~ ZHPDiag v2016.1.8.8 Por Nicolas Coolman (2016/01/08) ~ iniciado por JoséCarlos1057 (Administrator) (2016/01/09 00:51:11) ~ Site: http://www.nicolascoolman.fr ~ Facebook: https://www.facebook.com/nicolascoolman1 ~ Status da versão: Version OK ~ Modo: Scanner ~ Relatório: C:\Users\JoséCarlos1057\Desktop\ZHPDiag.txt ~ Relatório: C:\Users\JoséCarlos1057\AppData\Roaming\ZHP\ZHPDiag.txt ~ UAC: Activate ~ Inicialização do sistema: Normal (Normal boot) Windows 10 Pro, 64-bit (Build 10586) ---\\ Navegadores Internet (2) - 0s GCIE: Google Chrome v46.0.2490.86 MSIE: Internet Explorer v11.20.10586.0 ---\\ Informações sobre os produtos Windows (3) - 0s ~ Windows Server License Manager Script : OK ~ Licence Script File Génération : OK Windows Automatic Updates : OK ---\\ Softwares de proteçao do sistema (3) - 7s Avast Internet Security v11.1.2245 Malwarebytes Anti-Malware versão 2.2.0.1024 Windows Defender (Deactivate) ---\\ Softwares d'optimização do sistema (1) - 7s CCleaner v5.13 ---\\ Informações sobre o sistema (6) - 0s ~ Operating System: Intel64 Family 6 Model 15 Stepping 6, GenuineIntel ~ Operating System: 64-bit ~ Boot mode: Normal (Normal boot) Total RAM: 2095.156 MB (8% free) System Restore: Activé (Enable) System drive C: has 257 GB () free of 304 GB ---\\ Modo de conexão ao sistema (3) - 0s ~ Computer Name: TOSHIBAA100 ~ User Name: JoséCarlos1057 ~ Logged in as Administrator ---\\ Enumeração das unidades dos discos (2) - 0s ~ Drive C: has 257 GB free of 304 GB (System) ~ Drive D: has 911 GB free of 953 GB ---\\ Estado do Centro de Segurança do Windows (7) - 0s [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK ---\\ Pesquisa particular de ficheiros genéricos (24) - 5s [MD5.4572EB3DDBD2DFA10DE7A037A6CC6D53] - 30/10/2015 - (.Microsoft Corporation - Explorador do Windows.) -- C:\WINDOWS\Explorer.exe [4502864] =>.Microsoft Windows® [MD5.0DCB89B1F3689BC6262FF30BBD603171] - 30/10/2015 - (.Microsoft Corporation - Processo anfitrião do Windows (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [59392] =>.Microsoft Corporation [MD5.CAD491DD9EC00BB841EA407D9C498C4A] - 30/10/2015 - (.Microsoft Corporation - Aplicação de Arranque do Windows.) -- C:\WINDOWS\System32\Wininit.exe [290856] =>.Microsoft Windows Publisher® [MD5.AB4C1A9F37C0B8467AC923ED4AD727D6] - 22/11/2015 - (.Microsoft Corporation - Extensões da Internet para Win32.) -- C:\WINDOWS\System32\wininet.dll [2647552] =>.Microsoft Corporation [MD5.46C8E60DEDBDA95C102D1B2E74676578] - 30/10/2015 - (.Microsoft Corporation - Aplicação de Início de Sessão do Windows.) -- C:\WINDOWS\System32\Winlogon.exe [584704] =>.Microsoft Corporation [MD5.9EEAA1B69DC3FD620AE576CC8F4147DC] - 30/10/2015 - (.Microsoft Corporation - Biblioteca de Licenciamento de Software.) -- C:\WINDOWS\System32\sppcomapi.dll [430592] =>.Microsoft Corporation [MD5.E7B524818100B0FDE2B057C74B0C0DCD] - 30/10/2015 - (.Microsoft Corporation - DLL da API de cliente de DNS.) -- C:\WINDOWS\System32\dnsapi.dll [686984] =>.Microsoft Windows® [MD5.2796C0957F6F05A528DD64B8591371B6] - 30/10/2015 - (.Microsoft Corporation - DLL da API de cliente de DNS.) -- C:\WINDOWS\Syswow64\dnsapi.dll [535088] =>.Microsoft Windows® [MD5.70148EFA9A562E7185B75BBE7D376BF7] - 17/11/2015 - (.Microsoft Corporation - Controlador de Função Auxiliar para Winsock.) -- C:\WINDOWS\System32\drivers\AFD.sys [578912] =>.Microsoft Windows® [MD5.492B99D2E3D5D7BFD5F0AE1BE7BD37DD] - 30/10/2015 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [28512] =>.Microsoft Windows® [MD5.7F9C7226D743B232907ED2537B8A574F] - 30/10/2015 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [92672] =>.Microsoft Corporation [MD5.82D97776BF982AA143BDC7DFB5054EA8] - 30/10/2015 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [173568] =>.Microsoft Corporation [MD5.C9478D7DB7BE5D7ACE65CB1167F07320] - 30/10/2015 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [148480] =>.Microsoft Corporation [MD5.84BC034B6BB763733C1949B7B9BAF976] - 30/10/2015 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [79872] =>.Microsoft Corporation [MD5.53FDD9E69189E546DE4740F8C4D8AB2F] - 30/10/2015 - (.Microsoft Corporation - Controlador de porta i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [114688] =>.Microsoft Corporation [MD5.9E5E8F2A1996F23B7E9687846AA81B01] - 30/10/2015 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [143360] =>.Microsoft Corporation [MD5.61F9F27A8C3D7BCD287FE98A440421CE] - 30/10/2015 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [430944] =>.Microsoft Windows® [MD5.F51C02D992A8D6BC5EC4D990F227D4C7] - 30/10/2015 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [279552] =>.Microsoft Corporation [MD5.EFEFC245B884B1BE0401931398DCD707] - 01/12/2015 - (.Microsoft Corporation - Controlador de Sistema de Ficheiros NT.