~ ZHPDiag v2015.9.14.141 Por Nicolas Coolman (2015/09/12) ~ iniciado por Murilo Costa (Administrator) (2015/09/16 15:23:13) ~ Site: http://www.nicolascoolman.fr ~ Facebook: https://www.facebook.com/nicolascoolman1 ~ Status da versão: Rede de arquivo ~ Modo: Scanner ~ Relatório: C:\Users\Murilo Costa\Desktop\ZHPDiag.txt ~ Relatório: C:\Users\Murilo Costa\AppData\Roaming\ZHP\ZHPDiag.txt ~ UAC: Activate ~ Inicialização do sistema: Normal (Normal boot) Windows 7 Ultimate, 64-bit Service Pack 1 (Build 7601) ---\\ Navegadores Internet (4) - 0s GCIE: Google Chrome v45.0.2454.85 MFIE: Mozilla Firefox 39.0 (x86 pt-BR) v39.0 OPIE: Opera 27.0.1689.66 v27.0.1689.66 MSIE: Internet Explorer v11.0.9600.17914 ---\\ Informações sobre os produtos Windows (4) - 3s ~ Windows Server License Manager Script : OK System - VBScript Engine not found Windows Automatic Updates : OK Windows Activation Technologies : OK ---\\ Softwares de proteçao do sistema (3) - 6s Avast Free Antivirus v10.3.2225 Malwarebytes Anti-Malware versão 2.1.8.1057 Windows Defender W7 (Activate) ---\\ Softwares d'optimização do sistema (1) - 7s CCleaner v5.09 ---\\ Monitoramento dos softwares (2) - 7s Adobe Flash Player 18 PPAPI Adobe Reader XI ---\\ Informações sobre o sistema (6) - 0s ~ Operating System: AMD64 Family 21 Model 1 Stepping 2, AuthenticAMD ~ Operating System: 64-bit ~ Boot mode: Normal (Normal boot) Total RAM: 8370.296 MB (69% free) ~ System Restore: Activé (Enable) ~ System drive C: has 256 GB free of 953 GB ---\\ Modo de conexão ao sistema (3) - 0s ~ Computer Name: MURILOCOSTA-PC ~ User Name: Murilo Costa ~ Logged in as Administrator ---\\ Enumeração das unidades dos discos (2) - 0s ~ Drive C: has 256 GB free of 953 GB (System) ~ Drive D: has 120 GB free of 476 GB ---\\ Estado do Centro de Segurança do Windows (13) - 0s [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK ---\\ Pesquisa particular de ficheiros genéricos (25) - 0s [MD5.70D758D2DBE79757421017EE68143763] - (.Microsoft Corporation - Windows Explorer.) () -- C:\Windows\Explorer.exe [2871296] © [MD5.DD81D91FF3B0763C392422865C9AC12E] - (.Microsoft Corporation - Processo de host do Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [45568] © [MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Aplicativo de Inicialização do Windows.) () -- C:\Windows\System32\Wininit.exe [129024] © [MD5.E066FDC3A2074D926903B8C31EF3B347] - (.Microsoft Corporation - Internet Extensions para Win32.) () -- C:\Windows\System32\wininet.dll [2427392] © [MD5.98AA0BFEE089C7E5DADB94190D93456C] - (.Microsoft Corporation - Aplicativo de Logon do Windows.) () -- C:\Windows\System32\Winlogon.exe [455680] © [MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Biblioteca de Licenciamento de Software.) () -- C:\Windows\System32\sppcomapi.dll [232448] © [MD5.98E998C5630C642F4AF00820BD63DCEC] - (.Microsoft Corporation - DLL da API de cliente DNS.) () -- C:\Windows\System32\dnsapi.dll [357376] © [MD5.C637C9AFA4A638D316D70686293F19D1] - (.Microsoft Corporation - DLL da API de cliente DNS.) () -- C:\Windows\Syswow64\dnsapi.dll [270336] © [MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [497152] © [MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [24128] © [MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [92160] © [MD5.E5F4FD3D59B9141560D4174AAE6E66E0] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [148992] © [MD5.9FCDC4EEBCE39173122F9FEE53A054FC] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [102912] © [MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [122368] © [MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Driver de porta i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [105472] © [MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [116224] © [MD5.E9DD0E8829567362C1051E0905174DDE] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [159744] © [MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [261632] © [MD5.48B6047F82D5A8D0AEC71593F4ACD79B] - (.Microsoft Corporation - Driver do Sistema de Arquivos NT.) () -- C:\Windows\System32\drivers\ntfs.sys [1684416] © [MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Driver de porta paralela.) () -- C:\Windows\System32\drivers\Parport.sys [97280] © [MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] © [MD5.B6E3CB704BCD9FA07CD35F202D64DCC2] - (.Microsoft Corporation - Microsoft RDP Device redirector.) () -- C:\Windows\System32\drivers\rdpdr.sys [165888] © [MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [93184] © [MD5.70988118145F5F10EF24720B97F35F65] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [119296] © [MD5.A56F2326CE33646CDA95E7A9E7163FFA] - (.Microsoft Corporation - Driver de cópia de sombra de volume.) () -- C:\Windows\System32\drivers\volsnap.sys [296304] © ---\\ Processos lançados (34) - 1s [MD5.E8E046DB17671161DE74D1BB4E42D4B5] - (.AMD - AMD External Events Service Module.) -- C:\Windows\system32\atiesrxx.exe [245760] [PID.968] © [MD5.94D9C7A4A631B0C193E49ED9C87ECB42] - (.AMD - AMD External Events Client Module.) -- C:\Windows\system32\atieclxx.exe [670720] [PID.1252] © [MD5.4956380A54B1C9E6BFDF3D80DACB9698] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600] [PID.1452] © [MD5.4C72FDD915D62EAEF149BD9C73AB9CF4] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [81088] [PID.1844] © [MD5.23B97097BE0DAF1583EFD9B22233CF5A] - (.Advanced Micro Devices, Inc. - AMD Fuel Service.) -- C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064] [PID.1928] © [MD5.1992CE1C0B68D1A2AC036433479FDB30] - (.Disc Soft Ltd - Disc soft bus service.) -- C:\Program Files (x86)\DAEMON Tools Pro\DiscSoftBusService.exe [2216208] [PID.2088] © [MD5.1CF03C69B49ACB70C722DF92755C0C8C] - (.Macrovision Corporation - IDriverT Module.) -- C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632] [PID.2156] © [MD5.CD421DDB5C6E5458CE52EDC36DE7DC5B] - (...) -- C:\Windows\SysWOW64\PnkBstrA.exe [76152] [PID.3028] [MD5.4580AC6F8ADADB5CE9F296F7FF5B15DD] - (.TODO: <公司名> - TODO: <文件说明>.) -- C:\Program Files (x86)\SFK\SSFK.exe [450048] [PID.2896] [MD5.809B39A1A036C20994E68CF322A2519A] - (.DTools LIMITED - DTools.) -- C:\ProgramData\aWdsManProa\WdsManPro.exe [451720] [PID.3248] =>PUP.Optional.WdsManPro [MD5.357CABBF155AFD1D3926E62539D2A3A7] - (.Microsoft Corp. - Microsoft® Windows Live ID Service.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292480] [PID.3396] © [MD5.D790CAFEFF0291D0AF8C76F5A1EE2E4E] - (.Microsoft Corp. - Microsoft® Windows Live ID Service Monitor.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE [223488] [PID.3464] © [MD5.33BFEC2B102B196B62ABB9947C7D7E23] - (.Dropbox, Inc. - Dropbox Update.) -- C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048] [PID.1392] © [MD5.45042BE9FD94BBA8306D354696CA4E3B] - (.WiseCleaner.com - Wise Care 365 Tray.) -- C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe [2343984] [PID.2704] © [MD5.AD242E8C6A442F0B8A73DD3E3CC92653] - (.Auslogics - BoostSpeed.) -- C:\Program Files (x86)\Auslogics\BoostSpeed\BoostSpeed.exe [3389896] [PID.3164] © [MD5.DB367E8C8F46C26A05BA982715CC0DB5] - (.Pixart Imaging Inc - pximouse.) -- C:\Windows\System32\TiltWheelMouse.exe [241152] [PID.4040] [MD5.7D0E11F1640F088BC4BF79C9B56133EE] - (.Disc Soft Ltd - DAEMON Tools Shell Extensions Helper.) -- C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe [3523344] [PID.3276] © [MD5.CCFA17673A0016BF96100392A6B1DAE7] - (.Realtek Semiconductor - Gerenciador de áudio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8466648] [PID.3740] © [MD5.7537122E032DD3B52AADF467B3E8553A] - (...) -- C:\Program Files (x86)\SFK\SFKEX64.exe [123392] [PID.4084] [MD5.7DFCCC67990B6DE7F30F553A4E4612A4] - (...) -- C:\Program Files (x86)\RocketDock\RocketDock.exe [495616] [PID.3184] [MD5.554C2CD072CC3917120D2A096CF8886E] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3907152] [PID.4236] © [MD5.F66203AF9C159E2CBD54DF981654F499] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe [6111824] [PID.4384] © [MD5.1C7C9F16762BB5D75B4E43B0BD9AC78D] - (.Internet Download Manager, Tonec Inc. - IDM Integration module.) -- C:\Program Files (x86)\Internet Download Manager\IDMIntegrator64.exe [67608] [PID.4420] [MD5.E9C6EF9437ECB30911488F9313AD821A] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe [269848] [PID.4752] © [MD5.615209C5C8F920648E024A234201A404] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [871240] [PID.4120] © [MD5.615209C5C8F920648E024A234201A404] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [871240] [PID.5116] © [MD5.615209C5C8F920648E024A234201A404] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [871240] [PID.1692] © [MD5.615209C5C8F920648E024A234201A404] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [871240] [PID.4908] © [MD5.615209C5C8F920648E024A234201A404] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [871240] [PID.5092] © [MD5.615209C5C8F920648E024A234201A404] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [871240] [PID.4656] © [MD5.615209C5C8F920648E024A234201A404] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [871240] [PID.5032] © [MD5.615209C5C8F920648E024A234201A404] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [871240] [PID.4904] © [MD5.615209C5C8F920648E024A234201A404] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [871240] [PID.4464] © [MD5.018B44D6E41ABDD08403E6B9EC3575B3] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Murilo Costa\Documents\linha defensiva\ZHPDiag3.exe [1929728] [PID.500] © ---\\ Google Chrome, Arranque,Pesquisa,Extensões (11) - 0s G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.google.com.br/ G2 - GCE: Preference [User Data\Default] [aknpkdffaafgjchaibgeefbgmgeghloj] Angry Birds G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [gomekmidlodglbbmalcneegieacbdmki] Avast Online Security G2 - GCE: Preference [User Data\Default] [heaigjkhmboanopbhfjfpmlkoeeaeccc] __MSG_ext_name__ G2 - GCE: Preference [User Data\Default] [idnljhnpjegfbcohjhdnhjlnfnffmbnf] GBBD Banco Santander (Brasil) S.A. G2 - GCE: Preference [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc. ---\\ Mozilla Firefox, Plugins,Arranque,Pesquisa,Extensões (22) - 1s M0 - MFSP: prefs.js [Murilo Costa - 35mz2grc.default] http://www.google.com/ P2 - EXT FILE: (...) -- C:\Users\Murilo Costa\AppData\Roaming\Mozilla\Firefox\Profiles\35mz2grc.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi P2 - EXT FILE: (...) -- C:\Users\Murilo Costa\AppData\Roaming\Mozilla\Firefox\Profiles\35mz2grc.default\searchplugins\google-.xml P2 - EXT FILE: (...) -- C:\Users\Murilo Costa\AppData\Roaming\Mozilla\Firefox\Profiles\35mz2grc.default\searchplugins\google-avast.xml P2 - EXT FILE: (...) -- C:\Users\Murilo Costa\AppData\Roaming\Mozilla\Firefox\Profiles\35mz2grc.default\searchplugins\Google.xml P2 - EXT FILE: (...) -- C:\Users\Murilo Costa\AppData\Roaming\Mozilla\Firefox\Profiles\35mz2grc.default\searchplugins\Google_1.xml P2 - EXT FILE: (...) -- C:\Users\Murilo Costa\AppData\Roaming\Mozilla\Firefox\Profiles\35mz2grc.default\searchplugins\istartsurf.xml =>PUP.Optional.IsStart P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\bing.xml P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\buscape.xml P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\ddg.xml P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\google.xml P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\mercadolivre.xml P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\twitter.xml P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wikipedia-br.xml P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo-br.xml P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} © P2 - EXT: (.Microsoft Corporation - Bing Search.) -- C:\Users\Murilo Costa\AppData\Roaming\Mozilla\Firefox\Profiles\35mz2grc.default\extensions\bingsearch.full@microsoft.com © P2 - EXT: (.Vinícius Della Líbera - Verificador Ortográfico para Português do Brasil..) -- C:\Users\Murilo Costa\AppData\Roaming\Mozilla\Firefox\Profiles\35mz2grc.default\extensions\pt-BR@dellalibera.sf.net P2 - FPN: [HKCU] [gastecnologia.com.br/sf/abn] - (.GAS Tecnologia.) -- C:\Users\Murilo Costa\AppData\Local\GAS Tecnologia\GBBD\npsf_abn.dll P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll © P2 - FPN: [HKLM] [@esn.me/esnsonar,version=0.70.4] - (.ESN Social Software AB.) -- C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll P2 - FPN: [HKLM] [@esn/esnlaunch,version=2.3.0] - (.ESN Social Software AB.) -- C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll ---\\ Opera, Plugins,Arranque,Pesquisa (1) - 1s B2 - EXT: [download-videos] C:\Users\Murilo Costa\AppData\Roaming\Opera Software\Opera Stable\Extensions\beemgnphifpbdehfmohojkhlklfaddih ---\\ Internet Explorer, Arranque, Pesquisa, Phishing (15) - 0s R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/ R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer ---\\ Internet Explorer, Gestão do Proxy (4) - 0s R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ Análise das linhas, Carregamento Automático de programas (3) - 0s F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) ---\\ Redireção do ficheiro Hosts (1) - 0s ~ Le fichier hôte est sain (The hosts file is clean) (23) ---\\ Browser Helper Objects do navegador (7) - 0s O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll O2 - BHO: Skype for Business Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Skype for Business.) -- C:\Program Files\Microsoft Office\Office15\OCHelper.dll © O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll © O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll © O2 - BHO: SkypeIEPluginBHO [64Bits] - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll © O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL © O2 - BHO: Microsoft SkyDrive Pro Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL © ---\\ Aplicações iniciadas por registo & pastas (11) - 0s O4 - HKLM\..\Run: [MouseDriver] . (.Pixart Imaging Inc - pximouse.) -- C:\Windows\System32\TiltWheelMouse.exe O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gerenciador de áudio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe © O4 - HKCU\..\Run: [RocketDock] . (...) -- C:\Program Files (x86)\RocketDock\RocketDock.exe O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe © O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe © O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets da Área de Trabalho do Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe © O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets da Área de Trabalho do Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe © O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe © O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe © O4 - HKUS\S-1-5-21-2687556472-4158628515-2680252711-1000\..