~ ZHPDiag v2015.7.15.90 Por Nicolas Coolman (2015/07/15)
~ iniciado por Itamar_Rialto (Administrator)  (2015/07/16 16:35:47)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Status da versão:  Version OK
~ Modo: Scanner
~ Relatório: C:\Users\Itamar_Rialto\Desktop\ZHPDiag.txt
~ Relatório: C:\Users\Itamar_Rialto\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Inicialização do sistema: Normal (Normal boot)
~ Windows 8.1, 64-bit  (Build 9600)

---\\ Navegadores Internet (3) - 1s
GCIE: Google Chrome v43.0.2357.134
MFIE: Mozilla Firefox 38.0.5 (x86 pt-BR) v38.0.5
MSIE: Internet Explorer v11.0.9600.17905

---\\ Informações sobre os produtos Windows (3) - 1s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Activation Technologies : OK

---\\ Softwares d'optimização do sistema (1) - 5s
CCleaner v5.00

---\\ Monitoramento dos softwares (1) - 5s
Adobe Flash Player 18 NPAPI

---\\ Informações sobre o sistema (6) - 0s
~ Operating System: Intel64 Family 6 Model 55 Stepping 8, GenuineIntel
~ Operating System:  64-bit 
~ Boot mode: Normal (Normal boot)
~ Total physical RAM (KB): 4074704
~ System Restore: Activé (Enable)
~ System drive C: has 272 GB free of 460 GB

---\\ Modo de conexão ao sistema (3) - 0s
~ Computer Name: E5-511-C7NE
~ User Name: Itamar_Rialto
~ Logged in as Administrator

---\\ Enumeração das unidades dos discos (1) - 0s
~ Drive C: has 272 GB free of 460 GB  (System)

---\\ Pesquisa particular de ficheiros genéricos (22) - 1s
[MD5.C10A66189DC8C090E7C84873EDCEBC88] - (.Microsoft Corporation - Windows Explorer.) () -- C:\Windows\Explorer.exe [2501368]
[MD5.6C308D32AFA41D26CE2A0EA8F7B79565] - (.Microsoft Corporation - Processo de host do Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [54784]
[MD5.A570A64292214C43E0BA50E6A72A6380] - (.Microsoft Corporation - Aplicativo de Inicialização do Windows.) () -- C:\Windows\System32\Wininit.exe [145920]
[MD5.98C6A46E9E2822BF83196C2EAE43DBD4] - (.Microsoft Corporation - Internet Extensions para Win32.) () -- C:\Windows\System32\wininet.dll [2427392]
[MD5.EC498BAE1F0D3E0E401C963F8D76C437] - (.Microsoft Corporation - Aplicativo de Logon do Windows.) () -- C:\Windows\System32\Winlogon.exe [572416]
[MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - (.Microsoft Corporation - Biblioteca de Licenciamento de Software.) () -- C:\Windows\System32\sppcomapi.dll [447488]
[MD5.374E27295F0A9DCAA8FC96370F9BEEA5] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [563200]
[MD5.74B14192CF79A72F7536B27CB8814FBD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [26464]
[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [88576]
[MD5.C6796EA22B513E3457514D92DCDB1A3D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [164352]
[MD5.A03F362C5557E238CBFA914689C77248] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [134144]
[MD5.D4B7ED39C7900384D9E5C1283F1E7926] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [76800]
[MD5.49EE0AE9E5B64FFBBD06D55C4984B598] - (.Microsoft Corporation - Driver de porta i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [108544]
[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [142848]
[MD5.6FBDF2B1B025A8E6E069234362FFFFB7] - (.Microsoft Corporation - Minirdr SMB do Windows NT.) () -- C:\Windows\System32\drivers\MRxSmb.sys [401408]
[MD5.0217532E19A748F0E5D569307363D5FD] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [282624]
[MD5.7F68063A5A0461E02BC860CE0E6BFDDC] - (.Microsoft Corporation - Driver do Sistema de Arquivos NT.) () -- C:\Windows\System32\drivers\ntfs.sys [2025792]
[MD5.764B1121867B2D9B31C491668AC72B2B] - (.Microsoft Corporation - Driver de porta paralela.) () -- C:\Windows\System32\drivers\Parport.sys [94208]
[MD5.1BD3022FD6E450B00DE560265638FD2A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [112640]
[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - (.Microsoft Corporation - Redirecionador do Dispositivo RDP da Micros.) () -- C:\Windows\System32\drivers\rdpdr.sys [195584]
[MD5.FFF28F9F6823EB1756C60F1649560BBF] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [107520]
[MD5.64CA2B4A49A8EAF495E435623ECCE7DB] - (.Microsoft Corporation - Driver de cópia de sombra de volume.) () -- C:\Windows\System32\drivers\volsnap.sys [310080]

---\\ Processos lançados (15) - 7s
[MD5.4F440DCDB7C8C14DEDDB1D63B94335D1] - (.GAS Tecnologia - G-Buster Browser Defense - Service.) -- C:\Program Files (x86)\GbPlugin\gbpsv.exe [579896] [PID.868]
[MD5.BBF78A7D6F9BFF37927303ED2539FAB7] - (.Windows (R) Win 7 DDK provider - Windows Setup API.) -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [319104] [PID.1696]
[MD5.9B470F58C888E1D21EF1AAB5A496C496] - (.Acer Cloud Technology - AcerCloud Client.) -- C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe [9191168] [PID.1636]
[MD5.768DD5CB66952BC4A3BD474757AEE34F] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) -- C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696] [PID.2184]
[MD5.5059A4211317A8272F53B6179BB6A631] - (.Acer Incorporate - LMSvc.) -- C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [466664] [PID.2280]
[MD5.DDD21BDDA3745C44F8CA6F5451378DE2] - (.Acer Incorporate - LMEvent.) -- C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe [481000] [PID.2724]
[MD5.232FD897689C6E23D87B6D9455BA1EFC] - (.Acer Incorporate - LockHandler.) -- C:\Program Files\Acer\Acer Launch Manager\LMLockHandler.exe [455400] [PID.2756]
[MD5.4F440DCDB7C8C14DEDDB1D63B94335D1] - (.GAS Tecnologia - G-Buster Browser Defense - Service.) -- C:\Program Files (x86)\GbPlugin\gbpsv.exe [579896] [PID.3372]
[MD5.371805EBE88DAB16B99171B24D8BAEBE] - (.Acer Incorporate - LMTray.) -- C:\Program Files\Acer\Acer Launch Manager\LMTray.exe [465640] [PID.3852]
[MD5.49B7481C3D50FAABAF07F775E077FD8B] - (.Atheros Communications - Bluetooth Stack Server.) -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [134784] [PID.3928]
[MD5.89AA8AC9B4E101E4173455D4620C5117] - (.Realtek Semiconductor - Gerenciador de áudio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672304] [PID.3252]
[MD5.998667FAC120069B57A599ABF2880E11] - (...) -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe [12928] [PID.348]
[MD5.EE591DAC311022DD8E6A2E6345962F5D] - (.Acer - Acer Portal.) -- C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2480384] [PID.5068]
[MD5.4A336C92A790A3F7C2D9952C73FCFA16] - (.WildTangent - WildTangent Games App Integration Service.) -- C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904] [PID.1300]
[MD5.EB7E8BF35D31BC9F111E282C2F263854] - (.acer - UEIPSvc.) -- C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [234240] [PID.4940]

---\\ Google Chrome, Arranque,Pesquisa,Extensões (G0,G1,G2 (12) - 2s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.gstatic.com/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.com.br/
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.com/
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest  =>.Google Inc.

