cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.11.13.167 Por Nicolas Coolman (2015/11/13)
~ iniciado por JoséCarlos1057 (Administrator) (2015/11/16 07:14:50)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Status da versão: Version OK
~ Modo: Scanner
~ Relatório: C:\Users\JoséCarlos1057\Desktop\ZHPDiag.txt
~ Relatório: C:\Users\JoséCarlos1057\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Inicialização do sistema: Normal (Normal boot)
Windows 10 Pro, 64-bit (Build 10240)

---\\ Navegadores Internet (2) - 0s
GCIE: Google Chrome v46.0.2490.86
MSIE: Internet Explorer v11.0.10240.16590

---\\ Informações sobre os produtos Windows (3) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK

---\\ Softwares de proteçao do sistema (3) - 4s
Avast Internet Security v10.4.2233
Malwarebytes Anti-Malware versão 2.2.0.1024
Windows Defender (Deactivate)

---\\ Softwares d'optimização do sistema (1) - 4s
CCleaner v5.11

---\\ Informações sobre o sistema (6) - 0s
~ Operating System: Intel64 Family 6 Model 15 Stepping 6, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 2095.156 MB (26% free)
System Restore: Activé (Enable)
System drive C: has 272 GB () free of 304 GB

---\\ Modo de conexão ao sistema (3) - 0s
~ Computer Name: TOSHIBAA100
~ User Name: JoséCarlos1057
~ Logged in as Administrator

---\\ Enumeração das unidades dos discos (1) - 0s
~ Drive C: has 272 GB free of 304 GB (System)

---\\ Estado do Centro de Segurança do Windows (7) - 0s
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK

---\\ Pesquisa particular de ficheiros genéricos (24) - 2s
[MD5.F1CBCB7FA6F3B309639AA2D4EF74469C] - 09/09/2015 - (.Microsoft Corporation - Explorador do Windows.) -- C:\WINDOWS\Explorer.exe [4532304] ©
[MD5.5DED2A3F11AE916C8F2724947E736261] - 10/07/2015 - (.Microsoft Corporation - Processo anfitrião do Windows (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [59392] ©
[MD5.7718A2A9B2BFB2C8E2BAEB03310CA3FD] - 09/09/2015 - (.Microsoft Corporation - Aplicação de Arranque do Windows.) -- C:\WINDOWS\System32\Wininit.exe [290312] ©
[MD5.E5D86250453B33900666D92ED1A92ABE] - 17/09/2015 - (.Microsoft Corporation - Extensões da Internet para Win32.) -- C:\WINDOWS\System32\wininet.dll [2740224] ©
[MD5.A7C48B051A9C5D5054916DE5BEBBCA2D] - 05/11/2015 - (.Microsoft Corporation - Aplicação de Início de Sessão do Windows.) -- C:\WINDOWS\System32\Winlogon.exe [579072] ©
[MD5.ECB1943967424DFB96E03F6A098434EF] - 09/09/2015 - (.Microsoft Corporation - Biblioteca de Licenciamento de Software.) -- C:\WINDOWS\System32\sppcomapi.dll [430592] ©
[MD5.C287D0E32771E3222A444DC527A29477] - 10/07/2015 - (.Microsoft Corporation - DLL da API de cliente de DNS.) -- C:\WINDOWS\System32\dnsapi.dll [680256] ©
[MD5.BB5BBD0E4D04047585E4ED0F07AA51E7] - 10/07/2015 - (.Microsoft Corporation - DLL da API de cliente de DNS.) -- C:\WINDOWS\Syswow64\dnsapi.dll [534064] ©
[MD5.A3D96563BF46FC8A0E5756B796127D14] - 05/11/2015 - (.Microsoft Corporation - Controlador de Função Auxiliar para Winsock.) -- C:\WINDOWS\System32\drivers\AFD.sys [577888] ©
[MD5.8921DF6060DB5C7700AA48CB12E9EA08] - 10/07/2015 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [28512] ©
[MD5.F2829DC6D292DCAC5029893BB2E9FEE3] - 10/07/2015 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [92672] ©
[MD5.CA160E02F35A61C6F5C681FB4669C519] - 10/07/2015 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [174080] ©
[MD5.25435407D97419627F4B10653433BF2B] - 10/07/2015 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [138240] ©
[MD5.C277A49F8A8295840DEBC9240B75A282] - 10/07/2015 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [80896] ©
[MD5.D4CDEE4A62BDFFF6E8558A9552148EA7] - 10/07/2015 - (.Microsoft Corporation - Controlador de porta i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [114688] ©
[MD5.5D3744E6FDEC1A6FB3FA9B1DD4AF0694] - 10/07/2015 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [143360] ©
[MD5.1DF2C5FD2710A13B07E663A12F0E0EEA] - 10/07/2015 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [415232] ©
[MD5.F0D791348AD254360CC3C3E501CCB745] - 10/07/2015 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [273408] ©
[MD5.466EC5659C02ED53DBD47DC1BC2B8086] - 09/09/2015 - (.Microsoft Corporation - Controlador de Sistema de Ficheiros NT.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2116448] ©
[MD5.38F1AE32339731F6E5A7281AE8042545] - 10/07/2015 - (.Microsoft Corporation - Controlador de porta paralela.) -- C:\WINDOWS\System32\drivers\Parport.sys [96768] ©
[MD5.CA60F6C03611AF1710BC903ED9F566FB] - 10/07/2015 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [104960] ©
[MD5.A32AED8C644734B283A7C9D08D76064D] - 10/07/2015 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [176128] ©
[MD5.D42AC03ACF9CA67693D1D9BB4D2A0BC8] - 05/11/2015 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [116064] ©
[MD5.823A237D871CD652C6BFD47BECB6810A] - 10/07/2015 - (.Microsoft Corporation - Controlador de cópia sombra do volume.) -- C:\WINDOWS\System32\drivers\volsnap.sys [378720] ©

