~ ZHPDiag v2015.9.28.146 Por Nicolas Coolman (2015/09/28) ~ iniciado por User (Administrator) (2015/10/01 16:40:00) ~ Site: http://www.nicolascoolman.fr ~ Facebook: https://www.facebook.com/nicolascoolman1 ~ Status da versão: Version OK ~ Modo: Scanner ~ Relatório: C:\Documents and Settings\User\Desktop\ZHPDiag.txt ~ Relatório: C:\Documents and Settings\User\Dados de aplicativos\ZHP\ZHPDiag.txt ~ UAC: Deactivate ~ Inicialização do sistema: Normal (Normal boot) Windows XP, 32-bit Service Pack 3 (Build 2600) ---\\ Navegadores Internet (2) - 0s GCIE: Google Chrome v45.0.2454.101 MSIE: Internet Explorer v8.0.6001.18702 ---\\ Informações sobre os produtos Windows (3) - 0s Windows Automatic Updates : KO Windows Activation Technologies : KO Windows Genuine Advantage : KO ---\\ Softwares de proteçao do sistema (1) - 1s Malwarebytes Anti-Malware versão 2.1.8.1057 ---\\ Monitoramento dos softwares (1) - 1s Adobe Reader X ---\\ Informações sobre o sistema (6) - 0s ~ Operating System: x86 Family 6 Model 23 Stepping 10, GenuineIntel ~ Operating System: 32-bit ~ Boot mode: Normal (Normal boot) Total RAM: 2087.084 MB (62% free) ~ System Restore: Activé (Enable) ~ System drive C: has 54 GB free of 100 GB ---\\ Modo de conexão ao sistema (3) - 0s ~ Computer Name: CNES ~ User Name: User ~ Logged in as Administrator ---\\ Enumeração das unidades dos discos (2) - 5s ~ Drive C: has 54 GB free of 100 GB (System) ~ Drive D: has 128 GB free of 138 GB ---\\ Estado do Centro de Segurança do Windows (9) - 0s [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK ---\\ Pesquisa particular de ficheiros genéricos (23) - 1s [MD5.064EC7FF5F58B928C3E119402977FA6D] - (.Microsoft Corporation - Windows Explorer.) () -- C:\WINDOWS\Explorer.exe [1035776] © [MD5.E715412E47D20EB0EBF77B65F9157343] - (.Microsoft Corporation - Executa uma DLL como um aplicativo.) () -- C:\WINDOWS\System32\rundll32.exe [33280] © [MD5.6CE32F7778061CCC5814D5E0F282D369] - (.Microsoft Corporation - Internet Extensions for Win32.) () -- C:\WINDOWS\System32\wininet.dll [914944] © [MD5.71D440F79B711627B12B567FB2EADB42] - (.Microsoft Corporation - Aplicativo de logon do Windows NT.) () -- C:\WINDOWS\System32\Winlogon.exe [509952] © [MD5.1658216A1F1CB5B72609CBC413E0BA45] - (.Microsoft Corporation - DNS Client API DLL.) () -- C:\WINDOWS\System32\dnsapi.dll [147968] © [MD5.322D0E36693D6E24A2398BEE62A268CD] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\WINDOWS\System32\drivers\AFD.sys [138112] © [MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) () -- C:\WINDOWS\System32\drivers\atapi.sys [96512] © [MD5.C885B02847F5D2FD45A24E219ED93B32] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\WINDOWS\System32\drivers\Cdfs.sys [63744] © [MD5.1F4260CC5B42272D71F79E570A27A4FE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\WINDOWS\System32\drivers\Cdrom.sys [62976] © [MD5.A8D31E836CCF2F51009CE7DFFECF6D51] - (.Microsoft Corporation - FIPS Crypto Driver.) () -- C:\WINDOWS\System32\drivers\Fips.sys [44672] © [MD5.573C7D0A32852B48F3058CFD8026F511] - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) () -- C:\WINDOWS\System32\drivers\HDAudBus.sys [144384] [MD5.485BC6BEB778B5E9702E6AA3D384C0CB] - (.Microsoft Corporation - Driver de porta i8042.) () -- C:\WINDOWS\System32\drivers\i8042prt.sys [53504] © [MD5.083A052659F5310DD8B6A6CB05EDCF8E] - (.Microsoft Corporation - IMAPI Kernel Driver.) () -- C:\WINDOWS\System32\drivers\Imapi.sys [42112] © [MD5.CC748EA12C6EFFDE940EE98098BF96BB] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\WINDOWS\System32\drivers\IpNat.sys [152832] © [MD5.23C74D75E36E7158768DD63D92789A91] - (.Microsoft Corporation - IPSec Driver.) () -- C:\WINDOWS\System32\drivers\IPSec.sys [75264] © [MD5.68755F0FF16070178B54674FE5B847B0] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\WINDOWS\System32\drivers\MRxSmb.sys [456576] © [MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\WINDOWS\System32\drivers\netBT.sys [162816] © [MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) () -- C:\WINDOWS\System32\drivers\ntfs.sys [574976] © [MD5.9BADEE6B698BF1AF36E25A1A64A89EAB] - (.Microsoft Corporation - Driver de porta paralela.) () -- C:\WINDOWS\System32\drivers\Parport.sys [80384] © [MD5.11B4A627BC9614B885C4969BFA5FF8A6] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [51328] © [MD5.15CABD0F7C00C47C70124907916AF3F1] - (.Microsoft Corporation - Microsoft RDP Device redirector.) () -- C:\WINDOWS\System32\drivers\rdpdr.sys [196224] © [MD5.68D749B04BFBBD4D4D15CC5185AFA4DD] - (.Microsoft Corporation - Redbook Audio Filter Driver.) () -- C:\WINDOWS\System32\drivers\redbook.sys [58240] © [MD5.EB6B1E2C984D84470FF4FE7EF98CD44A] - (.Microsoft Corporation - Driver de cópia de sombra de volume.) () -- C:\WINDOWS\System32\drivers\volsnap.sys [53248] © ---\\ Processos lançados (13) - 1s [MD5.0A5709543986843D37A92290B7838340] - (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) -- C:\Arquivos de programas\Java\jre6\bin\jqs.exe [153376] [PID.244] © [MD5.5D3945C710C1D8C7F1D45DEDBF42CEE1] - (.PaperCut Software International Pty Ltd - PaperCut NG Print Provider (x86).) -- C:\Arquivos de programas\PaperCut Print Logger\pcpl.exe [929792] [PID.560] [MD5.E1E13735B6D2FE4FFEAEB91989B9C46F] - (.TeamViewer GmbH - TeamViewer 10.) -- C:\Arquivos de programas\TeamViewer\TeamViewer_Service.exe [5436176] [PID.1148] © [MD5.101BD82A6D621DD3377D0286C392937E] - (.VIA Technologies, Inc. - HDeck MFC Application.) -- C:\Arquivos de programas\VIA\VIAudioi\HDADeck\HDeck.exe [33759232] [PID.636] © [MD5.503436B686DDEFB356FA51A19CF1734E] - (.The Firebird Project - Firebird SQL Server.) -- C:\Arquivos de programas\Firebird\Firebird_1_5\bin\fbguard.exe [65536] [PID.1236] © [MD5.D9609543E2576162FB3BF9329A34EDAA] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Arquivos de programas\Arquivos comuns\Java\Java Update\jusched.exe [328424] [PID.1796] © [MD5.D0A3BEF1AF63D6B733CD17108E2C199E] - (.The Firebird Project - Firebird SQL Server.) -- C:\Arquivos de programas\Firebird\Firebird_1_5\bin\fbserver.exe [1531904] [PID.1616] © [MD5.F0DE615B84CAD130FB56790C32DDFE23] - (.Google Inc. - Google Chrome.) -- C:\Arquivos de programas\Google\Chrome\Application\chrome.exe [893768] [PID.2952] © [MD5.F0DE615B84CAD130FB56790C32DDFE23] - (.Google Inc. - Google Chrome.) -- C:\Arquivos de programas\Google\Chrome\Application\chrome.exe [893768] [PID.3440] © [MD5.F0DE615B84CAD130FB56790C32DDFE23] - (.Google Inc. - Google Chrome.) -- C:\Arquivos de programas\Google\Chrome\Application\chrome.exe [893768] [PID.3632] © [MD5.F0DE615B84CAD130FB56790C32DDFE23] - (.Google Inc. - Google Chrome.) -- C:\Arquivos de programas\Google\Chrome\Application\chrome.exe [893768] [PID.3852] © [MD5.F0DE615B84CAD130FB56790C32DDFE23] - (.Google Inc. - Google Chrome.) -- C:\Arquivos de programas\Google\Chrome\Application\chrome.exe [893768] [PID.3912] © [MD5.BEB274EF932F3AD40F15AE7DCD1F53DA] - (.Nicolas Coolman - ZHPDiag.) -- C:\Documents and Settings\User\Meus documentos\Downloads\ZHPDiag3 (1).exe [1939968] [PID.2740] © ---\\ Google Chrome, Arranque,Pesquisa,Extensões (8) - 0s G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [pbcaplhfkihhldmlbjhgajdeghjdbffi] GBBD Caixa Economica Federal G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc. ---\\ Mozilla Firefox, Plugins,Arranque,Pesquisa,Extensões (1) - 0s P2 - FPN: [HKCU] [@lightspark.github.com/Lightspark;version=1] - (.Lightspark Team.) -- C:\Arquivos de programas\Lightspark 0.5.3-git\nplightsparkplugin.dll © ---\\ Internet Explorer, Arranque, Pesquisa, Phishing (9) - 0s R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = http://www.google.com R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2 ---\\ Internet Explorer, Gestão do Proxy (7) - 1s R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.168.2.250:8080 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ Análise das linhas, Carregamento Automático de programas (3) - 0s F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe (.Microsoft Corporation.) © F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) © F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl" ---\\ Redireção do ficheiro Hosts (1) - 0s ~ Le fichier hôte est sain (The hosts file is clean) (1) ---\\ Browser Helper Objects do navegador (3) - 0s O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Arquivos de programas\Java\jre6\bin\ssv.dll © O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Arquivos de programas\Java\jre6\bin\jp2ssv.dll © O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java(TM) Quick Starter binary.) -- C:\Arquivos de programas\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll © ---\\ Aplicações iniciadas por registo & pastas (14) - 0s O4 - HKLM\..\Run: [Persistence] . (...) -- C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [IgfxTray] . (...) -- C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] . (...) -- C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [HDAudDeck] . (.VIA Technologies, Inc. - HDeck MFC Application.) -- C:\Arquivos de programas\VIA\VIAudioi\HDADeck\HDeck.exe © O4 - HKLM\..\Run: [GrooveMonitor] . (.Microsoft Corporation - GrooveMonitor Utility.) -- C:\Arquivos de programas\Microsoft Office\Office12\GrooveMonitor.exe © O4 - HKLM\..\Run: [Firebird] . (.The Firebird Project - Firebird SQL Server.) -- C:\Arquivos de programas\Firebird\Firebird_1_5\bin\fbguard.exe © O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Arquivos de programas\Arquivos comuns\Adobe\ARM\1.0\AdobeARM.exe © O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Arquivos de programas\Arquivos comuns\Java\Java Update\jusched.exe © O4 - HKCU\..\Run: [DAEMON Tools Lite] . (...) -- C:\Arquivos de programas\DAEMON Tools Lite\DTLite.exe O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe © O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe © O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe © O4 - HKUS\S-1-5-21-117609710-813497703-682003330-1003\..\Run: [DAEMON Tools Lite] . (...) -- C:\Arquivos de programas\DAEMON Tools Lite\DTLite.exe O4 - HKUS\S-1-5-21-117609710-813497703-682003330-1003\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe © ---\\ Alteração Dominio/Clientes DNS (4) - 0s O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 192.168.2.250,8.8.8.8 O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 192.168.2.250,8.8.8.8 O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 192.168.2.250,8.8.8.8 O17 - HKLM\System\CS3\Services\Tcpip\Parameters: NameServer = 192.168.2.250,8.8.8.8 ---\\ Protocolo adicional (31) - 0s O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll © O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll © O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Controle ActiveX para fluxo de vídeo.) -- C:\WINDOWS\system32\msvidctl.dll © O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll © O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll © O18 - Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll © O18 - Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} . (.Microsoft Corporation - GrooveSystemServices Module.) -- C:\Arquivos de programas\Microsoft Office\Office12\GrooveSystemServices.dll © O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll © O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll © O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\system32\itss.dll © O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll © O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll © O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll © O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API.) -- C:\WINDOWS\system32\inetcomm.dll © O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll © O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\Help\hxds.dll © O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\system32\itss.dll © O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll © O18 - Handler: sysimage - {76E67A63-06E9-11D2-A840-006008059382} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll © O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Controle ActiveX para fluxo de vídeo.) -- C:\WINDOWS\system32\msvidctl.dll © O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll © O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} . (.Microsoft Corporation - WIA Scripting Layer.) -- C:\WINDOWS\system32\wiascr.dll © O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll © O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll © O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll © O18 - Filter: Class Install Handler - {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll © O18 - Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll © O18 - Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll © O18 - Filter: lzdhtml - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll © O18 - Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} . (.Microsoft Corporation - DLL comum do Shell do Windows.) -- C:\WINDOWS\system32\shell32.dll © O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\OFFICE12\MSOXMLMF.DLL © ---\\ Serviços NT não Microsoft e não desativados (5) - 0s O23 - Service: Serviço do Google Update (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Arquivos de programas\Google\Update\GoogleUpdate.exe © O23 - Service: Java Quick Starter (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) - C:\Arquivos de programas\Java\jre6\bin\jqs.exe © O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Arquivos de programas\Malwarebytes Anti-Malware\mbamservice.exe © O23 - Service: PaperCut Print Logger (PCPrintLogger) . (.PaperCut Software International Pty Ltd - PaperCut NG Print Provider (x86).) - C:\Arquivos de programas\PaperCut Print Logger\pcpl.exe O23 - Service: TeamViewer 10 (TeamViewer) . (.TeamViewer GmbH - TeamViewer 10.) - C:\Arquivos de programas\TeamViewer\TeamViewer_Service.exe © ---\\ Software instalados (24) - 4s O42 - Logiciel: 7-Zip 9.38 beta - (...) [HKLM] -- 7-Zip O42 - Logiciel: Firebird 1.5.5 - (.Firebird Project.) [HKLM] -- FBDBServer_1_5_is1 © O42 - Logiciel: FPOMAG - (...) [HKLM] -- FPO Magnético_is1 O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome © O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- HDMI © O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8 © O42 - Logiciel: VIA Gerenciador de dispositivo de plataforma - (.VIA Technologies, Inc..) [HKLM] -- InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169} © O42 - Logiciel: Hotfix para Windows XP (KB942288-v3) - (.Microsoft Corporation.) [HKLM] -- KB942288-v3 © O42 - Logiciel: Malwarebytes Anti-Malware versão 2.1.8.1057 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes Anti-Malware_is1 © O42 - Logiciel: SCNES Versão 3.1.70 - Atualização - (...) [HKLM] -- SCNES_is1 O42 - Logiciel: SIGTAP (remove only) - (...) [HKLM] -- SIGTAP O42 - Logiciel: TeamViewer 10 - (.TeamViewer.) [HKLM] -- TeamViewer © O42 - Logiciel: Transmissor DATASUS 2.2.0 - (.Datasus.) [HKLM] -- Transmissor DATASUS_is1 O42 - Logiciel: VERSIA - (...) [HKLM] -- VERSIA_is1 O42 - Logiciel: Visualizador de Relatórios QRP 1.0 - (.Pharmanet Consultoria.) [HKLM] -- Visualizador de Relatórios QRP_is1 O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM] -- VLC media player © O42 - Logiciel: WinRAR 5.21 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver © O42 - Logiciel: Java(TM) 6 Update 31 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216031FF} © O42 - Logiciel: Atheros Communications Inc.(R) AR8121/AR8113/AR8114 Gigabit/Fast Ethernet D - (.Atheros Communications Inc..) [HKLM] -- {3108C217-BE83-42E4-AE9E-A56A2A92E549} © O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} © O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} © O42 - Logiciel: Adobe Reader X (10.1.15) - Português - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1046-7B44-AA1000000001} © O42 - Logiciel: GPRO Organiser - (.MB Software.) [HKLM] -- {AE99A8BA-9689-4F92-B640-6A0314751F65} O42 - Logiciel: e-SUS-AB-CDS 1.3.07 - (.DAB/MS.) [HKLM] -- {EC273E2B-3BB4-4448-B800-35D0C4553592}_is1 ---\\ Ponto de restauro do sistema (80) - 4s HKLM\SOFTWARE\7-Zip HKLM\SOFTWARE\Adobe HKLM\SOFTWARE\AdwCleaner HKLM\SOFTWARE\Ammyy HKLM\SOFTWARE\Apple Inc. HKLM\SOFTWARE\Atheros Communications Inc. HKLM\SOFTWARE\Baidu Security HKLM\SOFTWARE\C07ft5Y HKLM\SOFTWARE\Client HKLM\SOFTWARE\Creative Tech HKLM\SOFTWARE\Disc Soft HKLM\SOFTWARE\Firebird Project HKLM\SOFTWARE\Gemplus HKLM\SOFTWARE\GO HKLM\SOFTWARE\Google HKLM\SOFTWARE\Hewlett-Packard HKLM\SOFTWARE\InstallShield HKLM\SOFTWARE\Intel HKLM\SOFTWARE\JavaSoft HKLM\SOFTWARE\JreMetrics HKLM\SOFTWARE\Licenses HKLM\SOFTWARE\Malwarebytes' Anti-Malware HKLM\SOFTWARE\Mozilla HKLM\SOFTWARE\MozillaPlugins HKLM\SOFTWARE\ODBC HKLM\SOFTWARE\PaperCut Print Logger HKLM\SOFTWARE\PCDataApp HKLM\SOFTWARE\Program Groups HKLM\SOFTWARE\RegisteredApplications HKLM\SOFTWARE\Remo Software HKLM\SOFTWARE\Schlumberger HKLM\SOFTWARE\Secure HKLM\SOFTWARE\SIGTAP HKLM\SOFTWARE\Swearware HKLM\SOFTWARE\TeamViewer HKLM\SOFTWARE\TrendMicro HKLM\SOFTWARE\VIA