cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2016.1.8.8 Por Nicolas Coolman (2016/01/08)
~ iniciado por JoséCarlos1057 (Administrator) (2016/01/09 23:37:56)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Status da versão: Version OK
~ Modo: Scanner
~ Relatório: C:\Users\JoséCarlos1057\Desktop\ZHPDiag.txt
~ Relatório: C:\Users\JoséCarlos1057\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Inicialização do sistema: Normal (Normal boot)
Windows 10 Pro, 64-bit (Build 10586)

---\\ Navegadores Internet (2) - 0s
GCIE: Google Chrome v46.0.2490.86
MSIE: Internet Explorer v11.20.10586.0

---\\ Informações sobre os produtos Windows (3) - 0s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK

---\\ Softwares de proteçao do sistema (3) - 5s
Avast Internet Security v11.1.2245
Malwarebytes Anti-Malware versão 2.2.0.1024
Windows Defender (Deactivate)

---\\ Softwares d'optimização do sistema (1) - 5s
CCleaner v5.13

---\\ Informações sobre o sistema (6) - 0s
~ Operating System: Intel64 Family 6 Model 15 Stepping 6, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 2095.156 MB (30% free)
System Restore: Activé (Enable)
System drive C: has 257 GB () free of 304 GB

---\\ Modo de conexão ao sistema (3) - 0s
~ Computer Name: TOSHIBAA100
~ User Name: JoséCarlos1057
~ Logged in as Administrator

---\\ Enumeração das unidades dos discos (2) - 0s
~ Drive C: has 257 GB free of 304 GB (System)
~ Drive D: has 911 GB free of 953 GB

---\\ Estado do Centro de Segurança do Windows (7) - 1s
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK

---\\ Pesquisa particular de ficheiros genéricos (24) - 2s
[MD5.4572EB3DDBD2DFA10DE7A037A6CC6D53] - 30/10/2015 - (.Microsoft Corporation - Explorador do Windows.) -- C:\WINDOWS\Explorer.exe [4502864] =>.Microsoft Windows®
[MD5.0DCB89B1F3689BC6262FF30BBD603171] - 30/10/2015 - (.Microsoft Corporation - Processo anfitrião do Windows (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [59392] =>.Microsoft Corporation
[MD5.CAD491DD9EC00BB841EA407D9C498C4A] - 30/10/2015 - (.Microsoft Corporation - Aplicação de Arranque do Windows.) -- C:\WINDOWS\System32\Wininit.exe [290856] =>.Microsoft Windows Publisher®
[MD5.AB4C1A9F37C0B8467AC923ED4AD727D6] - 22/11/2015 - (.Microsoft Corporation - Extensões da Internet para Win32.) -- C:\WINDOWS\System32\wininet.dll [2647552] =>.Microsoft Corporation
[MD5.46C8E60DEDBDA95C102D1B2E74676578] - 30/10/2015 - (.Microsoft Corporation - Aplicação de Início de Sessão do Windows.) -- C:\WINDOWS\System32\Winlogon.exe [584704] =>.Microsoft Corporation
[MD5.9EEAA1B69DC3FD620AE576CC8F4147DC] - 30/10/2015 - (.Microsoft Corporation - Biblioteca de Licenciamento de Software.) -- C:\WINDOWS\System32\sppcomapi.dll [430592] =>.Microsoft Corporation
[MD5.E7B524818100B0FDE2B057C74B0C0DCD] - 30/10/2015 - (.Microsoft Corporation - DLL da API de cliente de DNS.) -- C:\WINDOWS\System32\dnsapi.dll [686984] =>.Microsoft Windows®
[MD5.2796C0957F6F05A528DD64B8591371B6] - 30/10/2015 - (.Microsoft Corporation - DLL da API de cliente de DNS.) -- C:\WINDOWS\Syswow64\dnsapi.dll [535088] =>.Microsoft Windows®
[MD5.70148EFA9A562E7185B75BBE7D376BF7] - 17/11/2015 - (.Microsoft Corporation - Controlador de Função Auxiliar para Winsock.) -- C:\WINDOWS\System32\drivers\AFD.sys [578912] =>.Microsoft Windows®
[MD5.492B99D2E3D5D7BFD5F0AE1BE7BD37DD] - 30/10/2015 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [28512] =>.Microsoft Windows®
[MD5.7F9C7226D743B232907ED2537B8A574F] - 30/10/2015 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [92672] =>.Microsoft Corporation
[MD5.82D97776BF982AA143BDC7DFB5054EA8] - 30/10/2015 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [173568] =>.Microsoft Corporation
[MD5.C9478D7DB7BE5D7ACE65CB1167F07320] - 30/10/2015 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [148480] =>.Microsoft Corporation
[MD5.84BC034B6BB763733C1949B7B9BAF976] - 30/10/2015 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [79872] =>.Microsoft Corporation
[MD5.53FDD9E69189E546DE4740F8C4D8AB2F] - 30/10/2015 - (.Microsoft Corporation - Controlador de porta i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [114688] =>.Microsoft Corporation
[MD5.9E5E8F2A1996F23B7E9687846AA81B01] - 30/10/2015 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [143360] =>.Microsoft Corporation
[MD5.61F9F27A8C3D7BCD287FE98A440421CE] - 30/10/2015 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [430944] =>.Microsoft Windows®
[MD5.F51C02D992A8D6BC5EC4D990F227D4C7] - 30/10/2015 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [279552] =>.Microsoft Corporation
[MD5.EFEFC245B884B1BE0401931398DCD707] - 01/12/2015 - (.Microsoft Corporation - Controlador de Sistema de Ficheiros NT.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2152800] =>.Microsoft Windows®
[MD5.7D0FC96264C0F8F2C1321E33E8EB646C] - 30/10/2015 - (.Microsoft Corporation - Controlador de porta paralela.) -- C:\WINDOWS\System32\drivers\Parport.sys [96768] =>.Microsoft Corporation
[MD5.381B8F2311A0375676B635EA5E7C8AB0] - 30/10/2015 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [104960] =>.Microsoft Corporation
[MD5.1DC2CC74B51E4DC4CD5A20C1021E4010] - 30/10/2015 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [173056] =>.Microsoft Corporation
[MD5.91D3F2A6253EF83EFBD7903028F58C4D] - 17/11/2015 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [118624] =>.Microsoft Windows®
[MD5.E1F91A727A04C9F8199D04FF3BBBF63C] - 30/10/2015 - (.Microsoft Corporation - Controlador de cópia sombra do volume.) -- C:\WINDOWS\System32\drivers\volsnap.sys [414560] =>.Microsoft Windows®

---\\ Serviços NT não Microsoft e não desativados (6) - 3s
O23 - Service: Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe =>.Apple Inc.®
O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe =>.AVAST Software a.s.®
O23 - Service: Avast Firewall (avast! Firewall) . (.AVAST Software - avast! firewall service.) - C:\Program Files\AVAST Software\Avast\afwServ.exe =>.AVAST Software a.s.®
O23 - Service: Serviço de Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.®
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.Hewlett-Packard Company - HP Support Solutions Framework Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe =>.Hewlett-Packard Company®
O23 - Service: vmserve Update (vmserve) . (...) - C:\Program Files (x86)\Common Update\vmserve Update\vmserve.exe =>PUP.Optional.YesSearches

