Storm
O43 - CFD: 2014/12/26 21:03:23 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
O43 - CFD: 2015/09/12 22:06:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 2015/08/28 15:03:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 2015/01/11 13:28:43 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
O43 - CFD: 2009/07/14 01:57:09 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/04/09 19:13:17 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 2015/08/27 18:47:29 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Max Payne
O43 - CFD: 2015/08/27 18:47:29 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAX-FX Tools
O43 - CFD: 2015/02/02 01:26:13 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games
O43 - CFD: 2015/07/28 16:40:48 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
O43 - CFD: 2015/09/09 18:12:22 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 2015/09/12 18:17:43 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexus Mod Manager
O43 - CFD: 2015/04/16 14:26:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 2015/07/24 20:18:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ori and the Blind Forest
O43 - CFD: 2015/06/12 23:08:20 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Blast
O43 - CFD: 2014/12/18 08:29:14 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Peggle
O43 - CFD: 2015/05/23 15:14:38 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoScape
O43 - CFD: 2014/12/18 08:28:35 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plants vs. Zombies
O43 - CFD: 2015/07/23 21:32:12 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PokerStars
O43 - CFD: 2015/07/16 22:26:04 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Project CARS
O43 - CFD: 2015/06/08 17:27:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Gamblers
O43 - CFD: 2015/07/31 07:46:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\r2 Studios
O43 - CFD: 2015/08/08 01:05:10 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RocketDock
O43 - CFD: 2015/02/01 22:32:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sierra
O43 - CFD: 2015/02/02 00:15:56 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sierra Entertainment
O43 - CFD: 2015/08/02 22:32:28 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Silent Hill Homecoming
O43 - CFD: 2015/06/11 15:40:40 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 2015/08/17 14:09:03 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
O43 - CFD: 2015/07/31 13:41:37 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2015/01/06 22:15:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
O43 - CFD: 2015/04/27 22:17:23 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Studio V5
O43 - CFD: 2011/04/12 10:06:16 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2015/07/31 07:46:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TagScanner
O43 - CFD: 2015/05/15 03:12:41 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tribo dos Renegados
O43 - CFD: 2015/06/16 19:07:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tribo Gamer
O43 - CFD: 2015/09/12 23:11:15 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TSEV Skyrim LE
O43 - CFD: 2015/07/28 16:40:48 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\uTorrent
O43 - CFD: 2015/05/18 13:03:41 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WaterMelon
O43 - CFD: 2015/06/11 01:37:03 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
O43 - CFD: 2015/07/07 22:51:40 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2015/08/27 18:38:25 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Care 365
O43 - CFD: 2015/07/05 14:52:20 - [] D -- C:\ProgramData\.mono
O43 - CFD: 2014/12/26 21:53:09 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2014/12/16 21:47:08 - [0] SHD -- C:\ProgramData\Ambiente de trabalho
O43 - CFD: 2015/07/17 02:40:13 - [] D -- C:\ProgramData\AMD
O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2015/07/17 02:42:16 - [] D -- C:\ProgramData\ATI
O43 - CFD: 2015/07/24 21:29:59 - [] D -- C:\ProgramData\Auslogics
O43 - CFD: 2014/12/16 22:29:23 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 2015/09/12 23:08:38 - [] D -- C:\ProgramData\aWdsManProa =>PUP.Optional.WdsManPro
O43 - CFD: 2015/06/05 12:10:59 - [] D -- C:\ProgramData\Battle.net
O43 - CFD: 2015/06/05 12:11:00 - [] D -- C:\ProgramData\Blizzard Entertainment
O43 - CFD: 2014/12/26 21:12:39 - [] D -- C:\ProgramData\boost_interprocess
O43 - CFD: 2015/02/25 08:35:28 - [] D -- C:\ProgramData\Canneverbe Limited
O43 - CFD: 2015/06/22 11:46:32 - [] D -- C:\ProgramData\Corel
O43 - CFD: 2015/06/11 00:11:57 - [0] D -- C:\ProgramData\CorelDRAW Graphics Suite X7 x64
O43 - CFD: 2015/06/08 22:45:42 - [] D -- C:\ProgramData\CounterPath Corporation
O43 - CFD: 2015/06/17 15:07:33 - [] D -- C:\ProgramData\CyberLink
O43 - CFD: 2014/12/26 22:23:16 - [] D -- C:\ProgramData\DAEMON Tools Pro
O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2014/12/16 21:47:08 - [0] SHD -- C:\ProgramData\Documentos
O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2015/08/10 17:38:26 - [] D -- C:\ProgramData\Dropbox
O43 - CFD: 2014/12/24 17:59:06 - [] D -- C:\ProgramData\EA Core
O43 - CFD: 2014/12/24 17:59:03 - [] D -- C:\ProgramData\EA Logs
O43 - CFD: 2014/12/21 14:10:01 - [] D -- C:\ProgramData\Electronic Arts
O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 2014/12/16 21:47:08 - [0] SHD -- C:\ProgramData\Favoritos
O43 - CFD: 2015/07/13 14:42:35 - [] D -- C:\ProgramData\fhjmbblgehonfckpofldkbjilkibfeaj
O43 - CFD: 2015/07/13 13:28:48 - [] D -- C:\ProgramData\GAS Tecnologia
O43 - CFD: 2015/02/02 21:21:55 - [] D -- C:\ProgramData\HP
O43 - CFD: 2015/09/12 22:18:25 - [0] D -- C:\ProgramData\IDM
O43 - CFD: 2015/02/23 03:01:31 - [] D -- C:\ProgramData\install_clap
O43 - CFD: 2015/05/09 19:26:44 - [] D -- C:\ProgramData\IObit
O43 - CFD: 2015/04/17 23:16:40 - [] D -- C:\ProgramData\IsolatedStorage
O43 - CFD: 2015/01/06 21:43:28 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 2014/12/16 21:47:08 - [0] SHD -- C:\ProgramData\Menu Iniciar
O43 - CFD: 2015/09/15 10:13:34 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2015/07/27 11:58:55 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 2014/12/26 22:05:18 - [] D -- C:\ProgramData\Microsoft OneDrive
O43 - CFD: 2015/06/11 18:46:38 - [] D -- C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS
O43 - CFD: 2014/12/16 21:47:08 - [0] SHD -- C:\ProgramData\Modelos
O43 - CFD: 2015/02/19 00:50:29 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2015/04/18 10:40:01 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 2015/09/16 07:54:17 - [] D -- C:\ProgramData\Origin
O43 - CFD: 2015/08/12 17:26:39 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 2015/02/23 03:04:43 - [] D -- C:\ProgramData\PDVD
O43 - CFD: 2015/07/13 00:14:21 - [] D -- C:\ProgramData\PopCap Games
O43 - CFD: 2015/07/24 18:54:13 - [] D -- C:\ProgramData\privazer
O43 - CFD: 2015/05/21 08:45:31 - [] D -- C:\ProgramData\ProductData
O43 - CFD: 2015/07/28 16:40:48 - [] D -- C:\ProgramData\Protexis64
O43 - CFD: 2015/07/31 13:41:58 - [] D -- C:\ProgramData\Real
O43 - CFD: 2014/12/17 22:08:42 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 2015/06/11 15:40:46 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2015/04/13 00:17:34 - [] D -- C:\ProgramData\sls
O43 - CFD: 2015/02/08 13:30:53 - [] D -- C:\ProgramData\Sony
O43 - CFD: 2015/01/29 17:19:28 - [] D -- C:\ProgramData\Sony Corporation
O43 - CFD: 2015/03/13 01:10:40 - [] D -- C:\ProgramData\Sony Mobile
O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2015/05/14 15:14:20 - [] D -- C:\ProgramData\Steam
O43 - CFD: 2014/12/28 00:39:09 - [] D -- C:\ProgramData\Sun
O43 - CFD: 2015/06/17 15:08:09 - [] D -- C:\ProgramData\SUPPORTDIR
O43 - CFD: 2015/02/23 03:02:46 - [0] AD -- C:\ProgramData\TEMP
O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2015/09/10 17:15:06 - [] D -- C:\ProgramData\{a9c1dc32-fb94-9b1d-a9c1-1dc32fb970cb}
O43 - CFD: 2015/04/30 03:10:01 - [] D -- C:\ProgramData\{ACBCD40A-42A8-4FF9-BD42-ABCD14998CBA} =>PUP.Optional.BundleInstaller
O43 - CFD: 2015/04/18 08:28:19 - [0] D -- C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
O43 - CFD: 2015/04/30 03:10:02 - [] D -- C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
O43 - CFD: 2014/12/26 21:47:49 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 2014/12/16 22:02:45 - [] D -- C:\Program Files (x86)\Common Files\ATI Technologies
O43 - CFD: 2015/07/11 19:21:43 - [] HD -- C:\Program Files (x86)\Common Files\EAInstaller
O43 - CFD: 2015/02/02 01:08:33 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 2015/06/10 14:36:48 - [] D -- C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 2015/04/18 08:28:15 - [] D -- C:\Program Files (x86)\Common Files\IObit
O43 - CFD: 2015/04/18 10:40:07 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 2015/06/11 00:03:58 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 2009/07/14 00:20:08 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2015/06/11 15:40:40 - [] D -- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 2015/02/07 14:38:49 - [] D -- C:\Program Files (x86)\Common Files\Sony Shared
O43 - CFD: 2009/07/14 00:20:08 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 2015/08/26 13:01:03 - [] D -- C:\Program Files (x86)\Common Files\Steam
O43 - CFD: 2014/12/17 06:52:50 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2014/12/26 22:02:48 - [] D -- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 2015/07/05 14:52:20 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\.mono
O43 - CFD: 2015/02/07 13:47:36 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Adobe
O43 - CFD: 2014/12/21 14:14:21 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\AMD
O43 - CFD: 2015/04/18 08:28:32 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Apple Computer
O43 - CFD: 2015/05/17 20:31:53 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Artifex Mundi
O43 - CFD: 2015/09/16 02:17:51 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\ArtifexMundi
O43 - CFD: 2014/12/24 12:57:29 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\ATI
O43 - CFD: 2015/07/23 13:09:29 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Audacity
O43 - CFD: 2014/12/16 23:10:23 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\AVAST Software
O43 - CFD: 2015/07/28 16:40:51 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Battle.net
O43 - CFD: 2015/02/25 08:35:19 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Canneverbe Limited
O43 - CFD: 2015/07/05 14:52:18 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Colossal Order
O43 - CFD: 2015/05/16 15:55:42 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Command & Conquer 3 Kane's Wrath
O43 - CFD: 2015/01/21 20:08:03 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Command & Conquer 3 Tiberium Wars
O43 - CFD: 2015/06/11 00:12:40 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Corel
O43 - CFD: 2015/02/23 03:14:00 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\CyberLink
O43 - CFD: 2015/09/12 23:05:55 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\DAEMON Tools Pro
O43 - CFD: 2015/01/03 11:47:07 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\DarkSoulsII
O43 - CFD: 2015/09/16 13:44:02 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\DMCache
O43 - CFD: 2015/08/10 17:44:07 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Dropbox
O43 - CFD: 2015/05/23 15:38:47 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\DRPSu
O43 - CFD: 2015/04/08 20:13:18 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Electronic Arts
O43 - CFD: 2015/08/04 19:02:35 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Fine_Sweeper_v17
O43 - CFD: 2015/02/08 17:29:48 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Foxit Software
O43 - CFD: 2014/12/18 21:57:55 - [] HD -- C:\Users\Murilo Costa\AppData\Roaming\GoldenGate
O43 - CFD: 2015/02/19 00:54:00 - [0] D -- C:\Users\Murilo Costa\AppData\Roaming\idesktop
O43 - CFD: 2015/09/12 23:01:12 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\IDM
O43 - CFD: 2015/02/02 00:12:42 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\InstallShield
O43 - CFD: 2015/04/18 10:44:50 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\IObit
O43 - CFD: 2015/04/17 23:16:40 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\IsolatedStorage
O43 - CFD: 2015/02/11 17:04:38 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\library_dir
O43 - CFD: 2015/04/27 22:17:56 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\LogoMaker
O43 - CFD: 2014/12/16 23:31:41 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Macromedia
O43 - CFD: 2015/09/03 13:17:39 - [] SD -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft
O43 - CFD: 2015/04/16 15:32:56 - [0] D -- C:\Users\Murilo Costa\AppData\Roaming\Might & Magic Heroes VI
O43 - CFD: 2015/05/23 11:26:47 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Mikrotik
O43 - CFD: 2015/02/19 00:51:36 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Mozilla
O43 - CFD: 2015/07/24 21:36:03 - [0] D -- C:\Users\Murilo Costa\AppData\Roaming\MPC-HC
O43 - CFD: 2015/07/31 07:46:09 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Notepad++
O43 - CFD: 2014/12/18 22:00:46 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Opera Software
O43 - CFD: 2015/06/01 22:07:12 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Origin
O43 - CFD: 2015/07/31 15:04:50 - [0] D -- C:\Users\Murilo Costa\AppData\Roaming\PhotoScape
O43 - CFD: 2015/05/03 16:08:37 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\ProductData
O43 - CFD: 2015/07/31 19:50:13 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\r2 Studios
O43 - CFD: 2015/05/13 18:48:48 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Raptr
O43 - CFD: 2015/07/31 13:42:21 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Real
O43 - CFD: 2015/01/21 13:45:00 - [] RHD -- C:\Users\Murilo Costa\AppData\Roaming\SecuROM
O43 - CFD: 2015/02/02 12:28:07 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Sierra
O43 - CFD: 2015/09/09 18:21:30 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Skype
O43 - CFD: 2015/01/29 17:49:35 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Sony
O43 - CFD: 2015/07/05 14:52:15 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Steam
O43 - CFD: 2015/07/31 07:46:34 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\TagScanner
O43 - CFD: 2015/06/08 17:27:52 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\The Banner Saga
O43 - CFD: 2015/02/10 13:23:21 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\The Creative Assembly
O43 - CFD: 2015/06/08 17:31:16 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\TheBannerSaga
O43 - CFD: 2015/05/09 04:45:05 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Trine1
O43 - CFD: 2015/09/10 17:31:33 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\uTorrent
O43 - CFD: 2015/07/24 20:51:57 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Winamp
O43 - CFD: 2015/01/21 10:10:29 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Windows Live Writer
O43 - CFD: 2014/12/24 15:25:42 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\WinRAR
O43 - CFD: 2015/09/16 14:01:15 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Wise Care 365
O43 - CFD: 2015/09/14 23:46:30 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\XBMC
O43 - CFD: 2015/09/16 15:23:33 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\ZHP
O43 - CFD: 2015/05/21 08:42:27 - [] D -- C:\Users\Murilo Costa\AppData\Local\Adobe
O43 - CFD: 2014/12/16 22:10:31 - [] D -- C:\Users\Murilo Costa\AppData\Local\AMD
O43 - CFD: 2014/12/16 21:47:37 - [0] SHD -- C:\Users\Murilo Costa\AppData\Local\Application Data
O43 - CFD: 2014/12/16 22:10:22 - [] D -- C:\Users\Murilo Costa\AppData\Local\ATI
O43 - CFD: 2015/08/27 01:22:16 - [] D -- C:\Users\Murilo Costa\AppData\Local\Battle.net
O43 - CFD: 2015/03/29 21:12:37 - [] D -- C:\Users\Murilo Costa\AppData\Local\BigHugeEngine
O43 - CFD: 2015/06/11 18:52:05 - [] D -- C:\Users\Murilo Costa\AppData\Local\Black_Tree_Gaming
O43 - CFD: 2015/01/28 11:08:54 - [] D -- C:\Users\Murilo Costa\AppData\Local\Blizzard
O43 - CFD: 2014/12/16 23:34:14 - [] D -- C:\Users\Murilo Costa\AppData\Local\Blizzard Entertainment
O43 - CFD: 2015/05/18 16:27:11 - [] D -- C:\Users\Murilo Costa\AppData\Local\CAPCOM
O43 - CFD: 2015/07/23 14:14:51 - [] D -- C:\Users\Murilo Costa\AppData\Local\CEF
O43 - CFD: 2015/02/10 13:24:09 - [] D -- C:\Users\Murilo Costa\AppData\Local\Chromium
O43 - CFD: 2015/07/05 14:52:18 - [] D -- C:\Users\Murilo Costa\AppData\Local\Colossal Order
O43 - CFD: 2015/06/08 22:45:24 - [] D -- C:\Users\Murilo Costa\AppData\Local\CounterPath
O43 - CFD: 2015/06/08 22:45:25 - [] D -- C:\Users\Murilo Costa\AppData\Local\CounterPath Corporation
O43 - CFD: 2015/06/17 15:07:11 - [] D -- C:\Users\Murilo Costa\AppData\Local\CyberLink
O43 - CFD: 2014/12/26 23:15:45 - [] D -- C:\Users\Murilo Costa\AppData\Local\Daedalic Entertainment GmbH
O43 - CFD: 2015/09/16 10:18:26 - [0] D -- C:\Users\Murilo Costa\AppData\Local\Diagnostics
O43 - CFD: 2015/09/10 02:31:56 - [] D -- C:\Users\Murilo Costa\AppData\Local\Dropbox
O43 - CFD: 2015/07/03 13:42:18 - [0] SHD -- C:\Users\Murilo Costa\AppData\Local\EmieBrowserModeList
O43 - CFD: 2015/07/03 13:42:18 - [0] SHD -- C:\Users\Murilo Costa\AppData\Local\EmieSiteList
O43 - CFD: 2015/07/03 13:42:18 - [0] SHD -- C:\Users\Murilo Costa\AppData\Local\EmieUserList
O43 - CFD: 2015/06/17 23:20:03 - [] D -- C:\Users\Murilo Costa\AppData\Local\ESN
O43 - CFD: 2015/04/17 23:16:46 - [] D -- C:\Users\Murilo Costa\AppData\Local\FileViewPro
O43 - CFD: 2015/03/18 22:07:21 - [] D -- C:\Users\Murilo Costa\AppData\Local\Focus Home Interactive
O43 - CFD: 2015/06/05 12:11:06 - [] D -- C:\Users\Murilo Costa\AppData\Local\GAS Tecnologia
O43 - CFD: 2015/09/14 23:21:35 - [] D -- C:\Users\Murilo Costa\AppData\Local\Google
O43 - CFD: 2015/09/05 01:17:24 - [] D -- C:\Users\Murilo Costa\AppData\Local\GWX
O43 - CFD: 2015/06/28 18:36:09 - [] D -- C:\Users\Murilo Costa\AppData\Local\Hero_Siege
O43 - CFD: 2014/12/16 21:47:37 - [0] SHD -- C:\Users\Murilo Costa\AppData\Local\Histórico
O43 - CFD: 2014/12/26 21:03:28 - [] D -- C:\Users\Murilo Costa\AppData\Local\HP
O43 - CFD: 2015/07/23 13:19:54 - [0] D -- C:\Users\Murilo Costa\AppData\Local\Ideia2001Informatica
O43 - CFD: 2014/12/26 22:51:41 - [] D -- C:\Users\Murilo Costa\AppData\Local\Installer =>PUP.Optional.InstallPedia
O43 - CFD: 2015/04/03 23:20:24 - [] D -- C:\Users\Murilo Costa\AppData\Local\LumaEmu_SteamCloud
O43 - CFD: 2015/02/19 00:56:52 - [] D -- C:\Users\Murilo Costa\AppData\Local\Macromedia
O43 - CFD: 2015/09/09 18:11:59 - [] D -- C:\Users\Murilo Costa\AppData\Local\Microsoft
O43 - CFD: 2015/05/02 02:37:03 - [] D -- C:\Users\Murilo Costa\AppData\Local\Microsoft Games
O43 - CFD: 2015/02/02 19:38:10 - [] D -- C:\Users\Murilo Costa\AppData\Local\Microsoft Help
O43 - CFD: 2015/02/19 00:51:38 - [] D -- C:\Users\Murilo Costa\AppData\Local\Mozilla
O43 - CFD: 2015/01/01 19:16:53 - [] D -- C:\Users\Murilo Costa\AppData\Local\NBGI
O43 - CFD: 2015/01/31 18:26:10 - [] D -- C:\Users\Murilo Costa\AppData\Local\Ndemic Creations
O43 - CFD: 2014/12/18 22:00:46 - [] D -- C:\Users\Murilo Costa\AppData\Local\Opera Software
O43 - CFD: 2015/07/05 21:36:31 - [] D -- C:\Users\Murilo Costa\AppData\Local\Ori and the Blind Forest
O43 - CFD: 2014/12/17 00:06:49 - [] D -- C:\Users\Murilo Costa\AppData\Local\Origin
O43 - CFD: 2015/08/07 02:41:01 - [] D -- C:\Users\Murilo Costa\AppData\Local\PokerStars
O43 - CFD: 2015/04/13 20:09:29 - [] D -- C:\Users\Murilo Costa\AppData\Local\PokerStars.NET
O43 - CFD: 2015/03/21 12:04:38 - [] D -- C:\Users\Murilo Costa\AppData\Local\PopCap Games
O43 - CFD: 2015/07/31 07:46:34 - [] D -- C:\Users\Murilo Costa\AppData\Local\PrivaZer
O43 - CFD: 2014/12/24 09:21:29 - [] D -- C:\Users\Murilo Costa\AppData\Local\Programs
O43 - CFD: 2015/02/19 05:40:33 - [] D -- C:\Users\Murilo Costa\AppData\Local\PunkBuster
O43 - CFD: 2015/07/30 17:22:30 - [] D -- C:\Users\Murilo Costa\AppData\Local\Real
O43 - CFD: 2015/02/15 14:36:33 - [] D -- C:\Users\Murilo Costa\AppData\Local\Realmware
O43 - CFD: 2015/05/18 12:45:31 - [] D -- C:\Users\Murilo Costa\AppData\Local\SKIDROW
O43 - CFD: 2015/01/15 20:10:32 - [] D -- C:\Users\Murilo Costa\AppData\Local\Skype
O43 - CFD: 2015/06/11 19:30:11 - [] D -- C:\Users\Murilo Costa\AppData\Local\Skyrim
O43 - CFD: 2015/07/30 18:01:56 - [] D -- C:\Users\Murilo Costa\AppData\Local\Songr
O43 - CFD: 2015/02/07 14:36:16 - [] D -- C:\Users\Murilo Costa\AppData\Local\Sony
O43 - CFD: 2015/02/19 22:29:30 - [] D -- C:\Users\Murilo Costa\AppData\Local\Steam
O43 - CFD: 2015/09/16 15:23:53 - [] D -- C:\Users\Murilo Costa\AppData\Local\Temp
O43 - CFD: 2014/12/16 21:47:37 - [0] SHD -- C:\Users\Murilo Costa\AppData\Local\Temporary Internet Files
O43 - CFD: 2014/12/29 21:34:33 - [] D -- C:\Users\Murilo Costa\AppData\Local\The Witcher 2
O43 - CFD: 2015/05/18 16:33:21 - [] D -- C:\Users\Murilo Costa\AppData\Local\Two Tribes
O43 - CFD: 2015/01/03 20:50:55 - [0] D -- C:\Users\Murilo Costa\AppData\Local\Ubisoft Game Launcher
O43 - CFD: 2015/04/08 19:26:17 - [] D -- C:\Users\Murilo Costa\AppData\Local\Unity
O43 - CFD: 2015/02/08 15:20:13 - [] D -- C:\Users\Murilo Costa\AppData\Local\VirtualStore
O43 - CFD: 2015/01/20 22:41:28 - [0] D -- C:\Users\Murilo Costa\AppData\Local\Warface
O43 - CFD: 2015/07/14 23:35:52 - [] D -- C:\Users\Murilo Costa\AppData\Local\WarmachineGame
O43 - CFD: 2015/06/11 01:45:33 - [] D -- C:\Users\Murilo Costa\AppData\Local\Windows Live
O43 - CFD: 2014/12/26 22:24:47 - [] D -- C:\Users\Murilo Costa\AppData\Local\Windows Live Writer
O43 - CFD: 2009/07/14 01:54:32 - [] RD -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/03/16 13:24:00 - [] RD -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/08/21 17:05:33 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2015/09/10 17:30:58 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameVicio
O43 - CFD: 2015/09/12 22:06:55 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 2009/07/14 01:49:38 - [] RD -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/07/24 18:54:15 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PrivaZer
O43 - CFD: 2015/02/19 00:18:39 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
O43 - CFD: 2015/07/31 13:48:56 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
O43 - CFD: 2015/09/10 02:32:59 - [] RD -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2015/09/12 23:03:16 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
O43 - CFD: 2015/08/28 15:03:55 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
O43 - CFD: 2015/07/07 22:51:40 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2015/06/17 14:28:27 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\XBMC
---\\ Enumeração das chaves StartupReg (22) - 1s
O53 - SMSR:HKLM\...\startupreg\Auslogics BoostSpeed BoostSpeed [Key] . (.Auslogics - BoostSpeed.) -- C:\Program Files (x86)\Auslogics\BoostSpeed\BoostSpeed.exe ©
O53 - SMSR:HKLM\...\startupreg\BingSvc [Key] . (.© 2015 Microsoft Corporation - Microsoft Bing Service.) -- C:\Users\Murilo Costa\AppData\Local\Microsoft\BingSvc\BingSvc.exe ©
O53 - SMSR:HKLM\...\startupreg\CCleaner Monitoring [Key] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe ©
O53 - SMSR:HKLM\...\startupreg\DAEMON Tools Pro Agent [Key] . (.Disc Soft Ltd - DAEMON Tools Pro Agent.) -- C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe ©
O53 - SMSR:HKLM\...\startupreg\DarkDumpReport [Key] . (...) -- C:\ProgramData
O53 - SMSR:HKLM\...\startupreg\Dropbox [Key] . (.Dropbox, Inc. - Dropbox.) -- C:\Program Files (x86)\Dropbox\Client\Dropbox.exe ©
O53 - SMSR:HKLM\...\startupreg\FlashPlayerUpdate [Key] . (...) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_17_0_0_190_Plugin.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\GoogleChromeAutoLaunch_22D77B59BEE56275FFB286635C27855A [Key] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O53 - SMSR:HKLM\...\startupreg\GoogleDriveSync [Key] . (.Google - Google Drive.) -- C:\Program Files (x86)\Google\Drive\googledrivesync.exe ©
O53 - SMSR:HKLM\...\startupreg\MouseDriver [Key] . (...) -- TiltWheelMouse.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\MyWebFace EPM Support [Key] . (...) -- C:\PROGRA~2\MYWEBF~1\bar\1.bin\5amedint.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Raptr [Key] . (...) -- C:\Program Files (x86)\Raptr\raptrstub.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\RTHDVCPL [Key] . (.Realtek Semiconductor - Gerenciador de áudio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe ©
O53 - SMSR:HKLM\...\startupreg\SkyDrive [Key] . (...) -- C:\Users\Murilo Costa\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Skype [Key] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe ©
O53 - SMSR:HKLM\...\startupreg\Sony PC Companion [Key] . (.Sony - Sony PC Companion.) -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe ©
O53 - SMSR:HKLM\...\startupreg\Spotify [Key] . (...) -- C:\Users\Murilo Costa\AppData\Roaming\Spotify\Spotify.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Spotify Web Helper [Key] . (...) -- C:\Users\Murilo Costa\AppData\Roaming\Spotify\SpotifyWebHelper.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\StartCCC [Key] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe ©
O53 - SMSR:HKLM\...\startupreg\uTorrent [Key] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Murilo Costa\AppData\Roaming\uTorrent\uTorrent.exe
O53 - SMSR:HKLM\...\startupreg\UXTheme Launcher [Key] . (.Windows X - UXTheme - Engine Launcher.) -- C:\Program Files (x86)\UXTheme Multi-Patcher\themeengine.exe ©
O53 - SMSR:HKLM\...\startupreg\WLAN Optimizer [Key] . (...) -- C:\Users\Murilo Costa\Documents\programas\wlann\WLAN Optimizer_Acelerar_Wifi\WLAN Optimizer\WLAN Optimizer.exe (.not file.)