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2152800] =>.Microsoft Windows® [MD5.7D0FC96264C0F8F2C1321E33E8EB646C] - 30/10/2015 - (.Microsoft Corporation - Controlador de porta paralela.) -- C:\WINDOWS\System32\drivers\Parport.sys [96768] =>.Microsoft Corporation [MD5.381B8F2311A0375676B635EA5E7C8AB0] - 30/10/2015 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [104960] =>.Microsoft Corporation [MD5.1DC2CC74B51E4DC4CD5A20C1021E4010] - 30/10/2015 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [173056] =>.Microsoft Corporation [MD5.91D3F2A6253EF83EFBD7903028F58C4D] - 17/11/2015 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [118624] =>.Microsoft Windows® [MD5.E1F91A727A04C9F8199D04FF3BBBF63C] - 30/10/2015 - (.Microsoft Corporation - Controlador de cópia sombra do volume.) -- C:\WINDOWS\System32\drivers\volsnap.sys [414560] =>.Microsoft Windows® ---\\ Serviços NT não Microsoft e não desativados (6) - 6s O23 - Service: Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe =>.Apple Inc.® O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe =>.AVAST Software a.s.® O23 - Service: Avast Firewall (avast! Firewall) . (.AVAST Software - avast! firewall service.) - C:\Program Files\AVAST Software\Avast\afwServ.exe =>.AVAST Software a.s.® O23 - Service: Serviço de Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.® O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.Hewlett-Packard Company - HP Support Solutions Framework Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe =>.Hewlett-Packard Company® O23 - Service: (PCFasterSvc_{PCFaster_6.0.0.0}) . (.Baidu Inc. - Baidu Cleaner Service.) - C:\Program Files (x86)\Baidu Cleaner\BCleanerSvc.exe {5FAEE9E83F32948F3B2040AC6DF0145C} ---\\ Tarefas planificadas automaticamente (25) - 7s [MD5.6864894A47B6D2BE8995D07FDFFCCD7E] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [1482040] =>.AVAST Software a.s.® [MD5.5E793E82E1E2A1765B44CBD1A0D69638] [APT] [Baidu Cleaner Service] (.Baidu Inc..) -- C:\Program Files (x86)\Baidu Cleaner\BCleanerSvc.exe [1697896] {5FAEE9E83F32948F3B2040AC6DF0145C} [MD5.8D0F67946EDB64DF0DC06239309CFEE4] [APT] [Baidu Cleaner Update] (.Baidu Inc..) -- C:\Program Files (x86)\Baidu Cleaner\Updater.exe [1365608] {5FAEE9E83F32948F3B2040AC6DF0145C} [MD5.8025F05E5A51FD499584AFD7A688423C] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [6602152] =>.Piriform Ltd® [MD5.053EEEE1ABAE53F044F1E386E22AE525] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] =>.Google Inc® [MD5.053EEEE1ABAE53F044F1E386E22AE525] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] =>.Google Inc® [MD5.00000000000000000000000000000000] [APT] [GoogleUpdateTaskUserS-1-5-21-3136738229-3321464536-2784466607-1003Core] (...) -- C:\Users\Jos‚Carlos1057\AppData\Local\Google\Update\GoogleUpdate.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [GoogleUpdateTaskUserS-1-5-21-3136738229-3321464536-2784466607-1003UA] (...) -- C:\Users\Jos‚Carlos1057\AppData\Local\Google\Update\GoogleUpdate.exe (.not file.) [0] [MD5.3DA2B70325A5947E981387DB9A9BD843] [APT] [HPCeeScheduleForJos‚Carlos1057] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [96568] =>.Hewlett-Packard Company® [MD5.4F0C5E5E8CE953CE211D5F6191AE3003] [APT] [SafeZone scheduled Autoupdate 1450482532] (.Avast Software.) -- C:\Program Files\AVAST Software\SZBrowser\launcher.exe [728568] =>.AVAST Software s.r.o.® [MD5.BC41666FF68C364CD3EAA486E50C9270] [APT] [Apple\AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [563000] =>.Apple Inc.® [MD5.9117F29F3C71F1ACEE3FA58D7BE03D26] [APT] [Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA)] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [190504] =>.Hewlett-Packard Company® O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job [1044] =>.Google Inc. O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job [1048] =>.Google Inc. O39 - APT: GoogleUpdateTaskUserS-1-5-21-3136738229-3321464536-2784466607-1003Core - (...) -- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3136738229-3321464536-2784466607-1003Core.job [1026] (.Orphean.) O39 - APT: GoogleUpdateTaskUserS-1-5-21-3136738229-3321464536-2784466607-1003UA - (...) -- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3136738229-3321464536-2784466607-1003UA.job [1078] (.Orphean.) O39 - APT: avast! Emergency Update - (.AVAST Software.) -- C:\WINDOWS\System32\Tasks\avast! Emergency Update [4280] =>.AVAST Software O39 - APT: Baidu Cleaner Service - (.Baidu Inc..) -- C:\WINDOWS\System32\Tasks\Baidu Cleaner Service [2940] O39 - APT: Baidu Cleaner Update - (.Baidu Inc..) -- C:\WINDOWS\System32\Tasks\Baidu Cleaner Update [2994] O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\WINDOWS\System32\Tasks\CCleanerSkipUAC [2164] =>.Piriform Ltd O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore [3396] =>.Google Inc. O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA [3620] =>.Google Inc. O39 - APT: GoogleUpdateTaskUserS-1-5-21-3136738229-3321464536-2784466607-1003Core - (...) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3136738229-3321464536-2784466607-1003Core [3548] (.Orphean.) O39 - APT: GoogleUpdateTaskUserS-1-5-21-3136738229-3321464536-2784466607-1003UA - (...) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3136738229-3321464536-2784466607-1003UA [3816] (.Orphean.) O39 - APT: SafeZone scheduled Autoupdate 1450482532 - (.Avast Software.) -- C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1450482532 [3154] =>.AVAST Software ---\\ Processos lançados (2) - 8s [MD5.A7BFC2C5D570EC93720DABC8B85ADEF9] - (...) -- C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe [144384] [PID.5344] [MD5.0665ED990AF87C35FC031483CF941674] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\JoséCarlos1057\Desktop\ZHPDiag3.exe [2064896] [PID.8116] =>.Nicolas Coolman ---\\ Mozilla Firefox, Plugins,Arranque,Pesquisa,Extensões (1) - 2s P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Apple Inc..) -- C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll =>.Apple Inc. ---\\ Internet Explorer, Arranque, Pesquisa, Phishing (15) - 0s R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer ---\\ Internet Explorer, Gestão do Proxy (3) - 0s R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 ---\\ Análise das linhas, Carregamento Automático de programas (3) - 0s F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation F2 - REG:system.ini: VMApplet= ---\\ Redireção do ficheiro Hosts (1) - 0s ~ Le fichier hôte est sain (The hosts file is clean) (21) ---\\ Browser Helper Objects do navegador (5) - 1s O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll =>.Tonec Inc.® O2 - BHO: Lync Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} (Orphean) O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll =>.AVAST Software a.s.® O2 - BHO: SkypeIEPluginBHO [64Bits] - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll =>.Skype Software Sarl® O2 - BHO: Microsoft OneDrive for Business Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} (Orphean) ---\\ Aplicações iniciadas por registo & pastas (20) - 2s O4 - HKLM\..\Run: [NvCplDaemon] . (.Microsoft Corporation - Processo anfitrião do Windows (Rundll32).) -- C:\WINDOWS\System32\RUNDLL32.EXE =>.Microsoft Corporation O4 - HKLM\..\Run: [NvMediaCenter] . (.Microsoft Corporation - Processo anfitrião do Windows (Rundll32).) -- C:\WINDOWS\System32\RUNDLL32.EXE =>.Microsoft Corporation O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.) O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe =>.Apple Inc.® O4 - HKCU\..\Run: [Flvto Youtube Downloader] \FlvtoYoutubeDownloader.exe O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd® O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Instalador do Google.) -- C:\Users\JoséCarlos1057\AppData\Local\Google\Update\GoogleUpdate.exe =>.Google Inc® O4 - HKCU\..\Run: [Google Photos Backup] . (.Google, Inc - Google Photos Backup.) -- C:\Users\JoséCarlos1057\AppData\Local\Programs\Google\Google Photos Backup\Google Photos Backup.exe =>.Google Inc® O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.® O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe =>.AVAST Software a.s.® O4 - HKLM\..\Wow6432Node\Run: [Wondershare Helper Compact.exe] . (.Wondershare - Wondershare Studio.) -- C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe =>.Wondershare software CO., LIMITED® O4 - HKLM\..\Wow6432Node\Run: [DelaypluginInstall] . (...) -- C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe =>.Shenzhen Wondershare Information Technology Co., Ltd.® O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe =>.Hewlett-Packard Company® O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation® O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation® O4 - HKUS\S-1-5-21-3136738229-3321464536-2784466607-1003\..\Run: [Flvto Youtube Downloader] \FlvtoYoutubeDownloader.exe O4 - HKUS\S-1-5-21-3136738229-3321464536-2784466607-1003\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd® O4 - HKUS\S-1-5-21-3136738229-3321464536-2784466607-1003\..\Run: [Google Update] . (.Google Inc. - Instalador do Google.) -- C:\Users\JoséCarlos1057\AppData\Local\Google\Update\GoogleUpdate.exe =>.Google Inc® O4 - HKUS\S-1-5-21-3136738229-3321464536-2784466607-1003\..\Run: [Google Photos Backup] . (.Google, Inc - Google Photos Backup.) -- C:\Users\JoséCarlos1057\AppData\Local\Programs\Google\Google Photos Backup\Google Photos Backup.exe =>.Google Inc® O4 - HKUS\S-1-5-21-3136738229-3321464536-2784466607-1003\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.