Technologies, Inc HKLM\SOFTWARE\VideoLAN HKLM\SOFTWARE\WebZen HKLM\SOFTWARE\Windows HKLM\SOFTWARE\Windows 3.1 Migration Status HKLM\SOFTWARE\WinRAR HKCU\SOFTWARE\7-Zip HKCU\SOFTWARE\Adobe HKCU\SOFTWARE\Ammyy HKCU\SOFTWARE\Apcr HKCU\SOFTWARE\AppDataLow HKCU\SOFTWARE\AutoHelpDesk HKCU\SOFTWARE\Baidu HKCU\SOFTWARE\Baidu Security HKCU\SOFTWARE\Baixaki HKCU\SOFTWARE\Disc Soft HKCU\SOFTWARE\EMUL8 HKCU\SOFTWARE\go HKCU\SOFTWARE\Google HKCU\SOFTWARE\Hewlett-Packard HKCU\SOFTWARE\Intel HKCU\SOFTWARE\JavaSoft HKCU\SOFTWARE\kde.org HKCU\SOFTWARE\Licenses HKCU\SOFTWARE\Mozilla HKCU\SOFTWARE\MozillaPlugins HKCU\SOFTWARE\N9 HKCU\SOFTWARE\Netscape HKCU\SOFTWARE\ODBC HKCU\SOFTWARE\OperaOB HKCU\SOFTWARE\PCDataApp HKCU\SOFTWARE\QtProject HKCU\SOFTWARE\sup games HKCU\SOFTWARE\supgames HKCU\SOFTWARE\Sysinternals HKCU\SOFTWARE\TeamViewer HKCU\SOFTWARE\Trolltech HKCU\SOFTWARE\Unity HKCU\SOFTWARE\User914 HKCU\SOFTWARE\Webzen HKCU\SOFTWARE\Wget HKCU\SOFTWARE\WinRAR HKCU\SOFTWARE\WinRAR SFX HKCU\SOFTWARE\ZebHelpProcess Helper ---\\ Conteúdo das pastas Programs (115) - 3s O43 - CFD: 2015/05/12 11:29:22 - [] D -- C:\Arquivos de programas\7-Zip O43 - CFD: 2015/05/19 15:47:02 - [] D -- C:\Arquivos de programas\Adobe O43 - CFD: 2015/08/17 15:41:17 - [] D -- C:\Arquivos de programas\Arquivos comuns O43 - CFD: 2014/03/26 14:10:13 - [] D -- C:\Arquivos de programas\Borland O43 - CFD: 2014/03/24 13:33:25 - [0] D -- C:\Arquivos de programas\ComPlus Applications O43 - CFD: 2015/04/28 13:55:10 - [] D -- C:\Arquivos de programas\DAEMON Tools Lite O43 - CFD: 2015/09/14 10:41:07 - [] D -- C:\Arquivos de programas\Datasus O43 - CFD: 2014/08/08 10:14:02 - [] D -- C:\Arquivos de programas\Firebird O43 - CFD: 2015/07/31 14:40:50 - [] D -- C:\Arquivos de programas\Google O43 - CFD: 2015/07/29 08:27:08 - [0] D -- C:\Arquivos de programas\GUM7A.tmp O43 - CFD: 2014/04/01 09:59:23 - [] D -- C:\Arquivos de programas\GUM86.tmp O43 - CFD: 2014/03/31 15:51:07 - [] HD -- C:\Arquivos de programas\InstallShield Installation Information O43 - CFD: 2014/03/26 14:08:18 - [] D -- C:\Arquivos de programas\Intel O43 - CFD: 2015/10/01 11:28:47 - [] D -- C:\Arquivos de programas\Internet Explorer O43 - CFD: 2015/08/17 15:40:50 - [] D -- C:\Arquivos de programas\Java O43 - CFD: 2015/08/17 14:48:09 - [] D -- C:\Arquivos de programas\Malwarebytes Anti-Malware O43 - CFD: 2014/03/26 14:08:03 - [] D -- C:\Arquivos de programas\McAfee Security Scan O43 - CFD: 2014/05/08 14:37:47 - [] D -- C:\Arquivos de programas\Messenger O43 - CFD: 2014/03/24 13:36:11 - [] D -- C:\Arquivos de programas\microsoft frontpage O43 - CFD: 2014/03/26 14:07:44 - [] D -- C:\Arquivos de programas\Microsoft Office O43 - CFD: 2014/03/26 14:06:58 - [] D -- C:\Arquivos de programas\Microsoft Visual Studio O43 - CFD: 2014/03/26 14:06:58 - [] D -- C:\Arquivos de programas\Microsoft Works O43 - CFD: 2014/03/26 14:06:57 - [] D -- C:\Arquivos de programas\Microsoft.NET O43 - CFD: 2015/10/01 11:56:50 - [] D -- C:\Arquivos de programas\Movie Maker O43 - CFD: 2015/09/30 13:57:52 - [] D -- C:\Arquivos de programas\Mozilla Firefox O43 - CFD: 2014/03/26 14:06:56 - [] D -- C:\Arquivos de programas\MSBuild O43 - CFD: 2015/09/30 08:47:07 - [] D -- C:\Arquivos de programas\MSECache O43 - CFD: 2014/03/24 13:33:05 - [] D -- C:\Arquivos de programas\MSN Gaming Zone O43 - CFD: 2015/10/01 11:58:28 - [] D -- C:\Arquivos de programas\NetMeeting O43 - CFD: 2015/04/08 08:20:32 - [] D -- C:\Arquivos de programas\One Number O43 - CFD: 2015/10/01 11:58:57 - [] D -- C:\Arquivos de programas\Outlook Express O43 - CFD: 2014/08/06 10:14:11 - [] D -- C:\Arquivos de programas\PaperCut Print Logger O43 - CFD: 2015/04/08 08:03:57 - [] D -- C:\Arquivos de programas\PrettyPrint O43 - CFD: 2014/03/26 14:06:49 - [] D -- C:\Arquivos de programas\Realtek O43 - CFD: 2014/03/26 14:06:44 - [] D -- C:\Arquivos de programas\Reference Assemblies O43 - CFD: 2015/05/13 09:08:59 - [] D -- C:\Arquivos de programas\Remo Repair RAR 2.0 O43 - CFD: 2014/03/24 13:35:02 - [] D -- C:\Arquivos de programas\Serviços on-line O43 - CFD: 2014/03/26 14:06:44 - [] D -- C:\Arquivos de programas\SIGTAP O43 - CFD: 2014/11/28 12:52:32 - [] D -- C:\Arquivos de programas\Suporte Pharmanet O43 - CFD: 2015/03/20 14:03:29 - [] D -- C:\Arquivos de programas\TeamViewer O43 - CFD: 2014/03/24 14:32:15 - [0] HD -- C:\Arquivos de programas\Uninstall Information O43 - CFD: 2014/03/26 14:06:42 - [0] D -- C:\Arquivos de programas\v9Soft O43 - CFD: 2014/03/31 15:52:17 - [] D -- C:\Arquivos de programas\VIA O43 - CFD: 2015/02/11 13:37:27 - [] D -- C:\Arquivos de programas\VideoLAN O43 - CFD: 2015/09/30 13:11:14 - [] D -- C:\Arquivos de programas\Windows Media Player O43 - CFD: 2015/09/30 13:11:30 - [] D -- C:\Arquivos de programas\Windows NT O43 - CFD: 2014/03/24 13:35:05 - [0] HD -- C:\Arquivos de programas\WindowsUpdate O43 - CFD: 2015/05/18 08:08:48 - [] D -- C:\Arquivos de programas\WinRAR O43 - CFD: 2014/03/24 13:36:11 - [] D -- C:\Arquivos de programas\xerox O43 - CFD: 2015/05/12 11:26:59 - [] D -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\7-Zip O43 - CFD: 2014/12/01 07:09:42 - [] RD -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\Acessórios O43 - CFD: 2015/04/28 13:55:08 - [] D -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\DAEMON Tools Lite O43 - CFD: 2014/11/26 15:25:45 - [] D -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\Datasus O43 - CFD: 2014/08/12 07:28:27 - [] D -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\eSUS-AB-CDS O43 - CFD: 2014/03/24 13:35:59 - [] RD -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\Ferramentas administrativas O43 - CFD: 2014/11/06 12:48:13 - [] D -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\Firebird 1.5 O43 - CFD: 2015/07/31 14:41:00 - [] D -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\Google Chrome O43 - CFD: 2015/09/28 10:23:26 - [] D -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\Gpro Organiser O43 - CFD: 2014/03/24 08:55:21 - [] RD -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\Inicializar O43 - CFD: 2015/05/18 08:33:53 - [] D -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\Java O43 - CFD: 2014/03/24 13:33:34 - [] RD -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\Jogos O43 - CFD: 2015/08/17 14:48:10 - [] D -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\Malwarebytes Anti-Malware O43 - CFD: 2014/07/14 08:02:41 - [] D -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\Microsoft Office O43 - CFD: 2015/05/13 09:08:59 - [] D -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\Remo Repair RAR O43 - CFD: 2015/03/20 14:02:58 - [] D -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\TeamViewer 10 O43 - CFD: 2015/06/09 16:09:43 - [] D -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\Transmissor DATASUS O43 - CFD: 2015/02/11 13:37:56 - [] D -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\VideoLAN O43 - CFD: 2014/11/28 12:52:32 - [] D -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\Visualizador de Relatórios QRP O43 - CFD: 2015/05/18 08:08:42 - [] D -- C:\Documents and Settings\All Users\Menu Iniciar\Programas\WinRAR O43 - CFD: 2015/05/20 07:48:35 - [] D -- C:\Documents and Settings\All Users\Dados de aplicativos\Adobe O43 - CFD: 2015/05/12 14:41:13 - [] D -- C:\Documents and Settings\All Users\Dados de aplicativos\AMMYY O43 - CFD: 2015/05/15 11:10:28 - [] D -- C:\Documents and Settings\All Users\Dados de aplicativos\AVAST Software O43 - CFD: 2015/04/28 13:54:55 - [] D -- C:\Documents and Settings\All Users\Dados de aplicativos\DAEMON Tools Lite O43 - CFD: 2015/08/17 14:48:06 - [] D -- C:\Documents and Settings\All Users\Dados de aplicativos\Malwarebytes O43 - CFD: 2015/08/07 14:23:56 - [] SD -- C:\Documents and Settings\All Users\Dados de aplicativos\Microsoft O43 - CFD: 2014/07/22 10:11:21 - [] D -- C:\Documents and Settings\All Users\Dados de aplicativos\Microsoft Help O43 - CFD: 2015/05/18 09:32:37 - [] D -- C:\Documents and Settings\All Users\Dados de aplicativos\Sun O43 - CFD: 2015/05/19 15:47:12 - [] D -- C:\Arquivos de programas\Arquivos comuns\Adobe O43 - CFD: 2015/02/23 15:25:13 - [0] D -- C:\Arquivos de programas\Arquivos comuns\Config O43 - CFD: 2014/04/10 08:58:19 - [] D -- C:\Arquivos de programas\Arquivos comuns\DESIGNER O43 - CFD: 2014/03/31 15:51:48 - [] D -- C:\Arquivos de programas\Arquivos comuns\InstallShield O43 - CFD: 2015/08/17 15:41:17 - [] D -- C:\Arquivos de programas\Arquivos comuns\Java O43 - CFD: 2014/07/22 10:11:11 - [] D -- C:\Arquivos de programas\Arquivos comuns\Microsoft Shared O43 - CFD: 2014/03/24 13:34:32 - [] D -- C:\Arquivos de programas\Arquivos comuns\MSSoap O43 - CFD: 2014/03/24 08:55:46 - [] D -- C:\Arquivos de programas\Arquivos comuns\ODBC O43 - CFD: 2014/03/24 13:34:36 - [] D -- C:\Arquivos de programas\Arquivos comuns\Serviços O43 - CFD: 2014/03/24 08:55:43 - [] D -- C:\Arquivos de programas\Arquivos comuns\SpeechEngines O43 - CFD: 2014/04/10 08:56:23 - [] D -- C:\Arquivos de programas\Arquivos comuns\System O43 - CFD: 2015/05/19 15:49:07 - [] D -- C:\Documents and Settings\User\Dados de aplicativos\Adobe O43 - CFD: 2014/08/12 07:28:46 - [] D -- C:\Documents and Settings\User\Dados de aplicativos\Apple Computer O43 - CFD: 2014/08/06 07:34:35 - [0] D -- C:\Documents and Settings\User\Dados de aplicativos\baidu O43 - CFD: 2015/08/12 08:33:16 - [] D -- C:\Documents and Settings\User\Dados de aplicativos\DAEMON Tools Lite O43 - CFD: 2014/03/28 16:51:33 - [] D -- C:\Documents and Settings\User\Dados de aplicativos\Dataus RJ O43 - CFD: 2015/09/28 11:21:05 - [] D -- C:\Documents and Settings\User\Dados de aplicativos\GO O43 - CFD: 2014/03/24 14:32:16 - [] D -- C:\Documents and Settings\User\Dados de aplicativos\Identities O43 - CFD: 2015/09/30 08:47:07 - [] SD -- C:\Documents and Settings\User\Dados de aplicativos\Microsoft O43 - CFD: 2014/11/26 14:25:49 - [] D -- C:\Documents and Settings\User\Dados de aplicativos\Sun O43 - CFD: 2014/08/08 07:41:21 - [] D -- C:\Documents and Settings\User\Dados de aplicativos\TeamViewer O43 - CFD: 2015/09/30 10:59:44 - [] D -- C:\Documents and Settings\User\Dados de aplicativos\vlc O43 - CFD: 2014/03/27 13:51:15 - [] D -- C:\Documents and Settings\User\Dados de aplicativos\WinRAR O43 - CFD: 2015/10/01 16:40:09 - [] D -- C:\Documents and Settings\User\Dados de aplicativos\ZHP O43 - CFD: 2015/05/19 15:48:56 - [] D -- C:\Documents and Settings\User\Configurações locais\Dados de aplicativos\Adobe O43 - CFD: 2014/09/17 14:46:39 - [] D -- C:\Documents and Settings\User\Configurações locais\Dados de aplicativos\Apple Computer O43 - CFD: 2014/07/17 07:15:01 - [0] D -- C:\Documents and Settings\User\Configurações locais\Dados de aplicativos\cache O43 - CFD: 2015/08/25 16:58:54 - [] D -- C:\Documents and Settings\User\Configurações locais\Dados de aplicativos\Downloaded Installations O43 - CFD: 2015/07/29 09:02:58 - [] D -- C:\Documents and Settings\User\Configurações locais\Dados de aplicativos\Google O43 - CFD: 2014/03/31 16:05:57 - [] D -- C:\Documents and Settings\User\Configurações locais\Dados de aplicativos\Identities O43 - CFD: 2015/06/10 09:12:22 - [] D -- C:\Documents and Settings\User\Configurações locais\Dados de aplicativos\Microsoft O43 - CFD: 2014/04/10 08:56:09 - [0] D -- C:\Documents and Settings\User\Configurações locais\Dados de aplicativos\Microsoft Help O43 - CFD: 2014/06/30 15:17:49 - [] D -- C:\Documents and Settings\User\Configurações locais\Dados de aplicativos\PCHealth O43 - CFD: 2015/05/18 08:33:59 - [] D -- C:\Documents and Settings\User\Configurações locais\Dados de aplicativos\Sun O43 - CFD: 2015/05/19 15:49:07 - [] D -- C:\Documents and Settings\User\Configurações locais\Dados de aplicativos\Temp O43 - CFD: 2015/02/23 15:18:58 - [] RD -- C:\Documents and Settings\User\Menu Iniciar\Programas\Ferramentas administrativas O43 - CFD: 2015/05/14 16:12:40 - [0] D -- C:\Documents and Settings\User\Menu Iniciar\Programas\Inicializar O43 - CFD: 2015/05/18 08:08:42 - [] D -- C:\Documents and Settings\User\Menu Iniciar\Programas\WinRAR ---\\ Softwares de proteçao do sistema (Supérfluo) (1) - 0s O106 - SIOI: Offline Files Menu [Offline Files] - {750fdf0e-2a26-11d1-a3ea-080036587f03}. (.Microsoft Corporation - Interface de usuário de cache do cliente.) -- C:\WINDOWS\system32\cscui.dll © ---\\ Lista dos drivers do sistema (37) - 2s O58 - SDL:2008/04/14 09:00:00 A . (.RAVISENT Technologies Inc. - CineMaster C 1.2 WDM Main Driver.) -- C:\WINDOWS\System32\drivers\cinemst2.sys [262528] © O58 - SDL:2008/04/14 09:00:00 A . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\System32\drivers\cpqdap01.sys [11776] © O58 - SDL:2008/04/14 09:00:00 A . (.Microsoft Corp., Veritas Software - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\drivers\dmboot.sys [800000] © O58 - SDL:2008/04/14 09:00:00 A . (.Microsoft Corp., Veritas Software - NT Disk Manager I/O Driver.) -- C:\WINDOWS\System32\drivers\dmio.sys [153984] © O58 - SDL:2008/04/14 09:00:00 A . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\drivers\dmload.sys [5888] © O58 - SDL:2015/04/28 13:55:10 A . (.Disc Soft Ltd - DAEMON Tools Lite Virtual SCSI Bus Driver.) -- C:\WINDOWS\System32\drivers\dtlitescsibus.sys [25104] © O58 - SDL:2015/05/14 09:48:24 A . (.Avast Software s.r.o. - avast! self protection module.) -- C:\WINDOWS\System32\drivers\fcqjksho.sys [427992] © O58 - SDL:2008/04/14 09:00:00 A . (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\System32\drivers\hdaudbus.sys [144384] O58 - SDL:2009/03/09 09:36:58 A . (.Intel Corporation - Intel Graphics Miniport Driver.) -- C:\WINDOWS\System32\drivers\igxpmp32.sys [6278016] © O58 - SDL:2009/08/05 14:16:42 A . (.Atheros Communications, Inc. - Atheros AR8121/AR8113/AR8114 PCI-E Ethernet.) -- C:\WINDOWS\System32\drivers\l1e51x86.sys [39424] © O58 - SDL:2015/06/18 08:41:36 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\mbam.sys [23256] © O58 - SDL:2015/06/18 08:41:46 A . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\WINDOWS\System32\drivers\mbamchameleon.sys [121560] © O58 - SDL:2015/10/01 10:42:31 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [98520] © O58 - SDL:2008/02/14 14:12:00 RA . (.Creative Technology Ltd. - Creative WDM Audio Driver (32-bit).) -- C:\WINDOWS\System32\drivers\monfilt.sys [1389056] © O58 - SDL:2008/04/14 09:00:00 A . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\System32\drivers\nikedrv.sys [12032] © O58 - SDL:2008/04/14 09:00:00 A . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Lib.) -- C:\WINDOWS\System32\drivers\ptilink.sys [17792] © O58 - SDL:2008/04/14 09:00:00 A . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\System32\drivers\rio8drv.sys [12032] © O58 - SDL:2008/04/14 09:00:00 A . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\System32\drivers\riodrv.sys [12032] © O58 - SDL:2008/04/14 09:00:00 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\WINDOWS\System32\drivers\secdrv.sys [20480] © O58 - SDL:2008/04/14 09:00:00 A . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\System32\drivers\tsbvcap.sys [21376] © O58 - SDL:2008/04/14 09:00:00 A . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\System32\drivers\vdmindvd.sys [58112] © O58 - SDL:2009/05/08 11:22:28 RA . (.VIA Technologies, Inc. - VIA High Definition Audio Function Driver.) -- C:\WINDOWS\System32\drivers\viahduaa.sys [1358720] © O58 - SDL:2008/04/14 09:00:00 A . (...) -- C:\WINDOWS\System32\ansi.sys [9032] O58 - SDL:2008/04/14 09:00:00 A . (...) -- C:\WINDOWS\System32\country.sys [27097] O58 - SDL:2008/04/14 09:00:00 A . (...) -- C:\WINDOWS\System32\himem.sys [4896] O58 - SDL:2008/04/14 09:00:00 A . (...) -- C:\WINDOWS\System32\key01.sys [42809] O58 - SDL:2008/04/14 09:00:00 A . (...) -- C:\WINDOWS\System32\keyboard.sys [42537] O58 - SDL:2008/04/14 09:00:00 A . (...) -- C:\WINDOWS\System32\ntdos.sys [27900] O58 - SDL:2008/04/14 09:00:00 A . (...) -- C:\WINDOWS\System32\ntdos404.sys [29146] O58 - SDL:2008/04/14 09:00:00 A . (...) -- C:\WINDOWS\System32\ntdos411.sys [29370] O58 - SDL:2008/04/14 09:00:00 A . (...) -- C:\WINDOWS\System32\ntdos412.sys [29274] O58 - SDL:2008/04/14 09:00:00 A . (...) -- C:\WINDOWS\System32\ntdos804.sys [29146] O58 - SDL:2008/04/14 09:00:00 A . (...) -- C:\WINDOWS\System32\ntio.sys [33984] O58 - SDL:2008/04/14 09:00:00 A . (...) -- C:\WINDOWS\System32\ntio404.sys [34560] O58 - SDL:2008/04/14 09:00:00 A . (...) -- C:\WINDOWS\System32\ntio411.sys [35648] O58 - SDL:2008/04/14 09:00:00 A . (...) -- C:\WINDOWS\System32\ntio412.sys [35424] O58 - SDL:2008/04/14 09:00:00 A . (...) -- C:\WINDOWS\System32\ntio804.sys [34560] ---\\ Últimos ficheiros alterados ou criados (Utilizador) (11) - 8s O61 - LFC: 2015/09/30 08:13:06 A . (..) -- C:\Documents and Settings\User\Meus documentos\Downloads\Firefox Setup Stub 41.0.exe [317496] O61 - LFC: 2015/09/30 14:28:31 A . (..) -- C:\Documents and Settings\User\Meus documentos\Downloads\JRT (1).exe [0] O61 - LFC: 2015/09/30 14:49:29 A . (..) -- C:\Documents and Settings\User\Meus documentos\Downloads\JRT (2).exe [0] O61 - LFC: 2015/09/30 14:55:18 A . (..) -- C:\Documents and Settings\User\Meus documentos\Downloads\zoek (1).exe [1391104] O61 - LFC: 2015/09/30 14:55:18 A . (..) -- C:\Documents and Settings\User\Desktop\zoek (1).exe [1382912] O61 - LFC: 2015/09/30 06:41:31 A . (..) -- C:\Documents and Settings\User\Configurações locais\temp\zoek.bat [49152] O61 - LFC: 2015/09/30 15:49:01 A . (..) -- C:\Documents and Settings\User\Configurações locais\temp\zoekrun.bat [94] O61 - LFC: 2015/09/28 20:33:01 A . (..) -- C:\Documents and Settings\User\Configurações locais\temp\jrt\get.bat [18094] O61 - LFC: 2015/09/28 19:16:29 A . (..) -- C:\Documents and Settings\User\Configurações locais\temp\jrt\misc.bat [150562] O61 - LFC: 2015/09/28 18:14:56 A . (..) -- C:\Documents and Settings\User\Configurações locais\temp\jrt\runvalues.bat [12470] O61 - LFC: 2015/10/01 16:37:40 A . (..) -- C:\Documents and Settings\User\Configurações locais\Dados de aplicativos\Google\Chrome\User Data\ev_hashes_whitelist.bin [674082] ---\\ Associações Shell Spawning (9) - 0s O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL comum do Shell do Windows.) -- C:\WINDOWS\system32\shell32.dll © O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Arquivos de programas\Internet Explorer\iexplore.exe © O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\WINDOWS\system32\wscript.exe © O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Editor do Registro.) -- C:\WINDOWS\regedit.exe © O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S ---\\ Menu de inicialização Internet (9) - 0s O68 - StartMenuInternet: <>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Arquivos de programas\Google\Chrome\Application\chrome.exe © O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Arquivos de programas\Google\Chrome\Application\chrome.exe © O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Arquivos de programas\Internet Explorer\iexplore.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Arquivos de programas\Google\Chrome\Application\chrome.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\system32\ie4uinit.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Arquivos de programas\Google\Chrome\Application\chrome.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\system32\ie4uinit.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Arquivos de programas\Google\Chrome\Application\chrome.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\system32\ie4uinit.exe © ---\\ Pesquisa de infeção nos navegadores da Internet (1) - 0s O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - () - http://search.live.com/ ---\\ Listagem dos serviços iniciados pelo Svchost (50) - 0s O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Serviço de instalação do software.) -- C:\WINDOWS\system32\appmgmts.dll [172032] © O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\WINDOWS\system32\audiosrv.dll [42496] © O83 - Search Svchost Services: Browser (Browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\WINDOWS\system32\browser.dll [77824] © O83 - Search Svchost Services: CryptSvc (CryptSvc) . (.Microsoft Corporation - Cryptographic Services.) -- C:\WINDOWS\system32\cryptsvc.dll [62464] © O83 - Search Svchost Services: DMServer (DMServer) . (.Microsoft Corp. - Dll do serviço do Gerenciador de discos lóg.) -- C:\WINDOWS\system32\dmserver.dll [23552] © O83 - Search Svchost Services: DHCP (DHCP) . (.Microsoft Corporation - Serviço do Cliente DHCP.) -- C:\WINDOWS\system32\dhcpcsvc.dll [126976] © O83 - Search Svchost Services: ERSvc (ERSvc) . (.Microsoft Corporation - Windows Error Reporting Service.) -- C:\WINDOWS\system32\ersvc.dll [23040] © O83 - Search Svchost Services: EventSystem (EventSystem) . (.Microsoft Corporation - .) -- C:\WINDOWS\system32\es.dll [246272] © O83 - Search Svchost Services: FastUserSwitchingCompatibility (FastUserSwitchingCompatibility) . (.Microsoft Corporation - DLL de serviços do Shell do Windows.) -- C:\WINDOWS\system32\shsvcs.dll [135168] © O83 - Search Svchost Services: HidServ (HidServ) . (...) -- C:\WINDOWS\System32\hidserv.dll [0] O83 - Search Svchost Services: LanmanServer (LanmanServer) . (.Microsoft Corporation - Server Service DLL.) -- C:\WINDOWS\system32\srvsvc.dll [96768] © O83 - Search Svchost Services: LanmanWorkstation (LanmanWorkstation) . (.Microsoft Corporation - Workstation Service DLL.) -- C:\WINDOWS\system32\wkssvc.dll [132096] © O83 - Search Svchost Services: Messenger (Messenger) . (.Microsoft Corporation - NT Messenger Service.) -- C:\WINDOWS\system32\msgsvc.dll [33792] © O83 - Search Svchost Services: Netman (Netman) . (.Microsoft Corporation - Gerenciador de conexões de rede.) -- C:\WINDOWS\system32\netman.dll [198144] © O83 - Search Svchost Services: Nla (Nla) . (.Microsoft Corporation - Fornecedor de serviços do Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll [247808] © O83 - Search Svchost Services: Ntmssvc (Ntmssvc) . (.Microsoft Corporation - Gerenciador de armazenamento removível.) -- C:\WINDOWS\system32\ntmssvc.dll [437248] © O83 - Search Svchost Services: Nwsapagent (Nwsapagent) . (.Microsoft Corporation - SAP Agent DLL.) -- C:\WINDOWS\system32\ipxsap.dll [66560] © O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\WINDOWS\system32\rasauto.dll [88576] © O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\WINDOWS\system32\rasmans.dll [186368] © O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\WINDOWS\system32\mprdim.dll [53248] © O83 - Search Svchost Services: Schedule (Schedule) . (.Microsoft Corporation - Mecanismo do 'Agendador de tarefas'.) -- C:\WINDOWS\system32\schedsvc.dll [193536] © O83 - Search Svchost Services: Seclogon (Seclogon) . (.Microsoft Corporation - DLL de serviço de logon