---\\ Serviços NT não Microsoft e não desativados (8) - 1s
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) . (.LSI Corporation - LSI Soft Modem Call Progress Service.) - C:\Program Files\LSI SoftModem\agr64svc.exe ©
O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe ©
O23 - Service: Avast Firewall (avast! Firewall) . (.AVAST Software - avast! firewall service.) - C:\Program Files\AVAST Software\Avast\afwServ.exe ©
O23 - Service: Baidu Cleaner Service (BCleanerSvc) . (.Baidu Inc. - Baidu Cleaner Service.) - C:\Program Files (x86)\Baidu Cleaner\BCleanerSvc.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe ©
O23 - Service: (MBAMService) . (.Malwarebytes - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe ©
O23 - Service: (PCFasterSvc_{PCFaster_6.0.0.0}) . (.Baidu Inc. - Baidu Cleaner Service.) - C:\Program Files (x86)\Baidu Cleaner\BCleanerSvc.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ©

---\\ Tarefas planificadas automaticamente (14) - 4s
[MD5.D9E35285D8CCE58241038E5B23507DAB] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [1382112] ©
[MD5.5E793E82E1E2A1765B44CBD1A0D69638] [APT] [Baidu Cleaner Service] (.Baidu Inc..) -- C:\Program Files (x86)\Baidu Cleaner\BCleanerSvc.exe [1697896]
[MD5.8D0F67946EDB64DF0DC06239309CFEE4] [APT] [Baidu Cleaner Update] (.Baidu Inc..) -- C:\Program Files (x86)\Baidu Cleaner\Updater.exe [1365608]
[MD5.E49FD011745BFC5621C586CCD07FF81E] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [6564776] ©
[MD5.053EEEE1ABAE53F044F1E386E22AE525] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.053EEEE1ABAE53F044F1E386E22AE525] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] ©
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job [1044] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job [1048] ©
O39 - APT: avast! Emergency Update - (.AVAST Software.) -- C:\WINDOWS\System32\Tasks\avast! Emergency Update [4280] ©
O39 - APT: Baidu Cleaner Service - (.Baidu Inc..) -- C:\WINDOWS\System32\Tasks\Baidu Cleaner Service [3808]
O39 - APT: Baidu Cleaner Update - (.Baidu Inc..) -- C:\WINDOWS\System32\Tasks\Baidu Cleaner Update [3862]
O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\WINDOWS\System32\Tasks\CCleanerSkipUAC [2224] ©
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore [3396] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA [3620] ©