---\\ Tarefas planificadas automaticamente (21) - 5s
[MD5.6864894A47B6D2BE8995D07FDFFCCD7E] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [1482040] =>.AVAST Software a.s.®
[MD5.8025F05E5A51FD499584AFD7A688423C] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [6602152] =>.Piriform Ltd®
[MD5.053EEEE1ABAE53F044F1E386E22AE525] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] =>.Google Inc®
[MD5.053EEEE1ABAE53F044F1E386E22AE525] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] =>.Google Inc®
[MD5.00000000000000000000000000000000] [APT] [GoogleUpdateTaskUserS-1-5-21-3136738229-3321464536-2784466607-1003Core] (...) -- C:\Users\Jos‚Carlos1057\AppData\Local\Google\Update\GoogleUpdate.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [GoogleUpdateTaskUserS-1-5-21-3136738229-3321464536-2784466607-1003UA] (...) -- C:\Users\Jos‚Carlos1057\AppData\Local\Google\Update\GoogleUpdate.exe (.not file.) [0]
[MD5.3DA2B70325A5947E981387DB9A9BD843] [APT] [HPCeeScheduleForJos‚Carlos1057] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [96568] =>.Hewlett-Packard Company®
[MD5.4F0C5E5E8CE953CE211D5F6191AE3003] [APT] [SafeZone scheduled Autoupdate 1450482532] (.Avast Software.) -- C:\Program Files\AVAST Software\SZBrowser\launcher.exe [728568] =>.AVAST Software s.r.o.®
[MD5.BC41666FF68C364CD3EAA486E50C9270] [APT] [Apple\AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [563000] =>.Apple Inc.®
[MD5.9117F29F3C71F1ACEE3FA58D7BE03D26] [APT] [Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA)] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [190504] =>.Hewlett-Packard Company®
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job [1044] =>.Google Inc.
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job [1048] =>.Google Inc.
O39 - APT: GoogleUpdateTaskUserS-1-5-21-3136738229-3321464536-2784466607-1003Core - (...) -- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3136738229-3321464536-2784466607-1003Core.job [1026] (.Orphean.)
O39 - APT: GoogleUpdateTaskUserS-1-5-21-3136738229-3321464536-2784466607-1003UA - (...) -- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3136738229-3321464536-2784466607-1003UA.job [1078] (.Orphean.)
O39 - APT: avast! Emergency Update - (.AVAST Software.) -- C:\WINDOWS\System32\Tasks\avast! Emergency Update [4280] =>.AVAST Software
O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\WINDOWS\System32\Tasks\CCleanerSkipUAC [2164] =>.Piriform Ltd
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore [3396] =>.Google Inc.
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA [3620] =>.Google Inc.
O39 - APT: GoogleUpdateTaskUserS-1-5-21-3136738229-3321464536-2784466607-1003Core - (...) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3136738229-3321464536-2784466607-1003Core [3548] (.Orphean.)
O39 - APT: GoogleUpdateTaskUserS-1-5-21-3136738229-3321464536-2784466607-1003UA - (...) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3136738229-3321464536-2784466607-1003UA [3816] (.Orphean.)
O39 - APT: SafeZone scheduled Autoupdate 1450482532 - (.Avast Software.) -- C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1450482532 [3154] =>.AVAST Software

---\\ Processos lançados (2) - 4s
[MD5.A7BFC2C5D570EC93720DABC8B85ADEF9] - (...) -- C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe [144384] [PID.5628]
[MD5.0665ED990AF87C35FC031483CF941674] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\JoséCarlos1057\Desktop\ZHPDiag3.exe [2064896] [PID.3148] =>.Nicolas Coolman

---\\ Mozilla Firefox, Plugins,Arranque,Pesquisa,Extensões (1) - 0s
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Apple Inc..) -- C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll =>.Apple Inc.

---\\ Internet Explorer, Arranque, Pesquisa, Phishing (15) - 1s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer

---\\ Internet Explorer, Gestão do Proxy (3) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0

---\\ Análise das linhas, Carregamento Automático de programas (3) - 0s
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=

---\\ Redireção do ficheiro Hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)

---\\ Browser Helper Objects do navegador (5) - 0s
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll =>.Tonec Inc.®
O2 - BHO: Lync Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} (Orphean)
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll =>.AVAST Software a.s.®
O2 - BHO: SkypeIEPluginBHO [64Bits] - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll =>.Skype Software Sarl®
O2 - BHO: Microsoft OneDrive for Business Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} (Orphean)

---\\ Aplicações iniciadas por registo & pastas (20) - 3s
O4 - HKLM\..\Run: [NvCplDaemon] . (.Microsoft Corporation - Processo anfitrião do Windows (Rundll32).) -- rundll32.exe =>.Microsoft Corporation
O4 - HKLM\..\Run: [NvMediaCenter] . (.Microsoft Corporation - Processo anfitrião do Windows (Rundll32).) -- rundll32.exe =>.Microsoft Corporation
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.)
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe =>.Apple Inc.®
O4 - HKCU\..\Run: [Flvto Youtube Downloader] \FlvtoYoutubeDownloader.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd®
O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Instalador do Google.) -- C:\Users\JoséCarlos1057\AppData\Local\Google\Update\GoogleUpdate.exe =>.Google Inc®
O4 - HKCU\..\Run: [Google Photos Backup] . (.Google, Inc - Google Photos Backup.) -- C:\Users\JoséCarlos1057\AppData\Local\Programs\Google\Google Photos Backup\Google Photos Backup.exe =>.Google Inc®
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.®
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe =>.AVAST Software a.s.®
O4 - HKLM\..\Wow6432Node\Run: [Wondershare Helper Compact.exe] . (.Wondershare - Wondershare Studio.) -- C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe =>.Wondershare software CO., LIMITED®
O4 - HKLM\..\Wow6432Node\Run: [DelaypluginInstall] . (...) -- C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe =>.Shenzhen Wondershare Information Technology Co., Ltd.®
O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe =>.Hewlett-Packard Company®
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-3136738229-3321464536-2784466607-1003\..\Run: [Flvto Youtube Downloader] \FlvtoYoutubeDownloader.exe
O4 - HKUS\S-1-5-21-3136738229-3321464536-2784466607-1003\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd®
O4 - HKUS\S-1-5-21-3136738229-3321464536-2784466607-1003\..\Run: [Google Update] . (.Google Inc. - Instalador do Google.) -- C:\Users\JoséCarlos1057\AppData\Local\Google\Update\GoogleUpdate.exe =>.Google Inc®
O4 - HKUS\S-1-5-21-3136738229-3321464536-2784466607-1003\..\Run: [Google Photos Backup] . (.Google, Inc - Google Photos Backup.) -- C:\Users\JoséCarlos1057\AppData\Local\Programs\Google\Google Photos Backup\Google Photos Backup.exe =>.Google Inc®
O4 - HKUS\S-1-5-21-3136738229-3321464536-2784466607-1003\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.®

