~ ZHPDiag v2015.12.29.199 Por Nicolas Coolman (2015/12/29)
~ iniciado por MA084140 (Administrator)  (2015/12/29 19:00:14)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Status da versão:  Version OK
~ Modo: Scanner
~ Relatório: D:\Users\ma084140\Desktop\ZHPDiag.txt
~ Relatório: D:\Users\ma084140\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ Inicialização do sistema: Normal (Normal boot)
Windows 7 Professional, 32-bit Service Pack 1 (Build 7601)

---\\ Navegadores Internet (2) - 0s
GCIE: Google Chrome v47.0.2526.106
MSIE: Internet Explorer v11.0.9600.17728

---\\ Informações sobre os produtos Windows (4) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
Windows Activation Technologies : KO

---\\ Softwares de proteçao do sistema (2) - 96s
Symantec Endpoint Protection v12.1.4112.4156
Windows Defender W7 (Deactivate)

---\\ HKCU & HKLM Software Keys (1) - 96s
Spybot - Search & Destroy v2.4.40

---\\ Monitoramento dos softwares (2) - 96s
Adobe Flash Player 19 ActiveX
Adobe Reader XI

---\\ Informações sobre o sistema (6) - 0s
~ Operating System: x86 Family 6 Model 42 Stepping 7, GenuineIntel
~ Operating System:  32-bit 
~ Boot mode: Normal (Normal boot)
Total RAM: 3056.88 MB (34% free)
System Restore: Activé (Enable)
System drive D: has 1 GB () free of 177 GB  =>Alerte espace disque inférieur à 20 Go

---\\ Modo de conexão ao sistema (3) - 0s
~ Computer Name: AJ0223911
~ User Name: MA084140
~ Logged in as Administrator

---\\ Enumeração das unidades dos discos (2) - 0s
~ Drive C: has 0 GB free of 127 GB
~ Drive D: has 1 GB free of 177 GB  (System)

---\\ Estado do Centro de Segurança do Windows (13) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK

---\\ Pesquisa particular de ficheiros genéricos (24) - 8s
[MD5.40D777B7A95E00593EB1568C68514493] - 20/11/2010 - (.Microsoft Corporation - Windows Explorer.) -- C:\Windows\Explorer.exe [2616320] ©
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - 13/07/2009 - (.Microsoft Corporation - Processo de host do Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [44544] ©
[MD5.B5C5DCAD3899512020D135600129D665] - 13/07/2009 - (.Microsoft Corporation - Aplicativo de Inicialização do Windows.) -- C:\Windows\System32\Wininit.exe [96256] ©
[MD5.C46904F2E9E121A91DDDABB48D7648C3] - 29/04/2015 - (.Microsoft Corporation - Internet Extensions para Win32.) -- C:\Windows\System32\wininet.dll [1888256] ©
[MD5.6D13E1406F50C66E2A95D97F22C47560] - 20/11/2010 - (.Microsoft Corporation - Aplicativo de Logon do Windows.) -- C:\Windows\System32\Winlogon.exe [286720] ©
[MD5.E3AE23569749DE12D45BA3B489A036AE] - 20/11/2010 - (.Microsoft Corporation - Biblioteca de Licenciamento de Software.) -- C:\Windows\System32\sppcomapi.dll [193536] ©
[MD5.59DF156711A76BCB993253EC6C9BBF41] - 20/11/2010 - (.Microsoft Corporation - DLL da API de cliente DNS.) -- C:\Windows\System32\dnsapi.dll [270336] ©
[MD5.F81BB7E487EDCEAB630A7EE66CF23913] - 29/04/2015 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [338944] ©
[MD5.338C86357871C167A96AB976519BF59E] - 13/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [21584]  =>.Microsoft Windows®
[MD5.77EA11B065E0A8AB902D78145CA51E10] - 13/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [70656] ©
[MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - 20/11/2010 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [108544] ©
[MD5.F024449C97EC1E464AAFFDA18593DB88] - 20/11/2010 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [78336] ©
[MD5.9036377B8A6C15DC2EEC53E489D159B5] - 20/11/2010 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [108544] ©
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - 13/07/2009 - (.Microsoft Corporation - Driver de porta i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [80896] ©
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - 13/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [101888] ©
[MD5.B272B4C3E085EA860C12F2E4FAF2FFA2] - 20/11/2010 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [123904] ©
[MD5.280122DDCF04B378EDD1AD54D71C1E54] - 20/11/2010 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [187904] ©
[MD5.33C3093D09017CFE2E219F2472BFF6EB] - 20/11/2010 - (.Microsoft Corporation - Driver do Sistema de Arquivos NT.) -- C:\Windows\System32\drivers\ntfs.sys [1211264]  =>.Microsoft Windows®
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - 13/07/2009 - (.Microsoft Corporation - Driver de porta paralela.) -- C:\Windows\System32\drivers\Parport.sys [79360] ©
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - 13/07/2009 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [78848] ©
[MD5.B973FCFC50DC1434E1970A146F7E3885] - 20/11/2010 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [133632] ©
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - 13/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [71168] ©
[MD5.B459575348C20E8121D6039DA063C704] - 20/11/2010 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [74752] ©
[MD5.F497F67932C6FA693D7DE2780631CFE7] - 20/11/2010 - (.Microsoft Corporation - Driver de cópia de sombra de volume.) -- C:\Windows\System32\drivers\volsnap.sys [245632]  =>.Microsoft Windows®

---\\ Serviços NT não Microsoft e não desativados (28) - 21s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe  =>.Adobe Systems, Incorporated®
O23 - Service: BES Client (BESClient) . (.IBM Corp. - IBM Endpoint Manager Agent.) - C:\Program Files\BigFix Enterprise\BES Client\BESClient.exe {04FF9F7B8D388B6D5F7366B7399AF0C3} ©
O23 - Service: BESClientHelper (BESClientHelper) . (.BigFix Inc. - Service for monitoring the status of the BE.) - C:\Program Files\BigFix Enterprise\BES Client\BESClientHelper.exe
O23 - Service: Bluetooth Service (btwdins) . (.Broadcom Corporation. - Bluetooth Support Server.) - C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe  =>.Broadcom Corporation®
O23 - Service: @C:\Windows\system32\CxAudMsg32.exe,-100 (CxAudMsg) . (.Conexant Systems Inc. - Conexant Audio Message Service.) - C:\Windows\System32\CxAudMsg32.exe  =>.Conexant Systems, Inc.®
O23 - Service: DameWare Mini Remote Control (DWMRCS) . (.DameWare Development LLC - DameWare Mini Remote Client Agent.) - C:\Windows\System32\DWRCS.EXE
O23 - Service: ETOKSRV (eTSrv) . (.Aladdin Knowledge Systems, Ltd. - eToken service application.) - C:\Program Files\Aladdin\eToken\PKIClient\x32\eTSrv.exe {6BEA1E66D2B4A57E74CE91893FACE0D8}
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Event Log Service.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe  =>.Intel Corporation - Mobile Wireless Group®
O23 - Service: Gbp Service (GbpSv) . (.GAS Tecnologia - G-Buster Browser Defense - Service.) - C:\Program Files\GbPlugin\gbpsv.exe {12D257F7955AC6D6A4365FB70A3DC10A}
O23 - Service: Serviço do Google Update (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files\Google\Update\GoogleUpdate.exe  =>.Google Inc®
O23 - Service: Lenovo PM Service (IBMPMSVC) . (.Lenovo. - Lenovo Power Management Service.) - C:\Windows\System32\ibmpmsvc.exe {1CA08E795C58A609AE46FE0B7FDBC08B}
O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) . (.Lenovo Group Limited - Microphone Mute Controll Service for ThinkP.) - C:\Program Files\Lenovo\HOTKEY\micmute.exe {6433A25DB5498D25B5D53720AD2374B6} ©
O23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) . (.Lenovo Group Limited - Auto Scroll Start Service.) - C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe {3AE1F834FA867FF5102FBE94ADF86384} ©
O23 - Service: lxeaCATSCustConnectService (lxeaCATSCustConnectService) . (.Lexmark International, Inc. - Lexmark Connect Service Executable.) - C:\Windows\System32\spool\drivers\w32x86\3\lxeaserv.exe {379E69DA6C2693E3297B6FE45D78EBE1} ©
O23 - Service: OracleMTSRecoveryService (OracleMTSRecoveryService) . (.Oracle Corporation - Oracle MTS Recovery Service.) - C:\oracle\ORA1020\BIN\omtsreco.exe ©
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Registry Service.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe  =>.Intel Corporation - Mobile Wireless Group®
O23 - Service: Conexant SmartAudio service (SAService) . (.Conexant Systems, Inc. - SmartAudio Service Application.) - C:\Windows\System32\SASrv.exe  =>.Conexant Systems, Inc.®
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) . (.Safer-Networking Ltd. - Spybot-S&D 2 Scanner Service.) - C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe  =>.Safer Networking Ltd.®
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) . (.Safer-Networking Ltd. - Spybot-S&D 2 Background update service.) - C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe  =>.Safer Networking Ltd.®
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) . (.Safer-Networking Ltd. - Windows Security Center integration..) - C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe  =>.Safer Networking Ltd.®
O23 - Service: Symantec Endpoint Protection (SepMasterService) . (.Symantec Corporation - Symantec Service Framework.) - C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ccSvcHst.exe  =>.Symantec Corporation®
O23 - Service: Check Point VPN-1 Securemote service (SR_Service) . (.Check Point Software Technologies - .) - C:\Program Files\CheckPoint\SecuRemote\bin\SR_Service.exe ©
O23 - Service: Check Point VPN-1 Securemote watchdog (SR_Watchdog) . (.Check Point Software Technologies - .) - C:\Program Files\CheckPoint\SecuRemote\bin\SR_Watchdog.exe ©
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) . (.DEVGURU Co., LTD. - MSS CS Connectivity Service.) - C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe  =>.DEVGURU CO LTD®
O23 - Service: TeamViewer 9 (TeamViewer9) . (.TeamViewer GmbH - TeamViewer 9.) - C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe  =>.TeamViewer®
O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) . (.Lenovo Group Limited - ThinkPad Message Client Loader.) - C:\Program Files\Lenovo\HOTKEY\tphkload.exe {6433A25DB5498D25B5D53720AD2374B6} ©
O23 - Service: On Screen Display (TPHKSVC) . (.Lenovo Group Limited - On screen display Fn+Fx handler.) - C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe {6433A25DB5498D25B5D53720AD2374B6} ©
O23 - Service: IBM Endpoint Manager for Remote Control - Target (TRCTARGET) . (.IBM Corporation - Remote Control Target - Base Process.) - C:\Program Files\ibm\tivoli\Remote Control\Target\trc_base.exe {63CD26DF48BB82DF3837F2E3A0DDCBBC} ©