---\\ Processos lançados (23) - 4s
[MD5.11120878E5276B367E1A10FF8C9B595B] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600] [PID.1084] ©
[MD5.F423D12EE3D40C26BF415B0DCDF60F40] - (.AVAST Software - avast! firewall service.) -- C:\Program Files\AVAST Software\Avast\afwServ.exe [109008] [PID.1616] ©
[MD5.B65F8DBA54F251906BBE8611B5A0E7AB] - (.LSI Corporation - LSI Soft Modem Call Progress Service.) -- C:\Program Files\LSI SoftModem\agr64svc.exe [16896] [PID.1628] ©
[MD5.AB176B9E59C0435499D83047D84EDD59] - (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784] [PID.2100] ©
[MD5.40C126CB15FAB7D6C66490DCA9C1AED2] - (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416] [PID.2128] ©
[MD5.958178C7883410DC85BBFC8F75480F52] - (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) -- C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [237736] [PID.2240] ©
[MD5.B06D3C66792F9C0B87BEA03DA7E451A0] - (.Synaptics, Inc. - Toshiba Custom PlugIn Application.) -- C:\Program Files\Synaptics\SynTP\SynToshiba.exe [225280] [PID.3372] ©
[MD5.BABBBDEF9DBB5E012EE5210FCB47C33B] - (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe [9832760] [PID.3624] ©
[MD5.D1AFB241B396E9E3735D44A65DA97AD5] - (.Synaptics, Inc. - Synaptics Pointing Device Helper.) -- C:\Program Files\Synaptics\SynTP\SynTPHelper.exe [120104] [PID.3660] ©
[MD5.B05E1CE24CC555E189FCEB1AD07DFCED] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe [8551848] [PID.4016] ©
[MD5.6FCCCAA9144312CD4AA1B38834DD9857] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe [6133520] [PID.4932] ©
[MD5.053EEEE1ABAE53F044F1E386E22AE525] - (.Google Inc. - Instalador do Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] [PID.2964] ©
[MD5.5E793E82E1E2A1765B44CBD1A0D69638] - (.Baidu Inc. - Baidu Cleaner Service.) -- C:\Program Files (x86)\Baidu Cleaner\BCleanerSvc.exe [1697896] [PID.5664]
[MD5.4CEBA77F7D780C4B2F498338EF7DD93E] - (.Baidu Inc. - Baidu Cleaner Tray.) -- C:\Program Files (x86)\Baidu Cleaner\BCleanerTray.exe [2162488] [PID.2780]
[MD5.C530C0503254F44782B6C8A5A2966DE5] - (.Baidu Inc. - FasterNow.) -- C:\Program Files (x86)\Baidu Cleaner\FasterNow.exe [866920] [PID.2772]
[MD5.7A2870C2A8283B3630BF7670D0362B94] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [811848] [PID.5260] ©
[MD5.7A2870C2A8283B3630BF7670D0362B94] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [811848] [PID.168] ©
[MD5.7A2870C2A8283B3630BF7670D0362B94] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [811848] [PID.2840] ©
[MD5.7A2870C2A8283B3630BF7670D0362B94] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [811848] [PID.6208] ©
[MD5.7A2870C2A8283B3630BF7670D0362B94] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [811848] [PID.580] ©
[MD5.7A2870C2A8283B3630BF7670D0362B94] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [811848] [PID.6500] ©
[MD5.7A2870C2A8283B3630BF7670D0362B94] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [811848] [PID.6916] ©
[MD5.C76ED9E6D9E432DE096236B09E81A77F] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\JoséCarlos1057\Downloads\ZHPDiag3.exe [1968640] [PID.9596] ©

---\\ Internet Explorer, Arranque, Pesquisa, Phishing (15) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer

---\\ Internet Explorer, Gestão do Proxy (2) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1

---\\ Análise das linhas, Carregamento Automático de programas (3) - 1s
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: VMApplet=

---\\ Redireção do ficheiro Hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)

---\\ Browser Helper Objects do navegador (2) - 0s
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll ©
O2 - BHO: SkypeIEPluginBHO [64Bits] - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll ©

---\\ Aplicações iniciadas por registo & pastas (13) - 0s
O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe ©
O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\JoséCarlos1057\AppData\Local\Microsoft\OneDrive\OneDrive.exe ©
O4 - HKCU\..\Run: [Flvto YouTube Downloader] . (.Hotger - Flvto Youtube Downloader.) -- C:\Users\JoséCarlos1057\Desktop\FlvtoYoutubeDownloader.exe
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\JoséCarlos1057\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe ©
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\JoséCarlos1057\AppData\Local\Microsoft\OneDrive\17.3.5892.0626] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe ©
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe ©
O4 - HKLM\..\Wow6432Node\Run: [Baidu Cleaner] . (.Baidu Inc. - Baidu Cleaner Tray.) -- C:\Program Files (x86)\Baidu Cleaner\BCleanerTray.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\syswow64\OneDriveSetup.exe ©
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\syswow64\OneDriveSetup.exe ©
O4 - HKUS\S-1-5-21-3136738229-3321464536-2784466607-1003\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\JoséCarlos1057\AppData\Local\Microsoft\OneDrive\OneDrive.exe ©
O4 - HKUS\S-1-5-21-3136738229-3321464536-2784466607-1003\..\Run: [Flvto YouTube Downloader] . (.Hotger - Flvto Youtube Downloader.) -- C:\Users\JoséCarlos1057\Desktop\FlvtoYoutubeDownloader.exe
O4 - HKUS\S-1-5-21-3136738229-3321464536-2784466607-1003\..\RunOnce: [Uninstall C:\Users\JoséCarlos1057\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe ©
O4 - HKUS\S-1-5-21-3136738229-3321464536-2784466607-1003\..\RunOnce: [Uninstall C:\Users\JoséCarlos1057\AppData\Local\Microsoft\OneDrive\17.3.5892.0626] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe ©

---\\ Alteração Dominio/Clientes DNS (2) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1