---\\ Alteração Dominio/Clientes DNS (3) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2c30c8a2-b8ec-442f-ac9e-725b41c4d715}: NameServer = 8.8.8.8,8.8.4.4 =>.Google Public DNS
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2c30c8a2-b8ec-442f-ac9e-725b41c4d715}: DhcpNameServer = 192.168.1.1

---\\ Protocolo adicional (27) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Controlo ActiveX para transmissão em fluxo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\SysWOW64\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation
O18 - Handler: mso-minsb-roaming.16 [64Bits] - {83C25742-A9F7-49FB-9138-434302C88D07} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: mso-minsb.16 [64Bits] - {42089D2D-912D-4018-9087-2B87803E93FB} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: osf-roaming.16 [64Bits] - {42089D2D-912D-4018-9087-2B87803E93FB} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: osf.16 [64Bits] - {5504BE45-A83B-4808-900A-3A5C36E7F77A} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: skypec2c [64Bits] - {91774881-D725-4E58-B298-07617B9B86A8} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll =>.Skype Software Sarl®
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Controlo ActiveX para transmissão em fluxo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: windows.tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation

---\\ Software instalados (63) - 10s
O42 - Logiciel: 64 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM][64Bits] -- {FF21C3E6-97FD-474F-9518-8DCBE94C2854} =>.Hewlett-Packard
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {3540181E-340A-4E7A-B409-31663472B2F7} =>.Apple Inc.
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF} =>.Apple Inc.
O42 - Logiciel: Avast Internet Security - (.AVAST Software.) [HKLM][64Bits] -- Avast =>.AVAST Software a.s.®
O42 - Logiciel: B110 - (.Hewlett-Packard.) [HKLM][64Bits] -- {CC2917EA-96EC-41D1-9756-760C32AF6F12} =>.Hewlett-Packard
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {56DDDFB8-7F79-4480-89D5-25E1F52AB28F} =>.Apple Inc.
O42 - Logiciel: BufferChm - (.Hewlett-Packard.) [HKLM][64Bits] -- {FA0FF682-CC70-4C57-93CD-E276F3E7537E} =>.Hewlett-Packard
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>.Piriform Ltd®
O42 - Logiciel: Destinations - (.Hewlett-Packard.) [HKLM][64Bits] -- {BD7204BA-DD64-499E-9B55-6A282CDF4FA4} =>.Hewlett-Packard
O42 - Logiciel: DeviceDiscovery - (.Hewlett-Packard.) [HKLM][64Bits] -- {1458BB78-1DC5-4BC0-B9A3-2B644F5A8105} =>.Hewlett-Packard
O42 - Logiciel: File Shredder Ultra - (...) [HKLM][64Bits] -- File Shredder Ultra_is1
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Photos Backup - (.Google, Inc..) [HKCU][64Bits] -- Google Photos Backup =>.Google Inc®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc.
O42 - Logiciel: GPBaseService2 - (.Hewlett-Packard.) [HKLM][64Bits] -- {BB3447F6-9553-4AA9-960E-0DB5310C5779} =>.Hewlett-Packard
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {C9EF1AAF-B542-41C8-A537-1142DA5D4AEC} =>.Hewlett-Packard
O42 - Logiciel: HP Customer Participation Program 14.0 - (.HP.) [HKLM][64Bits] -- HPExtendedCapabilities =>.Hewlett Packard®
O42 - Logiciel: HP Imaging Device Functions 14.0 - (.HP.) [HKLM][64Bits] -- HP Imaging Device Functions =>.Hewlett Packard®
O42 - Logiciel: HP Photosmart Wireless B110 All-In-One Driver Software 14.0 Rel. 6 - (.HP.) [HKLM][64Bits] -- {C63184F3-8343-408F-A948-DDB0AC969A99} =>.Hewlett Packard®
O42 - Logiciel: HP Solution Center 14.0 - (.HP.) [HKLM][64Bits] -- HP Solution Center & Imaging Support Tools =>.Hewlett Packard®
O42 - Logiciel: HP Support Assistant - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {79C54A05-F146-4EA0-8A70-D4EFE6181E52} =>.Hewlett-Packard Company
O42 - Logiciel: HP Support Solutions Framework - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {1615407C-6560-46C7-820F-394DCAD4799E} =>.Hewlett-Packard Company
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {912D30CF-F39E-4B31-AD9A-123C6B794EE2} =>.Hewlett-Packard
O42 - Logiciel: HPAppStudio - (.Hewlett-Packard.) [HKLM][64Bits] -- {565E7B0E-B76B-4EAD-9753-F1E72A5CF12E} =>.Hewlett-Packard
O42 - Logiciel: HPPhotoGadget - (.Hewlett-Packard.) [HKLM][64Bits] -- {CAE4213F-F797-439D-BD9E-79B71D115BE3} =>.Hewlett-Packard
O42 - Logiciel: HPProductAssistant - (.Hewlett-Packard.) [HKLM][64Bits] -- {150B6201-E9E6-4DFB-960E-CCBD53FBDDED} =>.Hewlett-Packard
O42 - Logiciel: HPSSupply - (.Hewlett-Packard.) [HKLM][64Bits] -- {AC35A885-0F8F-4857-B7DA-6E8DFB43E6B3} =>.Hewlett-Packard
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager =>.Tonec Inc.®
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {FBEB98F8-64E4-4FA3-A15E-4A9F42FF962E} =>.Apple Inc.
O42 - Logiciel: Java 8 Update 31 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218031F0} =>.Oracle Corporation
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Oracle Corporation
O42 - Logiciel: LibreOffice 5.0 Help Pack (Portuguese) - (.The Document Foundation.) [HKLM][64Bits] -- {F7591A10-6EB4-4BBC-870E-FE8B825900C2} =>.The Document Foundation
O42 - Logiciel: LibreOffice 5.0.4.2 - (.The Document Foundation.) [HKLM][64Bits] -- {14B5DDCF-61C4-4F1E-A621-844685D60B5A} =>.The Document Foundation
O42 - Logiciel: Malwarebytes Anti-Malware versão 2.2.0.1024 - (.Malwarebytes.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 =>.Malwarebytes
O42 - Logiciel: MarketResearch - (.Hewlett-Packard.) [HKLM][64Bits] -- {D360FA88-17C8-4F14-B67F-13AAF9607B12} =>.Hewlett-Packard
O42 - Logiciel: Network64 - (.Hewlett-Packard.) [HKLM][64Bits] -- {6BFAB6C1-6D46-46DB-A538-A269907C9F2F} =>.Hewlett-Packard
O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIA Drivers =>.NVIDIA Corporation®
O42 - Logiciel: Office 16 Click-to-Run Extensibility Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008C-0000-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Office 16 Click-to-Run Licensing Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008F-0000-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Office 16 Click-to-Run Localization Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008C-0816-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Pacote de controladores do Windows - NVIDIA (nvlddmkm) Display (01/30/2009 - (.NVIDIA.) [HKLM][64Bits] -- 92C8F11F6721D6A43340B64B47DD2435AE88E1C0 =>.Microsoft Windows®
O42 - Logiciel: Pacote de controladores do Windows - Point Grey Research (PGR1394b) PGR1394 - (.Point Grey Research.) [HKLM][64Bits] -- 9992CF9CDE0384229FBA949335334FBA0468D861 =>.Microsoft Windows®
O42 - Logiciel: Pacote de controladores do Windows - Texas Instruments Inc (tifm21) MTD (0 - (.Texas Instruments Inc.) [HKLM][64Bits] -- 7B31B8054391F9C7EF590728F991F590BB07F0D7 =>.Microsoft Windows®
O42 - Logiciel: PS_AIO_07_B110_SW_Min - (.Hewlett-Packard.) [HKLM][64Bits] -- {C0974FF0-282B-4730-A50C-B112FA263E17} =>.Hewlett-Packard
O42 - Logiciel: QuickTransfer - (.Hewlett-Packard.) [HKLM][64Bits] -- {E517094C-06B6-419F-8FFD-EF4F57972130} =>.Hewlett-Packard
O42 - Logiciel: Revo Uninstaller 1.95 - (.VS Revo Group.) [HKLM][64Bits] -- Revo Uninstaller =>.VS Revo Group
O42 - Logiciel: SafeZone Stable 1.46.1990.139 - (.Avast Software.) [HKLM][64Bits] -- SafeZone 1.46.1990.139 =>.AVAST Software s.r.o.®
O42 - Logiciel: Scan - (.Hewlett-Packard.) [HKLM][64Bits] -- {06A1D88C-E102-4527-AF70-29FFD7AF215A} =>.Hewlett-Packard
O42 - Logiciel: Shop for HP Supplies - (.HP.) [HKLM][64Bits] -- Shop for HP Supplies =>.Hewlett Packard®
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701} =>.Microsoft Corporation
O42 - Logiciel: Skype™ 7.17 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {FC965A47-4839-40CA-B618-18F486F042C6} =>.Skype Technologies S.A.
O42 - Logiciel: SolutionCenter - (.Hewlett-Packard.) [HKLM][64Bits] -- {BC5DD87B-0143-4D14-AAE6-97109614DC6B} =>.Hewlett-Packard
O42 - Logiciel: Status - (.Hewlett-Packard.) [HKLM][64Bits] -- {5B025634-7D5B-4B8D-BE2A-7943C1CF2D5D} =>.Hewlett-Packard
O42 - Logiciel: Suporte para Aplicações Apple (32-bits) - (.Apple Inc..) [HKLM][64Bits] -- {7FA9ECCF-A2DE-4DA1-BFF3-81260DBDA68F} =>.Apple Inc.
O42 - Logiciel: Suporte para Aplicações Apple (64-bits) - (.Apple Inc..) [HKLM][64Bits] -- {691F30EB-9009-475A-B8A9-E1BF39598FD5} =>.Apple Inc.
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey =>.Synaptics Incorporated
O42 - Logiciel: Toolbox - (.Hewlett-Packard.) [HKLM][64Bits] -- {292F0F52-B62D-4E71-921B-89A682402201} =>.Hewlett-Packard
O42 - Logiciel: TOSHIBA Software Modem - (.LSI Corporation.) [HKLM][64Bits] -- TOSHIBA Software Modem =>.LSI Corporation
O42 - Logiciel: TrayApp - (.Hewlett-Packard.) [HKLM][64Bits] -- {CD31E63D-47FD-491C-8117-CF201D0AFAB5} =>.Hewlett-Packard
O42 - Logiciel: TuneUp Utilities 2014 - (.TuneUp Software.) [HKLM][64Bits] -- {FE8D473A-6F06-4F99-B5F4-BED72B2A038C} =>.TuneUp Software
O42 - Logiciel: TuneUp Utilities 2014 (pt-PT) - (.TuneUp Software.) [HKLM][64Bits] -- {8C6326C3-7685-422D-A1FE-6775CD69B993} =>.TuneUp Software
O42 - Logiciel: WebReg - (.Hewlett-Packard.) [HKLM][64Bits] -- {8EE94FD8-5F52-4463-A340-185D16328158} =>.Hewlett-Packard
O42 - Logiciel: Wondershare Video Converter Ultimate(Build 8.5.5.6) - (.Wondershare Software.) [HKLM][64Bits] -- Wondershare Video Converter Ultimate_is1 =>.Wondershare Software