---\\ Lista dos drivers do sistema (73) - 6s
O58 - SDL:2015/01/07 20:35:16 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\6C1D4145.sys [129752] ©
O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] ©
O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] ©
O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] ©
O58 - SDL:2009/07/13 22:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] ©
O58 - SDL:2015/06/22 23:05:56 A . (.Advanced Micro Devices - AMD ACP Binaries.) -- C:\Windows\System32\drivers\amdacpksd.sys [297672] ©
O58 - SDL:2015/04/18 10:54:56 A . (.Advanced Micro Devices Inc. - AMD miniIDE Driver.) -- C:\Windows\System32\drivers\amdide64.sys [11944] ©
O58 - SDL:2010/02/18 08:18:24 A . (.Advanced Micro Devices - AMD IO Driver.) -- C:\Windows\System32\drivers\amdiox64.sys [46136] ©
O58 - SDL:2013/01/01 19:47:03 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904] ©
O58 - SDL:2009/07/13 22:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] ©
O58 - SDL:2013/01/01 19:47:03 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008] ©
O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] ©
O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] ©
O58 - SDL:2015/04/18 10:51:13 A . (. - ATK0110 ACPI Utility.) -- C:\Windows\System32\drivers\ASACPI.sys [15416]
O58 - SDL:2015/07/28 16:49:33 A . (.AVAST Software - avast! HWID.) -- C:\Windows\System32\drivers\aswHwid.sys [28656] ©
O58 - SDL:2015/07/28 16:49:33 A . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\drivers\aswMonFlt.sys [90968] ©
O58 - SDL:2015/07/28 16:49:33 A . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\Windows\System32\drivers\aswRdr2.sys [93528] ©
O58 - SDL:2015/07/28 16:49:34 A . (.AVAST Software - avast! Revert.) -- C:\Windows\System32\drivers\aswRvrt.sys [65224] ©
O58 - SDL:2015/08/15 23:21:29 A . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\drivers\aswSnx.sys [1048344] ©
O58 - SDL:2015/07/28 16:49:34 A . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\drivers\aswSP.sys [447944] ©
O58 - SDL:2015/07/28 16:49:34 A . (.AVAST Software - Stream Filter.) -- C:\Windows\System32\drivers\aswStm.sys [150672] ©
O58 - SDL:2015/07/28 16:49:34 A . (.AVAST Software - avast! VM Monitor.) -- C:\Windows\System32\drivers\aswVmm.sys [274808] ©
O58 - SDL:2015/05/20 15:00:24 A . (.Advanced Micro Devices - AMD High Definition Audio Function Driver.) -- C:\Windows\System32\drivers\AtihdW76.sys [94720] ©
O58 - SDL:2015/06/22 23:03:38 A . (.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\System32\drivers\atikmdag.sys [21612032] ©
O58 - SDL:2015/06/22 22:10:50 A . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\Windows\System32\drivers\atikmpag.sys [663552] ©
O58 - SDL:2009/06/10 17:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] ©
O58 - SDL:2014/12/08 20:09:44 A . (.Windows (R) Win 7 DDK provider - NetFilter SDK WFP Driver (WPP).) -- C:\Windows\System32\drivers\brfilterdrv.sys [51520] ©
O58 - SDL:2009/06/10 17:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] ©
O58 - SDL:2009/06/10 17:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] ©
O58 - SDL:2009/07/13 22:19:07 A . (.Brother Industries Ltd. - Brother Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] ©
O58 - SDL:2009/06/10 17:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] ©
O58 - SDL:2009/06/10 17:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] ©
O58 - SDL:2009/06/10 17:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] ©
O58 - SDL:2009/06/10 17:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] ©
O58 - SDL:2009/07/13 22:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] ©
O58 - SDL:2015/02/02 00:51:55 A . (.Disc Soft Ltd - DAEMON Tools Virtual SCSI Bus Driver.) -- C:\Windows\System32\drivers\dtscsibus.sys [29864] ©
O58 - SDL:2009/07/13 22:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] ©
O58 - SDL:2015/09/16 04:30:27 A . (...) -- C:\Windows\System32\drivers\EsgScanner.sys [22704] =>.Superfluous.SpyHunter
O58 - SDL:2009/06/10 17:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] ©
O58 - SDL:2015/03/13 01:11:37 A . (.Sony Mobile Communications - SOMC USB Flash Driver Filter.) -- C:\Windows\System32\drivers\ggflt.sys [16088]
O58 - SDL:2015/03/13 01:11:37 A . (.Sony Mobile Communications - SOMC USB Flash Driver.) -- C:\Windows\System32\drivers\ggsomc.sys [30424]
O58 - SDL:2009/06/10 17:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] ©
O58 - SDL:2010/11/21 00:23:47 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720] ©
O58 - SDL:2013/01/01 19:47:03 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496] ©
O58 - SDL:2015/06/11 23:00:58 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\drivers\idmwfp.sys [197616] ©
O58 - SDL:2009/07/13 22:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] ©
O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] ©
O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] ©
O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] ©
O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] ©
O58 - SDL:2015/06/18 08:41:40 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [25816] ©
O58 - SDL:2015/06/18 08:41:44 A . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\drivers\mbamchameleon.sys [109272] ©
O58 - SDL:2015/09/16 13:33:45 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [113880] ©
O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] ©
O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] ©
O58 - SDL:2015/06/18 08:41:56 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\drivers\mwac.sys [63704] ©
O58 - SDL:2009/07/13 22:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] ©
O58 - SDL:2013/01/01 19:47:03 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352] ©
O58 - SDL:2013/01/01 19:47:03 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272] ©
O58 - SDL:2009/07/13 22:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] ©
O58 - SDL:2009/07/13 22:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] ©
O58 - SDL:2015/04/18 11:56:43 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Dri.) -- C:\Windows\System32\drivers\Rt64win7.sys [977624] ©
O58 - SDL:2015/05/12 14:14:00 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [4460760] ©
O58 - SDL:2009/06/10 17:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] ©
O58 - SDL:2009/07/13 22:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] ©
O58 - SDL:2009/07/13 22:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] ©
O58 - SDL:2014/12/26 22:24:29 A . (.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) -- C:\Windows\System32\drivers\sptd.sys [564824] ©
O58 - SDL:2014/12/08 19:33:36 A . (.Windows (R) Win 7 DDK provider - NetFilter SDK WFP Driver (WPP).) -- C:\Windows\System32\drivers\ssfilterdrv.sys [51520] ©
O58 - SDL:2015/04/18 12:03:00 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ve.) -- C:\Windows\System32\drivers\ssudbus.sys [103448] ©
O58 - SDL:2009/07/13 22:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] ©
O58 - SDL:2012/12/19 07:42:10 A . (...) -- C:\Windows\System32\drivers\t_mouse.sys [6144]
O58 - SDL:2009/07/13 22:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] ©
O58 - SDL:2009/07/13 22:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] ©
---\\ Últimos ficheiros alterados ou criados (Utilizador) (9) - 14s
O61 - LFC: 2015/09/12 23:16:38 A . (..) -- C:\Users\Murilo Costa\Downloads\Programs\skse_1_07_03_installer.exe [362812]
O61 - LFC: 2015/09/16 04:29:23 A . (.Enigma Software Group USA, LLC..) -- C:\Users\Murilo Costa\Downloads\Programs\SpyHunter-Installer.exe [3237248] =>.Superfluous.SpyHunter
O61 - LFC: 2015/09/12 23:00:46 A . (..) -- C:\Users\Murilo Costa\Downloads\Programs\Unlocker1.9.2.exe [402911]
O61 - LFC: 2015/09/15 20:07:10 A . (..) -- C:\Users\Murilo Costa\Downloads\Programs\winbox.exe [114176]
O61 - LFC: 2015/09/16 09:19:55 A . (..) -- C:\Users\Murilo Costa\Documents\FIFA 15\instance0\replay0.bin [536870912]
O61 - LFC: 2015/09/09 17:44:15 A . (..) -- C:\Users\Murilo Costa\AppData\Local\SKIDROW\238260\Stats.bin [4]
O61 - LFC: 2015/09/09 18:12:00 A . (..) -- C:\Users\Murilo Costa\AppData\Local\Microsoft\DefaultSetup\sqlite3.dll [362029]
O61 - LFC: 2015/09/16 14:47:55 A . (..) -- C:\Users\Murilo Costa\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [674082]
O61 - LFC: 2015/09/16 14:50:07 A . (..) -- C:\Users\Murilo Costa\AppData\Local\Google\Chrome\User Data\nacl_validation_cache.bin [164]
---\\ Associações Shell Spawning (10) - 0s
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe ©
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKLM\..\open\Command] (.Microsoft Corporation - Iniciador do snap-in de 'Visualizar eventos.) -- C:\Windows\System32\eventvwr.exe ©
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- c:\program files\internet explorer\iexplore.exe ©
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe ©
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - Editor do Registro.) -- C:\Windows\regedit.exe ©
O67 - Shell Spawning: <.scr>[HKLM\..\open\Command] (...) -- "%1" /S
---\\ Menu de inicialização Internet (20) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Users\Murilo Costa\AppData\Local\BoBrowser\Application\bobrowser.exe =>PUP.Optional.BoBrowser
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe http://www.istartsurf.com/ ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.istartsurf.com/ ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files (x86)\Internet Explorer\iexplore.ex http://www.istartsurf.com/ =>PUP.Optional.IsStart
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\Launcher.exe http://www.istartsurf.com/ ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Users\Murilo Costa\AppData\Local\BoBrowser\Application\bobrowser.exe (.not file.) =>PUP.Optional.BoBrowser
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitário de Inicialização por Usuário do.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Users\Murilo Costa\AppData\Local\BoBrowser\Application\bobrowser.exe (.not file.) =>PUP.Optional.BoBrowser
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitário de Inicialização por Usuário do.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Users\Murilo Costa\AppData\Local\BoBrowser\Application\bobrowser.exe (.not file.) =>PUP.Optional.BoBrowser
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitário de Inicialização por Usuário do.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe ©
---\\ Pesquisa de infeção nos navegadores da Internet (22) - 7s
O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("browser.search.searchengine.alias", "istartsurf"); =>PUP.Optional.IsStart
O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("browser.search.searchengine.desc", "this is my first firefox searchEngine"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("browser.search.searchengine.iconURL", "http://www.istartsurf.com/favicon.ico"); =>PUP.Optional.IsStart
O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("browser.search.searchengine.name", "istartsurf"); =>PUP.Optional.IsStart
O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("browser.search.searchengine.ptid", "smt"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("browser.search.searchengine.ref", ""); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("browser.search.searchengine.ts", ""); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("browser.search.searchengine.type", ""); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("browser.search.searchengine.uid", "ST1000VM002-1CT162_S1G10GNJXXXXS1G10GNJ"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("browser.search.searchengine.url", "http://www.istartsurf.com/web/?type=ds&ts=1442109940&z=5b65d744c5c3f0e2574e5f0gdz7z8[...] =>PUP.Optional.IsStart
O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("extensions.defsearchp@gmail.com.install-event-fired", true); =>PUP.Optional.PriceFountain
O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("extensions.deskCutv2@gmail.com.install-event-fired", true); =>PUP.Optional.DeskCut
O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("extensions.fftoolbar2014@etech.com.install-event-fired", true); =>PUP.Optional.FFToolBar
O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("extensions.quick_start.enable_search1", false); =>PUP.Optional.QuickStart
O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false); =>PUP.Optional.QuickStart
O69 - SBI: SearchScopes [HKCU] {0191A6B0-1154-4C22-9182-23A95BBE92D9} [DefaultScope] - (Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {30DA901C-DA24-4DC8-8028-4B497BDD80F3} - (Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {0191A6B0-1154-4C22-9182-23A95BBE92D9} [DefaultScope] - (Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {0191A6B0-1154-4C22-9182-23A95BBE92D9} [DefaultScope] - (Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-19] {0191A6B0-1154-4C22-9182-23A95BBE92D9} [DefaultScope] - (Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-20] {0191A6B0-1154-4C22-9182-23A95BBE92D9} [DefaultScope] - (Google) - http://www.google.com/
---\\ Listagem dos serviços iniciados pelo Svchost (33) - 2s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Serviço de Experiência com Aplicativo.) -- C:\Windows\System32\aelupsvc.dll [72192] ©
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Serviço de Propagação de Certificado de Car.) -- C:\Windows\System32\certprop.dll [80384] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Serviço de Propagação de Certificado de Car.) -- C:\Windows\System32\certprop.dll [80384] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL de Serviço do Servidor.) -- C:\Windows\system32\srvsvc.dll [236544] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Cliente da Diretiva de Grupo.) -- C:\Windows\System32\gpsvc.dll [777728] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extensão IKE.) -- C:\Windows\System32\ikeext.dll [861184] ©
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Serviço de Áudio do Windows.) -- C:\Windows\System32\Audiosrv.dll [680960] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gerenciador de Discagem Automática de Acess.) -- C:\Windows\System32\rasauto.dll [99328] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gerenciador de conexão de acesso remoto.) -- C:\Windows\System32\rasmans.dll [344064] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gerenciador de Interface Dinâmica.) -- C:\Windows\System32\mprdim.dll [97792] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Serviço de Notificação de Eventos do Sistem.) -- C:\Windows\System32\Sens.dll [64512] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Componentes do Microsoft NAT Helper.) -- C:\Windows\System32\ipnathlp.dll [359424] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Servidor de telefonia do Microsoft(R) Windo.) -- C:\Windows\System32\tapisrv.dll [316416] ©
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gerenciador de Conexões Remotas do Servidor.) -- C:\Windows\System32\termsrv.dll [686592] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\system32\wuaueng.dll [2603008] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Serviço de transferência inteligente de pla.) -- C:\Windows\System32\qmgr.dll [849920] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - DLL de serviços do Shell do Windows.) -- C:\Windows\System32\shsvcs.dll [372736] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Serviço que oferece conectividade IPv6 em u.) -- C:\Windows\System32\iphlpsvc.dll [570880] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de serviço de logon secundário.) -- C:\Windows\system32\seclogon.dll [30720] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Serviço de Informações de Aplicativos.) -- C:\Windows\System32\appinfo.dll [70656] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Serviço de Descoberta iSCSI.) -- C:\Windows\system32\iscsiexe.dll [156672] ©
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Serviço Agendador de Classes de Multimídia.) -- C:\Windows\system32\mmcss.dll [67584] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Serviço de Configuração da Área de Trabalho.) -- C:\Windows\System32\SessEnv.dll [127488] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL de Serviço Pesquisador de Computadores.) -- C:\Windows\System32\browser.dll [136704] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Serviço Microsoft EAPHost.) -- C:\Windows\System32\eapsvc.dll [111104] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Serviço Agendador de Tarefas.) -- C:\Windows\system32\schedsvc.dll [1108992] ©
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Serviço de Gerenciamento de Chaves.) -- C:\Windows\system32\kmsvc.dll [90624] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Relatórios de Problemas e Soluções.) -- C:\Windows\System32\wercplsupport.dll [84480] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [225792] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL do Serviço de Tema do Shell do Windows.) -- C:\Windows\system32\themeservice.dll [44544] ©
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Serviço BDE.) -- C:\Windows\System32\bdesvc.dll [100864] ©
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Serviço de instalação do software.) -- C:\Windows\System32\appmgmts.dll [193536] ©
---\\ Lista das exceções do FireWall (FirewallRules) (68) - 7s
O87 - FAEL: "{28D654C8-8AA9-4451-AE8A-6F2AD62BC297}" [In-None-P6-TRUE] .(.Copyright (C) 2012 - Plants vs. Zombies.) -- C:\Program Files (x86)\Origin Games\Plants vs. Zombies\PlantsVsZombies.exe
O87 - FAEL: "{75CCD362-81A4-4E58-B608-F4E95DC83207}" [In-None-P17-TRUE] .(.Copyright (C) 2012 - Plants vs. Zombies.) -- C:\Program Files (x86)\Origin Games\Plants vs. Zombies\PlantsVsZombies.exe
O87 - FAEL: "{DF99EEC7-3235-4F3D-BED0-95897B9A7B13}" [In-None-P6-TRUE] .(.Copyright (C) 2007 - Peggle.) -- C:\Program Files (x86)\Origin Games\Peggle Deluxe\Peggle.exe
O87 - FAEL: "{6492EEE4-A4A2-4F4F-8843-229541087469}" [In-None-P17-TRUE] .(.Copyright (C) 2007 - Peggle.) -- C:\Program Files (x86)\Origin Games\Peggle Deluxe\Peggle.exe
O87 - FAEL: "{591B572A-2FAD-4E90-BCF1-9AB9C512D6CB}" [In-None-P6-TRUE] .(.Copyright (C) 2012 - Bejeweled 3.) -- C:\Program Files (x86)\Origin Games\Bejeweled 3\Bejeweled3.exe
O87 - FAEL: "{FFF1688E-3DB2-422C-B88B-E7B301A1D928}" [In-None-P17-TRUE] .(.Copyright (C) 2012 - Bejeweled 3.) -- C:\Program Files (x86)\Origin Games\Bejeweled 3\Bejeweled3.exe
O87 - FAEL: "TCP Query User{27D70B9E-C898-4D73-8AEB-B458E9BC1939}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe" [In-None-P6-TRUE] .(.Copyright © 2011 CD Projekt Red - The Witcher 2.) -- C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe
O87 - FAEL: "UDP Query User{9D7E2D68-E21B-4D8C-B31B-81475E45A0EF}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe" [In-None-P17-TRUE] .(.Copyright © 2011 CD Projekt Red - The Witcher 2.) -- C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe
O87 - FAEL: "TCP Query User{9FA9E3D2-F118-4ECB-A90D-5CD8A7DEB989}C:\program files (x86)\hearthstone\hearthstone.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\hearthstone\hearthstone.exe
O87 - FAEL: "UDP Query User{A3025A1E-0413-4CB8-B20E-1BA1E3115CDC}C:\program files (x86)\hearthstone\hearthstone.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\hearthstone\hearthstone.exe
O87 - FAEL: "{12207785-ACA0-4C4E-8331-FD516B124A75}" [In-None-P6-FALSE] .(.Monolith Productions, Inc. - F.E.A.R..) -- C:\Program Files (x86)\Sierra\FEAR\FEAR.exe
O87 - FAEL: "{B08A7D1C-A07B-48C4-994E-8259837871C3}" [In-None-P17-FALSE] .(.Monolith Productions, Inc. - F.E.A.R..) -- C:\Program Files (x86)\Sierra\FEAR\FEAR.exe
O87 - FAEL: "TCP Query User{AF50AFCA-7101-4723-928A-2CB29B208D18}C:\program files (x86)\sierra entertainment\timeshift\bin\timeshift.exe" [In-None-P6-FALSE] .(.Sierra Entertainment - TimeShift.) -- C:\program files (x86)\sierra entertainment\timeshift\bin\timeshift.exe
O87 - FAEL: "UDP Query User{67940EC7-98A7-420D-BAF6-8910D6930807}C:\program files (x86)\sierra entertainment\timeshift\bin\timeshift.exe" [In-None-P17-FALSE] .(.Sierra Entertainment - TimeShift.) -- C:\program files (x86)\sierra entertainment\timeshift\bin\timeshift.exe
O87 - FAEL: "{8A16A00B-9325-4315-9615-9713B98E73BF}" [In-None-P6-FALSE] .(.Monolith Productions, Inc. - F.E.A.R..) -- C:\Program Files (x86)\Sierra\FEAR\FEAR.exe
O87 - FAEL: "{578A16E4-378B-4D9B-915B-0EA581E045F9}" [In-None-P17-FALSE] .(.Monolith Productions, Inc. - F.E.A.R..) -- C:\Program Files (x86)\Sierra\FEAR\FEAR.exe
O87 - FAEL: "{0DDC3A31-4607-468B-8273-3CCB8DA9CD80}" [In-None-P6-FALSE] .(.Sierra Entertainment - TimeShift.) -- C:\program files (x86)\sierra entertainment\timeshift\bin\timeshift.exe
O87 - FAEL: "{1F178D51-3AC6-45F6-A54B-B54789CFC19B}" [In-None-P17-FALSE] .(.Sierra Entertainment - TimeShift.) -- C:\program files (x86)\sierra entertainment\timeshift\bin\timeshift.exe
O87 - FAEL: "TCP Query User{CE5BE3DA-1AB2-45DF-929B-6F64674C64C7}C:\program files (x86)\resident evil 6\bh6.exe" [In-None-P6-TRUE] .(.CAPCOM U.S.A, INC. - RESIDENT EVIL 6.) -- C:\program files (x86)\resident evil 6\bh6.exe
O87 - FAEL: "UDP Query User{D2D82475-7E59-44B5-954D-9BA7120FDC36}C:\program files (x86)\resident evil 6\bh6.exe" [In-None-P17-TRUE] .(.CAPCOM U.S.A, INC. - RESIDENT EVIL 6.) -- C:\program files (x86)\resident evil 6\bh6.exe
O87 - FAEL: "{9EAC0B7B-BD8D-4BAF-8E81-255212EF10F0}" [In-None-P6-TRUE] .(.Splash Damage, Ltd. - Brink.) -- C:\Program Files (x86)\Steam\steamapps\common\BRINK\brink.exe
O87 - FAEL: "{EB82E9D0-6722-43CB-9638-940D5E160F28}" [In-None-P17-TRUE] .(.Splash Damage, Ltd. - Brink.) -- C:\Program Files (x86)\Steam\steamapps\common\BRINK\brink.exe
O87 - FAEL: "{93B84FB2-38AD-4E9C-905A-4B15C220E6C4}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Commandos Behind Enemy Lines\Comandos.exe
O87 - FAEL: "{7C122638-CC22-4349-9646-4FC3DA60D3E7}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Commandos Behind Enemy Lines\Comandos.exe
O87 - FAEL: "{2D50111E-CB6A-4945-B7C6-F1903DBF36A0}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Commandos Beyond the Call of Duty\coman_mp.exe
O87 - FAEL: "{7560832C-6536-4F91-8A76-A90581199B99}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Commandos Beyond the Call of Duty\coman_mp.exe
O87 - FAEL: "{A25CE3B0-8FA7-495E-9180-E0E7DA31F7C3}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Commandos Beyond the Call of Duty\Tutorial.exe
O87 - FAEL: "{56D34BB4-EAA9-44DC-8174-D62AEF0A2EA4}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Commandos Beyond the Call of Duty\Tutorial.exe
