ZHPDiag.txt

Document joint : EHnoRm2UPEL_ZHPDiag.txt

Cliquez pour partager vos propres fichiers

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.8.13.118 Por Nicolas Coolman (2015/08/13)
~ iniciado por asus (Administrator) (2015/08/13 11:37:31)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Status da versão: Version OK
~ Modo: Scanner
~ Relatório: C:\Users\asus\Desktop\ZHPDiag.txt
~ Relatório: C:\Users\asus\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ Inicialização do sistema: Normal (Normal boot)
Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601)

---\\ Navegadores Internet (3) - 0s
GCIE: Google Chrome v44.0.2403.155
MFIE: Mozilla Firefox 40.0 (x86 pt-BR) v40.0
MSIE: Internet Explorer v8.0.7601.17514

---\\ Informações sobre os produtos Windows (4) - 5s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK (Auto)
Windows Activation Technologies : OK

---\\ Softwares de proteçao do sistema (1) - 1s
Avast Premier v10.3.2225

---\\ Softwares de proteçao do sistema (Supérfluo) (1) - 1s
ESET Online Scanner v3

---\\ Softwares d'optimização do sistema (1) - 1s
CCleaner v4.16

---\\ Monitoramento dos softwares (2) - 1s
Adobe Flash Player 18 NPAPI
Adobe Reader 9.0.1

---\\ Informações sobre o sistema (6) - 0s
~ Operating System: Intel64 Family 6 Model 37 Stepping 5, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 2994.564 MB (10% free)
~ System Restore: Activé (Enable)
~ System drive C: has 24 GB free of 119 GB

---\\ Modo de conexão ao sistema (3) - 0s
~ Computer Name: ASUS-PC
~ User Name: asus
~ Logged in as Administrator

---\\ Enumeração das unidades dos discos (2) - 0s
~ Drive C: has 24 GB free of 119 GB (System)
~ Drive D: has 192 GB free of 345 GB

---\\ Estado do Centro de Segurança do Windows (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

---\\ Pesquisa particular de ficheiros genéricos (23) - 0s
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Windows Explorer.) () -- C:\Windows\Explorer.exe [2871808]
[MD5.DD81D91FF3B0763C392422865C9AC12E] - (.Microsoft Corporation - Processo de host do Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [45568]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Aplicativo de Inicialização do Windows.) () -- C:\Windows\System32\Wininit.exe [129024]
[MD5.8576C20FACE344AC7FA8D98EF383D620] - (.Microsoft Corporation - Internet Extensions para Win32.) () -- C:\Windows\System32\wininet.dll [1188864]
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - (.Microsoft Corporation - Aplicativo de Logon do Windows.) () -- C:\Windows\System32\Winlogon.exe [455168]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Biblioteca de Licenciamento de Software.) () -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.0D57D091E06BB1E58E72E5D08479FDDF] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\Windows\System32\fr-FR\user32.dll.mui [20480]
[MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [497152]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Driver de porta i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [261632]
[MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - Driver do Sistema de Arquivos NT.) () -- C:\Windows\System32\drivers\ntfs.sys [1684928]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Driver de porta paralela.) () -- C:\Windows\System32\drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [93184]
[MD5.70988118145F5F10EF24720B97F35F65] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Driver de cópia de sombra de volume.) () -- C:\Windows\System32\drivers\volsnap.sys [295808]

---\\ Processos lançados (45) - 9s
[MD5.2D00D3DADC1D3326BA788EB071F2726E] - (.ASUSTeK Computer Inc. - ASUS FastBoot.) -- C:\Windows\system32\FBAgent.exe [379520] [PID.1280]
[MD5.18E5C2F937F9DEB8C282DF66A3761925] - (.ASUS - ASLDR Service.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe [84536] [PID.1312]
[MD5.7910158929571214A959D5A6D16DD9C0] - (.ASUS - GFNEXSrv.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [96896] [PID.1400]
[MD5.4956380A54B1C9E6BFDF3D80DACB9698] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600] [PID.1428]
[MD5.AF09E0E7239052DDE959F2662C42D94A] - (.AVAST Software - avast! firewall service.) -- C:\Program Files\AVAST Software\Avast\afwServ.exe [109008] [PID.1684]
[MD5.139AEA629F9857FFD9D8312BE8F97389] - (.Autodesk Inc. - Autodesk Application Manager.) -- C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [1129864] [PID.1796]
[MD5.DF0677FBF770F8BD6C40027D49FA9911] - (.ATK - Power4Gear Hybrid.) -- C:\Program Files\P4G\BatteryLife.exe [339072] [PID.1940]
[MD5.F30AA962D602D1A0377DFB99031E7B5C] - (.ASUS - ASPG application.) -- C:\Program Files (x86)\ASUS\ASUS CopyProtect\ASPG.exe [163384] [PID.2024]
[MD5.F4DCD4912B185C3AAEB92A7040832AD1] - (.Copyright (C) 2002 ASUSTek. Corporation - ALU.) -- C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe [51768] [PID.1364]
[MD5.A6C20CBD1B10FEF25DAA4F1CF9FBC4FF] - (.ATK - ACMON.) -- C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [684544] [PID.2052]
[MD5.8E4179A38CF72AC6D8D651A72AE88580] - (.ASUS - HControl.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe [182912] [PID.2272]
[MD5.0AA473966357C4A41B5EB19649EB6E5E] - (.Intel(R) Corporation - Intel(R) PROSet/Wireless Registry Service.) -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [831760] [PID.2584]
[MD5.5E5D97C0856140E53B02EF82AE383658] - (...) -- C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [445240] [PID.2636]
[MD5.149126216A694E6BA84E92ECA77AAE3B] - (.ASUS - ATKOSD.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe [2488888] [PID.3116]
[MD5.4A7C441D99D86704D194E7678873B95D] - (.ASUS - WDC.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe [174648] [PID.3196]
[MD5.41A5048E49372F091B2AE5A5B705B72D] - (.ASUSTeK - ACEngSvr Module.) -- C:\Windows\SysWOW64\ACEngSvr.exe [183296] [PID.3720]
[MD5.557BABFC012189D8853A55D7AD02C2A5] - (.ELAN Microelectronic Corp. - ETD Control Center.) -- C:\Program Files\Elantech\ETDCtrl.exe [649608] [PID.3980]
[MD5.F2C49A7AA03FC231BE87A65E50D0B6F6] - (.Intel(R) Corporation - Intel(R) PROSet/Wireless Framework.) -- C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1928976] [PID.4008]
[MD5.06C86503532053215395C43778E600D6] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [394224] [PID.1732]
[MD5.5ECE936A024FA8F49D806FD382DFD7F6] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [418800] [PID.3684]
[MD5.ADC90A54001DEF7A9D57163936BA3FFC] - (...) -- C:\Windows\SysWOW64\SYSASUS-PC.exe [97820672] [PID.3908]
[MD5.D955933A983C6E50275EDE2EADBD8EF7] - (.ELAN Microelectronic Corp. - ETD Control Center Helper.) -- C:\Program Files\Elantech\ETDCtrlHelper.exe [2363784] [PID.3540]
[MD5.4CA2A47139E3F5A3986F117243F8D3C4] - (.Google - Google Drive.) -- C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22012688] [PID.4076]
[MD5.D6E2ED7F1F7BE7CCB8676491BF950B57] - (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\asus\AppData\Local\Akamai\netsession_win.exe [4673432] [PID.2996]
[MD5.416C1857ED2AF677C761BACB401D2711] - (.Autodesk, Inc. - A360.) -- C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1310088] [PID.1736]
[MD5.D6E2ED7F1F7BE7CCB8676491BF950B57] - (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\asus\AppData\Local\Akamai\netsession_win.exe [4673432] [PID.3168]
[MD5.4D6371F9AFDBA3FEBFCAEC70A759A7BB] - (.AVAST Software - SecureLine.) -- C:\Program Files\AVAST Software\SecureLine\SecureLine.exe [3074824] [PID.2264]
[MD5.C32B36D2168AEA9D4FA77C0A4F56379D] - (.ASUS - ATKOSD2.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [7350912] [PID.4260]
[MD5.4CA2A47139E3F5A3986F117243F8D3C4] - (.Google - Google Drive.) -- C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22012688] [PID.4268]
[MD5.D98BC64645C2DAEDC1E79B4CCCCBBC8E] - (.ASUS - ATK Media.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624] [PID.4276]
[MD5.5AEBF6FA9805C9101220AA4FB4FA17E7] - (.ASUS - HControlUser.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016] [PID.4292]
[MD5.34084D25BE6F48D072AA54DE630438FD] - (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896] [PID.4332]
[MD5.D6FE9E0F705794A86F87A01B222290EF] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [6109776] [PID.4572]
[MD5.5C396DDE6AAFFB64ABC0E0FD88F53553] - (.ASUS - AsScrPro.) -- C:\Windows\AsScrPro.exe [3054136] [PID.3716]
[MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.4048]
[MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.1528]
[MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.1932]
[MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.4832]
[MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.5844]
[MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.4908]
[MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.3548]
[MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.5384]
[MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.3016]
[MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.5192]
[MD5.2B3F1432B255E79209DEEDF089AA9791] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\asus\Desktop\ZHPDiag3.exe [1902080] [PID.2888]

---\\ Google Chrome, Arranque,Pesquisa,Extensões (G0,G1,G2 (12) - 1s
G2 - GCE: Preference [User Data\Default] [anpkfkpfhpmfadnpldgmamneenjcdokh] Organizze
G2 - GCE: Preference [User Data\Default] [aoobfofcfmnhbjanfpkjemoceiefbbeb] Bíblia Católica Online
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [bnbaboaihhkjoaolfnfoablhllahjnee] GeoGebra
G2 - GCE: Preference [User Data\Default] [caokbcfjjpfjghiibofdoakkclhlkhkh] Despertador Online
G2 - GCE: Preference [User Data\Default] [ejjicmeblgpmajnghnpcppodonldlgfn] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [gjgkjeheegjnnmheaflhdocglkiegoni] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [iogblfbfoldfgammcabomglfajocfpea] __MSG_application_title__
G2 - GCE: Preference [User Data\Default] [lbfehkoinhhcknnbdgnnmjhiladcgbol] __MSG_extensionName__
G2 - GCE: Preference [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pkcoeeddamedegogbcmdbadnoifmfipn] Google Chrome manifest =>.Google Inc.