\Run: [RocketDock] . (...) -- C:\Program Files (x86)\RocketDock\RocketDock.exe O4 - HKUS\S-1-5-21-2687556472-4158628515-2680252711-1000\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe © ---\\ Alteração Dominio/Clientes DNS (3) - 0s O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 208.67.222.222 208.67.220.220 192.168.0.1 O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 208.67.222.222 208.67.220.220 192.168.0.1 O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 208.67.222.222 208.67.220.220 192.168.0.1 ---\\ Protocolo adicional (24) - 0s O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\System32\mshtml.dll © O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\System32\urlmon.dll © O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Controle ActiveX para streaming de vídeo.) -- C:\Windows\System32\MSVidCtl.dll © O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\System32\urlmon.dll © O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\System32\urlmon.dll © O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\System32\urlmon.dll © O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\System32\urlmon.dll © O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll © O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\System32\mshtml.dll © O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\System32\urlmon.dll © O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\System32\mshtml.dll © O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll © O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\System32\urlmon.dll © O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll © O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll © O18 - Handler: osf [64Bits] - {D924BDC6-C83A-4BD5-90D0-095128A113D1} . (.Microsoft Corporation - Microsoft Office 2013 component.) -- C:\Program Files\Microsoft Office\Office15\MSOSB.DLL © O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\System32\mshtml.dll © O18 - Handler: skypec2c [64Bits] - {91774881-D725-4E58-B298-07617B9B86A8} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll © O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Controle ActiveX para streaming de vídeo.) -- C:\Windows\System32\MSVidCtl.dll © O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\System32\mshtml.dll © O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll © O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll © O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll © O18 - Filter: text/xml [64Bits] - {807583E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL © ---\\ Serviços NT não Microsoft e não desativados (19) - 1s O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe © O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated - Adobe® Flash® Player Update Service 18.0 r0.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe © O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\system32\atiesrxx.exe © O23 - Service: AMD FUEL Service (AMD FUEL Service) . (.Advanced Micro Devices, Inc. - AMD Fuel Service.) - C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe © O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe © O23 - Service: @comres.dll,-947 (COMSysApp) . (...) - %SystemRoot%\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} O23 - Service: Dropbox Update Service (dbupdate) (dbupdate) . (.Dropbox, Inc. - Dropbox Update.) - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe © O23 - Service: Dropbox Update Service (dbupdatem) (dbupdatem) . (.Dropbox, Inc. - Dropbox Update.) - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe © O23 - Service: Disc Soft Bus Service (Disc Soft Bus Service) . (.Disc Soft Ltd - Disc soft bus service.) - C:\Program Files (x86)\DAEMON Tools Pro\DiscSoftBusService.exe © O23 - Service: Google Update Service (gupdate1d0bd9c9f0dee6f) (gupdate1d0bd9c9f0dee6f) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe © O23 - Service: Google Update Service (gupdatem1d0bd9c9f933b7f) (gupdatem1d0bd9c9f933b7f) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe © O23 - Service: InstallDriver Table Manager (IDriverT) . (.Macrovision Corporation - IDriverT Module.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe © O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe © O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation - .) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe © O23 - Service: Origin Client Service (Origin Client Service) . (.Electronic Arts - OriginClientService.) - C:\Program Files (x86)\Origin\OriginClientService.exe © O23 - Service: PnkBstrA (PnkBstrA) . (...) - C:\Windows\System32\PnkBstrA.exe O23 - Service: SSFK (SSFK) . (.TODO: <公司名> - TODO: <文件说明>.) - C:\Program Files (x86)\SFK\SSFK.exe =>PUP.Optional.MyWebSearch O23 - Service: WdsManPro Service (WdsManPro) . (.DTools LIMITED - DTools.) - C:\ProgramData\aWdsManProa\WdsManPro.exe =>PUP.Optional.WpManager O23 - Service: Wise Boot Assistant (WiseBootAssistant) . (.WiseCleaner.com - Wise BootTime Service.) - C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe © ---\\ Tarefas planificadas automaticamente (14) - 4s [MD5.BBF37D81780EBB4919636CF7E5C789BE] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269000] © [MD5.76F586CEF7018BD376CBBD74AEAC93F5] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [1373872] © [MD5.7245B4C192D20107B4A3E887AED3F76E] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [6490904] © [MD5.45042BE9FD94BBA8306D354696CA4E3B] [APT] [Wise Care 365] (.WiseCleaner.com.) -- C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe [2343984] © [MD5.4E59FD37BF7C0F5DC45FD73947A59DE4] [APT] [Wise Turbo Checker] (.WiseCleaner.COM.) -- C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe [1399616] © [MD5.AD242E8C6A442F0B8A73DD3E3CC92653] [APT] [Auslogics\BoostSpeed\Start BoostSpeed ?n Murilo Costa logon] (.Auslogics.) -- C:\Program Files (x86)\Auslogics\BoostSpeed\BoostSpeed.exe [3389896] © O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [830] © O39 - APT: Wise Care 365 - (.WiseCleaner.com.) -- C:\Windows\Tasks\Wise Care 365.job [436] © O39 - APT: Wise Turbo Checker - (.WiseCleaner.COM.) -- C:\Windows\Tasks\Wise Turbo Checker.job [442] © O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3768] © O39 - APT: avast! Emergency Update - (.AVAST Software.) -- C:\Windows\System32\Tasks\avast! Emergency Update [4182] © O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\Windows\System32\Tasks\CCleanerSkipUAC [2786] © O39 - APT: Wise Care 365 - (.WiseCleaner.com.) -- C:\Windows\System32\Tasks\Wise Care 365 [2876] © O39 - APT: Wise Turbo Checker - (.WiseCleaner.COM.) -- C:\Windows\System32\Tasks\Wise Turbo Checker [3124] © ---\\ Software instalados (180) - 17s O42 - Logiciel: Nexus Mod Manager - (.Black Tree Gaming.) [HKLM][64Bits] -- 6af12c54-643b-4752-87d0-8335503010de_is1 © O42 - Logiciel: 7-Zip 15.05 beta x64 - (...) [HKLM][64Bits] -- 7-Zip O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner © O42 - Logiciel: CPUID CPU-Z 1.72.1 - (...) [HKLM][64Bits] -- CPUID CPU-Z_is1 O42 - Logiciel: CPUID HWMonitor 1.28 - (...) [HKLM][64Bits] -- CPUID HWMonitor_is1 O42 - Logiciel: Foxit Reader 7.1.5.425 - (.oszone.net.) [HKLM][64Bits] -- Foxit Reader O42 - Logiciel: Unlocker 1.9.2 - (.Cedrick Collomb.) [HKLM][64Bits] -- Unlocker © O42 - Logiciel: WinRAR 5.20 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver © O42 - Logiciel: Corel Graphics - Windows Shell Extension - (.Corel Corporation.) [HKLM][64Bits] -- _{4DC318F5-1640-4417-A218-912ED9905FAA} © O42 - Logiciel: CorelDRAW Graphics Suite X7 (64-Bit) - (.Corel Corporation.) [HKLM][64Bits] -- _{5CB73140-806C-42C6-A05A-1AFD0E92DEB5} © O42 - Logiciel: HP Deskjet 1510 series Software básico do dispositivo - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {06FD25AF-70F0-4CA9-88EA-490799567F11} © O42 - Logiciel: CorelDRAW Graphics Suite X7 - IPM T (x64) - (.Corel Corporation.) [HKLM][64Bits] -- {13179AB2-69FD-459B-800F-81865A501AD4} © O42 - Logiciel: AMD Catalyst Install Manager - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {14D58A97-B60E-A858-34D8-95469C02F7EC} © O42 - Logiciel: Corel Graphics - Windows Shell Extension 32 Bit - (.Corel Corporation.) [HKLM][64Bits] -- {3B4AE1A9-C026-4D08-8004-DA9A85A411A4} © O42 - Logiciel: AMD Wireless Display v3.0 - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {426582A8-202F-D13C-8BD5-F00551BAFC93} © O42 - Logiciel: Corel Graphics - Windows Shell Extension - (.Corel Corporation.) [HKLM][64Bits] -- {4DC318F5-1640-4417-A218-912ED9905FAA} © O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM][64Bits] -- {503F672D-6C84-448A-8F8F-4BC35AC83441} © O42 - Logiciel: AMD Media Foundation Decoders - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {5125F6C3-E8E5-F400-182F-BFF022B47DBB} © O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} © O42 - Logiciel: AMD Accelerated Video Transcoding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {8F2415FA-72F2-F029-0450-4EB2FAE484C5} © O42 - Logiciel: Microsoft Access MUI (Portuguese (Brazil)) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0015-0416-1000-0000000FF1CE} © O42 - Logiciel: Microsoft Excel MUI (Portuguese (Brazil)) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0016-0416-1000-0000000FF1CE} © O42 - Logiciel: Microsoft PowerPoint MUI (Portuguese (Brazil)) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0018-0416-1000-0000000FF1CE} © O42 - Logiciel: Microsoft Publisher MUI (Portuguese (Brazil)) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0019-0416-1000-0000000FF1CE} © O42 - Logiciel: Microsoft Outlook MUI (Portuguese (Brazil)) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001A-0416-1000-0000000FF1CE} © O42 - Logiciel: Microsoft Word MUI (Portuguese (Brazil)) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001B-0416-1000-0000000FF1CE} © O42 - Logiciel: Microsoft InfoPath MUI (Portuguese (Brazil)) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0044-0416-1000-0000000FF1CE} © O42 - Logiciel: Microsoft DCF MUI (Portuguese (Brazil)) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0090-0416-1000-0000000FF1CE} © O42 - Logiciel: Microsoft OneNote MUI (Portuguese (Brazil)) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00A1-0416-1000-0000000FF1CE} © O42 - Logiciel: Microsoft Groove MUI (Portuguese (Brazil)) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00BA-0416-1000-0000000FF1CE} © O42 - Logiciel: Microsoft Lync MUI (Portuguese (Brazil)) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-012B-0416-1000-0000000FF1CE} © O42 - Logiciel: Update for Skype for Business 2015 (KB2889853) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-012B-0416-1000-0000000FF1CE}_Office15.PROPLUS_{45AD9785-5503-4B26-981A-AF62A355ADF2} © O42 - Logiciel: AMD Drag and Drop Transcoding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {BB8B580B-8119-0235-C923-5F1EECE66561} © O42 - Logiciel: AMD Wireless Display v3.0 - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {C270821D-2479-D0F4-1BD1-7BBAF6762A98} © O42 - Logiciel: CorelDRAW Graphics Suite X7 - Writing Tools (x64) - (. Corel Corporation.) [HKLM][64Bits] -- {D63404AC-C2F1-4B3D-96EA-9727AC9D994C} O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {E9FA781F-3E80-4399-825A-AD3E11C28C77} © O42 - Logiciel: CorelDRAW Graphics Suite X7 - IPM Content (x64) - (.Corel Corporation.) [HKLM][64Bits] -- {EF44BCCD-13F9-4974-862C-CCFAF43EE082} © O42 - Logiciel: Braveland Wizard - (.GOG.com.) [HKLM][64Bits] -- 1207667193_is1 © O42 - Logiciel: Toren - (.GOG.com.) [HKLM][64Bits] -- 1429865580_is1 © O42 - Logiciel: Adobe Flash Player 18 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX © O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI © O42 - Logiciel: Adobe Flash Player 18 PPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player PPAPI © O42 - Logiciel: Avast Free Antivirus - (.AVAST Software.) [HKLM][64Bits] -- Avast © O42 - Logiciel: Bastion Tradução BR v1.00 - (.Tribo Gamer Brasil®.) [HKLM][64Bits] -- Bastion BR O42 - Logiciel: Battlelog Web Plugins - (.EA Digital Illusions CE AB.) [HKLM][64Bits] -- Battlelog Web Plugins © O42 - Logiciel: Blackguards - (.Daedalic Entertainment GmbH.) [HKLM][64Bits] -- Blackguards_is1 O42 - Logiciel: Breach and Clear Deadline - (...) [HKLM][64Bits] -- Breach and Clear Deadline_is1 O42 - Logiciel: Cheat Engine 6.4 - (.Cheat Engine.) [HKLM][64Bits] -- Cheat Engine 6.4_is1 © O42 - Logiciel: Cities Skylines - (...) [HKLM][64Bits] -- Cities Skylines_is1 O42 - Logiciel: Crysis 2 - Maximum Edition - (...) [HKLM][64Bits] -- Crysis 2 - Maximum Edition_is1 O42 - Logiciel: DAEMON Tools Pro - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Pro © O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKLM][64Bits] -- Dropbox © O42 - Logiciel: ESN Sonar - (.ESN Social Software AB.) [HKLM][64Bits] -- ESN Sonar-0.70.4 O42 - Logiciel: Fable Anniversary - (...) [HKLM][64Bits] -- Fable Anniversary_is1 O42 - Logiciel: Foxit Reader - (.Foxit Software Inc..) [HKLM][64Bits] -- Foxit Reader_is1 © O42 - Logiciel: Dark Souls Prepare to Die Edition - (.NAMCO BANDAI Games Europe S.A.S..) [HKLM][64Bits] -- GFWL_{4E4D0FA1-F880-4CCB-999A-501000008200} © O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome © O42 - Logiciel: Grey Goo - (.Релиз от R.G. Steamgames.) [HKLM][64Bits] -- Grey Goo_is1 O42 - Logiciel: Heroes of the Storm - (.Blizzard Entertainment.) [HKLM][64Bits] -- Heroes of the Storm © O42 - Logiciel: Age of Empires III - (.Microsoft Game Studios.) [HKLM][64Bits] -- InstallShield_{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97} © O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager © O42 - Logiciel: K-Lite Codec Pack 10.9.0 Full - (...) [HKLM][64Bits] -- KLiteCodecPack_is1 O42 - Logiciel: LogoMaker 2.0 - (.Studio V5.) [HKLM][64Bits] -- LogoMaker_is1 O42 - Logiciel: Lost Planet Extreme Condition Tradução BR v1.00 - (.Tribo dos Renegados Brasil®.) [HKLM][64Bits] -- Lost Planet Extreme Condition BR O42 - Logiciel: Malwarebytes Anti-Malware versão 2.1.8.1057 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 © O42 - Logiciel: Mozilla Firefox 39.0 (x86 pt-BR) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 39.0 (x86 pt-BR) © O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService © O42 - Logiciel: Neverwinter Nights 2 - Platinum Edition - (...) [HKLM][64Bits] -- Neverwinter Nights 2 - Platinum Edition_is1 O42 - Logiciel: Notepad++ - (.Notepad++ Team.) [HKLM][64Bits] -- Notepad++ © O42 - Logiciel: Opera Stable 27.0.1689.66 - (.Opera Software ASA.) [HKLM][64Bits] -- Opera 27.0.1689.66 © O42 - Logiciel: Opera Stable 29.0.1795.60 - (.Opera Software ASA.) [HKLM][64Bits] -- Opera 29.0.1795.60 © O42 - Logiciel: Opera Stable 31.0.1889.174 - (.Opera Software.) [HKLM][64Bits] -- Opera 31.0.1889.174 © O42 - Logiciel: Ori and the Blind Forest - (...) [HKLM][64Bits] -- Ori and the Blind Forest_is1 O42 - Logiciel: Origin - (.Electronic Arts, Inc..) [HKLM][64Bits] -- Origin © O42 - Logiciel: PhotoScape - (...) [HKLM][64Bits] -- PhotoScape O42 - Logiciel: Pier Solar and the Great Architects HD - (...) [HKLM][64Bits] -- Pier Solar and the Great Architects HD_is1 O42 - Logiciel: PokerStars - (.PokerStars.) [HKLM][64Bits] -- PokerStars O42 - Logiciel: PrivaZer - (.Goversoft LLC.) [HKLM][64Bits] -- PrivaZer © O42 - Logiciel: Project CARS - (.