---\\ Mozilla Firefox, Plugins,Arranque,Pesquisa,Extensões (P2,M0,M1,M2,M3) (19) - 7s
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\bing.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\buscape.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\ddg.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\google.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\mercadolivre.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\twitter.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wikipedia-br.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo-br.xml
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
P2 - FPN: [HKCU] [@citrixonline.com/appdetectorplugin] - (.Citrix Online.) -- C:\Users\Itamar_Rialto\AppData\Local\Citrix\Plugins\104\npappdetector.dll
P2 - FPN: [HKCU] [gastecnologia.com.br/sf/abn] - (.GAS Tecnologia.) -- C:\Users\Itamar_Rialto\AppData\Local\GAS Tecnologia\GBBD\npsf_abn.dll
P2 - FPN: [HKCU] [gastecnologia.com.br/sf/abn64] - (.GAS Tecnologia.) -- C:\Users\Itamar_Rialto\AppData\Local\GAS Tecnologia\GBBD\npsf_abn_64.dll
P2 - FPN: [HKCU] [gastecnologia.com.br/sf/bb64] - (...) -- C:\Users\Itamar_Rialto\AppData\Local\GAS Tecnologia\GBBD\npsf_bb_64.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_160.dll
P2 - FPN: [HKLM] [@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf] - (.Foxit Corporation.) -- C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll
P2 - FPN: [HKLM] [@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf] - (.Foxit Corporation.) -- C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll
P2 - FPN: [HKLM] [@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp] - (.Foxit Corporation.) -- C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll
P2 - FPN: [HKLM] [@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf] - (.Foxit Corporation.) -- C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll
P2 - FPN: [HKLM] [@WildTangent.com/GamesAppPresenceDetector,Version=1.0] - (.WildTangent.) -- C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll

---\\ Internet Explorer, Arranque, Pesquisa, URLSearchHook( gancho de URL), Phishing (R0,R1,R3,R4) (19) - 1s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean  =>.Microsoft Internet Explorer
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1

---\\ Internet Explorer, Gestão do Proxy (R5) (3) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Análise das linhas F0, F1, F2, F3 - Ficheiros ini, Carregamento Automático de programas (3) - 1s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.)

---\\ Redireção do ficheiro Hosts (O1) (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (19)

---\\ Browser Helper Objects do navegador (O2) (2) - 0s
O2 - BHO: G-Buster Browser Defense [64Bits] - {C41A1C0E-EA6C-11D4-B1B8-444553540000}  (Orphean)
O2 - BHO: G-Buster Browser Defense Banco Real [64Bits] - {C41A1C0E-EA6C-11D4-B1B8-444553540007}  (Orphean)

---\\ Aplicações iniciadas por registo & pastas (O4) (9) - 3s
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gerenciador de áudio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
O4 - HKCU\..\Run: [AcerPortal] . (.Acer - Acer Portal.) -- C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe
O4 - HKLM\..\Wow6432Node\Run: [BacKGround Agent] . (.Acer Incorporated - Background Agent.) -- C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
O4 - HKLM\..\Wow6432Node\Run: [mcpltui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (.not file.)
O4 - HKLM\..\Wow6432Node\Run: [abDocsDllLoader] C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe (.not file.)
O4 - HKLM\..\Wow6432Node\Run: [write.exe] C:\Users\Itamar_Rialto\AppData\Roaming\4059116-NN\write.exe (.not file.)
O4 - HKLM\..\policies\Explorer\Run: [BtvStack] . (.Atheros Communications - Bluetooth Stack Server.) -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
O4 - HKLM\..\policies\Explorer\Run: [x86kernel2] erperperperperperperperperperperperperperperperperperperperperperperperperperperperperperperperperpe
O4 - HKUS\S-1-5-21-2861522991-3655380705-3476392321-1001\..\Run: [AcerPortal] . (.Acer - Acer Portal.) -- C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe

---\\ Alteração Dominio/Clientes DNS (017) (4) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = lan
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpDomain = lan

---\\ Lista dos serviços NT não Microsoft e não desativados (023) (9) - 5s
O23 - Service: AtherosSvc (AtherosSvc) . (.Windows (R) Win 7 DDK provider - Windows Setup API.) - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
O23 - Service: CCDMonitorService (CCDMonitorService) . (.Acer Incorporated - CCD Monitor Service.) - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
O23 - Service: GamesAppIntegrationService (GamesAppIntegrationService) . (.WildTangent - WildTangent Games App Integration Service.) - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: Gbp Service (GbpSv) . (.GAS Tecnologia - G-Buster Browser Defense - Service.) - C:\Program Files (x86)\GbPlugin\gbpsv.exe
O23 - Service: Serviço do Google Update (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\Windows\system32\igfxCUIService.exe
O23 - Service: Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
O23 - Service: Launch Manager Service (LMSvc) . (.Acer Incorporate - LMSvc.) - C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
O23 - Service: Mobizen plugin (Mobizen plugin) . (...) - C:\Program Files (x86)\RSUPPORT\MobizenService\MobizenService.exe (.not file.)

---\\ Tarefas planificadas automaticamente (039) (22) - 17s
[MD5.BD65571DB1C13947E47A9759E0E6F94A] [APT] [ACC] (.(C) All rights reserved.) -- C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe   [100608]
[MD5.192551432A694B27E9EEBDA5794CCB12] [APT] [ACCAgent] (.(C) All rights reserved.) -- C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe   [41728]
[MD5.EE591DAC311022DD8E6A2E6345962F5D] [APT] [AcerCloud] (.Acer.) -- C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe   [2480384]
[MD5.2E4EE47FBD9BB663A5220DBC38579986] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe   [5282584]
[MD5.00000000000000000000000000000000] [APT] [DropboxUpdateTaskUserS-1-5-21-2861522991-3655380705-3476392321-1001Core] (.Piriform Ltd.) -- C:\Users\Itamar_Rialto\AppData\Local\Dropbox\Update\DropboxUpdate.exe (.not file.)   [0]
[MD5.00000000000000000000000000000000] [APT] [DropboxUpdateTaskUserS-1-5-21-2861522991-3655380705-3476392321-1001UA] (.Piriform Ltd.) -- C:\Users\Itamar_Rialto\AppData\Local\Dropbox\Update\DropboxUpdate.exe (.not file.)   [0]
[MD5.F172AD4E906D97ED8F071896FC6789DC] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe   [107912]
[MD5.F172AD4E906D97ED8F071896FC6789DC] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe   [107912]
[MD5.2A5C656B0A364580E578B26EAE2EE889] [APT] [klcp_update] (...) -- C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe   [1173504]
[MD5.B2D553182F8A76177AD439CBA4D24758] [APT] [Launch Manager] (.Acer Incorporate.) -- C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe   [439016]
[MD5.EAB3CD3E7FBB4BE203BDC44007FE4162] [APT] [Power Management] (.Acer Incorporated.) -- C:\Program Files\Acer\Acer Power Management\ePowerTrayLauncher.exe   [384232]
[MD5.00000000000000000000000000000000] [APT] [Quick Access] (.Acer Incorporated.) -- C:\Program Files\Acer\Acer Quick Access\QALauncher.exe (.not file.)   [0]
[MD5.00000000000000000000000000000000] [APT] [Quick Access Quick Launcher] (.Acer Incorporated.) -- C:\Program Files\Acer\Acer Quick Access\QALauncher.exe (.not file.)   [0]
[MD5.00000000000000000000000000000000] [APT] [SmartShare] (.Acer Incorporated.) -- C:\Program Files (x86)\LG Software\LG Smart Share\SmartShareStart.exe (.not file.)   [0]
[MD5.896E37BE296D7A4061355453F4AE6949] [APT] [Software Update Application] (.Acer Incorporated.) -- C:\ProgramData\OEM\UpgradeTool\ListCheck.exe   [474344]
[MD5.6C531EBEFA4718C279D1C1729C77D230] [APT] [UbtFrameworkService] (.TODO: <Company name>.) -- C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe   [216296]
[MD5.3AA78904F0B882A27DE1A1F3517BD09B] [APT] [Recovery Management\Notification] (.Acer Incorporated.) -- C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe   [490728]
O39 - APT: AcerCloud - (.Acer.) -- C:\Windows\System32\Tasks\AcerCloud   [3334]
O39 - APT: Launch Manager - (.Acer Incorporate.) -- C:\Windows\System32\Tasks\Launch Manager   [2904]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for E5-511-C7NE-Itamar_Rialto E5-511-C7NE   [3200]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-2861522991-3655380705-3476392321-1001   [3118]
O39 - APT: UbtFrameworkService - (.TODO: <Company name>.) -- C:\Windows\System32\Tasks\UbtFrameworkService   [3268]