® ---\\ Alteração Dominio/Clientes DNS (2) - 0s O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2c30c8a2-b8ec-442f-ac9e-725b41c4d715}: DhcpNameServer = 192.168.1.1 ---\\ Protocolo adicional (27) - 1s O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Controlo ActiveX para transmissão em fluxo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\SysWOW64\inetcomm.dll =>.Microsoft Corporation O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation O18 - Handler: mso-minsb-roaming.16 [64Bits] - {83C25742-A9F7-49FB-9138-434302C88D07} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL =>.Microsoft Corporation® O18 - Handler: mso-minsb.16 [64Bits] - {42089D2D-912D-4018-9087-2B87803E93FB} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL =>.Microsoft Corporation® O18 - Handler: osf-roaming.16 [64Bits] - {42089D2D-912D-4018-9087-2B87803E93FB} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL =>.Microsoft Corporation® O18 - Handler: osf.16 [64Bits] - {5504BE45-A83B-4808-900A-3A5C36E7F77A} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL =>.Microsoft Corporation® O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: skypec2c [64Bits] - {91774881-D725-4E58-B298-07617B9B86A8} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll =>.Skype Software Sarl® O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll =>.Microsoft Corporation O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Controlo ActiveX para transmissão em fluxo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: windows.tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll =>.Microsoft Corporation O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation ---\\ Software instalados (64) - 13s O42 - Logiciel: 64 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM][64Bits] -- {FF21C3E6-97FD-474F-9518-8DCBE94C2854} =>.Hewlett-Packard O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {3540181E-340A-4E7A-B409-31663472B2F7} =>.Apple Inc. O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF} =>.Apple Inc. O42 - Logiciel: Avast Internet Security - (.AVAST Software.) [HKLM][64Bits] -- Avast =>.AVAST Software a.s.® O42 - Logiciel: B110 - (.Hewlett-Packard.) [HKLM][64Bits] -- {CC2917EA-96EC-41D1-9756-760C32AF6F12} =>.Hewlett-Packard O42 - Logiciel: Baidu Cleaner - (.Baidu, Inc..) [HKLM][64Bits] -- Baidu Cleaner {5FAEE9E83F32948F3B2040AC6DF0145C} =>.Baidu, Inc. O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {56DDDFB8-7F79-4480-89D5-25E1F52AB28F} =>.Apple Inc. O42 - Logiciel: BufferChm - (.Hewlett-Packard.) [HKLM][64Bits] -- {FA0FF682-CC70-4C57-93CD-E276F3E7537E} =>.Hewlett-Packard O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>.Piriform Ltd® O42 - Logiciel: Destinations - (.Hewlett-Packard.) [HKLM][64Bits] -- {BD7204BA-DD64-499E-9B55-6A282CDF4FA4} =>.Hewlett-Packard O42 - Logiciel: DeviceDiscovery - (.Hewlett-Packard.) [HKLM][64Bits] -- {1458BB78-1DC5-4BC0-B9A3-2B644F5A8105} =>.Hewlett-Packard O42 - Logiciel: File Shredder Ultra - (...) [HKLM][64Bits] -- File Shredder Ultra_is1 O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome =>.Google Inc® O42 - Logiciel: Google Photos Backup - (.Google, Inc..) [HKCU][64Bits] -- Google Photos Backup =>.Google Inc® O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc. O42 - Logiciel: GPBaseService2 - (.Hewlett-Packard.) [HKLM][64Bits] -- {BB3447F6-9553-4AA9-960E-0DB5310C5779} =>.Hewlett-Packard O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {C9EF1AAF-B542-41C8-A537-1142DA5D4AEC} =>.Hewlett-Packard O42 - Logiciel: HP Customer Participation Program 14.0 - (.HP.) [HKLM][64Bits] -- HPExtendedCapabilities =>.Hewlett Packard® O42 - Logiciel: HP Imaging Device Functions 14.0 - (.HP.) [HKLM][64Bits] -- HP Imaging Device Functions =>.Hewlett Packard® O42 - Logiciel: HP Photosmart Wireless B110 All-In-One Driver Software 14.0 Rel. 6 - (.HP.) [HKLM][64Bits] -- {C63184F3-8343-408F-A948-DDB0AC969A99} =>.Hewlett Packard® O42 - Logiciel: HP Solution Center 14.0 - (.HP.) [HKLM][64Bits] -- HP Solution Center & Imaging Support Tools =>.Hewlett Packard® O42 - Logiciel: HP Support Assistant - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {79C54A05-F146-4EA0-8A70-D4EFE6181E52} =>.Hewlett-Packard Company O42 - Logiciel: HP Support Solutions Framework - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {1615407C-6560-46C7-820F-394DCAD4799E} =>.Hewlett-Packard Company O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {912D30CF-F39E-4B31-AD9A-123C6B794EE2} =>.Hewlett-Packard O42 - Logiciel: HPAppStudio - (.Hewlett-Packard.) [HKLM][64Bits] -- {565E7B0E-B76B-4EAD-9753-F1E72A5CF12E} =>.Hewlett-Packard O42 - Logiciel: HPPhotoGadget - (.Hewlett-Packard.) [HKLM][64Bits] -- {CAE4213F-F797-439D-BD9E-79B71D115BE3} =>.Hewlett-Packard O42 - Logiciel: HPProductAssistant - (.Hewlett-Packard.) [HKLM][64Bits] -- {150B6201-E9E6-4DFB-960E-CCBD53FBDDED} =>.Hewlett-Packard O42 - Logiciel: HPSSupply - (.Hewlett-Packard.) [HKLM][64Bits] -- {AC35A885-0F8F-4857-B7DA-6E8DFB43E6B3} =>.Hewlett-Packard O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager =>.Tonec Inc.