Релиз от R.G. Steamgames.) [HKLM][64Bits] -- Project CARS_is1 O42 - Logiciel: PunkBuster Services - (.Even Balance, Inc..) [HKLM][64Bits] -- PunkBusterSvc © O42 - Logiciel: Revo Uninstaller 1.95 - (.VS Revo Group.) [HKLM][64Bits] -- Revo Uninstaller © O42 - Logiciel: Flame Over - (...) [HKLM][64Bits] -- RmxhbWVPdmVy_is1 O42 - Logiciel: RocketDock 1.3.5 - (.Punk Software.) [HKLM][64Bits] -- RocketDock_is1 © O42 - Logiciel: SpeedFan (remove only) - (...) [HKLM][64Bits] -- SpeedFan O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- Steam © O42 - Logiciel: Bastion - (.Supergiant Games.) [HKLM][64Bits] -- Steam App 107100 O42 - Logiciel: Waves - (.Squid In A Box Ltd.) [HKLM][64Bits] -- Steam App 107600 O42 - Logiciel: Shadowgrounds: Survivor - (.Frozenbyte.) [HKLM][64Bits] -- Steam App 11200 © O42 - Logiciel: Gumboy Tournament - (.CINEMAX, s.r.o..) [HKLM][64Bits] -- Steam App 11230 O42 - Logiciel: Toki Tori 2+ - (.Two Tribes.) [HKLM][64Bits] -- Steam App 201420 O42 - Logiciel: Dota 2 Test - (...) [HKLM][64Bits] -- Steam App 205790 O42 - Logiciel: The Witcher: Enhanced Edition - (.CD PROJEKT RED.) [HKLM][64Bits] -- Steam App 20900 © O42 - Logiciel: The Witcher 2: Assassins of Kings Enhanced Edition - (.CD Projekt RED.) [HKLM][64Bits] -- Steam App 20920 © O42 - Logiciel: Tiny Troopers - (.Kukouri.) [HKLM][64Bits] -- Steam App 216110 O42 - Logiciel: BRINK - (.Splash Damage.) [HKLM][64Bits] -- Steam App 22350 © O42 - Logiciel: DLC Quest - (.Going Loud Studios.) [HKLM][64Bits] -- Steam App 230050 © O42 - Logiciel: Medal of Honor: Airborne - (.EA Los Angeles.) [HKLM][64Bits] -- Steam App 24840 © O42 - Logiciel: Shadowgrounds - (.Frozenbyte.) [HKLM][64Bits] -- Steam App 2500 © O42 - Logiciel: Might & Magic: Duel of Champions - (.BlueByte.) [HKLM][64Bits] -- Steam App 256410 O42 - Logiciel: Nightmares from the Deep: The Cursed Heart - (.Artifex Mundi sp. z o.o..) [HKLM][64Bits] -- Steam App 259740 O42 - Logiciel: Kane & Lynch 2: Dog Days - (.IO Interactive.) [HKLM][64Bits] -- Steam App 28000 © O42 - Logiciel: Clockwork Tales: Of Glass and Ink - (.Artifex Mundi sp. z o.o..) [HKLM][64Bits] -- Steam App 284830 O42 - Logiciel: Total War: SHOGUN 2 - (.The Creative Assembly.) [HKLM][64Bits] -- Steam App 34330 © O42 - Logiciel: Trine - (.Frozenbyte.) [HKLM][64Bits] -- Steam App 35700 © O42 - Logiciel: Defend Your Life - (.Alda Games.) [HKLM][64Bits] -- Steam App 357780 O42 - Logiciel: Medal of Honor(TM) Single Player - (.Electronic Arts.) [HKLM][64Bits] -- Steam App 47790 © O42 - Logiciel: Medal of Honor(TM) Multiplayer - (.Electronic Arts.) [HKLM][64Bits] -- Steam App 47830 © O42 - Logiciel: Might & Magic: Heroes VI - (.Blackhole.) [HKLM][64Bits] -- Steam App 48220 O42 - Logiciel: Dota 2 - (.Valve.) [HKLM][64Bits] -- Steam App 570 © O42 - Logiciel: Lost Planet: Extreme Condition - (.CAPCOM Co., Ltd..) [HKLM][64Bits] -- Steam App 6510 O42 - Logiciel: Commandos: Behind Enemy Lines - (.Pyro Studios.) [HKLM][64Bits] -- Steam App 6800 © O42 - Logiciel: Commandos: Beyond the Call of Duty - (.Pyro Studios.) [HKLM][64Bits] -- Steam App 6810 © O42 - Logiciel: Commandos 2: Men of Courage - (.Pyro Studios.) [HKLM][64Bits] -- Steam App 6830 © O42 - Logiciel: Commandos 3: Destination Berlin - (.Pyro Studios.) [HKLM][64Bits] -- Steam App 6840 © O42 - Logiciel: BioShock 2 - (.2K Marin.) [HKLM][64Bits] -- Steam App 8850 O42 - Logiciel: Hydrophobia: Prophecy - (.Dark Energy Digital Ltd..) [HKLM][64Bits] -- Steam App 92000 O42 - Logiciel: TagScanner 5.1.668 - (.Sergey Serkov.) [HKLM][64Bits] -- TagScanner_is1 O42 - Logiciel: The Banner Saga - (.R.G. Gamblers, Fanfar.) [HKLM][64Bits] -- The Banner Saga_R.G. Gamblers_is1 O42 - Logiciel: TimeShift Tradução BR v1.00 - (.Tribo dos Renegados Brasil®.) [HKLM][64Bits] -- TimeShift 2 BR O42 - Logiciel: TSEV Skyrim LE - (...) [HKLM][64Bits] -- TSEV Skyrim LE_is1 O42 - Logiciel: Resident Evil 6 version 1 - (...) [HKLM][64Bits] -- UmVzaWRlbnQgRXZpbCA2_is1 O42 - Logiciel: Sony Mobile Update Engine - (.Sony Mobile Communications Inc..) [HKLM][64Bits] -- Update Engine © O42 - Logiciel: WARMACHINE: Tactics - (...) [HKLM][64Bits] -- V0FSTUFDSElORVRhY3RpY3M=_is1 O42 - Logiciel: Warlords Battlecry 3 - (.GOG.com.) [HKLM][64Bits] -- Warlords Battlecry 3_is1 © O42 - Logiciel: Xion v1.5 (build 155) - (.r2 Studios.) [HKLM][64Bits] -- Xion O42 - Logiciel: Dropbox Update Helper - (.Dropbox, Inc..) [HKLM][64Bits] -- {099218A5-A723-43DC-8DB5-6173656A1E94} © O42 - Logiciel: Zumas Revenge - (.PopCap Games.) [HKLM][64Bits] -- {0B153CAB-792B-4CA2-B2A5-AB0BBAF2FFA9} © O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {0BE9E708-5DC0-4963-9CFD-0AA519090E79} © O42 - Logiciel: VirtualDJ 8 - (.Atomix Productions.) [HKLM][64Bits] -- {10C4696A-2915-47F2-A14A-78F70DA82E57} © O42 - Logiciel: Catalyst Control Center - Branding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {11087D24-567D-7D88-69C6-D7A08B5F4C47} © O42 - Logiciel: Google Drive - (.Google, Inc..) [HKLM][64Bits] -- {12ADFB82-D5A3-43E4-B2F4-FCD9B690315B} © O42 - Logiciel: TimeShift - (.Sierra Entertainment.) [HKLM][64Bits] -- {1367FA2F-2B3D-430F-872F-588B93420BFC} O42 - Logiciel: Microsoft XNA Framework Redistributable 3.1 - (.Microsoft Corporation.) [HKLM][64Bits] -- {19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20} © O42 - Logiciel: Microsoft XNA Framework Redistributable 2.0 - (.Microsoft Corporation.) [HKLM][64Bits] -- {245F6C7A-0C22-4DE0-8202-2AAA620A1D3A} © O42 - Logiciel: Skype™ 7.0 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7} © O42 - Logiciel: Java 8 Update 45 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218045F0} © O42 - Logiciel: FEAR - (.Vivendi Universal Games, Inc..) [HKLM][64Bits] -- {2B653229-9854-4989-B780-D978F5F13EAB} O42 - Logiciel: Microsoft XNA Framework Redistributable 4.0 - (.Microsoft Corporation.) [HKLM][64Bits] -- {2BFC7AA0-544C-4E3A-8796-67F3BE655BE9} © O42 - Logiciel: Microsoft XNA Framework Redistributable 3.0 - (.Microsoft Corporation.) [HKLM][64Bits] -- {3898934B-05AE-41CD-96BE-70DA9BFBCE1F} © O42 - Logiciel: EA SPORTS™ FIFA 15 - (.Electronic Arts.) [HKLM][64Bits] -- {3D4ADA2B-F028-4307-ADF4-6F9AA44725DA} © O42 - Logiciel: Foxit Cloud - (.Foxit Software Inc..) [HKLM][64Bits] -- {41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1 © O42 - Logiciel: Ultima 8 - (.Electronic Arts.) [HKLM][64Bits] -- {428C6B01-D292-46F9-9321-75668ED17DA2} © O42 - Logiciel: USB Vibration Joystick - (...) [HKLM][64Bits] -- {4999B2F1-3E74-409A-B8B5-E94448AA9EA6} O42 - Logiciel: Microsoft Games for Windows Marketplace - (.Microsoft Corporation.) [HKLM][64Bits] -- {4CB0307C-565E-4441-86BE-0DF2E4FB828C} © O42 - Logiciel: Dark Souls Prepare to Die Edition - (.NAMCO BANDAI Games Europe S.A.S..) [HKLM][64Bits] -- {4E4D0FA1-F880-4CCB-999A-501000008200} © O42 - Logiciel: Plants vs. Zombies™ - (.Electronic Arts, Inc..) [HKLM][64Bits] -- {5E6536C2-E79A-49CF-83EA-817AD81F9FC8} © O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {64467D47-FFE4-4FBC-ABBA-A0DB829A17EB} © O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701} © O42 - Logiciel: Peggle - (.PopCap Games.) [HKLM][64Bits] -- {715AD72D-887A-459E-988B-D4F3E87FA24B} © O42 - Logiciel: Auslogics BoostSpeed 8 - (.Auslogics Labs Pty Ltd.) [HKLM][64Bits] -- {7216871F-869E-437C-B9BF-2A13F2DCE63F}_is1 © O42 - Logiciel: Battlefield 3™ - (.Electronic Arts.) [HKLM][64Bits] -- {76285C16-411A-488A-BCE3-C83CB933D8CF} © O42 - Logiciel: Módulo de Proteção - Banco Santander (Brasil) S.A. - (...) [HKLM][64Bits] -- {83033d93-48d0-48fc-9c5b-82e57e7e0dd6}_is1 O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} © O42 - Logiciel: Command & Conquer™ 3 Kane's Wrath - (.Electronic Arts.) [HKLM][64Bits] -- {8D37C28B-D1A5-41C0-9E5E-80D01355FEBC} © O42 - Logiciel: Auslogics Registry Cleaner - (.Auslogics Labs Pty Ltd.) [HKLM][64Bits] -- {8D8024F1-2945-49A5-9B78-5AB7B11D7942}_is1 © O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} © O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA} © O42 - Logiciel: Galeria de Fotos - (.Microsoft Corporation.) [HKLM][64Bits] -- {9EE1AE8B-4872-41CA-8C9A-C33D899523E0} © O42 - Logiciel: Battlefield 4™ - (.Electronic Arts.) [HKLM][64Bits] -- {ABADE36E-EC37-413B-8179-B432AD3FACE7} © O42 - Logiciel: Adobe Reader XI (11.0.10) - Português - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1046-7B44-AB0000000001} © O42 - Logiciel: Silent Hill Homecoming - (.Konami.) [HKLM][64Bits] -- {AE7D5AF6-E561-4711-BC5A-E2CE7AFD8CA7}_is1 © O42 - Logiciel: Dragon Age: Origins - (.Electronic Arts.) [HKLM][64Bits] -- {AEC81925-9C76-4707-84A9-40696C613ED3} © O42 - Logiciel: Command & Conquer 3 Tiberium Wars™ - (.Electronic Arts.) [HKLM][64Bits] -- {CAC9DCAF-0EA8-442C-97EA-CA6F5755390A} © O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9} © O42 - Logiciel: Intel(R) C++ Redistributables for Windows* on Intel(R) 64 - (.Intel Corporation.) [HKLM][64Bits] -- {D2437C5C-2D8C-40D2-8059-689AD7239FA3} © O42 - Logiciel: Microsoft XNA Framework Redistributable 4.0 Refresh - (.Microsoft Corporation.) [HKLM][64Bits] -- {D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F} © O42 - Logiciel: Empire Earth II - (.Sierra.) [HKLM][64Bits] -- {DF315348-721C-40B8-BAE2-58C6C7D935A2} © O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} © O42 - Logiciel: Wise Care 365 version 1.83 - (.WiseCleaner.com.) [HKLM][64Bits] -- {E864A1C8-EEE1-47D0-A7F8-00CC86D26D5E}_is1 © O42 - Logiciel: Bejeweled® 3 - (.Electronic Arts, Inc..) [HKLM][64Bits] -- {E99C27B2-EB2E-4244-9F5C-A96F55100F0C} © O42 - Logiciel: Sony PC Companion 2.10.275 - (.Sony.) [HKLM][64Bits] -- {F09EF8F2-0976-42C1-8D9D-8DF78337C6E3} © O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} © O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {F2508213-9989-4E85-A078-72BE483917EF} © O42 - Logiciel: EA SPORTS Game Face Browser Plugin 1.8.0.0 - (.Electronic Arts.) [HKCU][64Bits] -- EA SPORTS Game Face Browser Plugin © O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe © O42 - Logiciel: Opera_helper - (.Opera_helper.) [HKCU][64Bits] -- Opera_helper O42 - Logiciel: Songr - (.Xamasoft.) [HKCU][64Bits] -- Songr © O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU][64Bits] -- UnityWebPlayer © O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent O42 - Logiciel: XBMC - (.Team XBMC.) [HKCU][64Bits] -- XBMC ---\\ HKCU & HKLM Software Keys (212) - 17s HKLM\SOFTWARE\Wow6432Node\Adobe HKLM\SOFTWARE\Wow6432Node\AdwCleaner HKLM\SOFTWARE\Wow6432Node\AGEIA Technologies HKLM\SOFTWARE\Wow6432Node\AMD HKLM\SOFTWARE\Wow6432Node\ATI HKLM\SOFTWARE\Wow6432Node\ATI Technologies HKLM\SOFTWARE\Wow6432Node\Aureal HKLM\SOFTWARE\Wow6432Node\Auslogics HKLM\SOFTWARE\Wow6432Node\AVAST Software HKLM\SOFTWARE\Wow6432Node\Baidu Security HKLM\SOFTWARE\Wow6432Node\Battlelog Web Plugins HKLM\SOFTWARE\Wow6432Node\Bethesda Softworks HKLM\SOFTWARE\Wow6432Node\BioWare HKLM\SOFTWARE\Wow6432Node\Blizzard Entertainment HKLM\SOFTWARE\Wow6432Node\cd projekt red HKLM\SOFTWARE\Wow6432Node\Clara =>PUP.Optional.SupTab HKLM\SOFTWARE\Wow6432Node\Corel HKLM\SOFTWARE\Wow6432Node\CounterPath HKLM\SOFTWARE\Wow6432Node\Crytek HKLM\SOFTWARE\Wow6432Node\Cyberlink HKLM\SOFTWARE\Wow6432Node\Daedalic Entertainment GmbH HKLM\SOFTWARE\Wow6432Node\Disc Soft HKLM\SOFTWARE\Wow6432Node\Dropbox HKLM\SOFTWARE\Wow6432Node\DropboxUpdate HKLM\SOFTWARE\Wow6432Node\DT Soft HKLM\SOFTWARE\Wow6432Node\EA Games HKLM\SOFTWARE\Wow6432Node\EA Sports HKLM\SOFTWARE\Wow6432Node\Electronic Arts HKLM\SOFTWARE\Wow6432Node\Eset HKLM\SOFTWARE\Wow6432Node\ESN Launcher HKLM\SOFTWARE\Wow6432Node\ESN Sonar-0.70.4 HKLM\SOFTWARE\Wow6432Node\FFPluginHp =>PUP.Optional.SweetSearch HKLM\SOFTWARE\Wow6432Node\Foxit Software HKLM\SOFTWARE\Wow6432Node\Gabest HKLM\SOFTWARE\Wow6432Node\GameVicio HKLM\SOFTWARE\Wow6432Node\Gearbox Software HKLM\SOFTWARE\Wow6432Node\GNU HKLM\SOFTWARE\Wow6432Node\GOG.com HKLM\SOFTWARE\Wow6432Node\Google HKLM\SOFTWARE\Wow6432Node\HaaliMkx HKLM\SOFTWARE\Wow6432Node\Hewlett-Packard HKLM\SOFTWARE\Wow6432Node\HP HKLM\SOFTWARE\Wow6432Node\IM Providers HKLM\SOFTWARE\Wow6432Node\InstallShield HKLM\SOFTWARE\Wow6432Node\Intel HKLM\SOFTWARE\Wow6432Node\Internet Download Manager HKLM\SOFTWARE\Wow6432Node\IObit HKLM\SOFTWARE\Wow6432Node\istartsurfSoftware =>PUP.Optional.IsStart HKLM\SOFTWARE\Wow6432Node\JavaSoft HKLM\SOFTWARE\Wow6432Node\JreMetrics HKLM\SOFTWARE\Wow6432Node\Khronos HKLM\SOFTWARE\Wow6432Node\KLCodecPack HKLM\SOFTWARE\Wow6432Node\LAV HKLM\SOFTWARE\Wow6432Node\Licenses HKLM\SOFTWARE\Wow6432Node\Macromedia HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware HKLM\SOFTWARE\Wow6432Node\Maxis HKLM\SOFTWARE\Wow6432Node\Monolith Productions HKLM\SOFTWARE\Wow6432Node\Mooii HKLM\SOFTWARE\Wow6432Node\Mozilla HKLM\SOFTWARE\Wow6432Node\mozilla.org HKLM\SOFTWARE\Wow6432Node\MozillaPlugins HKLM\SOFTWARE\Wow6432Node\NAMCO BANDAI Games HKLM\SOFTWARE\Wow6432Node\Notepad++ HKLM\SOFTWARE\Wow6432Node\Nuance HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation HKLM\SOFTWARE\Wow6432Node\Obsidian HKLM\SOFTWARE\Wow6432Node\ODBC HKLM\SOFTWARE\Wow6432Node\OldTimer Tools HKLM\SOFTWARE\Wow6432Node\Opera Software HKLM\SOFTWARE\Wow6432Node\Origin HKLM\SOFTWARE\Wow6432Node\Origin Games HKLM\SOFTWARE\Wow6432Node\Origin Systems HKLM\SOFTWARE\Wow6432Node\PocketSoft HKLM\SOFTWARE\Wow6432Node\PopCap HKLM\SOFTWARE\Wow6432Node\PopCap Games HKLM\SOFTWARE\Wow6432Node\PowerPivot HKLM\SOFTWARE\Wow6432Node\Pyro HKLM\SOFTWARE\Wow6432Node\RealNetworks HKLM\SOFTWARE\Wow6432Node\Remedy Entertainment HKLM\SOFTWARE\Wow6432Node\Sierra HKLM\SOFTWARE\Wow6432Node\Sierra Entertainment HKLM\SOFTWARE\Wow6432Node\Skype HKLM\SOFTWARE\Wow6432Node\Sony HKLM\SOFTWARE\Wow6432Node\Sony Mobile HKLM\SOFTWARE\Wow6432Node\SpeedFan HKLM\SOFTWARE\Wow6432Node\SRS Labs HKLM\SOFTWARE\Wow6432Node\Surreal HKLM\SOFTWARE\Wow6432Node\TrendMicro HKLM\SOFTWARE\Wow6432Node\Ubisoft HKLM\SOFTWARE\Wow6432Node\Valve HKLM\SOFTWARE\Wow6432Node\VirtualDJ HKLM\SOFTWARE\Wow6432Node\Volatile HKLM\SOFTWARE\Wow6432Node\WdsManPro =>PUP.Optional.WdsManPro HKLM\SOFTWARE\Wow6432Node\Windows X HKLM\SOFTWARE\Wow6432Node\WiseCleaner HKLM\SOFTWARE\Wow6432Node\Wow6432Node HKLM\SOFTWARE\Wow6432Node\Even Balance HKLM\SOFTWARE\Wow6432Node\RegisteredApplications HKCU\SOFTWARE\7-Zip HKCU\SOFTWARE\Adobe HKCU\SOFTWARE\Alda Games s.r.o. HKCU\SOFTWARE\antiufo HKCU\SOFTWARE\AppDataLow HKCU\SOFTWARE\ATI HKCU\SOFTWARE\AVAST Software HKCU\SOFTWARE\Baidu Security HKCU\SOFTWARE\Baixaki HKCU\SOFTWARE\Battle.net HKCU\SOFTWARE\BitTorrent HKCU\SOFTWARE\Blizzard Entertainment HKCU\SOFTWARE\BoBrowser =>PUP.Optional.BoBrowser HKCU\SOFTWARE\Bugsplat HKCU\SOFTWARE\BVRP Software HKCU\SOFTWARE\CD Projekt RED HKCU\SOFTWARE\cFos HKCU\SOFTWARE\Cheat Engine HKCU\SOFTWARE\Chromium HKCU\SOFTWARE\CoinisRevShare HKCU\SOFTWARE\Colossal Order HKCU\SOFTWARE\Corel HKCU\SOFTWARE\CyberLink HKCU\SOFTWARE\Daedalic Entertainment GmbH HKCU\SOFTWARE\Dec 16 Productions HKCU\SOFTWARE\Disc Soft HKCU\SOFTWARE\DownloadManager HKCU\SOFTWARE\Dropbox