---\\ Processos lançados (28) - 11s
[MD5.C9D46BEA56C89778AFF1494F9CCF66AC] - (.Lenovo. - Lenovo Power Management Service.) -- C:\Windows\System32\ibmpmsvc.exe [56664] [PID.780] {1CA08E795C58A609AE46FE0B7FDBC08B}
[MD5.3701779057885787AF031936EF56538E] - (.GAS Tecnologia - G-Buster Browser Defense - Service.) -- C:\Program Files\GbPlugin\gbpsv.exe [527928] [PID.820] {12D257F7955AC6D6A4365FB70A3DC10A}
[MD5.365B12083CD5BC1F8B1BE28E3F1939A4] - (.Check Point Software Technologies - .) -- C:\Program Files\CheckPoint\SecuRemote\bin\SR_Service.exe [106613] [PID.1460] ©
[MD5.06A60A690C8436B36B782C91BA5773C7] - (.Check Point Software Technologies - .) -- C:\Program Files\CheckPoint\SecuRemote\bin\SR_Watchdog.exe [36982] [PID.1496] ©
[MD5.5B62F45C87CC0FB176C5358EEA6CFB4C] - (.Lenovo Group Limited - On screen display Fn+Fx handler.) -- C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe [125504] [PID.1936] {6433A25DB5498D25B5D53720AD2374B6} ©
[MD5.5E07D87201CDF23F877AD4F16EADB9F5] - (.Lenovo Group Limited - ThinkPad Message Client Loader.) -- C:\Program Files\Lenovo\HOTKEY\tphkload.exe [115704] [PID.1996] {6433A25DB5498D25B5D53720AD2374B6} ©
[MD5.08FAEF3865401071E4D197C7A2A76EBE] - (.BigFix Inc. - Service for monitoring the status of the BE.) -- C:\Program Files\BigFix Enterprise\BES Client\BESClientHelper.exe [737367] [PID.440]
[MD5.24C2B7CA2A758B6FB8E7D8482F732A75] - (.DameWare Development LLC - DameWare Mini Remote Client Agent.) -- C:\Windows\System32\DWRCS.EXE [256000] [PID.1360]
[MD5.5E53607DA9E59BA7B3606416697A8200] - (.Aladdin Knowledge Systems, Ltd. - eToken service application.) -- C:\Program Files\Aladdin\eToken\PKIClient\x32\eTSrv.exe [12640] [PID.1800] {6BEA1E66D2B4A57E74CE91893FACE0D8}
[MD5.F43BD5D437A3F8EA438A23FB04ABBB73] - (.Lenovo Group Limited - Microphone Mute Controll Service for ThinkP.) -- C:\Program Files\Lenovo\HOTKEY\micmute.exe [110072] [PID.1792] {6433A25DB5498D25B5D53720AD2374B6} ©
[MD5.158B67696EC8602CE71F9AA4F14AA96F] - (.Lenovo Group Limited - Auto Scroll Start Service.) -- C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe [127336] [PID.2136] {3AE1F834FA867FF5102FBE94ADF86384} ©
[MD5.B5757E4A31EA5193EDA54AE4A5D7491A] - (.Oracle Corporation - Oracle MTS Recovery Service.) -- C:\oracle\ORA1020\BIN\omtsreco.exe [53248] [PID.2516] ©
[MD5.8CC5423C8B936B7F5EBC6C08BB06609F] - (.IBM Corporation - Remote Control Target - Base Process.) -- C:\Program Files\ibm\tivoli\Remote Control\Target\trc_base.exe [923960] [PID.3348] {63CD26DF48BB82DF3837F2E3A0DDCBBC} ©
[MD5.54C5206D2752062849E1E6EAD31DFA2A] - (.IBM Corp. - IBM Endpoint Manager Agent.) -- C:\Program Files\BigFix Enterprise\BES Client\BESClient.exe [6611216] [PID.2592] {04FF9F7B8D388B6D5F7366B7399AF0C3} ©
[MD5.DDA10D9F1D2892AC5E8AB2A580C3846E] - (.Lenovo Group Limited - Lenovo Auto Scroll Utility.) -- C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe [101440] [PID.4776] {61688A0972055C59318508B71D046940} ©
[MD5.80CCC5A1EAAFD279AB2B00CAEE68052B] - (.IBM Corporation - Remote Control Target - GUI Process.) -- C:\Program Files\ibm\tivoli\Remote Control\Target\trc_gui.exe [903480] [PID.5032] {63CD26DF48BB82DF3837F2E3A0DDCBBC} ©
[MD5.C2D96E627E90C8F2A334A5191DB28312] - (.Check Point Software Technologies - .) -- C:\Program Files\CheckPoint\SecuRemote\bin\SR_GUI.exe [2691185] [PID.5060] ©
[MD5.328689D90CB241661691D4F838EEC031] - (.Lenovo Group Limited - On screen display drawer.) -- C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe [567800] [PID.5072] {6433A25DB5498D25B5D53720AD2374B6} ©
[MD5.6F1A7D0DF9504D8CE807C30611638161] - (.Lenovo Group Limited - ThinkPad Message Receiver for Shortcut Hot.) -- C:\Program Files\Lenovo\HOTKEY\shtctky.exe [78328] [PID.5088] {6433A25DB5498D25B5D53720AD2374B6} ©
[MD5.1765C22E1C77FE5AC591B8719FA3AB13] - (.Lenovo Group Limited - NumLock on screen display for ThinkPad.) -- C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe [186928] [PID.5112] {1CA08E795C58A609AE46FE0B7FDBC08B} ©
[MD5.DC9C9C409D096F8280546F010A8392A5] - (.Ricoh co.,Ltd. - RCIMGDIR.) -- C:\Program Files\Integrated Camera Driver\RCIMGDIR.exe [31744] [PID.5508]
[MD5.20FFD9CA4AF20000665B73F4E56235B4] - (.Citrix Systems, Inc. - Citrix online plug-in Connection Center.) -- C:\Program Files\Citrix\ICA Client\concentr.exe [304568] [PID.5736] {5DAF72BBAD5E016FB920A5769DC04601} ©
[MD5.95BABB8DC7325D4AC34EE0DFE00FB1D8] - (.Aladdin Knowledge Systems, Ltd. - PKIMonitor Application.) -- C:\Program Files\Aladdin\eToken\PKIClient\x32\PKIMonitor.exe [230752] [PID.5772] {6BEA1E66D2B4A57E74CE91893FACE0D8}
[MD5.BDBD361050F436856AAD571F981819BA] - (. - Printer Device Monitor.) -- C:\Program Files\Lexmark S300-S400 Series\lxeamon.exe [772712] [PID.5804] {2DB3E1BE80A3B095FD2C799AE03019EA}
[MD5.D8B7100473A6A3DDAFC1235BCC8E60C3] - (.IBM Corp. - IBM Endpoint Manager Client User Interface.) -- C:\Program Files\BigFix Enterprise\BES Client\BESClientUI.exe [3389200] [PID.5832] {04FF9F7B8D388B6D5F7366B7399AF0C3} ©
[MD5.1676C663914864973703A8D6E26DA96E] - (.Citrix Systems, Inc. - Citrix.) -- C:\Program Files\Citrix\ICA Client\wfcrun32.exe [726456] [PID.5848] {5DAF72BBAD5E016FB920A5769DC04601} ©
[MD5.05B0DBBA5FCF346FA78A601176A51F26] - (.Trend Consulting - ORION_CONNECT_MONITOR.) -- C:\ORION\ORION_CONNECT_MONITOR.EXE [184320] [PID.7152]
[MD5.5A1F89FA66AA5581EBF82EF45D4E2A98] - (.Copyright (C) 2015 Nicolas Coolman - ZHPDiag.) -- D:\Users\ma084140\Downloads\ZHPDiag3.exe [2048000] [PID.7668] ©

---\\ Mozilla Firefox, Plugins,Arranque,Pesquisa,Extensões (1) - 1s
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (.Microsoft.) -- C:\Program Files\Microsoft Silverlight\3.0.40818.0\npctrl.dll ©

---\\ Internet Explorer, Arranque, Pesquisa, Phishing (10) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean  =>.Microsoft Internet Explorer
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2

---\\ Internet Explorer, Gestão do Proxy (7) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0

---\\ Análise das linhas, Carregamento Automático de programas (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe (.Microsoft Corporation.) ©

---\\ Redireção do ficheiro Hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (1)

---\\ Browser Helper Objects do navegador (7) - 1s
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll  =>.Adobe Systems, Incorporated®
O2 - BHO: Symantec Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} . (.Symantec Corporation - IPS Browser Helper DLL.) -- C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\IPS\IPSBHO.dll  =>.Symantec Corporation®
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\ssv.dll  =>.Oracle America, Inc.®
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\MSOffice\Office14\URLREDIR.DLL  =>.Microsoft Corporation®
O2 - BHO: G-Buster Browser Defense Banco Real - {C41A1C0E-EA6C-11D4-B1B8-444553540007} . (.Banco Real - Gbieh Module.) -- C:\Program Files\GbPlugin\gbiehabn.dll {12D257F7955AC6D6A4365FB70A3DC10A}
O2 - BHO: G-Buster Browser Defense Itaú Unibanco - {C41A1C0E-EA6C-11D4-B1B8-444553540008} . (.Banco Itaú Unibanco - Gbieh Module.) -- C:\Program Files\GbPlugin\gbiehuni.dll {4B18AEC7FDBB4EBDA6D39194D559C959}
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\jp2ssv.dll  =>.Oracle America, Inc.®

---\\ Aplicações iniciadas por registo & pastas (14) - 1s
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe  =>.Adobe Systems, Incorporated®
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe  =>.Oracle America, Inc.®
O4 - HKLM\..\Run: [RotateImage] . (.Ricoh co.,Ltd. - RCIMGDIR.) -- C:\Program Files\Integrated Camera Driver\RCIMGDIR.exe
O4 - HKLM\..\Run: [SmartAudio] . (.Conexant Systems, Inc. - SmartAudio Control Panel application.) -- C:\Program Files\CONEXANT\SAII\SAIICpl.exe  =>.Conexant Systems, Inc.®
O4 - HKLM\..\Run: [ForteConfig] . (.Copyright (C) 2010 - FMAPP Application.) -- C:\Program Files\CONEXANT\ForteConfig\fmapp.exe  =>.Fortemedia Inc®
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe  =>.Intel Corporation®
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe  =>.Intel Corporation®
O4 - HKLM\..\Run: [ConnectionCenter] . (.Citrix Systems, Inc. - Citrix online plug-in Connection Center.) -- C:\Program Files\Citrix\ICA Client\concentr.exe {5DAF72BBAD5E016FB920A5769DC04601} ©
O4 - HKLM\..\Run: [eTMonitor] . (.Aladdin Knowledge Systems, Ltd. - PKIMonitor Application.) -- C:\Program Files\Aladdin\eToken\PKIClient\x32\PKIMonitor.exe {6BEA1E66D2B4A57E74CE91893FACE0D8}
O4 - HKLM\..\Run: [lxeamon.exe] . (. - Printer Device Monitor.) -- C:\Program Files\Lexmark S300-S400 Series\lxeamon.exe {2DB3E1BE80A3B095FD2C799AE03019EA}
O4 - HKLM\..\Run: [EzPrint] . (.Copyright (c) 2008 - .) -- C:\Program Files\Lexmark S300-S400 Series\ezprint.exe {2DB3E1BE80A3B095FD2C799AE03019EA}
O4 - HKLM\..\Run: [DameWare MRC Agent] . (.DameWare Development - DameWare Mini Remote Control User Interface.) -- C:\Windows\System32\DWRCST.EXE
O4 - HKLM\..\Run: [SDTray] . (.Safer-Networking Ltd. - Spybot - Search & Destroy tray access.) -- C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe  =>.Safer Networking Ltd.®
O4 - HKLM\..\RunOnce: [InstallSpybotUpdate_LASSHes.sbs] C:\Program Files\Spybot - Search & Destroy 2\Includes\LASSHes.sbs (.not file.)