® O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {FBEB98F8-64E4-4FA3-A15E-4A9F42FF962E} =>.Apple Inc. O42 - Logiciel: Java 8 Update 31 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218031F0} =>.Oracle Corporation O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Oracle Corporation O42 - Logiciel: LibreOffice 5.0 Help Pack (Portuguese) - (.The Document Foundation.) [HKLM][64Bits] -- {F7591A10-6EB4-4BBC-870E-FE8B825900C2} =>.The Document Foundation O42 - Logiciel: LibreOffice 5.0.4.2 - (.The Document Foundation.) [HKLM][64Bits] -- {14B5DDCF-61C4-4F1E-A621-844685D60B5A} =>.The Document Foundation O42 - Logiciel: Malwarebytes Anti-Malware versão 2.2.0.1024 - (.Malwarebytes.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 =>.Malwarebytes O42 - Logiciel: MarketResearch - (.Hewlett-Packard.) [HKLM][64Bits] -- {D360FA88-17C8-4F14-B67F-13AAF9607B12} =>.Hewlett-Packard O42 - Logiciel: Network64 - (.Hewlett-Packard.) [HKLM][64Bits] -- {6BFAB6C1-6D46-46DB-A538-A269907C9F2F} =>.Hewlett-Packard O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIA Drivers =>.NVIDIA Corporation® O42 - Logiciel: Office 16 Click-to-Run Extensibility Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008C-0000-0000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Office 16 Click-to-Run Licensing Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008F-0000-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Office 16 Click-to-Run Localization Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008C-0816-0000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Pacote de controladores do Windows - NVIDIA (nvlddmkm) Display (01/30/2009 - (.NVIDIA.) [HKLM][64Bits] -- 92C8F11F6721D6A43340B64B47DD2435AE88E1C0 =>.Microsoft Windows® O42 - Logiciel: Pacote de controladores do Windows - Point Grey Research (PGR1394b) PGR1394 - (.Point Grey Research.) [HKLM][64Bits] -- 9992CF9CDE0384229FBA949335334FBA0468D861 =>.Microsoft Windows® O42 - Logiciel: Pacote de controladores do Windows - Texas Instruments Inc (tifm21) MTD (0 - (.Texas Instruments Inc.) [HKLM][64Bits] -- 7B31B8054391F9C7EF590728F991F590BB07F0D7 =>.Microsoft Windows® O42 - Logiciel: PS_AIO_07_B110_SW_Min - (.Hewlett-Packard.) [HKLM][64Bits] -- {C0974FF0-282B-4730-A50C-B112FA263E17} =>.Hewlett-Packard O42 - Logiciel: QuickTransfer - (.Hewlett-Packard.) [HKLM][64Bits] -- {E517094C-06B6-419F-8FFD-EF4F57972130} =>.Hewlett-Packard O42 - Logiciel: Revo Uninstaller 1.95 - (.VS Revo Group.) [HKLM][64Bits] -- Revo Uninstaller =>.VS Revo Group O42 - Logiciel: SafeZone Stable 1.46.1990.139 - (.Avast Software.) [HKLM][64Bits] -- SafeZone 1.46.1990.139 =>.AVAST Software s.r.o.® O42 - Logiciel: Scan - (.Hewlett-Packard.) [HKLM][64Bits] -- {06A1D88C-E102-4527-AF70-29FFD7AF215A} =>.Hewlett-Packard O42 - Logiciel: Shop for HP Supplies - (.HP.) [HKLM][64Bits] -- Shop for HP Supplies =>.Hewlett Packard® O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701} =>.Microsoft Corporation O42 - Logiciel: Skype™ 7.17 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {FC965A47-4839-40CA-B618-18F486F042C6} =>.Skype Technologies S.A. O42 - Logiciel: SolutionCenter - (.Hewlett-Packard.) [HKLM][64Bits] -- {BC5DD87B-0143-4D14-AAE6-97109614DC6B} =>.Hewlett-Packard O42 - Logiciel: Status - (.Hewlett-Packard.) [HKLM][64Bits] -- {5B025634-7D5B-4B8D-BE2A-7943C1CF2D5D} =>.Hewlett-Packard O42 - Logiciel: Suporte para Aplicações Apple (32-bits) - (.Apple Inc..) [HKLM][64Bits] -- {7FA9ECCF-A2DE-4DA1-BFF3-81260DBDA68F} =>.Apple Inc. O42 - Logiciel: Suporte para Aplicações Apple (64-bits) - (.Apple Inc..) [HKLM][64Bits] -- {691F30EB-9009-475A-B8A9-E1BF39598FD5} =>.Apple Inc. O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey =>.Synaptics Incorporated O42 - Logiciel: Toolbox - (.Hewlett-Packard.) [HKLM][64Bits] -- {292F0F52-B62D-4E71-921B-89A682402201} =>.Hewlett-Packard O42 - Logiciel: TOSHIBA Software Modem - (.LSI Corporation.) [HKLM][64Bits] -- TOSHIBA Software Modem =>.LSI Corporation O42 - Logiciel: TrayApp - (.Hewlett-Packard.) [HKLM][64Bits] -- {CD31E63D-47FD-491C-8117-CF201D0AFAB5} =>.Hewlett-Packard O42 - Logiciel: TuneUp Utilities 2014 - (.TuneUp Software.) [HKLM][64Bits] -- {FE8D473A-6F06-4F99-B5F4-BED72B2A038C} =>.TuneUp Software O42 - Logiciel: TuneUp Utilities 2014 (pt-PT) - (.TuneUp Software.) [HKLM][64Bits] -- {8C6326C3-7685-422D-A1FE-6775CD69B993} =>.TuneUp Software O42 - Logiciel: WebReg - (.Hewlett-Packard.) [HKLM][64Bits] -- {8EE94FD8-5F52-4463-A340-185D16328158} =>.Hewlett-Packard O42 - Logiciel: Wondershare Video Converter Ultimate(Build 8.5.5.6) - (.Wondershare Software.) [HKLM][64Bits] -- Wondershare Video Converter Ultimate_is1 =>.Wondershare Software ---\\ Ponto de restauro do sistema (71) - 13s HKLM\SOFTWARE\Wow6432Node\AdwCleaner HKLM\SOFTWARE\Wow6432Node\Apple Inc. HKLM\SOFTWARE\Wow6432Node\AVAST Software HKLM\SOFTWARE\Wow6432Node\Baidu Cleaner HKLM\SOFTWARE\Wow6432Node\Baidu Security HKLM\SOFTWARE\Wow6432Node\Baidu_Drp_pos HKLM\SOFTWARE\Wow6432Node\Eset HKLM\SOFTWARE\Wow6432Node\Google HKLM\SOFTWARE\Wow6432Node\Hewlett-Packard