HKCU\SOFTWARE\DropboxUpdate HKCU\SOFTWARE\drpsu HKCU\SOFTWARE\DSS HKCU\SOFTWARE\DT Soft HKCU\SOFTWARE\Electronic Arts HKCU\SOFTWARE\Enlight HKCU\SOFTWARE\Epic Games HKCU\SOFTWARE\ESET HKCU\SOFTWARE\Foxit Software HKCU\SOFTWARE\Gabest HKCU\SOFTWARE\GameSpy HKCU\SOFTWARE\GbAs HKCU\SOFTWARE\GbPlugin HKCU\SOFTWARE\GNU HKCU\SOFTWARE\GOG.com HKCU\SOFTWARE\GoldenGate HKCU\SOFTWARE\Google HKCU\SOFTWARE\Haali HKCU\SOFTWARE\HP HKCU\SOFTWARE\Icaros HKCU\SOFTWARE\IM Providers HKCU\SOFTWARE\JavaSoft HKCU\SOFTWARE\Joint Custody Ltd HKCU\SOFTWARE\Kukouri HKCU\SOFTWARE\Lake HKCU\SOFTWARE\Laughing Jackal Ltd. HKCU\SOFTWARE\Licenses HKCU\SOFTWARE\Link64 HKCU\SOFTWARE\Macromedia HKCU\SOFTWARE\MediaInfo HKCU\SOFTWARE\Mighty Rabbit Studios HKCU\SOFTWARE\Mooii HKCU\SOFTWARE\Mozilla HKCU\SOFTWARE\MozillaPlugins HKCU\SOFTWARE\MPC-HC HKCU\SOFTWARE\Ndemic Creations HKCU\SOFTWARE\Netscape HKCU\SOFTWARE\ODBC HKCU\SOFTWARE\Opera Software HKCU\SOFTWARE\Petroglyph HKCU\SOFTWARE\PinballArcade HKCU\SOFTWARE\Piriform HKCU\SOFTWARE\Pixart HKCU\SOFTWARE\PopCap HKCU\SOFTWARE\PrivaZer HKCU\SOFTWARE\QtProject HKCU\SOFTWARE\Raptr HKCU\SOFTWARE\Razer HKCU\SOFTWARE\RealNetworks HKCU\SOFTWARE\Realtek HKCU\SOFTWARE\RegisteredApplications HKCU\SOFTWARE\Remedy Entertainment HKCU\SOFTWARE\Remedy Entertainment Tools HKCU\SOFTWARE\Revenger inc. HKCU\SOFTWARE\RocketDock HKCU\SOFTWARE\SecuROM HKCU\SOFTWARE\SHINOHARATakayuki HKCU\SOFTWARE\Skype HKCU\SOFTWARE\Sony HKCU\SOFTWARE\SpeedFan HKCU\SOFTWARE\StudioV5 HKCU\SOFTWARE\Swordtales HKCU\SOFTWARE\TCP Optimizer HKCU\SOFTWARE\The Creative Assembly HKCU\SOFTWARE\Tortuga Team =>PUP.Optional.Tortuga HKCU\SOFTWARE\Tribo Gamer HKCU\SOFTWARE\Trolltech HKCU\SOFTWARE\Two Tribes HKCU\SOFTWARE\Ubisoft HKCU\SOFTWARE\Unity HKCU\SOFTWARE\Valve HKCU\SOFTWARE\VB and VBA Program Settings HKCU\SOFTWARE\VirtualDJ HKCU\SOFTWARE\VSRevoGroup HKCU\SOFTWARE\WebApp HKCU\SOFTWARE\WinRAR HKCU\SOFTWARE\WinRAR SFX HKCU\SOFTWARE\WLAN Optimizer .NET HKCU\SOFTWARE\Wow6432Node HKCU\SOFTWARE\XBMC HKCU\SOFTWARE\ZebHelpProcess Helper HKCU\SOFTWARE\AppDataLow\LastScanTime HKCU\SOFTWARE\AppDataLow\Software HKCU\SOFTWARE\AppDataLow\Software\JavaSoft HKCU\SOFTWARE\AppDataLow\Software\Unity ---\\ Conteúdo das pastas Programs (400) - 14s O43 - CFD: 2014/12/26 21:47:43 - [] D -- C:\Program Files (x86)\Adobe O43 - CFD: 2014/12/21 10:38:22 - [] D -- C:\Program Files (x86)\AMD O43 - CFD: 2014/12/16 22:02:52 - [] D -- C:\Program Files (x86)\AMD APP O43 - CFD: 2014/12/21 10:47:59 - [] D -- C:\Program Files (x86)\AMD AVT O43 - CFD: 2015/04/17 19:05:52 - [] D -- C:\Program Files (x86)\Atari O43 - CFD: 2015/07/24 22:01:46 - [] D -- C:\Program Files (x86)\Auslogics O43 - CFD: 2015/07/13 17:16:50 - [] D -- C:\Program Files (x86)\Battle.net O43 - CFD: 2015/07/11 00:16:39 - [] D -- C:\Program Files (x86)\Battlelog Web Plugins O43 - CFD: 2015/08/02 12:06:55 - [] D -- C:\Program Files (x86)\Breach and Clear Deadline O43 - CFD: 2015/02/10 13:12:33 - [] D -- C:\Program Files (x86)\Cheat Engine 6.4 O43 - CFD: 2015/07/05 15:01:44 - [] D -- C:\Program Files (x86)\Cities Skylines O43 - CFD: 2015/05/04 14:58:10 - [] D -- C:\Program Files (x86)\Codemasters O43 - CFD: 2015/09/15 21:41:19 - [] D -- C:\Program Files (x86)\Common Files O43 - CFD: 2015/07/20 23:42:56 - [] D -- C:\Program Files (x86)\Crytek O43 - CFD: 2014/12/26 22:54:35 - [] D -- C:\Program Files (x86)\Daedalic Entertainment GmbH O43 - CFD: 2015/02/02 00:53:59 - [] D -- C:\Program Files (x86)\DAEMON Tools Pro O43 - CFD: 2015/05/22 17:56:17 - [] D -- C:\Program Files (x86)\Diablo III O43 - CFD: 2015/09/05 00:28:06 - [] D -- C:\Program Files (x86)\Dropbox O43 - CFD: 2015/07/08 15:43:50 - [] D -- C:\Program Files (x86)\Fable Anniversary O43 - CFD: 2015/07/31 07:46:27 - [] D -- C:\Program Files (x86)\Flame Over O43 - CFD: 2015/02/07 14:06:56 - [] D -- C:\Program Files (x86)\Foxit Software O43 - CFD: 2015/07/31 07:46:27 - [] D -- C:\Program Files (x86)\GameVicio O43 - CFD: 2015/07/20 22:15:42 - [] D -- C:\Program Files (x86)\GOG.com O43 - CFD: 2015/07/13 15:55:05 - [] D -- C:\Program Files (x86)\Google O43 - CFD: 2015/08/04 19:02:33 - [] D -- C:\Program Files (x86)\Grey Goo O43 - CFD: 2015/07/13 17:29:30 - [] D -- C:\Program Files (x86)\Hearthstone O43 - CFD: 2015/07/13 17:48:10 - [] D -- C:\Program Files (x86)\Heroes of the Storm O43 - CFD: 2015/02/02 21:21:32 - [] D -- C:\Program Files (x86)\HP O43 - CFD: 2015/08/25 13:20:30 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 2015/09/12 22:13:00 - [] D -- C:\Program Files (x86)\Internet Download Manager O43 - CFD: 2015/07/15 15:35:28 - [] D -- C:\Program Files (x86)\Internet Explorer O43 - CFD: 2015/04/18 10:38:30 - [] D -- C:\Program Files (x86)\Java O43 - CFD: 2015/01/11 13:28:32 - [] D -- C:\Program Files (x86)\K-Lite Codec Pack O43 - CFD: 2015/07/01 03:17:46 - [] D -- C:\Program Files (x86)\Malwarebytes Anti-Malware O43 - CFD: 2014/12/17 22:03:40 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services O43 - CFD: 2015/01/03 12:34:11 - [] D -- C:\Program Files (x86)\Microsoft DirectX SDK (June 2010) O43 - CFD: 2015/02/02 01:15:21 - [] D -- C:\Program Files (x86)\Microsoft Games O43 - CFD: 2014/12/16 22:21:28 - [] D -- C:\Program Files (x86)\Microsoft Office O43 - CFD: 2015/08/10 17:50:04 - [] D -- C:\Program Files (x86)\Microsoft OneDrive O43 - CFD: 2015/09/10 02:29:19 - [] D -- C:\Program Files (x86)\Microsoft Silverlight O43 - CFD: 2014/12/17 22:09:05 - [] D -- C:\Program Files (x86)\Microsoft SQL Server O43 - CFD: 2014/12/26 22:19:53 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition O43 - CFD: 2015/04/12 22:25:30 - [] D -- C:\Program Files (x86)\Microsoft XNA O43 - CFD: 2014/12/16 22:22:15 - [] D -- C:\Program Files (x86)\Microsoft.NET O43 - CFD: 2015/08/27 18:51:44 - [] D -- C:\Program Files (x86)\Mozilla Firefox O43 - CFD: 2015/07/15 19:45:39 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service O43 - CFD: 2009/07/14 02:32:38 - [] D -- C:\Program Files (x86)\MSBuild O43 - CFD: 2015/05/12 07:18:01 - [] D -- C:\Program Files (x86)\NAMCO BANDAI Games O43 - CFD: 2015/07/15 00:08:18 - [] D -- C:\Program Files (x86)\Notepad++ O43 - CFD: 2015/01/21 13:48:56 - [] D -- C:\Program Files (x86)\NVIDIA Corporation O43 - CFD: 2015/08/19 21:49:31 - [] D -- C:\Program Files (x86)\Opera O43 - CFD: 2014/12/18 21:57:48 - [] D -- C:\Program Files (x86)\OperaHelper O43 - CFD: 2015/07/05 21:21:31 - [] D -- C:\Program Files (x86)\Ori and the Blind Forest O43 - CFD: 2015/09/06 15:16:59 - [] D -- C:\Program Files (x86)\Origin O43 - CFD: 2015/07/11 19:08:06 - [] D -- C:\Program Files (x86)\Origin Games O43 - CFD: 2015/06/12 23:08:20 - [] D -- C:\Program Files (x86)\PC Blast O43 - CFD: 2015/05/23 15:14:37 - [] D -- C:\Program Files (x86)\PhotoScape O43 - CFD: 2015/07/23 21:32:12 - [] D -- C:\Program Files (x86)\PokerStars O43 - CFD: 2015/04/13 20:09:42 - [] D -- C:\Program Files (x86)\PokerStars.NET O43 - CFD: 2015/07/24 18:54:33 - [] D -- C:\Program Files (x86)\PrivaZer O43 - CFD: 2015/08/04 19:02:33 - [] D -- C:\Program Files (x86)\Project CARS O43 - CFD: 2015/06/08 17:25:22 - [] D -- C:\Program Files (x86)\R.G. Gamblers O43 - CFD: 2015/08/29 19:36:05 - [] D -- C:\Program Files (x86)\r2 Studios O43 - CFD: 2015/07/31 13:41:37 - [] D -- C:\Program Files (x86)\Real O43 - CFD: 2009/07/14 02:32:38 - [] D -- C:\Program Files (x86)\Reference Assemblies O43 - CFD: 2015/03/14 19:18:03 - [] D -- C:\Program Files (x86)\Resident Evil 6 O43 - CFD: 2015/08/08 01:05:10 - [] D -- C:\Program Files (x86)\RocketDock O43 - CFD: 2015/09/16 13:46:25 - [] D -- C:\Program Files (x86)\SFK =>PUP.Optional.MyWebSearch O43 - CFD: 2015/02/01 22:31:57 - [] D -- C:\Program Files (x86)\Sierra O43 - CFD: 2015/06/23 15:50:10 - [] D -- C:\Program Files (x86)\Sierra Entertainment O43 - CFD: 2015/08/03 00:22:24 - [] D -- C:\Program Files (x86)\Silent Hill Homecoming O43 - CFD: 2015/06/11 15:40:40 - [] RD -- C:\Program Files (x86)\Skype O43 - CFD: 2015/02/08 13:30:53 - [] D -- C:\Program Files (x86)\Sony O43 - CFD: 2015/08/17 14:38:00 - [] D -- C:\Program Files (x86)\Sony Mobile O43 - CFD: 2015/09/15 21:44:55 - [] D -- C:\Program Files (x86)\SpeedFan O43 - CFD: 2015/09/16 02:17:58 - [] D -- C:\Program Files (x86)\Steam O43 - CFD: 2015/04/27 22:16:43 - [] D -- C:\Program Files (x86)\Studio V5 O43 - CFD: 2015/07/31 07:46:31 - [] D -- C:\Program Files (x86)\TagScanner O43 - CFD: 2015/02/08 16:04:22 - [] D -- C:\Program Files (x86)\THQ O43 - CFD: 2015/06/16 19:07:20 - [] D -- C:\Program Files (x86)\Tribo Gamer O43 - CFD: 2015/09/14 11:35:11 - [] D -- C:\Program Files (x86)\TSEV Skyrim LE O43 - CFD: 2015/08/25 16:51:47 - [] D -- C:\Program Files (x86)\Ubisoft O43 - CFD: 2015/03/14 10:27:33 - [] D -- C:\Program Files (x86)\USB Vibration O43 - CFD: 2015/07/28 16:40:43 - [] D -- C:\Program Files (x86)\uTorrent O43 - CFD: 2014/12/18 21:02:01 - [] D -- C:\Program Files (x86)\UXTheme Multi-Patcher O43 - CFD: 2015/08/29 11:05:26 - [] D -- C:\Program Files (x86)\VirtualDJ O43 - CFD: 2015/02/19 00:18:37 - [] D -- C:\Program Files (x86)\VS Revo Group O43 - CFD: 2015/07/14 21:09:38 - [] D -- C:\Program Files (x86)\WARMACHINE Tactics O43 - CFD: 2015/05/18 13:02:54 - [] D -- C:\Program Files (x86)\WaterMelon O43 - CFD: 2014/12/17 06:52:50 - [] D -- C:\Program Files (x86)\Windows Defender O43 - CFD: 2015/06/11 01:54:39 - [] D -- C:\Program Files (x86)\Windows Live O43 - CFD: 2014/12/17 06:52:51 - [] D -- C:\Program Files (x86)\Windows Mail O43 - CFD: 2015/06/10 19:02:36 - [] D -- C:\Program Files (x86)\Windows Media Player O43 - CFD: 2009/07/14 02:32:38 - [] D -- C:\Program Files (x86)\Windows NT O43 - CFD: 2014/12/17 06:52:50 - [] D -- C:\Program Files (x86)\Windows Photo Viewer O43 - CFD: 2010/11/21 00:31:38 - [] D -- C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 2014/12/17 06:52:51 - [] D -- C:\Program Files (x86)\Windows Sidebar O43 - CFD: 2015/08/27 18:38:23 - [] D -- C:\Program Files (x86)\Wise O43 - CFD: 2015/07/28 16:40:43 - [] D -- C:\Program Files (x86)\World of Warcraft O43 - CFD: 2015/06/17 14:28:27 - [] D -- C:\Program Files (x86)\XBMC O43 - CFD: 2015/07/07 21:32:10 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip O43 - CFD: 2014/12/17 06:59:11 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 2014/12/16 19:42:10 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 2015/07/17 02:41:27 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center O43 - CFD: 2015/04/17 19:14:59 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Atari O43 - CFD: 2015/07/24 22:01:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics O43 - CFD: 2015/07/31 07:46:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software O43 - CFD: 2015/02/22 20:57:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 3 O43 - CFD: 2015/02/21 09:42:45 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 4 O43 - CFD: 2014/12/18 08:34:47 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bejeweled 3 O43 - CFD: 2015/08/02 12:05:39 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Breach and Clear Deadline O43 - CFD: 2015/07/31 07:46:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner O43 - CFD: 2015/02/10 13:12:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.4 O43 - CFD: 2015/07/24 20:18:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cities Skylines O43 - CFD: 2015/06/11 00:11:08 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X7 (64-bit) O43 - CFD: 2015/06/20 15:33:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID O43 - CFD: 2015/07/20 23:56:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crytek O43 - CFD: 2014/12/26 23:13:27 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Daedalic Entertainment GmbH O43 - CFD: 2015/02/02 00:51:59 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Pro O43 - CFD: 2015/01/21 13:49:59 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon Age Origins O43 - CFD: 2015/09/05 00:27:45 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox O43 - CFD: 2015/07/08 15:43:54 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fable Anniversary O43 - CFD: 2014/12/17 03:37:39 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FIFA 15 O43 - CFD: 2015/05/23 15:59:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader O43 - CFD: 2015/08/14 11:21:46 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games O43 - CFD: 2015/02/08 15:52:21 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameVicio O43 - CFD: 2015/08/14 11:21:48 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com O43 - CFD: 2015/07/31 07:46:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome O43 - CFD: 2015/08/18 17:08:26 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive O43 - CFD: 2015/02/24 16:41:23 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grey Goo O43 - CFD: 2015/04/10 03:53:05 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of the Storm O43 - CFD: 2014/12/26 21:03:23 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP O43 - CFD: 2015/09/12 22:06:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager O43 - CFD: 2015/08/28 15:03:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java O43 - CFD: 2015/01/11 13:28:43 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack O43 - CFD: 2009/07/14 01:57:09 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 2015/04/09 19:13:17 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware O43 - CFD: 2015/08/27 18:47:29 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Max Payne O43 - CFD: 2015/08/27 18:47:29 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAX-FX Tools O43 - CFD: 2015/02/02 01:26:13 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games O43 - CFD: 2015/07/28 16:40:48 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 O43 - CFD: 2015/09/09 18:12:22 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight O43 - CFD: 2015/09/12 18:17:43 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexus Mod Manager O43 - CFD: 2015/04/16 14:26:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++ O43 - CFD: 2015/07/24 20:18:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ori and the Blind Forest O43 - CFD: 2015/06/12 23:08:20 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Blast O43 - CFD: 2014/12/18 08:29:14 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Peggle O43 - CFD: 2015/05/23 15:14:38 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoScape O43 - CFD: 2014/12/18 08:28:35 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plants vs. Zombies O43 - CFD: 2015/07/23 21:32:12 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PokerStars O43 - CFD: 2015/07/16 22:26:04 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Project CARS O43 - CFD: 2015/06/08 17:27:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Gamblers O43 - CFD: 2015/07/31 07:46:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\r2 Studios O43 - CFD: 2015/08/08 01:05:10 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RocketDock O43 - CFD: 2015/02/01 22:32:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sierra