---\\ Mozilla Firefox, Plugins,Arranque,Pesquisa,Extensões (P2,M0,M1,M2,M3) (6) - 1s
P2 - EXT FILE: (...) -- C:\Users\asus\AppData\Roaming\Mozilla\Firefox\Profiles\cc97mfff.default\extensions\desprotetordelinks@claudio-silva.com.xpi
P2 - EXT FILE: (...) -- C:\Users\asus\AppData\Roaming\Mozilla\Firefox\Profiles\cc97mfff.default\extensions\personas@christopher.beard.xpi
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
P2 - FPN: [HKCU] [@talk.google.com/GoogleTalkPlugin] - (.Google.) -- C:\Users\asus\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
P2 - FPN: [HKCU] [@talk.google.com/O1DPlugin] - (.Google.) -- C:\Users\asus\AppData\Roaming\Mozilla\plugins\npo1d.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll

---\\ Internet Explorer, Arranque, Pesquisa, URLSearchHook( gancho de URL), Phishing (R0,R1,R3,R4) (16) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer

---\\ Internet Explorer, Gestão do Proxy (R5) (5) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride =
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:50510 =>Hijacker.Proxy
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1

---\\ Análise das linhas F0, F1, F2, F3 - Ficheiros ini, Carregamento Automático de programas (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.)

---\\ Redireção do ficheiro Hosts (O1) (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (1)

---\\ Browser Helper Objects do navegador (O2) (3) - 0s
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} (Orphean)
O2 - BHO: (no name) [64Bits] - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} (Orphean)
O2 - BHO: (no name) [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} (Orphean)

---\\ Aplicações iniciadas por registo & pastas (O4) (31) - 2s
O4 - HKLM\..\Run: [ETDWare] %ProgramFiles%\Elantech\ETDCtrl.exe
O4 - HKLM\..\Run: [IntelWireless] . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Framework.) -- C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [Java7 Update] . (...) -- C:\Windows\SysWOW64\SYSASUS-PC.exe
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] . (.Microsoft Corporation - Notas Autoadesivas.) -- C:\Windows\System32\StikyNot.exe
O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Google Installer.) -- C:\Users\asus\AppData\Local\Google\Update\GoogleUpdate.exe
O4 - HKCU\..\Run: [GoogleDriveSync] . (.Google - Google Drive.) -- C:\Program Files (x86)\Google\Drive\googledrivesync.exe
O4 - HKCU\..\Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\asus\AppData\Local\Akamai\netsession_win.exe
O4 - HKCU\..\Run: [Autodesk Sync] . (.Autodesk, Inc. - A360.) -- C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
O4 - HKLM\..\Wow6432Node\Run: [ATKOSD2] . (.ASUS - ATKOSD2.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Wow6432Node\Run: [ATKMEDIA] . (.ASUS - ATK Media.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Wow6432Node\Run: [HControlUser] . (.ASUS - HControlUser.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Wow6432Node\Run: [GrooveMonitor] . (.Microsoft Corporation - GrooveMonitor Utility.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
O4 - HKLM\..\Wow6432Node\Run: [ADSKAppManager] . (.Autodesk Inc. - Autodesk Application Manager.) -- C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe
O4 - HKUS\.DEFAULT\..\Run: [Autodesk Sync] . (.Autodesk, Inc. - A360.) -- C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
O4 - HKUS\S-1-5-18\..\Run: [Autodesk Sync] . (.Autodesk, Inc. - A360.) -- C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\SPReview.exe
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\SPReview.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-21-2894406037-275763777-2117583697-1000\..\Run: [RESTART_STICKY_NOTES] . (.Microsoft Corporation - Notas Autoadesivas.) -- C:\Windows\System32\StikyNot.exe
O4 - HKUS\S-1-5-21-2894406037-275763777-2117583697-1000\..\Run: [Google Update] . (.Google Inc. - Google Installer.) -- C:\Users\asus\AppData\Local\Google\Update\GoogleUpdate.exe
O4 - HKUS\S-1-5-21-2894406037-275763777-2117583697-1000\..\Run: [GoogleDriveSync] . (.Google - Google Drive.) -- C:\Program Files (x86)\Google\Drive\googledrivesync.exe
O4 - HKUS\S-1-5-21-2894406037-275763777-2117583697-1000\..\Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\asus\AppData\Local\Akamai\netsession_win.exe
O4 - HKUS\S-1-5-21-2894406037-275763777-2117583697-1000\..\Run: [Autodesk Sync] . (.Autodesk, Inc. - A360.) -- C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe

---\\ Alteração Dominio/Clientes DNS (017) (3) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 20.23.52.1

---\\ Lista dos serviços NT não Microsoft e não desativados (023) (11) - 1s
O23 - Service: Autodesk Application Manager Service (AdAppMgrSvc) . (.Autodesk Inc. - Autodesk Application Manager.) - C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
O23 - Service: AFBAgent (AFBAgent) . (.ASUSTeK Computer Inc. - ASUS FastBoot.) - C:\Windows\system32\FBAgent.exe
O23 - Service: ASLDR Service (ASLDRService) . (.ASUS - ASLDR Service.) - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) . (.ASUS - GFNEXSrv.) - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Autodesk Content Service (Autodesk Content Service) . (.Autodesk, Inc. - AutoCAD component.) - C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Avast Firewall (avast! Firewall) . (.AVAST Software - avast! firewall service.) - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: Google Update Service (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Registry Service.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Avast SecureLine (SecureLine) . (...) - C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe
O23 - Service: Intel(R) Management & Security Application User Notificatio (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe

---\\ Tarefas planificadas automaticamente (039) (56) - 7s
[MD5.A6C20CBD1B10FEF25DAA4F1CF9FBC4FF] [APT] [ACMON] (.ATK.) -- C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [684544]
[MD5.368290D0A612D62DA6F3D798B1BB8FE7] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269000]
[MD5.F30AA962D602D1A0377DFB99031E7B5C] [APT] [ASPG] (.ASUS.) -- C:\Program Files (x86)\ASUS\ASUS CopyProtect\ASPG.exe [163384]
[MD5.F4DCD4912B185C3AAEB92A7040832AD1] [APT] [ASUS Live Update] (.Copyright (C) 2002 ASUSTek. Corporation.) -- C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe [51768]
[MD5.DF0677FBF770F8BD6C40027D49FA9911] [APT] [ASUS P4G] (.ATK.) -- C:\Program Files\P4G\BatteryLife.exe [339072]
[MD5.76F586CEF7018BD376CBBD74AEAC93F5] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [1373872]
[MD5.C4AE430FDE8A76BC697442BB99197BAA] [APT] [avast! SL Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\SecureLine\SLUpdate.exe [846952]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.51508F0C2476177E50C31B0BBFBF1BDB] [APT] [GoogleUpdateTaskUserS-1-5-21-2894406037-275763777-2117583697-1000Core] (.Google Inc..) -- C:\Users\asus\AppData\Local\Google\Update\GoogleUpdate.exe [107912]
[MD5.51508F0C2476177E50C31B0BBFBF1BDB] [APT] [GoogleUpdateTaskUserS-1-5-21-2894406037-275763777-2117583697-1000UA] (.Google Inc..) -- C:\Users\asus\AppData\Local\Google\Update\GoogleUpdate.exe [107912]
[MD5.874B6089DB177C2C9F2029CB5199373F] [APT] [RealUpgradeLogonTaskS-1-5-21-2894406037-275763777-2117583697-1000] (.RealNetworks, Inc..) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [170608]
[MD5.874B6089DB177C2C9F2029CB5199373F] [APT] [RealUpgradeScheduledTaskS-1-5-21-2894406037-275763777-2117583697-1000] (.RealNetworks, Inc..) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [170608]
[MD5.00000000000000000000000000000000] [APT] [{13FCB5A5-49FE-4A0A-815C-B4C4921E5C7D}] (...) -- C:\Users\asus\Downloads\Gd.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{2DEB43EB-1ECA-4433-8378-3DDE41C6800C}] (...) -- G:\K-Lite_Codec_Pack_1030_Mega.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{5D807F3C-97D2-4D12-8637-EE28DFD4FED8}] (...) -- G:\K-Lite_Codec_Pack_1030_Mega.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{6E99FBF0-0A05-498B-A0B0-A199EA4C50A5}] (...) -- C:\Users\asus\AppData\Local\Google\Chrome\Application\chrome.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{711D2417-EC92-4D26-ADF0-11038CBE26F5}] (...) -- C:\Users\asus\Google Drive\FACULDADES\2012\DIREITO\Dicionario.Aurelio.7.nova.ortografia\AutoRun.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{83CA7E33-09B2-4FD2-9D4B-9DA054EA902E}] (...) -- C:\Users\asus\Downloads\Gd.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{A6AE08FC-5F36-4FBC-B892-970DE8DC352A}] (...) -- C:\Users\asus\Downloads\Gd.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{A7B15203-92F9-4C84-ACB8-8963AE5BF9A2}] (...) -- C:\Users\asus\Downloads\Gd.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{AC4A2F6F-8F71-4F78-81F1-4808E06B8590}] (...) -- C:\Users\asus\Google Drive\FACULDADES\2012\DIREITO\DICIONARIO Aur‚lio Portatil 5.0.40\Dicion rio Aur‚lio Portatil 5.0.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{D863B7BB-D483-464C-A37A-12DDC6CA3845}] (...) -- C:\Users\asus\Downloads\Gd.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{E0501807-93B7-4CC0-80E5-C69A86F355EF}] (...) -- C:\Users\asus\Downloads\Gd.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{F116AB8C-43E7-43DE-893D-6AEFC404D8AE}] (...) -- C:\Users\asus\Downloads\Gd.exe (.not file.) [0]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [902] =>.Adobe Systems Incorporated
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [896] =>.Google Inc.
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [900] =>.Google Inc.
O39 - APT: GoogleUpdateTaskUserS-1-5-21-2894406037-275763777-2117583697-1000Core - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2894406037-275763777-2117583697-1000Core.job [852] =>.Google Inc.
O39 - APT: GoogleUpdateTaskUserS-1-5-21-2894406037-275763777-2117583697-1000UA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2894406037-275763777-2117583697-1000UA.job [904] =>.Google Inc.
O39 - APT: ACMON - (.ATK.) -- C:\Windows\System32\Tasks\ACMON [3068]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3840] =>.Adobe Systems Incorporated
O39 - APT: ASPG - (.ASUS.) -- C:\Windows\System32\Tasks\ASPG [2872] =>.ASUS
O39 - APT: ASUS Live Update - (.Copyright (C) 2002 ASUSTek. Corporation.) -- C:\Windows\System32\Tasks\ASUS Live Update [3002] =>.Copyright (C) 2002 ASUSTek. Corporation
O39 - APT: ASUS P4G - (.ATK.) -- C:\Windows\System32\Tasks\ASUS P4G [3040]
O39 - APT: avast! Emergency Update - (.AVAST Software.) -- C:\Windows\System32\Tasks\avast! Emergency Update [4182] =>.AVAST Software
O39 - APT: avast! SL Update - (.AVAST Software.) -- C:\Windows\System32\Tasks\avast! SL Update [3910] =>.AVAST Software
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3644] =>.Google Inc.
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [3896] =>.Google Inc.
O39 - APT: GoogleUpdateTaskUserS-1-5-21-2894406037-275763777-2117583697-1000Core - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2894406037-275763777-2117583697-1000Core [3480] =>.Google Inc.
O39 - APT: GoogleUpdateTaskUserS-1-5-21-2894406037-275763777-2117583697-1000UA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2894406037-275763777-2117583697-1000UA [3876] =>.Google Inc.
O39 - APT: RealUpgradeLogonTaskS-1-5-21-2894406037-275763777-2117583697-1000 - (.RealNetworks, Inc..) -- C:\Windows\System32\Tasks\RealUpgradeLogonTaskS-1-5-21-2894406037-275763777-2117583697-1000 [3200] =>.RealNetworks, Inc.
O39 - APT: RealUpgradeScheduledTaskS-1-5-21-2894406037-275763777-2117583697-1000 - (.RealNetworks, Inc..) -- C:\Windows\System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-2894406037-275763777-2117583697-1000 [3336] =>.RealNetworks, Inc.
O39 - APT: {13FCB5A5-49FE-4A0A-815C-B4C4921E5C7D} - (...) -- C:\Windows\System32\Tasks\{13FCB5A5-49FE-4A0A-815C-B4C4921E5C7D} [2922]
O39 - APT: {2DEB43EB-1ECA-4433-8378-3DDE41C6800C} - (...) -- C:\Windows\System32\Tasks\{2DEB43EB-1ECA-4433-8378-3DDE41C6800C} [2930]
O39 - APT: {5D807F3C-97D2-4D12-8637-EE28DFD4FED8} - (...) -- C:\Windows\System32\Tasks\{5D807F3C-97D2-4D12-8637-EE28DFD4FED8} [2930]
O39 - APT: {6E99FBF0-0A05-498B-A0B0-A199EA4C50A5} - (...) -- C:\Windows\System32\Tasks\{6E99FBF0-0A05-498B-A0B0-A199EA4C50A5} [2990]
O39 - APT: {711D2417-EC92-4D26-ADF0-11038CBE26F5} - (...) -- C:\Windows\System32\Tasks\{711D2417-EC92-4D26-ADF0-11038CBE26F5} [3060]
O39 - APT: {83CA7E33-09B2-4FD2-9D4B-9DA054EA902E} - (...) -- C:\Windows\System32\Tasks\{83CA7E33-09B2-4FD2-9D4B-9DA054EA902E} [2922]
O39 - APT: {A6AE08FC-5F36-4FBC-B892-970DE8DC352A} - (...) -- C:\Windows\System32\Tasks\{A6AE08FC-5F36-4FBC-B892-970DE8DC352A} [2922]
O39 - APT: {A7B15203-92F9-4C84-ACB8-8963AE5BF9A2} - (...) -- C:\Windows\System32\Tasks\{A7B15203-92F9-4C84-ACB8-8963AE5BF9A2} [2922]
O39 - APT: {AC4A2F6F-8F71-4F78-81F1-4808E06B8590} - (...) -- C:\Windows\System32\Tasks\{AC4A2F6F-8F71-4F78-81F1-4808E06B8590} [3104]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{B610B08B-C283-43E3-8A2F-369F165CA86E} [3188]
O39 - APT: {D863B7BB-D483-464C-A37A-12DDC6CA3845} - (...) -- C:\Windows\System32\Tasks\{D863B7BB-D483-464C-A37A-12DDC6CA3845} [2922]
O39 - APT: {E0501807-93B7-4CC0-80E5-C69A86F355EF} - (...) -- C:\Windows\System32\Tasks\{E0501807-93B7-4CC0-80E5-C69A86F355EF} [2922]
O39 - APT: {F116AB8C-43E7-43DE-893D-6AEFC404D8AE} - (...) -- C:\Windows\System32\Tasks\{F116AB8C-43E7-43DE-893D-6AEFC404D8AE} [2922]