---\\ Software instalados (042) (63) - 61s
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: Acer Recovery Management - (.Acer Incorporated.) [HKLM][64Bits] -- {07F2005A-8CAC-4A4B-83A2-DA98A722CA61}
O42 - Logiciel: Acer User Experience Improvement Program Framework - (.Acer Incorporated.) [HKLM][64Bits] -- {12A718F2-2357-4D41-9E1F-18583A4745F7}
O42 - Logiciel: Intel(R) Trusted Execution Engine - (.Intel Corporation.) [HKLM][64Bits] -- {176E2755-0A17-42C6-88E2-192AB2131278}
O42 - Logiciel: 7-Zip 9.34 (x64 edition) - (.Igor Pavlov.) [HKLM][64Bits] -- {23170F69-40C1-2702-0934-000001000000}
O42 - Logiciel: Java 8 Update 31 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86418031F0}
O42 - Logiciel: Intel(R) Trusted Execution Engine - (.Intel Corporation.) [HKLM][64Bits] -- {2D6248C0-4693-4CAB-9922-F05E4015F62A}
O42 - Logiciel: Acer Explorer Agent - (.Acer Incorporated.) [HKLM][64Bits] -- {4D0F42CF-1693-43D9-BDC8-19141D023EE0}
O42 - Logiciel: Intel(R) Trusted Execution Engine Driver - (.Intel Corporation.) [HKLM][64Bits] -- {6307E820-0317-4DCE-AAE0-7B6CAD867055}
O42 - Logiciel: Office 15 Click-to-Run Licensing Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008F-0000-1000-0000000FF1CE}
O42 - Logiciel: Acer Power Management - (.Acer Incorporated.) [HKLM][64Bits] -- {91F52DE4-B789-42B0-9311-A349F10E5479}
O42 - Logiciel: Acer User Experience Improvement Program App Monitor Plugin - (.Acer Incorporated.) [HKLM][64Bits] -- {978724F6-1863-4DD5-9E66-FB77F5AB5613}
O42 - Logiciel: Acer Care Center - (.Acer Incorporated.) [HKLM][64Bits] -- {A424844F-CDB3-45E2-BB77-1DDE4A091E76}
O42 - Logiciel: Acer Launch Manager - (.Acer Incorporated.) [HKLM][64Bits] -- {C18D55BD-1EC6-466D-B763-8EEDDDA9100E}
O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI
O42 - Logiciel: B1 Free Archiver - (.Catalina Group Ltd.) [HKLM][64Bits] -- B1FreeArchiver
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Call of Duty(R) 2 - (.Activision.) [HKLM][64Bits] -- InstallShield_{D0A05794-48C2-4424-A15A-9F20FCFDD374}
O42 - Logiciel: IRPF2015 - Declaração de Ajuste Anual, Final de Espólio e Saída Definitiva  - (.Receita Federal do Brasil.) [HKLM][64Bits] -- IRPF2015
O42 - Logiciel: K-Lite Mega Codec Pack 11.0.0 - (...) [HKLM][64Bits] -- KLiteCodecPack_is1
O42 - Logiciel: Mozilla Firefox 38.0.5 (x86 pt-BR) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 38.0.5 (x86 pt-BR)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: Naviextras Toolbox - (.NNG Llc..) [HKLM][64Bits] -- Naviextras Toolbox
O42 - Logiciel: Pencil - (.Evolus Co., Ltd..) [HKLM][64Bits] -- Pencil
O42 - Logiciel: PS3 Media Server - (.PS3 Media Server.) [HKLM][64Bits] -- PS3 Media Server
O42 - Logiciel: Spotify - (.Spotify AB.) [HKLM][64Bits] -- Spotify
O42 - Logiciel: WildTangent Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent wildgames Master Uninstall  =>.WildTangent
O42 - Logiciel: Game Explorer Categories - genres - (.WildTangent, Inc..) [HKLM][64Bits] -- WildTangentGameProvider-acer-genres
O42 - Logiciel: Game Explorer Categories - main - (.WildTangent, Inc..) [HKLM][64Bits] -- WildTangentGameProvider-acer-main
O42 - Logiciel: WinAVI Video Converter - (.ZJMedia Digital Technology Ltd..) [HKLM][64Bits] -- WinAVI Video Converter
O42 - Logiciel: Aloha TriPeaks - (.WildTangent.) [HKLM][64Bits] -- WTA-05c7d100-4c71-4e69-884f-00a798df9b41  =>.WildTangent
O42 - Logiciel: Zuma's Revenge - (.WildTangent.) [HKLM][64Bits] -- WTA-06c0cff6-f4ac-4c4e-ae88-7b8291cecefd  =>.WildTangent
O42 - Logiciel: Jewel Match 3 - (.WildTangent.) [HKLM][64Bits] -- WTA-1e40a3e0-2867-463c-8522-d58cf1f35efd  =>.WildTangent
O42 - Logiciel: Magic Academy - (.WildTangent.) [HKLM][64Bits] -- WTA-3793e9a0-d38f-4f1d-a34c-0cd152b2d056  =>.WildTangent
O42 - Logiciel: LUXOR Evolved - (.WildTangent.) [HKLM][64Bits] -- WTA-44f6c0c9-8d34-406c-a1c4-cf3c18383fc1  =>.WildTangent
O42 - Logiciel: Governor of Poker 2 Premium Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-46a9a5cd-d565-4fe9-a8d1-f7294df1d444  =>.WildTangent
O42 - Logiciel: Peggle Nights - (.WildTangent.) [HKLM][64Bits] -- WTA-48d2bd64-3295-4ce9-883b-7b2c9f2af4e1  =>.WildTangent
O42 - Logiciel: Polar Bowler 1st Frame - (.WildTangent.) [HKLM][64Bits] -- WTA-4a8b3df0-a778-4bd8-84e7-f84bfabb8850  =>.WildTangent
O42 - Logiciel: Trinklit Supreme - (.WildTangent.) [HKLM][64Bits] -- WTA-7f20bfb8-689f-4baa-869b-e1fa98ae921f  =>.WildTangent
O42 - Logiciel: Plants vs. Zombies - Game of the Year - (.WildTangent.) [HKLM][64Bits] -- WTA-7f8fb3c4-8997-4320-b7a5-b9a54c1a4dca  =>.WildTangent
O42 - Logiciel: Bejeweled 2 Deluxe - (.WildTangent.) [HKLM][64Bits] -- WTA-ca6f272c-dc66-40d9-8da5-819a001dfa50  =>.WildTangent
O42 - Logiciel: The Chronicles of Emerland Solitaire - (.WildTangent.) [HKLM][64Bits] -- WTA-dab8339f-461a-414d-9e66-ee05be97dbc6  =>.WildTangent
O42 - Logiciel: Farm to Fork Collector's Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-e3de61b4-cf48-425f-ba25-c77b101aa4a9  =>.WildTangent
O42 - Logiciel: King Oddball - (.WildTangent.) [HKLM][64Bits] -- WTA-f980f316-2ec5-49c0-9392-d39ac8cf2324  =>.WildTangent
O42 - Logiciel: Qualcomm Atheros WLAN and Bluetooth Client Installation Program - (.Qualcomm Atheros.) [HKLM][64Bits] -- {28006915-2739-4EBE-B5E8-49B25D32EB33}
O42 - Logiciel: Foxit PhantomPDF - (.Foxit Software Inc..) [HKLM][64Bits] -- {2DF18CA8-86F2-4F3A-A1BF-A2A7D39B9161}
O42 - Logiciel: Update Installer for WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App  =>.WildTangent
O42 - Logiciel: AOP Framework - (.Acer Incorporated.) [HKLM][64Bits] -- {4A37A114-702F-4055-A4B6-16571D4A5353}
O42 - Logiciel: Naviextras Toolbox Prerequesities - (.NNG Llc..) [HKLM][64Bits] -- {537575D6-3B96-474C-BD8F-DFF667363DBD}
O42 - Logiciel: Realtek Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {5BC2B5AB-80DE-4E83-B8CF-426902051D0A}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-acer  =>.WildTangent
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Office 15 Click-to-Run Extensibility Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008C-0000-0000-0000000FF1CE}
O42 - Logiciel: Office 15 Click-to-Run Localization Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008C-0416-0000-0000000FF1CE}
O42 - Logiciel: Acer Portal - (.Acer Incorporated.) [HKLM][64Bits] -- {A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Acer Video Player - (.Acer Incorporated.) [HKLM][64Bits] -- {B6846F20-4821-11E3-8F96-0800200C9A66}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKCU][64Bits] -- Dropbox
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent

---\\ HKCU & HKLM Software Keys (112) - 61s
HKLM\SOFTWARE\Wow6432Node\360Safe
HKLM\SOFTWARE\Wow6432Node\360SD
HKLM\SOFTWARE\Wow6432Node\Activision
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\ATHEROS
HKLM\SOFTWARE\Wow6432Node\b1.org  =>PUP.Optional.SearchB1org
HKLM\SOFTWARE\Wow6432Node\Baidu Security
HKLM\SOFTWARE\Wow6432Node\Baidu_Drp_pos
HKLM\SOFTWARE\Wow6432Node\C07ft5Y
HKLM\SOFTWARE\Wow6432Node\Clearfi
HKLM\SOFTWARE\Wow6432Node\CyberLink
HKLM\SOFTWARE\Wow6432Node\Digital River
HKLM\SOFTWARE\Wow6432Node\Eset
HKLM\SOFTWARE\Wow6432Node\Foxit Software
HKLM\SOFTWARE\Wow6432Node\GameVicio
HKLM\SOFTWARE\Wow6432Node\GNU
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\HaaliMkx
HKLM\SOFTWARE\Wow6432Node\Icaros
HKLM\SOFTWARE\Wow6432Node\InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\KLCodecPack
HKLM\SOFTWARE\Wow6432Node\Lake
HKLM\SOFTWARE\Wow6432Node\LAV
HKLM\SOFTWARE\Wow6432Node\LiveUpdate360
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\McAfee
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Naviextras
HKLM\SOFTWARE\Wow6432Node\Nuance
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\OEM
HKLM\SOFTWARE\Wow6432Node\Opera Software
HKLM\SOFTWARE\Wow6432Node\Qualcomm Atheros WLAN and Bluetooth Client Installation Program
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\SlimWare Utilities Inc
HKLM\SOFTWARE\Wow6432Node\SlimWare Utilities, Inc.
HKLM\SOFTWARE\Wow6432Node\SupDp  =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\WildTangent
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\7-Zip
HKCU\SOFTWARE\Acer
HKCU\SOFTWARE\Ahead
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Atheros
HKCU\SOFTWARE\Avira
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\Citrix
HKCU\SOFTWARE\CompSoft
HKCU\SOFTWARE\CyberLink
HKCU\SOFTWARE\Cygwin
HKCU\SOFTWARE\Digital River
HKCU\SOFTWARE\Dropbox
HKCU\SOFTWARE\DropboxUpdate
HKCU\SOFTWARE\Evolus
HKCU\SOFTWARE\Foxit Software
HKCU\SOFTWARE\Gabest
HKCU\SOFTWARE\GbAs
HKCU\SOFTWARE\GbPlugin
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\Icaros
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\JEDI-VCL
HKCU\SOFTWARE\LGE
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Local AppWizard-Generated Applications
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\madshi
HKCU\SOFTWARE\MediaInfo
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MPC-HC
HKCU\SOFTWARE\Mudlord
HKCU\SOFTWARE\Naviextras
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\OEM
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\Pokki
HKCU\SOFTWARE\PS3 Media Server
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\RealNetworks
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\RICEDAEDALUS531
HKCU\SOFTWARE\RSUPPORT
HKCU\SOFTWARE\SlimWare Utilities Inc
HKCU\SOFTWARE\Sysinternals
HKCU\SOFTWARE\The Silicon Realms Toolworks
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\WebApp
HKCU\SOFTWARE\WinAVI
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wintertree
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Amazon
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft

---\\ Conteúdo das pastas Programs/ProgramFiles/ProgramData/AppData (O43) (188) - 55s
O43 - CFD: 2015/07/15 21:41:42 - [] D -- C:\Program Files (x86)\Acer
O43 - CFD: 2015/01/08 15:18:17 - [] D -- C:\Program Files (x86)\Activision
O43 - CFD: 2015/06/25 09:39:25 - [] D -- C:\Program Files (x86)\B1 Free Archiver
O43 - CFD: 2015/07/02 13:49:07 - [] D -- C:\Program Files (x86)\Citrix
O43 - CFD: 2015/07/07 15:49:18 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2015/07/01 09:43:00 - [] HD -- C:\Program Files (x86)\Diebold
O43 - CFD: 2015/05/04 18:34:50 - [] D -- C:\Program Files (x86)\Evolus
O43 - CFD: 2015/05/26 11:24:23 - [] D -- C:\Program Files (x86)\Foxit PhantomPDF
O43 - CFD: 2015/01/09 09:55:22 - [] D -- C:\Program Files (x86)\GameVicio
O43 - CFD: 2015/07/01 09:43:00 - [] HD -- C:\Program Files (x86)\GAS Tecnologia
O43 - CFD: 2015/07/16 15:22:06 - [] AD -- C:\Program Files (x86)\GbPlugin
O43 - CFD: 2014/12/14 21:06:56 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2015/03/03 14:49:38 - [] HD -- C:\Program Files (x86)\InstallJammer Registry
O43 - CFD: 2015/07/15 22:09:35 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2014/10/17 22:08:48 - [] D -- C:\Program Files (x86)\Intel
O43 - CFD: 2015/07/15 21:08:55 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2015/02/24 10:32:55 - [] D -- C:\Program Files (x86)\K-Lite Codec Pack
O43 - CFD: 2014/10/17 22:35:21 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 2014/12/16 09:06:24 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2015/06/11 11:03:04 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 2015/06/19 10:08:27 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 2014/07/25 18:41:03 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2015/05/24 18:03:29 - [] D -- C:\Program Files (x86)\Naviextras
O43 - CFD: 2015/07/06 19:58:00 - [] D -- C:\Program Files (x86)\Nero
O43 - CFD: 2015/05/08 09:57:29 - [] D -- C:\Program Files (x86)\Opera
O43 - CFD: 2015/06/18 16:48:39 - [] D -- C:\Program Files (x86)\PS3 Media Server
O43 - CFD: 2014/10/17 22:16:25 - [] D -- C:\Program Files (x86)\Qualcomm Atheros
O43 - CFD: 2014/10/17 22:17:16 - [] D -- C:\Program Files (x86)\Realtek
O43 - CFD: 2014/07/25 18:41:03 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2015/06/19 10:03:59 - [] D -- C:\Program Files (x86)\RSUPPORT
O43 - CFD: 2014/10/17 22:33:01 - [] D -- C:\Program Files (x86)\Spotify
O43 - CFD: 2014/10/17 22:18:13 - [0] HD -- C:\Program Files (x86)\Temp
O43 - CFD: 2015/06/18 17:47:34 - [] D -- C:\Program Files (x86)\Video Converter
O43 - CFD: 2014/07/25 19:04:11 - [] D -- C:\Program Files (x86)\WildGames
O43 - CFD: 2014/07/25 19:04:45 - [] D -- C:\Program Files (x86)\WildTangent Games
O43 - CFD: 2015/03/11 18:33:45 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2015/03/11 18:33:53 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2015/03/11 18:33:53 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2015/03/11 18:33:53 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 2013/08/22 12:36:30 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2015/03/11 18:33:52 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2015/03/11 18:33:53 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2013/08/22 12:36:30 - [] SHD -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2013/08/22 12:36:30 - [] D -- C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 2014/12/16 16:41:39 - [] D -- C:\Program Files (x86)\WinRAR
O43 - CFD: 2015/07/14 15:56:07 - [] D -- C:\Program Files (x86)\ZHPFix
O43 - CFD: 2014/12/16 16:44:47 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
O43 - CFD: 2015/03/11 18:35:05 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2015/03/11 18:35:05 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/07/15 21:41:19 - [] SD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
O43 - CFD: 2015/01/08 15:20:28 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Activision
O43 - CFD: 2015/07/07 16:06:53 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/06/24 14:08:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\B1 Free Archiver
O43 - CFD: 2015/01/19 13:20:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 2015/05/04 18:35:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evolus
O43 - CFD: 2014/07/25 19:05:16 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2015/01/09 09:55:22 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameVicio
O43 - CFD: 2015/07/15 15:18:34 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2015/02/23 15:52:43 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 2015/02/24 10:33:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
O43 - CFD: 2013/08/22 12:36:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2014/12/16 09:02:56 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
O43 - CFD: 2015/07/06 19:58:03 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
O43 - CFD: 2015/06/18 16:48:40 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PS3 Media Server
O43 - CFD: 2015/07/15 22:09:19 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 2015/03/11 18:35:05 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 2014/03/18 06:38:10 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2015/07/14 15:54:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
O43 - CFD: 2014/12/13 12:57:03 - [] D -- C:\ProgramData\acer
O43 - CFD: 2013/08/22 11:45:52 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2014/12/30 21:21:09 - [] D -- C:\ProgramData\Atheros
O43 - CFD: 2015/01/15 13:49:06 - [] D -- C:\ProgramData\BlueStacks
O43 - CFD: 2014/10/17 22:37:20 - [] D -- C:\ProgramData\CLSK
O43 - CFD: 2015/07/15 21:59:27 - [] D -- C:\ProgramData\CyberLink
O43 - CFD: 2014/12/13 12:28:49 - [0] SHD -- C:\ProgramData\Dados de Aplicativos
O43 - CFD: 2013/08/22 11:45:52 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2015/05/14 21:41:28 - [] D -- C:\ProgramData\Doctor Web
O43 - CFD: 2014/12/13 12:28:49 - [0] SHD -- C:\ProgramData\Documentos
O43 - CFD: 2013/08/22 11:45:52 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2015/06/17 09:12:01 - [] D -- C:\ProgramData\Dropbox
O43 - CFD: 2015/07/16 15:56:50 - [] D -- C:\ProgramData\GAS Tecnologia
O43 - CFD: 2015/07/15 19:42:39 - [] D -- C:\ProgramData\GbPlugin
O43 - CFD: 2014/10/17 22:37:20 - [] D -- C:\ProgramData\install_clap
O43 - CFD: 2014/10/17 22:08:46 - [] D -- C:\ProgramData\Intel
O43 - CFD: 2014/12/15 09:28:02 - [] D -- C:\ProgramData\Logs
O43 - CFD: 2015/01/16 18:16:14 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 2014/12/13 12:28:49 - [0] SHD -- C:\ProgramData\Menu Iniciar
O43 - CFD: 2015/07/16 15:56:42 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2014/12/16 09:07:03 - [] D -- C:\ProgramData\Microsoft OneDrive
O43 - CFD: 2014/12/13 12:28:49 - [0] SHD -- C:\ProgramData\Modelos
O43 - CFD: 2015/03/04 14:46:51 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2015/07/06 19:57:25 - [] D -- C:\ProgramData\Nero
O43 - CFD: 2014/12/13 13:12:07 - [] D -- C:\ProgramData\OEM
O43 - CFD: 2014/12/13 12:47:01 - [] D -- C:\ProgramData\OEM_YAHOO
O43 - CFD: 2015/02/23 15:52:13 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 2015/06/29 22:11:23 - [] D -- C:\ProgramData\PMS
O43 - CFD: 2014/10/17 22:12:49 - [] D -- C:\ProgramData\Qualcomm Atheros
O43 - CFD: 2015/06/25 15:15:40 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 2015/04/06 16:00:58 - [] D -- C:\ProgramData\SlimWare Utilities, Inc
O43 - CFD: 2013/08/22 11:45:52 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2015/07/15 22:00:52 - [] D -- C:\ProgramData\Temp
O43 - CFD: 2013/08/22 11:45:52 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2015/01/15 13:48:52 - [] D -- C:\ProgramData\WildTangent
O43 - CFD: 2015/07/06 19:57:47 - [] D -- C:\Program Files (x86)\Common Files\Ahead
O43 - CFD: 2014/10/17 22:13:39 - [] D -- C:\Program Files (x86)\Common Files\Atheros
O43 - CFD: 2014/12/16 09:06:26 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 2015/01/08 15:08:50 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 2014/10/17 21:26:05 - [] D -- C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 2015/02/23 15:53:24 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 2015/07/09 15:02:58 - [] D -- C:\Program Files (x86)\Common Files\McAfee
O43 - CFD: 2015/01/14 14:06:05 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 2014/07/25 19:01:26 - [] D -- C:\Program Files (x86)\Common Files\Nikon
O43 - CFD: 2013/08/22 12:36:33 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2015/03/11 18:33:52 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2014/12/13 12:46:47 - [] D -- C:\Users\Itamar_Rialto\AppData\Roaming\Adobe
O43 - CFD: 2015/07/06 20:10:10 - [] D -- C:\Users\Itamar_Rialto\AppData\Roaming\Ahead
O43 - CFD: 2014/12/13 12:47:24 - [] D -- C:\Users\Itamar_Rialto\AppData\Roaming\Atheros
O43 - CFD: 2014/12/30 13:54:36 - [] D -- C:\Users\Itamar_Rialto\AppData\Roaming\CareCenter
O43 - CFD: 2015/02/11 16:30:17 - [] D -- C:\Users\Itamar_Rialto\AppData\Roaming\CyberLink
O43 - CFD: 2015/06/25 18:37:01 - [] D -- C:\Users\Itamar_Rialto\AppData\Roaming\Dropbox
O43 - CFD: 2015/07/15 12:11:22 - [0] D -- C:\Users\Itamar_Rialto\AppData\Roaming\EncryptStick
O43 - CFD: 2015/01/15 16:15:47 - [] D -- C:\Users\Itamar_Rialto\AppData\Roaming\Foxit Software
O43 - CFD: 2015/03/11 22:04:03 - [] D -- C:\Users\Itamar_Rialto\AppData\Roaming\Identities
O43 - CFD: 2014/12/13 12:48:32 - [] D -- C:\Users\Itamar_Rialto\AppData\Roaming\Macromedia
O43 - CFD: 2015/07/02 13:41:12 - [] SD -- C:\Users\Itamar_Rialto\AppData\Roaming\Microsoft
O43 - CFD: 2015/03/04 14:47:52 - [] D -- C:\Users\Itamar_Rialto\AppData\Roaming\Mozilla
O43 - CFD: 2015/04/26 19:50:38 - [] D -- C:\Users\Itamar_Rialto\AppData\Roaming\MPC-HC
O43 - CFD: 2015/05/24 18:15:39 - [] D -- C:\Users\Itamar_Rialto\AppData\Roaming\naviextras
O43 - CFD: 2015/05/04 18:35:23 - [] D -- C:\Users\Itamar_Rialto\AppData\Roaming\Pencil
O43 - CFD: 2015/06/17 11:46:22 - [] D -- C:\Users\Itamar_Rialto\AppData\Roaming\Rsupport
O43 - CFD: 2015/06/24 16:21:52 - [] D -- C:\Users\Itamar_Rialto\AppData\Roaming\Spotify
O43 - CFD: 2015/07/14 14:58:12 - [] D -- C:\Users\Itamar_Rialto\AppData\Roaming\uTorrent
O43 - CFD: 2015/01/15 13:48:52 - [] D -- C:\Users\Itamar_Rialto\AppData\Roaming\WildTangent
O43 - CFD: 2015/06/18 17:33:25 - [] D -- C:\Users\Itamar_Rialto\AppData\Roaming\WinAVI
O43 - CFD: 2014/12/16 16:35:30 - [] D -- C:\Users\Itamar_Rialto\AppData\Roaming\WinRAR
O43 - CFD: 2015/07/16 16:36:13 - [] D -- C:\Users\Itamar_Rialto\AppData\Roaming\ZHP
O43 - CFD: 2014/12/13 13:11:40 - [] D -- C:\Users\Itamar_Rialto\AppData\Local\acer
O43 - CFD: 2014/12/14 20:42:26 - [] D -- C:\Users\Itamar_Rialto\AppData\Local\Acer Aspire R7 Tutorial
O43 - CFD: 2014/12/13 12:47:22 - [] D -- C:\Users\Itamar_Rialto\AppData\Local\AOP SDK
O43 - CFD: 2014/12/14 20:55:03 - [] D -- C:\Users\Itamar_Rialto\AppData\Local\Apps
O43 - CFD: 2014/12/30 21:21:09 - [] D -- C:\Users\Itamar_Rialto\AppData\Local\BMExplorer
O43 - CFD: 2014/12/15 16:08:33 - [] D -- C:\Users\Itamar_Rialto\AppData\Local\CareCenter
O43 - CFD: 2015/07/07 15:26:00 - [] D -- C:\Users\Itamar_Rialto\AppData\Local\Citrix
O43 - CFD: 2015/07/15 21:41:51 - [] D -- C:\Users\Itamar_Rialto\AppData\Local\clear.fi
O43 - CFD: 2015/07/15 22:20:19 - [] D -- C:\Users\Itamar_Rialto\AppData\Local\CrashDumps
O43 - CFD: 2014/12/13 12:46:26 - [0] SHD -- C:\Users\Itamar_Rialto\AppData\Local\Dados de Aplicativos
O43 - CFD: 2014/12/14 20:55:35 - [0] D -- C:\Users\Itamar_Rialto\AppData\Local\Deployment
O43 - CFD: 2015/07/06 11:45:23 - [] D -- C:\Users\Itamar_Rialto\AppData\Local\Diagnostics
O43 - CFD: 2015/06/17 09:12:01 - [] D -- C:\Users\Itamar_Rialto\AppData\Local\Dropbox
O43 - CFD: 2015/07/08 20:26:24 - [] D -- C:\Users\Itamar_Rialto\AppData\Local\ElevatedDiagnostics
O43 - CFD: 2015/05/08 10:09:34 - [] D -- C:\Users\Itamar_Rialto\AppData\Local\GAS Tecnologia
O43 - CFD: 2014/12/14 21:07:18 - [] D -- C:\Users\Itamar_Rialto\AppData\Local\Google
O43 - CFD: 2015/06/01 11:32:13 - [] D -- C:\Users\Itamar_Rialto\AppData\Local\GWX
O43 - CFD: 2014/12/13 12:46:26 - [0] SHD -- C:\Users\Itamar_Rialto\AppData\Local\Histórico
O43 - CFD: 2014/12/14 20:32:31 - [] D -- C:\Users\Itamar_Rialto\AppData\Local\iGware
O43 - CFD: 2015/03/26 17:52:25 - [] D -- C:\Users\Itamar_Rialto\AppData\Local\Macromedia
O43 - CFD: 2015/01/11 11:04:40 - [] D -- C:\Users\Itamar_Rialto\AppData\Local\MetaGeek,_LLC
O43 - CFD: 2015/07/11 10:56:21 - [] D -- C:\Users\Itamar_Rialto\AppData\Local\Microsoft
O43 - CFD: 2015/04/28 12:09:10 - [] D -- C:\Users\Itamar_Rialto\AppData\Local\Microsoft Help
O43 - CFD: 2015/03/04 14:47:53 - [] D -- C:\Users\Itamar_Rialto\AppData\Local\Mozilla
O43 - CFD: 2014/12/13 12:46:53 - [] D -- C:\Users\Itamar_Rialto\AppData\Local\OEM
O43 - CFD: 2015/07/09 19:34:03 - [] D -- C:\Users\Itamar_Rialto\AppData\Local\Packages
O43 - CFD: 2015/05/04 18:35:23 - [] D -- C:\Users\Itamar_Rialto\AppData\Local\Pencil
O43 - CFD: 2015/01/05 12:12:41 - [] D -- C:\Users\Itamar_Rialto\AppData\Local\Popcorn Time
O43 - CFD: 2015/01/05 14:11:37 - [] D -- C:\Users\Itamar_Rialto\AppData\Local\Popcorn-Time
O43 - CFD: 2014/12/15 09:27:39 - [] D -- C:\Users\Itamar_Rialto\AppData\Local\Programs
O43 - CFD: 2015/04/06 15:36:39 - [] D -- C:\Users\Itamar_Rialto\AppData\Local\SlimWare Utilities Inc
O43 - CFD: 2014/12/16 15:09:42 - [] D -- C:\Users\Itamar_Rialto\AppData\Local\Spotify
O43 - CFD: 2015/07/16 16:35:38 - [] D -- C:\Users\Itamar_Rialto\AppData\Local\Temp
O43 - CFD: 2014/12/13 12:46:27 - [0] SHD -- C:\Users\Itamar_Rialto\AppData\Local\Temporary Internet Files
O43 - CFD: 2015/07/02 10:11:51 - [] D -- C:\Users\Itamar_Rialto\AppData\Local\VirtualStore
O43 - CFD: 2015/06/18 17:47:36 - [] D -- C:\Users\Itamar_Rialto\AppData\Local\WinAVI
O43 - CFD: 2014/03/18 07:05:57 - [] RD -- C:\Users\Itamar_Rialto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2013/08/22 12:36:32 - [] RD -- C:\Users\Itamar_Rialto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/03/11 22:04:07 - [] RD -- C:\Users\Itamar_Rialto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/06/16 15:59:08 - [] D -- C:\Users\Itamar_Rialto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicativos do Google Chrome
O43 - CFD: 2015/06/17 09:13:08 - [] D -- C:\Users\Itamar_Rialto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
O43 - CFD: 2015/05/04 18:35:00 - [] D -- C:\Users\Itamar_Rialto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Evolus
O43 - CFD: 2015/01/09 09:55:22 - [] D -- C:\Users\Itamar_Rialto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameVicio
O43 - CFD: 2015/03/04 16:22:09 - [] D -- C:\Users\Itamar_Rialto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2013/08/22 12:36:32 - [] D -- C:\Users\Itamar_Rialto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/05/24 18:04:01 - [] D -- C:\Users\Itamar_Rialto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Naviextras
O43 - CFD: 2015/01/05 12:09:20 - [] D -- C:\Users\Itamar_Rialto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn Time
O43 - CFD: 2015/02/23 15:53:51 - [] D -- C:\Users\Itamar_Rialto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Programas RFB2014
O43 - CFD: 2015/03/03 11:11:11 - [] D -- C:\Users\Itamar_Rialto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Programas RFB2015
O43 - CFD: 2015/06/19 10:02:08 - [] RD -- C:\Users\Itamar_Rialto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2014/07/25 18:57:59 - [] RD -- C:\Users\Itamar_Rialto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 2015/06/18 17:47:34 - [] D -- C:\Users\Itamar_Rialto\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinAVI Video Converter