O43 - CFD: 2015/02/02 00:15:56 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sierra Entertainment O43 - CFD: 2015/08/02 22:32:28 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Silent Hill Homecoming O43 - CFD: 2015/06/11 15:40:40 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype O43 - CFD: 2015/08/17 14:09:03 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony O43 - CFD: 2015/07/31 13:41:37 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 2015/01/06 22:15:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam O43 - CFD: 2015/04/27 22:17:23 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Studio V5 O43 - CFD: 2011/04/12 10:06:16 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC O43 - CFD: 2015/07/31 07:46:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TagScanner O43 - CFD: 2015/05/15 03:12:41 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tribo dos Renegados O43 - CFD: 2015/06/16 19:07:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tribo Gamer O43 - CFD: 2015/09/12 23:11:15 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TSEV Skyrim LE O43 - CFD: 2015/07/28 16:40:48 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\uTorrent O43 - CFD: 2015/05/18 13:03:41 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WaterMelon O43 - CFD: 2015/06/11 01:37:03 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live O43 - CFD: 2015/07/07 22:51:40 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR O43 - CFD: 2015/08/27 18:38:25 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Care 365 O43 - CFD: 2015/07/05 14:52:20 - [] D -- C:\ProgramData\.mono O43 - CFD: 2014/12/26 21:53:09 - [] D -- C:\ProgramData\Adobe O43 - CFD: 2014/12/16 21:47:08 - [0] SHD -- C:\ProgramData\Ambiente de trabalho O43 - CFD: 2015/07/17 02:40:13 - [] D -- C:\ProgramData\AMD O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Application Data O43 - CFD: 2015/07/17 02:42:16 - [] D -- C:\ProgramData\ATI O43 - CFD: 2015/07/24 21:29:59 - [] D -- C:\ProgramData\Auslogics O43 - CFD: 2014/12/16 22:29:23 - [] D -- C:\ProgramData\AVAST Software O43 - CFD: 2015/09/12 23:08:38 - [] D -- C:\ProgramData\aWdsManProa =>PUP.Optional.WdsManPro O43 - CFD: 2015/06/05 12:10:59 - [] D -- C:\ProgramData\Battle.net O43 - CFD: 2015/06/05 12:11:00 - [] D -- C:\ProgramData\Blizzard Entertainment O43 - CFD: 2014/12/26 21:12:39 - [] D -- C:\ProgramData\boost_interprocess O43 - CFD: 2015/02/25 08:35:28 - [] D -- C:\ProgramData\Canneverbe Limited O43 - CFD: 2015/06/22 11:46:32 - [] D -- C:\ProgramData\Corel O43 - CFD: 2015/06/11 00:11:57 - [0] D -- C:\ProgramData\CorelDRAW Graphics Suite X7 x64 O43 - CFD: 2015/06/08 22:45:42 - [] D -- C:\ProgramData\CounterPath Corporation O43 - CFD: 2015/06/17 15:07:33 - [] D -- C:\ProgramData\CyberLink O43 - CFD: 2014/12/26 22:23:16 - [] D -- C:\ProgramData\DAEMON Tools Pro O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Desktop O43 - CFD: 2014/12/16 21:47:08 - [0] SHD -- C:\ProgramData\Documentos O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Documents O43 - CFD: 2015/08/10 17:38:26 - [] D -- C:\ProgramData\Dropbox O43 - CFD: 2014/12/24 17:59:06 - [] D -- C:\ProgramData\EA Core O43 - CFD: 2014/12/24 17:59:03 - [] D -- C:\ProgramData\EA Logs O43 - CFD: 2014/12/21 14:10:01 - [] D -- C:\ProgramData\Electronic Arts O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Favorites O43 - CFD: 2014/12/16 21:47:08 - [0] SHD -- C:\ProgramData\Favoritos O43 - CFD: 2015/07/13 14:42:35 - [] D -- C:\ProgramData\fhjmbblgehonfckpofldkbjilkibfeaj O43 - CFD: 2015/07/13 13:28:48 - [] D -- C:\ProgramData\GAS Tecnologia O43 - CFD: 2015/02/02 21:21:55 - [] D -- C:\ProgramData\HP O43 - CFD: 2015/09/12 22:18:25 - [0] D -- C:\ProgramData\IDM O43 - CFD: 2015/02/23 03:01:31 - [] D -- C:\ProgramData\install_clap O43 - CFD: 2015/05/09 19:26:44 - [] D -- C:\ProgramData\IObit O43 - CFD: 2015/04/17 23:16:40 - [] D -- C:\ProgramData\IsolatedStorage O43 - CFD: 2015/01/06 21:43:28 - [] D -- C:\ProgramData\Malwarebytes O43 - CFD: 2014/12/16 21:47:08 - [0] SHD -- C:\ProgramData\Menu Iniciar O43 - CFD: 2015/09/15 10:13:34 - [] SD -- C:\ProgramData\Microsoft O43 - CFD: 2015/07/27 11:58:55 - [] D -- C:\ProgramData\Microsoft Help O43 - CFD: 2014/12/26 22:05:18 - [] D -- C:\ProgramData\Microsoft OneDrive O43 - CFD: 2015/06/11 18:46:38 - [] D -- C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS O43 - CFD: 2014/12/16 21:47:08 - [0] SHD -- C:\ProgramData\Modelos O43 - CFD: 2015/02/19 00:50:29 - [] D -- C:\ProgramData\Mozilla O43 - CFD: 2015/04/18 10:40:01 - [] D -- C:\ProgramData\Oracle O43 - CFD: 2015/09/16 07:54:17 - [] D -- C:\ProgramData\Origin O43 - CFD: 2015/08/12 17:26:39 - [] D -- C:\ProgramData\Package Cache O43 - CFD: 2015/02/23 03:04:43 - [] D -- C:\ProgramData\PDVD O43 - CFD: 2015/07/13 00:14:21 - [] D -- C:\ProgramData\PopCap Games O43 - CFD: 2015/07/24 18:54:13 - [] D -- C:\ProgramData\privazer O43 - CFD: 2015/05/21 08:45:31 - [] D -- C:\ProgramData\ProductData O43 - CFD: 2015/07/28 16:40:48 - [] D -- C:\ProgramData\Protexis64 O43 - CFD: 2015/07/31 13:41:58 - [] D -- C:\ProgramData\Real O43 - CFD: 2014/12/17 22:08:42 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft O43 - CFD: 2015/06/11 15:40:46 - [] D -- C:\ProgramData\Skype O43 - CFD: 2015/04/13 00:17:34 - [] D -- C:\ProgramData\sls O43 - CFD: 2015/02/08 13:30:53 - [] D -- C:\ProgramData\Sony O43 - CFD: 2015/01/29 17:19:28 - [] D -- C:\ProgramData\Sony Corporation O43 - CFD: 2015/03/13 01:10:40 - [] D -- C:\ProgramData\Sony Mobile O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Start Menu O43 - CFD: 2015/05/14 15:14:20 - [] D -- C:\ProgramData\Steam O43 - CFD: 2014/12/28 00:39:09 - [] D -- C:\ProgramData\Sun O43 - CFD: 2015/06/17 15:08:09 - [] D -- C:\ProgramData\SUPPORTDIR O43 - CFD: 2015/02/23 03:02:46 - [0] AD -- C:\ProgramData\TEMP O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Templates O43 - CFD: 2015/09/10 17:15:06 - [] D -- C:\ProgramData\{a9c1dc32-fb94-9b1d-a9c1-1dc32fb970cb} O43 - CFD: 2015/04/30 03:10:01 - [] D -- C:\ProgramData\{ACBCD40A-42A8-4FF9-BD42-ABCD14998CBA} =>PUP.Optional.BundleInstaller O43 - CFD: 2015/04/18 08:28:19 - [0] D -- C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} O43 - CFD: 2015/04/30 03:10:02 - [] D -- C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690} O43 - CFD: 2014/12/26 21:47:49 - [] D -- C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 2014/12/16 22:02:45 - [] D -- C:\Program Files (x86)\Common Files\ATI Technologies O43 - CFD: 2015/07/11 19:21:43 - [] HD -- C:\Program Files (x86)\Common Files\EAInstaller O43 - CFD: 2015/02/02 01:08:33 - [] D -- C:\Program Files (x86)\Common Files\InstallShield O43 - CFD: 2015/06/10 14:36:48 - [] D -- C:\Program Files (x86)\Common Files\Intel O43 - CFD: 2015/04/18 08:28:15 - [] D -- C:\Program Files (x86)\Common Files\IObit O43 - CFD: 2015/04/18 10:40:07 - [] D -- C:\Program Files (x86)\Common Files\Java O43 - CFD: 2015/06/11 00:03:58 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared O43 - CFD: 2009/07/14 00:20:08 - [] D -- C:\Program Files (x86)\Common Files\Services O43 - CFD: 2015/06/11 15:40:40 - [] D -- C:\Program Files (x86)\Common Files\Skype O43 - CFD: 2015/02/07 14:38:49 - [] D -- C:\Program Files (x86)\Common Files\Sony Shared O43 - CFD: 2009/07/14 00:20:08 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines O43 - CFD: 2015/08/26 13:01:03 - [] D -- C:\Program Files (x86)\Common Files\Steam O43 - CFD: 2014/12/17 06:52:50 - [] D -- C:\Program Files (x86)\Common Files\System O43 - CFD: 2014/12/26 22:02:48 - [] D -- C:\Program Files (x86)\Common Files\Windows Live O43 - CFD: 2015/07/05 14:52:20 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\.mono O43 - CFD: 2015/02/07 13:47:36 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Adobe O43 - CFD: 2014/12/21 14:14:21 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\AMD O43 - CFD: 2015/04/18 08:28:32 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Apple Computer O43 - CFD: 2015/05/17 20:31:53 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Artifex Mundi O43 - CFD: 2015/09/16 02:17:51 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\ArtifexMundi O43 - CFD: 2014/12/24 12:57:29 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\ATI O43 - CFD: 2015/07/23 13:09:29 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Audacity O43 - CFD: 2014/12/16 23:10:23 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\AVAST Software O43 - CFD: 2015/07/28 16:40:51 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Battle.net O43 - CFD: 2015/02/25 08:35:19 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Canneverbe Limited O43 - CFD: 2015/07/05 14:52:18 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Colossal Order O43 - CFD: 2015/05/16 15:55:42 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Command & Conquer 3 Kane's Wrath O43 - CFD: 2015/01/21 20:08:03 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Command & Conquer 3 Tiberium Wars O43 - CFD: 2015/06/11 00:12:40 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Corel O43 - CFD: 2015/02/23 03:14:00 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\CyberLink O43 - CFD: 2015/09/12 23:05:55 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\DAEMON Tools Pro O43 - CFD: 2015/01/03 11:47:07 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\DarkSoulsII O43 - CFD: 2015/09/16 13:44:02 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\DMCache O43 - CFD: 2015/08/10 17:44:07 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Dropbox O43 - CFD: 2015/05/23 15:38:47 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\DRPSu O43 - CFD: 2015/04/08 20:13:18 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Electronic Arts O43 - CFD: 2015/08/04 19:02:35 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Fine_Sweeper_v17 O43 - CFD: 2015/02/08 17:29:48 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Foxit Software O43 - CFD: 2014/12/18 21:57:55 - [] HD -- C:\Users\Murilo Costa\AppData\Roaming\GoldenGate O43 - CFD: 2015/02/19 00:54:00 - [0] D -- C:\Users\Murilo Costa\AppData\Roaming\idesktop O43 - CFD: 2015/09/12 23:01:12 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\IDM O43 - CFD: 2015/02/02 00:12:42 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\InstallShield O43 - CFD: 2015/04/18 10:44:50 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\IObit O43 - CFD: 2015/04/17 23:16:40 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\IsolatedStorage O43 - CFD: 2015/02/11 17:04:38 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\library_dir O43 - CFD: 2015/04/27 22:17:56 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\LogoMaker O43 - CFD: 2014/12/16 23:31:41 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Macromedia O43 - CFD: 2015/09/03 13:17:39 - [] SD -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft O43 - CFD: 2015/04/16 15:32:56 - [0] D -- C:\Users\Murilo Costa\AppData\Roaming\Might & Magic Heroes VI O43 - CFD: 2015/05/23 11:26:47 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Mikrotik O43 - CFD: 2015/02/19 00:51:36 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Mozilla O43 - CFD: 2015/07/24 21:36:03 - [0] D -- C:\Users\Murilo Costa\AppData\Roaming\MPC-HC O43 - CFD: 2015/07/31 07:46:09 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Notepad++ O43 - CFD: 2014/12/18 22:00:46 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Opera Software O43 - CFD: 2015/06/01 22:07:12 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Origin O43 - CFD: 2015/07/31 15:04:50 - [0] D -- C:\Users\Murilo Costa\AppData\Roaming\PhotoScape O43 - CFD: 2015/05/03 16:08:37 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\ProductData O43 - CFD: 2015/07/31 19:50:13 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\r2 Studios O43 - CFD: 2015/05/13 18:48:48 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Raptr O43 - CFD: 2015/07/31 13:42:21 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Real O43 - CFD: 2015/01/21 13:45:00 - [] RHD -- C:\Users\Murilo Costa\AppData\Roaming\SecuROM O43 - CFD: 2015/02/02 12:28:07 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Sierra O43 - CFD: 2015/09/09 18:21:30 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Skype O43 - CFD: 2015/01/29 17:49:35 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Sony O43 - CFD: 2015/07/05 14:52:15 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Steam O43 - CFD: 2015/07/31 07:46:34 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\TagScanner O43 - CFD: 2015/06/08 17:27:52 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\The Banner Saga O43 - CFD: 2015/02/10 13:23:21 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\The Creative Assembly O43 - CFD: 2015/06/08 17:31:16 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\TheBannerSaga O43 - CFD: 2015/05/09 04:45:05 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Trine1 O43 - CFD: 2015/09/10 17:31:33 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\uTorrent O43 - CFD: 2015/07/24 20:51:57 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Winamp O43 - CFD: 2015/01/21 10:10:29 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Windows Live Writer O43 - CFD: 2014/12/24 15:25:42 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\WinRAR O43 - CFD: 2015/09/16 14:01:15 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Wise Care 365 O43 - CFD: 2015/09/14 23:46:30 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\XBMC O43 - CFD: 2015/09/16 15:23:33 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\ZHP O43 - CFD: 2015/05/21 08:42:27 - [] D -- C:\Users\Murilo Costa\AppData\Local\Adobe O43 - CFD: 2014/12/16 22:10:31 - [] D -- C:\Users\Murilo Costa\AppData\Local\AMD O43 - CFD: 2014/12/16 21:47:37 - [0] SHD -- C:\Users\Murilo Costa\AppData\Local\Application Data O43 - CFD: 2014/12/16 22:10:22 - [] D -- C:\Users\Murilo Costa\AppData\Local\ATI O43 - CFD: 2015/08/27 01:22:16 - [] D -- C:\Users\Murilo Costa\AppData\Local\Battle.net O43 - CFD: 2015/03/29 21:12:37 - [] D -- C:\Users\Murilo Costa\AppData\Local\BigHugeEngine O43 - CFD: 2015/06/11 18:52:05 - [] D -- C:\Users\Murilo Costa\AppData\Local\Black_Tree_Gaming O43 - CFD: 2015/01/28 11:08:54 - [] D -- C:\Users\Murilo Costa\AppData\Local\Blizzard O43 - CFD: 2014/12/16 23:34:14 - [] D -- C:\Users\Murilo Costa\AppData\Local\Blizzard Entertainment O43 - CFD: 2015/05/18 16:27:11 - [] D -- C:\Users\Murilo Costa\AppData\Local\CAPCOM O43 - CFD: 2015/07/23 14:14:51 - [] D -- C:\Users\Murilo Costa\AppData\Local\CEF O43 - CFD: 2015/02/10 13:24:09 - [] D -- C:\Users\Murilo Costa\AppData\Local\Chromium O43 - CFD: 2015/07/05 14:52:18 - [] D -- C:\Users\Murilo Costa\AppData\Local\Colossal Order O43 - CFD: 2015/06/08 22:45:24 - [] D -- C:\Users\Murilo Costa\AppData\Local\CounterPath O43 - CFD: 2015/06/08 22:45:25 - [] D -- C:\Users\Murilo Costa\AppData\Local\CounterPath Corporation O43 - CFD: 