---\\ Alteração Dominio/Clientes DNS (4) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = Sulamerica.br
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: SearchList = sulamerica.br
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 187.2.72.42 187.2.72.47
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{0D0DD74D-CBFE-4F36-A1E4-CC51975C3B0C}: DhcpNameServer = 187.2.72.42 187.2.72.47

---\\ Protocolo adicional (38) - 1s
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Controle ActiveX para streaming de vídeo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll ©
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll  =>.Microsoft Corporation®
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Controle ActiveX para streaming de vídeo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll  =>.Microsoft Corporation®
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll  =>.Microsoft Corporation®
O18 - Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} . (.Citrix Systems, Inc. - Citrix online plug-in ICAMimeFilter DLL.) -- C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll {5DAF72BBAD5E016FB920A5769DC04601} ©
O18 - Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} . (.Citrix Systems, Inc. - Citrix online plug-in ICAMimeFilter DLL.) -- C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll {5DAF72BBAD5E016FB920A5769DC04601} ©
O18 - Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} . (.Citrix Systems, Inc. - Citrix online plug-in ICAMimeFilter DLL.) -- C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll {5DAF72BBAD5E016FB920A5769DC04601} ©
O18 - Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} . (.Citrix Systems, Inc. - Citrix online plug-in ICAMimeFilter DLL.) -- C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll {5DAF72BBAD5E016FB920A5769DC04601} ©
O18 - Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} . (.Citrix Systems, Inc. - Citrix online plug-in ICAMimeFilter DLL.) -- C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll {5DAF72BBAD5E016FB920A5769DC04601} ©
O18 - Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} . (.Citrix Systems, Inc. - Citrix online plug-in ICAMimeFilter DLL.) -- C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll {5DAF72BBAD5E016FB920A5769DC04601} ©
O18 - Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} . (.Citrix Systems, Inc. - Citrix online plug-in ICAMimeFilter DLL.) -- C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll {5DAF72BBAD5E016FB920A5769DC04601} ©
O18 - Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} . (.Citrix Systems, Inc. - Citrix online plug-in ICAMimeFilter DLL.) -- C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll {5DAF72BBAD5E016FB920A5769DC04601} ©
O18 - Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} . (.Citrix Systems, Inc. - Citrix online plug-in ICAMimeFilter DLL.) -- C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll {5DAF72BBAD5E016FB920A5769DC04601} ©
O18 - Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} . (.Citrix Systems, Inc. - Citrix online plug-in ICAMimeFilter DLL.) -- C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll {5DAF72BBAD5E016FB920A5769DC04601} ©
O18 - Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} . (.Citrix Systems, Inc. - Citrix online plug-in ICAMimeFilter DLL.) -- C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll {5DAF72BBAD5E016FB920A5769DC04601} ©
O18 - Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} . (.Citrix Systems, Inc. - Citrix online plug-in ICAMimeFilter DLL.) -- C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll {5DAF72BBAD5E016FB920A5769DC04601} ©
O18 - Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} . (.Citrix Systems, Inc. - Citrix online plug-in ICAMimeFilter DLL.) -- C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll {5DAF72BBAD5E016FB920A5769DC04601} ©
O18 - Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} . (.Citrix Systems, Inc. - Citrix online plug-in ICAMimeFilter DLL.) -- C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll {5DAF72BBAD5E016FB920A5769DC04601} ©
O18 - Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} . (.Citrix Systems, Inc. - Citrix online plug-in ICAMimeFilter DLL.) -- C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll {5DAF72BBAD5E016FB920A5769DC04601} ©
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll  =>.Microsoft Corporation®
O18 - Filter: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} . (.Citrix Systems, Inc. - Citrix online plug-in ICAMimeFilter DLL.) -- C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll {5DAF72BBAD5E016FB920A5769DC04601} ©
O18 - Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL  =>.Microsoft Corporation®

---\\ Listagem dos dados do BootExecute (1) - 0s
O34 - HKLM BootExecute: (sdnclean.exe) (.Safer Networking Limited - .) -- sdnclean.exe

---\\ Software instalados (82) - 21s
O42 - Logiciel: 32 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM] -- {60FFB3E0-6D5B-4D73-AE5B-07E58B83AF0C} ©
O42 - Logiciel: 7-Zip 9.34 alpha - (...) [HKLM] -- 7-Zip
O42 - Logiciel: Adobe Flash Player 19 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX  =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Reader XI (11.0.06)  MUI - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-FFFF-7B44-AB0000000001} ©
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-0804-1033-1959-001824161310} ©
O42 - Logiciel: Adobe SVG Viewer 3.0 - (...) [HKLM] -- Adobe SVG Viewer
O42 - Logiciel: Atualização Audatex - (.Atualização Audatex.) [HKLM] -- {1145556A-45C9-49BF-929C-B219483DD9AA}
O42 - Logiciel: AudaDirect 24.00 (Remove Only) - (...) [HKLM] -- {474107E0-32BE-48C6-87AF-E83EA64AC08F}
O42 - Logiciel: AudaPen/AudaStation v.25.00 (Remove Only) - (.Audatex.) [HKLM] -- {FE58DBD8-129B-11D7-8D51-005056CAD6CB}
O42 - Logiciel: AudatexV2sulamerica - (.Audatex.) [HKLM] -- {BED1255B-C91E-4A4D-93F3-F5C62B78454A}
O42 - Logiciel: AudaUpdate Client 2.2 (Remove Only) - (...) [HKLM] -- {AFC6827A-7D8E-4569-9F53-43FACA98F384}
O42 - Logiciel: Automatos User Attributes Form - (...) [HKLM] -- {C7367A17-D0EF-4EA1-BF96-D39364A59B54}
O42 - Logiciel: BisonCam Twain Pro - (.Bison WebCam Ap.) [HKLM] -- {F2672232-FF17-4DC9-8F24-A1E1829FE086}  =>.Macrovision Corporation®
O42 - Logiciel: BufferChm - (.Hewlett-Packard.) [HKLM] -- {FA0FF682-CC70-4C57-93CD-E276F3E7537E} ©
O42 - Logiciel: Check Point VPN-1 SecuRemote/SecureClient NGX R60 HFA2 - (.Check Point.) [HKLM] -- {c080d4ef-802c-403a-9f98-c86871edfb7c} ©
O42 - Logiciel: Citrix online plug-in - web - (.Citrix Systems, Inc..) [HKLM] -- CitrixOnlinePluginPackWeb {5DAF72BBAD5E016FB920A5769DC04601} ©
O42 - Logiciel: Citrix online plug-in (DV) - (.Citrix Systems, Inc..) [HKLM] -- {678094A1-6250-476B-9AFF-4376E48F135C} ©
O42 - Logiciel: Citrix online plug-in (HDX) - (.Citrix Systems, Inc..) [HKLM] -- {FA365307-1963-4D16-BD44-113C8F037AAD} ©
O42 - Logiciel: Citrix online plug-in (USB) - (.Citrix Systems, Inc..) [HKLM] -- {3ECCB578-504E-4F7A-A8B4-CF4F3B939B44} ©
O42 - Logiciel: Citrix online plug-in (Web) - (.Citrix Systems, Inc..) [HKLM] -- {199C20D6-10D3-4210-B361-4760209F56AE} ©
O42 - Logiciel: Conexant HD Audio - (.Conexant.) [HKLM] -- CNXT_AUDIO_HDA  =>.Conexant Systems, Inc.®
O42 - Logiciel: DeviceDiscovery - (.Hewlett-Packard.) [HKLM] -- {1458BB78-1DC5-4BC0-B9A3-2B644F5A8105} ©
O42 - Logiciel: Doro 1.42 - (.CompSoft.) [HKLM] -- Doro_is1 ©
O42 - Logiciel: eToken PKI Client 5.1 SP1 - (.Aladdin Knowledge Systems Ltd..) [HKLM] -- {3909BE71-2D8F-42D2-BA46-3831B60CFD0F}
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome  =>.Google Inc®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} ©
O42 - Logiciel: HP Imaging Device Functions 14.0 - (.HP.) [HKLM] -- HP Imaging Device Functions  =>.Hewlett Packard®
O42 - Logiciel: HP Officejet 100 Mobile L411 - (.HP.) [HKLM] -- {CEBA70B0-686D-421B-B6B3-7ADF273B5037}  =>.Hewlett Packard®
O42 - Logiciel: IBM Endpoint Manager Client - (.IBM Corp..) [HKLM] -- {70F67CB3-7EA1-40A8-8329-289DDB98FEE2} ©
O42 - Logiciel: IBM Endpoint Manager for Remote Control - Target - (.IBM United Kingdom Ltd..) [HKLM] -- {A6211EF8-24C0-468F-9673-204E52890CEF}
O42 - Logiciel: ImgBurn - (.LIGHTNING UK!.) [HKLM] -- ImgBurn
O42 - Logiciel: Integrated Camera Driver Installer Package Ver.1.1.0.1147 - (.RICOH.) [HKLM] -- {B2CA6F37-1602-4823-81B5-0384B6888AA6} ©
O42 - Logiciel: Intel PROSet Wireless - (...) [HKLM] -- ProInst
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}  =>.Intel Corporation®
O42 - Logiciel: Java 7 Update 51 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83217051FF} ©
O42 - Logiciel: Java Auto Updater - (.Sun Microsystems, Inc..) [HKLM] -- {4A03706F-666A-4037-7777-5F2748764D10} ©
O42 - Logiciel: K-Lite Mega Codec Pack 10.9.5 - (...) [HKLM] -- KLiteCodecPack_is1
O42 - Logiciel: L411 - (.Hewlett-Packard.) [HKLM] -- {32A4CF00-9FAC-47c8-9B37-91CC23815D64} ©
O42 - Logiciel: L411_Help - (.Hewlett-Packard.) [HKLM] -- {629F38D9-30E4-4B8B-83B2-9CF7CB5BEF9E} ©
O42 - Logiciel: L411_Software_Min - (.Hewlett-Packard.) [HKLM] -- {58793BC5-EBCE-4e86-9ED2-2410A738AEEB} ©
O42 - Logiciel: Lenovo Auto Scroll Utility - (...) [HKLM] -- LenovoAutoScrollUtility
O42 - Logiciel: Lenovo Patch Utility - (.Lenovo Group Limited.) [HKLM] -- {24E92E7A-6848-4747-A3EA-3AAC0576BE52} ©
O42 - Logiciel: Lenovo Patch Utility - (.Lenovo Group Limited.) [HKLM] -- {C6FB6B4A-1378-4CD3-9CD3-42BA69FCBD43} ©
O42 - Logiciel: Lenovo Power Management Driver - (...) [HKLM] -- Power Management Driver
O42 - Logiciel: Lenovo System Interface Driver - (...) [HKLM] -- LENOVO.SMIIF
O42 - Logiciel: Lenovo System Update - (.Lenovo.) [HKLM] -- {25C64847-B900-48AD-A164-1B4F9B774650} ©
O42 - Logiciel: Lexmark S300-S400 Series - (.Lexmark International, Inc..) [HKLM] -- Lexmark S300-S400 Series {2DB3E1BE80A3B095FD2C799AE03019EA} ©
O42 - Logiciel: Microsoft Application Error Reporting - (.Microsoft Corporation.) [HKLM] -- {95120000-00B9-0409-0000-0000000FF1CE} ©
O42 - Logiciel: Microsoft SOAP Toolkit 3.0 - (.Microsoft Corporation.) [HKLM] -- {BCB4C18A-ACA6-4383-8688-E19933A705DD} ©
O42 - Logiciel: MSXML 4.0 SP2 Parser and SDK - (.Microsoft Corporation.) [HKLM] -- {716E0306-8318-4364-8B8F-0CC4E9376BAC} ©
O42 - Logiciel: MV RegClean 5.9 - (...) [HKLM] -- MV RegClean 5.9_is1
O42 - Logiciel: On Screen Display - (...) [HKLM] -- OnScreenDisplay
O42 - Logiciel: ORACLE 10G - (.ORACLE 10G.) [HKLM] -- {6D1796BD-7AF6-48C4-8FC6-C20ED515C2D4}
O42 - Logiciel: Orion Orcamentos - (...) [HKLM] -- {7CC68A3C-8FD5-4B1D-8A4B-F2CF31E962D4}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}  =>.Realtek Semiconductor Corp®
O42 - Logiciel: Revo Uninstaller 1.95 - (.VS Revo Group.) [HKLM] -- Revo Uninstaller ©
O42 - Logiciel: RICOH_Media_Driver_v2.14.18.01 - (.RICOH.) [HKLM] -- {FE041B02-234C-4AAA-9511-80DF6482A458} ©
O42 - Logiciel: Samsung Kies3 - (.Samsung Electronics Co., Ltd..) [HKLM] -- {88547073-C566-4895-9005-EBE98EA3F7C7} ©
O42 - Logiciel: Samsung Kies3 - (.Samsung Electronics Co., Ltd..) [HKLM] -- InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7} ©
O42 - Logiciel: SAMSUNG USB Driver for Mobile Phones - (.SAMSUNG Electronics Co., Ltd..) [HKLM] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44}  =>.DEVGURU CO LTD®
O42 - Logiciel: Service Pack 2 para o SQL Server 2008 R2 (KB2630458) - (.Microsoft Corporation.) [HKLM] -- KB2630458  =>.Microsoft Corporation®
O42 - Logiciel: Sistema Audatex - (...) [HKLM] -- Sistema Audatex
O42 - Logiciel: Software Intel(R) PROSet/Wireless WiFi - (.Intel Corporation.) [HKLM] -- {25FBDA9A-E868-4B3B-B9FF-D923818511A1} ©
O42 - Logiciel: Spybot - Search & Destroy - (.Safer-Networking Ltd..) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1  =>.Safer Networking Ltd.®
O42 - Logiciel: SQL Server 2008 R2 SP2 Common Files - (.Microsoft Corporation.) [HKLM] -- {0F09CF56-E66B-413C-8983-0AA5F1D225F2} ©
O42 - Logiciel: SQL Server 2008 R2 SP2 Common Files - (.Microsoft Corporation.) [HKLM] -- {CACEA8C8-3D38-4F51-953D-1E6FC3346FEF} ©
O42 - Logiciel: SQL Server 2008 R2 SP2 Database Engine Services - (.Microsoft Corporation.) [HKLM] -- {4EA95F3E-3216-403D-89AC-E3FEEB158931} ©
O42 - Logiciel: SQL Server 2008 R2 SP2 Database Engine Services - (.Microsoft Corporation.) [HKLM] -- {B5153233-9AEE-4CD4-9D2C-4FAAC870DBE2} ©
O42 - Logiciel: SQL Server 2008 R2 SP2 Database Engine Shared - (.Microsoft Corporation.) [HKLM] -- {4C9D82EB-9001-4E59-8F64-0BEEE5F4A30A} ©
O42 - Logiciel: SQL Server 2008 R2 SP2 Database Engine Shared - (.Microsoft Corporation.) [HKLM] -- {EE58A6D8-7723-4A91-804C-48CD4B36AB67} ©
O42 - Logiciel: Sql Server Customer Experience Improvement Program - (.Microsoft Corporation.) [HKLM] -- {93998800-1608-403F-9A51-420A77D23C25} ©
O42 - Logiciel: Status - (.Hewlett-Packard.) [HKLM] -- {5B025634-7D5B-4B8D-BE2A-7943C1CF2D5D} ©
O42 - Logiciel: Symantec Endpoint Protection - (.Symantec Corporation.) [HKLM] -- {78BC019C-656D-4458-A860-6977AA85049A} ©
O42 - Logiciel: TeamViewer 9 - (.TeamViewer.) [HKLM] -- TeamViewer 9  =>.TeamViewer®
O42 - Logiciel: Telnet - (.Telnet.) [HKLM] -- {169FD122-CE2B-4EAE-80C3-86F06DBBA890}
O42 - Logiciel: ThinkPad Bluetooth with Enhanced Data Rate Software - (.Broadcom Corporation.) [HKLM] -- {A1439D4F-FD46-47F2-A1D3-FEE097C29A09} ©
O42 - Logiciel: Toolbox - (.Hewlett-Packard.) [HKLM] -- {292F0F52-B62D-4E71-921B-89A682402201} ©
O42 - Logiciel: TrayApp - (.Hewlett-Packard.) [HKLM] -- {CD31E63D-47FD-491C-8117-CF201D0AFAB5} ©
O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU] -- UnityWebPlayer ©
O42 - Logiciel: Visual Studio C++ 10.0 Runtime - (.TomTom International B.V..) [HKLM] -- {4412F224-3849-4461-A3E9-DEEF8D252790} ©
O42 - Logiciel: WebReg - (.Hewlett-Packard.) [HKLM] -- {8EE94FD8-5F52-4463-A340-185D16328158} ©