---\\ Protocolo adicional (22) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\syswow64\mshtml.dll ©
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\syswow64\urlmon.dll ©
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Controlo ActiveX para transmissão em fluxo.) -- C:\Windows\syswow64\MSVidCtl.dll ©
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\syswow64\urlmon.dll ©
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\syswow64\urlmon.dll ©
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\syswow64\urlmon.dll ©
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\syswow64\urlmon.dll ©
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\syswow64\itss.dll ©
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\syswow64\mshtml.dll ©
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\syswow64\urlmon.dll ©
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\syswow64\mshtml.dll ©
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\syswow64\inetcomm.dll ©
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\syswow64\urlmon.dll ©
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\syswow64\itss.dll ©
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\syswow64\mshtml.dll ©
O18 - Handler: skypec2c [64Bits] - {91774881-D725-4E58-B298-07617B9B86A8} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll ©
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\syswow64\tbauth.dll ©
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Controlo ActiveX para transmissão em fluxo.) -- C:\Windows\syswow64\MSVidCtl.dll ©
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\syswow64\mshtml.dll ©
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\syswow64\mscoree.dll ©
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\syswow64\mscoree.dll ©
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\syswow64\mscoree.dll ©

---\\ Software instalados (12) - 5s
O42 - Logiciel: Avast Internet Security - (.AVAST Software.) [HKLM][64Bits] -- Avast ©
O42 - Logiciel: Baidu Cleaner - (.Baidu Inc..) [HKLM][64Bits] -- Baidu Cleaner
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner ©
O42 - Logiciel: Flvto YouTube Downloader - (.Hotger.) [HKLM][64Bits] -- Flvto YouTube Downloader
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} ©
O42 - Logiciel: Malwarebytes Anti-Malware versão 2.2.0.1024 - (.Malwarebytes.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 ©
O42 - Logiciel: Revo Uninstaller 1.95 - (.VS Revo Group.) [HKLM][64Bits] -- Revo Uninstaller ©
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701} ©
O42 - Logiciel: Skype™ 7.13 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {6A0549A9-1B96-498C-ACBC-3943001FEB19} ©
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics.) [HKLM][64Bits] -- SynTPDeinstKey ©
O42 - Logiciel: TOSHIBA Software Modem - (.LSI Corporation.) [HKLM][64Bits] -- TOSHIBA Software Modem ©

---\\ Ponto de restauro do sistema (36) - 5s
HKLM\SOFTWARE\Wow6432Node\AdwCleaner
HKLM\SOFTWARE\Wow6432Node\AVAST Software
HKLM\SOFTWARE\Wow6432Node\Baidu Cleaner
HKLM\SOFTWARE\Wow6432Node\Baidu Security
HKLM\SOFTWARE\Wow6432Node\Baidu_Drp_pos
HKLM\SOFTWARE\Wow6432Node\Flvto Youtube Downloader
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\TuneUp
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\AVAST Software
HKCU\SOFTWARE\Baidu Cleaner
HKCU\SOFTWARE\Baidu Security
HKCU\SOFTWARE\FlvtoConverter
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\hotger
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Synaptics
HKCU\SOFTWARE\SyncEngines
HKCU\SOFTWARE\VSRevoGroup
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software