2015/06/17 15:07:11 - [] D -- C:\Users\Murilo Costa\AppData\Local\CyberLink O43 - CFD: 2014/12/26 23:15:45 - [] D -- C:\Users\Murilo Costa\AppData\Local\Daedalic Entertainment GmbH O43 - CFD: 2015/09/16 10:18:26 - [0] D -- C:\Users\Murilo Costa\AppData\Local\Diagnostics O43 - CFD: 2015/09/10 02:31:56 - [] D -- C:\Users\Murilo Costa\AppData\Local\Dropbox O43 - CFD: 2015/07/03 13:42:18 - [0] SHD -- C:\Users\Murilo Costa\AppData\Local\EmieBrowserModeList O43 - CFD: 2015/07/03 13:42:18 - [0] SHD -- C:\Users\Murilo Costa\AppData\Local\EmieSiteList O43 - CFD: 2015/07/03 13:42:18 - [0] SHD -- C:\Users\Murilo Costa\AppData\Local\EmieUserList O43 - CFD: 2015/06/17 23:20:03 - [] D -- C:\Users\Murilo Costa\AppData\Local\ESN O43 - CFD: 2015/04/17 23:16:46 - [] D -- C:\Users\Murilo Costa\AppData\Local\FileViewPro O43 - CFD: 2015/03/18 22:07:21 - [] D -- C:\Users\Murilo Costa\AppData\Local\Focus Home Interactive O43 - CFD: 2015/06/05 12:11:06 - [] D -- C:\Users\Murilo Costa\AppData\Local\GAS Tecnologia O43 - CFD: 2015/09/14 23:21:35 - [] D -- C:\Users\Murilo Costa\AppData\Local\Google O43 - CFD: 2015/09/05 01:17:24 - [] D -- C:\Users\Murilo Costa\AppData\Local\GWX O43 - CFD: 2015/06/28 18:36:09 - [] D -- C:\Users\Murilo Costa\AppData\Local\Hero_Siege O43 - CFD: 2014/12/16 21:47:37 - [0] SHD -- C:\Users\Murilo Costa\AppData\Local\Histórico O43 - CFD: 2014/12/26 21:03:28 - [] D -- C:\Users\Murilo Costa\AppData\Local\HP O43 - CFD: 2015/07/23 13:19:54 - [0] D -- C:\Users\Murilo Costa\AppData\Local\Ideia2001Informatica O43 - CFD: 2014/12/26 22:51:41 - [] D -- C:\Users\Murilo Costa\AppData\Local\Installer =>PUP.Optional.InstallPedia O43 - CFD: 2015/04/03 23:20:24 - [] D -- C:\Users\Murilo Costa\AppData\Local\LumaEmu_SteamCloud O43 - CFD: 2015/02/19 00:56:52 - [] D -- C:\Users\Murilo Costa\AppData\Local\Macromedia O43 - CFD: 2015/09/09 18:11:59 - [] D -- C:\Users\Murilo Costa\AppData\Local\Microsoft O43 - CFD: 2015/05/02 02:37:03 - [] D -- C:\Users\Murilo Costa\AppData\Local\Microsoft Games O43 - CFD: 2015/02/02 19:38:10 - [] D -- C:\Users\Murilo Costa\AppData\Local\Microsoft Help O43 - CFD: 2015/02/19 00:51:38 - [] D -- C:\Users\Murilo Costa\AppData\Local\Mozilla O43 - CFD: 2015/01/01 19:16:53 - [] D -- C:\Users\Murilo Costa\AppData\Local\NBGI O43 - CFD: 2015/01/31 18:26:10 - [] D -- C:\Users\Murilo Costa\AppData\Local\Ndemic Creations O43 - CFD: 2014/12/18 22:00:46 - [] D -- C:\Users\Murilo Costa\AppData\Local\Opera Software O43 - CFD: 2015/07/05 21:36:31 - [] D -- C:\Users\Murilo Costa\AppData\Local\Ori and the Blind Forest O43 - CFD: 2014/12/17 00:06:49 - [] D -- C:\Users\Murilo Costa\AppData\Local\Origin O43 - CFD: 2015/08/07 02:41:01 - [] D -- C:\Users\Murilo Costa\AppData\Local\PokerStars O43 - CFD: 2015/04/13 20:09:29 - [] D -- C:\Users\Murilo Costa\AppData\Local\PokerStars.NET O43 - CFD: 2015/03/21 12:04:38 - [] D -- C:\Users\Murilo Costa\AppData\Local\PopCap Games O43 - CFD: 2015/07/31 07:46:34 - [] D -- C:\Users\Murilo Costa\AppData\Local\PrivaZer O43 - CFD: 2014/12/24 09:21:29 - [] D -- C:\Users\Murilo Costa\AppData\Local\Programs O43 - CFD: 2015/02/19 05:40:33 - [] D -- C:\Users\Murilo Costa\AppData\Local\PunkBuster O43 - CFD: 2015/07/30 17:22:30 - [] D -- C:\Users\Murilo Costa\AppData\Local\Real O43 - CFD: 2015/02/15 14:36:33 - [] D -- C:\Users\Murilo Costa\AppData\Local\Realmware O43 - CFD: 2015/05/18 12:45:31 - [] D -- C:\Users\Murilo Costa\AppData\Local\SKIDROW O43 - CFD: 2015/01/15 20:10:32 - [] D -- C:\Users\Murilo Costa\AppData\Local\Skype O43 - CFD: 2015/06/11 19:30:11 - [] D -- C:\Users\Murilo Costa\AppData\Local\Skyrim O43 - CFD: 2015/07/30 18:01:56 - [] D -- C:\Users\Murilo Costa\AppData\Local\Songr O43 - CFD: 2015/02/07 14:36:16 - [] D -- C:\Users\Murilo Costa\AppData\Local\Sony O43 - CFD: 2015/02/19 22:29:30 - [] D -- C:\Users\Murilo Costa\AppData\Local\Steam O43 - CFD: 2015/09/16 15:23:53 - [] D -- C:\Users\Murilo Costa\AppData\Local\Temp O43 - CFD: 2014/12/16 21:47:37 - [0] SHD -- C:\Users\Murilo Costa\AppData\Local\Temporary Internet Files O43 - CFD: 2014/12/29 21:34:33 - [] D -- C:\Users\Murilo Costa\AppData\Local\The Witcher 2 O43 - CFD: 2015/05/18 16:33:21 - [] D -- C:\Users\Murilo Costa\AppData\Local\Two Tribes O43 - CFD: 2015/01/03 20:50:55 - [0] D -- C:\Users\Murilo Costa\AppData\Local\Ubisoft Game Launcher O43 - CFD: 2015/04/08 19:26:17 - [] D -- C:\Users\Murilo Costa\AppData\Local\Unity O43 - CFD: 2015/02/08 15:20:13 - [] D -- C:\Users\Murilo Costa\AppData\Local\VirtualStore O43 - CFD: 2015/01/20 22:41:28 - [0] D -- C:\Users\Murilo Costa\AppData\Local\Warface O43 - CFD: 2015/07/14 23:35:52 - [] D -- C:\Users\Murilo Costa\AppData\Local\WarmachineGame O43 - CFD: 2015/06/11 01:45:33 - [] D -- C:\Users\Murilo Costa\AppData\Local\Windows Live O43 - CFD: 2014/12/26 22:24:47 - [] D -- C:\Users\Murilo Costa\AppData\Local\Windows Live Writer O43 - CFD: 2009/07/14 01:54:32 - [] RD -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 2015/03/16 13:24:00 - [] RD -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 2015/08/21 17:05:33 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games O43 - CFD: 2015/09/10 17:30:58 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameVicio O43 - CFD: 2015/09/12 22:06:55 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager O43 - CFD: 2009/07/14 01:49:38 - [] RD -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 2015/07/24 18:54:15 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PrivaZer O43 - CFD: 2015/02/19 00:18:39 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller O43 - CFD: 2015/07/31 13:48:56 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan O43 - CFD: 2015/09/10 02:32:59 - [] RD -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 2015/09/12 23:03:16 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker O43 - CFD: 2015/08/28 15:03:55 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ O43 - CFD: 2015/07/07 22:51:40 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR O43 - CFD: 2015/06/17 14:28:27 - [] D -- C:\Users\Murilo Costa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\XBMC ---\\ Enumeração das chaves StartupReg (22) - 1s O53 - SMSR:HKLM\...\startupreg\Auslogics BoostSpeed BoostSpeed [Key] . (.Auslogics - BoostSpeed.) -- C:\Program Files (x86)\Auslogics\BoostSpeed\BoostSpeed.exe © O53 - SMSR:HKLM\...\startupreg\BingSvc [Key] . (.© 2015 Microsoft Corporation - Microsoft Bing Service.) -- C:\Users\Murilo Costa\AppData\Local\Microsoft\BingSvc\BingSvc.exe © O53 - SMSR:HKLM\...\startupreg\CCleaner Monitoring [Key] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe © O53 - SMSR:HKLM\...\startupreg\DAEMON Tools Pro Agent [Key] . (.Disc Soft Ltd - DAEMON Tools Pro Agent.) -- C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe © O53 - SMSR:HKLM\...\startupreg\DarkDumpReport [Key] . (...) -- C:\ProgramData O53 - SMSR:HKLM\...\startupreg\Dropbox [Key] . (.Dropbox, Inc. - Dropbox.) -- C:\Program Files (x86)\Dropbox\Client\Dropbox.exe © O53 - SMSR:HKLM\...\startupreg\FlashPlayerUpdate [Key] . (...) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_17_0_0_190_Plugin.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\GoogleChromeAutoLaunch_22D77B59BEE56275FFB286635C27855A [Key] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe © O53 - SMSR:HKLM\...\startupreg\GoogleDriveSync [Key] . (.Google - Google Drive.) -- C:\Program Files (x86)\Google\Drive\googledrivesync.exe © O53 - SMSR:HKLM\...\startupreg\MouseDriver [Key] . (...) -- TiltWheelMouse.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\MyWebFace EPM Support [Key] . (...) -- C:\PROGRA~2\MYWEBF~1\bar\1.bin\5amedint.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\Raptr [Key] . (...) -- C:\Program Files (x86)\Raptr\raptrstub.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\RTHDVCPL [Key] . (.Realtek Semiconductor - Gerenciador de áudio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe © O53 - SMSR:HKLM\...\startupreg\SkyDrive [Key] . (...) -- C:\Users\Murilo Costa\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\Skype [Key] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe © O53 - SMSR:HKLM\...\startupreg\Sony PC Companion [Key] . (.Sony - Sony PC Companion.) -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe © O53 - SMSR:HKLM\...\startupreg\Spotify [Key] . (...) -- C:\Users\Murilo Costa\AppData\Roaming\Spotify\Spotify.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\Spotify Web Helper [Key] . (...) -- C:\Users\Murilo Costa\AppData\Roaming\Spotify\SpotifyWebHelper.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\StartCCC [Key] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe © O53 - SMSR:HKLM\...\startupreg\uTorrent [Key] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Murilo Costa\AppData\Roaming\uTorrent\uTorrent.exe O53 - SMSR:HKLM\...\startupreg\UXTheme Launcher [Key] . (.Windows X - UXTheme - Engine Launcher.) -- C:\Program Files (x86)\UXTheme Multi-Patcher\themeengine.exe © O53 - SMSR:HKLM\...\startupreg\WLAN Optimizer [Key] . (...) -- C:\Users\Murilo Costa\Documents\programas\wlann\WLAN Optimizer_Acelerar_Wifi\WLAN Optimizer\WLAN Optimizer.exe (.not file.) ---\\ Lista dos drivers do sistema (73) - 6s O58 - SDL:2015/01/07 20:35:16 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\6C1D4145.sys [129752] © O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] © O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] © O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] © O58 - SDL:2009/07/13 22:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] © O58 - SDL:2015/06/22 23:05:56 A . (.Advanced Micro Devices - AMD ACP Binaries.) -- C:\Windows\System32\drivers\amdacpksd.sys [297672] © O58 - SDL:2015/04/18 10:54:56 A . (.Advanced Micro Devices Inc. - AMD miniIDE Driver.) -- C:\Windows\System32\drivers\amdide64.sys [11944] © O58 - SDL:2010/02/18 08:18:24 A . (.Advanced Micro Devices - AMD IO Driver.) -- C:\Windows\System32\drivers\amdiox64.sys [46136] © O58 - SDL:2013/01/01 19:47:03 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904] © O58 - SDL:2009/07/13 22:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] © O58 - SDL:2013/01/01 19:47:03 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008] © O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] © O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] © O58 - SDL:2015/04/18 10:51:13 A . (. - ATK0110 ACPI Utility.) -- C:\Windows\System32\drivers\ASACPI.sys [15416] O58 - SDL:2015/07/28 16:49:33 A . (.AVAST Software - avast! HWID.) -- C:\Windows\System32\drivers\aswHwid.sys [28656] © O58 - SDL:2015/07/28 16:49:33 A . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\drivers\aswMonFlt.sys [90968] © O58 - SDL:2015/07/28 16:49:33 A . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\Windows\System32\drivers\aswRdr2.sys [93528] © O58 - SDL:2015/07/28 16:49:34 A . (.AVAST Software - avast! Revert.) -- C:\Windows\System32\drivers\aswRvrt.sys [65224] © O58 - SDL:2015/08/15 23:21:29 A . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\drivers\aswSnx.sys [1048344] © O58 - SDL:2015/07/28 16:49:34 A . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\drivers\aswSP.sys [447944] © O58 - SDL:2015/07/28 16:49:34 A . (.AVAST Software - Stream Filter.) -- C:\Windows\System32\drivers\aswStm.sys [150672] © O58 - SDL:2015/07/28 16:49:34 A . (.AVAST Software - avast! VM Monitor.) -- C:\Windows\System32\drivers\aswVmm.sys [274808] © O58 - SDL:2015/05/20 15:00:24 A . (.Advanced Micro Devices - AMD High Definition Audio Function Driver.) -- C:\Windows\System32\drivers\AtihdW76.sys [94720] © O58 - SDL:2015/06/22 23:03:38 A . (.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\System32\drivers\atikmdag.sys [21612032] © O58 - SDL:2015/06/22 22:10:50 A . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\Windows\System32\drivers\atikmpag.sys [663552] © O58 - SDL:2009/06/10 17:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] © O58 - SDL:2014/12/08 20:09:44 A . (.Windows (R) Win 7 DDK provider - NetFilter SDK WFP Driver (WPP).) -- C:\Windows\System32\drivers\brfilterdrv.sys [51520] © O58 - SDL:2009/06/10 17:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] © O58 - SDL:2009/06/10 17:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] © O58 - SDL:2009/07/13 22:19:07 A . (.Brother Industries Ltd. - Brother Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] © O58 - SDL:2009/06/10 17:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] © O58 - SDL:2009/06/10 17:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] © O58 - SDL:2009/06/10 17:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] © O58 - SDL:2009/06/10 17:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] © O58 - SDL:2009/07/13 22:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] © O58 - SDL:2015/02/02 00:51:55 A . (.Disc Soft Ltd - DAEMON Tools Virtual SCSI Bus Driver.) -- C:\Windows\System32\drivers\dtscsibus.sys [29864] © O58 - SDL:2009/07/13 22:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] © O58 - SDL:2015/09/16 04:30:27 A . (...) -- C:\Windows\System32\drivers\EsgScanner.sys [22704] =>.Superfluous.SpyHunter O58 - SDL:2009/06/10 17:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] © O58 - SDL:2015/03/13 01:11:37 A . (.Sony Mobile Communications - SOMC USB Flash Driver Filter.) -- C:\Windows\System32\drivers\ggflt.sys [16088] O58 - SDL:2015/03/13 01:11:37 A . (.Sony Mobile Communications - SOMC USB Flash Driver.) -- C:\Windows\System32\drivers\ggsomc.sys [30424] O58 - SDL:2009/06/10 17:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] © O58 - SDL:2010/11/21 00:23:47 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720] © O58 - SDL:2013/01/01 19:47:03 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496] © O58 - SDL:2015/06/11 23:00:58 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\drivers\idmwfp.sys [197616] © O58 - SDL:2009/07/13 22:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] © O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] © O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] © O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] © O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] © O58 - SDL:2015/06/18 08:41:40 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [25816] © O58 - SDL:2015/06/18 08:41:44 A . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\drivers\mbamchameleon.sys [109272] © O58 - SDL:2015/09/16 13:33:45 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [113880] © O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] © O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] © O58 - SDL:2015/06/18 08:41:56 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\drivers\mwac.sys [63704] © O58 - SDL:2009/07/13 22:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] © O58 - SDL:2013/01/01 19:47:03 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352] © O58 - SDL:2013/01/01 19:47:03 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272] © O58 - SDL:2009/07/13 22:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] © O58 - SDL:2009/07/13 22:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] © O58 - SDL:2015/04/18 11:56:43 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Dri.) -- C:\Windows\System32\drivers\Rt64win7.sys [977624] © O58 - SDL:2015/05/12 14:14:00 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [4460760] © O58 - SDL:2009/06/10 17:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] © O58 - SDL:2009/07/13 22:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] © O58 - SDL:2009/07/13 22:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] © O58 - SDL:2014/12/26 22:24:29 A . (.