---\\ Ponto de restauro do sistema (129) - 21s
HKLM\SOFTWARE\7-Zip
HKLM\SOFTWARE\Adobe
HKLM\SOFTWARE\AdwCleaner
HKLM\SOFTWARE\Aladdin
HKLM\SOFTWARE\ATI Technologies
HKLM\SOFTWARE\Audatex
HKLM\SOFTWARE\Auslogics
HKLM\SOFTWARE\Automatos
HKLM\SOFTWARE\Baidu
HKLM\SOFTWARE\BigFix
HKLM\SOFTWARE\BisonCam
HKLM\SOFTWARE\CBSTEST
HKLM\SOFTWARE\CheckPoint
HKLM\SOFTWARE\Citrix
HKLM\SOFTWARE\CloudOPTInfo
HKLM\SOFTWARE\Cnxt_Uiu_Parms
HKLM\SOFTWARE\CompSoft
HKLM\SOFTWARE\Conexant
HKLM\SOFTWARE\Cygwin
HKLM\SOFTWARE\DameWare Development
HKLM\SOFTWARE\GNU
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\GPL Ghostscript
HKLM\SOFTWARE\HaaliMkx
HKLM\SOFTWARE\Hewlett-Packard
HKLM\SOFTWARE\IBM
HKLM\SOFTWARE\Icaros
HKLM\SOFTWARE\ICE
HKLM\SOFTWARE\ImgBurn
HKLM\SOFTWARE\InstalledOptions
HKLM\SOFTWARE\Intel
HKLM\SOFTWARE\InterVideo
HKLM\SOFTWARE\JavaSoft
HKLM\SOFTWARE\JreMetrics
HKLM\SOFTWARE\KLCodecPack
HKLM\SOFTWARE\LAV
HKLM\SOFTWARE\Lavasoft
HKLM\SOFTWARE\LENOVO
HKLM\SOFTWARE\Lexmark
HKLM\SOFTWARE\LexmarkInkjet
HKLM\SOFTWARE\Macromedia
HKLM\SOFTWARE\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Molicar3
HKLM\SOFTWARE\Mozilla
HKLM\SOFTWARE\mozilla.org
HKLM\SOFTWARE\MozillaPlugins
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\Opera Software
HKLM\SOFTWARE\ORACLE
HKLM\SOFTWARE\pss
HKLM\SOFTWARE\Realtek
HKLM\SOFTWARE\Receptor
HKLM\SOFTWARE\RegisteredApplications
HKLM\SOFTWARE\RTLSetup
HKLM\SOFTWARE\Safer Networking Limited
HKLM\SOFTWARE\Samsung
HKLM\SOFTWARE\Sonic
HKLM\SOFTWARE\Swearware
HKLM\SOFTWARE\Symantec
HKLM\SOFTWARE\TeamViewer
HKLM\SOFTWARE\TrendMicro
HKLM\SOFTWARE\UIU
HKLM\SOFTWARE\VB and VBA Program Settings
HKLM\SOFTWARE\Volatile
HKLM\SOFTWARE\Widcomm
HKLM\SOFTWARE\WOW6432Node
HKLM\SOFTWARE\Description
HKCU\SOFTWARE\7-Zip
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AIDeX
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Audatex
HKCU\SOFTWARE\Avira
HKCU\SOFTWARE\Baidu
HKCU\SOFTWARE\Baixaki
HKCU\SOFTWARE\BigFix
HKCU\SOFTWARE\CheckPoint
HKCU\SOFTWARE\CompSoft
HKCU\SOFTWARE\Convar
HKCU\SOFTWARE\eM Client
HKCU\SOFTWARE\GbPlugin
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\Hewlett-Packard
HKCU\SOFTWARE\HP
HKCU\SOFTWARE\IBM
HKCU\SOFTWARE\Icaros
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\Lenovo
HKCU\SOFTWARE\LexmarkInkjet
HKCU\SOFTWARE\LexmarkPhoto
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\madshi
HKCU\SOFTWARE\MediaInfo
HKCU\SOFTWARE\Mooii
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MPC-HC
HKCU\SOFTWARE\Naviextras
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\PTP
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\Safer Networking Limited
HKCU\SOFTWARE\Samsung
HKCU\SOFTWARE\SourceForge
HKCU\SOFTWARE\SqlDbx
HKCU\SOFTWARE\Symantec
HKCU\SOFTWARE\Sysinternals
HKCU\SOFTWARE\TeamViewer
HKCU\SOFTWARE\TomTom
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\VSRevoGroup
HKCU\SOFTWARE\Wget
HKCU\SOFTWARE\Widcomm
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Toolkit
HKCU\SOFTWARE\AppDataLow\Software\adawarebp  =>PUP.Optional.ToolbarCleaner
HKCU\SOFTWARE\AppDataLow\Software\Barksdale
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\Unity