O87 - FAEL: "{BA60A013-9155-4940-B683-9D7669437654}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Commandos 2 Men of Courage\comm2.exe
O87 - FAEL: "{7BD509B1-8894-46B3-8C0A-E6A365F948C7}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Commandos 2 Men of Courage\comm2.exe
O87 - FAEL: "{F1F365F4-9A4C-4109-AAF5-E6D7B1A0BD36}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Commandos 3 Destination Berlin\commandos3.exe
O87 - FAEL: "{758B1B40-1B38-457B-8664-5053F1788062}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Commandos 3 Destination Berlin\commandos3.exe
O87 - FAEL: "{C9281B11-A86E-474E-9BBB-EBDBEBA0B552}" [In-None-P6-TRUE] .(.Supergiant Games - Bastion.) -- C:\Program Files (x86)\Steam\steamapps\common\Bastion\Bastion.exe
O87 - FAEL: "{09D97C74-4CFF-41B2-81A0-21379C7814A6}" [In-None-P17-TRUE] .(.Supergiant Games - Bastion.) -- C:\Program Files (x86)\Steam\steamapps\common\Bastion\Bastion.exe
O87 - FAEL: "{6FAED25F-D3C8-4CCE-83C0-818832A22A44}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Gumboy Tournament\gumboytournament.exe
O87 - FAEL: "{1D2A4479-C1B0-4CCC-B2D6-D782E34F2212}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Gumboy Tournament\gumboytournament.exe
O87 - FAEL: "{5F646CEC-8E39-4D59-97C8-97D7855CBA3A}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\DYL\dyl.exe
O87 - FAEL: "{1045DA4D-776D-44C0-B1E1-C8C6A75C2A36}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\DYL\dyl.exe
O87 - FAEL: "{86C296E8-85EB-4CAA-AB24-3F75A65C6AA9}" [In-None-P6-TRUE] .(.DOSBox Team - DOSBox DOS Emulator.) -- C:\Program Files (x86)\Origin Games\Ultima 8\Game\Game\DOSBox\DOSBox.exe
O87 - FAEL: "{0B1ABA92-7758-4DD6-906C-30436A9163CB}" [In-None-P17-TRUE] .(.DOSBox Team - DOSBox DOS Emulator.) -- C:\Program Files (x86)\Origin Games\Ultima 8\Game\Game\DOSBox\DOSBox.exe
O87 - FAEL: "{FCE838ED-A736-477D-96B0-2813C0C45A74}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Trine\_enchanted_edition_\trine1_launcher.exe
O87 - FAEL: "{E9F88E8B-85AD-4426-8BDD-0B0D80211872}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Trine\_enchanted_edition_\trine1_launcher.exe
O87 - FAEL: "TCP Query User{C17E6568-C00F-4131-8B5A-59883E8B94E2}C:\users\murilo costa\appdata\roaming\utorrent\updates\3.4.3_40298.exe" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\users\murilo costa\appdata\roaming\utorrent\updates\3.4.3_40298.exe
O87 - FAEL: "UDP Query User{BB566A49-813B-4F1E-B841-DAD09CD2DBFA}C:\users\murilo costa\appdata\roaming\utorrent\updates\3.4.3_40298.exe" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\users\murilo costa\appdata\roaming\utorrent\updates\3.4.3_40298.exe
O87 - FAEL: "TCP Query User{B11DFC1C-1CA3-471D-A513-62FFDF5D2AAE}C:\users\murilo costa\appdata\roaming\utorrent\updates\3.4.3_40298.exe" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\users\murilo costa\appdata\roaming\utorrent\updates\3.4.3_40298.exe
O87 - FAEL: "UDP Query User{27CF8E11-0E99-4E81-8502-8BE88836CA65}C:\users\murilo costa\appdata\roaming\utorrent\updates\3.4.3_40298.exe" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\users\murilo costa\appdata\roaming\utorrent\updates\3.4.3_40298.exe
O87 - FAEL: "{A9F43EE3-DD4A-4105-8ACF-91C63FD12263}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\tinytroopers\TinyTroopers.exe
O87 - FAEL: "{C29F8CB7-3167-4BE5-AE75-DD60232C36CF}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\tinytroopers\TinyTroopers.exe
O87 - FAEL: "{A914711A-CD5E-48A2-A157-177F184D8F9B}" [In-None-P6-TRUE] .(.Two Tribes B.V. - Toki Tori 2+.) -- C:\Program Files (x86)\Steam\steamapps\common\Toki Tori 2\tokitori2.exe
O87 - FAEL: "{95358582-24E3-45AC-A745-A7274B4C3017}" [In-None-P17-TRUE] .(.Two Tribes B.V. - Toki Tori 2+.) -- C:\Program Files (x86)\Steam\steamapps\common\Toki Tori 2\tokitori2.exe
O87 - FAEL: "{F7C6FD83-59D7-47DB-873A-6D58DD9B0E13}" [In-None-P6-TRUE] .(.Frozenbyte Oy - Shadowgrounds.) -- C:\Program Files (x86)\Steam\steamapps\common\Shadowgrounds\Shadowgrounds.exe
O87 - FAEL: "{45E6BFB2-0FCD-4F1E-811F-B2EFAA7B218C}" [In-None-P17-TRUE] .(.Frozenbyte Oy - Shadowgrounds.) -- C:\Program Files (x86)\Steam\steamapps\common\Shadowgrounds\Shadowgrounds.exe
O87 - FAEL: "{E3098F12-CE66-4EA2-AD9B-EF695902540A}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Shadowgrounds\ShadowgroundsLauncher.exe
O87 - FAEL: "{15296D9A-179E-48E6-87EC-66BDB747216E}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Shadowgrounds\ShadowgroundsLauncher.exe
O87 - FAEL: "{041D50A3-3ED5-4358-975B-F27E672F57F6}" [In-None-P6-FALSE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\lost planet extreme condition\LostPlanetDX9.exe
O87 - FAEL: "{D7036379-5D42-4472-8BB5-F4FF50A12D7B}" [In-None-P17-FALSE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\lost planet extreme condition\LostPlanetDX9.exe
O87 - FAEL: "{58B0B8C9-571D-4E34-9114-689F06469B95}" [In-None-P6-FALSE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\lost planet extreme condition\LostPlanetDX10.exe
O87 - FAEL: "{C1175BD9-E1F0-40B5-8155-83A2290E49E8}" [In-None-P17-FALSE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\lost planet extreme condition\LostPlanetDX10.exe
O87 - FAEL: "{87094DF3-1DD2-4701-8ACE-FE795859A709}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Hydrophobia\HydroPC.exe
O87 - FAEL: "{D4FAD477-EAA0-4187-B6F5-CA9762550D0B}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Hydrophobia\HydroPC.exe
O87 - FAEL: "{8E164180-30FA-4A1F-BD95-DAC6D67448C1}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\dota 2 test\dota.exe
O87 - FAEL: "{986D68AD-0CBC-4B6C-A9AB-B71CB52DC60D}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\dota 2 test\dota.exe
O87 - FAEL: "{6E05D524-6665-473B-BCBE-CB03D44FFBCA}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\BioShock 2\SP\Builds\Binaries\Bioshock2Launcher.exe
O87 - FAEL: "{BEBF87A7-3E88-4604-AB60-1D0A4859FADA}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\BioShock 2\SP\Builds\Binaries\Bioshock2Launcher.exe
O87 - FAEL: "{DFF70DAF-9A36-4367-83A5-DE8C1EF7DC4B}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\BioShock 2\MP\Builds\Binaries\Bioshock2Launcher.exe
O87 - FAEL: "{812A8B82-D434-4FEB-84A5-EEB1F42A3AA9}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\BioShock 2\MP\Builds\Binaries\Bioshock2Launcher.exe
O87 - FAEL: "{509B2B3A-4252-49E8-A3E2-6C798922B82A}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe
O87 - FAEL: "{E1DB8C9F-2FF8-477C-A3C1-0226A302990B}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe
---\\ Serviços não Microsoft (SR=Executados, SS=Parados) (26) - 57s
SR - Auto [2014/12/03 03:31:16] [ 81088] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe ©
SS - Auto [2015/09/10 08:15:21] [ 269000] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe ©
SR - Auto [2015/06/22 22:14:38] [ 245760] (AMD External Events Utility) . (.AMD.) - C:\Windows\system32\atiesrxx.exe ©
SR - Auto [2015/06/22 21:37:14] [ 344064] AMD FUEL Service (AMD FUEL Service) . (.Advanced Micro Devices, Inc..) - C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe ©
SR - Auto [2015/07/30 15:19:29] [ 146600] Avast Antivirus (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe ©
SS - Auto [2015/08/10 17:38:25] [ 136048] Dropbox Update Service (dbupdate) (dbupdate) . (.Dropbox, Inc..) - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ©
SS - Auto [2015/08/10 17:38:25] [ 136048] Dropbox Update Service (dbupdatem) (dbupdatem) . (.Dropbox, Inc..) - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ©
SR - Auto [2014/11/10 06:55:06] [ 2216208] Disc Soft Bus Service (Disc Soft Bus Service) . (.Disc Soft Ltd.) - C:\Program Files (x86)\DAEMON Tools Pro\DiscSoftBusService.exe ©
SS - Demand [2015/05/11 17:42:06] [ 244392] Foxit Cloud Safe Update Service (FoxitCloudUpdateService) . (.Foxit Software Inc..) - C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe ©
SS - Auto [2015/07/13 15:49:14] [ 144200] Google Update Service (gupdate1d0bd9c9f0dee6f) (gupdate1d0bd9c9f0dee6f) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
SS - Auto [2015/07/13 15:49:14] [ 144200] Google Update Service (gupdatem1d0bd9c9f933b7f) (gupdatem1d0bd9c9f933b7f) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
SR - Auto [2005/04/03 23:41:10] [ 69632] InstallDriver Table Manager (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe ©
SS - Disabled [2015/06/18 08:39:46] [ 1871160] (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe ©
SS - Auto [2015/06/18 08:39:50] [ 1133880] (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe ©
SS - Auto [2015/06/30 23:30:36] [ 148136] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe ©
SS - Auto [2015/09/06 15:16:27] [ 2057736] Origin Client Service (Origin Client Service) . (.Electronic Arts.) - C:\Program Files (x86)\Origin\OriginClientService.exe ©
SR - Auto [2015/08/05 19:39:25] [ 76152] PnkBstrA (PnkBstrA) . (...) - C:\Windows\System32\PnkBstrA.exe
SS - Demand [2014/04/30 16:33:52] [ 337776] Corel License Validation Service V2 x64, Powered by arvato (PSI_SVC_2_x64) . (.arvato digital services llc.) - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
SS - Demand [2015/06/17 03:25:02] [ 31856] RealPlayer Update Service (RealPlayerUpdateSvc) . (...) - C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
SS - Demand [2014/12/11 10:30:48] [ 315496] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe ©
SS - Demand [2015/06/10 11:11:26] [ 155520] Sony PC Companion (Sony PC Companion) . (.Avanquest Software.) - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe ©
SR - Auto [2015/09/12 23:07:32] [ 450048] SSFK (SSFK) . (.TODO: <公司名>.) - C:\Program Files (x86)\SFK\SSFK.exe =>PUP.Optional.MyWebSearch
SS - Demand [2015/08/19 17:39:00] [ 838336] Steam Client Service (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe ©
SR - Auto [2015/09/12 23:07:28] [ 451720] WdsManPro Service (WdsManPro) . (.DTools LIMITED.) - C:\ProgramData\aWdsManProa\WdsManPro.exe =>PUP.Optional.WpManager
SS - Auto [2012/07/17 15:25:28] [ 580648] Wise Boot Assistant (WiseBootAssistant) . (.WiseCleaner.com.) - C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe ©
---\\ Scâner Aditional (19) - 0s
C:\ProgramData\aWdsManProa\WdsManPro.exe =>PUP.Optional.WdsManPro
C:\Users\Murilo Costa\AppData\Roaming\Mozilla\Firefox\Profiles\35mz2grc.default\searchplugins\istartsurf.xml =>PUP.Optional.IsStart
HKLM\SYSTEM\CurrentControlSet\Services\SSFK =>PUP.Optional.MyWebSearch
C:\Program Files (x86)\SFK\SSFK.exe =>PUP.Optional.MyWebSearch
HKLM\SYSTEM\CurrentControlSet\Services\WdsManPro =>PUP.Optional.WpManager
C:\ProgramData\aWdsManProa\WdsManPro.exe =>PUP.Optional.WpManager
HKLM\SOFTWARE\Wow6432Node\Clara =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\FFPluginHp =>PUP.Optional.SweetSearch
HKLM\SOFTWARE\Wow6432Node\istartsurfSoftware =>PUP.Optional.IsStart
HKLM\SOFTWARE\Wow6432Node\WdsManPro =>PUP.Optional.WdsManPro
HKCU\SOFTWARE\BoBrowser =>PUP.Optional.BoBrowser
HKCU\SOFTWARE\Tortuga Team =>PUP.Optional.Tortuga
C:\Program Files (x86)\SFK =>PUP.Optional.MyWebSearch
C:\ProgramData\aWdsManProa =>PUP.Optional.WdsManPro
C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS
C:\ProgramData\{ACBCD40A-42A8-4FF9-BD42-ABCD14998CBA} =>PUP.Optional.BundleInstaller
C:\Users\Murilo Costa\AppData\Local\Installer =>PUP.Optional.InstallPedia
C:\Windows\System32\drivers\EsgScanner.sys =>.Superfluous.SpyHunter
C:\Users\Murilo Costa\Downloads\Programs\SpyHunter-Installer.exe =>.Superfluous.SpyHunter
---\\ Resumo dos elementos encontrados na sua estação de trabalho (17) - 0s
http://www.nicolascoolman.fr/blog =>PUP.Optional.WdsManPro
http://www.nicolascoolman.fr/pup-isstart/ =>PUP.Optional.IsStart
http://www.nicolascoolman.fr/adware-mywebsearch/ =>PUP.Optional.MyWebSearch
http://www.nicolascoolman.fr/pup-wpmanager/ =>PUP.Optional.WpManager
http://www.nicolascoolman.fr/pup-suptab/ =>PUP.Optional.SupTab
http://www.nicolascoolman.fr/blog =>PUP.Optional.SweetSearch
http://www.nicolascoolman.fr/blog =>PUP.Optional.BoBrowser
http://www.nicolascoolman.fr/blog =>PUP.Optional.Tortuga
http://www.nicolascoolman.fr/trojan-autokms/ =>HackTool.AutoKMS
http://www.nicolascoolman.fr/blog =>PUP.Optional.BundleInstaller
http://www.nicolascoolman.fr/adware-installpedia/ =>PUP.Optional.InstallPedia
http://www.nicolascoolman.fr/blog =>.Superfluous.SpyHunter
http://www.nicolascoolman.fr/blog =>PUP.Optional.SearchEngine
http://www.nicolascoolman.fr/blog =>PUP.Optional.PriceFountain
http://www.nicolascoolman.fr/blog =>PUP.Optional.DeskCut
http://www.nicolascoolman.fr/blog =>PUP.Optional.FFToolBar
http://www.nicolascoolman.fr/pup-quickstart/ =>PUP.Optional.QuickStart
~ End of the scan, 51464 items in 182 seconds (1381)(0)()
~ iniciado por Murilo Costa (Administrator) (2015/09/16 15:23:13)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Status da versão: Rede de arquivo
~ Modo: Scanner
~ Relatório: C:\Users\Murilo Costa\Desktop\ZHPDiag.txt
~ Relatório: C:\Users\Murilo Costa\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Inicialização do sistema: Normal (Normal boot)
Windows 7 Ultimate, 64-bit Service Pack 1 (Build 7601)
---\\ Navegadores Internet (4) - 0s
GCIE: Google Chrome v45.0.2454.85
MFIE: Mozilla Firefox 39.0 (x86 pt-BR) v39.0
OPIE: Opera 27.0.1689.66 v27.0.1689.66
MSIE: Internet Explorer v11.0.9600.17914
---\\ Informações sobre os produtos Windows (4) - 3s
~ Windows Server License Manager Script : OK
System - VBScript Engine not found
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ Softwares de proteçao do sistema (3) - 6s
Avast Free Antivirus v10.3.2225
Malwarebytes Anti-Malware versão 2.1.8.1057
Windows Defender W7 (Activate)
---\\ Softwares d'optimização do sistema (1) - 7s
CCleaner v5.09
---\\ Monitoramento dos softwares (2) - 7s
Adobe Flash Player 18 PPAPI
Adobe Reader XI
---\\ Informações sobre o sistema (6) - 0s
~ Operating System: AMD64 Family 21 Model 1 Stepping 2, AuthenticAMD
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 8370.296 MB (69% free)
~ System Restore: Activé (Enable)
~ System drive C: has 256 GB free of 953 GB
---\\ Modo de conexão ao sistema (3) - 0s
~ Computer Name: MURILOCOSTA-PC
~ User Name: Murilo Costa
~ Logged in as Administrator
---\\ Enumeração das unidades dos discos (2) - 0s
~ Drive C: has 256 GB free of 953 GB (System)
~ Drive D: has 120 GB free of 476 GB
---\\ Estado do Centro de Segurança do Windows (13) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Pesquisa particular de ficheiros genéricos (25) - 0s
[MD5.70D758D2DBE79757421017EE68143763] - (.Microsoft Corporation - Windows Explorer.) () -- C:\Windows\Explorer.exe [2871296] ©
[MD5.DD81D91FF3B0763C392422865C9AC12E] - (.Microsoft Corporation - Processo de host do Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [45568] ©
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Aplicativo de Inicialização do Windows.) () -- C:\Windows\System32\Wininit.exe [129024] ©
[MD5.E066FDC3A2074D926903B8C31EF3B347] - (.Microsoft Corporation - Internet Extensions para Win32.) () -- C:\Windows\System32\wininet.dll [2427392] ©
[MD5.98AA0BFEE089C7E5DADB94190D93456C] - (.Microsoft Corporation - Aplicativo de Logon do Windows.) () -- C:\Windows\System32\Winlogon.exe [455680] ©
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Biblioteca de Licenciamento de Software.) () -- C:\Windows\System32\sppcomapi.dll [232448] ©
[MD5.98E998C5630C642F4AF00820BD63DCEC] - (.Microsoft Corporation - DLL da API de cliente DNS.) () -- C:\Windows\System32\dnsapi.dll [357376] ©
[MD5.C637C9AFA4A638D316D70686293F19D1] - (.Microsoft Corporation - DLL da API de cliente DNS.) () -- C:\Windows\Syswow64\dnsapi.dll [270336] ©
[MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [497152] ©
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [24128] ©
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [92160] ©
[MD5.E5F4FD3D59B9141560D4174AAE6E66E0] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [148992] ©
[MD5.9FCDC4EEBCE39173122F9FEE53A054FC] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [102912] ©
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [122368] ©
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Driver de porta i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [105472] ©
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [116224] ©
[MD5.E9DD0E8829567362C1051E0905174DDE] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [159744] ©
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [261632] ©
[MD5.48B6047F82D5A8D0AEC71593F4ACD79B] - (.Microsoft Corporation - Driver do Sistema de Arquivos NT.) () -- C:\Windows\System32\drivers\ntfs.sys [1684416] ©
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Driver de porta paralela.) () -- C:\Windows\System32\drivers\Parport.sys [97280] ©
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] ©
[MD5.B6E3CB704BCD9FA07CD35F202D64DCC2] - (.Microsoft Corporation - Microsoft RDP Device redirector.) () -- C:\Windows\System32\drivers\rdpdr.sys [165888] ©
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [93184] ©
[MD5.70988118145F5F10EF24720B97F35F65] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [119296] ©
[MD5.A56F2326CE33646CDA95E7A9E7163FFA] - (.Microsoft Corporation - Driver de cópia de sombra de volume.) () -- C:\Windows\System32\drivers\volsnap.sys [296304] ©
---\\ Processos lançados (34) - 1s
[MD5.E8E046DB17671161DE74D1BB4E42D4B5] - (.AMD - AMD External Events Service Module.) -- C:\Windows\system32\atiesrxx.exe [245760] [PID.968] ©
[MD5.94D9C7A4A631B0C193E49ED9C87ECB42] - (.AMD - AMD External Events Client Module.) -- C:\Windows\system32\atieclxx.exe [670720] [PID.1252] ©
[MD5.4956380A54B1C9E6BFDF3D80DACB9698] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600] [PID.1452] ©
[MD5.4C72FDD915D62EAEF149BD9C73AB9CF4] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [81088] [PID.1844] ©
[MD5.23B97097BE0DAF1583EFD9B22233CF5A] - (.Advanced Micro Devices, Inc. - AMD Fuel Service.) -- C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064] [PID.1928] ©
[MD5.1992CE1C0B68D1A2AC036433479FDB30] - (.Disc Soft Ltd - Disc soft bus service.) -- C:\Program Files (x86)\DAEMON Tools Pro\DiscSoftBusService.exe [2216208] [PID.2088] ©
[MD5.1CF03C69B49ACB70C722DF92755C0C8C] - (.Macrovision Corporation - IDriverT Module.) -- C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632] [PID.2156] ©
[MD5.CD421DDB5C6E5458CE52EDC36DE7DC5B] - (...) -- C:\Windows\SysWOW64\PnkBstrA.exe [76152] [PID.3028]
[MD5.4580AC6F8ADADB5CE9F296F7FF5B15DD] - (.TODO: <公司名> - TODO: <文件说明>.) -- C:\Program Files (x86)\SFK\SSFK.exe [450048] [PID.2896]
[MD5.809B39A1A036C20994E68CF322A2519A] - (.DTools LIMITED - DTools.) -- C:\ProgramData\aWdsManProa\WdsManPro.exe [451720] [PID.3248] =>PUP.Optional.WdsManPro
[MD5.357CABBF155AFD1D3926E62539D2A3A7] - (.Microsoft Corp. - Microsoft® Windows Live ID Service.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292480] [PID.3396] ©
[MD5.D790CAFEFF0291D0AF8C76F5A1EE2E4E] - (.Microsoft Corp. - Microsoft® Windows Live ID Service Monitor.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE [223488] [PID.3464] ©
[MD5.33BFEC2B102B196B62ABB9947C7D7E23] - (.Dropbox, Inc. - Dropbox Update.) -- C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048] [PID.1392] ©
[MD5.45042BE9FD94BBA8306D354696CA4E3B] - (.WiseCleaner.com - Wise Care 365 Tray.) -- C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe [2343984] [PID.2704] ©
[MD5.AD242E8C6A442F0B8A73DD3E3CC92653] - (.Auslogics - BoostSpeed.) -- C:\Program Files (x86)\Auslogics\BoostSpeed\BoostSpeed.exe [3389896] [PID.3164] ©
[MD5.DB367E8C8F46C26A05BA982715CC0DB5] - (.Pixart Imaging Inc - pximouse.) -- C:\Windows\System32\TiltWheelMouse.exe [241152] [PID.4040]
[MD5.7D0E11F1640F088BC4BF79C9B56133EE] - (.Disc Soft Ltd - DAEMON Tools Shell Extensions Helper.) -- C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe [3523344] [PID.3276] ©
[MD5.CCFA17673A0016BF96100392A6B1DAE7] - (.Realtek Semiconductor - Gerenciador de áudio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8466648] [PID.3740] ©
[MD5.7537122E032DD3B52AADF467B3E8553A] - (...) -- C:\Program Files (x86)\SFK\SFKEX64.exe [123392] [PID.4084]
[MD5.7DFCCC67990B6DE7F30F553A4E4612A4] - (...) -- C:\Program Files (x86)\RocketDock\RocketDock.exe [495616] [PID.3184]
[MD5.554C2CD072CC3917120D2A096CF8886E] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3907152] [PID.4236] ©
[MD5.F66203AF9C159E2CBD54DF981654F499] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe [6111824] [PID.4384] ©
[MD5.1C7C9F16762BB5D75B4E43B0BD9AC78D] - (.Internet Download Manager, Tonec Inc. - IDM Integration module.) -- C:\Program Files (x86)\Internet Download Manager\IDMIntegrator64.exe [67608] [PID.4420]
[MD5.E9C6EF9437ECB30911488F9313AD821A] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe [269848] [PID.4752] ©
[MD5.615209C5C8F920648E024A234201A404] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [871240] [PID.4120] ©
[MD5.615209C5C8F920648E024A234201A404] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [871240] [PID.5116] ©
[MD5.615209C5C8F920648E024A234201A404] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [871240] [PID.1692] ©
[MD5.615209C5C8F920648E024A234201A404] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [871240] [PID.4908] ©
[MD5.615209C5C8F920648E024A234201A404] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [871240] [PID.5092] ©
[MD5.615209C5C8F920648E024A234201A404] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [871240] [PID.4656] ©
[MD5.615209C5C8F920648E024A234201A404] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [871240] [PID.5032] ©
[MD5.615209C5C8F920648E024A234201A404] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [871240] [PID.4904] ©
[MD5.615209C5C8F920648E024A234201A404] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [871240] [PID.4464] ©
[MD5.018B44D6E41ABDD08403E6B9EC3575B3] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Murilo Costa\Documents\linha defensiva\ZHPDiag3.exe [1929728] [PID.500] ©
---\\ Google Chrome, Arranque,Pesquisa,Extensões (11) - 0s
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.google.com.br/
G2 - GCE: Preference [User Data\Default] [aknpkdffaafgjchaibgeefbgmgeghloj] Angry Birds
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [gomekmidlodglbbmalcneegieacbdmki] Avast Online Security
G2 - GCE: Preference [User Data\Default] [heaigjkhmboanopbhfjfpmlkoeeaeccc] __MSG_ext_name__
G2 - GCE: Preference [User Data\Default] [idnljhnpjegfbcohjhdnhjlnfnffmbnf] GBBD Banco Santander (Brasil) S.A.