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) -- C:\Windows\System32\drivers\sptd.sys [564824] © O58 - SDL:2014/12/08 19:33:36 A . (.Windows (R) Win 7 DDK provider - NetFilter SDK WFP Driver (WPP).) -- C:\Windows\System32\drivers\ssfilterdrv.sys [51520] © O58 - SDL:2015/04/18 12:03:00 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ve.) -- C:\Windows\System32\drivers\ssudbus.sys [103448] © O58 - SDL:2009/07/13 22:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] © O58 - SDL:2012/12/19 07:42:10 A . (...) -- C:\Windows\System32\drivers\t_mouse.sys [6144] O58 - SDL:2009/07/13 22:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] © O58 - SDL:2009/07/13 22:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] © ---\\ Últimos ficheiros alterados ou criados (Utilizador) (9) - 14s O61 - LFC: 2015/09/12 23:16:38 A . (..) -- C:\Users\Murilo Costa\Downloads\Programs\skse_1_07_03_installer.exe [362812] O61 - LFC: 2015/09/16 04:29:23 A . (.Enigma Software Group USA, LLC..) -- C:\Users\Murilo Costa\Downloads\Programs\SpyHunter-Installer.exe [3237248] =>.Superfluous.SpyHunter O61 - LFC: 2015/09/12 23:00:46 A . (..) -- C:\Users\Murilo Costa\Downloads\Programs\Unlocker1.9.2.exe [402911] O61 - LFC: 2015/09/15 20:07:10 A . (..) -- C:\Users\Murilo Costa\Downloads\Programs\winbox.exe [114176] O61 - LFC: 2015/09/16 09:19:55 A . (..) -- C:\Users\Murilo Costa\Documents\FIFA 15\instance0\replay0.bin [536870912] O61 - LFC: 2015/09/09 17:44:15 A . (..) -- C:\Users\Murilo Costa\AppData\Local\SKIDROW\238260\Stats.bin [4] O61 - LFC: 2015/09/09 18:12:00 A . (..) -- C:\Users\Murilo Costa\AppData\Local\Microsoft\DefaultSetup\sqlite3.dll [362029] O61 - LFC: 2015/09/16 14:47:55 A . (..) -- C:\Users\Murilo Costa\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [674082] O61 - LFC: 2015/09/16 14:50:07 A . (..) -- C:\Users\Murilo Costa\AppData\Local\Google\Chrome\User Data\nacl_validation_cache.bin [164] ---\\ Associações Shell Spawning (10) - 0s O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe © O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Iniciador do snap-in de 'Visualizar eventos.) -- C:\Windows\System32\eventvwr.exe © O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- c:\program files\internet explorer\iexplore.exe © O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe © O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Editor do Registro.) -- C:\Windows\regedit.exe © O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S ---\\ Menu de inicialização Internet (20) - 0s O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Users\Murilo Costa\AppData\Local\BoBrowser\Application\bobrowser.exe =>PUP.Optional.BoBrowser O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe http://www.istartsurf.com/ © O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.istartsurf.com/ © O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files (x86)\Internet Explorer\iexplore.ex http://www.istartsurf.com/ =>PUP.Optional.IsStart O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\Launcher.exe http://www.istartsurf.com/ © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Users\Murilo Costa\AppData\Local\BoBrowser\Application\bobrowser.exe (.not file.) =>PUP.Optional.BoBrowser O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitário de Inicialização por Usuário do.) -- C:\Windows\System32\ie4uinit.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Users\Murilo Costa\AppData\Local\BoBrowser\Application\bobrowser.exe (.not file.) =>PUP.Optional.BoBrowser O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitário de Inicialização por Usuário do.) -- C:\Windows\System32\ie4uinit.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Users\Murilo Costa\AppData\Local\BoBrowser\Application\bobrowser.exe (.not file.) =>PUP.Optional.BoBrowser O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitário de Inicialização por Usuário do.) -- C:\Windows\System32\ie4uinit.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe © ---\\ Pesquisa de infeção nos navegadores da Internet (22) - 7s O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("browser.search.searchengine.alias", "istartsurf"); =>PUP.Optional.IsStart O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("browser.search.searchengine.desc", "this is my first firefox searchEngine"); =>PUP.Optional.SearchEngine O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("browser.search.searchengine.iconURL", "http://www.istartsurf.com/favicon.ico"); =>PUP.Optional.IsStart O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("browser.search.searchengine.name", "istartsurf"); =>PUP.Optional.IsStart O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("browser.search.searchengine.ptid", "smt"); =>PUP.Optional.SearchEngine O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("browser.search.searchengine.ref", ""); =>PUP.Optional.SearchEngine O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("browser.search.searchengine.ts", ""); =>PUP.Optional.SearchEngine O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("browser.search.searchengine.type", ""); =>PUP.Optional.SearchEngine O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("browser.search.searchengine.uid", "ST1000VM002-1CT162_S1G10GNJXXXXS1G10GNJ"); =>PUP.Optional.SearchEngine O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("browser.search.searchengine.url", "http://www.istartsurf.com/web/?type=ds&ts=1442109940&z=5b65d744c5c3f0e2574e5f0gdz7z8[...] =>PUP.Optional.IsStart O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("extensions.defsearchp@gmail.com.install-event-fired", true); =>PUP.Optional.PriceFountain O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("extensions.deskCutv2@gmail.com.install-event-fired", true); =>PUP.Optional.DeskCut O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("extensions.fftoolbar2014@etech.com.install-event-fired", true); =>PUP.Optional.FFToolBar O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("extensions.quick_start.enable_search1", false); =>PUP.Optional.QuickStart O69 - SBI: prefs.js [Murilo Costa - 35mz2grc.default] user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false); =>PUP.Optional.QuickStart O69 - SBI: SearchScopes [HKCU] {0191A6B0-1154-4C22-9182-23A95BBE92D9} [DefaultScope] - (Google) - http://www.google.com/ O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/ O69 - SBI: SearchScopes [HKCU] {30DA901C-DA24-4DC8-8028-4B497BDD80F3} - (Google) - http://www.google.com/ O69 - SBI: SearchScopes [HKUS\.DEFAULT] {0191A6B0-1154-4C22-9182-23A95BBE92D9} [DefaultScope] - (Google) - http://www.google.com/ O69 - SBI: SearchScopes [HKUS\S-1-5-18] {0191A6B0-1154-4C22-9182-23A95BBE92D9} [DefaultScope] - (Google) - http://www.google.com/ O69 - SBI: SearchScopes [HKUS\S-1-5-19] {0191A6B0-1154-4C22-9182-23A95BBE92D9} [DefaultScope] - (Google) - http://www.google.com/ O69 - SBI: SearchScopes [HKUS\S-1-5-20] {0191A6B0-1154-4C22-9182-23A95BBE92D9} [DefaultScope] - (Google) - http://www.google.com/ ---\\ Listagem dos serviços iniciados pelo Svchost (33) - 2s O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Serviço de Experiência com Aplicativo.) -- C:\Windows\System32\aelupsvc.dll [72192] © O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Serviço de Propagação de Certificado de Car.) -- C:\Windows\System32\certprop.dll [80384] © O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Serviço de Propagação de Certificado de Car.) -- C:\Windows\System32\certprop.dll [80384] © O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL de Serviço do Servidor.) -- C:\Windows\system32\srvsvc.dll [236544] © O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Cliente da Diretiva de Grupo.) -- C:\Windows\System32\gpsvc.dll [777728] © O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extensão IKE.) -- C:\Windows\System32\ikeext.dll [861184] © O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Serviço de Áudio do Windows.) -- C:\Windows\System32\Audiosrv.dll [680960] © O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gerenciador de Discagem Automática de Acess.) -- C:\Windows\System32\rasauto.dll [99328] © O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gerenciador de conexão de acesso remoto.) -- C:\Windows\System32\rasmans.dll [344064] © O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gerenciador de Interface Dinâmica.) -- C:\Windows\System32\mprdim.dll [97792] © O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Serviço de Notificação de Eventos do Sistem.) -- C:\Windows\System32\Sens.dll [64512] © O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Componentes do Microsoft NAT Helper.) -- C:\Windows\System32\ipnathlp.dll [359424] © O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Servidor de telefonia do Microsoft(R) Windo.) -- C:\Windows\System32\tapisrv.dll [316416] © O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gerenciador de Conexões Remotas do Servidor.) -- C:\Windows\System32\termsrv.dll [686592] © O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\system32\wuaueng.dll [2603008] © O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Serviço de transferência inteligente de pla.) -- C:\Windows\System32\qmgr.dll [849920] © O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - DLL de serviços do Shell do Windows.) -- C:\Windows\System32\shsvcs.dll [372736] © O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Serviço que oferece conectividade IPv6 em u.) -- C:\Windows\System32\iphlpsvc.dll [570880] © O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de serviço de logon secundário.) -- C:\Windows\system32\seclogon.dll [30720] © O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Serviço de Informações de Aplicativos.) -- C:\Windows\System32\appinfo.dll [70656] © O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Serviço de Descoberta iSCSI.) -- C:\Windows\system32\iscsiexe.dll [156672] © O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Serviço Agendador de Classes de Multimídia.) -- C:\Windows\system32\mmcss.dll [67584] © O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688] © O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Serviço de Configuração da Área de Trabalho.) -- C:\Windows\System32\SessEnv.dll [127488] © O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL de Serviço Pesquisador de Computadores.) -- C:\Windows\System32\browser.dll [136704] © O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Serviço Microsoft EAPHost.) -- C:\Windows\System32\eapsvc.dll [111104] © O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Serviço Agendador de Tarefas.) -- C:\Windows\system32\schedsvc.dll [1108992] © O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Serviço de Gerenciamento de Chaves.) -- C:\Windows\system32\kmsvc.dll [90624] © O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Relatórios de Problemas e Soluções.) -- C:\Windows\System32\wercplsupport.dll [84480] © O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [225792] © O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL do Serviço de Tema do Shell do Windows.) -- C:\Windows\system32\themeservice.dll [44544] © O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Serviço BDE.) -- C:\Windows\System32\bdesvc.dll [100864] © O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Serviço de instalação do software.) -- C:\Windows\System32\appmgmts.dll [193536] © ---\\ Lista das exceções do FireWall (FirewallRules) (68) - 7s O87 - FAEL: "{28D654C8-8AA9-4451-AE8A-6F2AD62BC297}" [In-None-P6-TRUE] .(.Copyright (C) 2012 - Plants vs. Zombies.) -- C:\Program Files (x86)\Origin Games\Plants vs. Zombies\PlantsVsZombies.exe O87 - FAEL: "{75CCD362-81A4-4E58-B608-F4E95DC83207}" [In-None-P17-TRUE] .(.Copyright (C) 2012 - Plants vs. Zombies.) -- C:\Program Files (x86)\Origin Games\Plants vs. Zombies\PlantsVsZombies.exe O87 - FAEL: "{DF99EEC7-3235-4F3D-BED0-95897B9A7B13}" [In-None-P6-TRUE] .(.Copyright (C) 2007 - Peggle.) -- C:\Program Files (x86)\Origin Games\Peggle Deluxe\Peggle.exe O87 - FAEL: "{6492EEE4-A4A2-4F4F-8843-229541087469}" [In-None-P17-TRUE] .(.Copyright (C) 2007 - Peggle.) -- C:\Program Files (x86)\Origin Games\Peggle Deluxe\Peggle.exe O87 - FAEL: "{591B572A-2FAD-4E90-BCF1-9AB9C512D6CB}" [In-None-P6-TRUE] .(.Copyright (C) 2012 - Bejeweled 3.) -- C:\Program Files (x86)\Origin Games\Bejeweled 3\Bejeweled3.exe O87 - FAEL: "{FFF1688E-3DB2-422C-B88B-E7B301A1D928}" [In-None-P17-TRUE] .(.Copyright (C) 2012 - Bejeweled 3.) -- C:\Program Files (x86)\Origin Games\Bejeweled 3\Bejeweled3.exe O87 - FAEL: "TCP Query User{27D70B9E-C898-4D73-8AEB-B458E9BC1939}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe" [In-None-P6-TRUE] .(.Copyright © 2011 CD Projekt Red - The Witcher 2.) -- C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe O87 - FAEL: "UDP Query User{9D7E2D68-E21B-4D8C-B31B-81475E45A0EF}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe" [In-None-P17-TRUE] .(.Copyright © 2011 CD Projekt Red - The Witcher 2.) -- C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe O87 - FAEL: "TCP Query User{9FA9E3D2-F118-4ECB-A90D-5CD8A7DEB989}C:\program files (x86)\hearthstone\hearthstone.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\hearthstone\hearthstone.exe O87 - FAEL: "UDP Query User{A3025A1E-0413-4CB8-B20E-1BA1E3115CDC}C:\program files (x86)\hearthstone\hearthstone.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\hearthstone\hearthstone.exe O87 - FAEL: "{12207785-ACA0-4C4E-8331-FD516B124A75}" [In-None-P6-FALSE] .(.Monolith Productions, Inc. - F.E.A.R..) -- C:\Program Files (x86)\Sierra\FEAR\FEAR.exe O87 - FAEL: "{B08A7D1C-A07B-48C4-994E-8259837871C3}" [In-None-P17-FALSE] .(.Monolith Productions, Inc. - F.E.A.R..) -- C:\Program Files (x86)\Sierra\FEAR\FEAR.exe O87 - FAEL: "TCP Query User{AF50AFCA-7101-4723-928A-2CB29B208D18}C:\program files (x86)\sierra entertainment\timeshift\bin\timeshift.exe" [In-None-P6-FALSE] .(.Sierra Entertainment - TimeShift.) -- C:\program files (x86)\sierra entertainment\timeshift\bin\timeshift.exe O87 - FAEL: "UDP Query User{67940EC7-98A7-420D-BAF6-8910D6930807}C:\program files (x86)\sierra entertainment\timeshift\bin\timeshift.exe" [In-None-P17-FALSE] .(.Sierra Entertainment - TimeShift.) -- C:\program files (x86)\sierra entertainment\timeshift\bin\timeshift.exe O87 - FAEL: "{8A16A00B-9325-4315-9615-9713B98E73BF}" [In-None-P6-FALSE] .