---\\ Conteúdo das pastas Programs (218) - 31s
O43 - CFD: 27/04/2015 - [] D -- C:\Program Files\7-Zip
O43 - CFD: 24/03/2014 - [] D -- C:\Program Files\Adobe  =>.Adobe Systems, Incorporated®
O43 - CFD: 27/03/2014 - [] D -- C:\Program Files\Aladdin {6BEA1E66D2B4A57E74CE91893FACE0D8}
O43 - CFD: 24/03/2014 - [] SHD -- C:\Program Files\Arquivos Comuns  =>.Symantec Corporation®
O43 - CFD: 08/05/2015 - [0] D -- C:\Program Files\Avira
O43 - CFD: 29/12/2015 - [0] D -- C:\Program Files\baidu
O43 - CFD: 24/03/2014 - [] D -- C:\Program Files\BigFix Enterprise {04FF9F7B8D388B6D5F7366B7399AF0C3}
O43 - CFD: 27/03/2014 - [] D -- C:\Program Files\CheckPoint
O43 - CFD: 24/03/2014 - [] D -- C:\Program Files\Cisco
O43 - CFD: 25/03/2014 - [] D -- C:\Program Files\Citrix {6796277C4947E65B9CA85346EB80DE17}
O43 - CFD: 17/12/2015 - [] D -- C:\Program Files\Common Files
O43 - CFD: 24/03/2014 - [] D -- C:\Program Files\CONEXANT  =>.Conexant Systems, Inc.®
O43 - CFD: 24/03/2014 - [] D -- C:\Program Files\DoroPDFWriter
O43 - CFD: 12/04/2011 - [] D -- C:\Program Files\DVD Maker
O43 - CFD: 22/04/2015 - [] D -- C:\Program Files\GbPlugin {12D257F7955AC6D6A4365FB70A3DC10A}
O43 - CFD: 21/04/2015 - [] D -- C:\Program Files\Google  =>.Google Inc®
O43 - CFD: 16/12/2015 - [] D -- C:\Program Files\HP  =>.Hewlett Packard®
O43 - CFD: 24/03/2014 - [] D -- C:\Program Files\ibm {63CD26DF48BB82DF3837F2E3A0DDCBBC}
O43 - CFD: 24/03/2014 - [] D -- C:\Program Files\ImgBurn
O43 - CFD: 20/04/2015 - [] HD -- C:\Program Files\InstallShield Installation Information
O43 - CFD: 24/03/2014 - [] D -- C:\Program Files\Integrated Camera Driver
O43 - CFD: 25/03/2014 - [] D -- C:\Program Files\Intel  =>.Microsoft Windows®
O43 - CFD: 29/04/2015 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 24/03/2014 - [] D -- C:\Program Files\Java  =>.Oracle America, Inc.®
O43 - CFD: 02/02/2015 - [] D -- C:\Program Files\K-Lite Codec Pack
O43 - CFD: 24/03/2014 - [] D -- C:\Program Files\Lenovo {3AE1F834FA867FF5102FBE94ADF86384}
O43 - CFD: 07/11/2014 - [] D -- C:\Program Files\Lexmark {2DB3E1BE80A3B095FD2C799AE03019EA}
O43 - CFD: 07/11/2014 - [] D -- C:\Program Files\Lexmark S300-S400 Series {2DB3E1BE80A3B095FD2C799AE03019EA}
O43 - CFD: 07/11/2014 - [] D -- C:\Program Files\Lexmark Toolbar
O43 - CFD: 18/07/2014 - [] D -- C:\Program Files\Marcos Velasco Security
O43 - CFD: 16/12/2015 - [0] D -- C:\Program Files\Microsoft
O43 - CFD: 24/03/2014 - [] D -- C:\Program Files\Microsoft Analysis Services
O43 - CFD: 17/12/2015 - [0] D -- C:\Program Files\Microsoft Silverlight
O43 - CFD: 18/07/2014 - [] D -- C:\Program Files\Microsoft SQL Server  =>.Microsoft Corporation®
O43 - CFD: 18/07/2014 - [] D -- C:\Program Files\Microsoft Visual Studio 9.0
O43 - CFD: 18/07/2014 - [] D -- C:\Program Files\Microsoft.NET
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 24/03/2014 - [] D -- C:\Program Files\MSSOAP
O43 - CFD: 24/03/2014 - [0] D -- C:\Program Files\MSXML 4.0
O43 - CFD: 16/12/2015 - [] D -- C:\Program Files\OI
O43 - CFD: 11/08/2015 - [] D -- C:\Program Files\Opera
O43 - CFD: 24/03/2014 - [] D -- C:\Program Files\Oracle
O43 - CFD: 13/10/2015 - [] D -- C:\Program Files\PhotoScape  =>.Mooii Tech®
O43 - CFD: 27/03/2014 - [] D -- C:\Program Files\Realtek  =>.Realtek Semiconductor Corp®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 24/03/2014 - [] D -- C:\Program Files\Ricoh
O43 - CFD: 02/04/2015 - [] D -- C:\Program Files\Samsung  =>.DEVGURU CO LTD®
O43 - CFD: 29/12/2015 - [] D -- C:\Program Files\Spybot - Search & Destroy 2  =>.Safer Networking Ltd.®
O43 - CFD: 24/03/2014 - [] D -- C:\Program Files\Symantec  =>.Symantec Corporation®
O43 - CFD: 15/07/2014 - [] D -- C:\Program Files\TeamViewer  =>.TeamViewer®
O43 - CFD: 24/03/2014 - [] D -- C:\Program Files\ThinkPad  =>.Broadcom Corporation®
O43 - CFD: 24/03/2014 - [] D -- C:\Program Files\tivoli {63ACB2CBE8CF97D66478469F5CE0D445}
O43 - CFD: 11/09/2014 - [] D -- C:\Program Files\TomTom International B.V
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 22/04/2015 - [] D -- C:\Program Files\VS Revo Group  =>.VS Revo Group®
O43 - CFD: 12/04/2011 - [] D -- C:\Program Files\Windows Defender
O43 - CFD: 12/04/2011 - [] D -- C:\Program Files\Windows Journal
O43 - CFD: 12/04/2011 - [] D -- C:\Program Files\Windows Mail
O43 - CFD: 12/04/2011 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 24/03/2014 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 12/04/2011 - [] D -- C:\Program Files\Windows Photo Viewer  =>.Microsoft Corporation®
O43 - CFD: 20/11/2010 - [] D -- C:\Program Files\Windows Portable Devices
O43 - CFD: 12/04/2011 - [] D -- C:\Program Files\Windows Sidebar
O43 - CFD: 27/04/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
O43 - CFD: 24/03/2014 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 24/03/2014 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 04/12/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audatex
O43 - CFD: 27/03/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Check Point VPN-1 SecureClient
O43 - CFD: 27/03/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eToken
O43 - CFD: 12/04/2011 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 21/04/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 20/04/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hewlett-Packard Company
O43 - CFD: 16/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
O43 - CFD: 24/03/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn
O43 - CFD: 24/03/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 02/02/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
O43 - CFD: 24/03/2014 - [] HD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools
O43 - CFD: 07/11/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lexmark
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 18/07/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Marcos Velasco Security
O43 - CFD: 17/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 17/07/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SOAP Toolkit Version 3
O43 - CFD: 18/07/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008
O43 - CFD: 18/07/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008 R2
O43 - CFD: 16/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oi
O43 - CFD: 24/03/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle - ORA1020
O43 - CFD: 24/03/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle Installation Products
O43 - CFD: 13/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoScape
O43 - CFD: 02/04/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
O43 - CFD: 04/12/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sistema Audatex
O43 - CFD: 29/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
O43 - CFD: 11/09/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 19/09/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Symantec Endpoint Protection
O43 - CFD: 12/04/2011 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 24/03/2014 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 04/12/2014 - [] D -- C:\ProgramData\Audatex
O43 - CFD: 08/05/2015 - [] D -- C:\ProgramData\Avira
O43 - CFD: 08/05/2015 - [] D -- C:\ProgramData\Baidu
O43 - CFD: 06/03/2015 - [] D -- C:\ProgramData\BigFix
O43 - CFD: 29/04/2015 - [0] D -- C:\ProgramData\bufelwnivvbae
O43 - CFD: 29/04/2015 - [0] D -- C:\ProgramData\cficuxczswmzm
O43 - CFD: 25/03/2014 - [] D -- C:\ProgramData\Citrix
O43 - CFD: 24/03/2014 - [0] SHD -- C:\ProgramData\Dados de aplicativos
O43 - CFD: 14/07/2009 - [] SHD -- C:\ProgramData\Desktop
O43 - CFD: 29/04/2015 - [0] D -- C:\ProgramData\dhpnmbgidnuib
O43 - CFD: 07/05/2015 - [] D -- C:\ProgramData\Doctor Web
O43 - CFD: 24/03/2014 - [] SHD -- C:\ProgramData\Documentos
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 07/11/2014 - [] D -- C:\ProgramData\Ezprint