---\\ Conteúdo das pastas Programs (96) - 7s
O43 - CFD: 16/11/2015 - [] D -- C:\Program Files (x86)\Baidu Cleaner
O43 - CFD: 05/11/2015 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 29/10/2015 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 29/10/2015 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 15/11/2015 - [] D -- C:\Program Files (x86)\Malwarebytes Anti-Malware
O43 - CFD: 28/10/2015 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 28/10/2015 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 28/10/2015 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 31/10/2015 - [] RD -- C:\Program Files (x86)\Skype
O43 - CFD: 05/11/2015 - [] D -- C:\Program Files (x86)\TuneUp Utilities 2014
O43 - CFD: 05/11/2015 - [] D -- C:\Program Files (x86)\VS Revo Group
O43 - CFD: 28/10/2015 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 28/10/2015 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 28/10/2015 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 28/10/2015 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 28/10/2015 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 28/10/2015 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 28/10/2015 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 28/10/2015 - [] SHD -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 28/10/2015 - [] SD -- C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 29/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 28/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 28/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 28/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
O43 - CFD: 16/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Baidu Cleaner
O43 - CFD: 15/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 29/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 28/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 15/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 31/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 05/11/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 28/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 28/10/2015 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 28/10/2015 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 28/10/2015 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 16/11/2015 - [] D -- C:\ProgramData\Baidu
O43 - CFD: 16/11/2015 - [] D -- C:\ProgramData\Baidu Cleaner
O43 - CFD: 04/11/2015 - [] HD -- C:\ProgramData\Common Files
O43 - CFD: 28/10/2015 - [0] D -- C:\ProgramData\Comms
O43 - CFD: 28/10/2015 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 28/10/2015 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 28/10/2015 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 15/11/2015 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 15/11/2015 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 28/10/2015 - [] D -- C:\ProgramData\Microsoft OneDrive
O43 - CFD: 28/10/2015 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 16/11/2015 - [0] D -- C:\ProgramData\RpData
O43 - CFD: 31/10/2015 - [] D -- C:\ProgramData\Skype
O43 - CFD: 28/10/2015 - [0] D -- C:\ProgramData\SoftwareDistribution
O43 - CFD: 28/10/2015 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 28/10/2015 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 05/11/2015 - [] D -- C:\ProgramData\TuneUp Software
O43 - CFD: 28/10/2015 - [] D -- C:\ProgramData\USOPrivate
O43 - CFD: 28/10/2015 - [] D -- C:\ProgramData\USOShared
O43 - CFD: 28/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 28/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 31/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 28/10/2015 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 28/10/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\Adobe
O43 - CFD: 28/10/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\AVAST Software
O43 - CFD: 16/11/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\Baidu Cleaner
O43 - CFD: 05/11/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\FlvtoConverter
O43 - CFD: 28/10/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\Macromedia
O43 - CFD: 29/10/2015 - [] SD -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft
O43 - CFD: 16/11/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\Skype
O43 - CFD: 04/11/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\TuneUp Software
O43 - CFD: 16/11/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\ZHP
O43 - CFD: 28/10/2015 - [0] SHD -- C:\Users\JoséCarlos1057\AppData\Local\Application Data
O43 - CFD: 29/10/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Diagnostics
O43 - CFD: 16/11/2015 - [0] D -- C:\Users\JoséCarlos1057\AppData\Local\ElevatedDiagnostics
O43 - CFD: 29/10/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Google
O43 - CFD: 28/10/2015 - [0] SHD -- C:\Users\JoséCarlos1057\AppData\Local\History
O43 - CFD: 04/11/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Hotger
O43 - CFD: 04/11/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Microsoft
O43 - CFD: 28/10/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\MicrosoftEdge
O43 - CFD: 28/10/2015 - [0] D -- C:\Users\JoséCarlos1057\AppData\Local\NetworkTiles
O43 - CFD: 29/10/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Packages
O43 - CFD: 29/10/2015 - [0] D -- C:\Users\JoséCarlos1057\AppData\Local\PeerDistRepub
O43 - CFD: 15/11/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Programs
O43 - CFD: 28/10/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Publishers
O43 - CFD: 31/10/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Skype
O43 - CFD: 16/11/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Temp
O43 - CFD: 28/10/2015 - [0] SHD -- C:\Users\JoséCarlos1057\AppData\Local\Temporary Internet Files
O43 - CFD: 28/10/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\TileDataLayer
O43 - CFD: 04/11/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\TuneUp Software
O43 - CFD: 28/10/2015 - [0] D -- C:\Users\JoséCarlos1057\AppData\Local\VirtualStore
O43 - CFD: 28/10/2015 - [] RD -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 28/10/2015 - [] RD -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 29/10/2015 - [] RD -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 05/11/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicações do Chrome
O43 - CFD: 16/11/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Baidu Cleaner
O43 - CFD: 28/10/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 05/11/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
O43 - CFD: 29/10/2015 - [] RD -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 28/10/2015 - [] RD -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 28/10/2015 - [] RSD -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell

---\\ Últimos arquivos criados no Windows Prefetcher (2) - 19s
O45 - LFCP:[MD5.2607D37C212703EBFAB51ADC43E56226] 05/11/2015 A -- C:\WINDOWS\Prefetch\SEARCHMOREKNOWDESKTOPSEARCH.E-4D59CE71.pf =>PUP.Optional.DesktopSearch
O45 - LFCP:[MD5.66F5E05739D7FE8F5A81F0665DE18240] 05/11/2015 A -- C:\WINDOWS\Prefetch\UNSEARCHMOREKNOWDESKTOPSEARCH-A02A9528.pf =>PUP.Optional.DesktopSearch

---\\ Softwares de proteçao do sistema (Supérfluo) (6) - 0s
O106 - SIOI: ErrorOverlayHandler Class [ OneDrive1] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\JoséCarlos1057\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileSyncShell.dll ©
O106 - SIOI: SharedOverlayHandler Class [ OneDrive2] - {5AB7172C-9C11-405C-8DD5-AF20F3606282}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\JoséCarlos1057\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileSyncShell.dll ©
O106 - SIOI: SharedSyncingOverlayHandler Class [ OneDrive3] - {A78ED123-AB77-406B-9962-2A5D9D2F7F30}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\JoséCarlos1057\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileSyncShell.dll ©
O106 - SIOI: UpToDateOverlayHandler Class [ OneDrive4] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\JoséCarlos1057\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileSyncShell.dll ©
O106 - SIOI: SyncingOverlayHandler Class [ OneDrive5] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\JoséCarlos1057\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileSyncShell.dll ©
O106 - SIOI: avast [00avast] - {472083B0-C522-11CF-8763-00608CC02F24}. (.AVAST Software - avast! Shell Extension.) -- C:\Program Files\AVAST Software\Avast\ashShell.dll ©