HKLM\SOFTWARE\Wow6432Node\HP HKLM\SOFTWARE\Wow6432Node\IM Providers HKLM\SOFTWARE\Wow6432Node\Intel HKLM\SOFTWARE\Wow6432Node\Internet Download Manager HKLM\SOFTWARE\Wow6432Node\JavaSoft HKLM\SOFTWARE\Wow6432Node\JreMetrics HKLM\SOFTWARE\Wow6432Node\LibreOffice HKLM\SOFTWARE\Wow6432Node\LogMeInRescueCallingCard HKLM\SOFTWARE\Wow6432Node\Macromedia HKLM\SOFTWARE\Wow6432Node\Malwarebytes Anti-Rootkit HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware HKLM\SOFTWARE\Wow6432Node\Mozilla HKLM\SOFTWARE\Wow6432Node\MozillaPlugins HKLM\SOFTWARE\Wow6432Node\ODBC HKLM\SOFTWARE\Wow6432Node\Skype HKLM\SOFTWARE\Wow6432Node\Software HKLM\SOFTWARE\Wow6432Node\The Document Foundation HKLM\SOFTWARE\Wow6432Node\TuneUp HKLM\SOFTWARE\Wow6432Node\WafCX HKLM\SOFTWARE\Wow6432Node\Wondershare HKLM\SOFTWARE\Wow6432Node\WondershareSysMenuDATA HKLM\SOFTWARE\Wow6432Node\RegisteredApplications HKCU\SOFTWARE\AppDataLow HKCU\SOFTWARE\Apple Computer, Inc. HKCU\SOFTWARE\Apple Inc. HKCU\SOFTWARE\AVAST Software HKCU\SOFTWARE\Baidu Cleaner HKCU\SOFTWARE\Baidu Security HKCU\SOFTWARE\DownloadManager HKCU\SOFTWARE\FlvtoConverter HKCU\SOFTWARE\Google HKCU\SOFTWARE\Hewlett-Packard HKCU\SOFTWARE\hotger HKCU\SOFTWARE\HP HKCU\SOFTWARE\IM Providers HKCU\SOFTWARE\JavaSoft HKCU\SOFTWARE\Licenses HKCU\SOFTWARE\Local AppWizard-Generated Applications HKCU\SOFTWARE\Macromedia HKCU\SOFTWARE\Magicbit HKCU\SOFTWARE\Magix HKCU\SOFTWARE\Mozilla HKCU\SOFTWARE\MozillaPlugins HKCU\SOFTWARE\Netscape HKCU\SOFTWARE\NVIDIA Corporation HKCU\SOFTWARE\ODBC HKCU\SOFTWARE\Opera Software HKCU\SOFTWARE\Piriform HKCU\SOFTWARE\RegisteredApplications HKCU\SOFTWARE\Skype HKCU\SOFTWARE\Solveig Multimedia HKCU\SOFTWARE\Synaptics HKCU\SOFTWARE\SyncEngines HKCU\SOFTWARE\The Document Foundation HKCU\SOFTWARE\Trolltech HKCU\SOFTWARE\VSRevoGroup HKCU\SOFTWARE\Wondershare HKCU\SOFTWARE\Wow6432Node HKCU\SOFTWARE\WSVCUPlugin HKCU\SOFTWARE\ZebHelpProcess Helper HKCU\SOFTWARE\AppDataLow\Software HKCU\SOFTWARE\AppDataLow\Software\JavaSoft ---\\ Conteúdo das pastas Programs (161) - 42s O43 - CFD: 17/11/2015 - [] D -- C:\Program Files (x86)\AGEIA Technologies O43 - CFD: 27/12/2015 - [] AD -- C:\Program Files (x86)\Apple Software Update =>.Apple Inc.® O43 - CFD: 29/12/2015 - [] D -- C:\Program Files (x86)\Baidu Cleaner {5FAEE9E83F32948F3B2040AC6DF0145C} O43 - CFD: 27/12/2015 - [] AD -- C:\Program Files (x86)\Bonjour =>.Apple Inc.® O43 - CFD: 27/12/2015 - [] D -- C:\Program Files (x86)\Common Files O43 - CFD: 21/11/2015 - [] D -- C:\Program Files (x86)\ESET O43 - CFD: 15/12/2015 - [] AD -- C:\Program Files (x86)\File Shredder Ultra O43 - CFD: 29/10/2015 - [] D -- C:\Program Files (x86)\Google =>.Google Inc® O43 - CFD: 27/12/2015 - [] AD -- C:\Program Files (x86)\Hewlett-Packard =>.Hewlett-Packard Company® O43 - CFD: 27/12/2015 - [] AD -- C:\Program Files (x86)\HP =>.Hewlett Packard® O43 - CFD: 27/12/2015 - [0] D -- C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 30/12/2015 - [] D -- C:\Program Files (x86)\Internet Download Manager =>.Tonec Inc.® O43 - CFD: 10/12/2015 - [] D -- C:\Program Files (x86)\Internet Explorer O43 - CFD: 27/12/2015 - [] D -- C:\Program Files (x86)\iTunes O43 - CFD: 14/12/2015 - [] D -- C:\Program Files (x86)\Java =>.Oracle America, Inc.® O43 - CFD: 27/12/2015 - [] AD -- C:\Program Files (x86)\LibreOffice 5 =>.The Document Foundation® O43 - CFD: 15/12/2015 - [] AD -- C:\Program Files (x86)\Malwarebytes Anti-Malware =>.Malwarebytes Corporation® O43 - CFD: 18/12/2015 - [] AD -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation® O43 - CFD: 18/11/2015 - [] D -- C:\Program Files (x86)\Microsoft.NET O43 - CFD: 17/11/2015 - [] D -- C:\Program Files (x86)\MSBuild O43 - CFD: 17/11/2015 - [] D -- C:\Program Files (x86)\Reference Assemblies O43 - CFD: 21/12/2015 - [] RD -- C:\Program Files (x86)\Skype =>.Skype Software Sarl® O43 - CFD: 05/11/2015 - [] AD -- C:\Program Files (x86)\TuneUp Utilities 2014 =>.AVG Netherlands B.V.® O43 - CFD: 17/11/2015 - [0] D -- C:\Program Files (x86)\Uninstall Information O43 - CFD: 04/01/2016 - [] D -- C:\Program Files (x86)\VS Revo Group =>.VS Revo Group® O43 - CFD: 17/11/2015 - [] D -- C:\Program Files (x86)\Windows Defender O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Windows Mail O43 - CFD: 17/11/2015 - [] D -- C:\Program Files (x86)\Windows Media Player O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Windows NT O43 - CFD: 17/11/2015 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation® O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Windows Sidebar O43 - CFD: 30/10/2015 - [] SD -- C:\Program Files (x86)\WindowsPowerShell O43 - CFD: 24/12/2015 - [] D -- C:\Program Files (x86)\Wondershare O43 - CFD: 23/12/2015 - [] AD -- C:\Program Files (x86)\ZHPFix O43 - CFD: 30/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility O43 - CFD: 30/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 