G2 - GCE: Preference [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.
---\\ Mozilla Firefox, Plugins,Arranque,Pesquisa,Extensões (22) - 1s
M0 - MFSP: prefs.js [Murilo Costa - 35mz2grc.default] http://www.google.com/
P2 - EXT FILE: (...) -- C:\Users\Murilo Costa\AppData\Roaming\Mozilla\Firefox\Profiles\35mz2grc.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi
P2 - EXT FILE: (...) -- C:\Users\Murilo Costa\AppData\Roaming\Mozilla\Firefox\Profiles\35mz2grc.default\searchplugins\google-.xml
P2 - EXT FILE: (...) -- C:\Users\Murilo Costa\AppData\Roaming\Mozilla\Firefox\Profiles\35mz2grc.default\searchplugins\google-avast.xml
P2 - EXT FILE: (...) -- C:\Users\Murilo Costa\AppData\Roaming\Mozilla\Firefox\Profiles\35mz2grc.default\searchplugins\Google.xml
P2 - EXT FILE: (...) -- C:\Users\Murilo Costa\AppData\Roaming\Mozilla\Firefox\Profiles\35mz2grc.default\searchplugins\Google_1.xml
P2 - EXT FILE: (...) -- C:\Users\Murilo Costa\AppData\Roaming\Mozilla\Firefox\Profiles\35mz2grc.default\searchplugins\istartsurf.xml =>PUP.Optional.IsStart
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\bing.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\buscape.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\ddg.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\google.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\mercadolivre.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\twitter.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wikipedia-br.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo-br.xml
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ©
P2 - EXT: (.Microsoft Corporation - Bing Search.) -- C:\Users\Murilo Costa\AppData\Roaming\Mozilla\Firefox\Profiles\35mz2grc.default\extensions\bingsearch.full@microsoft.com ©
P2 - EXT: (.Vinícius Della Líbera - Verificador Ortográfico para Português do Brasil..) -- C:\Users\Murilo Costa\AppData\Roaming\Mozilla\Firefox\Profiles\35mz2grc.default\extensions\pt-BR@dellalibera.sf.net
P2 - FPN: [HKCU] [gastecnologia.com.br/sf/abn] - (.GAS Tecnologia.) -- C:\Users\Murilo Costa\AppData\Local\GAS Tecnologia\GBBD\npsf_abn.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll ©
P2 - FPN: [HKLM] [@esn.me/esnsonar,version=0.70.4] - (.ESN Social Software AB.) -- C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll
P2 - FPN: [HKLM] [@esn/esnlaunch,version=2.3.0] - (.ESN Social Software AB.) -- C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll
---\\ Opera, Plugins,Arranque,Pesquisa (1) - 1s
B2 - EXT: [download-videos] C:\Users\Murilo Costa\AppData\Roaming\Opera Software\Opera Stable\Extensions\beemgnphifpbdehfmohojkhlklfaddih
---\\ Internet Explorer, Arranque, Pesquisa, Phishing (15) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
---\\ Internet Explorer, Gestão do Proxy (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Análise das linhas, Carregamento Automático de programas (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.)
---\\ Redireção do ficheiro Hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (23)
---\\ Browser Helper Objects do navegador (7) - 0s
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll
O2 - BHO: Skype for Business Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Skype for Business.) -- C:\Program Files\Microsoft Office\Office15\OCHelper.dll ©
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll ©
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll ©
O2 - BHO: SkypeIEPluginBHO [64Bits] - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll ©
O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL ©
O2 - BHO: Microsoft SkyDrive Pro Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL ©
---\\ Aplicações iniciadas por registo & pastas (11) - 0s
O4 - HKLM\..\Run: [MouseDriver] . (.Pixart Imaging Inc - pximouse.) -- C:\Windows\System32\TiltWheelMouse.exe
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gerenciador de áudio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe ©
O4 - HKCU\..\Run: [RocketDock] . (...) -- C:\Program Files (x86)\RocketDock\RocketDock.exe
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe ©
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe ©
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets da Área de Trabalho do Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets da Área de Trabalho do Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-21-2687556472-4158628515-2680252711-1000\..\Run: [RocketDock] . (...) -- C:\Program Files (x86)\RocketDock\RocketDock.exe
O4 - HKUS\S-1-5-21-2687556472-4158628515-2680252711-1000\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe ©
---\\ Alteração Dominio/Clientes DNS (3) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 208.67.222.222 208.67.220.220 192.168.0.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 208.67.222.222 208.67.220.220 192.168.0.1
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 208.67.222.222 208.67.220.220 192.168.0.1
---\\ Protocolo adicional (24) - 0s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Controle ActiveX para streaming de vídeo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll ©
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll ©
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: osf [64Bits] - {D924BDC6-C83A-4BD5-90D0-095128A113D1} . (.Microsoft Corporation - Microsoft Office 2013 component.) -- C:\Program Files\Microsoft Office\Office15\MSOSB.DLL ©
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: skypec2c [64Bits] - {91774881-D725-4E58-B298-07617B9B86A8} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll ©
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Controle ActiveX para streaming de vídeo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: text/xml [64Bits] - {807583E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL ©
---\\ Serviços NT não Microsoft e não desativados (19) - 1s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe ©
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated - Adobe® Flash® Player Update Service 18.0 r0.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe ©
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\system32\atiesrxx.exe ©
O23 - Service: AMD FUEL Service (AMD FUEL Service) . (.Advanced Micro Devices, Inc. - AMD Fuel Service.) - C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe ©
O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe ©
O23 - Service: @comres.dll,-947 (COMSysApp) . (...) - %SystemRoot%\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
O23 - Service: Dropbox Update Service (dbupdate) (dbupdate) . (.Dropbox, Inc. - Dropbox Update.) - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ©
O23 - Service: Dropbox Update Service (dbupdatem) (dbupdatem) . (.Dropbox, Inc. - Dropbox Update.) - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ©
O23 - Service: Disc Soft Bus Service (Disc Soft Bus Service) . (.Disc Soft Ltd - Disc soft bus service.) - C:\Program Files (x86)\DAEMON Tools Pro\DiscSoftBusService.exe ©
O23 - Service: Google Update Service (gupdate1d0bd9c9f0dee6f) (gupdate1d0bd9c9f0dee6f) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
O23 - Service: Google Update Service (gupdatem1d0bd9c9f933b7f) (gupdatem1d0bd9c9f933b7f) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
O23 - Service: InstallDriver Table Manager (IDriverT) . (.Macrovision Corporation - IDriverT Module.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe ©
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe ©
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation - .) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe ©
O23 - Service: Origin Client Service (Origin Client Service) . (.Electronic Arts - OriginClientService.) - C:\Program Files (x86)\Origin\OriginClientService.exe ©
O23 - Service: PnkBstrA (PnkBstrA) . (...) - C:\Windows\System32\PnkBstrA.exe
O23 - Service: SSFK (SSFK) . (.TODO: <公司名> - TODO: <文件说明>.) - C:\Program Files (x86)\SFK\SSFK.exe =>PUP.Optional.MyWebSearch
O23 - Service: WdsManPro Service (WdsManPro) . (.DTools LIMITED - DTools.) - C:\ProgramData\aWdsManProa\WdsManPro.exe =>PUP.Optional.WpManager
O23 - Service: Wise Boot Assistant (WiseBootAssistant) . (.WiseCleaner.com - Wise BootTime Service.) - C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe ©
---\\ Tarefas planificadas automaticamente (14) - 4s
[MD5.BBF37D81780EBB4919636CF7E5C789BE] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269000] ©
[MD5.76F586CEF7018BD376CBBD74AEAC93F5] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [1373872] ©
[MD5.7245B4C192D20107B4A3E887AED3F76E] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [6490904] ©
[MD5.45042BE9FD94BBA8306D354696CA4E3B] [APT] [Wise Care 365] (.WiseCleaner.com.) -- C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe [2343984] ©
[MD5.4E59FD37BF7C0F5DC45FD73947A59DE4] [APT] [Wise Turbo Checker] (.WiseCleaner.COM.) -- C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe [1399616] ©
[MD5.AD242E8C6A442F0B8A73DD3E3CC92653] [APT] [Auslogics\BoostSpeed\Start BoostSpeed ?n Murilo Costa logon] (.Auslogics.) -- C:\Program Files (x86)\Auslogics\BoostSpeed\BoostSpeed.exe [3389896] ©
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [830] ©
O39 - APT: Wise Care 365 - (.WiseCleaner.com.) -- C:\Windows\Tasks\Wise Care 365.job [436] ©
O39 - APT: Wise Turbo Checker - (.WiseCleaner.COM.) -- C:\Windows\Tasks\Wise Turbo Checker.job [442] ©
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3768] ©
O39 - APT: avast! Emergency Update - (.AVAST Software.) -- C:\Windows\System32\Tasks\avast! Emergency Update [4182] ©
O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\Windows\System32\Tasks\CCleanerSkipUAC [2786] ©
O39 - APT: Wise Care 365 - (.WiseCleaner.com.) -- C:\Windows\System32\Tasks\Wise Care 365 [2876] ©
O39 - APT: Wise Turbo Checker - (.WiseCleaner.COM.) -- C:\Windows\System32\Tasks\Wise Turbo Checker [3124] ©
---\\ Software instalados (180) - 17s
O42 - Logiciel: Nexus Mod Manager - (.Black Tree Gaming.) [HKLM][64Bits] -- 6af12c54-643b-4752-87d0-8335503010de_is1 ©
O42 - Logiciel: 7-Zip 15.05 beta x64 - (...) [HKLM][64Bits] -- 7-Zip
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner ©
O42 - Logiciel: CPUID CPU-Z 1.72.1 - (...) [HKLM][64Bits] -- CPUID CPU-Z_is1
O42 - Logiciel: CPUID HWMonitor 1.28 - (...) [HKLM][64Bits] -- CPUID HWMonitor_is1
O42 - Logiciel: Foxit Reader 7.1.5.425 - (.oszone.net.) [HKLM][64Bits] -- Foxit Reader
O42 - Logiciel: Unlocker 1.9.2 - (.Cedrick Collomb.) [HKLM][64Bits] -- Unlocker ©
O42 - Logiciel: WinRAR 5.20 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver ©
O42 - Logiciel: Corel Graphics - Windows Shell Extension - (.Corel Corporation.) [HKLM][64Bits] -- _{4DC318F5-1640-4417-A218-912ED9905FAA} ©
O42 - Logiciel: CorelDRAW Graphics Suite X7 (64-Bit) - (.Corel Corporation.) [HKLM][64Bits] -- _{5CB73140-806C-42C6-A05A-1AFD0E92DEB5} ©
O42 - Logiciel: HP Deskjet 1510 series Software básico do dispositivo - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {06FD25AF-70F0-4CA9-88EA-490799567F11} ©
O42 - Logiciel: CorelDRAW Graphics Suite X7 - IPM T (x64) - (.Corel Corporation.) [HKLM][64Bits] -- {13179AB2-69FD-459B-800F-81865A501AD4} ©
O42 - Logiciel: AMD Catalyst Install Manager - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {14D58A97-B60E-A858-34D8-95469C02F7EC} ©
O42 - Logiciel: Corel Graphics - Windows Shell Extension 32 Bit - (.Corel Corporation.) [HKLM][64Bits] -- {3B4AE1A9-C026-4D08-8004-DA9A85A411A4} ©
O42 - Logiciel: AMD Wireless Display v3.0 - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {426582A8-202F-D13C-8BD5-F00551BAFC93} ©
O42 - Logiciel: Corel Graphics - Windows Shell Extension - (.Corel Corporation.) [HKLM][64Bits] -- {4DC318F5-1640-4417-A218-912ED9905FAA} ©
O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM][64Bits] -- {503F672D-6C84-448A-8F8F-4BC35AC83441} ©
O42 - Logiciel: AMD Media Foundation Decoders - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {5125F6C3-E8E5-F400-182F-BFF022B47DBB} ©
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} ©
O42 - Logiciel: AMD Accelerated Video Transcoding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {8F2415FA-72F2-F029-0450-4EB2FAE484C5} ©
O42 - Logiciel: Microsoft Access MUI (Portuguese (Brazil)) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0015-0416-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Excel MUI (Portuguese (Brazil)) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0016-0416-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft PowerPoint MUI (Portuguese (Brazil)) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0018-0416-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Publisher MUI (Portuguese (Brazil)) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0019-0416-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Outlook MUI (Portuguese (Brazil)) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001A-0416-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Word MUI (Portuguese (Brazil)) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001B-0416-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft InfoPath MUI (Portuguese (Brazil)) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0044-0416-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft DCF MUI (Portuguese (Brazil)) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0090-0416-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft OneNote MUI (Portuguese (Brazil)) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00A1-0416-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Groove MUI (Portuguese (Brazil)) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00BA-0416-1000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Lync MUI (Portuguese (Brazil)) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-012B-0416-1000-0000000FF1CE} ©
O42 - Logiciel: Update for Skype for Business 2015 (KB2889853) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-012B-0416-1000-0000000FF1CE}_Office15.PROPLUS_{45AD9785-5503-4B26-981A-AF62A355ADF2} ©
O42 - Logiciel: AMD Drag and Drop Transcoding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {BB8B580B-8119-0235-C923-5F1EECE66561} ©
O42 - Logiciel: AMD Wireless Display v3.0 - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {C270821D-2479-D0F4-1BD1-7BBAF6762A98} ©
O42 - Logiciel: CorelDRAW Graphics Suite X7 - Writing Tools (x64) - (. Corel Corporation.) [HKLM][64Bits] -- {D63404AC-C2F1-4B3D-96EA-9727AC9D994C}
O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {E9FA781F-3E80-4399-825A-AD3E11C28C77} ©
O42 - Logiciel: CorelDRAW Graphics Suite X7 - IPM Content (x64) - (.Corel Corporation.) [HKLM][64Bits] -- {EF44BCCD-13F9-4974-862C-CCFAF43EE082} ©
O42 - Logiciel: Braveland Wizard - (.GOG.com.) [HKLM][64Bits] -- 1207667193_is1 ©
O42 - Logiciel: Toren - (.GOG.com.) [HKLM][64Bits] -- 1429865580_is1 ©
O42 - Logiciel: Adobe Flash Player 18 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX ©
O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI ©
O42 - Logiciel: Adobe Flash Player 18 PPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player PPAPI ©
O42 - Logiciel: Avast Free Antivirus - (.AVAST Software.) [HKLM][64Bits] -- Avast ©
O42 - Logiciel: Bastion Tradução BR v1.00 - (.Tribo Gamer Brasil®.) [HKLM][64Bits] -- Bastion BR
O42 - Logiciel: Battlelog Web Plugins - (.EA Digital Illusions CE AB.) [HKLM][64Bits] -- Battlelog Web Plugins ©
O42 - Logiciel: Blackguards - (.Daedalic Entertainment GmbH.) [HKLM][64Bits] -- Blackguards_is1
O42 - Logiciel: Breach and Clear Deadline - (...) [HKLM][64Bits] -- Breach and Clear Deadline_is1
O42 - Logiciel: Cheat Engine 6.4 - (.Cheat Engine.) [HKLM][64Bits] -- Cheat Engine 6.4_is1 ©
O42 - Logiciel: Cities Skylines - (...) [HKLM][64Bits] -- Cities Skylines_is1
O42 - Logiciel: Crysis 2 - Maximum Edition - (...) [HKLM][64Bits] -- Crysis 2 - Maximum Edition_is1
O42 - Logiciel: DAEMON Tools Pro - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Pro ©
O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKLM][64Bits] -- Dropbox ©
O42 - Logiciel: ESN Sonar - (.ESN Social Software AB.) [HKLM][64Bits] -- ESN Sonar-0.70.4
O42 - Logiciel: Fable Anniversary - (...) [HKLM][64Bits] -- Fable Anniversary_is1
O42 - Logiciel: Foxit Reader - (.Foxit Software Inc..) [HKLM][64Bits] -- Foxit Reader_is1 ©
O42 - Logiciel: Dark Souls Prepare to Die Edition - (.NAMCO BANDAI Games Europe S.A.S..) [HKLM][64Bits] -- GFWL_{4E4D0FA1-F880-4CCB-999A-501000008200} ©
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome ©
O42 - Logiciel: Grey Goo - (.Релиз от R.G. Steamgames.) [HKLM][64Bits] -- Grey Goo_is1
O42 - Logiciel: Heroes of the Storm - (.Blizzard Entertainment.) [HKLM][64Bits] -- Heroes of the Storm ©
O42 - Logiciel: Age of Empires III - (.Microsoft Game Studios.) [HKLM][64Bits] -- InstallShield_{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97} ©
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager ©
O42 - Logiciel: K-Lite Codec Pack 10.9.0 Full - (...) [HKLM][64Bits] -- KLiteCodecPack_is1
O42 - Logiciel: LogoMaker 2.0 - (.Studio V5.) [HKLM][64Bits] -- LogoMaker_is1
O42 - Logiciel: Lost Planet Extreme Condition Tradução BR v1.00 - (.Tribo dos Renegados Brasil®.) [HKLM][64Bits] -- Lost Planet Extreme Condition BR