---\\ Lista dos drivers do sistema (59) - 11s
O58 - SDL:2015/07/10 10:59:38 N . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [107360] ©
O58 - SDL:2015/07/10 10:59:38 N . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [1135456] ©
O58 - SDL:2000/01/01 00:00:00 A . (.LSI Corporation - SoftModem Device Driver.) -- C:\WINDOWS\System32\drivers\agrsm64.sys [1208320] ©
O58 - SDL:2015/07/10 10:59:38 N . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [83296] ©
O58 - SDL:2015/07/10 10:59:38 N . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259424] ©
O58 - SDL:2015/07/10 10:59:38 N . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [26976] ©
O58 - SDL:2015/07/10 10:59:38 N . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [131936] ©
O58 - SDL:2015/10/28 12:20:37 A . (.AVAST Software - avast! HWID.) -- C:\WINDOWS\System32\drivers\aswHwid.sys [28656] ©
O58 - SDL:2015/10/28 12:20:14 A . (.AVAST Software - avast! Keyboard Filter Driver.) -- C:\WINDOWS\System32\drivers\aswKbd.sys [28144] ©
O58 - SDL:2015/10/28 12:20:37 A . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\WINDOWS\System32\drivers\aswMonFlt.sys [90968] ©
O58 - SDL:2015/10/28 12:20:06 A . (.AVAST Software - avast! Filtering NDIS driver.) -- C:\WINDOWS\System32\drivers\aswNdisFlt.sys [454528] ©
O58 - SDL:2015/10/28 12:20:36 A . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\WINDOWS\System32\drivers\aswRdr2.sys [93528] ©
O58 - SDL:2015/10/28 12:20:37 A . (.AVAST Software - avast! Revert.) -- C:\WINDOWS\System32\drivers\aswRvrt.sys [65224] ©
O58 - SDL:2015/11/07 00:21:08 A . (.AVAST Software - avast! Virtualization Driver.) -- C:\WINDOWS\System32\drivers\aswsnx.sys [1059656] ©
O58 - SDL:2015/11/07 00:21:08 A . (.AVAST Software - avast! self protection module.) -- C:\WINDOWS\System32\drivers\aswsp.sys [449992] ©
O58 - SDL:2015/10/28 12:20:37 A . (.AVAST Software - Stream Filter.) -- C:\WINDOWS\System32\drivers\aswStm.sys [153744] ©
O58 - SDL:2015/10/28 12:20:37 A . (.AVAST Software - avast! VM Monitor.) -- C:\WINDOWS\System32\drivers\aswVmm.sys [274808] ©
O58 - SDL:2015/07/10 10:59:38 N . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [17624] ©
O58 - SDL:2015/03/31 06:14:20 A . (.Baidu, Inc. - Baidu Antivirus Minifilter Driver.) -- C:\WINDOWS\System32\drivers\BprotectEx.sys [94480] ©
O58 - SDL:2015/07/10 10:59:38 N . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [531296] ©
O58 - SDL:2015/07/10 10:59:39 N . (.Intel Corporation - Intel(R) 10/100 Network Connection NDIS 5.1.) -- C:\WINDOWS\System32\drivers\eFE5b32e.sys [182656] ©
O58 - SDL:2015/07/10 10:59:38 N . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3436896] ©
O58 - SDL:2015/07/10 10:59:38 N . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64352] ©
O58 - SDL:2015/07/10 10:59:36 N . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128] ©
O58 - SDL:2015/07/10 10:59:36 N . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [122608] ©
O58 - SDL:2015/07/10 10:59:38 N . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [673120] ©
O58 - SDL:2015/07/10 10:59:38 N . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412000] ©
O58 - SDL:2015/07/10 10:59:39 N . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\System32\drivers\ibbus.sys [424800] ©
O58 - SDL:2015/07/10 10:59:38 N . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [108896] ©
O58 - SDL:2015/07/10 10:59:38 N . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2i.sys [104800] ©
O58 - SDL:2015/07/10 10:59:38 N . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys [99168] ©
O58 - SDL:2015/07/10 10:59:38 N . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82784] ©
O58 - SDL:2015/10/05 09:50:06 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\mbam.sys [25816] ©
O58 - SDL:2015/10/05 09:50:10 A . (.Malwarebytes - Malwarebytes Chameleon Protection Driver.) -- C:\WINDOWS\System32\drivers\mbamchameleon.sys [109272] ©
O58 - SDL:2015/11/16 06:24:14 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [192216] ©
O58 - SDL:2015/07/10 10:59:39 N . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [59744] ©
O58 - SDL:2015/07/10 10:59:39 N . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575840] ©
O58 - SDL:2015/07/10 10:59:39 N . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\System32\drivers\mlx4_bus.sys [705376] ©
O58 - SDL:2015/07/10 10:59:39 N . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63840] ©
O58 - SDL:2015/10/05 09:50:22 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\WINDOWS\System32\drivers\mwac.sys [64216] ©
O58 - SDL:2015/07/10 10:59:39 N . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys [76128] ©
O58 - SDL:2014/05/06 17:40:10 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\WINDOWS\System32\drivers\NETwLv64.sys [7533568] ©
O58 - SDL:2015/07/10 10:59:39 N . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150368] ©
O58 - SDL:2015/07/10 10:59:39 N . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [166240] ©
O58 - SDL:2015/07/10 10:59:39 N . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas2i.sys [58208] ©
O58 - SDL:2015/07/10 10:59:39 N . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys [58720] ©
O58 - SDL:2015/07/10 10:59:39 N . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44896] ©
O58 - SDL:2015/07/10 10:59:39 N . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81760] ©
O58 - SDL:2015/10/18 12:02:58 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_AMDASF_Aux.sys [33448] ©
O58 - SDL:2015/10/18 12:02:58 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_Intel_Aux.sys [33960] ©
O58 - SDL:2015/07/10 10:59:39 N . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31072] ©
O58 - SDL:2015/11/04 00:55:29 A . (.Synaptics, Inc. - Synaptics Touchpad Driver.) -- C:\WINDOWS\System32\drivers\SynTP.sys [260144] ©
O58 - SDL:2015/07/10 10:59:48 N . (...) -- C:\WINDOWS\System32\drivers\Udecx.sys [44032]
O58 - SDL:2015/07/10 10:59:39 N . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [166752] ©
O58 - SDL:2015/07/10 10:59:39 N . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305504] ©
O58 - SDL:2015/07/10 10:59:39 N . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\System32\drivers\winmad.sys [26976] ©
O58 - SDL:2015/07/10 10:59:39 N . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\System32\drivers\winverbs.sys [59232] ©
O58 - SDL:2009/03/30 09:40:02 A . (.ZTE Incorporated - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\ZTEusbnmea.sys [150784] ©
O58 - SDL:2009/03/30 09:40:06 A . (.ZTE Incorporated - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\ZTEusbser6k.sys [150656] ©