---\\ Ponto de restauro do sistema (70) - 10s
HKLM\SOFTWARE\Wow6432Node\AdwCleaner
HKLM\SOFTWARE\Wow6432Node\Apple Inc.
HKLM\SOFTWARE\Wow6432Node\AVAST Software
HKLM\SOFTWARE\Wow6432Node\Baidu Security
HKLM\SOFTWARE\Wow6432Node\Baidu_Drp_pos
HKLM\SOFTWARE\Wow6432Node\Eset
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\Hewlett-Packard
HKLM\SOFTWARE\Wow6432Node\HP
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\Internet Download Manager
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\LibreOffice
HKLM\SOFTWARE\Wow6432Node\LogMeInRescueCallingCard
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Malwarebytes Anti-Rootkit
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\Software
HKLM\SOFTWARE\Wow6432Node\The Document Foundation
HKLM\SOFTWARE\Wow6432Node\TuneUp
HKLM\SOFTWARE\Wow6432Node\WafCX
HKLM\SOFTWARE\Wow6432Node\Wondershare
HKLM\SOFTWARE\Wow6432Node\WondershareSysMenuDATA
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.
HKCU\SOFTWARE\AVAST Software
HKCU\SOFTWARE\Baidu Security
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\FlvtoConverter
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Hewlett-Packard
HKCU\SOFTWARE\hotger
HKCU\SOFTWARE\HP
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Local AppWizard-Generated Applications
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Magicbit
HKCU\SOFTWARE\Magix
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Solveig Multimedia
HKCU\SOFTWARE\Synaptics
HKCU\SOFTWARE\SyncEngines
HKCU\SOFTWARE\The Document Foundation
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\VSRevoGroup
HKCU\SOFTWARE\Wondershare
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\WSVCUPlugin
HKCU\SOFTWARE\YBR
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft

---\\ Conteúdo das pastas Programs (160) - 34s
O43 - CFD: 09/01/2016 - [0] D -- C:\Program Files (x86)\ActSys
O43 - CFD: 17/11/2015 - [] D -- C:\Program Files (x86)\AGEIA Technologies
O43 - CFD: 27/12/2015 - [] AD -- C:\Program Files (x86)\Apple Software Update =>.Apple Inc.®
O43 - CFD: 27/12/2015 - [] AD -- C:\Program Files (x86)\Bonjour =>.Apple Inc.®
O43 - CFD: 27/12/2015 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 09/01/2016 - [] D -- C:\Program Files (x86)\Common Update =>PUP.Optional.YesSearches
O43 - CFD: 21/11/2015 - [] D -- C:\Program Files (x86)\ESET
O43 - CFD: 15/12/2015 - [] AD -- C:\Program Files (x86)\File Shredder Ultra
O43 - CFD: 29/10/2015 - [] D -- C:\Program Files (x86)\Google =>.Google Inc®
O43 - CFD: 27/12/2015 - [] AD -- C:\Program Files (x86)\Hewlett-Packard =>.Hewlett-Packard Company®
O43 - CFD: 27/12/2015 - [] AD -- C:\Program Files (x86)\HP =>.Hewlett Packard®
O43 - CFD: 27/12/2015 - [0] D -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 30/12/2015 - [] D -- C:\Program Files (x86)\Internet Download Manager =>.Tonec Inc.®
O43 - CFD: 10/12/2015 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 27/12/2015 - [] D -- C:\Program Files (x86)\iTunes
O43 - CFD: 14/12/2015 - [] D -- C:\Program Files (x86)\Java =>.Oracle America, Inc.®
O43 - CFD: 27/12/2015 - [] AD -- C:\Program Files (x86)\LibreOffice 5 =>.The Document Foundation®
O43 - CFD: 15/12/2015 - [] AD -- C:\Program Files (x86)\Malwarebytes Anti-Malware =>.Malwarebytes Corporation®
O43 - CFD: 18/12/2015 - [] AD -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation®
O43 - CFD: 18/11/2015 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 17/11/2015 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 17/11/2015 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 21/12/2015 - [] RD -- C:\Program Files (x86)\Skype =>.Skype Software Sarl®
O43 - CFD: 05/11/2015 - [] AD -- C:\Program Files (x86)\TuneUp Utilities 2014 =>.AVG Netherlands B.V.®
O43 - CFD: 17/11/2015 - [0] D -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 04/01/2016 - [] D -- C:\Program Files (x86)\VS Revo Group =>.VS Revo Group®
O43 - CFD: 17/11/2015 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 17/11/2015 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 17/11/2015 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 30/10/2015 - [] SD -- C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 24/12/2015 - [] D -- C:\Program Files (x86)\Wondershare
O43 - CFD: 23/12/2015 - [] AD -- C:\Program Files (x86)\ZHPFix
O43 - CFD: 30/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 30/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 30/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 18/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
O43 - CFD: 17/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 18/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ferramentas do Microsoft Office 2016
O43 - CFD: 15/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\File Shredder Ultra
O43 - CFD: 11/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 27/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
O43 - CFD: 27/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
O43 - CFD: 22/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 27/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
O43 - CFD: 14/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 27/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 5.0
O43 - CFD: 30/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 15/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 21/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 27/12/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 30/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 30/10/2015 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 24/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
O43 - CFD: 27/12/2015 - [] D -- C:\ProgramData\Apple
O43 - CFD: 27/12/2015 - [] D -- C:\ProgramData\Apple Computer
O43 - CFD: 17/11/2015 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 18/12/2015 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 16/11/2015 - [] D -- C:\ProgramData\Baidu
O43 - CFD: 09/01/2016 - [0] D -- C:\ProgramData\Baidu Cleaner
O43 - CFD: 05/12/2015 - [] HD -- C:\ProgramData\Common Files
O43 - CFD: 17/11/2015 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 17/11/2015 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 17/11/2015 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 27/12/2015 - [] D -- C:\ProgramData\Hewlett-Packard
O43 - CFD: 27/12/2015 - [] AD -- C:\ProgramData\HP
O43 - CFD: 27/12/2015 - [] AD -- C:\ProgramData\HP Product Assistant
O43 - CFD: 22/12/2015 - [0] D -- C:\ProgramData\IDM
O43 - CFD: 17/11/2015 - [] D -- C:\ProgramData\MAGIX
O43 - CFD: 15/11/2015 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 29/11/2015 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 28/10/2015 - [] D -- C:\ProgramData\Microsoft OneDrive
O43 - CFD: 17/11/2015 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 14/12/2015 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 18/12/2015 - [] AD -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 09/01/2016 - [] D -- C:\ProgramData\RpData
O43 - CFD: 21/12/2015 - [] D -- C:\ProgramData\Skype
O43 - CFD: 09/01/2016 - [] D -- C:\ProgramData\SoftwareDistribution
O43 - CFD: 17/11/2015 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 14/12/2015 - [] D -- C:\ProgramData\Sun
O43 - CFD: 17/11/2015 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 05/11/2015 - [] D -- C:\ProgramData\TuneUp Software
O43 - CFD: 17/11/2015 - [] D -- C:\ProgramData\USOPrivate
O43 - CFD: 28/10/2015 - [] D -- C:\ProgramData\USOShared
O43 - CFD: 27/12/2015 - [] D -- C:\ProgramData\WEBREG
O43 - CFD: 24/12/2015 - [] D -- C:\ProgramData\Wondershare
O43 - CFD: 31/12/2015 - [] D -- C:\ProgramData\Wondershare Video Converter Ultimate
O43 - CFD: 27/12/2015 - [] D -- C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 18/12/2015 - [] AD -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 27/12/2015 - [] D -- C:\Program Files (x86)\Common Files\Hewlett-Packard
O43 - CFD: 27/12/2015 - [] D -- C:\Program Files (x86)\Common Files\HP
O43 - CFD: 14/12/2015 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 18/12/2015 - [] AD -- C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 21/12/2015 - [] AD -- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 17/11/2015 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 17/11/2015 - [] D -- C:\Program Files (x86)\Common Files\Wise Installation Wizard
O43 - CFD: 24/12/2015 - [] D -- C:\Program Files (x86)\Common Files\Wondershare
O43 - CFD: 28/10/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\Adobe
O43 - CFD: 27/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\Apple Computer
O43 - CFD: 28/10/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\AVAST Software
O43 - CFD: 09/01/2016 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\DMCache
O43 - CFD: 05/11/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\FlvtoConverter
O43 - CFD: 27/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\Hewlett-Packard
O43 - CFD: 27/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\HP
O43 - CFD: 27/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\hpqLog
O43 - CFD: 27/12/2015 - [0] D -- C:\Users\JoséCarlos1057\AppData\Roaming\HpUpdate
O43 - CFD: 09/01/2016 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\IDM
O43 - CFD: 27/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\LibreOffice
O43 - CFD: 28/10/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\Macromedia
O43 - CFD: 17/11/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\MAGIX
O43 - CFD: 28/11/2015 - [] SD -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft
O43 - CFD: 04/01/2016 - [0] D -- C:\Users\JoséCarlos1057\AppData\Roaming\MP3Rocket
O43 - CFD: 21/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\Skype
O43 - CFD: 04/11/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\TuneUp Software
O43 - CFD: 30/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\Wondershare Video Converter Ultimate
O43 - CFD: 09/01/2016 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\ZHP
O43 - CFD: 24/12/2015 - [0] D -- C:\Users\JoséCarlos1057\AppData\Roaming\{950EB46C-6AC7-4ACC-AB36-9A6A77C08B6A}
O43 - CFD: 12/12/2015 - [0] D -- C:\Users\JoséCarlos1057\AppData\Local\ActiveSync
O43 - CFD: 27/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Apple
O43 - CFD: 27/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Apple Computer
O43 - CFD: 17/11/2015 - [0] SHD -- C:\Users\JoséCarlos1057\AppData\Local\Application Data
O43 - CFD: 17/11/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Comms
O43 - CFD: 09/01/2016 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Diagnostics
O43 - CFD: 21/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\ElevatedDiagnostics
O43 - CFD: 21/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Google
O43 - CFD: 27/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Hewlett-Packard
O43 - CFD: 17/11/2015 - [0] SHD -- C:\Users\JoséCarlos1057\AppData\Local\History
O43 - CFD: 04/11/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Hotger
O43 - CFD: 27/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\HP
O43 - CFD: 07/01/2016 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Microsoft
O43 - CFD: 11/12/2015 - [0] D -- C:\Users\JoséCarlos1057\AppData\Local\Microsoft Help
O43 - CFD: 28/10/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\MicrosoftEdge
O43 - CFD: 12/12/2015 - [0] D -- C:\Users\JoséCarlos1057\AppData\Local\NetworkTiles
O43 - CFD: 07/01/2016 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Packages
O43 - CFD: 12/12/2015 - [0] D -- C:\Users\JoséCarlos1057\AppData\Local\PeerDistRepub
O43 - CFD: 21/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Programs
O43 - CFD: 28/10/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Publishers
O43 - CFD: 21/12/2015 - [0] D -- C:\Users\JoséCarlos1057\AppData\Local\Skype
O43 - CFD: 09/01/2016 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Temp
O43 - CFD: 17/11/2015 - [0] SHD -- C:\Users\JoséCarlos1057\AppData\Local\Temporary Internet Files
O43 - CFD: 28/10/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\TileDataLayer
O43 - CFD: 04/11/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\TuneUp Software
O43 - CFD: 18/11/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\VirtualStore
O43 - CFD: 24/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Wondershare
O43 - CFD: 30/10/2015 - [] RD -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 17/11/2015 - [] RD -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 10/12/2015 - [] RD -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 11/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicações do Chrome
O43 - CFD: 21/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Photos Backup
O43 - CFD: 22/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 30/10/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 04/01/2016 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
O43 - CFD: 10/12/2015 - [] RD -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 30/10/2015 - [] RD -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 30/10/2015 - [] RSD -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell

---\\ Softwares de proteçao do sistema (Supérfluo) (6) - 1s
O106 - SIOI: ErrorOverlayHandler Class [ OneDrive1] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\JoséCarlos1057\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SharedOverlayHandler Class [ OneDrive2] - {5AB7172C-9C11-405C-8DD5-AF20F3606282}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\JoséCarlos1057\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SharedSyncingOverlayHandler Class [ OneDrive3] - {A78ED123-AB77-406B-9962-2A5D9D2F7F30}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\JoséCarlos1057\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: UpToDateOverlayHandler Class [ OneDrive4] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\JoséCarlos1057\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SyncingOverlayHandler Class [ OneDrive5] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\JoséCarlos1057\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: avast [00avast] - {472083B0-C522-11CF-8763-00608CC02F24}. (.AVAST Software - avast! Shell Extension.) -- C:\Program Files\AVAST Software\Avast\ashShell.dll =>.AVAST Software a.s.®

---\\ Lista dos drivers do sistema (66) - 17s
O58 - SDL:2015/10/30 07:17:22 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [107360] =>.Microsoft Windows®
O58 - SDL:2015/10/30 07:17:22 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [1135456] =>.Microsoft Windows®
O58 - SDL:2000/01/01 00:00:00 A . (.LSI Corporation - SoftModem Device Driver.) -- C:\WINDOWS\System32\drivers\agrsm64.sys [1208320] =>.LSI Corporation
O58 - SDL:2015/10/30 07:17:22 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [83296] =>.Microsoft Windows®
O58 - SDL:2015/10/30 07:17:22 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259424] =>.Microsoft Windows®
O58 - SDL:2015/10/30 07:17:22 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [26976] =>.Microsoft Windows®
O58 - SDL:2015/10/30 07:17:22 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [131936] =>.Microsoft Windows®
O58 - SDL:2015/08/12 13:12:58 A . (.Windows (R) Win 7 DDK provider - NetFilter SDK WFP Driver (WPP).) -- C:\WINDOWS\System32\drivers\asfilterdrv.sys [58680] {00B2E1A16C9BE2CA5A} =>.Windows (R) Win 7 DDK provider
O58 - SDL:2015/12/18 23:42:16 A . (.AVAST Software - avast! HWID.) -- C:\WINDOWS\System32\drivers\aswHwid.sys [28656] =>.AVAST Software a.s.®
O58 - SDL:2015/12/18 23:41:51 A . (.AVAST Software - avast! Keyboard Filter Driver.) -- C:\WINDOWS\System32\drivers\aswKbd.sys [28144] =>.AVAST Software a.s.®
O58 - SDL:2015/12/18 23:43:01 A . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\WINDOWS\System32\drivers\aswmonflt.sys [97648] =>.AVAST Software a.s.®
O58 - SDL:2015/12/18 23:41:48 A . (.AVAST Software - avast! Filtering NDIS driver.) -- C:\WINDOWS\System32\drivers\aswNdisFlt.sys [466400] =>.AVAST Software a.s.®
O58 - SDL:2015/12/18 23:42:14 A . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\WINDOWS\System32\drivers\aswRdr2.sys [93528] =>.AVAST Software a.s.®
O58 - SDL:2015/12/18 23:42:16 A . (.AVAST Software - avast! Revert.) -- C:\WINDOWS\System32\drivers\aswRvrt.sys [65224] =>.AVAST Software a.s.®
O58 - SDL:2015/12/18 23:41:51 A . (.AVAST Software - avast! Virtualization Driver.) -- C:\WINDOWS\System32\drivers\aswSnx.sys [1055560] =>.AVAST Software a.s.®
O58 - SDL:2015/12/18 23:43:01 A . (.AVAST Software - avast! self protection module.) -- C:\WINDOWS\System32\drivers\aswsp.sys [451040] =>.AVAST Software a.s.®
O58 - SDL:2015/12/18 23:42:16 A . (.AVAST Software - Stream Filter.) -- C:\WINDOWS\System32\drivers\aswStm.sys [155304] =>.AVAST Software a.s.®
O58 - SDL:2015/12/18 23:42:16 A . (.AVAST Software - avast! VM Monitor.) -- C:\WINDOWS\System32\drivers\aswVmm.sys [273784] =>.AVAST Software a.s.®
O58 - SDL:2015/10/30 07:17:22 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn.sys [9728] =>.Windows (R) Win 7 DDK provider
O58 - SDL:2015/10/30 07:17:22 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [9728] =>.Windows (R) Win 7 DDK provider
O58 - SDL:2015/03/31 06:14:20 A . (.Baidu, Inc. - Baidu Antivirus Minifilter Driver.) -- C:\WINDOWS\System32\drivers\BprotectEx.sys [94480] {5FAEE9E83F32948F3B2040AC6DF0145C} =>.Baidu, Inc.
O58 - SDL:2015/10/30 07:17:22 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [531296] =>.Microsoft Windows®
O58 - SDL:2015/10/30 07:17:23 A . (.Intel Corporation - Intel(R) 10/100 Network Connection NDIS 5.1.) -- C:\WINDOWS\System32\drivers\eFE5b32e.sys [182656] =>.Intel Corporation
O58 - SDL:2015/10/30 07:17:22 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3436896] =>.Microsoft Windows®
O58 - SDL:2015/10/30 07:17:22 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64352] =>.Microsoft Windows®
O58 - SDL:2015/10/30 07:17:18 A . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\WINDOWS\System32\drivers\iai2c.sys [81408] =>.Intel(R) Corporation
O58 - SDL:2015/10/30 07:17:18 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [165888] =>.Intel Corporation
O58 - SDL:2015/10/30 07:17:18 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group®
O58 - SDL:2015/10/30 07:17:18 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [113152] =>.Intel Corporation
O58 - SDL:2015/10/30 07:17:22 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [673120] =>.Microsoft Windows®
O58 - SDL:2015/10/30 07:17:22 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412000] =>.Microsoft Windows®
O58 - SDL:2015/10/30 07:17:23 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\System32\drivers\ibbus.sys [424800] =>.Microsoft Windows®
O58 - SDL:2015/12/29 12:18:10 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\WINDOWS\System32\drivers\idmwfp.sys [199152] =>.Tonec Inc.®
O58 - SDL:2015/10/30 07:17:23 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [108888] =>.Microsoft Windows®
O58 - SDL:2015/10/30 07:17:23 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2i.sys [104800] =>.Microsoft Windows®
O58 - SDL:2015/10/30 07:17:23 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys [99168] =>.Microsoft Windows®
O58 - SDL:2015/10/30 07:17:23 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82784] =>.Microsoft Windows®