(.Monolith Productions, Inc. - F.E.A.R..) -- C:\Program Files (x86)\Sierra\FEAR\FEAR.exe O87 - FAEL: "{578A16E4-378B-4D9B-915B-0EA581E045F9}" [In-None-P17-FALSE] .(.Monolith Productions, Inc. - F.E.A.R..) -- C:\Program Files (x86)\Sierra\FEAR\FEAR.exe O87 - FAEL: "{0DDC3A31-4607-468B-8273-3CCB8DA9CD80}" [In-None-P6-FALSE] .(.Sierra Entertainment - TimeShift.) -- C:\program files (x86)\sierra entertainment\timeshift\bin\timeshift.exe O87 - FAEL: "{1F178D51-3AC6-45F6-A54B-B54789CFC19B}" [In-None-P17-FALSE] .(.Sierra Entertainment - TimeShift.) -- C:\program files (x86)\sierra entertainment\timeshift\bin\timeshift.exe O87 - FAEL: "TCP Query User{CE5BE3DA-1AB2-45DF-929B-6F64674C64C7}C:\program files (x86)\resident evil 6\bh6.exe" [In-None-P6-TRUE] .(.CAPCOM U.S.A, INC. - RESIDENT EVIL 6.) -- C:\program files (x86)\resident evil 6\bh6.exe O87 - FAEL: "UDP Query User{D2D82475-7E59-44B5-954D-9BA7120FDC36}C:\program files (x86)\resident evil 6\bh6.exe" [In-None-P17-TRUE] .(.CAPCOM U.S.A, INC. - RESIDENT EVIL 6.) -- C:\program files (x86)\resident evil 6\bh6.exe O87 - FAEL: "{9EAC0B7B-BD8D-4BAF-8E81-255212EF10F0}" [In-None-P6-TRUE] .(.Splash Damage, Ltd. - Brink.) -- C:\Program Files (x86)\Steam\steamapps\common\BRINK\brink.exe O87 - FAEL: "{EB82E9D0-6722-43CB-9638-940D5E160F28}" [In-None-P17-TRUE] .(.Splash Damage, Ltd. - Brink.) -- C:\Program Files (x86)\Steam\steamapps\common\BRINK\brink.exe O87 - FAEL: "{93B84FB2-38AD-4E9C-905A-4B15C220E6C4}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Commandos Behind Enemy Lines\Comandos.exe O87 - FAEL: "{7C122638-CC22-4349-9646-4FC3DA60D3E7}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Commandos Behind Enemy Lines\Comandos.exe O87 - FAEL: "{2D50111E-CB6A-4945-B7C6-F1903DBF36A0}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Commandos Beyond the Call of Duty\coman_mp.exe O87 - FAEL: "{7560832C-6536-4F91-8A76-A90581199B99}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Commandos Beyond the Call of Duty\coman_mp.exe O87 - FAEL: "{A25CE3B0-8FA7-495E-9180-E0E7DA31F7C3}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Commandos Beyond the Call of Duty\Tutorial.exe O87 - FAEL: "{56D34BB4-EAA9-44DC-8174-D62AEF0A2EA4}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Commandos Beyond the Call of Duty\Tutorial.exe O87 - FAEL: "{BA60A013-9155-4940-B683-9D7669437654}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Commandos 2 Men of Courage\comm2.exe O87 - FAEL: "{7BD509B1-8894-46B3-8C0A-E6A365F948C7}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Commandos 2 Men of Courage\comm2.exe O87 - FAEL: "{F1F365F4-9A4C-4109-AAF5-E6D7B1A0BD36}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Commandos 3 Destination Berlin\commandos3.exe O87 - FAEL: "{758B1B40-1B38-457B-8664-5053F1788062}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Commandos 3 Destination Berlin\commandos3.exe O87 - FAEL: "{C9281B11-A86E-474E-9BBB-EBDBEBA0B552}" [In-None-P6-TRUE] .(.Supergiant Games - Bastion.) -- C:\Program Files (x86)\Steam\steamapps\common\Bastion\Bastion.exe O87 - FAEL: "{09D97C74-4CFF-41B2-81A0-21379C7814A6}" [In-None-P17-TRUE] .(.Supergiant Games - Bastion.) -- C:\Program Files (x86)\Steam\steamapps\common\Bastion\Bastion.exe O87 - FAEL: "{6FAED25F-D3C8-4CCE-83C0-818832A22A44}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Gumboy Tournament\gumboytournament.exe O87 - FAEL: "{1D2A4479-C1B0-4CCC-B2D6-D782E34F2212}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Gumboy Tournament\gumboytournament.exe O87 - FAEL: "{5F646CEC-8E39-4D59-97C8-97D7855CBA3A}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\DYL\dyl.exe O87 - FAEL: "{1045DA4D-776D-44C0-B1E1-C8C6A75C2A36}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\DYL\dyl.exe O87 - FAEL: "{86C296E8-85EB-4CAA-AB24-3F75A65C6AA9}" [In-None-P6-TRUE] .(.DOSBox Team - DOSBox DOS Emulator.) -- C:\Program Files (x86)\Origin Games\Ultima 8\Game\Game\DOSBox\DOSBox.exe O87 - FAEL: "{0B1ABA92-7758-4DD6-906C-30436A9163CB}" [In-None-P17-TRUE] .(.DOSBox Team - DOSBox DOS Emulator.) -- C:\Program Files (x86)\Origin Games\Ultima 8\Game\Game\DOSBox\DOSBox.exe O87 - FAEL: "{FCE838ED-A736-477D-96B0-2813C0C45A74}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Trine\_enchanted_edition_\trine1_launcher.exe O87 - FAEL: "{E9F88E8B-85AD-4426-8BDD-0B0D80211872}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Trine\_enchanted_edition_\trine1_launcher.exe O87 - FAEL: "TCP Query User{C17E6568-C00F-4131-8B5A-59883E8B94E2}C:\users\murilo costa\appdata\roaming\utorrent\updates\3.4.3_40298.exe" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\users\murilo costa\appdata\roaming\utorrent\updates\3.4.3_40298.exe O87 - FAEL: "UDP Query User{BB566A49-813B-4F1E-B841-DAD09CD2DBFA}C:\users\murilo costa\appdata\roaming\utorrent\updates\3.4.3_40298.exe" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\users\murilo costa\appdata\roaming\utorrent\updates\3.4.3_40298.exe O87 - FAEL: "TCP Query User{B11DFC1C-1CA3-471D-A513-62FFDF5D2AAE}C:\users\murilo costa\appdata\roaming\utorrent\updates\3.4.3_40298.exe" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\users\murilo costa\appdata\roaming\utorrent\updates\3.4.3_40298.exe O87 - FAEL: "UDP Query User{27CF8E11-0E99-4E81-8502-8BE88836CA65}C:\users\murilo costa\appdata\roaming\utorrent\updates\3.4.3_40298.exe" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\users\murilo costa\appdata\roaming\utorrent\updates\3.4.3_40298.exe O87 - FAEL: "{A9F43EE3-DD4A-4105-8ACF-91C63FD12263}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\tinytroopers\TinyTroopers.exe O87 - FAEL: "{C29F8CB7-3167-4BE5-AE75-DD60232C36CF}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\tinytroopers\TinyTroopers.exe O87 - FAEL: "{A914711A-CD5E-48A2-A157-177F184D8F9B}" [In-None-P6-TRUE] .(.Two Tribes B.V. - Toki Tori 2+.) -- C:\Program Files (x86)\Steam\steamapps\common\Toki Tori 2\tokitori2.exe O87 - FAEL: "{95358582-24E3-45AC-A745-A7274B4C3017}" [In-None-P17-TRUE] .(.Two Tribes B.V. - Toki Tori 2+.) -- C:\Program Files (x86)\Steam\steamapps\common\Toki Tori 2\tokitori2.exe O87 - FAEL: "{F7C6FD83-59D7-47DB-873A-6D58DD9B0E13}" [In-None-P6-TRUE] .(.Frozenbyte Oy - Shadowgrounds.) -- C:\Program Files (x86)\Steam\steamapps\common\Shadowgrounds\Shadowgrounds.exe O87 - FAEL: "{45E6BFB2-0FCD-4F1E-811F-B2EFAA7B218C}" [In-None-P17-TRUE] .(.Frozenbyte Oy - Shadowgrounds.) -- C:\Program Files (x86)\Steam\steamapps\common\Shadowgrounds\Shadowgrounds.exe O87 - FAEL: "{E3098F12-CE66-4EA2-AD9B-EF695902540A}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Shadowgrounds\ShadowgroundsLauncher.exe O87 - FAEL: "{15296D9A-179E-48E6-87EC-66BDB747216E}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Shadowgrounds\ShadowgroundsLauncher.exe O87 - FAEL: "{041D50A3-3ED5-4358-975B-F27E672F57F6}" [In-None-P6-FALSE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\lost planet extreme condition\LostPlanetDX9.exe O87 - FAEL: "{D7036379-5D42-4472-8BB5-F4FF50A12D7B}" [In-None-P17-FALSE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\lost planet extreme condition\LostPlanetDX9.exe O87 - FAEL: "{58B0B8C9-571D-4E34-9114-689F06469B95}" [In-None-P6-FALSE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\lost planet extreme condition\LostPlanetDX10.exe O87 - FAEL: "{C1175BD9-E1F0-40B5-8155-83A2290E49E8}" [In-None-P17-FALSE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\lost planet extreme condition\LostPlanetDX10.exe O87 - FAEL: "{87094DF3-1DD2-4701-8ACE-FE795859A709}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Hydrophobia\HydroPC.exe O87 - FAEL: "{D4FAD477-EAA0-4187-B6F5-CA9762550D0B}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Hydrophobia\HydroPC.exe O87 - FAEL: "{8E164180-30FA-4A1F-BD95-DAC6D67448C1}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\dota 2 test\dota.exe O87 - FAEL: "{986D68AD-0CBC-4B6C-A9AB-B71CB52DC60D}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\dota 2 test\dota.exe O87 - FAEL: "{6E05D524-6665-473B-BCBE-CB03D44FFBCA}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\BioShock 2\SP\Builds\Binaries\Bioshock2Launcher.exe O87 - FAEL: "{BEBF87A7-3E88-4604-AB60-1D0A4859FADA}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\BioShock 2\SP\Builds\Binaries\Bioshock2Launcher.exe O87 - FAEL: "{DFF70DAF-9A36-4367-83A5-DE8C1EF7DC4B}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\BioShock 2\MP\Builds\Binaries\Bioshock2Launcher.exe O87 - FAEL: "{812A8B82-D434-4FEB-84A5-EEB1F42A3AA9}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\BioShock 2\MP\Builds\Binaries\Bioshock2Launcher.exe O87 - FAEL: "{509B2B3A-4252-49E8-A3E2-6C798922B82A}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe O87 - FAEL: "{E1DB8C9F-2FF8-477C-A3C1-0226A302990B}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe ---\\ Serviços não Microsoft (SR=Executados, SS=Parados) (26) - 57s SR - Auto [2014/12/03 03:31:16] [ 81088] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe © SS - Auto [2015/09/10 08:15:21] [ 269000] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe © SR - Auto [2015/06/22 22:14:38] [ 245760] (AMD External Events Utility) . (.AMD.) - C:\Windows\system32\atiesrxx.exe © SR - Auto [2015/06/22 21:37:14] [ 344064] AMD FUEL Service (AMD FUEL Service) . (.Advanced Micro Devices, Inc..) - C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe © SR - Auto [2015/07/30 15:19:29] [ 146600] Avast Antivirus (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe © SS - Auto [2015/08/10 17:38:25] [ 136048] Dropbox Update Service (dbupdate) (dbupdate) . (.Dropbox, Inc..) - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe © SS - Auto [2015/08/10 17:38:25] [ 136048] Dropbox Update Service (dbupdatem) (dbupdatem) . (.Dropbox, Inc..) - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe © SR - Auto [2014/11/10 06:55:06] [ 2216208] Disc Soft Bus Service (Disc Soft Bus Service) . (.Disc Soft Ltd.) - C:\Program Files (x86)\DAEMON Tools Pro\DiscSoftBusService.exe © SS - Demand [2015/05/11 17:42:06] [ 244392] Foxit Cloud Safe Update Service (FoxitCloudUpdateService) . (.Foxit Software Inc..) - C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe © SS - Auto [2015/07/13 15:49:14] [ 144200] Google Update Service (gupdate1d0bd9c9f0dee6f) (gupdate1d0bd9c9f0dee6f) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe © SS - Auto [2015/07/13 15:49:14] [ 144200] Google Update Service (gupdatem1d0bd9c9f933b7f) (gupdatem1d0bd9c9f933b7f) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe © SR - Auto [2005/04/03 23:41:10] [ 69632] InstallDriver Table Manager (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe © SS - Disabled [2015/06/18 08:39:46] [ 1871160] (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe © SS - Auto [2015/06/18 08:39:50] [ 1133880] (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe © SS - Auto [2015/06/30 23:30:36] [ 148136] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe © SS - Auto [2015/09/06 15:16:27] [ 2057736] Origin Client Service (Origin Client Service) . (.Electronic Arts.) - C:\Program Files (x86)\Origin\OriginClientService.exe © SR - Auto [2015/08/05 19:39:25] [ 76152] PnkBstrA (PnkBstrA) . (...) - C:\Windows\System32\PnkBstrA.exe SS - Demand [2014/04/30 16:33:52] [ 337776] Corel License Validation Service V2 x64, Powered by arvato (PSI_SVC_2_x64) . (.arvato digital services llc.) - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe SS - Demand [2015/06/17 03:25:02] [ 31856] RealPlayer Update Service (RealPlayerUpdateSvc) . (...) - C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe SS - Demand [2014/12/11 10:30:48] [ 315496] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe © SS - Demand [2015/06/10 11:11:26] [ 155520] Sony PC Companion (Sony PC Companion) . (.Avanquest Software.) - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe © SR - Auto [2015/09/12 23:07:32] [ 450048] SSFK (SSFK) . (.TODO: <公司名>.) - C:\Program Files (x86)\SFK\SSFK.exe =>PUP.Optional.MyWebSearch SS - Demand [2015/08/19 17:39:00] [ 838336] Steam Client Service (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe © SR - Auto [2015/09/12 23:07:28] [ 451720] WdsManPro Service (WdsManPro) . (.DTools LIMITED.) - C:\ProgramData\aWdsManProa\WdsManPro.exe =>PUP.Optional.WpManager SS - Auto [2012/07/17 15:25:28] [ 580648] Wise Boot Assistant (WiseBootAssistant) . (.WiseCleaner.com.) - C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe © ---\\ Scâner Aditional (19) - 0s C:\ProgramData\aWdsManProa\WdsManPro.exe =>PUP.Optional.WdsManPro C:\Users\Murilo Costa\AppData\Roaming\Mozilla\Firefox\Profiles\35mz2grc.default\searchplugins\istartsurf.xml =>PUP.Optional.IsStart HKLM\SYSTEM\CurrentControlSet\Services\SSFK =>PUP.Optional.MyWebSearch C:\Program Files (x86)\SFK\SSFK.exe =>PUP.Optional.MyWebSearch HKLM\SYSTEM\CurrentControlSet\Services\WdsManPro =>PUP.Optional.WpManager C:\ProgramData\aWdsManProa\WdsManPro.exe =>PUP.Optional.WpManager HKLM\SOFTWARE\Wow6432Node\Clara =>PUP.Optional.SupTab HKLM\SOFTWARE\Wow6432Node\FFPluginHp =>PUP.Optional.SweetSearch HKLM\SOFTWARE\Wow6432Node\istartsurfSoftware =>PUP.Optional.IsStart HKLM\SOFTWARE\Wow6432Node\WdsManPro =>PUP.Optional.WdsManPro HKCU\SOFTWARE\BoBrowser =>PUP.Optional.BoBrowser HKCU\SOFTWARE\Tortuga Team =>PUP.Optional.Tortuga C:\Program Files (x86)\SFK =>PUP.Optional.MyWebSearch C:\ProgramData\aWdsManProa =>PUP.Optional.WdsManPro C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS C:\ProgramData\{ACBCD40A-42A8-4FF9-BD42-ABCD14998CBA} =>PUP.Optional.BundleInstaller C:\Users\Murilo Costa\AppData\Local\Installer =>PUP.Optional.InstallPedia C:\Windows\System32\drivers\EsgScanner.sys =>.Superfluous.SpyHunter C:\Users\Murilo Costa\Downloads\Programs\SpyHunter-Installer.exe =>.Superfluous.SpyHunter ---\\ Resumo dos elementos encontrados na sua estação de trabalho (17) - 0s http://www.nicolascoolman.fr/blog =>PUP.Optional.WdsManPro http://www.nicolascoolman.fr/pup-isstart/ =>PUP.Optional.IsStart http://www.nicolascoolman.fr/adware-mywebsearch/ =>PUP.Optional.MyWebSearch http://www.nicolascoolman.fr/pup-wpmanager/ =>PUP.Optional.WpManager http://www.nicolascoolman.fr/pup-suptab/ =>PUP.Optional.SupTab http://www.nicolascoolman.fr/blog =>PUP.Optional.SweetSearch http://www.nicolascoolman.fr/blog =>PUP.Optional.BoBrowser http://www.nicolascoolman.fr/blog =>PUP.Optional.Tortuga http://www.nicolascoolman.fr/trojan-autokms/ =>HackTool.AutoKMS http://www.nicolascoolman.fr/blog =>PUP.Optional.BundleInstaller http://www.nicolascoolman.fr/adware-installpedia/ =>PUP.Optional.InstallPedia http://www.nicolascoolman.fr/blog =>.Superfluous.SpyHunter http://www.nicolascoolman.fr/blog =>PUP.Optional.SearchEngine http://www.nicolascoolman.fr/blog =>PUP.Optional.PriceFountain http://www.nicolascoolman.fr/blog =>PUP.Optional.DeskCut http://www.nicolascoolman.fr/blog =>PUP.Optional.FFToolBar http://www.nicolascoolman.fr/pup-quickstart/ =>PUP.Optional.QuickStart ~ End of the scan, 51464 items in 182 seconds (1381)(0)()