---\\ Lista dos drivers do sistema (SDL) (O58) (66) - 18s
O58 - SDL:2013/08/22 09:43:41 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\drivers\3ware.sys   [108896]
O58 - SDL:2013/08/22 09:43:41 A . (.PMC-Sierra - PMC-Sierra Storport  Driver For SPC8x6G SAS.) -- C:\Windows\System32\drivers\adp80xx.sys   [782176]
O58 - SDL:2013/08/22 09:43:41 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys   [79200]
O58 - SDL:2013/08/22 09:43:41 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys   [259424]
O58 - SDL:2013/08/22 09:43:40 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys   [25952]
O58 - SDL:2013/08/22 09:43:41 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys   [114016]
O58 - SDL:2013/06/18 11:45:02 A . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\Windows\System32\drivers\athw8x.sys   [3680256]
O58 - SDL:2014/02/14 02:35:20 A . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\Windows\System32\drivers\athwbx.sys   [3888640]
O58 - SDL:2013/07/18 12:53:33 A . (.ASIX Electronics Corp. - ASIX AX88772/AX88772A/AX88772B/AX88772C Net.) -- C:\Windows\System32\drivers\ax88772.sys   [113864]
O58 - SDL:2013/08/12 20:25:46 A . (.Windows (R) Win 7 DDK provider - BCM Function 2  Device Driver.) -- C:\Windows\System32\drivers\bcmfn2.sys   [17624]
O58 - SDL:2014/02/25 21:53:02 A . (.Qualcomm Atheros - Qualcomm Atheros A2DP driver.) -- C:\Windows\System32\drivers\btath_a2dp.sys   [355528]
O58 - SDL:2014/02/25 21:53:02 A . (.Qualcomm Atheros - Qualcomm Atheros Bluetooth AVDT driver.) -- C:\Windows\System32\drivers\btath_avdt.sys   [118984]
O58 - SDL:2014/02/25 21:53:02 A . (.Qualcomm Atheros - Qualcomm Atheros BUS driver.) -- C:\Windows\System32\drivers\btath_bus.sys   [35016]
O58 - SDL:2014/02/25 21:53:02 A . (.Qualcomm Atheros - Qualcomm Atheros FILTER driver.) -- C:\Windows\System32\drivers\btath_flt.sys   [89800]
O58 - SDL:2014/02/25 21:53:02 A . (.Qualcomm Atheros - Qualcomm Atheros HCRP driver.) -- C:\Windows\System32\drivers\btath_hcrp.sys   [179432]
O58 - SDL:2014/02/25 21:53:02 A . (.Qualcomm Atheros - Qualcomm Atheros FILTER driver.) -- C:\Windows\System32\drivers\btath_lwflt.sys   [77464]
O58 - SDL:2014/02/25 21:53:02 A . (.Qualcomm Atheros - Qualcomm Atheros AVRCP driver.) -- C:\Windows\System32\drivers\btath_rcp.sys   [137928]
O58 - SDL:2014/02/25 21:53:02 A . (.Qualcomm Atheros - Qualcomm Atheros BtFilter Driver.) -- C:\Windows\System32\drivers\btfilter.sys   [598216]
O58 - SDL:2013/08/22 09:43:41 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys   [531296]
O58 - SDL:2015/02/17 14:38:12 A . (.McAfee, Inc. - McAfee Personal Firewall IDS Plugin.) -- C:\Windows\System32\drivers\cfwids.sys   [68784]
O58 - SDL:2013/08/22 09:43:45 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys   [3357024]
O58 - SDL:2013/08/22 09:43:45 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys   [64352]
O58 - SDL:2013/11/10 22:54:30 A . (.Intel Corporation - GPIO Controller Driver E.) -- C:\Windows\System32\drivers\iaiogpioe.sys   [31232]
O58 - SDL:2013/11/10 22:54:30 A . (.Intel Corporation - I2C Controller Driver E.) -- C:\Windows\System32\drivers\iaioi2ce.sys   [67584]
O58 - SDL:2013/07/30 15:47:35 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\Windows\System32\drivers\iaLPSSi_GPIO.sys   [24568]
O58 - SDL:2013/07/25 16:05:39 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\Windows\System32\drivers\iaLPSSi_I2C.sys   [99320]
O58 - SDL:2013/08/09 21:39:30 A . (.Intel Corporation - Intel Rapid Storage Technology driver (inbo.) -- C:\Windows\System32\drivers\iaStorAV.sys   [651248]
O58 - SDL:2013/08/22 09:43:45 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys   [412000]
O58 - SDL:2014/05/30 00:22:32 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys   [3791872]
O58 - SDL:2014/05/30 00:22:26 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\drivers\IntcDAud.sys   [450520]
O58 - SDL:2014/05/06 19:39:17 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\Windows\System32\drivers\intelaud.sys   [38296]
O58 - SDL:2014/05/06 19:39:17 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\Windows\System32\drivers\iwdbus.sys   [27032]
O58 - SDL:2013/07/17 17:59:00 A . (.Acer Incorporated - LMDriver.) -- C:\Windows\System32\drivers\LMDriver.sys   [21360]
O58 - SDL:2013/08/22 09:43:44 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys   [109408]
O58 - SDL:2013/08/22 09:43:45 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys   [93536]
O58 - SDL:2013/08/22 09:43:44 A . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas3.sys   [81760]
O58 - SDL:2013/08/22 09:43:45 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sss.sys   [82784]
O58 - SDL:2013/08/22 09:43:45 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys   [56672]
O58 - SDL:2013/08/22 09:43:45 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\megasr.sys   [575840]
O58 - SDL:2015/02/17 14:38:48 A . (.McAfee, Inc. - McAfee Arbitrary Access Control Driver.) -- C:\Windows\System32\drivers\mfeaack.sys   [401736]
O58 - SDL:2015/02/17 14:33:10 A . (.McAfee, Inc. - Anti-Virus File System Filter Driver.) -- C:\Windows\System32\drivers\mfeavfk.sys   [337888]
O58 - SDL:2015/02/17 14:39:52 A . (.McAfee, Inc. - McAfee Disk Filter Driver.) -- C:\Windows\System32\drivers\mfedisk.sys   [101872]
O58 - SDL:2015/02/13 14:05:18 A . (.McAfee, Inc. - McAfee ELAM Driver.) -- C:\Windows\System32\drivers\mfeelamk.sys   [80160]
O58 - SDL:2015/02/17 14:33:54 A . (.McAfee, Inc. - McAfee Core Firewall Engine Driver.) -- C:\Windows\System32\drivers\mfefirek.sys   [488000]
O58 - SDL:2015/02/17 14:34:42 A . (.McAfee, Inc. - McAfee Link Driver.) -- C:\Windows\System32\drivers\mfehidk.sys   [864072]
O58 - SDL:2015/02/17 14:36:18 A . (.McAfee, Inc. - Anti-Virus Mini-Firewall Driver.) -- C:\Windows\System32\drivers\mfewfpk.sys   [340448]
O58 - SDL:2012/07/16 15:19:28 A . (.Ralink Technology, Corp. - Wi-Fi Display Virtual Audio Driver.) -- C:\Windows\System32\drivers\mtkvadx.sys   [44544]
O58 - SDL:2013/08/22 09:43:49 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\drivers\mvumis.sys   [63840]
O58 - SDL:2013/08/22 09:43:31 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys   [150368]
O58 - SDL:2013/08/22 09:43:32 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys   [168288]
O58 - SDL:2013/07/17 17:59:00 A . (.Acer Incorporated - RadioShim.) -- C:\Windows\System32\drivers\RadioShim.sys   [14680]
O58 - SDL:2013/12/18 00:35:22 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.30 64-bit Dr.) -- C:\Windows\System32\drivers\Rt630x64.sys   [839896]
O58 - SDL:2014/03/25 07:46:28 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys   [3903320]
O58 - SDL:2013/12/20 00:31:48 A . (.Realsil Semiconductor Corporation - RTS PCIE READER Driver.) -- C:\Windows\System32\drivers\RtsPer.sys   [461528]
O58 - SDL:2013/08/22 12:35:09 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys   [23040]
O58 - SDL:2013/08/22 09:43:31 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys   [44896]
O58 - SDL:2013/08/22 09:43:32 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys   [81760]
O58 - SDL:2014/01/22 08:52:10 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ve.) -- C:\Windows\System32\drivers\ssudbus.sys   [108800]
O58 - SDL:2014/01/22 08:52:10 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ve.) -- C:\Windows\System32\drivers\ssudmdm.sys   [206080]
O58 - SDL:2013/08/22 09:43:32 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\Windows\System32\drivers\stexstor.sys   [31072]
O58 - SDL:2015/04/06 15:36:48 A . (.SlimWare Utilities, Inc. - Driver Update Installer Monitor.) -- C:\Windows\System32\drivers\SWDUMon.sys   [16056]
O58 - SDL:2014/02/19 08:20:30 A . (.Synaptics Incorporated - Synaptics I2C Driver.) -- C:\Windows\System32\drivers\SynRMIHID.sys   [42224]
O58 - SDL:2014/01/15 14:21:46 A . (.Intel Corporation - Intel(R) Trusted Execution Engine Interface.) -- C:\Windows\System32\drivers\TXEIx64.sys   [88592]
O58 - SDL:2013/08/22 09:43:34 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys   [19808]
O58 - SDL:2013/08/22 09:43:34 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys   [168800]
O58 - SDL:2013/08/22 09:43:34 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\drivers\VSTXRAID.SYS   [305504]