---\\ Software instalados (042) (89) - 10s
O42 - Logiciel: Autodesk AutoCAD 2016 - Português - Brasil (Brazilian Portuguese) - (.Autodesk.) [HKLM][64Bits] -- AutoCAD 2016 - Português - Brasil (Brazilian Portuguese)
O42 - Logiciel: Autodesk Content Service - (.Autodesk.) [HKLM][64Bits] -- Autodesk Content Service
O42 - Logiciel: Autodesk ReCap 2016 - (.Autodesk.) [HKLM][64Bits] -- Autodesk ReCap 2016
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: Conexant HD Audio - (.Conexant.) [HKLM][64Bits] -- CNXT_AUDIO_HDA
O42 - Logiciel: ETDWare PS/2-x64 7.0.5.11_WHQL - (.ELAN Microelectronics Corp..) [HKLM][64Bits] -- Elantech
O42 - Logiciel: GlassFish Server Open Source Edition 4.1 - (...) [HKLM][64Bits] -- nbi-glassfish-mod-4.1.0.13.0
O42 - Logiciel: NetBeans IDE 8.0.2 - (.NetBeans.org.) [HKLM][64Bits] -- nbi-nb-base-8.0.2.0.201411181905
O42 - Logiciel: Intel PROSet Wireless - (...) [HKLM][64Bits] -- ProInst
O42 - Logiciel: RefreshPC - (.WareSoft Software.) [HKLM][64Bits] -- RefreshPC_is1
O42 - Logiciel: Speccy - (.Piriform.) [HKLM][64Bits] -- Speccy
O42 - Logiciel: USB 2.0 2.0M UVC WebCam - (...) [HKLM][64Bits] -- USB 2.0 2.0M UVC WebCam
O42 - Logiciel: USB 2.0 VGA UVC WebCam - (...) [HKLM][64Bits] -- USB 2.0 VGA UVC WebCam
O42 - Logiciel: Fast Boot - (.ASUS.) [HKLM][64Bits] -- {13F4A7F3-EABC-4261-AF6B-1317777F0755}
O42 - Logiciel: Java 8 Update 45 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86418045F0}
O42 - Logiciel: MPC-HC 1.7.9 (64-bit) - (.MPC-HC Team.) [HKLM][64Bits] -- {2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1
O42 - Logiciel: Avast SecureLine - (.AVAST Software.) [HKLM][64Bits] -- {2CD3C92F-EDC5-4B02-9B0A-9C1D37C58EF5}_is1
O42 - Logiciel: Autodesk Network License Manager - (.Autodesk.) [HKLM][64Bits] -- {4BE91685-1632-47FC-B563-A8A542C6664C}
O42 - Logiciel: Autodesk BIM 360 Glue AutoCAD 2016 Add-in 64 bit - (.Autodesk.) [HKLM][64Bits] -- {4BEE127E-95C4-434D-ABAC-65155192BB24}
O42 - Logiciel: Autodesk CAD Manager Tools - (.Autodesk.) [HKLM][64Bits] -- {5783F2D7-0111-0409-0110-0060B0CE6BBA}
O42 - Logiciel: AutoCAD 2016 - Português - Brasil (Brazilian Portuguese) - (.Autodesk.) [HKLM][64Bits] -- {5783F2D7-F001-0416-2102-0060B0CE6BBA}
O42 - Logiciel: Java SE Development Kit 8 Update 40 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {64A3A4F4-B792-11D6-A78A-00B0D0180400}
O42 - Logiciel: ASUS Power4Gear Hybrid - (.ASUS.) [HKLM][64Bits] -- {91EFE3A1-585E-4F66-B5F6-F118F56C4C47}
O42 - Logiciel: WIDCOMM Bluetooth Software - (.Broadcom Corporation.) [HKLM][64Bits] -- {9E9D49A4-1DF4-4138-B7DB-5D87A893088E}
O42 - Logiciel: Autodesk Content Service Language Pack - (.Autodesk.) [HKLM][64Bits] -- {A37CDB58-AAE8-0001-8C13-E0F7BACB0D5F}
O42 - Logiciel: A360 Desktop - (.Autodesk.) [HKLM][64Bits] -- {B209E611-5511-4AD6-B4B3-9D36F93DBCD4}
O42 - Logiciel: Corel Graphics - Windows Shell Extension 64 Bit - (.Corel Corporation.) [HKLM][64Bits] -- {B982AE9C-2170-4610-B6B4-DF336164C308}
O42 - Logiciel: calibre 64bit - (.Kovid Goyal.) [HKLM][64Bits] -- {EB3D23E3-91A7-46A0-9D7F-698151973A41}
O42 - Logiciel: 7-Zip 9.34 alpha - (...) [HKLM][64Bits] -- 7-Zip
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI
O42 - Logiciel: Autodesk Application Manager - (.Autodesk.) [HKLM][64Bits] -- Autodesk Application Manager
O42 - Logiciel: Avast Premier - (.AVAST Software.) [HKLM][64Bits] -- Avast
O42 - Logiciel: CDisplay 1.8 - (.dvd8n.) [HKLM][64Bits] -- CDisplay_is1
O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite
O42 - Logiciel: Driver Booster 2.4 - (.IObit.) [HKLM][64Bits] -- Driver Booster_is1
O42 - Logiciel: ESET Online Scanner v3 - (...) [HKLM][64Bits] -- ESET Online Scanner
O42 - Logiciel: FormatFactory 3.3.5.0 - (.Format Factory.) [HKLM][64Bits] -- FormatFactory
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: IObit Uninstaller - (.IObit.) [HKLM][64Bits] -- IObitUninstall
O42 - Logiciel: MKV Player 2.1.15 - (...) [HKLM][64Bits] -- MKV Player_is1
O42 - Logiciel: Mozilla Firefox 40.0 (x86 pt-BR) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 40.0 (x86 pt-BR)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: WinRAR 4.11 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: Corel Graphics - Windows Shell Extension - (.Corel Corporation.) [HKLM][64Bits] -- _{761B6C00-A23A-4F17-9D23-CB7E48307314}
O42 - Logiciel: ASUS Splendid Video Enhancement Technology - (.ASUS.) [HKLM][64Bits] -- {0969AF05-4FF6-4C00-9406-43599238DE0D}
O42 - Logiciel: gpedt.msc 1.0 - (.Richard.) [HKLM][64Bits] -- {10B9C608-BF7C-4CCF-A658-C01D969DCA21}_is1
O42 - Logiciel: ASUS LifeFrame3 - (.ASUS.) [HKLM][64Bits] -- {1DBD1F12-ED93-49C0-A7CC-56CBDE488158}
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM][64Bits] -- {1E76EB6E-E390-11DF-95DB-005056C00008}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
O42 - Logiciel: Java 7 Update 51 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217051FF}
O42 - Logiciel: RealUpgrade 1.1 - (.RealNetworks, Inc..) [HKLM][64Bits] -- {28C2DED6-325B-4CC7-983A-1777C8F7FBAB}
O42 - Logiciel: Autodesk Material Library 2016 - (.Autodesk.) [HKLM][64Bits] -- {29A7D6EC-63C2-42FD-8143-5812ABD2923F}
O42 - Logiciel: ASUS FancyStart - (.ASUSTeK Computer Inc..) [HKLM][64Bits] -- {2B81872B-A054-48DA-BE3B-FA5C164C303A}
O42 - Logiciel: QuickTime 7 - (.Apple Inc..) [HKLM][64Bits] -- {3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}
O42 - Logiciel: Google Talk Plugin - (.Google.) [HKLM][64Bits] -- {41101F0C-DBD9-321C-A6B1-E0689B495A4E}
O42 - Logiciel: Autodesk AutoCAD Performance Feedback Tool 1.2.4 - (.Autodesk.) [HKLM][64Bits] -- {4E20873D-BC20-495C-AFD9-B18877B7F9BB}
O42 - Logiciel: Autodesk App Manager 2016 - (.Autodesk.) [HKLM][64Bits] -- {4ECF9E00-2978-46AF-BD80-455EFEAB7A93}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: FARO LS 1.1.502.0 (64bit) - (.FARO Scanner Production.) [HKLM][64Bits] -- {66D83FE0-D798-4B38-86FE-FB48151E5AEF}
O42 - Logiciel: Autodesk Material Library Base Resolution Image Library 2016 - (.Autodesk.) [HKLM][64Bits] -- {6B4CFC6E-ECB0-47FE-95D3-65C680ED0687}
O42 - Logiciel: ASUS CopyProtect - (.ASUS.) [HKLM][64Bits] -- {6B77A7F6-DD63-4F13-A6FF-83137A5AC354}
O42 - Logiciel: Corel Graphics - Windows Shell Extension - (.Corel Corporation.) [HKLM][64Bits] -- {761B6C00-A23A-4F17-9D23-CB7E48307314}
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {77DCDCE3-2DED-62F3-8154-05E745472D07}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {8E5233E1-7495-44FB-8DEB-4BE906D59619}
O42 - Logiciel: WinFlash - (.ASUS.) [HKLM][64Bits] -- {8F21291E-0444-4B1D-B9F9-4370A73E346D}
O42 - Logiciel: Autodesk Advanced Material Library Image Library 2016 - (.Autodesk.) [HKLM][64Bits] -- {94AD53E7-493B-4291-8714-7A3B761D2783}
O42 - Logiciel: Sound Forge Pro 10.0 - (.Sony.) [HKLM][64Bits] -- {9660B18F-EC12-11DF-B006-0013D3D69929}
O42 - Logiciel: ASUS MultiFrame - (.ASUS.) [HKLM][64Bits] -- {9D48531D-2135-49FC-BC29-ACCDA5396A76}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723}
O42 - Logiciel: Google+ Auto Backup - (.Google.) [HKLM][64Bits] -- {A50DE037-B5C0-4C8A-8049-B0C576B313D1}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: ATK Package - (.ASUS.) [HKLM][64Bits] -- {AB5C933E-5C7D-4D30-B314-9C83A49B94BE}
O42 - Logiciel: Adobe Reader 9.0.1 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1033-7B44-A90100000001}
O42 - Logiciel: SketchUp Import 2016 - (.Autodesk.) [HKLM][64Bits] -- {C769FB7C-1F55-4B31-9A2A-21CEC50F4F92}
O42 - Logiciel: Autodesk Featured Apps 2016 - (.Autodesk.) [HKLM][64Bits] -- {D42F37CD-9AF9-4435-A474-B387C5BB6B47}
O42 - Logiciel: Noise Reduction Plug-in 2.0i - (.Sony.) [HKLM][64Bits] -- {DC35AABA-EA0A-41C1-8462-F60A201DFF9B}
O42 - Logiciel: ASUS Live Update - (.ASUS.) [HKLM][64Bits] -- {E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}
O42 - Logiciel: Google Drive - (.Google, Inc..) [HKLM][64Bits] -- {E87022D3-C8C9-4C76-8E27-BC7F18F9B8FB}
O42 - Logiciel: ASUS Virtual Camera - (.asus.) [HKLM][64Bits] -- {EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM][64Bits] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421}
O42 - Logiciel: Mobi File Reader - (.mobifilereader.com.) [HKLM][64Bits] -- {FFA8548C-9BC2-427F-9F81-E64F620A30CB}_is1
O42 - Logiciel: Akamai NetSession Interface - (.Akamai Technologies, Inc.) [HKCU][64Bits] -- Akamai
O42 - Logiciel: Amazon Kindle - (.Amazon.) [HKCU][64Bits] -- Amazon Kindle
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent

---\\ HKCU & HKLM Software Keys (123) - 10s
HKLM\SOFTWARE\Wow6432Node\360Safe
HKLM\SOFTWARE\Wow6432Node\7-Zip
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\ADSRemoval
HKLM\SOFTWARE\Wow6432Node\AdwCleaner
HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc.
HKLM\SOFTWARE\Wow6432Node\AsLdr
HKLM\SOFTWARE\Wow6432Node\ASUS
HKLM\SOFTWARE\Wow6432Node\Autodesk
HKLM\SOFTWARE\Wow6432Node\AutoHelpDesk
HKLM\SOFTWARE\Wow6432Node\AVAST Software
HKLM\SOFTWARE\Wow6432Node\AVGO
HKLM\SOFTWARE\Wow6432Node\AviSynth
HKLM\SOFTWARE\Wow6432Node\CDDB
HKLM\SOFTWARE\Wow6432Node\Connectify
HKLM\SOFTWARE\Wow6432Node\Corel
HKLM\SOFTWARE\Wow6432Node\Disc Soft
HKLM\SOFTWARE\Wow6432Node\DivXNetworks
HKLM\SOFTWARE\Wow6432Node\Eset
HKLM\SOFTWARE\Wow6432Node\Evernote
HKLM\SOFTWARE\Wow6432Node\GNU
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\HaaliMkx
HKLM\SOFTWARE\Wow6432Node\HighCriteria
HKLM\SOFTWARE\Wow6432Node\InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\IObit
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\LiveUpdate360
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\MimarSinan
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Nullsoft
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\OldTimer Tools
HKLM\SOFTWARE\Wow6432Node\Positivo
HKLM\SOFTWARE\Wow6432Node\Protexis
HKLM\SOFTWARE\Wow6432Node\RealNetworks
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\Sony Corporation
HKLM\SOFTWARE\Wow6432Node\Sony Creative Software
HKLM\SOFTWARE\Wow6432Node\Sony Media Software
HKLM\SOFTWARE\Wow6432Node\Valve
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\VST
HKLM\SOFTWARE\Wow6432Node\WinRAR
HKLM\SOFTWARE\Wow6432Node\Wondershare
HKLM\SOFTWARE\Wow6432Node\Xing Technology Corp.
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\7-Zip
HKCU\SOFTWARE\Accmeware Corporation
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Akamai
HKCU\SOFTWARE\Amazon
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.
HKCU\SOFTWARE\ASUS
HKCU\SOFTWARE\ATK0100
HKCU\SOFTWARE\Audacity
HKCU\SOFTWARE\Autodesk
HKCU\SOFTWARE\AVAST Software
HKCU\SOFTWARE\Baidu
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\CDDB
HKCU\SOFTWARE\CDisplay
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\Citrix
HKCU\SOFTWARE\Corel
HKCU\SOFTWARE\CyberLink
HKCU\SOFTWARE\DirectShow
HKCU\SOFTWARE\Disc Soft
HKCU\SOFTWARE\Dry Cactus
HKCU\SOFTWARE\Elantech
HKCU\SOFTWARE\ESET
HKCU\SOFTWARE\Evernote
HKCU\SOFTWARE\FreeTime
HKCU\SOFTWARE\FreshWebmaster
HKCU\SOFTWARE\Froggie
HKCU\SOFTWARE\Gabest
HKCU\SOFTWARE\GbAs
HKCU\SOFTWARE\GbPlugin
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\Local AppWizard-Generated Applications
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MPC-HC
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\Playlist
HKCU\SOFTWARE\Positivo
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\RealNetworks
HKCU\SOFTWARE\RocketDock
HKCU\SOFTWARE\SAMP
HKCU\SOFTWARE\Sony Creative Software
HKCU\SOFTWARE\Sony Media Software
HKCU\SOFTWARE\Team17SoftwareLTD
HKCU\SOFTWARE\TeamViewer
HKCU\SOFTWARE\TightVNC
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\Valve
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\Widcomm
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wondershare
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft

---\\ Conteúdo das pastas Programs (O43) (243) - 10s
O43 - CFD: 2015/05/11 21:37:48 - [] D -- C:\Program Files (x86)\7-Zip
O43 - CFD: 2012/07/27 17:59:54 - [] D -- C:\Program Files (x86)\AbiWord
O43 - CFD: 2015/08/04 15:20:05 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 2015/08/04 12:23:29 - [] D -- C:\Program Files (x86)\ASUS
O43 - CFD: 2015/08/08 02:28:57 - [] D -- C:\Program Files (x86)\Autodesk
O43 - CFD: 2014/10/12 08:10:15 - [] D -- C:\Program Files (x86)\Banamalon
O43 - CFD: 2014/12/06 15:43:14 - [] D -- C:\Program Files (x86)\CDisplay
O43 - CFD: 2010/10/29 20:59:32 - [] D -- C:\Program Files (x86)\Cisco
O43 - CFD: 2015/08/01 14:12:22 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2014/08/22 14:02:57 - [] D -- C:\Program Files (x86)\DAEMON Tools Lite
O43 - CFD: 2015/08/01 14:23:33 - [0] D -- C:\Program Files (x86)\DsNET Corp
O43 - CFD: 2015/08/04 08:55:44 - [] D -- C:\Program Files (x86)\ESET
O43 - CFD: 2014/10/02 10:19:39 - [0] D -- C:\Program Files (x86)\Evernote
O43 - CFD: 2014/10/28 07:00:12 - [] D -- C:\Program Files (x86)\FreeTime
O43 - CFD: 2014/09/23 05:21:20 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2013/10/17 20:30:19 - [] D -- C:\Program Files (x86)\GUM1A61.tmp
O43 - CFD: 2013/08/11 22:07:46 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2014/02/27 08:26:29 - [] D -- C:\Program Files (x86)\Intel
O43 - CFD: 2015/07/29 13:24:51 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2014/04/16 11:29:31 - [] D -- C:\Program Files (x86)\Java
O43 - CFD: 2011/10/29 22:30:50 - [] D -- C:\Program Files (x86)\Microsoft
O43 - CFD: 2012/03/06 09:21:27 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 2015/03/07 08:26:06 - [] D -- C:\Program Files (x86)\Microsoft OneDrive
O43 - CFD: 2013/01/29 21:52:55 - [] D -- C:\Program Files (x86)\Microsoft SDKs
O43 - CFD: 2012/03/06 09:21:22 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 2012/03/06 09:17:27 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 2013/01/29 21:53:13 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 9.0
O43 - CFD: 2012/03/06 09:21:38 - [] D -- C:\Program Files (x86)\Microsoft Works
O43 - CFD: 2013/01/29 21:41:56 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2014/03/18 12:39:32 - [] D -- C:\Program Files (x86)\MKV Player
O43 - CFD: 2014/10/04 17:36:19 - [] D -- C:\Program Files (x86)\Mobi File Reader
O43 - CFD: 2015/08/13 10:14:07 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 2015/08/13 10:14:11 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 2012/03/06 09:21:33 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2014/10/02 10:36:10 - [0] D -- C:\Program Files (x86)\Positivo
O43 - CFD: 2014/10/28 06:40:07 - [] D -- C:\Program Files (x86)\QuickTime
O43 - CFD: 2011/12/25 20:19:22 - [] D -- C:\Program Files (x86)\Real
O43 - CFD: 2013/08/11 22:07:47 - [] D -- C:\Program Files (x86)\Realtek
O43 - CFD: 2009/07/14 02:32:38 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2012/06/26 12:31:13 - [] D -- C:\Program Files (x86)\Skin Pack
O43 - CFD: 2013/07/02 12:27:52 - [] D -- C:\Program Files (x86)\Sony
O43 - CFD: 2015/06/11 17:23:58 - [] D -- C:\Program Files (x86)\Steam
O43 - CFD: 2013/08/11 22:29:10 - [0] HD -- C:\Program Files (x86)\Temp
O43 - CFD: 2014/03/08 14:27:13 - [0] D -- C:\Program Files (x86)\Ubisoft
O43 - CFD: 2009/07/14 01:57:06 - [0] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 2014/10/23 06:10:03 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2011/10/29 22:31:12 - [] D -- C:\Program Files (x86)\Windows Live
O43 - CFD: 2011/10/29 22:30:31 - [] D -- C:\Program Files (x86)\Windows Live SkyDrive
O43 - CFD: 2014/09/24 06:44:00 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2015/07/29 13:24:46 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2009/07/14 02:32:38 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2014/09/24 06:43:59 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2014/09/24 06:43:59 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2014/09/24 06:44:00 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2012/03/07 20:17:09 - [] D -- C:\Program Files (x86)\WinRAR
O43 - CFD: 2014/10/02 10:19:41 - [0] D -- C:\Program Files (x86)\ZaraSoft
O43 - CFD: 2015/05/11 21:37:48 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
O43 - CFD: 2013/11/20 09:58:23 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AbiWord Word Processor
O43 - CFD: 2015/01/02 06:11:24 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2009/07/14 01:57:13 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2011/12/25 21:17:17 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS Utility
O43 - CFD: 2015/08/08 02:33:07 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
O43 - CFD: 2015/08/06 00:05:48 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
O43 - CFD: 2014/10/12 08:10:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Banamalon
O43 - CFD: 2014/12/04 11:26:41 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management
O43 - CFD: 2014/08/05 07:35:36 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 2014/12/06 15:43:14 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDisplay
O43 - CFD: 2014/09/11 12:56:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
O43 - CFD: 2014/08/22 14:04:30 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
O43 - CFD: 2013/07/29 12:43:37 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evernote
O43 - CFD: 2011/11/25 19:40:53 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2015/06/01 05:07:45 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2015/08/01 13:53:40 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
O43 - CFD: 2010/10/18 08:35:55 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
O43 - CFD: 2010/10/29 20:59:36 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless
O43 - CFD: 2015/07/06 12:13:15 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
O43 - CFD: 2014/11/25 06:20:15 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 2015/03/15 20:47:17 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
O43 - CFD: 2013/08/18 12:05:44 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Magix
O43 - CFD: 2009/07/14 01:57:09 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2012/03/06 09:22:47 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 2014/03/18 12:39:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MKV Player
O43 - CFD: 2014/10/04 17:36:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mobi File Reader
O43 - CFD: 2015/06/21 20:42:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC x64
O43 - CFD: 2015/03/15 20:51:46 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetBeans
O43 - CFD: 2014/10/28 06:39:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
O43 - CFD: 2015/08/03 11:34:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RefreshPC
O43 - CFD: 2013/11/20 09:58:24 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
O43 - CFD: 2013/07/02 12:28:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
O43 - CFD: 2015/03/15 19:33:59 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
O43 - CFD: 2010/10/18 08:38:36 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SRS Labs
O43 - CFD: 2015/08/05 09:29:44 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2013/12/20 15:53:05 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
O43 - CFD: 2009/07/14 04:44:38 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2014/10/22 08:09:21 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Virtual WiFi Router
O43 - CFD: 2014/03/08 14:22:13 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp
O43 - CFD: 2011/10/29 22:31:27 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
O43 - CFD: 2012/03/07 20:17:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2013/03/31 23:33:58 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2014/10/28 06:37:42 - [] D -- C:\ProgramData\Apple
O43 - CFD: 2014/10/28 06:39:25 - [] D -- C:\ProgramData\Apple Computer
O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2010/10/29 17:47:51 - [] D -- C:\ProgramData\ASUS
O43 - CFD: 2015/08/08 11:46:44 - [] D -- C:\ProgramData\Autodesk
O43 - CFD: 2015/08/05 09:29:37 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 2014/10/12 08:10:26 - [] D -- C:\ProgramData\Banamalon
O43 - CFD: 2014/03/15 18:54:12 - [] D -- C:\ProgramData\boost_interprocess
O43 - CFD: 2013/01/29 21:36:04 - [] D -- C:\ProgramData\CorelDRAW Graphics Suite X6
O43 - CFD: 2015/02/23 12:34:57 - [] D -- C:\ProgramData\CyberLink
O43 - CFD: 2014/09/05 05:20:32 - [] D -- C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2015/08/08 02:16:40 - [] D -- C:\ProgramData\FARO
O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 2015/08/08 11:46:17 - [] D -- C:\ProgramData\FLEXnet
O43 - CFD: 2014/09/04 09:17:03 - [] D -- C:\ProgramData\GAS Tecnologia
O43 - CFD: 2014/02/27 08:33:52 - [] D -- C:\ProgramData\Intel
O43 - CFD: 2015/08/03 11:37:34 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2013/11/20 13:11:20 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 2015/03/11 13:33:37 - [0] D -- C:\ProgramData\Microsoft OneDrive
O43 - CFD: 2014/09/20 14:44:59 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2015/05/04 07:20:54 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 2015/08/03 14:10:28 - [] D -- C:\ProgramData\P4G
O43 - CFD: 2015/08/08 02:34:13 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 2013/01/29 22:03:12 - [] D -- C:\ProgramData\Protexis
O43 - CFD: 2013/08/31 22:10:27 - [] D -- C:\ProgramData\PSafe
O43 - CFD: 2015/08/03 14:09:45 - [] D -- C:\ProgramData\Real
O43 - CFD: 2014/01/05 11:42:34 - [] D -- C:\ProgramData\Sony
O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2013/11/26 07:56:27 - [] D -- C:\ProgramData\Sun
O43 - CFD: 2013/11/19 11:38:36 - [] D -- C:\ProgramData\SUPERAntiSpyware.com
O43 - CFD: 2014/03/15 18:43:19 - [] AD -- C:\ProgramData\Temp
O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2014/09/26 10:00:01 - [] D -- C:\ProgramData\Wondershare
O43 - CFD: 2013/11/20 09:39:23 - [0] D -- C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
O43 - CFD: 2015/07/06 12:13:09 - [0] D -- C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
O43 - CFD: 2010/10/18 08:44:41 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 2015/08/04 15:20:06 - [] D -- C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 2015/08/08 02:32:52 - [] D -- C:\Program Files (x86)\Common Files\Autodesk Shared
O43 - CFD: 2013/01/29 21:52:19 - [] D -- C:\Program Files (x86)\Common Files\Corel
O43 - CFD: 2012/03/06 09:21:22 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 2013/08/11 22:07:33 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 2010/10/18 08:35:52 - [] D -- C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 2015/07/06 12:12:58 - [] D -- C:\Program Files (x86)\Common Files\IObit
O43 - CFD: 2015/05/04 07:16:46 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 2013/01/29 21:53:17 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 2010/10/18 08:34:03 - [] D -- C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 2013/08/13 09:29:32 - [] D -- C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 2009/07/14 00:20:08 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2009/07/14 00:20:08 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 2014/01/10 23:26:05 - [] D -- C:\Program Files (x86)\Common Files\Steam
O43 - CFD: 2014/09/24 06:43:59 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2011/10/29 22:08:11 - [] D -- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 2014/09/26 09:58:27 - [] D -- C:\Program Files (x86)\Common Files\Wondershare
O43 - CFD: 2013/08/31 22:10:28 - [] D -- C:\Users\asus\AppData\Roaming\360Safe
O43 - CFD: 2012/03/06 07:13:24 - [] D -- C:\Users\asus\AppData\Roaming\AbiSuite
O43 - CFD: 2012/06/02 22:46:28 - [] D -- C:\Users\asus\AppData\Roaming\Adobe
O43 - CFD: 2014/11/07 05:56:57 - [] D -- C:\Users\asus\AppData\Roaming\Apple Computer
O43 - CFD: 2014/03/22 16:32:53 - [] D -- C:\Users\asus\AppData\Roaming\Audacity
O43 - CFD: 2015/08/08 02:34:28 - [] D -- C:\Users\asus\AppData\Roaming\Autodesk
O43 - CFD: 2015/08/04 15:08:48 - [] D -- C:\Users\asus\AppData\Roaming\AVAST Software
O43 - CFD: 2014/10/12 08:11:01 - [] D -- C:\Users\asus\AppData\Roaming\Banamalon
O43 - CFD: 2014/08/22 10:17:05 - [] D -- C:\Users\asus\AppData\Roaming\calibre
O43 - CFD: 2012/06/02 22:46:29 - [] D -- C:\Users\asus\AppData\Roaming\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O43 - CFD: 2013/01/29 22:03:12 - [] D -- C:\Users\asus\AppData\Roaming\Corel
O43 - CFD: 2014/08/22 16:59:56 - [] D -- C:\Users\asus\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 2012/04/01 20:56:08 - [] D -- C:\Users\asus\AppData\Roaming\DesktopReminder
O43 - CFD: 2015/03/12 00:08:41 - [0] D -- C:\Users\asus\AppData\Roaming\Dropbox
O43 - CFD: 2013/08/12 12:35:06 - [] D -- C:\Users\asus\AppData\Roaming\Free Audio Recorder
O43 - CFD: 2014/01/30 20:58:58 - [0] D -- C:\Users\asus\AppData\Roaming\FreshHTML
O43 - CFD: 2011/10/05 01:32:07 - [] D -- C:\Users\asus\AppData\Roaming\Identities
O43 - CFD: 2011/10/05 01:33:40 - [] D -- C:\Users\asus\AppData\Roaming\Intel
O43 - CFD: 2015/06/10 23:02:35 - [] D -- C:\Users\asus\AppData\Roaming\Java
O43 - CFD: 2011/10/29 22:34:03 - [] D -- C:\Users\asus\AppData\Roaming\Macromedia
O43 - CFD: 2009/07/14 04:44:38 - [0] D -- C:\Users\asus\AppData\Roaming\Media Center Programs
O43 - CFD: 2014/12/14 06:12:19 - [0] D -- C:\Users\asus\AppData\Roaming\Media Player Classic
O43 - CFD: 2015/08/08 21:12:57 - [] SD -- C:\Users\asus\AppData\Roaming\Microsoft
O43 - CFD: 2013/09/28 13:18:56 - [] D -- C:\Users\asus\AppData\Roaming\Mozilla
O43 - CFD: 2014/12/13 15:26:27 - [] D -- C:\Users\asus\AppData\Roaming\MPC-HC
O43 - CFD: 2015/03/16 07:20:10 - [] D -- C:\Users\asus\AppData\Roaming\NetBeans
O43 - CFD: 2013/08/31 22:10:27 - [] D -- C:\Users\asus\AppData\Roaming\PSafe
O43 - CFD: 2013/07/02 12:38:17 - [0] D -- C:\Users\asus\AppData\Roaming\Publish Providers
O43 - CFD: 2015/08/01 14:12:32 - [] D -- C:\Users\asus\AppData\Roaming\Real
O43 - CFD: 2013/07/02 12:38:21 - [] D -- C:\Users\asus\AppData\Roaming\Sony
O43 - CFD: 2015/07/25 22:58:56 - [] D -- C:\Users\asus\AppData\Roaming\Steam
O43 - CFD: 2013/11/19 11:39:22 - [] D -- C:\Users\asus\AppData\Roaming\SUPERAntiSpyware.com
O43 - CFD: 2013/07/17 22:52:51 - [] D -- C:\Users\asus\AppData\Roaming\TeamViewer
O43 - CFD: 2014/03/06 21:28:58 - [] D -- C:\Users\asus\AppData\Roaming\Thinstall
O43 - CFD: 2014/10/12 07:27:23 - [] D -- C:\Users\asus\AppData\Roaming\Unified Remote
O43 - CFD: 2015/08/04 11:28:29 - [] D -- C:\Users\asus\AppData\Roaming\uTorrent
O43 - CFD: 2012/03/07 20:17:52 - [] D -- C:\Users\asus\AppData\Roaming\WinRAR
O43 - CFD: 2015/08/13 11:37:54 - [] D -- C:\Users\asus\AppData\Roaming\ZHP
O43 - CFD: 2015/08/04 15:00:46 - [] D -- C:\Users\asus\AppData\Local\Adobe
O43 - CFD: 2015/08/13 08:54:45 - [] D -- C:\Users\asus\AppData\Local\Akamai
O43 - CFD: 2014/10/04 17:57:14 - [] D -- C:\Users\asus\AppData\Local\Amazon
O43 - CFD: 2014/10/28 06:37:46 - [] D -- C:\Users\asus\AppData\Local\Apple
O43 - CFD: 2011/10/05 01:31:58 - [0] SHD -- C:\Users\asus\AppData\Local\Application Data
O43 - CFD: 2013/01/02 23:45:19 - [] D -- C:\Users\asus\AppData\Local\Apps
O43 - CFD: 2011/11/01 16:56:20 - [] D -- C:\Users\asus\AppData\Local\ASUS
O43 - CFD: 2015/08/08 11:43:55 - [] D -- C:\Users\asus\AppData\Local\Autodesk
O43 - CFD: 2014/08/25 22:34:04 - [] D -- C:\Users\asus\AppData\Local\cache
O43 - CFD: 2014/08/22 10:04:21 - [0] D -- C:\Users\asus\AppData\Local\calibre-cache
O43 - CFD: 2015/04/02 11:38:11 - [] D -- C:\Users\asus\AppData\Local\Citrix
O43 - CFD: 2014/09/23 00:33:13 - [0] D -- C:\Users\asus\AppData\Local\Deployment
O43 - CFD: 2015/08/05 12:19:46 - [] D -- C:\Users\asus\AppData\Local\Diagnostics
O43 - CFD: 2015/05/16 00:25:47 - [] D -- C:\Users\asus\AppData\Local\Eclipse
O43 - CFD: 2015/08/09 01:00:44 - [0] D -- C:\Users\asus\AppData\Local\ElevatedDiagnostics
O43 - CFD: 2013/07/24 18:27:35 - [] D -- C:\Users\asus\AppData\Local\Evernote
O43 - CFD: 2014/10/22 12:35:15 - [] D -- C:\Users\asus\AppData\Local\GAS Tecnologia
O43 - CFD: 2015/08/01 14:25:59 - [] D -- C:\Users\asus\AppData\Local\Google
O43 - CFD: 2011/10/05 01:31:58 - [0] SHD -- C:\Users\asus\AppData\Local\History
O43 - CFD: 2014/12/06 15:38:46 - [] D -- C:\Users\asus\AppData\Local\IsolatedStorage
O43 - CFD: 2015/08/08 21:08:46 - [] D -- C:\Users\asus\AppData\Local\Microsoft
O43 - CFD: 2012/05/01 20:22:27 - [] D -- C:\Users\asus\AppData\Local\Microsoft Games
O43 - CFD: 2014/12/06 14:02:10 - [] D -- C:\Users\asus\AppData\Local\Microsoft Help
O43 - CFD: 2012/06/26 12:48:21 - [0] DC -- C:\Users\asus\AppData\Local\MigWiz
O43 - CFD: 2015/06/09 23:53:31 - [] D -- C:\Users\asus\AppData\Local\MinhaBox.br
O43 - CFD: 2014/09/20 14:46:34 - [] D -- C:\Users\asus\AppData\Local\Mozilla
O43 - CFD: 2013/10/05 18:27:05 - [] D -- C:\Users\asus\AppData\Local\mystart_ad
O43 - CFD: 2015/03/16 07:19:43 - [] D -- C:\Users\asus\AppData\Local\NetBeans
O43 - CFD: 2012/04/01 20:51:28 - [] D -- C:\Users\asus\AppData\Local\Polenter_-_Software_Solut
O43 - CFD: 2014/01/11 14:15:28 - [] D -- C:\Users\asus\AppData\Local\Programs
O43 - CFD: 2013/08/31 22:16:30 - [] D -- C:\Users\asus\AppData\Local\PSafe
O43 - CFD: 2013/08/31 22:10:31 - [] D -- C:\Users\asus\AppData\Local\PsMCSuperBanner
O43 - CFD: 2013/08/31 22:10:26 - [] D -- C:\Users\asus\AppData\Local\psSearchDesk
O43 - CFD: 2012/04/12 11:17:45 - [] D -- C:\Users\asus\AppData\Local\Sony
O43 - CFD: 2011/10/05 01:33:43 - [] D -- C:\Users\asus\AppData\Local\SRS Labs
O43 - CFD: 2015/08/13 11:38:00 - [] D -- C:\Users\asus\AppData\Local\Temp
O43 - CFD: 2011/10/05 01:31:58 - [0] SHD -- C:\Users\asus\AppData\Local\Temporary Internet Files
O43 - CFD: 2014/03/08 14:27:12 - [0] D -- C:\Users\asus\AppData\Local\Ubisoft Game Launcher
O43 - CFD: 2012/04/21 12:22:13 - [] D -- C:\Users\asus\AppData\Local\VirtualStore
O43 - CFD: 2014/09/26 09:58:29 - [] D -- C:\Users\asus\AppData\Local\Wondershare
O43 - CFD: 2012/08/23 19:49:33 - [] D -- C:\Users\asus\AppData\Local\ZaraRadio
O43 - CFD: 2009/07/14 01:54:32 - [] RD -- C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/07/03 23:24:58 - [] RD -- C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2014/10/04 17:57:08 - [] D -- C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon
O43 - CFD: 2014/10/28 07:12:59 - [] D -- C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
O43 - CFD: 2013/01/01 13:12:41 - [] D -- C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2014/10/02 10:14:10 - [0] D -- C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Magix
O43 - CFD: 2009/07/14 01:49:38 - [] RD -- C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2013/01/02 16:49:10 - [0] D -- C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
O43 - CFD: 2015/07/03 23:24:58 - [] RD -- C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2012/03/07 20:17:09 - [] D -- C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