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 24/03/2014 - [0] SHD -- C:\ProgramData\Favoritos
O43 - CFD: 27/03/2014 - [] D -- C:\ProgramData\GAS Tecnologia
O43 - CFD: 23/12/2015 - [] D -- C:\ProgramData\GbPlugin
O43 - CFD: 24/03/2014 - [] D -- C:\ProgramData\GroupPolicy
O43 - CFD: 11/09/2015 - [] D -- C:\ProgramData\HP
O43 - CFD: 31/10/2014 - [] D -- C:\ProgramData\IBM
O43 - CFD: 24/03/2014 - [] D -- C:\ProgramData\Intel
O43 - CFD: 24/03/2014 - [] D -- C:\ProgramData\lenovo
O43 - CFD: 26/12/2014 - [] D -- C:\ProgramData\Lexmark S300-S400 Series
O43 - CFD: 02/02/2015 - [] D -- C:\ProgramData\Lx_cats
O43 - CFD: 23/04/2015 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 24/03/2014 - [] SHD -- C:\ProgramData\Menu Iniciar
O43 - CFD: 29/12/2015 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 17/12/2015 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 24/03/2014 - [0] SHD -- C:\ProgramData\Modelos
O43 - CFD: 08/05/2015 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 29/04/2015 - [0] D -- C:\ProgramData\mwcqhaojcjszl
O43 - CFD: 24/03/2014 - [] D -- C:\ProgramData\OI
O43 - CFD: 24/03/2014 - [0] D -- C:\ProgramData\Oracle
O43 - CFD: 08/05/2015 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 15/07/2014 - [] D -- C:\ProgramData\regid.1992-12.com.symantec
O43 - CFD: 24/03/2014 - [] D -- C:\ProgramData\regid.1992_12.com.symantec
O43 - CFD: 07/05/2015 - [] D -- C:\ProgramData\RogueKiller
O43 - CFD: 02/04/2015 - [] D -- C:\ProgramData\Samsung
O43 - CFD: 29/12/2015 - [] D -- C:\ProgramData\Spybot - Search & Destroy
O43 - CFD: 14/07/2009 - [] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 24/03/2014 - [] D -- C:\ProgramData\Sun
O43 - CFD: 22/12/2015 - [] D -- C:\ProgramData\Symantec
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 29/04/2015 - [0] D -- C:\ProgramData\unmeblgrodxqu
O43 - CFD: 11/09/2015 - [] D -- C:\ProgramData\WEBREG
O43 - CFD: 24/03/2014 - [] D -- C:\Program Files\Common Files\Adobe
O43 - CFD: 24/03/2014 - [] D -- C:\Program Files\Common Files\Dao
O43 - CFD: 24/03/2014 - [] D -- C:\Program Files\Common Files\DESIGNER
O43 - CFD: 04/12/2014 - [] D -- C:\Program Files\Common Files\InstallShield
O43 - CFD: 25/03/2014 - [] D -- C:\Program Files\Common Files\Intel
O43 - CFD: 24/03/2014 - [] D -- C:\Program Files\Common Files\Java
O43 - CFD: 25/03/2014 - [] D -- C:\Program Files\Common Files\Lenovo
O43 - CFD: 16/12/2015 - [] D -- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 24/03/2014 - [] D -- C:\Program Files\Common Files\MSSoap
O43 - CFD: 24/03/2014 - [] D -- C:\Program Files\Common Files\ODBC
O43 - CFD: 24/03/2014 - [] D -- C:\Program Files\Common Files\Real
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Common Files\Services
O43 - CFD: 24/03/2014 - [] SHD -- C:\Program Files\Common Files\Sistema
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 19/09/2014 - [] D -- C:\Program Files\Common Files\Symantec Shared
O43 - CFD: 12/04/2011 - [] D -- C:\Program Files\Common Files\System
O43 - CFD: 27/03/2014 - [] D -- D:\Users\ma084140\AppData\Roaming\Adobe
O43 - CFD: 08/05/2015 - [] D -- D:\Users\ma084140\AppData\Roaming\Baidu
O43 - CFD: 08/04/2014 - [] D -- D:\Users\ma084140\AppData\Roaming\DivX
O43 - CFD: 28/04/2015 - [] D -- D:\Users\ma084140\AppData\Roaming\eM Client
O43 - CFD: 11/09/2015 - [] D -- D:\Users\ma084140\AppData\Roaming\HP
O43 - CFD: 27/03/2014 - [] D -- D:\Users\ma084140\AppData\Roaming\ICAClient
O43 - CFD: 27/03/2014 - [] D -- D:\Users\ma084140\AppData\Roaming\Identities
O43 - CFD: 27/03/2014 - [] D -- D:\Users\ma084140\AppData\Roaming\Intel
O43 - CFD: 07/05/2015 - [] D -- D:\Users\ma084140\AppData\Roaming\LavasoftStatistics
O43 - CFD: 14/05/2014 - [] D -- D:\Users\ma084140\AppData\Roaming\LibreOffice
O43 - CFD: 04/12/2014 - [0] D -- D:\Users\ma084140\AppData\Roaming\Lightcomm
O43 - CFD: 27/03/2014 - [] D -- D:\Users\ma084140\AppData\Roaming\Macromedia
O43 - CFD: 12/04/2011 - [0] D -- D:\Users\ma084140\AppData\Roaming\Media Center Programs
O43 - CFD: 08/04/2014 - [] D -- D:\Users\ma084140\AppData\Roaming\Media Player Classic
O43 - CFD: 29/04/2015 - [] SD -- D:\Users\ma084140\AppData\Roaming\Microsoft
O43 - CFD: 08/05/2015 - [] D -- D:\Users\ma084140\AppData\Roaming\Mozilla
O43 - CFD: 04/02/2015 - [] D -- D:\Users\ma084140\AppData\Roaming\MPC-HC
O43 - CFD: 11/08/2015 - [] D -- D:\Users\ma084140\AppData\Roaming\Opera Software
O43 - CFD: 04/11/2015 - [0] D -- D:\Users\ma084140\AppData\Roaming\PhotoScape
O43 - CFD: 02/04/2015 - [] D -- D:\Users\ma084140\AppData\Roaming\Samsung
O43 - CFD: 01/04/2014 - [] D -- D:\Users\ma084140\AppData\Roaming\TeamViewer
O43 - CFD: 17/07/2014 - [] D -- D:\Users\ma084140\AppData\Roaming\Trend Consulting
O43 - CFD: 29/12/2015 - [] D -- D:\Users\ma084140\AppData\Roaming\ZHP
O43 - CFD: 15/06/2015 - [] D -- D:\Users\ma084140\AppData\Local\Adobe
O43 - CFD: 02/06/2015 - [] D -- D:\Users\ma084140\AppData\Local\Apps
O43 - CFD: 17/12/2015 - [] D -- D:\Users\ma084140\AppData\Local\BigFix
O43 - CFD: 27/03/2014 - [] D -- D:\Users\ma084140\AppData\Local\Broadcom
O43 - CFD: 27/03/2014 - [] D -- D:\Users\ma084140\AppData\Local\Citrix
O43 - CFD: 28/12/2015 - [] D -- D:\Users\ma084140\AppData\Local\CrashDumps
O43 - CFD: 27/03/2014 - [0] SHD -- D:\Users\ma084140\AppData\Local\Dados de aplicativos
O43 - CFD: 21/04/2015 - [0] D -- D:\Users\ma084140\AppData\Local\Deployment
O43 - CFD: 28/09/2015 - [] D -- D:\Users\ma084140\AppData\Local\Diagnostics
O43 - CFD: 15/09/2015 - [] D -- D:\Users\ma084140\AppData\Local\ElevatedDiagnostics
O43 - CFD: 29/04/2015 - [] SHD -- D:\Users\ma084140\AppData\Local\EmieBrowserModeList
O43 - CFD: 29/04/2015 - [] SHD -- D:\Users\ma084140\AppData\Local\EmieSiteList
O43 - CFD: 29/04/2015 - [] SHD -- D:\Users\ma084140\AppData\Local\EmieUserList
O43 - CFD: 16/01/2015 - [] D -- D:\Users\ma084140\AppData\Local\fontconfig
O43 - CFD: 15/09/2015 - [] D -- D:\Users\ma084140\AppData\Local\Google
O43 - CFD: 27/03/2014 - [0] SHD -- D:\Users\ma084140\AppData\Local\Histórico
O43 - CFD: 26/06/2014 - [] D -- D:\Users\ma084140\AppData\Local\Lenovo
O43 - CFD: 16/12/2015 - [] D -- D:\Users\ma084140\AppData\Local\Microsoft
O43 - CFD: 19/08/2014 - [0] D -- D:\Users\ma084140\AppData\Local\Microsoft Help
O43 - CFD: 16/01/2015 - [] D -- D:\Users\ma084140\AppData\Local\MiniService
O43 - CFD: 08/05/2015 - [] D -- D:\Users\ma084140\AppData\Local\Mozilla
O43 - CFD: 11/08/2015 - [] D -- D:\Users\ma084140\AppData\Local\Opera Software
O43 - CFD: 02/02/2015 - [] D -- D:\Users\ma084140\AppData\Local\Programs
O43 - CFD: 15/07/2014 - [] D -- D:\Users\ma084140\AppData\Local\SqlDbx
O43 - CFD: 27/03/2014 - [] D -- D:\Users\ma084140\AppData\Local\Symantec
O43 - CFD: 29/12/2015 - [] D -- D:\Users\ma084140\AppData\Local\Temp
O43 - CFD: 27/03/2014 - [0] SHD -- D:\Users\ma084140\AppData\Local\Temporary Internet Files
O43 - CFD: 11/09/2014 - [0] D -- D:\Users\ma084140\AppData\Local\TomTom
O43 - CFD: 12/05/2014 - [] D -- D:\Users\ma084140\AppData\Local\Unity
O43 - CFD: 24/03/2014 - [] RD -- D:\Users\ma084140\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 27/03/2014 - [] RD -- D:\Users\ma084140\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 27/03/2014 - [0] D -- D:\Users\ma084140\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ambiente do Usuário ma084140
O43 - CFD: 11/08/2015 - [] D -- D:\Users\ma084140\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Convar
O43 - CFD: 16/11/2015 - [] D -- D:\Users\ma084140\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dispositivos Bluetooth
O43 - CFD: 24/03/2014 - [] RD -- D:\Users\ma084140\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 22/04/2015 - [] D -- D:\Users\ma084140\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
O43 - CFD: 27/03/2014 - [] RD -- D:\Users\ma084140\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