---\\ Últimos ficheiros alterados ou criados (Utilizador) (061) (6) - 457s
O61 - LFC: 2015/07/13 15:41:31 A . (..) -- C:\Users\Itamar_Rialto\Downloads\DuoHD_V02_017.BIN   [3997764]
O61 - LFC: 2015/07/08 20:16:19 A . (..) -- C:\Users\Itamar_Rialto\Desktop\Ferramentas úteis\Zoek\zoek.com   [1445832]
O61 - LFC: 2015/07/08 20:16:26 A . (..) -- C:\Users\Itamar_Rialto\Desktop\Ferramentas úteis\Zoek\zoek.exe   [1308672]
O61 - LFC: 2015/07/16 15:52:11 A . (..) -- C:\Users\Itamar_Rialto\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin   [1113849]
O61 - LFC: 2015/07/13 10:14:22 A . (..) -- C:\Users\Itamar_Rialto\AppData\Local\Google\Chrome\User Data\PepperFlash\18.0.0.209\pepflashplayer.dll   [16307888]
O61 - LFC: 2015/07/16 15:24:11 A . (..) -- C:\Users\Itamar_Rialto\AppData\Local\AOP SDK\Acer Infra\acer\SyncAgent\cc\cache\users\00000000004a8170\userdata.bin   [3360]

---\\ Associações Shell Spawning (O67) (9) - 1s
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Editor do Registro.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> <scrfile>[HKLM\..\open\Command] (...) -- "%1" /S

---\\ Menu de inicialização Internet (068) (12) - 3s
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe 
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe 
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitário de Inicialização por Usuário do.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitário de Inicialização por Usuário do.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitário de Inicialização por Usuário do.) -- C:\Windows\System32\ie4uinit.exe

---\\ Pesquisa de infeção nos navegadores da Internet (SBI) (069) (1) - 29s
O69 - SBI: SearchScopes [HKCU] {BB8F45E7-1619-48C9-82AD-64AC365452C4} [DefaultScope] - (Bing) - http://www.bing.com/