O42 - Logiciel: Malwarebytes Anti-Malware versão 2.1.8.1057 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 ©
O42 - Logiciel: Mozilla Firefox 39.0 (x86 pt-BR) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 39.0 (x86 pt-BR) ©
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService ©
O42 - Logiciel: Neverwinter Nights 2 - Platinum Edition - (...) [HKLM][64Bits] -- Neverwinter Nights 2 - Platinum Edition_is1
O42 - Logiciel: Notepad++ - (.Notepad++ Team.) [HKLM][64Bits] -- Notepad++ ©
O42 - Logiciel: Opera Stable 27.0.1689.66 - (.Opera Software ASA.) [HKLM][64Bits] -- Opera 27.0.1689.66 ©
O42 - Logiciel: Opera Stable 29.0.1795.60 - (.Opera Software ASA.) [HKLM][64Bits] -- Opera 29.0.1795.60 ©
O42 - Logiciel: Opera Stable 31.0.1889.174 - (.Opera Software.) [HKLM][64Bits] -- Opera 31.0.1889.174 ©
O42 - Logiciel: Ori and the Blind Forest - (...) [HKLM][64Bits] -- Ori and the Blind Forest_is1
O42 - Logiciel: Origin - (.Electronic Arts, Inc..) [HKLM][64Bits] -- Origin ©
O42 - Logiciel: PhotoScape - (...) [HKLM][64Bits] -- PhotoScape
O42 - Logiciel: Pier Solar and the Great Architects HD - (...) [HKLM][64Bits] -- Pier Solar and the Great Architects HD_is1
O42 - Logiciel: PokerStars - (.PokerStars.) [HKLM][64Bits] -- PokerStars
O42 - Logiciel: PrivaZer - (.Goversoft LLC.) [HKLM][64Bits] -- PrivaZer ©
O42 - Logiciel: Project CARS - (.Релиз от R.G. Steamgames.) [HKLM][64Bits] -- Project CARS_is1
O42 - Logiciel: PunkBuster Services - (.Even Balance, Inc..) [HKLM][64Bits] -- PunkBusterSvc ©
O42 - Logiciel: Revo Uninstaller 1.95 - (.VS Revo Group.) [HKLM][64Bits] -- Revo Uninstaller ©
O42 - Logiciel: Flame Over - (...) [HKLM][64Bits] -- RmxhbWVPdmVy_is1
O42 - Logiciel: RocketDock 1.3.5 - (.Punk Software.) [HKLM][64Bits] -- RocketDock_is1 ©
O42 - Logiciel: SpeedFan (remove only) - (...) [HKLM][64Bits] -- SpeedFan
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- Steam ©
O42 - Logiciel: Bastion - (.Supergiant Games.) [HKLM][64Bits] -- Steam App 107100
O42 - Logiciel: Waves - (.Squid In A Box Ltd.) [HKLM][64Bits] -- Steam App 107600
O42 - Logiciel: Shadowgrounds: Survivor - (.Frozenbyte.) [HKLM][64Bits] -- Steam App 11200 ©
O42 - Logiciel: Gumboy Tournament - (.CINEMAX, s.r.o..) [HKLM][64Bits] -- Steam App 11230
O42 - Logiciel: Toki Tori 2+ - (.Two Tribes.) [HKLM][64Bits] -- Steam App 201420
O42 - Logiciel: Dota 2 Test - (...) [HKLM][64Bits] -- Steam App 205790
O42 - Logiciel: The Witcher: Enhanced Edition - (.CD PROJEKT RED.) [HKLM][64Bits] -- Steam App 20900 ©
O42 - Logiciel: The Witcher 2: Assassins of Kings Enhanced Edition - (.CD Projekt RED.) [HKLM][64Bits] -- Steam App 20920 ©
O42 - Logiciel: Tiny Troopers - (.Kukouri.) [HKLM][64Bits] -- Steam App 216110
O42 - Logiciel: BRINK - (.Splash Damage.) [HKLM][64Bits] -- Steam App 22350 ©
O42 - Logiciel: DLC Quest - (.Going Loud Studios.) [HKLM][64Bits] -- Steam App 230050 ©
O42 - Logiciel: Medal of Honor: Airborne - (.EA Los Angeles.) [HKLM][64Bits] -- Steam App 24840 ©
O42 - Logiciel: Shadowgrounds - (.Frozenbyte.) [HKLM][64Bits] -- Steam App 2500 ©
O42 - Logiciel: Might & Magic: Duel of Champions - (.BlueByte.) [HKLM][64Bits] -- Steam App 256410
O42 - Logiciel: Nightmares from the Deep: The Cursed Heart - (.Artifex Mundi sp. z o.o..) [HKLM][64Bits] -- Steam App 259740
O42 - Logiciel: Kane & Lynch 2: Dog Days - (.IO Interactive.) [HKLM][64Bits] -- Steam App 28000 ©
O42 - Logiciel: Clockwork Tales: Of Glass and Ink - (.Artifex Mundi sp. z o.o..) [HKLM][64Bits] -- Steam App 284830
O42 - Logiciel: Total War: SHOGUN 2 - (.The Creative Assembly.) [HKLM][64Bits] -- Steam App 34330 ©
O42 - Logiciel: Trine - (.Frozenbyte.) [HKLM][64Bits] -- Steam App 35700 ©
O42 - Logiciel: Defend Your Life - (.Alda Games.) [HKLM][64Bits] -- Steam App 357780
O42 - Logiciel: Medal of Honor(TM) Single Player - (.Electronic Arts.) [HKLM][64Bits] -- Steam App 47790 ©
O42 - Logiciel: Medal of Honor(TM) Multiplayer - (.Electronic Arts.) [HKLM][64Bits] -- Steam App 47830 ©
O42 - Logiciel: Might & Magic: Heroes VI - (.Blackhole.) [HKLM][64Bits] -- Steam App 48220
O42 - Logiciel: Dota 2 - (.Valve.) [HKLM][64Bits] -- Steam App 570 ©
O42 - Logiciel: Lost Planet: Extreme Condition - (.CAPCOM Co., Ltd..) [HKLM][64Bits] -- Steam App 6510
O42 - Logiciel: Commandos: Behind Enemy Lines - (.Pyro Studios.) [HKLM][64Bits] -- Steam App 6800 ©
O42 - Logiciel: Commandos: Beyond the Call of Duty - (.Pyro Studios.) [HKLM][64Bits] -- Steam App 6810 ©
O42 - Logiciel: Commandos 2: Men of Courage - (.Pyro Studios.) [HKLM][64Bits] -- Steam App 6830 ©
O42 - Logiciel: Commandos 3: Destination Berlin - (.Pyro Studios.) [HKLM][64Bits] -- Steam App 6840 ©
O42 - Logiciel: BioShock 2 - (.2K Marin.) [HKLM][64Bits] -- Steam App 8850
O42 - Logiciel: Hydrophobia: Prophecy - (.Dark Energy Digital Ltd..) [HKLM][64Bits] -- Steam App 92000
O42 - Logiciel: TagScanner 5.1.668 - (.Sergey Serkov.) [HKLM][64Bits] -- TagScanner_is1
O42 - Logiciel: The Banner Saga - (.R.G. Gamblers, Fanfar.) [HKLM][64Bits] -- The Banner Saga_R.G. Gamblers_is1
O42 - Logiciel: TimeShift Tradução BR v1.00 - (.Tribo dos Renegados Brasil®.) [HKLM][64Bits] -- TimeShift 2 BR
O42 - Logiciel: TSEV Skyrim LE - (...) [HKLM][64Bits] -- TSEV Skyrim LE_is1
O42 - Logiciel: Resident Evil 6 version 1 - (...) [HKLM][64Bits] -- UmVzaWRlbnQgRXZpbCA2_is1
O42 - Logiciel: Sony Mobile Update Engine - (.Sony Mobile Communications Inc..) [HKLM][64Bits] -- Update Engine ©
O42 - Logiciel: WARMACHINE: Tactics - (...) [HKLM][64Bits] -- V0FSTUFDSElORVRhY3RpY3M=_is1
O42 - Logiciel: Warlords Battlecry 3 - (.GOG.com.) [HKLM][64Bits] -- Warlords Battlecry 3_is1 ©
O42 - Logiciel: Xion v1.5 (build 155) - (.r2 Studios.) [HKLM][64Bits] -- Xion
O42 - Logiciel: Dropbox Update Helper - (.Dropbox, Inc..) [HKLM][64Bits] -- {099218A5-A723-43DC-8DB5-6173656A1E94} ©
O42 - Logiciel: Zumas Revenge - (.PopCap Games.) [HKLM][64Bits] -- {0B153CAB-792B-4CA2-B2A5-AB0BBAF2FFA9} ©
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {0BE9E708-5DC0-4963-9CFD-0AA519090E79} ©
O42 - Logiciel: VirtualDJ 8 - (.Atomix Productions.) [HKLM][64Bits] -- {10C4696A-2915-47F2-A14A-78F70DA82E57} ©
O42 - Logiciel: Catalyst Control Center - Branding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {11087D24-567D-7D88-69C6-D7A08B5F4C47} ©
O42 - Logiciel: Google Drive - (.Google, Inc..) [HKLM][64Bits] -- {12ADFB82-D5A3-43E4-B2F4-FCD9B690315B} ©
O42 - Logiciel: TimeShift - (.Sierra Entertainment.) [HKLM][64Bits] -- {1367FA2F-2B3D-430F-872F-588B93420BFC}
O42 - Logiciel: Microsoft XNA Framework Redistributable 3.1 - (.Microsoft Corporation.) [HKLM][64Bits] -- {19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20} ©
O42 - Logiciel: Microsoft XNA Framework Redistributable 2.0 - (.Microsoft Corporation.) [HKLM][64Bits] -- {245F6C7A-0C22-4DE0-8202-2AAA620A1D3A} ©
O42 - Logiciel: Skype™ 7.0 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7} ©
O42 - Logiciel: Java 8 Update 45 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218045F0} ©
O42 - Logiciel: FEAR - (.Vivendi Universal Games, Inc..) [HKLM][64Bits] -- {2B653229-9854-4989-B780-D978F5F13EAB}
O42 - Logiciel: Microsoft XNA Framework Redistributable 4.0 - (.Microsoft Corporation.) [HKLM][64Bits] -- {2BFC7AA0-544C-4E3A-8796-67F3BE655BE9} ©
O42 - Logiciel: Microsoft XNA Framework Redistributable 3.0 - (.Microsoft Corporation.) [HKLM][64Bits] -- {3898934B-05AE-41CD-96BE-70DA9BFBCE1F} ©
O42 - Logiciel: EA SPORTS™ FIFA 15 - (.Electronic Arts.) [HKLM][64Bits] -- {3D4ADA2B-F028-4307-ADF4-6F9AA44725DA} ©
O42 - Logiciel: Foxit Cloud - (.Foxit Software Inc..) [HKLM][64Bits] -- {41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1 ©
O42 - Logiciel: Ultima 8 - (.Electronic Arts.) [HKLM][64Bits] -- {428C6B01-D292-46F9-9321-75668ED17DA2} ©
O42 - Logiciel: USB Vibration Joystick - (...) [HKLM][64Bits] -- {4999B2F1-3E74-409A-B8B5-E94448AA9EA6}
O42 - Logiciel: Microsoft Games for Windows Marketplace - (.Microsoft Corporation.) [HKLM][64Bits] -- {4CB0307C-565E-4441-86BE-0DF2E4FB828C} ©
O42 - Logiciel: Dark Souls Prepare to Die Edition - (.NAMCO BANDAI Games Europe S.A.S..) [HKLM][64Bits] -- {4E4D0FA1-F880-4CCB-999A-501000008200} ©
O42 - Logiciel: Plants vs. Zombies™ - (.Electronic Arts, Inc..) [HKLM][64Bits] -- {5E6536C2-E79A-49CF-83EA-817AD81F9FC8} ©
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {64467D47-FFE4-4FBC-ABBA-A0DB829A17EB} ©
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701} ©
O42 - Logiciel: Peggle - (.PopCap Games.) [HKLM][64Bits] -- {715AD72D-887A-459E-988B-D4F3E87FA24B} ©
O42 - Logiciel: Auslogics BoostSpeed 8 - (.Auslogics Labs Pty Ltd.) [HKLM][64Bits] -- {7216871F-869E-437C-B9BF-2A13F2DCE63F}_is1 ©
O42 - Logiciel: Battlefield 3™ - (.Electronic Arts.) [HKLM][64Bits] -- {76285C16-411A-488A-BCE3-C83CB933D8CF} ©
O42 - Logiciel: Módulo de Proteção - Banco Santander (Brasil) S.A. - (...) [HKLM][64Bits] -- {83033d93-48d0-48fc-9c5b-82e57e7e0dd6}_is1
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} ©
O42 - Logiciel: Command & Conquer™ 3 Kane's Wrath - (.Electronic Arts.) [HKLM][64Bits] -- {8D37C28B-D1A5-41C0-9E5E-80D01355FEBC} ©
O42 - Logiciel: Auslogics Registry Cleaner - (.Auslogics Labs Pty Ltd.) [HKLM][64Bits] -- {8D8024F1-2945-49A5-9B78-5AB7B11D7942}_is1 ©
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} ©
O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA} ©
O42 - Logiciel: Galeria de Fotos - (.Microsoft Corporation.) [HKLM][64Bits] -- {9EE1AE8B-4872-41CA-8C9A-C33D899523E0} ©
O42 - Logiciel: Battlefield 4™ - (.Electronic Arts.) [HKLM][64Bits] -- {ABADE36E-EC37-413B-8179-B432AD3FACE7} ©
O42 - Logiciel: Adobe Reader XI (11.0.10) - Português - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1046-7B44-AB0000000001} ©
O42 - Logiciel: Silent Hill Homecoming - (.Konami.) [HKLM][64Bits] -- {AE7D5AF6-E561-4711-BC5A-E2CE7AFD8CA7}_is1 ©
O42 - Logiciel: Dragon Age: Origins - (.Electronic Arts.) [HKLM][64Bits] -- {AEC81925-9C76-4707-84A9-40696C613ED3} ©
O42 - Logiciel: Command & Conquer 3 Tiberium Wars™ - (.Electronic Arts.) [HKLM][64Bits] -- {CAC9DCAF-0EA8-442C-97EA-CA6F5755390A} ©
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9} ©
O42 - Logiciel: Intel(R) C++ Redistributables for Windows* on Intel(R) 64 - (.Intel Corporation.) [HKLM][64Bits] -- {D2437C5C-2D8C-40D2-8059-689AD7239FA3} ©
O42 - Logiciel: Microsoft XNA Framework Redistributable 4.0 Refresh - (.Microsoft Corporation.) [HKLM][64Bits] -- {D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F} ©
O42 - Logiciel: Empire Earth II - (.Sierra.) [HKLM][64Bits] -- {DF315348-721C-40B8-BAE2-58C6C7D935A2} ©
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} ©
O42 - Logiciel: Wise Care 365 version 1.83 - (.WiseCleaner.com.) [HKLM][64Bits] -- {E864A1C8-EEE1-47D0-A7F8-00CC86D26D5E}_is1 ©
O42 - Logiciel: Bejeweled® 3 - (.Electronic Arts, Inc..) [HKLM][64Bits] -- {E99C27B2-EB2E-4244-9F5C-A96F55100F0C} ©
O42 - Logiciel: Sony PC Companion 2.10.275 - (.Sony.) [HKLM][64Bits] -- {F09EF8F2-0976-42C1-8D9D-8DF78337C6E3} ©
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} ©
O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {F2508213-9989-4E85-A078-72BE483917EF} ©
O42 - Logiciel: EA SPORTS Game Face Browser Plugin 1.8.0.0 - (.Electronic Arts.) [HKCU][64Bits] -- EA SPORTS Game Face Browser Plugin ©
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe ©
O42 - Logiciel: Opera_helper - (.Opera_helper.) [HKCU][64Bits] -- Opera_helper
O42 - Logiciel: Songr - (.Xamasoft.) [HKCU][64Bits] -- Songr ©
O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU][64Bits] -- UnityWebPlayer ©
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent
O42 - Logiciel: XBMC - (.Team XBMC.) [HKCU][64Bits] -- XBMC
---\\ HKCU & HKLM Software Keys (212) - 17s
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AdwCleaner
HKLM\SOFTWARE\Wow6432Node\AGEIA Technologies
HKLM\SOFTWARE\Wow6432Node\AMD
HKLM\SOFTWARE\Wow6432Node\ATI
HKLM\SOFTWARE\Wow6432Node\ATI Technologies
HKLM\SOFTWARE\Wow6432Node\Aureal
HKLM\SOFTWARE\Wow6432Node\Auslogics
HKLM\SOFTWARE\Wow6432Node\AVAST Software
HKLM\SOFTWARE\Wow6432Node\Baidu Security
HKLM\SOFTWARE\Wow6432Node\Battlelog Web Plugins
HKLM\SOFTWARE\Wow6432Node\Bethesda Softworks
HKLM\SOFTWARE\Wow6432Node\BioWare
HKLM\SOFTWARE\Wow6432Node\Blizzard Entertainment
HKLM\SOFTWARE\Wow6432Node\cd projekt red
HKLM\SOFTWARE\Wow6432Node\Clara =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\Corel
HKLM\SOFTWARE\Wow6432Node\CounterPath
HKLM\SOFTWARE\Wow6432Node\Crytek
HKLM\SOFTWARE\Wow6432Node\Cyberlink
HKLM\SOFTWARE\Wow6432Node\Daedalic Entertainment GmbH
HKLM\SOFTWARE\Wow6432Node\Disc Soft
HKLM\SOFTWARE\Wow6432Node\Dropbox
HKLM\SOFTWARE\Wow6432Node\DropboxUpdate
HKLM\SOFTWARE\Wow6432Node\DT Soft
HKLM\SOFTWARE\Wow6432Node\EA Games
HKLM\SOFTWARE\Wow6432Node\EA Sports
HKLM\SOFTWARE\Wow6432Node\Electronic Arts
HKLM\SOFTWARE\Wow6432Node\Eset
HKLM\SOFTWARE\Wow6432Node\ESN Launcher
HKLM\SOFTWARE\Wow6432Node\ESN Sonar-0.70.4
HKLM\SOFTWARE\Wow6432Node\FFPluginHp =>PUP.Optional.SweetSearch
HKLM\SOFTWARE\Wow6432Node\Foxit Software
HKLM\SOFTWARE\Wow6432Node\Gabest
HKLM\SOFTWARE\Wow6432Node\GameVicio
HKLM\SOFTWARE\Wow6432Node\Gearbox Software
HKLM\SOFTWARE\Wow6432Node\GNU
HKLM\SOFTWARE\Wow6432Node\GOG.com
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\HaaliMkx
HKLM\SOFTWARE\Wow6432Node\Hewlett-Packard
HKLM\SOFTWARE\Wow6432Node\HP
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\Internet Download Manager
HKLM\SOFTWARE\Wow6432Node\IObit
HKLM\SOFTWARE\Wow6432Node\istartsurfSoftware =>PUP.Optional.IsStart
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\KLCodecPack
HKLM\SOFTWARE\Wow6432Node\LAV
HKLM\SOFTWARE\Wow6432Node\Licenses
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\Maxis
HKLM\SOFTWARE\Wow6432Node\Monolith Productions
HKLM\SOFTWARE\Wow6432Node\Mooii
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\NAMCO BANDAI Games
HKLM\SOFTWARE\Wow6432Node\Notepad++
HKLM\SOFTWARE\Wow6432Node\Nuance
HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation
HKLM\SOFTWARE\Wow6432Node\Obsidian
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\OldTimer Tools
HKLM\SOFTWARE\Wow6432Node\Opera Software
HKLM\SOFTWARE\Wow6432Node\Origin
HKLM\SOFTWARE\Wow6432Node\Origin Games
HKLM\SOFTWARE\Wow6432Node\Origin Systems
HKLM\SOFTWARE\Wow6432Node\PocketSoft
HKLM\SOFTWARE\Wow6432Node\PopCap
HKLM\SOFTWARE\Wow6432Node\PopCap Games
HKLM\SOFTWARE\Wow6432Node\PowerPivot
HKLM\SOFTWARE\Wow6432Node\Pyro
HKLM\SOFTWARE\Wow6432Node\RealNetworks
HKLM\SOFTWARE\Wow6432Node\Remedy Entertainment
HKLM\SOFTWARE\Wow6432Node\Sierra
HKLM\SOFTWARE\Wow6432Node\Sierra Entertainment
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\Sony
HKLM\SOFTWARE\Wow6432Node\Sony Mobile
HKLM\SOFTWARE\Wow6432Node\SpeedFan
HKLM\SOFTWARE\Wow6432Node\SRS Labs
HKLM\SOFTWARE\Wow6432Node\Surreal
HKLM\SOFTWARE\Wow6432Node\TrendMicro
HKLM\SOFTWARE\Wow6432Node\Ubisoft
HKLM\SOFTWARE\Wow6432Node\Valve
HKLM\SOFTWARE\Wow6432Node\VirtualDJ
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\WdsManPro =>PUP.Optional.WdsManPro
HKLM\SOFTWARE\Wow6432Node\Windows X
HKLM\SOFTWARE\Wow6432Node\WiseCleaner
HKLM\SOFTWARE\Wow6432Node\Wow6432Node
HKLM\SOFTWARE\Wow6432Node\Even Balance
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\7-Zip
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Alda Games s.r.o.
HKCU\SOFTWARE\antiufo
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\ATI
HKCU\SOFTWARE\AVAST Software
HKCU\SOFTWARE\Baidu Security
HKCU\SOFTWARE\Baixaki
HKCU\SOFTWARE\Battle.net
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\Blizzard Entertainment
HKCU\SOFTWARE\BoBrowser =>PUP.Optional.BoBrowser
HKCU\SOFTWARE\Bugsplat
HKCU\SOFTWARE\BVRP Software
HKCU\SOFTWARE\CD Projekt RED
HKCU\SOFTWARE\cFos
HKCU\SOFTWARE\Cheat Engine
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\CoinisRevShare
HKCU\SOFTWARE\Colossal Order
HKCU\SOFTWARE\Corel
HKCU\SOFTWARE\CyberLink
HKCU\SOFTWARE\Daedalic Entertainment GmbH
HKCU\SOFTWARE\Dec 16 Productions
HKCU\SOFTWARE\Disc Soft
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\Dropbox
HKCU\SOFTWARE\DropboxUpdate
HKCU\SOFTWARE\drpsu
HKCU\SOFTWARE\DSS
HKCU\SOFTWARE\DT Soft
HKCU\SOFTWARE\Electronic Arts
HKCU\SOFTWARE\Enlight
HKCU\SOFTWARE\Epic Games
HKCU\SOFTWARE\ESET
HKCU\SOFTWARE\Foxit Software
HKCU\SOFTWARE\Gabest
HKCU\SOFTWARE\GameSpy
HKCU\SOFTWARE\GbAs
HKCU\SOFTWARE\GbPlugin
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\GOG.com
HKCU\SOFTWARE\GoldenGate
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\HP
HKCU\SOFTWARE\Icaros
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\Joint Custody Ltd
HKCU\SOFTWARE\Kukouri
HKCU\SOFTWARE\Lake
HKCU\SOFTWARE\Laughing Jackal Ltd.
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Link64
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\MediaInfo
HKCU\SOFTWARE\Mighty Rabbit Studios
HKCU\SOFTWARE\Mooii
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MPC-HC
HKCU\SOFTWARE\Ndemic Creations
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\Petroglyph
HKCU\SOFTWARE\PinballArcade
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\Pixart
HKCU\SOFTWARE\PopCap
HKCU\SOFTWARE\PrivaZer
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\Raptr
HKCU\SOFTWARE\Razer
HKCU\SOFTWARE\RealNetworks
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\Remedy Entertainment
HKCU\SOFTWARE\Remedy Entertainment Tools
HKCU\SOFTWARE\Revenger inc.