secundário.) -- C:\WINDOWS\system32\seclogon.dll [18944] © O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\WINDOWS\system32\sens.dll [39424] © O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Componentes do Microsoft NAT Helper.) -- C:\WINDOWS\system32\ipnathlp.dll [331264] © O83 - Search Svchost Services: SRService (SRService) . (.Microsoft Corporation - Serviço de restauração do sistema.) -- C:\WINDOWS\system32\srsvc.dll [171520] © O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Servidor de telefonia do Microsoft(R) Windo.) -- C:\WINDOWS\system32\tapisrv.dll [249856] © O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL de serviços do Shell do Windows.) -- C:\WINDOWS\system32\shsvcs.dll [135168] © O83 - Search Svchost Services: TrkWks (TrkWks) . (.Microsoft Corporation - Distributed Link Tracking Client.) -- C:\WINDOWS\system32\trkwks.dll [90112] © O83 - Search Svchost Services: W32Time (W32Time) . (.Microsoft Corporation - Windows Time Service.) -- C:\WINDOWS\system32\w32time.dll [176128] © O83 - Search Svchost Services: WZCSVC (WZCSVC) . (.Microsoft Corporation - Serviço de configuração zero sem fio.) -- C:\WINDOWS\system32\wzcsvc.dll [483840] © O83 - Search Svchost Services: Wmi (Wmi) . (.Microsoft Corporation - API de base do Windows 32 avançada.) -- C:\WINDOWS\system32\advapi32.dll [683520] © O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\wmisvc.dll [145408] © O83 - Search Svchost Services: wscsvc (wscsvc) . (.Microsoft Corporation - Windows Security Center Service.) -- C:\WINDOWS\system32\wscsvc.dll [80896] © O83 - Search Svchost Services: xmlprov (xmlprov) . (.Microsoft Corporation - Network Provisioning Service.) -- C:\WINDOWS\system32\xmlprov.dll [129024] © O83 - Search Svchost Services: napagent (napagent) . (.Microsoft Corporation - Tempo de Execução de Serviço de Agente de Q.) -- C:\WINDOWS\system32\qagentrt.dll [292864] © O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Serviço de Gerenciamento de Chaves.) -- C:\WINDOWS\system32\kmsvc.dll [61440] © O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Serviço de transferência inteligente de pla.) -- C:\WINDOWS\system32\qmgr.dll [409088] © O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update AutoUpdate Service.) -- C:\WINDOWS\system32\wuauserv.dll [6656] © O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - DLL de serviços do Shell do Windows.) -- C:\WINDOWS\system32\shsvcs.dll [135168] © O83 - Search Svchost Services: helpsvc (helpsvc) . (.Microsoft Corporation - Microsoft PCHealth Service Holder.) -- C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll [38400] © O83 - Search Svchost Services: WmdmPmSN (WmdmPmSN) . (.Microsoft Corporation - Provedor de Serviços do Dispositivo de Mídi.) -- C:\WINDOWS\system32\mspmsnsv.dll [52736] © O83 - Search Svchost Services: pcxjzs (pcxjzs) . (...) -- C:\WINDOWS\system32\bohwhwb.dll [0] O83 - Search Svchost Services: uxixqdqs (uxixqdqs) . (...) -- C:\WINDOWS\system32\hgljutfv.dll [0] O83 - Search Svchost Services: kzefzyoe (kzefzyoe) . (...) -- C:\WINDOWS\system32\hgljutfv.dll [0] O83 - Search Svchost Services: knnpz (knnpz) . (...) -- C:\WINDOWS\system32\hgljutfv.dll [0] O83 - Search Svchost Services: rjxdhgryf (rjxdhgryf) . (...) -- C:\WINDOWS\system32\hgljutfv.dll [0] O83 - Search Svchost Services: ocdulpm (ocdulpm) . (...) -- C:\WINDOWS\system32\hgljutfv.dll [0] O83 - Search Svchost Services: zoekch (zoekch) . (...) -- C:\WINDOWS\system32\hgljutfv.dll [0] O83 - Search Svchost Services: tndjgq (tndjgq) . (...) -- C:\WINDOWS\system32\hgljutfv.dll [0] O83 - Search Svchost Services: sqmds (sqmds) . (...) -- C:\WINDOWS\system32\hgljutfv.dll [0] ---\\ Serviços não Microsoft (SR=Executados, SS=Parados) (11) - 6s SS - Demand [2015/07/17 09:08:30] [ 716800] Disc Soft Lite Bus Service (Disc Soft Lite Bus Service) . (...) - C:\Arquivos de programas\DAEMON Tools Lite\DiscSoftBusService.exe SS - Auto [2015/07/31 14:40:36] [ 185672] Serviço do Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Arquivos de programas\Google\Update\GoogleUpdate.exe © SS - Demand [2015/07/31 14:40:36] [ 185672] Serviço do Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Arquivos de programas\Google\Update\GoogleUpdate.exe © SR - Auto [2015/08/17 15:40:53] [ 153376] Java Quick Starter (JavaQuickStarterService) . (.Sun Microsystems, Inc..) - C:\Arquivos de programas\Java\jre6\bin\jqs.exe © SS - Auto [2015/06/18 08:39:50] [ 1207608] (MBAMService) . (.Malwarebytes Corporation.) - C:\Arquivos de programas\Malwarebytes Anti-Malware\mbamservice.exe © SS - Demand [2015/05/14 16:02:11] [ 83968] Microsoft Office Groove Audit Service (Microsoft Office Groove Audit Service) . (...) - C:\Arquivos de programas\Microsoft Office\Office12\GrooveAuditService.exe SS - Demand [2015/05/14 16:01:17] [ 260096] Microsoft Office Diagnostics Service (odserv) . (...) - C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\OFFICE12\ODSERV.EXE SS - Demand [2015/05/14 16:01:21] [ 139264] Office Source Engine (ose) . (...) - C:\Arquivos de programas\Arquivos comuns\Microsoft Shared\Source Engine\OSE.EXE SR - Auto [2013/07/03 17:16:26] [ 929792] PaperCut Print Logger (PCPrintLogger) . (.PaperCut Software International Pty Ltd.) - C:\Arquivos de programas\PaperCut Print Logger\pcpl.exe SR - Auto [2015/02/17 06:05:26] [ 5436176] TeamViewer 10 (TeamViewer) . (.TeamViewer GmbH.) - C:\Arquivos de programas\TeamViewer\TeamViewer_Service.exe © ---\\ Scâner Aditional (1) - 0s ~ Nenhum ítem malicioso o desnecessários foi encontrado. ---\\ Informações complémentaires do módulos (1) - 0s ~ Nenhum ítem malicioso o desnecessários foi encontrado. ~ End of the scan, 12513 items in 44 seconds (533)(0)()