---\\ Softwares de proteçao do sistema (Supérfluo) (3) - 0s
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL de Extensão do Shell do Armazenamento A.) -- C:\Windows\System32\EhStorShell.dll ©
O106 - SIOI:  [Offline Files] - {4E77131D-3629-431c-9818-C5679DC83E81}. (.Microsoft Corporation - Interface de usuário de cache do cliente.) -- C:\Windows\System32\cscui.dll ©
O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Extensões do Shell para compartilhamento.) -- C:\Windows\System32\ntshrui.dll ©

---\\ Lista dos drivers do sistema (104) - 69s
O58 - SDL:2011/03/04 19:14:34 A . (.Ricoh co.,Ltd. - Ricoh USB Camera driver.) -- C:\Windows\System32\drivers\5U877.sys   [132096]
O58 - SDL:2009/07/13 23:26:15 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys   [422976]  =>.Microsoft Windows®
O58 - SDL:2009/07/13 23:26:17 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys   [297552]  =>.Microsoft Windows®
O58 - SDL:2009/07/13 23:26:15 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\System32\drivers\adpu320.sys   [146512]  =>.Microsoft Windows®
O58 - SDL:2008/07/29 17:40:04 A . (.Aladdin Knowledge Systems, Ltd. - PCSC IFD handler for eToken.) -- C:\Windows\System32\drivers\aksifdh.sys   [48296] {7BD92765A3195DD9F2D53F0CDEB5D062}
O58 - SDL:2008/07/29 17:40:04 A . (.Aladdin Knowledge Systems, Ltd. - USB pipe driver for eToken.) -- C:\Windows\System32\drivers\aksup.sys   [34472] {7BD92765A3195DD9F2D53F0CDEB5D062}
O58 - SDL:2009/07/13 23:26:15 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys   [14400]  =>.Microsoft Windows®
O58 - SDL:2010/11/20 19:29:03 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys   [80256]  =>.Microsoft Windows®
O58 - SDL:2009/07/13 23:26:15 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys   [159312]  =>.Microsoft Windows®
O58 - SDL:2010/11/20 19:29:03 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys   [22400]  =>.Microsoft Windows®
O58 - SDL:2009/07/13 23:26:15 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys   [76368]  =>.Microsoft Windows®
O58 - SDL:2009/07/13 23:26:15 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys   [86608]  =>.Microsoft Windows®
O58 - SDL:2009/07/13 20:02:49 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60x.sys   [229888] ©
O58 - SDL:2009/07/13 20:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys   [13568] ©
O58 - SDL:2009/07/13 20:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys   [5248] ©
O58 - SDL:2009/07/13 22:57:25 A . (.Brother Industries Ltd. - Brother Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys   [272128] ©
O58 - SDL:2009/07/13 20:53:32 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys   [62336] ©
O58 - SDL:2009/07/13 20:53:33 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys   [12160] ©
O58 - SDL:2009/07/13 20:53:33 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys   [11904] ©
O58 - SDL:2012/12/04 05:38:12 A . (.Broadcom Corporation. - Broadcom Bluetooth USB AMP Filter for Windo.) -- C:\Windows\System32\drivers\btwampfl.sys   [508184]  =>.Broadcom Corporation®
O58 - SDL:2012/05/02 08:18:16 A . (.Broadcom Corporation. - Bluetooth Audio Device.) -- C:\Windows\System32\drivers\btwaudio.sys   [152400]  =>.Broadcom Corporation®
O58 - SDL:2012/03/06 13:29:16 A . (.Broadcom Corporation. - Broadcom Bluetooth AVDT Service.) -- C:\Windows\System32\drivers\btwavdt.sys   [175144]  =>.Broadcom Corporation®
O58 - SDL:2011/09/18 02:36:56 A . (.Broadcom Corporation. - Broadcom Bluetooth L2CAP Service.) -- C:\Windows\System32\drivers\btwl2cap.sys   [33832]  =>.Broadcom Corporation®
O58 - SDL:2012/03/06 13:28:58 A . (.Broadcom Corporation. - Bluetooth Remote Control HID Minidriver.) -- C:\Windows\System32\drivers\btwrchid.sys   [18728]  =>.Broadcom Corporation®
O58 - SDL:2009/07/13 20:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbdx.sys   [430080] ©
O58 - SDL:2011/03/24 16:37:22 A . (.Conexant Systems Inc. - High Definition Audio Function Driver.) -- C:\Windows\System32\drivers\CHDRT32.sys   [1280128]  =>.Conexant Systems, Inc.®
O58 - SDL:2009/07/13 23:26:21 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys   [15952]  =>.Microsoft Windows®
O58 - SDL:2010/07/14 13:51:56 A . (.Citrix Systems, Inc. - Citrix USB Filter Driver.) -- C:\Windows\System32\drivers\ctxusbm.sys   [65584] {39C70944F2C31AB974E85B3388A34F39} ©
O58 - SDL:2007/02/07 11:00:00 A . (.DameWare Development, LLC - DameWare Development Mirror Miniport Driver.) -- C:\Windows\System32\drivers\DamewareMini.sys   [3712]
O58 - SDL:2009/07/13 23:20:28 A . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\System32\drivers\djsvs.sys   [70720]  =>.Microsoft Windows®
O58 - SDL:2007/02/15 11:00:00 A . (.DameWare - DameWare Virtual Keyboard Driver.) -- C:\Windows\System32\drivers\dwvkbd.sys   [26624] ©
O58 - SDL:2009/07/13 23:20:28 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys   [453712]  =>.Microsoft Windows®
O58 - SDL:2009/07/13 20:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbdx.sys   [3100160] ©
O58 - SDL:2008/06/18 14:46:56 A . (.Check Point Software Technologies - .) -- C:\Windows\System32\drivers\fw.sys   [2235760] ©
O58 - SDL:2014/05/06 16:04:04 A . (.GAS Tecnologia - GbPlugin Device Driver.) -- C:\Windows\System32\drivers\gbpkm.sys   [46392] {12D257F7955AC6D6A4365FB70A3DC10A}
O58 - SDL:2014/04/04 06:32:29 A . (.GAS Tecnologia - GAS Tecnologia - LWF Helper Driver.) -- C:\Windows\System32\drivers\gbpndisrdn.sys   [29400] {58C005F9811C3FD333668072A04E0D1B}
O58 - SDL:2009/07/13 20:54:14 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys   [26624] ©
O58 - SDL:2010/10/19 17:33:40 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\HECI.sys   [41088] ©
O58 - SDL:2009/07/13 23:20:28 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys   [67152]  =>.Microsoft Windows®
O58 - SDL:2010/11/20 19:29:03 A . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\drivers\iaStorV.sys   [332160]  =>.Microsoft Windows®
O58 - SDL:2013/12/17 18:59:58 A . (.Lenovo. - Lenovo Power Management Driver.) -- C:\Windows\System32\drivers\ibmpmdrv.sys   [45880] {1CA08E795C58A609AE46FE0B7FDBC08B}
O58 - SDL:2011/08/19 15:20:18 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd32.sys   [10843136] ©
O58 - SDL:2009/07/13 23:20:36 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys   [41040]  =>.Microsoft Windows®
O58 - SDL:2011/08/19 15:20:38 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\drivers\IntcDAud.sys   [269824] ©
O58 - SDL:2009/07/13 23:20:36 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys   [95824]  =>.Microsoft Windows®
O58 - SDL:2009/07/13 23:20:37 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys   [89168]  =>.Microsoft Windows®
O58 - SDL:2009/07/13 23:20:36 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys   [54864]  =>.Microsoft Windows®
O58 - SDL:2009/07/13 23:20:36 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys   [96848]  =>.Microsoft Windows®
O58 - SDL:2009/06/29 13:16:40 A . (.ZTE Incorporated - ZTE CDROM Filter.) -- C:\Windows\System32\drivers\massfilter.sys   [7680] ©
O58 - SDL:2009/07/13 23:20:36 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys   [30800]  =>.Microsoft Windows®
O58 - SDL:2009/07/13 23:20:36 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys   [235584]  =>.Microsoft Windows®
O58 - SDL:2009/07/13 21:25:59 A . (...) -- C:\Windows\System32\drivers\monitor.sys   [23552]
O58 - SDL:2011/08/03 18:27:18 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\System32\drivers\NETwNs32.sys   [7517696] ©
O58 - SDL:2009/07/13 23:20:44 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys   [44624]  =>.Microsoft Windows®
O58 - SDL:2010/11/20 19:29:03 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys   [117120]  =>.Microsoft Windows®
O58 - SDL:2010/11/20 19:29:03 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys   [143744]  =>.Microsoft Windows®
O58 - SDL:2008/06/18 14:46:58 A . (.Check Point Software Technologies - .) -- C:\Windows\System32\drivers\omdrv.sys   [47504] ©
O58 - SDL:2009/07/13 23:19:04 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys   [1383488]  =>.Microsoft Windows®
O58 - SDL:2009/07/13 23:19:04 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys   [106064]  =>.Microsoft Windows®
O58 - SDL:2011/05/25 18:22:00 A . (.REDC - RICOH PCIe SDXC/MMC Controller Driver.) -- C:\Windows\System32\drivers\risdxc86.sys   [76288] ©
O58 - SDL:2012/05/24 14:21:40 A . (...) -- C:\Windows\System32\drivers\RsFx0150.sys   [240608]
O58 - SDL:2012/06/13 19:22:22 A . (...) -- C:\Windows\System32\drivers\RsFx0151.sys   [240736]
O58 - SDL:2012/06/13 19:22:22 A . (...) -- C:\Windows\System32\drivers\RsFx0152.sys   [239968]
O58 - SDL:2012/06/29 02:24:02 A . (...) -- C:\Windows\System32\drivers\RsFx0153.sys   [249288]
O58 - SDL:2010/12/29 04:45:54 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.20 32-bit Dr.) -- C:\Windows\System32\drivers\Rt86win7.sys   [327784]  =>.Realtek Semiconductor Corp®
O58 - SDL:2008/06/18 14:46:54 A . (.Check Point Software Technologies - .) -- C:\Windows\System32\drivers\scap.sys   [17456] ©
O58 - SDL:2009/07/13 18:50:20 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys   [20480] ©
O58 - SDL:2009/07/13 23:19:04 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys   [40016]  =>.Microsoft Windows®
O58 - SDL:2009/07/13 23:19:04 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys   [77888]  =>.Microsoft Windows®
O58 - SDL:2010/09/07 15:09:06 A . (.Lenovo Group Limited - SMI Driver for Lenovo system.) -- C:\Windows\System32\drivers\smiif32.sys   [13680] {5765B91CC62D05615FBB43273CEF015B} ©
O58 - SDL:2011/02/08 05:00:59 N . (.Samsung Electronics - 32bit Port Contention Driver.) -- C:\Windows\System32\drivers\SSPORT.SYS   [5120] ©
O58 - SDL:2014/10/13 03:57:48 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ve.) -- C:\Windows\System32\drivers\ssudbus.sys   [89856]  =>.DEVGURU CO LTD®
O58 - SDL:2014/10/13 03:57:48 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ve.) -- C:\Windows\System32\drivers\ssudmdm.sys   [184192]  =>.DEVGURU CO LTD®
O58 - SDL:2009/07/13 23:19:04 A . (.Promise Technology - Promise  SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys   [21072]  =>.Microsoft Windows®
O58 - SDL:2014/09/18 21:39:12 A . (.Symantec Corporation - Symantec Event Library.) -- C:\Windows\System32\drivers\SYMEVENT.SYS   [142936]  =>.Symantec Corporation®
O58 - SDL:2014/09/19 07:12:10 A . (.Symantec Corporation - Symantec CMC Firewall SysPlant.) -- C:\Windows\System32\drivers\SysPlant.sys   [128096]  =>.Symantec Corporation®
O58 - SDL:2015/12/17 09:02:02 A . (...) -- C:\Windows\System32\drivers\tcpv6srv.sys   [0]
O58 - SDL:2014/07/15 21:42:57 A . (.Symantec Corporation - Symantec CMC Firewall Teefer3.) -- C:\Windows\System32\drivers\Teefer.sys   [81824] {2BBAF83D7BEDD958309D62B93EE41074} ©
O58 - SDL:2015/05/07 19:26:10 A . (...) -- C:\Windows\System32\drivers\TrueSight.sys   [35064]  =>.Adlice®
O58 - SDL:2009/07/13 23:19:10 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys   [16976]  =>.Microsoft Windows®
O58 - SDL:2008/06/18 14:46:54 A . (.Check Point Software Technologies - .) -- C:\Windows\System32\drivers\vnasc.sys   [121136] ©
O58 - SDL:2008/06/18 14:46:52 A . (.Check Point Software Technologies - .) -- C:\Windows\System32\drivers\vpn.sys   [673872] ©
O58 - SDL:2009/07/13 23:19:11 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys   [141904]  =>.Microsoft Windows®
O58 - SDL:2014/09/19 07:12:11 A . (.Symantec Corporation - Symantec Network Access Control Protocol Dr.) -- C:\Windows\System32\drivers\WGX.SYS   [33744]  =>.Symantec Corporation®
O58 - SDL:2009/06/29 13:16:40 A . (.ZTE - USB SmartCard Reader Driver.) -- C:\Windows\System32\drivers\ZTEusbccid.sys   [13824] ©
O58 - SDL:2009/06/29 13:16:40 A . (.ZTE Incorporated - USB Modem/Serial Device Driver.) -- C:\Windows\System32\drivers\ZTEusbmdm6k.sys   [104960] ©
O58 - SDL:2009/06/29 13:16:40 A . (.ZTE Incorporated - USB Modem/Serial Device Driver.) -- C:\Windows\System32\drivers\ZTEusbnmea.sys   [104960] ©
O58 - SDL:2009/06/29 13:16:40 A . (.ZTE Incorporated - USB Modem/Serial Device Driver.) -- C:\Windows\System32\drivers\ZTEusbser6k.sys   [104960] ©
O58 - SDL:2009/07/13 19:40:41 A . (...) -- C:\Windows\System32\ANSI.SYS   [9029]
O58 - SDL:2009/07/13 19:40:44 A . (...) -- C:\Windows\System32\country.sys   [27097]
O58 - SDL:2009/07/13 19:40:40 A . (...) -- C:\Windows\System32\HIMEM.SYS   [4768]
O58 - SDL:2009/07/13 19:40:43 A . (...) -- C:\Windows\System32\KEY01.SYS   [42809]
O58 - SDL:2009/07/13 19:40:43 A . (...) -- C:\Windows\System32\KEYBOARD.SYS   [42537]
O58 - SDL:2009/07/13 19:40:23 A . (...) -- C:\Windows\System32\NTDOS.SYS   [27866]
O58 - SDL:2009/07/13 19:40:31 A . (...) -- C:\Windows\System32\NTDOS404.SYS   [29146]
O58 - SDL:2009/07/13 19:40:35 A . (...) -- C:\Windows\System32\NTDOS411.SYS   [29370]
O58 - SDL:2009/07/13 19:40:39 A . (...) -- C:\Windows\System32\NTDOS412.SYS   [29274]
O58 - SDL:2009/07/13 19:40:27 A . (...) -- C:\Windows\System32\NTDOS804.SYS   [29146]
O58 - SDL:2009/07/13 19:40:11 A . (...) -- C:\Windows\System32\NTIO.SYS   [33952]
O58 - SDL:2009/07/13 19:40:15 A . (...) -- C:\Windows\System32\NTIO404.SYS   [34672]
O58 - SDL:2009/07/13 19:40:17 A . (...) -- C:\Windows\System32\NTIO411.SYS   [35776]
O58 - SDL:2009/07/13 19:40:19 A . (...) -- C:\Windows\System32\NTIO412.SYS   [35536]
O58 - SDL:2009/07/13 19:40:13 A . (...) -- C:\Windows\System32\NTIO804.SYS   [34672]
O58 - SDL:2014/11/28 17:12:08 A . (...) -- C:\Windows\System32\tgrab.sys   [8288]

---\\ Últimos ficheiros alterados ou criados (Utilizador) (1) - 90s
O61 - LFC: 2015/12/28 11:51:10 A . (..) -- D:\Users\ma084140\AppData\Local\Adobe\Acrobat\11.0\UserCache.bin   [95412]

---\\ Associações Shell Spawning (9) - 1s
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe ©
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <ComFile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Iniciador do snap-in de 'Visualizar eventos.) -- C:\Windows\System32\eventvwr.exe ©
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.js> <jsfile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe ©
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Editor do Registro.) -- C:\Windows\regedit.exe ©
O67 - Shell Spawning: <.scr> <scrfile>[HKLM\..\open\Command] (...) -- "%1" /S

---\\ Menu de inicialização Internet (8) - 0s
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe  ©
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe  ©
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitário de Inicialização por Usuário do.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitário de Inicialização por Usuário do.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitário de Inicialização por Usuário do.) -- C:\Windows\System32\ie4uinit.exe ©

---\\ Pesquisa de infeção nos navegadores da Internet (2) - 1s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/