O58 - SDL:2015/10/05 09:50:06 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\mbam.sys [25816] =>.Malwarebytes Corporation®
O58 - SDL:2015/10/05 09:50:10 A . (.Malwarebytes - Malwarebytes Chameleon Protection Driver.) -- C:\WINDOWS\System32\drivers\mbamchameleon.sys [109272] =>.Malwarebytes Corporation®
O58 - SDL:2016/01/04 16:57:41 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [192216] =>.Malwarebytes Corporation®
O58 - SDL:2015/10/30 07:17:23 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [59744] =>.Microsoft Windows®
O58 - SDL:2015/10/30 07:17:23 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575840] =>.Microsoft Windows®
O58 - SDL:2015/10/30 07:17:23 A . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\System32\drivers\mlx4_bus.sys [705376] =>.Microsoft Windows®
O58 - SDL:2015/10/30 07:17:23 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63840] =>.Microsoft Windows®
O58 - SDL:2015/10/05 09:50:22 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\WINDOWS\System32\drivers\mwac.sys [64216] =>.Malwarebytes Corporation®
O58 - SDL:2015/10/30 07:17:23 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys [76128] =>.Microsoft Windows®
O58 - SDL:2014/05/06 17:40:10 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\WINDOWS\System32\drivers\NETwLv64.sys [7533568] =>.Intel Corporation
O58 - SDL:2009/01/30 09:12:00 A . (.NVIDIA Corporation - NVIDIA Compatible Windows Vista Kernel Mode.) -- C:\WINDOWS\System32\drivers\nvlddmkm.sys [9677216] =>.NVIDIA Corporation®
O58 - SDL:2015/10/30 07:17:23 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150368] =>.Microsoft Windows®
O58 - SDL:2015/10/30 07:17:23 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [166240] =>.Microsoft Windows®
O58 - SDL:2015/10/30 07:17:23 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas2i.sys [58208] =>.Microsoft Windows®
O58 - SDL:2015/10/30 07:17:23 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys [58720] =>.Microsoft Windows®
O58 - SDL:2008/03/14 13:56:04 A . (.Point Grey Research - PGR1394b Device Driver.) -- C:\WINDOWS\System32\drivers\PGR1394.sys [88064]
O58 - SDL:2015/10/30 07:17:23 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44896] =>.Microsoft Windows®
O58 - SDL:2015/10/30 07:17:23 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81760] =>.Microsoft Windows®
O58 - SDL:2015/10/18 12:02:58 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_AMDASF_Aux.sys [33448] =>.Synaptics Incorporated®
O58 - SDL:2015/10/18 12:02:58 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_Intel_Aux.sys [33960] =>.Synaptics Incorporated®
O58 - SDL:2015/10/30 07:17:23 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31072] =>.Microsoft Windows®
O58 - SDL:2015/10/18 12:03:07 A . (.Synaptics Incorporated - Synaptics Touchpad Win64 Driver.) -- C:\WINDOWS\System32\drivers\SynTP.sys [609960] =>.Synaptics Incorporated®
O58 - SDL:2009/06/19 16:44:56 A . (.Texas Instruments - tifm21.sys.) -- C:\WINDOWS\System32\drivers\tifm21.sys [319488] =>.Texas Instruments
O58 - SDL:2015/10/30 07:17:23 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [166752] =>.Microsoft Windows®
O58 - SDL:2015/10/30 07:17:23 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305504] =>.Microsoft Windows®
O58 - SDL:2015/10/30 07:17:23 A . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\System32\drivers\winmad.sys [26976] =>.Microsoft Windows®
O58 - SDL:2015/10/30 07:17:23 A . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\System32\drivers\winverbs.sys [59232] =>.Microsoft Windows®
O58 - SDL:2009/03/30 09:40:02 A . (.ZTE Incorporated - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\ZTEusbnmea.sys [150784] =>.ZTE Incorporated
O58 - SDL:2009/03/30 09:40:06 A . (.ZTE Incorporated - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\ZTEusbser6k.sys [150656] =>.ZTE Incorporated

---\\ Últimos ficheiros alterados ou criados (Utilizador) (6) - 22s
O61 - LFC: 2016/01/09 17:39:21 A . (.XmlvsThVehV9Dz7UtF9w.) -- C:\Users\JoséCarlos1057\Downloads\Que Mal Fiz Eu A Deus.exe [46390]
O61 - LFC: 2016/01/09 17:40:31 A . (..) -- C:\Users\JoséCarlos1057\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\TempState\TileCache_100_0_Header.bin [17128]
O61 - LFC: 2016/01/09 23:20:18 A . (..) -- C:\Users\JoséCarlos1057\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\speech_onecorereg.bin [8192]
O61 - LFC: 2016/01/09 14:28:33 A . (..) -- C:\Users\JoséCarlos1057\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\UrlBlock\urlblock_635879413663077248.bin [84744]
O61 - LFC: 2016/01/09 23:29:39 A . (..) -- C:\Users\JoséCarlos1057\AppData\Local\Microsoft\Windows\UPPS\UPPS.bin [16148]
O61 - LFC: 2016/01/09 14:17:25 A . (..) -- C:\Users\JoséCarlos1057\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [674082]

---\\ Associações Shell Spawning (10) - 0s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Iniciador do Snap-in Visualizador de Evento.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Editor de registo.) -- C:\Windows\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S

---\\ Menu de inicialização Internet (12) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Avast Software - Avast SafeZone Browser.) -- C:\Program Files\AVAST Software\SZBrowser\Launcher.exe =>.AVAST Software
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitário de Inicialização por utilizador.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Avast Software - Avast SafeZone Browser.) -- C:\Program Files\AVAST Software\SZBrowser\launcher.exe =>.AVAST Software
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitário de Inicialização por utilizador.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Avast Software - Avast SafeZone Browser.) -- C:\Program Files\AVAST Software\SZBrowser\launcher.exe =>.AVAST Software
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitário de Inicialização por utilizador.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Avast Software - Avast SafeZone Browser.) -- C:\Program Files\AVAST Software\SZBrowser\launcher.exe =>.AVAST Software