HKCU\SOFTWARE\RocketDock
HKCU\SOFTWARE\SecuROM
HKCU\SOFTWARE\SHINOHARATakayuki
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Sony
HKCU\SOFTWARE\SpeedFan
HKCU\SOFTWARE\StudioV5
HKCU\SOFTWARE\Swordtales
HKCU\SOFTWARE\TCP Optimizer
HKCU\SOFTWARE\The Creative Assembly
HKCU\SOFTWARE\Tortuga Team =>PUP.Optional.Tortuga
HKCU\SOFTWARE\Tribo Gamer
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Two Tribes
HKCU\SOFTWARE\Ubisoft
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\Valve
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\VirtualDJ
HKCU\SOFTWARE\VSRevoGroup
HKCU\SOFTWARE\WebApp
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\WLAN Optimizer .NET
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\XBMC
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\LastScanTime
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\Unity
---\\ Conteúdo das pastas Programs (400) - 14s
O43 - CFD: 2014/12/26 21:47:43 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 2014/12/21 10:38:22 - [] D -- C:\Program Files (x86)\AMD
O43 - CFD: 2014/12/16 22:02:52 - [] D -- C:\Program Files (x86)\AMD APP
O43 - CFD: 2014/12/21 10:47:59 - [] D -- C:\Program Files (x86)\AMD AVT
O43 - CFD: 2015/04/17 19:05:52 - [] D -- C:\Program Files (x86)\Atari
O43 - CFD: 2015/07/24 22:01:46 - [] D -- C:\Program Files (x86)\Auslogics
O43 - CFD: 2015/07/13 17:16:50 - [] D -- C:\Program Files (x86)\Battle.net
O43 - CFD: 2015/07/11 00:16:39 - [] D -- C:\Program Files (x86)\Battlelog Web Plugins
O43 - CFD: 2015/08/02 12:06:55 - [] D -- C:\Program Files (x86)\Breach and Clear Deadline
O43 - CFD: 2015/02/10 13:12:33 - [] D -- C:\Program Files (x86)\Cheat Engine 6.4
O43 - CFD: 2015/07/05 15:01:44 - [] D -- C:\Program Files (x86)\Cities Skylines
O43 - CFD: 2015/05/04 14:58:10 - [] D -- C:\Program Files (x86)\Codemasters
O43 - CFD: 2015/09/15 21:41:19 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2015/07/20 23:42:56 - [] D -- C:\Program Files (x86)\Crytek
O43 - CFD: 2014/12/26 22:54:35 - [] D -- C:\Program Files (x86)\Daedalic Entertainment GmbH
O43 - CFD: 2015/02/02 00:53:59 - [] D -- C:\Program Files (x86)\DAEMON Tools Pro
O43 - CFD: 2015/05/22 17:56:17 - [] D -- C:\Program Files (x86)\Diablo III
O43 - CFD: 2015/09/05 00:28:06 - [] D -- C:\Program Files (x86)\Dropbox
O43 - CFD: 2015/07/08 15:43:50 - [] D -- C:\Program Files (x86)\Fable Anniversary
O43 - CFD: 2015/07/31 07:46:27 - [] D -- C:\Program Files (x86)\Flame Over
O43 - CFD: 2015/02/07 14:06:56 - [] D -- C:\Program Files (x86)\Foxit Software
O43 - CFD: 2015/07/31 07:46:27 - [] D -- C:\Program Files (x86)\GameVicio
O43 - CFD: 2015/07/20 22:15:42 - [] D -- C:\Program Files (x86)\GOG.com
O43 - CFD: 2015/07/13 15:55:05 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2015/08/04 19:02:33 - [] D -- C:\Program Files (x86)\Grey Goo
O43 - CFD: 2015/07/13 17:29:30 - [] D -- C:\Program Files (x86)\Hearthstone
O43 - CFD: 2015/07/13 17:48:10 - [] D -- C:\Program Files (x86)\Heroes of the Storm
O43 - CFD: 2015/02/02 21:21:32 - [] D -- C:\Program Files (x86)\HP
O43 - CFD: 2015/08/25 13:20:30 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2015/09/12 22:13:00 - [] D -- C:\Program Files (x86)\Internet Download Manager
O43 - CFD: 2015/07/15 15:35:28 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2015/04/18 10:38:30 - [] D -- C:\Program Files (x86)\Java
O43 - CFD: 2015/01/11 13:28:32 - [] D -- C:\Program Files (x86)\K-Lite Codec Pack
O43 - CFD: 2015/07/01 03:17:46 - [] D -- C:\Program Files (x86)\Malwarebytes Anti-Malware
O43 - CFD: 2014/12/17 22:03:40 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 2015/01/03 12:34:11 - [] D -- C:\Program Files (x86)\Microsoft DirectX SDK (June 2010)
O43 - CFD: 2015/02/02 01:15:21 - [] D -- C:\Program Files (x86)\Microsoft Games
O43 - CFD: 2014/12/16 22:21:28 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 2015/08/10 17:50:04 - [] D -- C:\Program Files (x86)\Microsoft OneDrive
O43 - CFD: 2015/09/10 02:29:19 - [] D -- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 2014/12/17 22:09:05 - [] D -- C:\Program Files (x86)\Microsoft SQL Server
O43 - CFD: 2014/12/26 22:19:53 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 2015/04/12 22:25:30 - [] D -- C:\Program Files (x86)\Microsoft XNA
O43 - CFD: 2014/12/16 22:22:15 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2015/08/27 18:51:44 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 2015/07/15 19:45:39 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 2009/07/14 02:32:38 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2015/05/12 07:18:01 - [] D -- C:\Program Files (x86)\NAMCO BANDAI Games
O43 - CFD: 2015/07/15 00:08:18 - [] D -- C:\Program Files (x86)\Notepad++
O43 - CFD: 2015/01/21 13:48:56 - [] D -- C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 2015/08/19 21:49:31 - [] D -- C:\Program Files (x86)\Opera
O43 - CFD: 2014/12/18 21:57:48 - [] D -- C:\Program Files (x86)\OperaHelper
O43 - CFD: 2015/07/05 21:21:31 - [] D -- C:\Program Files (x86)\Ori and the Blind Forest
O43 - CFD: 2015/09/06 15:16:59 - [] D -- C:\Program Files (x86)\Origin
O43 - CFD: 2015/07/11 19:08:06 - [] D -- C:\Program Files (x86)\Origin Games
O43 - CFD: 2015/06/12 23:08:20 - [] D -- C:\Program Files (x86)\PC Blast
O43 - CFD: 2015/05/23 15:14:37 - [] D -- C:\Program Files (x86)\PhotoScape
O43 - CFD: 2015/07/23 21:32:12 - [] D -- C:\Program Files (x86)\PokerStars
O43 - CFD: 2015/04/13 20:09:42 - [] D -- C:\Program Files (x86)\PokerStars.NET
O43 - CFD: 2015/07/24 18:54:33 - [] D -- C:\Program Files (x86)\PrivaZer
O43 - CFD: 2015/08/04 19:02:33 - [] D -- C:\Program Files (x86)\Project CARS
O43 - CFD: 2015/06/08 17:25:22 - [] D -- C:\Program Files (x86)\R.G. Gamblers
O43 - CFD: 2015/08/29 19:36:05 - [] D -- C:\Program Files (x86)\r2 Studios
O43 - CFD: 2015/07/31 13:41:37 - [] D -- C:\Program Files (x86)\Real
O43 - CFD: 2009/07/14 02:32:38 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2015/03/14 19:18:03 - [] D -- C:\Program Files (x86)\Resident Evil 6
O43 - CFD: 2015/08/08 01:05:10 - [] D -- C:\Program Files (x86)\RocketDock
O43 - CFD: 2015/09/16 13:46:25 - [] D -- C:\Program Files (x86)\SFK =>PUP.Optional.MyWebSearch
O43 - CFD: 2015/02/01 22:31:57 - [] D -- C:\Program Files (x86)\Sierra
O43 - CFD: 2015/06/23 15:50:10 - [] D -- C:\Program Files (x86)\Sierra Entertainment
O43 - CFD: 2015/08/03 00:22:24 - [] D -- C:\Program Files (x86)\Silent Hill Homecoming
O43 - CFD: 2015/06/11 15:40:40 - [] RD -- C:\Program Files (x86)\Skype
O43 - CFD: 2015/02/08 13:30:53 - [] D -- C:\Program Files (x86)\Sony
O43 - CFD: 2015/08/17 14:38:00 - [] D -- C:\Program Files (x86)\Sony Mobile
O43 - CFD: 2015/09/15 21:44:55 - [] D -- C:\Program Files (x86)\SpeedFan
O43 - CFD: 2015/09/16 02:17:58 - [] D -- C:\Program Files (x86)\Steam
O43 - CFD: 2015/04/27 22:16:43 - [] D -- C:\Program Files (x86)\Studio V5
O43 - CFD: 2015/07/31 07:46:31 - [] D -- C:\Program Files (x86)\TagScanner
O43 - CFD: 2015/02/08 16:04:22 - [] D -- C:\Program Files (x86)\THQ
O43 - CFD: 2015/06/16 19:07:20 - [] D -- C:\Program Files (x86)\Tribo Gamer
O43 - CFD: 2015/09/14 11:35:11 - [] D -- C:\Program Files (x86)\TSEV Skyrim LE
O43 - CFD: 2015/08/25 16:51:47 - [] D -- C:\Program Files (x86)\Ubisoft
O43 - CFD: 2015/03/14 10:27:33 - [] D -- C:\Program Files (x86)\USB Vibration
O43 - CFD: 2015/07/28 16:40:43 - [] D -- C:\Program Files (x86)\uTorrent
O43 - CFD: 2014/12/18 21:02:01 - [] D -- C:\Program Files (x86)\UXTheme Multi-Patcher
O43 - CFD: 2015/08/29 11:05:26 - [] D -- C:\Program Files (x86)\VirtualDJ
O43 - CFD: 2015/02/19 00:18:37 - [] D -- C:\Program Files (x86)\VS Revo Group
O43 - CFD: 2015/07/14 21:09:38 - [] D -- C:\Program Files (x86)\WARMACHINE Tactics
O43 - CFD: 2015/05/18 13:02:54 - [] D -- C:\Program Files (x86)\WaterMelon
O43 - CFD: 2014/12/17 06:52:50 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2015/06/11 01:54:39 - [] D -- C:\Program Files (x86)\Windows Live
O43 - CFD: 2014/12/17 06:52:51 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2015/06/10 19:02:36 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2009/07/14 02:32:38 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2014/12/17 06:52:50 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2010/11/21 00:31:38 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2014/12/17 06:52:51 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2015/08/27 18:38:23 - [] D -- C:\Program Files (x86)\Wise
O43 - CFD: 2015/07/28 16:40:43 - [] D -- C:\Program Files (x86)\World of Warcraft
O43 - CFD: 2015/06/17 14:28:27 - [] D -- C:\Program Files (x86)\XBMC
O43 - CFD: 2015/07/07 21:32:10 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
O43 - CFD: 2014/12/17 06:59:11 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2014/12/16 19:42:10 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/07/17 02:41:27 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
O43 - CFD: 2015/04/17 19:14:59 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Atari
O43 - CFD: 2015/07/24 22:01:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics
O43 - CFD: 2015/07/31 07:46:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
O43 - CFD: 2015/02/22 20:57:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 3
O43 - CFD: 2015/02/21 09:42:45 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 4
O43 - CFD: 2014/12/18 08:34:47 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bejeweled 3
O43 - CFD: 2015/08/02 12:05:39 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Breach and Clear Deadline
O43 - CFD: 2015/07/31 07:46:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 2015/02/10 13:12:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.4
O43 - CFD: 2015/07/24 20:18:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cities Skylines
O43 - CFD: 2015/06/11 00:11:08 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X7 (64-bit)
O43 - CFD: 2015/06/20 15:33:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
O43 - CFD: 2015/07/20 23:56:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crytek
O43 - CFD: 2014/12/26 23:13:27 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Daedalic Entertainment GmbH
O43 - CFD: 2015/02/02 00:51:59 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Pro
O43 - CFD: 2015/01/21 13:49:59 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon Age Origins
O43 - CFD: 2015/09/05 00:27:45 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
O43 - CFD: 2015/07/08 15:43:54 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fable Anniversary
O43 - CFD: 2014/12/17 03:37:39 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FIFA 15
O43 - CFD: 2015/05/23 15:59:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
O43 - CFD: 2015/08/14 11:21:46 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2015/02/08 15:52:21 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameVicio
O43 - CFD: 2015/08/14 11:21:48 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
O43 - CFD: 2015/07/31 07:46:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2015/08/18 17:08:26 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
O43 - CFD: 2015/02/24 16:41:23 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grey Goo
O43 - CFD: 2015/04/10 03:53:05 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of the Storm
O43 - CFD: 2014/12/26 21:03:23 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
O43 - CFD: 2015/09/12 22:06:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 2015/08/28 15:03:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 2015/01/11 13:28:43 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
O43 - CFD: 2009/07/14 01:57:09 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/04/09 19:13:17 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 2015/08/27 18:47:29 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Max Payne
O43 - CFD: 2015/08/27 18:47:29 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAX-FX Tools
O43 - CFD: 2015/02/02 01:26:13 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games
O43 - CFD: 2015/07/28 16:40:48 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
O43 - CFD: 2015/09/09 18:12:22 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 2015/09/12 18:17:43 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexus Mod Manager
O43 - CFD: 2015/04/16 14:26:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 2015/07/24 20:18:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ori and the Blind Forest
O43 - CFD: 2015/06/12 23:08:20 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Blast
O43 - CFD: 2014/12/18 08:29:14 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Peggle
O43 - CFD: 2015/05/23 15:14:38 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoScape
O43 - CFD: 2014/12/18 08:28:35 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plants vs. Zombies
O43 - CFD: 2015/07/23 21:32:12 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PokerStars
O43 - CFD: 2015/07/16 22:26:04 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Project CARS
O43 - CFD: 2015/06/08 17:27:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Gamblers
O43 - CFD: 2015/07/31 07:46:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\r2 Studios
O43 - CFD: 2015/08/08 01:05:10 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RocketDock
O43 - CFD: 2015/02/01 22:32:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sierra
O43 - CFD: 2015/02/02 00:15:56 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sierra Entertainment
O43 - CFD: 2015/08/02 22:32:28 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Silent Hill Homecoming
O43 - CFD: 2015/06/11 15:40:40 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 2015/08/17 14:09:03 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
O43 - CFD: 2015/07/31 13:41:37 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2015/01/06 22:15:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
O43 - CFD: 2015/04/27 22:17:23 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Studio V5
O43 - CFD: 2011/04/12 10:06:16 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2015/07/31 07:46:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TagScanner
O43 - CFD: 2015/05/15 03:12:41 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tribo dos Renegados
O43 - CFD: 2015/06/16 19:07:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tribo Gamer
O43 - CFD: 2015/09/12 23:11:15 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TSEV Skyrim LE
O43 - CFD: 2015/07/28 16:40:48 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\uTorrent
O43 - CFD: 2015/05/18 13:03:41 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WaterMelon
O43 - CFD: 2015/06/11 01:37:03 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
O43 - CFD: 2015/07/07 22:51:40 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2015/08/27 18:38:25 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Care 365
O43 - CFD: 2015/07/05 14:52:20 - [] D -- C:\ProgramData\.mono
O43 - CFD: 2014/12/26 21:53:09 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2014/12/16 21:47:08 - [0] SHD -- C:\ProgramData\Ambiente de trabalho
O43 - CFD: 2015/07/17 02:40:13 - [] D -- C:\ProgramData\AMD
O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2015/07/17 02:42:16 - [] D -- C:\ProgramData\ATI
O43 - CFD: 2015/07/24 21:29:59 - [] D -- C:\ProgramData\Auslogics
O43 - CFD: 2014/12/16 22:29:23 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 2015/09/12 23:08:38 - [] D -- C:\ProgramData\aWdsManProa =>PUP.Optional.WdsManPro
O43 - CFD: 2015/06/05 12:10:59 - [] D -- C:\ProgramData\Battle.net
O43 - CFD: 2015/06/05 12:11:00 - [] D -- C:\ProgramData\Blizzard Entertainment
O43 - CFD: 2014/12/26 21:12:39 - [] D -- C:\ProgramData\boost_interprocess
O43 - CFD: 2015/02/25 08:35:28 - [] D -- C:\ProgramData\Canneverbe Limited
O43 - CFD: 2015/06/22 11:46:32 - [] D -- C:\ProgramData\Corel
O43 - CFD: 2015/06/11 00:11:57 - [0] D -- C:\ProgramData\CorelDRAW Graphics Suite X7 x64
O43 - CFD: 2015/06/08 22:45:42 - [] D -- C:\ProgramData\CounterPath Corporation
O43 - CFD: 2015/06/17 15:07:33 - [] D -- C:\ProgramData\CyberLink
O43 - CFD: 2014/12/26 22:23:16 - [] D -- C:\ProgramData\DAEMON Tools Pro
O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2014/12/16 21:47:08 - [0] SHD -- C:\ProgramData\Documentos
O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2015/08/10 17:38:26 - [] D -- C:\ProgramData\Dropbox
O43 - CFD: 2014/12/24 17:59:06 - [] D -- C:\ProgramData\EA Core
O43 - CFD: 2014/12/24 17:59:03 - [] D -- C:\ProgramData\EA Logs
O43 - CFD: 2014/12/21 14:10:01 - [] D -- C:\ProgramData\Electronic Arts
O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 2014/12/16 21:47:08 - [0] SHD -- C:\ProgramData\Favoritos
O43 - CFD: 2015/07/13 14:42:35 - [] D -- C:\ProgramData\fhjmbblgehonfckpofldkbjilkibfeaj
O43 - CFD: 2015/07/13 13:28:48 - [] D -- C:\ProgramData\GAS Tecnologia
O43 - CFD: 2015/02/02 21:21:55 - [] D -- C:\ProgramData\HP
O43 - CFD: 2015/09/12 22:18:25 - [0] D -- C:\ProgramData\IDM
O43 - CFD: 2015/02/23 03:01:31 - [] D -- C:\ProgramData\install_clap
O43 - CFD: 2015/05/09 19:26:44 - [] D -- C:\ProgramData\IObit
O43 - CFD: 2015/04/17 23:16:40 - [] D -- C:\ProgramData\IsolatedStorage
O43 - CFD: 2015/01/06 21:43:28 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 2014/12/16 21:47:08 - [0] SHD -- C:\ProgramData\Menu Iniciar
O43 - CFD: 2015/09/15 10:13:34 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2015/07/27 11:58:55 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 2014/12/26 22:05:18 - [] D -- C:\ProgramData\Microsoft OneDrive
O43 - CFD: 2015/06/11 18:46:38 - [] D -- C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS
O43 - CFD: 2014/12/16 21:47:08 - [0] SHD -- C:\ProgramData\Modelos
O43 - CFD: 2015/02/19 00:50:29 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2015/04/18 10:40:01 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 2015/09/16 07:54:17 - [] D -- C:\ProgramData\Origin
O43 - CFD: 2015/08/12 17:26:39 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 2015/02/23 03:04:43 - [] D -- C:\ProgramData\PDVD
O43 - CFD: 2015/07/13 00:14:21 - [] D -- C:\ProgramData\PopCap Games
O43 - CFD: 2015/07/24 18:54:13 - [] D -- C:\ProgramData\privazer
O43 - CFD: 2015/05/21 08:45:31 - [] D -- C:\ProgramData\ProductData
O43 - CFD: 2015/07/28 16:40:48 - [] D -- C:\ProgramData\Protexis64
O43 - CFD: 2015/07/31 13:41:58 - [] D -- C:\ProgramData\Real
O43 - CFD: 2014/12/17 22:08:42 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 2015/06/11 15:40:46 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2015/04/13 00:17:34 - [] D -- C:\ProgramData\sls
O43 - CFD: 2015/02/08 13:30:53 - [] D -- C:\ProgramData\Sony
O43 - CFD: 2015/01/29 17:19:28 - [] D -- C:\ProgramData\Sony Corporation
O43 - CFD: 2015/03/13 01:10:40 - [] D -- C:\ProgramData\Sony Mobile
O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2015/05/14 15:14:20 - [] D -- C:\ProgramData\Steam
O43 - CFD: 2014/12/28 00:39:09 - [] D -- C:\ProgramData\Sun
O43 - CFD: 2015/06/17 15:08:09 - [] D -- C:\ProgramData\SUPPORTDIR
O43 - CFD: 2015/02/23 03:02:46 - [0] AD -- C:\ProgramData\TEMP
O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2015/09/10 17:15:06 - [] D -- C:\ProgramData\{a9c1dc32-fb94-9b1d-a9c1-1dc32fb970cb}
O43 - CFD: 2015/04/30 03:10:01 - [] D -- C:\ProgramData\{ACBCD40A-42A8-4FF9-BD42-ABCD14998CBA} =>PUP.Optional.BundleInstaller
O43 - CFD: 2015/04/18 08:28:19 - [0] D -- C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
O43 - CFD: 2015/04/30 03:10:02 - [] D -- C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
O43 - CFD: 2014/12/26 21:47:49 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 2014/12/16 22:02:45 - [] D -- C:\Program Files (x86)\Common Files\ATI Technologies
O43 - CFD: 2015/07/11 19:21:43 - [] HD -- C:\Program Files (x86)\Common Files\EAInstaller
O43 - CFD: 2015/02/02 01:08:33 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 2015/06/10 14:36:48 - [] D -- C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 2015/04/18 08:28:15 - [] D -- C:\Program Files (x86)\Common Files\IObit
O43 - CFD: 2015/04/18 10:40:07 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 2015/06/11 00:03:58 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 2009/07/14 00:20:08 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2015/06/11 15:40:40 - [] D -- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 2015/02/07 14:38:49 - [] D -- C:\Program Files (x86)\Common Files\Sony Shared
O43 - CFD: 2009/07/14 00:20:08 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 2015/08/26 13:01:03 - [] D -- C:\Program Files (x86)\Common Files\Steam
O43 - CFD: 2014/12/17 06:52:50 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2014/12/26 22:02:48 - [] D -- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 2015/07/05 14:52:20 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\.mono
O43 - CFD: 2015/02/07 13:47:36 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Adobe
O43 - CFD: 2014/12/21 14:14:21 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\AMD
O43 - CFD: 2015/04/18 08:28:32 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Apple Computer
O43 - CFD: 2015/05/17 20:31:53 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Artifex Mundi
O43 - CFD: 2015/09/16 02:17:51 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\ArtifexMundi
O43 - CFD: 2014/12/24 12:57:29 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\ATI
O43 - CFD: 2015/07/23 13:09:29 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Audacity
O43 - CFD: 2014/12/16 23:10:23 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\AVAST Software
O43 - CFD: 2015/07/28 16:40:51 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Battle.net
O43 - CFD: 2015/02/25 08:35:19 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Canneverbe Limited
O43 - CFD: 2015/07/05 14:52:18 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Colossal Order
O43 - CFD: 2015/05/16 15:55:42 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Command & Conquer 3 Kane's Wrath
O43 - CFD: 2015/01/21 20:08:03 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Command & Conquer 3 Tiberium Wars
O43 - CFD: 2015/06/11 00:12:40 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Corel
O43 - CFD: 2015/02/23 03:14:00 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\CyberLink
O43 - CFD: 2015/09/12 23:05:55 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\DAEMON Tools Pro
O43 - CFD: 2015/01/03 11:47:07 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\DarkSoulsII
O43 - CFD: 2015/09/16 13:44:02 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\DMCache
O43 - CFD: 2015/08/10 17:44:07 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Dropbox
O43 - CFD: 2015/05/23 15:38:47 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\DRPSu
O43 - CFD: 2015/04/08 20:13:18 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Electronic Arts
O43 - CFD: 2015/08/04 19:02:35 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Fine_Sweeper_v17
O43 - CFD: 2015/02/08 17:29:48 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Foxit Software
O43 - CFD: 2014/12/18 21:57:55 - [] HD -- C:\Users\Murilo Costa\AppData\Roaming\GoldenGate
O43 - CFD: 2015/02/19 00:54:00 - [0] D -- C:\Users\Murilo Costa\AppData\Roaming\idesktop
O43 - CFD: 2015/09/12 23:01:12 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\IDM
O43 - CFD: 2015/02/02 00:12:42 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\InstallShield
O43 - CFD: 2015/04/18 10:44:50 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\IObit