---\\ Enumeração das chaves do registo StartupReg (SMSR) (O53) (17) - 1s
O53 - SMSR:HKLM\...\startupreg\Adobe Reader Speed Launcher [Key] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
O53 - SMSR:HKLM\...\startupreg\ADSMTray [Key] . (...) -- C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\ASUS Screen Saver Protector [Key] . (.ASUS - AsScrPro.) -- C:\Windows\AsScrPro.exe
O53 - SMSR:HKLM\...\startupreg\ConnecitfyTemp a [Key] . (...) -- cmd /Q /C rmdir /S /Q C:\Users\asus\AppData\Local\Temp\Connectify\a (.not file.)
O53 - SMSR:HKLM\...\startupreg\Connectify Dispatch [Key] . (...) -- C:\Program Files (x86)\Connectify\DispatchUI.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Connectify Hotspot [Key] . (...) -- C:\Program Files (x86)\Connectify\Connectify.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Google Photos Backup [Key] . (...) -- C:\Users\asus\AppData\Local\Programs\Google\Google Photos Backup\Google Photos Backup.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\IObit Malware Fighter [Key] . (...) -- C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\MyStart Anti-phishing Domain Advisor [Key] . (...) -- C:\ProgramData\MyStart Anti-phishing Domain Advisor\MyStart_antiphishing.exe (.not file.) =>PUP.Optional.VisicomAntiPhishing
O53 - SMSR:HKLM\...\startupreg\QuickTime Task [Key] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe
O53 - SMSR:HKLM\...\startupreg\SmartAudio [Key] . (.Copyright (C) 2008-2009 - SAIICpl MFC Application.) -- C:\Program Files\CONEXANT\SAII\SAIICpl.exe
O53 - SMSR:HKLM\...\startupreg\Steam [Key] . (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files (x86)\Steam\Steam.exe
O53 - SMSR:HKLM\...\startupreg\SUPERAntiSpyware [Key] . (...) -- C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\TkBellExe [Key] . (...) -- C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\uTorrent [Key] . (...) -- C:\Users\asus\AppData\Roaming\uTorrent\uTorrent.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Wireless Console 3 [Key] . (...) -- C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Wondershare Helper Compact.exe [Key] . (.Wondershare - Wondershare Studio.) -- C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe

---\\ Lista dos drivers do sistema (SDL) (O58) (81) - 6s
O58 - SDL:2015/08/05 09:43:18 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\08AC4C15.sys [113880]
O58 - SDL:2013/08/30 21:18:58 RA . (.360.cn - 360HipsOEM.) -- C:\Windows\System32\drivers\360FltOEM.sys [288688]
O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088]
O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536]
O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864]
O58 - SDL:2009/07/13 22:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440]
O58 - SDL:2013/12/11 08:02:44 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904]
O58 - SDL:2009/07/13 22:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128]
O58 - SDL:2013/12/11 08:02:44 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008]
O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632]
O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856]
O58 - SDL:2015/08/04 15:07:06 A . (.AVAST Software - avast! HWID.) -- C:\Windows\System32\drivers\aswHwid.sys [28656]
O58 - SDL:2015/08/05 09:39:20 A . (.AVAST Software - avast! Keyboard Filter Driver.) -- C:\Windows\System32\drivers\aswKbd.sys [28144]
O58 - SDL:2015/08/04 15:07:06 A . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\drivers\aswMonFlt.sys [90968]
O58 - SDL:2015/08/05 09:39:17 A . (.AVAST Software - avast! Filtering NDIS driver.) -- C:\Windows\System32\drivers\aswNdisFlt.sys [454016]
O58 - SDL:2015/08/04 15:07:06 A . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\Windows\System32\drivers\aswRdr2.sys [93528]
O58 - SDL:2015/08/04 15:07:06 A . (.AVAST Software - avast! Revert.) -- C:\Windows\System32\drivers\aswRvrt.sys [65224]
O58 - SDL:2015/08/04 15:07:00 A . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\drivers\aswSnx.sys [1048856]
O58 - SDL:2015/08/04 15:07:06 A . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\drivers\aswSP.sys [447944]
O58 - SDL:2015/08/04 15:07:06 A . (.AVAST Software - Stream Filter.) -- C:\Windows\System32\drivers\aswStm.sys [150672]
O58 - SDL:2014/07/22 07:40:41 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver.) -- C:\Windows\System32\drivers\aswTap.sys [44640]
O58 - SDL:2015/08/04 15:07:06 A . (.AVAST Software - avast! VM Monitor.) -- C:\Windows\System32\drivers\aswVmm.sys [274808]
O58 - SDL:2010/03/02 05:45:23 A . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driv.) -- C:\Windows\System32\drivers\athrx.sys [1594368]
O58 - SDL:2009/05/13 13:07:20 A . (.ASUS - ATK0100 ACPI Utility.) -- C:\Windows\System32\drivers\ATK64AMD.sys [15928]
O58 - SDL:2009/06/10 17:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848]
O58 - SDL:2015/07/06 12:45:40 A . (.Intel Corporation - Intel® WiMax Link 5050 Series Enumerator.) -- C:\Windows\System32\drivers\bpenum.sys [84480]
O58 - SDL:2009/12/23 01:37:22 A . (.Intel Corporation - Intel® Centrino® WiMAX Driver.) -- C:\Windows\System32\drivers\bpmp.sys [174592]
O58 - SDL:2009/12/23 01:37:16 A . (.Intel Corporation - Intel® Centrino® WiMAX Function Driver.) -- C:\Windows\System32\drivers\bpusb.sys [81920]
O58 - SDL:2009/06/10 17:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432]
O58 - SDL:2009/06/10 17:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704]
O58 - SDL:2009/07/13 22:19:07 A . (.Brother Industries Ltd. - Brother Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720]
O58 - SDL:2009/06/10 17:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104]
O58 - SDL:2009/06/10 17:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976]
O58 - SDL:2009/06/10 17:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720]
O58 - SDL:2009/07/01 01:46:51 A . (.Broadcom Corporation. - Bluetooth Audio Device.) -- C:\Windows\System32\drivers\btwaudio.sys [98344]
O58 - SDL:2009/07/01 01:46:47 A . (.Broadcom Corporation. - Broadcom Bluetooth AVDT Service.) -- C:\Windows\System32\drivers\btwavdt.sys [132648]
O58 - SDL:2009/04/07 04:33:07 A . (.Broadcom Corporation. - Broadcom Bluetooth L2CAP Service.) -- C:\Windows\System32\drivers\btwl2cap.sys [35104]
O58 - SDL:2009/07/01 01:46:39 A . (.Broadcom Corporation. - Bluetooth Remote Control HID Minidriver.) -- C:\Windows\System32\drivers\btwrchid.sys [21160]
O58 - SDL:2009/06/10 17:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480]
O58 - SDL:2009/10/29 23:50:03 A . (.Conexant Systems Inc. - 64-bit High Definition Audio Function Drive.) -- C:\Windows\System32\drivers\CHDRT64.sys [704512]
O58 - SDL:2009/07/13 22:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488]
O58 - SDL:2014/08/22 08:04:18 A . (.Connectify - NDISRD helper driver.) -- C:\Windows\System32\drivers\cnnctfy3.sys [42152]
O58 - SDL:2009/07/13 22:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496]
O58 - SDL:2010/04/13 07:15:03 A . (.ELAN Microelectronic Corp. - ETD Control Center.) -- C:\Windows\System32\drivers\ETD.sys [135560]
O58 - SDL:2009/06/10 17:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016]
O58 - SDL:2009/06/10 17:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232]
O58 - SDL:2009/09/17 16:54:54 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\HECIx64.sys [56344]
O58 - SDL:2010/11/20 10:33:35 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720]
O58 - SDL:2009/08/06 18:24:13 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStor.sys [408600]
O58 - SDL:2013/12/11 08:02:44 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496]
O58 - SDL:2014/02/27 08:25:14 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [12312928]
O58 - SDL:2009/07/13 22:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112]
O58 - SDL:2010/02/26 05:32:11 A . (.Intel Corporation - Intel(R) Turbo Boost Technology Driver.) -- C:\Windows\System32\drivers\Impcd.sys [158976]
O58 - SDL:2014/02/27 08:24:37 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\drivers\IntcDAud.sys [317440]
O58 - SDL:2014/02/27 08:26:39 A . (.JMicron Technology Corporation - JMicron PCIe Flash Media Controller Driver.) -- C:\Windows\System32\drivers\jmcr.sys [176880]
O58 - SDL:2009/07/20 06:29:39 A . (. - Keyboard Filter Driver.) -- C:\Windows\System32\drivers\kbfiltr.sys [15416]
O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752]
O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560]
O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600]
O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776]
O58 - SDL:2009/06/18 16:18:10 A . (.Windows (R) Win 7 DDK provider - ASUS CopyProtect driver.) -- C:\Windows\System32\drivers\lullaby.sys [15928]
O58 - SDL:2012/10/11 00:08:10 A . (.ManyCam LLC - ManyCam Virtual Webcam.) -- C:\Windows\System32\drivers\mcvidrv_x64.sys [44928]
O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392]
O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736]
O58 - SDL:2010/03/18 02:21:58 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\System32\drivers\NETw5s64.sys [7680512]
O58 - SDL:2009/07/13 22:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264]
O58 - SDL:2013/12/11 08:02:44 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352]
O58 - SDL:2013/12/11 08:02:44 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272]
O58 - SDL:2009/07/13 22:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816]
O58 - SDL:2009/07/13 22:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592]
O58 - SDL:2009/06/10 17:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040]
O58 - SDL:2009/06/10 17:35:57 A . (.Silicon Integrated Systems Corp. - NDIS 6.0 Miniport Driver for SiS191/SiS190.) -- C:\Windows\System32\drivers\SiSG664.sys [56832]
O58 - SDL:2009/07/13 22:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584]
O58 - SDL:2009/07/13 22:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464]
O58 - SDL:2015/07/06 12:42:45 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\drivers\Smb_driver_Intel.sys [34544]
O58 - SDL:2009/06/05 07:15:55 A . (.Copyright 2004-2007 - USBCAMD for Sonix UVC.) -- C:\Windows\System32\drivers\sncduvc.sys [42176]
O58 - SDL:2009/06/05 07:15:57 A . (.Copyright 2004-2008 - UVC Camera Streaming Driver.) -- C:\Windows\System32\drivers\snp2uvc.sys [1806400]
O58 - SDL:2014/08/22 14:03:38 A . (.Duplex Secure Ltd. - SCSI Pass Through Direct Host.) -- C:\Windows\System32\drivers\sptd.sys [386680]
O58 - SDL:2009/07/13 22:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656]
O58 - SDL:2009/07/13 22:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488]
O58 - SDL:2009/07/13 22:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872]