---\\ Últimos ficheiros alterados ou criados (Utilizador) (5) - 11s
O61 - LFC: 2015/11/16 06:31:17 A . (.Baidu Inc..) -- C:\Users\JoséCarlos1057\Downloads\Baidu_Cleaner_Setup_Mini_B142.exe [802104]
O61 - LFC: 2015/11/15 09:05:20 A . (..) -- C:\Users\JoséCarlos1057\Downloads\Ligacao_Remota_HOYA (1).exe [3617848]
O61 - LFC: 2015/11/15 09:05:12 A . (..) -- C:\Users\JoséCarlos1057\Downloads\Ligacao_Remota_HOYA.exe [3617848]
O61 - LFC: 2015/11/16 06:20:52 A . (..) -- C:\Users\JoséCarlos1057\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\speech_onecorereg.bin [8192]
O61 - LFC: 2015/11/16 06:37:20 A . (..) -- C:\Users\JoséCarlos1057\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [674082]

---\\ Associações Shell Spawning (10) - 1s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe ©
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Iniciador do Snap-in Visualizador de Evento.) -- C:\Windows\System32\eventvwr.exe ©
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ©
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe ©
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Editor de registo.) -- C:\Windows\regedit.exe ©
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S

---\\ Menu de inicialização Internet (8) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitário de Inicialização por utilizador.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitário de Inicialização por utilizador.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitário de Inicialização por utilizador.) -- C:\Windows\System32\ie4uinit.exe ©