O43 - CFD: 2015/04/17 23:16:40 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\IsolatedStorage
O43 - CFD: 2015/02/11 17:04:38 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\library_dir
O43 - CFD: 2015/04/27 22:17:56 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\LogoMaker
O43 - CFD: 2014/12/16 23:31:41 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Macromedia
O43 - CFD: 2015/09/03 13:17:39 - [] SD -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft
O43 - CFD: 2015/04/16 15:32:56 - [0] D -- C:\Users\Murilo Costa\AppData\Roaming\Might & Magic Heroes VI
O43 - CFD: 2015/05/23 11:26:47 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Mikrotik
O43 - CFD: 2015/02/19 00:51:36 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Mozilla
O43 - CFD: 2015/07/24 21:36:03 - [0] D -- C:\Users\Murilo Costa\AppData\Roaming\MPC-HC
O43 - CFD: 2015/07/31 07:46:09 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Notepad++
O43 - CFD: 2014/12/18 22:00:46 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Opera Software
O43 - CFD: 2015/06/01 22:07:12 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Origin
O43 - CFD: 2015/07/31 15:04:50 - [0] D -- C:\Users\Murilo Costa\AppData\Roaming\PhotoScape
O43 - CFD: 2015/05/03 16:08:37 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\ProductData
O43 - CFD: 2015/07/31 19:50:13 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\r2 Studios
O43 - CFD: 2015/05/13 18:48:48 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Raptr
O43 - CFD: 2015/07/31 13:42:21 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Real
O43 - CFD: 2015/01/21 13:45:00 - [] RHD -- C:\Users\Murilo Costa\AppData\Roaming\SecuROM
O43 - CFD: 2015/02/02 12:28:07 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Sierra
O43 - CFD: 2015/09/09 18:21:30 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Skype
O43 - CFD: 2015/01/29 17:49:35 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Sony
O43 - CFD: 2015/07/05 14:52:15 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Steam
O43 - CFD: 2015/07/31 07:46:34 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\TagScanner
O43 - CFD: 2015/06/08 17:27:52 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\The Banner Saga
O43 - CFD: 2015/02/10 13:23:21 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\The Creative Assembly
O43 - CFD: 2015/06/08 17:31:16 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\TheBannerSaga
O43 - CFD: 2015/05/09 04:45:05 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Trine1
O43 - CFD: 2015/09/10 17:31:33 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\uTorrent
O43 - CFD: 2015/07/24 20:51:57 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Winamp
O43 - CFD: 2015/01/21 10:10:29 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Windows Live Writer
O43 - CFD: 2014/12/24 15:25:42 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\WinRAR
O43 - CFD: 2015/09/16 14:01:15 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Wise Care 365
O43 - CFD: 2015/09/14 23:46:30 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\XBMC
O43 - CFD: 2015/09/16 15:23:33 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\ZHP
O43 - CFD: 2015/05/21 08:42:27 - [] D -- C:\Users\Murilo Costa\AppData\Local\Adobe
O43 - CFD: 2014/12/16 22:10:31 - [] D -- C:\Users\Murilo Costa\AppData\Local\AMD
O43 - CFD: 2014/12/16 21:47:37 - [0] SHD -- C:\Users\Murilo Costa\AppData\Local\Application Data
O43 - CFD: 2014/12/16 22:10:22 - [] D -- C:\Users\Murilo Costa\AppData\Local\ATI
O43 - CFD: 2015/08/27 01:22:16 - [] D -- C:\Users\Murilo Costa\AppData\Local\Battle.net
O43 - CFD: 2015/03/29 21:12:37 - [] D -- C:\Users\Murilo Costa\AppData\Local\BigHugeEngine
O43 - CFD: 2015/06/11 18:52:05 - [] D -- C:\Users\Murilo Costa\AppData\Local\Black_Tree_Gaming
O43 - CFD: 2015/01/28 11:08:54 - [] D -- C:\Users\Murilo Costa\AppData\Local\Blizzard
O43 - CFD: 2014/12/16 23:34:14 - [] D -- C:\Users\Murilo Costa\AppData\Local\Blizzard Entertainment
O43 - CFD: 2015/05/18 16:27:11 - [] D -- C:\Users\Murilo Costa\AppData\Local\CAPCOM
O43 - CFD: 2015/07/23 14:14:51 - [] D -- C:\Users\Murilo Costa\AppData\Local\CEF
O43 - CFD: 2015/02/10 13:24:09 - [] D -- C:\Users\Murilo Costa\AppData\Local\Chromium
O43 - CFD: 2015/07/05 14:52:18 - [] D -- C:\Users\Murilo Costa\AppData\Local\Colossal Order
O43 - CFD: 2015/06/08 22:45:24 - [] D -- C:\Users\Murilo Costa\AppData\Local\CounterPath
O43 - CFD: 2015/06/08 22:45:25 - [] D -- C:\Users\Murilo Costa\AppData\Local\CounterPath Corporation
O43 - CFD: 2015/06/17 15:07:11 - [] D -- C:\Users\Murilo Costa\AppData\Local\CyberLink
O43 - CFD: 2014/12/26 23:15:45 - [] D -- C:\Users\Murilo Costa\AppData\Local\Daedalic Entertainment GmbH
O43 - CFD: 2015/09/16 10:18:26 - [0] D -- C:\Users\Murilo Costa\AppData\Local\Diagnostics
O43 - CFD: 2015/09/10 02:31:56 - [] D -- C:\Users\Murilo Costa\AppData\Local\Dropbox
O43 - CFD: 2015/07/03 13:42:18 - [0] SHD -- C:\Users\Murilo Costa\AppData\Local\EmieBrowserModeList
O43 - CFD: 2015/07/03 13:42:18 - [0] SHD -- C:\Users\Murilo Costa\AppData\Local\EmieSiteList
O43 - CFD: 2015/07/03 13:42:18 - [0] SHD -- C:\Users\Murilo Costa\AppData\Local\EmieUserList
O43 - CFD: 2015/06/17 23:20:03 - [] D -- C:\Users\Murilo Costa\AppData\Local\ESN
O43 - CFD: 2015/04/17 23:16:46 - [] D -- C:\Users\Murilo Costa\AppData\Local\FileViewPro
O43 - CFD: 2015/03/18 22:07:21 - [] D -- C:\Users\Murilo Costa\AppData\Local\Focus Home Interactive
O43 - CFD: 2015/06/05 12:11:06 - [] D -- C:\Users\Murilo Costa\AppData\Local\GAS Tecnologia
O43 - CFD: 2015/09/14 23:21:35 - [] D -- C:\Users\Murilo Costa\AppData\Local\Google
O43 - CFD: 2015/09/05 01:17:24 - [] D -- C:\Users\Murilo Costa\AppData\Local\GWX
O43 - CFD: 2015/06/28 18:36:09 - [] D -- C:\Users\Murilo Costa\AppData\Local\Hero_Siege
O43 - CFD: 2014/12/16 21:47:37 - [0] SHD -- C:\Users\Murilo Costa\AppData\Local\Histórico
O43 - CFD: 2014/12/26 21:03:28 - [] D -- C:\Users\Murilo Costa\AppData\Local\HP
O43 - CFD: 2015/07/23 13:19:54 - [0] D -- C:\Users\Murilo Costa\AppData\Local\Ideia2001Informatica
O43 - CFD: 2014/12/26 22:51:41 - [] D -- C:\Users\Murilo Costa\AppData\Local\Installer =>PUP.Optional.InstallPedia
O43 - CFD: 2015/04/03 23:20:24 - [] D -- C:\Users\Murilo Costa\AppData\Local\LumaEmu_SteamCloud
O43 - CFD: 2015/02/19 00:56:52 - [] D -- C:\Users\Murilo Costa\AppData\Local\Macromedia
O43 - CFD: 2015/09/09 18:11:59 - [] D -- C:\Users\Murilo Costa\AppData\Local\Microsoft
O43 - CFD: 2015/05/02 02:37:03 - [] D -- C:\Users\Murilo Costa\AppData\Local\Microsoft Games
O43 - CFD: 2015/02/02 19:38:10 - [] D -- C:\Users\Murilo Costa\AppData\Local\Microsoft Help
O43 - CFD: 2015/02/19 00:51:38 - [] D -- C:\Users\Murilo Costa\AppData\Local\Mozilla
O43 - CFD: 2015/01/01 19:16:53 - [] D -- C:\Users\Murilo Costa\AppData\Local\NBGI
O43 - CFD: 2015/01/31 18:26:10 - [] D -- C:\Users\Murilo Costa\AppData\Local\Ndemic Creations
O43 - CFD: 2014/12/18 22:00:46 - [] D -- C:\Users\Murilo Costa\AppData\Local\Opera Software
O43 - CFD: 2015/07/05 21:36:31 - [] D -- C:\Users\Murilo Costa\AppData\Local\Ori and the Blind Forest
O43 - CFD: 2014/12/17 00:06:49 - [] D -- C:\Users\Murilo Costa\AppData\Local\Origin
O43 - CFD: 2015/08/07 02:41:01 - [] D -- C:\Users\Murilo Costa\AppData\Local\PokerStars
O43 - CFD: 2015/04/13 20:09:29 - [] D -- C:\Users\Murilo Costa\AppData\Local\PokerStars.NET
O43 - CFD: 2015/03/21 12:04:38 - [] D -- C:\Users\Murilo Costa\AppData\Local\PopCap Games
O43 - CFD: 2015/07/31 07:46:34 - [] D -- C:\Users\Murilo Costa\AppData\Local\PrivaZer
O43 - CFD: 2014/12/24 09:21:29 - [] D -- C:\Users\Murilo Costa\AppData\Local\Programs
O43 - CFD: 2015/02/19 05:40:33 - [] D -- C:\Users\Murilo Costa\AppData\Local\PunkBuster
O43 - CFD: 2015/07/30 17:22:30 - [] D -- C:\Users\Murilo Costa\AppData\Local\Real
O43 - CFD: 2015/02/15 14:36:33 - [] D -- C:\Users\Murilo Costa\AppData\Local\Realmware
O43 - CFD: 2015/05/18 12:45:31 - [] D -- C:\Users\Murilo Costa\AppData\Local\SKIDROW
O43 - CFD: 2015/01/15 20:10:32 - [] D -- C:\Users\Murilo Costa\AppData\Local\Skype
O43 - CFD: 2015/06/11 19:30:11 - [] D -- C:\Users\Murilo Costa\AppData\Local\Skyrim
O43 - CFD: 2015/07/30 18:01:56 - [] D -- C:\Users\Murilo Costa\AppData\Local\Songr
O43 - CFD: 2015/02/07 14:36:16 - [] D -- C:\Users\Murilo Costa\AppData\Local\Sony
O43 - CFD: 2015/02/19 22:29:30 - [] D -- C:\Users\Murilo Costa\AppData\Local\Steam
O43 - CFD: 2015/09/16 15:23:53 - [] D -- C:\Users\Murilo Costa\AppData\Local\Temp
O43 - CFD: 2014/12/16 21:47:37 - [0] SHD -- C:\Users\Murilo Costa\AppData\Local\Temporary Internet Files
O43 - CFD: 2014/12/29 21:34:33 - [] D -- C:\Users\Murilo Costa\AppData\Local\The Witcher 2
O43 - CFD: 2015/05/18 16:33:21 - [] D -- C:\Users\Murilo Costa\AppData\Local\Two Tribes
O43 - CFD: 2015/01/03 20:50:55 - [0] D -- C:\Users\Murilo Costa\AppData\Local\Ubisoft Game Launcher
O43 - CFD: 2015/04/08 19:26:17 - [] D -- C:\Users\Murilo Costa\AppData\Local\Unity
O43 - CFD: 2015/02/08 15:20:13 - [] D -- C:\Users\Murilo Costa\AppData\Local\VirtualStore
O43 - CFD: 2015/01/20 22:41:28 - [0] D -- C:\Users\Murilo Costa\AppData\Local\Warface
O43 - CFD: 2015/07/14 23:35:52 - [] D -- C:\Users\Murilo Costa\AppData\Local\WarmachineGame
O43 - CFD: 2015/06/11 01:45:33 - [] D -- C:\Users\Murilo Costa\AppData\Local\Windows Live
O43 - CFD: 2014/12/26 22:24:47 - [] D -- C:\Users\Murilo Costa\AppData\Local\Windows Live Writer
O43 - CFD: 2009/07/14 01:54:32 - [] RD -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/03/16 13:24:00 - [] RD -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/08/21 17:05:33 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2015/09/10 17:30:58 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameVicio
O43 - CFD: 2015/09/12 22:06:55 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 2009/07/14 01:49:38 - [] RD -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/07/24 18:54:15 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PrivaZer
O43 - CFD: 2015/02/19 00:18:39 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
O43 - CFD: 2015/07/31 13:48:56 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
O43 - CFD: 2015/09/10 02:32:59 - [] RD -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2015/09/12 23:03:16 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
O43 - CFD: 2015/08/28 15:03:55 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
O43 - CFD: 2015/07/07 22:51:40 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2015/06/17 14:28:27 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\XBMC
---\\ Enumeração das chaves StartupReg (22) - 1s
O53 - SMSR:HKLM\...\startupreg\Auslogics BoostSpeed BoostSpeed [Key] . (.Auslogics - BoostSpeed.) -- C:\Program Files (x86)\Auslogics\BoostSpeed\BoostSpeed.exe ©
O53 - SMSR:HKLM\...\startupreg\BingSvc [Key] . (.© 2015 Microsoft Corporation - Microsoft Bing Service.) -- C:\Users\Murilo Costa\AppData\Local\Microsoft\BingSvc\BingSvc.exe ©
O53 - SMSR:HKLM\...\startupreg\CCleaner Monitoring [Key] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe ©
O53 - SMSR:HKLM\...\startupreg\DAEMON Tools Pro Agent [Key] . (.Disc Soft Ltd - DAEMON Tools Pro Agent.) -- C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe ©
O53 - SMSR:HKLM\...\startupreg\DarkDumpReport [Key] . (...) -- C:\ProgramData
O53 - SMSR:HKLM\...\startupreg\Dropbox [Key] . (.Dropbox, Inc. - Dropbox.) -- C:\Program Files (x86)\Dropbox\Client\Dropbox.exe ©
O53 - SMSR:HKLM\...\startupreg\FlashPlayerUpdate [Key] . (...) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_17_0_0_190_Plugin.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\GoogleChromeAutoLaunch_22D77B59BEE56275FFB286635C27855A [Key] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O53 - SMSR:HKLM\...\startupreg\GoogleDriveSync [Key] . (.Google - Google Drive.) -- C:\Program Files (x86)\Google\Drive\googledrivesync.exe ©
O53 - SMSR:HKLM\...\startupreg\MouseDriver [Key] . (...) -- TiltWheelMouse.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\MyWebFace EPM Support [Key] . (...) -- C:\PROGRA~2\MYWEBF~1\bar\1.bin\5amedint.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Raptr [Key] . (...) -- C:\Program Files (x86)\Raptr\raptrstub.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\RTHDVCPL [Key] . (.Realtek Semiconductor - Gerenciador de áudio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe ©
O53 - SMSR:HKLM\...\startupreg\SkyDrive [Key] . (...) -- C:\Users\Murilo Costa\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Skype [Key] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe ©
O53 - SMSR:HKLM\...\startupreg\Sony PC Companion [Key] . (.Sony - Sony PC Companion.) -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe ©
O53 - SMSR:HKLM\...\startupreg\Spotify [Key] . (...) -- C:\Users\Murilo Costa\AppData\Roaming\Spotify\Spotify.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Spotify Web Helper [Key] . (...) -- C:\Users\Murilo Costa\AppData\Roaming\Spotify\SpotifyWebHelper.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\StartCCC [Key] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe ©
O53 - SMSR:HKLM\...\startupreg\uTorrent [Key] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Murilo Costa\AppData\Roaming\uTorrent\uTorrent.exe
O53 - SMSR:HKLM\...\startupreg\UXTheme Launcher [Key] . (.Windows X - UXTheme - Engine Launcher.) -- C:\Program Files (x86)\UXTheme Multi-Patcher\themeengine.exe ©
O53 - SMSR:HKLM\...\startupreg\WLAN Optimizer [Key] . (...) -- C:\Users\Murilo Costa\Documents\programas\wlann\WLAN Optimizer_Acelerar_Wifi\WLAN Optimizer\WLAN Optimizer.exe (.not file.)
---\\ Lista dos drivers do sistema (73) - 6s
O58 - SDL:2015/01/07 20:35:16 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\6C1D4145.sys [129752] ©
O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] ©
O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] ©
O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] ©
O58 - SDL:2009/07/13 22:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] ©
O58 - SDL:2015/06/22 23:05:56 A . (.Advanced Micro Devices - AMD ACP Binaries.) -- C:\Windows\System32\drivers\amdacpksd.sys [297672] ©
O58 - SDL:2015/04/18 10:54:56 A . (.Advanced Micro Devices Inc. - AMD miniIDE Driver.) -- C:\Windows\System32\drivers\amdide64.sys [11944] ©
O58 - SDL:2010/02/18 08:18:24 A . (.Advanced Micro Devices - AMD IO Driver.) -- C:\Windows\System32\drivers\amdiox64.sys [46136] ©
O58 - SDL:2013/01/01 19:47:03 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904] ©
O58 - SDL:2009/07/13 22:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] ©
O58 - SDL:2013/01/01 19:47:03 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008] ©
O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] ©
O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] ©
O58 - SDL:2015/04/18 10:51:13 A . (. - ATK0110 ACPI Utility.) -- C:\Windows\System32\drivers\ASACPI.sys [15416]
O58 - SDL:2015/07/28 16:49:33 A . (.AVAST Software - avast! HWID.) -- C:\Windows\System32\drivers\aswHwid.sys [28656] ©
O58 - SDL:2015/07/28 16:49:33 A . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\drivers\aswMonFlt.sys [90968] ©
O58 - SDL:2015/07/28 16:49:33 A . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\Windows\System32\drivers\aswRdr2.sys [93528] ©
O58 - SDL:2015/07/28 16:49:34 A . (.AVAST Software - avast! Revert.) -- C:\Windows\System32\drivers\aswRvrt.sys [65224] ©
O58 - SDL:2015/08/15 23:21:29 A . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\drivers\aswSnx.sys [1048344] ©
O58 - SDL:2015/07/28 16:49:34 A . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\drivers\aswSP.sys [447944] ©
O58 - SDL:2015/07/28 16:49:34 A . (.AVAST Software - Stream Filter.) -- C:\Windows\System32\drivers\aswStm.sys [150672] ©
O58 - SDL:2015/07/28 16:49:34 A . (.AVAST Software - avast! VM Monitor.) -- C:\Windows\System32\drivers\aswVmm.sys [274808] ©
O58 - SDL:2015/05/20 15:00:24 A . (.Advanced Micro Devices - AMD High Definition Audio Function Driver.) -- C:\Windows\System32\drivers\AtihdW76.sys [94720] ©
O58 - SDL:2015/06/22 23:03:38 A . (.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\System32\drivers\atikmdag.sys [21612032] ©
O58 - SDL:2015/06/22 22:10:50 A . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\Windows\System32\drivers\atikmpag.sys [663552] ©
O58 - SDL:2009/06/10 17:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] ©
O58 - SDL:2014/12/08 20:09:44 A . (.Windows (R) Win 7 DDK provider - NetFilter SDK WFP Driver (WPP).) -- C:\Windows\System32\drivers\brfilterdrv.sys [51520] ©
O58 - SDL:2009/06/10 17:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] ©
O58 - SDL:2009/06/10 17:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] ©
O58 - SDL:2009/07/13 22:19:07 A . (.Brother Industries Ltd. - Brother Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] ©
O58 - SDL:2009/06/10 17:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] ©
O58 - SDL:2009/06/10 17:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] ©
O58 - SDL:2009/06/10 17:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] ©
O58 - SDL:2009/06/10 17:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] ©
O58 - SDL:2009/07/13 22:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] ©
O58 - SDL:2015/02/02 00:51:55 A . (.Disc Soft Ltd - DAEMON Tools Virtual SCSI Bus Driver.) -- C:\Windows\System32\drivers\dtscsibus.sys [29864] ©
O58 - SDL:2009/07/13 22:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] ©
O58 - SDL:2015/09/16 04:30:27 A . (...) -- C:\Windows\System32\drivers\EsgScanner.sys [22704] =>.Superfluous.SpyHunter
O58 - SDL:2009/06/10 17:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] ©
O58 - SDL:2015/03/13 01:11:37 A . (.Sony Mobile Communications - SOMC USB Flash Driver Filter.) -- C:\Windows\System32\drivers\ggflt.sys [16088]
O58 - SDL:2015/03/13 01:11:37 A . (.Sony Mobile Communications - SOMC USB Flash Driver.) -- C:\Windows\System32\drivers\ggsomc.sys [30424]
O58 - SDL:2009/06/10 17:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] ©
O58 - SDL:2010/11/21 00:23:47 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720] ©
O58 - SDL:2013/01/01 19:47:03 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496] ©
O58 - SDL:2015/06/11 23:00:58 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\drivers\idmwfp.sys [197616] ©
O58 - SDL:2009/07/13 22:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] ©
O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] ©
O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] ©
O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] ©
O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] ©
O58 - SDL:2015/06/18 08:41:40 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [25816] ©
O58 - SDL:2015/06/18 08:41:44 A . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\drivers\mbamchameleon.sys [109272] ©
O58 - SDL:2015/09/16 13:33:45 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [113880] ©
O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] ©
O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] ©
O58 - SDL:2015/06/18 08:41:56 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\drivers\mwac.sys [63704] ©
O58 - SDL:2009/07/13 22:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] ©
O58 - SDL:2013/01/01 19:47:03 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352] ©
O58 - SDL:2013/01/01 19:47:03 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272] ©
O58 - SDL:2009/07/13 22:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] ©
O58 - SDL:2009/07/13 22:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] ©
O58 - SDL:2015/04/18 11:56:43 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Dri.) -- C:\Windows\System32\drivers\Rt64win7.sys [977624] ©
O58 - SDL:2015/05/12 14:14:00 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [4460760] ©
O58 - SDL:2009/06/10 17:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] ©
O58 - SDL:2009/07/13 22:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] ©
O58 - SDL:2009/07/13 22:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] ©
O58 - SDL:2014/12/26 22:24:29 A . (.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) -- C:\Windows\System32\drivers\sptd.sys [564824] ©
O58 - SDL:2014/12/08 19:33:36 A . (.Windows (R) Win 7 DDK provider - NetFilter SDK WFP Driver (WPP).) -- C:\Windows\System32\drivers\ssfilterdrv.sys [51520] ©
O58 - SDL:2015/04/18 12:03:00 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ve.) -- C:\Windows\System32\drivers\ssudbus.sys [103448] ©
O58 - SDL:2009/07/13 22:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] ©
O58 - SDL:2012/12/19 07:42:10 A . (...) -- C:\Windows\System32\drivers\t_mouse.sys [6144]
O58 - SDL:2009/07/13 22:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] ©
O58 - SDL:2009/07/13 22:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] ©
---\\ Últimos ficheiros alterados ou criados (Utilizador) (9) - 14s
O61 - LFC: 2015/09/12 23:16:38 A . (..) -- C:\Users\Murilo Costa\Downloads\Programs\skse_1_07_03_installer.exe [362812]
O61 - LFC: 2015/09/16 04:29:23 A . (.Enigma Software Group USA, LLC..) -- C:\Users\Murilo Costa\Downloads\Programs\SpyHunter-Installer.exe [3237248] =>.Superfluous.SpyHunter
O61 - LFC: 2015/09/12 23:00:46 A . (..) -- C:\Users\Murilo Costa\Downloads\Programs\Unlocker1.9.2.exe [402911]
O61 - LFC: 2015/09/15 20:07:10 A . (..) -- C:\Users\Murilo Costa\Downloads\Programs\winbox.exe [114176]
O61 - LFC: 2015/09/16 09:19:55 A . (..) -- C:\Users\Murilo Costa\Documents\FIFA 15\instance0\replay0.bin [536870912]
O61 - LFC: 2015/09/09 17:44:15 A . (..) -- C:\Users\Murilo Costa\AppData\Local\SKIDROW\238260\Stats.bin [4]
O61 - LFC: 2015/09/09 18:12:00 A . (..) -- C:\Users\Murilo Costa\AppData\Local\Microsoft\DefaultSetup\sqlite3.dll [362029]
O61 - LFC: 2015/09/16 14:47:55 A . (..) -- C:\Users\Murilo Costa\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [674082]
O61 - LFC: 2015/09/16 14:50:07 A . (..) -- C:\Users\Murilo Costa\AppData\Local\Google\Chrome\User Data\nacl_validation_cache.bin [164]
---\\ Associações Shell Spawning (10) - 0s
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.scr>
---\\ Menu de inicialização Internet (20) - 0s
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
---\\ Pesquisa de infeção nos navegadores da Internet (22) - 7s
O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("browser.search.searchengine.alias", "istartsurf"); =>PUP.Optional.IsStart
O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("browser.search.searchengine.desc", "this is my first firefox searchEngine"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("browser.search.searchengine.iconURL", "http://www.istartsurf.com/favicon.ico"); =>PUP.Optional.IsStart
O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("browser.search.searchengine.name", "istartsurf"); =>PUP.Optional.IsStart
O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("browser.search.searchengine.ptid", "smt"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("browser.search.searchengine.ref", ""); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("browser.search.searchengine.ts", ""); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("browser.search.searchengine.type", ""); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("browser.search.searchengine.uid", "ST1000VM002-1CT162_S1G10GNJXXXXS1G10GNJ"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("browser.search.searchengine.url", "http://www.istartsurf.com/web/?type=ds&ts=1442109940&z=5b65d744c5c3f0e2574e5f0gdz7z8[...] =>PUP.Optional.IsStart