30/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 18/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software O43 - CFD: 23/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Baidu Cleaner O43 - CFD: 17/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner O43 - CFD: 18/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ferramentas do Microsoft Office 2016 O43 - CFD: 15/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\File Shredder Ultra O43 - CFD: 11/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome O43 - CFD: 27/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP O43 - CFD: 27/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support O43 - CFD: 22/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager O43 - CFD: 27/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes O43 - CFD: 14/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java O43 - CFD: 27/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 5.0 O43 - CFD: 30/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 15/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware O43 - CFD: 21/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype O43 - CFD: 27/12/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp O43 - CFD: 30/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools O43 - CFD: 30/10/2015 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC O43 - CFD: 24/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare O43 - CFD: 27/12/2015 - [] D -- C:\ProgramData\Apple O43 - CFD: 27/12/2015 - [] D -- C:\ProgramData\Apple Computer O43 - CFD: 17/11/2015 - [0] SHD -- C:\ProgramData\Application Data O43 - CFD: 18/12/2015 - [] D -- C:\ProgramData\AVAST Software O43 - CFD: 16/11/2015 - [] D -- C:\ProgramData\Baidu O43 - CFD: 16/11/2015 - [] D -- C:\ProgramData\Baidu Cleaner O43 - CFD: 05/12/2015 - [] HD -- C:\ProgramData\Common Files O43 - CFD: 17/11/2015 - [0] SHD -- C:\ProgramData\Desktop O43 - CFD: 17/11/2015 - [0] SHD -- C:\ProgramData\Documents O43 - CFD: 17/11/2015 - [0] SHD -- C:\ProgramData\Favorites O43 - CFD: 27/12/2015 - [] D -- C:\ProgramData\Hewlett-Packard O43 - CFD: 27/12/2015 - [] AD -- C:\ProgramData\HP O43 - CFD: 27/12/2015 - [] AD -- C:\ProgramData\HP Product Assistant O43 - CFD: 22/12/2015 - [0] D -- C:\ProgramData\IDM O43 - CFD: 17/11/2015 - [] D -- C:\ProgramData\MAGIX O43 - CFD: 15/11/2015 - [] D -- C:\ProgramData\Malwarebytes O43 - CFD: 29/11/2015 - [] SD -- C:\ProgramData\Microsoft O43 - CFD: 28/10/2015 - [] D -- C:\ProgramData\Microsoft OneDrive O43 - CFD: 17/11/2015 - [] D -- C:\ProgramData\NVIDIA O43 - CFD: 14/12/2015 - [] D -- C:\ProgramData\Oracle O43 - CFD: 18/12/2015 - [] AD -- C:\ProgramData\regid.1991-06.com.microsoft O43 - CFD: 30/12/2015 - [0] D -- C:\ProgramData\RpData O43 - CFD: 21/12/2015 - [] D -- C:\ProgramData\Skype O43 - CFD: 17/11/2015 - [0] SHD -- C:\ProgramData\Start Menu O43 - CFD: 14/12/2015 - [] D -- C:\ProgramData\Sun O43 - CFD: 17/11/2015 - [0] SHD -- C:\ProgramData\Templates O43 - CFD: 05/11/2015 - [] D -- C:\ProgramData\TuneUp Software O43 - CFD: 17/11/2015 - [] D -- C:\ProgramData\USOPrivate O43 - CFD: 28/10/2015 - [] D -- C:\ProgramData\USOShared O43 - CFD: 27/12/2015 - [] D -- C:\ProgramData\WEBREG O43 - CFD: 24/12/2015 - [] D -- C:\ProgramData\Wondershare O43 - CFD: 31/12/2015 - [] D -- C:\ProgramData\Wondershare Video Converter Ultimate O43 - CFD: 27/12/2015 - [] D -- C:\Program Files (x86)\Common Files\Apple O43 - CFD: 18/12/2015 - [] AD -- C:\Program Files (x86)\Common Files\DESIGNER O43 - CFD: 27/12/2015 - [] D -- C:\Program Files (x86)\Common Files\Hewlett-Packard O43 - CFD: 27/12/2015 - [] D -- C:\Program Files (x86)\Common Files\HP O43 - CFD: 14/12/2015 - [] D -- C:\Program Files (x86)\Common Files\Java O43 - CFD: 18/12/2015 - [] AD -- C:\Program Files (x86)\Common Files\Microsoft Shared O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Services O43 - CFD: 21/12/2015 - [] AD -- C:\Program Files (x86)\Common Files\Skype O43 - CFD: 17/11/2015 - [] D -- C:\Program Files (x86)\Common Files\System O43 - CFD: 17/11/2015 - [] D -- C:\Program Files (x86)\Common Files\Wise Installation Wizard O43 - CFD: 24/12/2015 - [] D -- C:\Program Files (x86)\Common Files\Wondershare O43 - CFD: 28/10/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\Adobe O43 - CFD: 27/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\Apple Computer O43 - CFD: 28/10/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\AVAST Software O43 - CFD: 16/11/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\Baidu Cleaner O43 - CFD: 08/01/2016 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\DMCache O43 - CFD: 05/11/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\FlvtoConverter O43 - CFD: 27/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\Hewlett-Packard O43 - CFD: 27/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\HP O43 - CFD: 