---\\ Pesquisa de infeção nos navegadores da Internet (3) - 0s
O69 - SBI: SearchScopes [HKCU] {012E1000-F331-11DB-8314-0800200C9A66} [DefaultScope] - (Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/

---\\ Listagem dos serviços iniciados pelo Svchost (42) - 3s
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Serviço de Propagação de Certificados de Sm.) -- C:\WINDOWS\System32\certprop.dll [192000] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Serviço de Propagação de Certificados de Sm.) -- C:\WINDOWS\System32\certprop.dll [192000] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL do Serviço de Servidor.) -- C:\WINDOWS\system32\srvsvc.dll [283136] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Cliente de Política de Grupo.) -- C:\WINDOWS\System32\gpsvc.dll [1338368] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extensão IKE.) -- C:\WINDOWS\System32\ikeext.dll [957952] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Serviço que oferece conectividade IPv6 numa.) -- C:\WINDOWS\System32\iphlpsvc.dll [958464] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL secundária de serviço de início de sess.) -- C:\WINDOWS\system32\seclogon.dll [31232] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Serviço de Informações sobre Aplicações.) -- C:\WINDOWS\System32\appinfo.dll [94720] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Serviço de Deteção iSCSI.) -- C:\WINDOWS\system32\iscsiexe.dll [151040] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Serviço EAPHost da Microsoft.) -- C:\WINDOWS\System32\eapsvc.dll [112640] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Serviço Programador de Tarefas.) -- C:\WINDOWS\system32\schedsvc.dll [1012224] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\WMIsvc.dll [225280] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL do Browser de Computador.) -- C:\WINDOWS\System32\browser.dll [134656] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\WINDOWS\system32\profsvc.dll [328192] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Serviço de Configuração do Ambiente de Trab.) -- C:\Windows\System32\SessEnv.dll [372736] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Relatórios e Soluções de Problemas.) -- C:\WINDOWS\System32\wercplsupport.dll [96256] =>.Microsoft Corporation
O83 - Search Svchost Services: DcpSvc (DcpSvc) . (.Microsoft Corporation - dcpsvc Task.) -- C:\WINDOWS\system32\dcpsvc.dll [186880] =>.Microsoft Corporation
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Serviço Conta Microsoft®.) -- C:\WINDOWS\system32\wlidsvc.dll [2058240] =>.Microsoft Corporation
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Serviço do Assistente de Conectividade da R.) -- C:\WINDOWS\System32\ncasvc.dll [168960] =>.Microsoft Corporation
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Serviço de Configuração de Rede.) -- C:\WINDOWS\System32\NetSetupSvc.dll [203776] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL de Serviços de Tema da Shell do Windows.) -- C:\WINDOWS\system32\themeservice.dll [59392] =>.Microsoft Corporation
O83 - Search Svchost Services: RetailDemo (RetailDemo) . (.Microsoft Corporation - RDXService.) -- C:\WINDOWS\system32\RDXService.dll [1073152] =>.Microsoft Corporation
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Serviço de Geolocalização.) -- C:\Windows\System32\lfsvc.dll [27136] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestor de Marcação Automática de Acesso Rem.) -- C:\WINDOWS\System32\rasauto.dll [106496] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestor de Ligação de Acesso Remoto.) -- C:\WINDOWS\System32\rasmans.dll [696320] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestor de Interfaces Dinâmicas.) -- C:\Windows\System32\mprdim.dll [507904] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Serviço de Notificação de Eventos do Sistem.) -- C:\WINDOWS\System32\sens.dll [73216] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Componentes do Microsoft NAT Helper.) -- C:\WINDOWS\System32\ipnathlp.dll [457728] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Servidor de telefonia Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [311808] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\WINDOWS\system32\wuaueng.dll [2280448] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Serviço de transferência inteligente em seg.) -- C:\WINDOWS\System32\qmgr.dll [1144320] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - DLL de serviços da shell do Windows.) -- C:\Windows\System32\shsvcs.dll [608768] =>.Microsoft Corporation
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\WINDOWS\system32\dmwappushsvc.dll [57856] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Serviço BDE.) -- C:\WINDOWS\System32\bdesvc.dll [360448] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\WINDOWS\system32\XboxNetApiSvc.dll [1035776] =>.Microsoft Corporation
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Atualização de Sessão Orchestrator Core.) -- C:\WINDOWS\system32\usocore.dll [360960] =>.Microsoft Corporation
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\WINDOWS\System32\XblGameSave.dll [1130496] =>.Microsoft Corporation
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL do Serviço do Windows Management.) -- C:\Windows\System32\Windows.Internal.Management.dll [278016] =>.Microsoft Corporation
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestor de Configuração de Dispositivos.) -- C:\WINDOWS\System32\DeviceSetupManager.dll [205824] =>.Microsoft Corporation
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\WINDOWS\System32\usermgr.dll [912384] =>.Microsoft Corporation
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\WINDOWS\System32\XblAuthManager.dll [948224] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Serviço de instalação de software.) -- C:\Windows\System32\appmgmts.dll [200192] =>.Microsoft Corporation

---\\ Serviços não Microsoft (SR=Executados, SS=Parados) (15) - 76s

SS - Disabl [01/01/2000] [ 16896] Agere Modem Call Progress Audio (AgereModemAudio) . (.LSI Corporation.) - C:\Program Files\LSI SoftModem\agr64svc.exe =>.LSI Corporation
SR - Auto [07/10/2015] [ 77104] Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe =>.Apple Inc.®
SR - Auto [18/12/2015] [ 226440] Avast Antivirus (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe =>.AVAST Software a.s.®
SR - Auto [18/12/2015] [ 109520] Avast Firewall (avast! Firewall) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\afwServ.exe =>.AVAST Software a.s.®
SR - Auto [12/08/2015] [ 462096] Serviço de Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.®
SS - Disabl [29/10/2015] [ 144200] Serviço Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Disabl [29/10/2015] [ 144200] Serviço Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SR - Auto [28/09/2015] [ 25800] HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe =>.Hewlett-Packard Company®
SS - Demand [17/12/2015] [ 644880] Serviço iPod (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe =>.Apple Inc.®
SS - Disabl [05/10/2015] [ 1135416] (MBAMService) . (.Malwarebytes.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
SS - Disabl [30/01/2009] [ 364064] @oem5.inf,%NVSVC.name%;NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvvsvc.exe =>.NVIDIA Corporation
SS - Disabl [09/07/2015] [ 327296] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
SS - Disabl [18/10/2015] [ 237736] SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe =>.Synaptics Incorporated®
SS - Auto [07/01/2016] [ 292952] vmserve Update (vmserve) . (...) - C:\Program Files (x86)\Common Update\vmserve Update\vmserve.exe =>PUP.Optional.YesSearches

---\\ Scâner Aditional (1) - 0s
~ Nenhum ítem malicioso o desnecessários foi encontrado.

---\\ Informações complémentaires do módulos (1) - 0s
~ Nenhum ítem malicioso o desnecessários foi encontrado.

~ End of the scan, 13598 items in 00h04mn00s (647)(0)

Publicité


Signaler le contenu de ce document

Publicité