---\\ Listagem dos serviços iniciados pelo Svchost (33) - 2s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Serviço de Experiência com Aplicativo.) -- C:\Windows\System32\aelupsvc.dll   [62464] ©
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Serviço de Propagação de Certificado de Car.) -- C:\Windows\System32\certprop.dll   [67584] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Serviço de Propagação de Certificado de Car.) -- C:\Windows\System32\certprop.dll   [67584] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL de Serviço do Servidor.) -- C:\Windows\System32\srvsvc.dll   [168960] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Cliente da Diretiva de Grupo.) -- C:\Windows\System32\gpsvc.dll   [593408] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extensão IKE.) -- C:\Windows\System32\IKEEXT.DLL   [674304] ©
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Serviço de Áudio do Windows.) -- C:\Windows\System32\audiosrv.dll   [473600] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gerenciador de Discagem Automática de Acess.) -- C:\Windows\System32\rasauto.dll   [90624] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gerenciador de conexão de acesso remoto.) -- C:\Windows\System32\rasmans.dll   [286208] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gerenciador de Interface Dinâmica.) -- C:\Windows\System32\mprdim.dll   [75264] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Serviço de Notificação de Eventos do Sistem.) -- C:\Windows\System32\Sens.dll   [49664] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Componentes do Microsoft NAT Helper.) -- C:\Windows\System32\ipnathlp.dll   [300544] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Servidor de telefonia do Microsoft(R) Windo.) -- C:\Windows\System32\tapisrv.dll   [242176] ©
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gerenciador de Conexões Remotas do Servidor.) -- C:\Windows\System32\termsrv.dll   [521216] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\System32\wuaueng.dll   [1914368] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Serviço de transferência inteligente de pla.) -- C:\Windows\System32\qmgr.dll   [585728] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - DLL de serviços do Shell do Windows.) -- C:\Windows\System32\shsvcs.dll   [328192] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Serviço que oferece conectividade IPv6 em u.) -- C:\Windows\System32\iphlpsvc.dll   [499712] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de serviço de logon secundário.) -- C:\Windows\System32\seclogon.dll   [21504] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Serviço de Informações de Aplicativos.) -- C:\Windows\System32\appinfo.dll   [47104] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Serviço de Descoberta iSCSI.) -- C:\Windows\System32\iscsiexe.dll   [114688] ©
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Serviço Agendador de Classes de Multimídia.) -- C:\Windows\System32\mmcss.dll   [49664] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Relatórios de Problemas e Soluções.) -- C:\Windows\System32\wercplsupport.dll   [61440] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Serviço Microsoft EAPHost.) -- C:\Windows\System32\eapsvc.dll   [98304] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll   [164352] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Serviço Agendador de Tarefas.) -- C:\Windows\System32\schedsvc.dll   [750592] ©
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Serviço de Gerenciamento de Chaves.) -- C:\Windows\System32\KMSVC.DLL   [71168] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Serviço de Configuração da Área de Trabalho.) -- C:\Windows\System32\SessEnv.dll   [113664] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll   [168960] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL de Serviço Pesquisador de Computadores.) -- C:\Windows\System32\browser.dll   [102400] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL do Serviço de Tema do Shell do Windows.) -- C:\Windows\System32\themeservice.dll   [37376] ©
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Serviço BDE.) -- C:\Windows\System32\bdesvc.dll   [76800] ©
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Serviço de instalação do software.) -- C:\Windows\System32\appmgmts.dll   [149504] ©

---\\ Lista das exceções do FireWall (FirewallRules) (5) - 3s
O87 - FAEL: "TCP Query User{04FF4E77-1DB8-4954-AE3D-D71925250536}C:\audatex\axcom.exe" [In-None-P6-TRUE] .(...) -- C:\audatex\axcom.exe
O87 - FAEL: "UDP Query User{6B454316-38A7-4024-AD6F-025CA27AE8EA}C:\audatex\axcom.exe" [In-None-P17-TRUE] .(...) -- C:\audatex\axcom.exe
O87 - FAEL: "{3983D583-E07A-4331-8BB1-EAE3FB3B2605}" [In-None-P17-TRUE] .(...) -- C:\Windows\system32\lxeacoms.exe {379E69DA6C2693E3297B6FE45D78EBE1}
O87 - FAEL: "{47FDDED7-A63D-40E5-90D4-836B281EE56A}" [In-None-P17-TRUE] .(...) -- C:\Windows\system32\LXEAcoms.exe {379E69DA6C2693E3297B6FE45D78EBE1}
O87 - FAEL: "{F3C52D59-9EEB-4154-AA40-D3B25DF4DD31}" [In-None-P17-TRUE] .(...) -- C:\Windows\system32\LXEAcoms.exe {379E69DA6C2693E3297B6FE45D78EBE1}

---\\ Serviços não Microsoft (SR=Executados, SS=Parados) (35) - 21s

SR - Auto   [28/10/2015] [   82128]  Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe  =>.Adobe Systems, Incorporated®
SS - Demand [18/11/2015] [  269000]  Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe  =>.Adobe Systems Incorporated®
SR - Auto   [03/12/2014] [ 6611216]  BES Client (BESClient) . (.IBM Corp..) - C:\Program Files\BigFix Enterprise\BES Client\BESClient.exe {04FF9F7B8D388B6D5F7366B7399AF0C3} ©
SR - Auto   [24/03/2014] [  737367]  BESClientHelper (BESClientHelper) . (.BigFix Inc..) - C:\Program Files\BigFix Enterprise\BES Client\BESClientHelper.exe
SR - Auto   [14/05/2013] [  829656]  Bluetooth Service (btwdins) . (.Broadcom Corporation..) - C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe  =>.Broadcom Corporation®
SR - Auto   [17/12/2010] [  190592]  @C:\Windows\system32\CxAudMsg32.exe,-100 (CxAudMsg) . (.Conexant Systems Inc..) - C:\Windows\System32\CxAudMsg32.exe  =>.Conexant Systems, Inc.®
SR - Auto   [04/02/2009] [  256000]  DameWare Mini Remote Control (DWMRCS) . (.DameWare Development LLC.) - C:\Windows\System32\DWRCS.EXE
SR - Auto   [15/11/2009] [   12640]  ETOKSRV (eTSrv) . (.Aladdin Knowledge Systems, Ltd..) - C:\Program Files\Aladdin\eToken\PKIClient\x32\eTSrv.exe {6BEA1E66D2B4A57E74CE91893FACE0D8}
SR - Auto   [27/07/2011] [  936208]  Intel(R) PROSet/Wireless Event Log (EvtEng) . (.Intel(R) Corporation.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe  =>.Intel Corporation - Mobile Wireless Group®
SR - Auto   [06/05/2014] [  527928]  Gbp Service (GbpSv) . (.GAS Tecnologia.) - C:\Program Files\GbPlugin\gbpsv.exe {12D257F7955AC6D6A4365FB70A3DC10A}
SS - Auto   [21/04/2015] [  107848]  Serviço do Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe  =>.Google Inc®
SS - Demand [21/04/2015] [  107848]  Serviço do Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe  =>.Google Inc®
SR - Auto   [17/12/2013] [   56664]  Lenovo PM Service (IBMPMSVC) . (.Lenovo..) - C:\Windows\System32\ibmpmsvc.exe {1CA08E795C58A609AE46FE0B7FDBC08B}
SR - Auto   [24/06/2013] [  110072]  Lenovo Microphone Mute (LENOVO.MICMUTE) . (.Lenovo Group Limited.) - C:\Program Files\Lenovo\HOTKEY\micmute.exe {6433A25DB5498D25B5D53720AD2374B6} ©
SR - Auto   [12/07/2011] [  127336]  Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) . (.Lenovo Group Limited.) - C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe {3AE1F834FA867FF5102FBE94ADF86384} ©
SS - Auto   [14/04/2010] [  193192]  lxeaCATSCustConnectService (lxeaCATSCustConnectService) . (.Lexmark International, Inc..) - C:\Windows\System32\spool\drivers\w32x86\3\lxeaserv.exe {379E69DA6C2693E3297B6FE45D78EBE1} ©
SS - Disabl [14/04/2010] [  598696]  lxea_device (lxea_device) . (...) - C:\Windows\System32\lxeacoms.exe {379E69DA6C2693E3297B6FE45D78EBE1}
SR - Auto   [11/10/2006] [   53248]  OracleMTSRecoveryService (OracleMTSRecoveryService) . (.Oracle Corporation.) - C:\oracle\ORA1020\BIN\omtsreco.exe ©
SR - Auto   [27/07/2011] [  481552]  Intel(R) PROSet/Wireless Registry Service (RegSrvc) . (.Intel(R) Corporation.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe  =>.Intel Corporation - Mobile Wireless Group®
SR - Auto   [07/01/2011] [  446592]  Conexant SmartAudio service (SAService) . (.Conexant Systems, Inc..) - C:\Windows\System32\SASrv.exe  =>.Conexant Systems, Inc.®
SR - Auto   [24/06/2014] [ 1738168]  Spybot-S&D 2 Scanner Service (SDScannerService) . (.Safer-Networking Ltd..) - C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe  =>.Safer Networking Ltd.®
SR - Auto   [27/06/2014] [ 2088408]  Spybot-S&D 2 Updating Service (SDUpdateService) . (.Safer-Networking Ltd..) - C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe  =>.Safer Networking Ltd.®
SR - Auto   [25/04/2014] [  171928]  Spybot-S&D 2 Security Center Service (SDWSCService) . (.Safer-Networking Ltd..) - C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe  =>.Safer Networking Ltd.®
SR - Auto   [15/07/2014] [  144496]  Symantec Endpoint Protection (SepMasterService) . (.Symantec Corporation.) - C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ccSvcHst.exe  =>.Symantec Corporation®
SR - Demand [18/09/2014] [ 1746696]  Symantec Management Client (SmcService) . (.Symantec Corporation.) - C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\Smc.exe  =>.Symantec Corporation®
SS - Demand [18/09/2014] [  289136]  Symantec Network Access Control (SNAC) . (.Symantec Corporation.) - C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\snac.exe  =>.Symantec Corporation®
SR - Auto   [18/06/2008] [  106613]  Check Point VPN-1 Securemote service (SR_Service) . (.Check Point Software Technologies.) - C:\Program Files\CheckPoint\SecuRemote\bin\SR_Service.exe ©
SR - Auto   [18/06/2008] [   36982]  Check Point VPN-1 Securemote watchdog (SR_Watchdog) . (.Check Point Software Technologies.) - C:\Program Files\CheckPoint\SecuRemote\bin\SR_Watchdog.exe ©
SR - Auto   [13/10/2014] [  743688]  SAMSUNG Mobile Connectivity Service (ss_conn_service) . (.DEVGURU Co., LTD..) - C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe  =>.DEVGURU CO LTD®
SS - Demand [14/02/2014] [   24120]  System Update (SUService) . (.Copyright ©  2014.) - C:\Program Files\Lenovo\System Update\SUService.exe  =>.Lenovo Information Products (Shenzhen) Co.,Ltd®
SR - Auto   [12/09/2014] [ 4799760]  TeamViewer 9 (TeamViewer9) . (.TeamViewer GmbH.) - C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe  =>.TeamViewer®
SR - Auto   [20/06/2013] [  115704]  Lenovo Hotkey Client Loader (TPHKLOAD) . (.Lenovo Group Limited.) - C:\Program Files\Lenovo\HOTKEY\tphkload.exe {6433A25DB5498D25B5D53720AD2374B6} ©
SR - Auto   [20/06/2013] [  125504]  On Screen Display (TPHKSVC) . (.Lenovo Group Limited.) - C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe {6433A25DB5498D25B5D53720AD2374B6} ©
SR - Auto   [28/11/2014] [  923960]  IBM Endpoint Manager for Remote Control - Target (TRCTARGET) . (.IBM Corporation.) - C:\Program Files\ibm\tivoli\Remote Control\Target\trc_base.exe {63CD26DF48BB82DF3837F2E3A0DDCBBC} ©

---\\ Scâner Aditional (1) - 0s
HKCU\SOFTWARE\AppDataLow\Software\adawarebp  =>PUP.Optional.ToolbarCleaner

---\\ Informações complémentaires do módulos (1) - 0s
http://www.nicolascoolman.fr/?p=712  =>PUP.Optional.ToolbarCleaner

~ End of the scan, 20014 items in 00h07mn17s (868)(0)