---\\ Listagem dos serviços iniciados pelo Svchost (42) - 2s
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Serviço de Propagação de Certificados de Sm.) -- C:\WINDOWS\System32\certprop.dll [192000] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Serviço de Propagação de Certificados de Sm.) -- C:\Windows\System32\certprop.dll [192000] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL do Serviço de Servidor.) -- C:\Windows\System32\srvsvc.dll [283136] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Cliente de Política de Grupo.) -- C:\Windows\System32\gpsvc.dll [1335296] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extensão IKE.) -- C:\Windows\System32\IKEEXT.DLL [954368] ©
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Serviço de instalação de software.) -- C:\Windows\System32\appmgmts.dll [200192] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Serviço que oferece conectividade IPv6 numa.) -- C:\Windows\System32\iphlpsvc.dll [954880] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL secundária de serviço de início de sess.) -- C:\Windows\System32\seclogon.dll [31232] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Serviço de Informações sobre Aplicações.) -- C:\Windows\System32\appinfo.dll [93696] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Serviço de Deteção iSCSI.) -- C:\Windows\System32\iscsiexe.dll [151040] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Serviço EAPHost da Microsoft.) -- C:\Windows\System32\eapsvc.dll [106496] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Serviço Programador de Tarefas.) -- C:\Windows\System32\schedsvc.dll [1008640] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [226304] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL do Browser de Computador.) -- C:\Windows\System32\browser.dll [133120] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [324608] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Serviço de Configuração do Ambiente de Trab.) -- C:\Windows\System32\SessEnv.dll [371200] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Relatórios e Soluções de Problemas.) -- C:\Windows\System32\wercplsupport.dll [95744] ©
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Serviço Conta Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [2093056] ©
O83 - Search Svchost Services: DcpSvc (DcpSvc) . (.Microsoft Corporation - dcpsvc Task.) -- C:\Windows\System32\dcpsvc.dll [196096] ©
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Serviço do Assistente de Conectividade da R.) -- C:\Windows\System32\NcaSvc.dll [167424] ©
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Serviço de Configuração de Rede.) -- C:\Windows\System32\NetSetupSvc.dll [187392] ©
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL do Serviço do Windows Management.) -- C:\Windows\System32\Windows.Internal.Management.dll [267776] ©
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\Windows\System32\usermgr.dll [713216] ©
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestor de Configuração de Dispositivos.) -- C:\Windows\System32\DeviceSetupManager.dll [237568] ©
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Serviço BDE.) -- C:\Windows\System32\bdesvc.dll [359936] ©
O83 - Search Svchost Services: RetailDemo (RetailDemo) . (.Microsoft Corporation - RDXService.) -- C:\Windows\System32\RDXService.dll [1015808] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL de Serviços de Tema da Shell do Windows.) -- C:\Windows\System32\themeservice.dll [58368] ©
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Atualização de Sessão Orchestrator Core.) -- C:\Windows\System32\usocore.dll [343040] ©
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\Windows\System32\XboxNetApiSvc.dll [1019392] ©
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\Windows\System32\XblAuthManager.dll [918016] ©
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\Windows\System32\XblGameSave.dll [1149440] ©
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\Windows\System32\dmwappushsvc.dll [63488] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestor de Marcação Automática de Acesso Rem.) -- C:\Windows\System32\rasauto.dll [106496] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestor de Ligação de Acesso Remoto.) -- C:\Windows\System32\rasmans.dll [679936] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestor de Interfaces Dinâmicas.) -- C:\Windows\System32\mprdim.dll [497152] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Serviço de Notificação de Eventos do Sistem.) -- C:\Windows\System32\Sens.dll [72192] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Componentes do Microsoft NAT Helper.) -- C:\Windows\System32\ipnathlp.dll [452608] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Servidor de telefonia Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [311808] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\System32\wuaueng.dll [2236416] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Serviço de transferência inteligente em seg.) -- C:\Windows\System32\qmgr.dll [1168896] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - DLL de serviços da shell do Windows.) -- C:\Windows\System32\shsvcs.dll [593920] ©
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Serviço de Geolocalização.) -- C:\Windows\System32\lfsvc.dll [27136] ©

---\\ Serviços não Microsoft (SR=Executados, SS=Parados) (12) - 79s

SR - Auto [01/01/2000] [ 16896] Agere Modem Call Progress Audio (AgereModemAudio) . (.LSI Corporation.) - C:\Program Files\LSI SoftModem\agr64svc.exe ©
SR - Auto [28/10/2015] [ 146600] Avast Antivirus (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe ©
SR - Auto [28/10/2015] [ 109008] Avast Firewall (avast! Firewall) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\afwServ.exe ©
SR - Auto [25/05/2015] [ 1697896] Baidu Cleaner Service (BCleanerSvc) . (.Baidu Inc..) - C:\Program Files (x86)\Baidu Cleaner\BCleanerSvc.exe
SS - Demand [29/10/2015] [ 144200] Serviço Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
SS - Demand [29/10/2015] [ 144200] Serviço Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
SR - Auto [05/10/2015] [ 1513784] (MBAMScheduler) . (.Malwarebytes.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe ©
SR - Auto [05/10/2015] [ 1135416] (MBAMService) . (.Malwarebytes.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe ©
SS - Boot [25/05/2015] [ 1697896] (PCFasterSvc_{PCFaster_6.0.0.0}) . (.Baidu Inc..) - C:\Program Files (x86)\Baidu Cleaner\BCleanerSvc.exe
SS - Demand [09/07/2015] [ 327296] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe ©
SR - Auto [18/10/2015] [ 237736] SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ©

---\\ Claves Tracing (2) - 0s
HKLM\SOFTWARE\Microsoft\Tracing\SearchMoreKnowDesktopSearch_RASAPI32 =>PUP.Optional.DesktopSearch
HKLM\SOFTWARE\Microsoft\Tracing\SearchMoreKnowDesktopSearch_RASMANCS =>PUP.Optional.DesktopSearch

---\\ Scâner Aditional (4) - 0s
C:\WINDOWS\Prefetch\SEARCHMOREKNOWDESKTOPSEARCH.E-4D59CE71.pf =>PUP.Optional.DesktopSearch
C:\WINDOWS\Prefetch\UNSEARCHMOREKNOWDESKTOPSEARCH-A02A9528.pf =>PUP.Optional.DesktopSearch
HKLM64\SOFTWARE\Microsoft\Tracing\SearchMoreKnowDesktopSearch_RASAPI32 =>PUP.Optional.DesktopSearch
HKLM64\SOFTWARE\Microsoft\Tracing\SearchMoreKnowDesktopSearch_RASMANCS =>PUP.Optional.DesktopSearch

---\\ Informações complémentaires do módulos (1) - 0s
http://www.nicolascoolman.fr/blog =>PUP.Optional.DesktopSearch

~ End of the scan, 5749 items in 164 seconds (484)(0)

Publicité


Signaler le contenu de ce document

Publicité