---\\ Últimos ficheiros alterados ou criados (Utilizador) (061) (11) - 87s
O61 - LFC: 2015/08/08 01:09:29 A . (..) -- C:\Users\asus\Downloads\AutoCAD_2016_Brazilian_Portuguese_Win_32_64bit_wi_pt-BR_Setup.exe [17172712]
O61 - LFC: 2015/08/08 00:37:32 A . (..) -- C:\Users\asus\Downloads\AutoCAD_2016_English_Win_32_64bit_Trial_wi_en-us_Setup.exe [16878352]
O61 - LFC: 2015/08/13 10:09:52 A . (..) -- C:\Users\asus\Downloads\Firefox Setup 40.0.exe [41938664]
O61 - LFC: 2015/08/06 00:43:18 A . (.SurfRight B.V..) -- C:\Users\asus\Desktop\PROGRAMAS LIMPEZA\HitmanPro_x64.exe [11032736]
O61 - LFC: 2015/08/08 02:16:50 RA . (..) -- C:\Users\asus\AppData\Roaming\Microsoft\Installer\{D42F37CD-9AF9-4435-A474-B387C5BB6B47}\ARPPRODUCTICON.EXE [26622]
O61 - LFC: 2015/08/08 02:02:14 RA . (..) -- C:\Users\asus\AppData\Roaming\Microsoft\Installer\{C769FB7C-1F55-4B31-9A2A-21CEC50F4F92}\ARPPRODUCTICON.EXE [26622]
O61 - LFC: 2015/08/08 02:16:48 RA . (..) -- C:\Users\asus\AppData\Roaming\Microsoft\Installer\{4ECF9E00-2978-46AF-BD80-455EFEAB7A93}\ARPPRODUCTICON.EXE [26622]
O61 - LFC: 2015/08/08 11:50:11 A . (..) -- C:\Users\asus\AppData\Roaming\Autodesk\AutoCAD 2016\R20.1\ptb\AcLivePreviewContext.dll [9216]
O61 - LFC: 2015/08/08 11:46:57 A . (..) -- C:\Users\asus\AppData\Roaming\Autodesk\AutoCAD 2016\R20.1\ptb\ContextualTabSelectorRules.dll [37376]
O61 - LFC: 2015/08/09 23:22:54 A . (..) -- C:\Users\asus\AppData\Roaming\Adobe\Acrobat\9.0\UserCache.bin [105621]
O61 - LFC: 2015/08/13 10:59:07 A . (..) -- C:\Users\asus\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849]

---\\ Associações Shell Spawning (O67) (11) - 1s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Iniciador do snap-in de 'Visualizar eventos.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Editor do Registro.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.scr> [HKCU\..\open\Command] (.Microsoft Corporation - Bloco de notas.) -- C:\Windows\System32\notepad.exe

---\\ Menu de inicialização Internet (068) (12) - 1s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitário de Inicialização por Usuário do.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitário de Inicialização por Usuário do.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitário de Inicialização por Usuário do.) -- C:\Windows\System32\ie4uinit.exe

---\\ Pesquisa de infeção nos navegadores da Internet (SBI) (069) (1) - 8s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/

---\\ Listagem dos serviços iniciados pelo Svchost (SSS) (O83) (32) - 2s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Serviço de Experiência com Aplicativo.) -- C:\Windows\System32\aelupsvc.dll [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Serviço de Propagação de Certificado de Car.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Serviço de Propagação de Certificado de Car.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL de Serviço do Servidor.) -- C:\Windows\system32\srvsvc.dll [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Cliente da Diretiva de Grupo.) -- C:\Windows\System32\gpsvc.dll [777728]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extensão IKE.) -- C:\Windows\System32\ikeext.dll [859648]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Serviço de Áudio do Windows.) -- C:\Windows\System32\Audiosrv.dll [680960]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gerenciador de Discagem Automática de Acess.) -- C:\Windows\System32\rasauto.dll [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gerenciador de conexão de acesso remoto.) -- C:\Windows\System32\rasmans.dll [344064]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gerenciador de Interface Dinâmica.) -- C:\Windows\System32\mprdim.dll [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Serviço de Notificação de Eventos do Sistem.) -- C:\Windows\System32\Sens.dll [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Componentes do Microsoft NAT Helper.) -- C:\Windows\System32\ipnathlp.dll [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Servidor de telefonia do Microsoft(R) Windo.) -- C:\Windows\System32\tapisrv.dll [316928]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gerenciador de Conexões Remotas do Servidor.) -- C:\Windows\System32\termsrv.dll [683520]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\system32\wuaueng.dll [2589184]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Serviço de transferência inteligente de pla.) -- C:\Windows\System32\qmgr.dll [849920]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - DLL de serviços do Shell do Windows.) -- C:\Windows\System32\shsvcs.dll [370688]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Serviço que oferece conectividade IPv6 em u.) -- C:\Windows\System32\iphlpsvc.dll [569344]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de serviço de logon secundário.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Serviço de Informações de Aplicativos.) -- C:\Windows\System32\appinfo.dll [70144]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Serviço de Descoberta iSCSI.) -- C:\Windows\system32\iscsiexe.dll [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Serviço Agendador de Classes de Multimídia.) -- C:\Windows\system32\mmcss.dll [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Serviço de Configuração da Área de Trabalho.) -- C:\Windows\System32\SessEnv.dll [121856]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL de Serviço Pesquisador de Computadores.) -- C:\Windows\System32\browser.dll [136704]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Serviço Microsoft EAPHost.) -- C:\Windows\System32\eapsvc.dll [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Serviço Agendador de Tarefas.) -- C:\Windows\system32\schedsvc.dll [1110016]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Serviço de Gerenciamento de Chaves.) -- C:\Windows\system32\kmsvc.dll [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Relatórios de Problemas e Soluções.) -- C:\Windows\System32\wercplsupport.dll [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [210432]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL do Serviço de Tema do Shell do Windows.) -- C:\Windows\system32\themeservice.dll [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Serviço BDE.) -- C:\Windows\System32\bdesvc.dll [100864]

---\\ Estado general dos serviços não Microsoft (EGS) (SR=Executados, SS=Parados) (18) - 34s
SR - Auto [2015/07/30 00:40:18] [ 1129864] Autodesk Application Manager Service (AdAppMgrSvc) . (.Autodesk Inc..) - C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
SS - Demand [2015/08/12 09:50:38] [ 269000] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - Auto [2009/12/07 20:16:34] [ 379520] AFBAgent (AFBAgent) . (.ASUSTeK Computer Inc..) - C:\Windows\system32\FBAgent.exe
SR - Auto [2009/06/15 21:30:42] [ 84536] ASLDR Service (ASLDRService) . (.ASUS.) - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
SR - Auto [2009/12/15 14:39:38] [ 96896] ATKGFNEX Service (ATKGFNEXSrv) . (.ASUS.) - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
SS - Auto [2015/02/05 20:47:50] [ 31160] Autodesk Content Service (Autodesk Content Service) . (.Autodesk, Inc..) - C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
SR - Auto [2015/08/04 15:07:03] [ 146600] Avast Antivirus (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SR - Auto [2015/08/05 09:39:17] [ 109008] Avast Firewall (avast! Firewall) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\afwServ.exe
SS - Disabled [2009/07/01 22:54:02] [ 864032] Bluetooth Service (btwdins) . (.Broadcom Corporation..) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
SS - Demand [2015/08/08 02:00:09] [ 1369856] FlexNet Licensing Service 64 (FlexNet Licensing Service 64) . (.Flexera Software LLC.) - C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
SS - Auto [2013/04/04 10:08:47] [ 116648] Google Update Service (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - Demand [2013/04/04 10:08:47] [ 116648] Google Update Service (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - Disabled [2009/09/30 23:33:08] [ 262144] Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SS - Demand [2015/08/07 16:04:03] [ 149160] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SR - Auto [2010/03/05 14:06:22] [ 831760] Intel(R) PROSet/Wireless Registry Service (RegSrvc) . (.Intel(R) Corporation.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
SR - Auto [2015/05/12 16:11:12] [ 445240] Avast SecureLine (SecureLine) . (...) - C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe
SS - Disabled [2014/01/07 18:00:22] [ 569768] Steam Client Service (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
SS - Auto [2009/09/30 23:34:22] [ 2314240] Intel(R) Management & Security Application User Notificatio (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe

---\\ Scâner Aditional (088) (1) - 0s
~ Nenhum ítem malicioso o desnecessários foi encontrado.

---\\ Resumo dos elementos encontrados na sua estação de trabalho (1) - 0s
http://www.nicolascoolman.fr/blog =>PUP.Optional.VisicomAntiPhishing

~ End of the scan, 22247 items in 234 seconds (925)(0)()

Signaler le contenu de ce document