---\\ Listagem dos serviços iniciados pelo Svchost (SSS) (O83) (34) - 7s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Serviço de Experiência com Aplicativo.) -- C:\Windows\System32\aelupsvc.dll   [214528]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Serviço de Propagação de Certificado de Car.) -- C:\Windows\System32\certprop.dll   [156160]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Serviço de Propagação de Certificado de Car.) -- C:\Windows\System32\certprop.dll   [156160]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL de Serviço do Servidor.) -- C:\Windows\system32\srvsvc.dll   [329216]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Cliente da Política de Grupo.) -- C:\Windows\System32\gpsvc.dll   [1360896]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extensão IKE.) -- C:\Windows\System32\ikeext.dll   [1084416]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Serviço que oferece conectividade IPv6 em u.) -- C:\Windows\System32\iphlpsvc.dll   [926208]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de serviço de logon secundário.) -- C:\Windows\system32\seclogon.dll   [31744]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Serviço de Informações de Aplicativos.) -- C:\Windows\System32\appinfo.dll   [110080]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Serviço de Descoberta iSCSI.) -- C:\Windows\system32\iscsiexe.dll   [151040]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Serviço Microsoft EAPHost.) -- C:\Windows\System32\eapsvc.dll   [110592]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Serviço Agendador de Tarefas.) -- C:\Windows\system32\schedsvc.dll   [1265152]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll   [230400]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Serviço Agendador de Classes de Multimídia.) -- C:\Windows\system32\mmcss.dll   [71168]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL de Serviço Pesquisador de Computadores.) -- C:\Windows\System32\browser.dll   [135168]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll   [225280]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Serviço de Configuração da Área de Trabalho.) -- C:\Windows\System32\SessEnv.dll   [339968]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Relatórios de Problemas e Soluções.) -- C:\Windows\System32\wercplsupport.dll   [84992]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Serviço de Gerenciamento de Chaves.) -- C:\Windows\system32\kmsvc.dll   [101376]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Serviço BDE.) -- C:\Windows\System32\bdesvc.dll   [348672]
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Serviço de Estrutura de Localização do Wind.) -- C:\Windows\System32\GeofenceMonitorService.dll   [521728]
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Serviço Conta da Microsoft®.) -- C:\Windows\system32\wlidsvc.dll   [1639424]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL do Serviço de Tema do Shell do Windows.) -- C:\Windows\system32\themeservice.dll   [59392]
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gerenciador de Instalação de Dispositivo.) -- C:\Windows\System32\DeviceSetupManager.dll   [206848]
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Serviço Assistente de Conectividade de Rede.) -- C:\Windows\System32\ncasvc.dll   [166400]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gerenciador de Discagem Automática de Acess.) -- C:\Windows\System32\rasauto.dll   [102912]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gerenciador de conexão de acesso remoto.) -- C:\Windows\System32\rasmans.dll   [542208]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gerenciador de Interface Dinâmica.) -- C:\Windows\System32\mprdim.dll   [226816]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Serviço de Notificação de Eventos do Sistem.) -- C:\Windows\System32\sens.dll   [73728]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Componentes do Microsoft NAT Helper.) -- C:\Windows\System32\ipnathlp.dll   [452608]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Servidor de telefonia do Microsoft(R) Windo.) -- C:\Windows\System32\tapisrv.dll   [313344]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\system32\wuaueng.dll   [3701760]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Serviço de transferência inteligente de tel.) -- C:\Windows\System32\qmgr.dll   [933376]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - DLL de serviços do Shell do Windows.) -- C:\Windows\System32\shsvcs.dll   [640000]

---\\ Lista das exceções do FireWall (FirewallRules) (O87) (10) - 5s
O87 - FAEL: "{6EC42287-3D7D-41FF-8B3A-0FC781119F4C}" [In-None-P6-TRUE] .(.Spotify Ltd - Spotify.) -- C:\Program Files (x86)\Spotify\spotify.exe
O87 - FAEL: "{DFEB95EE-AF07-410B-BBAC-AC3BB37B7655}" [In-None-P17-TRUE] .(.Spotify Ltd - Spotify.) -- C:\Program Files (x86)\Spotify\spotify.exe
O87 - FAEL: "{7747E2AF-3EA8-43F8-B074-F0B2C0F3C5F1}" [In-None-P6-TRUE] .(.Spotify Ltd - SpotifyWebHelper.) -- C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
O87 - FAEL: "{6F7ABCEA-8BCA-49A2-8762-708EB52D9B76}" [In-None-P17-TRUE] .(.Spotify Ltd - SpotifyWebHelper.) -- C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
O87 - FAEL: "{D7ABD79F-3C8D-463A-B9B3-56BBD087390B}" [In-None-P6-TRUE] .(.Acer Cloud Technology - AcerCloud Client.) -- C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
O87 - FAEL: "{6D4EBAEA-60A1-4382-8901-98BEB3B66E24}" [In-None-P17-TRUE] .(.Acer Cloud Technology - AcerCloud Client.) -- C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
O87 - FAEL: "TCP Query User{8F74B528-B4D0-44F1-8A39-E94D51DAA180}C:\users\itamar_rialto\appdata\roaming\utorrent\utorrent.exe" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\users\itamar_rialto\appdata\roaming\utorrent\utorrent.exe
O87 - FAEL: "UDP Query User{323585CB-32D2-41AD-BC55-63559B18D832}C:\users\itamar_rialto\appdata\roaming\utorrent\utorrent.exe" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\users\itamar_rialto\appdata\roaming\utorrent\utorrent.exe
O87 - FAEL: "TCP Query User{A34A0061-2DB5-492B-B6AE-C19216E4C510}C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe" [In-None-P6-TRUE] .(.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe
O87 - FAEL: "UDP Query User{CA5B67DD-6F0A-40D4-92D8-BAB6183D43EC}C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe" [In-None-P17-TRUE] .(.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe

---\\ Estado general dos serviços não Microsoft (EGS) (SR=Executados, SS=Parados) (16) - 81s
SR - Auto   [2014/02/25 22:17:38] [  319104]  AtherosSvc (AtherosSvc) . (.Windows (R) Win 7 DDK provider.) - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
SR - Auto   [2014/12/19 10:15:49] [ 2713856]  CCDMonitorService (CCDMonitorService) . (.Acer Incorporated.) - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
SS - Demand [2014/05/30 00:22:36] [  279000]  Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe
SR - Demand [2014/07/22 13:58:36] [ 2573032]  ePower Service (ePowerSvc) . (.Acer Incorporated.) - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
SR - Auto   [2014/04/24 18:04:16] [  227904]  GamesAppIntegrationService (GamesAppIntegrationService) . (.WildTangent.) - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
SS - Demand [2014/04/24 18:00:06] [  203344]  GamesAppService (GamesAppService) . (.WildTangent, Inc..) - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
SR - Auto   [2015/04/29 11:16:40] [  579896]  Gbp Service (GbpSv) . (.GAS Tecnologia.) - C:\Program Files (x86)\GbPlugin\gbpsv.exe
SS - Auto   [2014/12/14 20:55:41] [  107912]  Serviço do Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - Demand [2014/12/14 20:55:41] [  107912]  Serviço do Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - Demand [2012/04/24 14:37:56] [  169752]  Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
SR - Auto   [2014/05/30 00:22:36] [  315352]  Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation.) - C:\Windows\system32\igfxCUIService.exe
SR - Auto   [2013/07/01 20:08:32] [  733696]  Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
SS - Demand [2013/07/01 20:08:48] [  822232]  Intel(R) Capability Licensing Service TCP IP Interface (Intel(R) Capability Licensing Service TCP IP Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe
SR - Auto   [2014/06/10 10:14:46] [  466664]  Launch Manager Service (LMSvc) . (.Acer Incorporate.) - C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
SS - Demand [2015/06/11 11:03:00] [  148080]  Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SR - Demand [2014/07/14 21:31:08] [  234240]  User Experience Improvement Program (UEIPSvc) . (.acer.) - C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe

---\\ Scâner Aditional (088) (2) - 0s
HKLM\SOFTWARE\Wow6432Node\b1.org  =>PUP.Optional.SearchB1org
HKLM\SOFTWARE\Wow6432Node\SupDp  =>PUP.Optional.SupTab

---\\ Resumo dos elementos encontrados na sua estação de trabalho (2) - 0s
http://www.nicolascoolman.fr/blog  =>PUP.Optional.SearchB1org
http://www.nicolascoolman.fr/pup-suptab/  =>PUP.Optional.SupTab

~ End of the scan, 45868 items in 801 seconds (712)(0)()