O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("extensions.defsearchp@gmail.com.install-event-fired", true); =>PUP.Optional.PriceFountain
O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("extensions.deskCutv2@gmail.com.install-event-fired", true); =>PUP.Optional.DeskCut
O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("extensions.fftoolbar2014@etech.com.install-event-fired", true); =>PUP.Optional.FFToolBar
O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("extensions.quick_start.enable_search1", false); =>PUP.Optional.QuickStart
O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false); =>PUP.Optional.QuickStart
O69 - SBI: SearchScopes [HKCU] {0191A6B0-1154-4C22-9182-23A95BBE92D9} [DefaultScope] - (Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {30DA901C-DA24-4DC8-8028-4B497BDD80F3} - (Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {0191A6B0-1154-4C22-9182-23A95BBE92D9} [DefaultScope] - (Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {0191A6B0-1154-4C22-9182-23A95BBE92D9} [DefaultScope] - (Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-19] {0191A6B0-1154-4C22-9182-23A95BBE92D9} [DefaultScope] - (Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-20] {0191A6B0-1154-4C22-9182-23A95BBE92D9} [DefaultScope] - (Google) - http://www.google.com/
---\\ Listagem dos serviços iniciados pelo Svchost (33) - 2s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Serviço de Experiência com Aplicativo.) -- C:\Windows\System32\aelupsvc.dll [72192] ©
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Serviço de Propagação de Certificado de Car.) -- C:\Windows\System32\certprop.dll [80384] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Serviço de Propagação de Certificado de Car.) -- C:\Windows\System32\certprop.dll [80384] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL de Serviço do Servidor.) -- C:\Windows\system32\srvsvc.dll [236544] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Cliente da Diretiva de Grupo.) -- C:\Windows\System32\gpsvc.dll [777728] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extensão IKE.) -- C:\Windows\System32\ikeext.dll [861184] ©
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Serviço de Áudio do Windows.) -- C:\Windows\System32\Audiosrv.dll [680960] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gerenciador de Discagem Automática de Acess.) -- C:\Windows\System32\rasauto.dll [99328] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gerenciador de conexão de acesso remoto.) -- C:\Windows\System32\rasmans.dll [344064] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gerenciador de Interface Dinâmica.) -- C:\Windows\System32\mprdim.dll [97792] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Serviço de Notificação de Eventos do Sistem.) -- C:\Windows\System32\Sens.dll [64512] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Componentes do Microsoft NAT Helper.) -- C:\Windows\System32\ipnathlp.dll [359424] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Servidor de telefonia do Microsoft(R) Windo.) -- C:\Windows\System32\tapisrv.dll [316416] ©
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gerenciador de Conexões Remotas do Servidor.) -- C:\Windows\System32\termsrv.dll [686592] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\system32\wuaueng.dll [2603008] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Serviço de transferência inteligente de pla.) -- C:\Windows\System32\qmgr.dll [849920] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - DLL de serviços do Shell do Windows.) -- C:\Windows\System32\shsvcs.dll [372736] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Serviço que oferece conectividade IPv6 em u.) -- C:\Windows\System32\iphlpsvc.dll [570880] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de serviço de logon secundário.) -- C:\Windows\system32\seclogon.dll [30720] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Serviço de Informações de Aplicativos.) -- C:\Windows\System32\appinfo.dll [70656] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Serviço de Descoberta iSCSI.) -- C:\Windows\system32\iscsiexe.dll [156672] ©
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Serviço Agendador de Classes de Multimídia.) -- C:\Windows\system32\mmcss.dll [67584] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Serviço de Configuração da Área de Trabalho.) -- C:\Windows\System32\SessEnv.dll [127488] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL de Serviço Pesquisador de Computadores.) -- C:\Windows\System32\browser.dll [136704] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Serviço Microsoft EAPHost.) -- C:\Windows\System32\eapsvc.dll [111104] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Serviço Agendador de Tarefas.) -- C:\Windows\system32\schedsvc.dll [1108992] ©
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Serviço de Gerenciamento de Chaves.) -- C:\Windows\system32\kmsvc.dll [90624] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Relatórios de Problemas e Soluções.) -- C:\Windows\System32\wercplsupport.dll [84480] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [225792] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL do Serviço de Tema do Shell do Windows.) -- C:\Windows\system32\themeservice.dll [44544] ©
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Serviço BDE.) -- C:\Windows\System32\bdesvc.dll [100864] ©
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Serviço de instalação do software.) -- C:\Windows\System32\appmgmts.dll [193536] ©
---\\ Lista das exceções do FireWall (FirewallRules) (68) - 7s
O87 - FAEL: "{28D654C8-8AA9-4451-AE8A-6F2AD62BC297}" [In-None-P6-TRUE] .(.Copyright (C) 2012 - Plants vs. Zombies.) -- C:\Program Files (x86)\Origin Games\Plants vs. Zombies\PlantsVsZombies.exe
O87 - FAEL: "{75CCD362-81A4-4E58-B608-F4E95DC83207}" [In-None-P17-TRUE] .(.Copyright (C) 2012 - Plants vs. Zombies.) -- C:\Program Files (x86)\Origin Games\Plants vs. Zombies\PlantsVsZombies.exe
O87 - FAEL: "{DF99EEC7-3235-4F3D-BED0-95897B9A7B13}" [In-None-P6-TRUE] .(.Copyright (C) 2007 - Peggle.) -- C:\Program Files (x86)\Origin Games\Peggle Deluxe\Peggle.exe
O87 - FAEL: "{6492EEE4-A4A2-4F4F-8843-229541087469}" [In-None-P17-TRUE] .(.Copyright (C) 2007 - Peggle.) -- C:\Program Files (x86)\Origin Games\Peggle Deluxe\Peggle.exe
O87 - FAEL: "{591B572A-2FAD-4E90-BCF1-9AB9C512D6CB}" [In-None-P6-TRUE] .(.Copyright (C) 2012 - Bejeweled 3.) -- C:\Program Files (x86)\Origin Games\Bejeweled 3\Bejeweled3.exe
O87 - FAEL: "{FFF1688E-3DB2-422C-B88B-E7B301A1D928}" [In-None-P17-TRUE] .(.Copyright (C) 2012 - Bejeweled 3.) -- C:\Program Files (x86)\Origin Games\Bejeweled 3\Bejeweled3.exe
O87 - FAEL: "TCP Query User{27D70B9E-C898-4D73-8AEB-B458E9BC1939}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe" [In-None-P6-TRUE] .(.Copyright © 2011 CD Projekt Red - The Witcher 2.) -- C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe
O87 - FAEL: "UDP Query User{9D7E2D68-E21B-4D8C-B31B-81475E45A0EF}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe" [In-None-P17-TRUE] .(.Copyright © 2011 CD Projekt Red - The Witcher 2.) -- C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe
O87 - FAEL: "TCP Query User{9FA9E3D2-F118-4ECB-A90D-5CD8A7DEB989}C:\program files (x86)\hearthstone\hearthstone.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\hearthstone\hearthstone.exe
O87 - FAEL: "UDP Query User{A3025A1E-0413-4CB8-B20E-1BA1E3115CDC}C:\program files (x86)\hearthstone\hearthstone.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\hearthstone\hearthstone.exe
O87 - FAEL: "{12207785-ACA0-4C4E-8331-FD516B124A75}" [In-None-P6-FALSE] .(.Monolith Productions, Inc. - F.E.A.R..) -- C:\Program Files (x86)\Sierra\FEAR\FEAR.exe
O87 - FAEL: "{B08A7D1C-A07B-48C4-994E-8259837871C3}" [In-None-P17-FALSE] .(.Monolith Productions, Inc. - F.E.A.R..) -- C:\Program Files (x86)\Sierra\FEAR\FEAR.exe
O87 - FAEL: "TCP Query User{AF50AFCA-7101-4723-928A-2CB29B208D18}C:\program files (x86)\sierra entertainment\timeshift\bin\timeshift.exe" [In-None-P6-FALSE] .(.Sierra Entertainment - TimeShift.) -- C:\program files (x86)\sierra entertainment\timeshift\bin\timeshift.exe
O87 - FAEL: "UDP Query User{67940EC7-98A7-420D-BAF6-8910D6930807}C:\program files (x86)\sierra entertainment\timeshift\bin\timeshift.exe" [In-None-P17-FALSE] .(.Sierra Entertainment - TimeShift.) -- C:\program files (x86)\sierra entertainment\timeshift\bin\timeshift.exe
O87 - FAEL: "{8A16A00B-9325-4315-9615-9713B98E73BF}" [In-None-P6-FALSE] .(.Monolith Productions, Inc. - F.E.A.R..) -- C:\Program Files (x86)\Sierra\FEAR\FEAR.exe
O87 - FAEL: "{578A16E4-378B-4D9B-915B-0EA581E045F9}" [In-None-P17-FALSE] .(.Monolith Productions, Inc. - F.E.A.R..) -- C:\Program Files (x86)\Sierra\FEAR\FEAR.exe
O87 - FAEL: "{0DDC3A31-4607-468B-8273-3CCB8DA9CD80}" [In-None-P6-FALSE] .(.Sierra Entertainment - TimeShift.) -- C:\program files (x86)\sierra entertainment\timeshift\bin\timeshift.exe
O87 - FAEL: "{1F178D51-3AC6-45F6-A54B-B54789CFC19B}" [In-None-P17-FALSE] .(.Sierra Entertainment - TimeShift.) -- C:\program files (x86)\sierra entertainment\timeshift\bin\timeshift.exe
O87 - FAEL: "TCP Query User{CE5BE3DA-1AB2-45DF-929B-6F64674C64C7}C:\program files (x86)\resident evil 6\bh6.exe" [In-None-P6-TRUE] .(.CAPCOM U.S.A, INC. - RESIDENT EVIL 6.) -- C:\program files (x86)\resident evil 6\bh6.exe
O87 - FAEL: "UDP Query User{D2D82475-7E59-44B5-954D-9BA7120FDC36}C:\program files (x86)\resident evil 6\bh6.exe" [In-None-P17-TRUE] .(.CAPCOM U.S.A, INC. - RESIDENT EVIL 6.) -- C:\program files (x86)\resident evil 6\bh6.exe
O87 - FAEL: "{9EAC0B7B-BD8D-4BAF-8E81-255212EF10F0}" [In-None-P6-TRUE] .(.Splash Damage, Ltd. - Brink.) -- C:\Program Files (x86)\Steam\steamapps\common\BRINK\brink.exe
O87 - FAEL: "{EB82E9D0-6722-43CB-9638-940D5E160F28}" [In-None-P17-TRUE] .(.Splash Damage, Ltd. - Brink.) -- C:\Program Files (x86)\Steam\steamapps\common\BRINK\brink.exe
O87 - FAEL: "{93B84FB2-38AD-4E9C-905A-4B15C220E6C4}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Commandos Behind Enemy Lines\Comandos.exe
O87 - FAEL: "{7C122638-CC22-4349-9646-4FC3DA60D3E7}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Commandos Behind Enemy Lines\Comandos.exe
O87 - FAEL: "{2D50111E-CB6A-4945-B7C6-F1903DBF36A0}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Commandos Beyond the Call of Duty\coman_mp.exe
O87 - FAEL: "{7560832C-6536-4F91-8A76-A90581199B99}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Commandos Beyond the Call of Duty\coman_mp.exe
O87 - FAEL: "{A25CE3B0-8FA7-495E-9180-E0E7DA31F7C3}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Commandos Beyond the Call of Duty\Tutorial.exe
O87 - FAEL: "{56D34BB4-EAA9-44DC-8174-D62AEF0A2EA4}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Commandos Beyond the Call of Duty\Tutorial.exe
O87 - FAEL: "{BA60A013-9155-4940-B683-9D7669437654}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Commandos 2 Men of Courage\comm2.exe
O87 - FAEL: "{7BD509B1-8894-46B3-8C0A-E6A365F948C7}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Commandos 2 Men of Courage\comm2.exe
O87 - FAEL: "{F1F365F4-9A4C-4109-AAF5-E6D7B1A0BD36}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Commandos 3 Destination Berlin\commandos3.exe
O87 - FAEL: "{758B1B40-1B38-457B-8664-5053F1788062}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Commandos 3 Destination Berlin\commandos3.exe
O87 - FAEL: "{C9281B11-A86E-474E-9BBB-EBDBEBA0B552}" [In-None-P6-TRUE] .(.Supergiant Games - Bastion.) -- C:\Program Files (x86)\Steam\steamapps\common\Bastion\Bastion.exe
O87 - FAEL: "{09D97C74-4CFF-41B2-81A0-21379C7814A6}" [In-None-P17-TRUE] .(.Supergiant Games - Bastion.) -- C:\Program Files (x86)\Steam\steamapps\common\Bastion\Bastion.exe
O87 - FAEL: "{6FAED25F-D3C8-4CCE-83C0-818832A22A44}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Gumboy Tournament\gumboytournament.exe
O87 - FAEL: "{1D2A4479-C1B0-4CCC-B2D6-D782E34F2212}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Gumboy Tournament\gumboytournament.exe
O87 - FAEL: "{5F646CEC-8E39-4D59-97C8-97D7855CBA3A}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\DYL\dyl.exe
O87 - FAEL: "{1045DA4D-776D-44C0-B1E1-C8C6A75C2A36}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\DYL\dyl.exe
O87 - FAEL: "{86C296E8-85EB-4CAA-AB24-3F75A65C6AA9}" [In-None-P6-TRUE] .(.DOSBox Team - DOSBox DOS Emulator.) -- C:\Program Files (x86)\Origin Games\Ultima 8\Game\Game\DOSBox\DOSBox.exe
O87 - FAEL: "{0B1ABA92-7758-4DD6-906C-30436A9163CB}" [In-None-P17-TRUE] .(.DOSBox Team - DOSBox DOS Emulator.) -- C:\Program Files (x86)\Origin Games\Ultima 8\Game\Game\DOSBox\DOSBox.exe
O87 - FAEL: "{FCE838ED-A736-477D-96B0-2813C0C45A74}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Trine\_enchanted_edition_\trine1_launcher.exe
O87 - FAEL: "{E9F88E8B-85AD-4426-8BDD-0B0D80211872}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Trine\_enchanted_edition_\trine1_launcher.exe
O87 - FAEL: "TCP Query User{C17E6568-C00F-4131-8B5A-59883E8B94E2}C:\users\murilo costa\appdata\roaming\utorrent\updates\3.4.3_40298.exe" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\users\murilo costa\appdata\roaming\utorrent\updates\3.4.3_40298.exe
O87 - FAEL: "UDP Query User{BB566A49-813B-4F1E-B841-DAD09CD2DBFA}C:\users\murilo costa\appdata\roaming\utorrent\updates\3.4.3_40298.exe" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\users\murilo costa\appdata\roaming\utorrent\updates\3.4.3_40298.exe
O87 - FAEL: "TCP Query User{B11DFC1C-1CA3-471D-A513-62FFDF5D2AAE}C:\users\murilo costa\appdata\roaming\utorrent\updates\3.4.3_40298.exe" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\users\murilo costa\appdata\roaming\utorrent\updates\3.4.3_40298.exe
O87 - FAEL: "UDP Query User{27CF8E11-0E99-4E81-8502-8BE88836CA65}C:\users\murilo costa\appdata\roaming\utorrent\updates\3.4.3_40298.exe" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\users\murilo costa\appdata\roaming\utorrent\updates\3.4.3_40298.exe
O87 - FAEL: "{A9F43EE3-DD4A-4105-8ACF-91C63FD12263}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\tinytroopers\TinyTroopers.exe
O87 - FAEL: "{C29F8CB7-3167-4BE5-AE75-DD60232C36CF}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\tinytroopers\TinyTroopers.exe
O87 - FAEL: "{A914711A-CD5E-48A2-A157-177F184D8F9B}" [In-None-P6-TRUE] .(.Two Tribes B.V. - Toki Tori 2+.) -- C:\Program Files (x86)\Steam\steamapps\common\Toki Tori 2\tokitori2.exe
O87 - FAEL: "{95358582-24E3-45AC-A745-A7274B4C3017}" [In-None-P17-TRUE] .(.Two Tribes B.V. - Toki Tori 2+.) -- C:\Program Files (x86)\Steam\steamapps\common\Toki Tori 2\tokitori2.exe
O87 - FAEL: "{F7C6FD83-59D7-47DB-873A-6D58DD9B0E13}" [In-None-P6-TRUE] .(.Frozenbyte Oy - Shadowgrounds.) -- C:\Program Files (x86)\Steam\steamapps\common\Shadowgrounds\Shadowgrounds.exe
O87 - FAEL: "{45E6BFB2-0FCD-4F1E-811F-B2EFAA7B218C}" [In-None-P17-TRUE] .(.Frozenbyte Oy - Shadowgrounds.) -- C:\Program Files (x86)\Steam\steamapps\common\Shadowgrounds\Shadowgrounds.exe
O87 - FAEL: "{E3098F12-CE66-4EA2-AD9B-EF695902540A}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Shadowgrounds\ShadowgroundsLauncher.exe
O87 - FAEL: "{15296D9A-179E-48E6-87EC-66BDB747216E}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Shadowgrounds\ShadowgroundsLauncher.exe
O87 - FAEL: "{041D50A3-3ED5-4358-975B-F27E672F57F6}" [In-None-P6-FALSE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\lost planet extreme condition\LostPlanetDX9.exe
O87 - FAEL: "{D7036379-5D42-4472-8BB5-F4FF50A12D7B}" [In-None-P17-FALSE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\lost planet extreme condition\LostPlanetDX9.exe
O87 - FAEL: "{58B0B8C9-571D-4E34-9114-689F06469B95}" [In-None-P6-FALSE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\lost planet extreme condition\LostPlanetDX10.exe
O87 - FAEL: "{C1175BD9-E1F0-40B5-8155-83A2290E49E8}" [In-None-P17-FALSE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\lost planet extreme condition\LostPlanetDX10.exe
O87 - FAEL: "{87094DF3-1DD2-4701-8ACE-FE795859A709}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Hydrophobia\HydroPC.exe
O87 - FAEL: "{D4FAD477-EAA0-4187-B6F5-CA9762550D0B}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Hydrophobia\HydroPC.exe
O87 - FAEL: "{8E164180-30FA-4A1F-BD95-DAC6D67448C1}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\dota 2 test\dota.exe
O87 - FAEL: "{986D68AD-0CBC-4B6C-A9AB-B71CB52DC60D}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\dota 2 test\dota.exe
O87 - FAEL: "{6E05D524-6665-473B-BCBE-CB03D44FFBCA}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\BioShock 2\SP\Builds\Binaries\Bioshock2Launcher.exe
O87 - FAEL: "{BEBF87A7-3E88-4604-AB60-1D0A4859FADA}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\BioShock 2\SP\Builds\Binaries\Bioshock2Launcher.exe
O87 - FAEL: "{DFF70DAF-9A36-4367-83A5-DE8C1EF7DC4B}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\BioShock 2\MP\Builds\Binaries\Bioshock2Launcher.exe
O87 - FAEL: "{812A8B82-D434-4FEB-84A5-EEB1F42A3AA9}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\BioShock 2\MP\Builds\Binaries\Bioshock2Launcher.exe
O87 - FAEL: "{509B2B3A-4252-49E8-A3E2-6C798922B82A}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe
O87 - FAEL: "{E1DB8C9F-2FF8-477C-A3C1-0226A302990B}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe
---\\ Serviços não Microsoft (SR=Executados, SS=Parados) (26) - 57s
SR - Auto [2014/12/03 03:31:16] [ 81088] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe ©
SS - Auto [2015/09/10 08:15:21] [ 269000] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe ©
SR - Auto [2015/06/22 22:14:38] [ 245760] (AMD External Events Utility) . (.AMD.) - C:\Windows\system32\atiesrxx.exe ©
SR - Auto [2015/06/22 21:37:14] [ 344064] AMD FUEL Service (AMD FUEL Service) . (.Advanced Micro Devices, Inc..) - C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe ©
SR - Auto [2015/07/30 15:19:29] [ 146600] Avast Antivirus (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe ©
SS - Auto [2015/08/10 17:38:25] [ 136048] Dropbox Update Service (dbupdate) (dbupdate) . (.Dropbox, Inc..) - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ©
SS - Auto [2015/08/10 17:38:25] [ 136048] Dropbox Update Service (dbupdatem) (dbupdatem) . (.Dropbox, Inc..) - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ©
SR - Auto [2014/11/10 06:55:06] [ 2216208] Disc Soft Bus Service (Disc Soft Bus Service) . (.Disc Soft Ltd.) - C:\Program Files (x86)\DAEMON Tools Pro\DiscSoftBusService.exe ©
SS - Demand [2015/05/11 17:42:06] [ 244392] Foxit Cloud Safe Update Service (FoxitCloudUpdateService) . (.Foxit Software Inc..) - C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe ©
SS - Auto [2015/07/13 15:49:14] [ 144200] Google Update Service (gupdate1d0bd9c9f0dee6f) (gupdate1d0bd9c9f0dee6f) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
SS - Auto [2015/07/13 15:49:14] [ 144200] Google Update Service (gupdatem1d0bd9c9f933b7f) (gupdatem1d0bd9c9f933b7f) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
SR - Auto [2005/04/03 23:41:10] [ 69632] InstallDriver Table Manager (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe ©
SS - Disabled [2015/06/18 08:39:46] [ 1871160] (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe ©
SS - Auto [2015/06/18 08:39:50] [ 1133880] (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe ©
SS - Auto [2015/06/30 23:30:36] [ 148136] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe ©
SS - Auto [2015/09/06 15:16:27] [ 2057736] Origin Client Service (Origin Client Service) . (.Electronic Arts.) - C:\Program Files (x86)\Origin\OriginClientService.exe ©
SR - Auto [2015/08/05 19:39:25] [ 76152] PnkBstrA (PnkBstrA) . (...) - C:\Windows\System32\PnkBstrA.exe
SS - Demand [2014/04/30 16:33:52] [ 337776] Corel License Validation Service V2 x64, Powered by arvato (PSI_SVC_2_x64) . (.arvato digital services llc.) - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
SS - Demand [2015/06/17 03:25:02] [ 31856] RealPlayer Update Service (RealPlayerUpdateSvc) . (...) - C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
SS - Demand [2014/12/11 10:30:48] [ 315496] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe ©
SS - Demand [2015/06/10 11:11:26] [ 155520] Sony PC Companion (Sony PC Companion) . (.Avanquest Software.) - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe ©
SR - Auto [2015/09/12 23:07:32] [ 450048] SSFK (SSFK) . (.TODO: <公司名>.) - C:\Program Files (x86)\SFK\SSFK.exe =>PUP.Optional.MyWebSearch
SS - Demand [2015/08/19 17:39:00] [ 838336] Steam Client Service (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe ©
SR - Auto [2015/09/12 23:07:28] [ 451720] WdsManPro Service (WdsManPro) . (.DTools LIMITED.) - C:\ProgramData\aWdsManProa\WdsManPro.exe =>PUP.Optional.WpManager
SS - Auto [2012/07/17 15:25:28] [ 580648] Wise Boot Assistant (WiseBootAssistant) . (.WiseCleaner.com.) - C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe ©
---\\ Scâner Aditional (19) - 0s
C:\ProgramData\aWdsManProa\WdsManPro.exe =>PUP.Optional.WdsManPro
C:\Users\Murilo Costa\AppData\Roaming\Mozilla\Firefox\Profiles\35mz2grc.default\searchplugins\istartsurf.xml =>PUP.Optional.IsStart
HKLM\SYSTEM\CurrentControlSet\Services\SSFK =>PUP.Optional.MyWebSearch
C:\Program Files (x86)\SFK\SSFK.exe =>PUP.Optional.MyWebSearch
HKLM\SYSTEM\CurrentControlSet\Services\WdsManPro =>PUP.Optional.WpManager
C:\ProgramData\aWdsManProa\WdsManPro.exe =>PUP.Optional.WpManager
HKLM\SOFTWARE\Wow6432Node\Clara =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\FFPluginHp =>PUP.Optional.SweetSearch
HKLM\SOFTWARE\Wow6432Node\istartsurfSoftware =>PUP.Optional.IsStart
HKLM\SOFTWARE\Wow6432Node\WdsManPro =>PUP.Optional.WdsManPro
HKCU\SOFTWARE\BoBrowser =>PUP.Optional.BoBrowser
HKCU\SOFTWARE\Tortuga Team =>PUP.Optional.Tortuga
C:\Program Files (x86)\SFK =>PUP.Optional.MyWebSearch
C:\ProgramData\aWdsManProa =>PUP.Optional.WdsManPro
C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS
C:\ProgramData\{ACBCD40A-42A8-4FF9-BD42-ABCD14998CBA} =>PUP.Optional.BundleInstaller
C:\Users\Murilo Costa\AppData\Local\Installer =>PUP.Optional.InstallPedia
C:\Windows\System32\drivers\EsgScanner.sys =>.Superfluous.SpyHunter
C:\Users\Murilo Costa\Downloads\Programs\SpyHunter-Installer.exe =>.Superfluous.SpyHunter
---\\ Resumo dos elementos encontrados na sua estação de trabalho (17) - 0s
http://www.nicolascoolman.fr/blog =>PUP.Optional.WdsManPro
http://www.nicolascoolman.fr/pup-isstart/ =>PUP.Optional.IsStart
http://www.nicolascoolman.fr/adware-mywebsearch/ =>PUP.Optional.MyWebSearch
http://www.nicolascoolman.fr/pup-wpmanager/ =>PUP.Optional.WpManager
http://www.nicolascoolman.fr/pup-suptab/ =>PUP.Optional.SupTab
http://www.nicolascoolman.fr/blog =>PUP.Optional.SweetSearch
http://www.nicolascoolman.fr/blog =>PUP.Optional.BoBrowser
http://www.nicolascoolman.fr/blog =>PUP.Optional.Tortuga
http://www.nicolascoolman.fr/trojan-autokms/ =>HackTool.AutoKMS
http://www.nicolascoolman.fr/blog =>PUP.Optional.BundleInstaller
http://www.nicolascoolman.fr/adware-installpedia/ =>PUP.Optional.InstallPedia
http://www.nicolascoolman.fr/blog =>.Superfluous.SpyHunter
http://www.nicolascoolman.fr/blog =>PUP.Optional.SearchEngine
http://www.nicolascoolman.fr/blog =>PUP.Optional.PriceFountain
http://www.nicolascoolman.fr/blog =>PUP.Optional.DeskCut
http://www.nicolascoolman.fr/blog =>PUP.Optional.FFToolBar
http://www.nicolascoolman.fr/pup-quickstart/ =>PUP.Optional.QuickStart
~ End of the scan, 51464 items in 182 seconds (1381)(0)()