27/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\hpqLog O43 - CFD: 27/12/2015 - [0] D -- C:\Users\JoséCarlos1057\AppData\Roaming\HpUpdate O43 - CFD: 09/01/2016 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\IDM O43 - CFD: 27/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\LibreOffice O43 - CFD: 28/10/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\Macromedia O43 - CFD: 17/11/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\MAGIX O43 - CFD: 28/11/2015 - [] SD -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft O43 - CFD: 04/01/2016 - [0] D -- C:\Users\JoséCarlos1057\AppData\Roaming\MP3Rocket O43 - CFD: 21/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\Skype O43 - CFD: 04/11/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\TuneUp Software O43 - CFD: 30/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\Wondershare Video Converter Ultimate O43 - CFD: 09/01/2016 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\ZHP O43 - CFD: 24/12/2015 - [0] D -- C:\Users\JoséCarlos1057\AppData\Roaming\{950EB46C-6AC7-4ACC-AB36-9A6A77C08B6A} O43 - CFD: 12/12/2015 - [0] D -- C:\Users\JoséCarlos1057\AppData\Local\ActiveSync O43 - CFD: 27/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Apple O43 - CFD: 27/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Apple Computer O43 - CFD: 17/11/2015 - [0] SHD -- C:\Users\JoséCarlos1057\AppData\Local\Application Data O43 - CFD: 17/11/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Comms O43 - CFD: 07/01/2016 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Diagnostics O43 - CFD: 21/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\ElevatedDiagnostics O43 - CFD: 21/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Google O43 - CFD: 27/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Hewlett-Packard O43 - CFD: 17/11/2015 - [0] SHD -- C:\Users\JoséCarlos1057\AppData\Local\History O43 - CFD: 04/11/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Hotger O43 - CFD: 27/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\HP O43 - CFD: 07/01/2016 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Microsoft O43 - CFD: 11/12/2015 - [0] D -- C:\Users\JoséCarlos1057\AppData\Local\Microsoft Help O43 - CFD: 28/10/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\MicrosoftEdge O43 - CFD: 12/12/2015 - [0] D -- C:\Users\JoséCarlos1057\AppData\Local\NetworkTiles O43 - CFD: 07/01/2016 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Packages O43 - CFD: 12/12/2015 - [0] D -- C:\Users\JoséCarlos1057\AppData\Local\PeerDistRepub O43 - CFD: 21/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Programs O43 - CFD: 28/10/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Publishers O43 - CFD: 21/12/2015 - [0] D -- C:\Users\JoséCarlos1057\AppData\Local\Skype O43 - CFD: 09/01/2016 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Temp O43 - CFD: 17/11/2015 - [0] SHD -- C:\Users\JoséCarlos1057\AppData\Local\Temporary Internet Files O43 - CFD: 28/10/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\TileDataLayer O43 - CFD: 04/11/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\TuneUp Software O43 - CFD: 18/11/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\VirtualStore O43 - CFD: 24/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Local\Wondershare O43 - CFD: 30/10/2015 - [] RD -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility O43 - CFD: 17/11/2015 - [] RD -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 10/12/2015 - [] RD -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 11/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicações do Chrome O43 - CFD: 17/11/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Baidu Cleaner O43 - CFD: 21/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Photos Backup O43 - CFD: 22/12/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager O43 - CFD: 30/10/2015 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 04/01/2016 - [] D -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller O43 - CFD: 10/12/2015 - [] RD -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 30/10/2015 - [] RD -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools O43 - CFD: 30/10/2015 - [] RSD -- C:\Users\JoséCarlos1057\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell ---\\ Softwares de proteçao do sistema (Supérfluo) (6) - 1s O106 - SIOI: ErrorOverlayHandler Class [ OneDrive1] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\JoséCarlos1057\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\FileSyncShell.dll =>.Microsoft Corporation® O106 - SIOI: SharedOverlayHandler Class [ OneDrive2] - {5AB7172C-9C11-405C-8DD5-AF20F3606282}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\JoséCarlos1057\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\FileSyncShell.dll =>.Microsoft Corporation® O106 - SIOI: SharedSyncingOverlayHandler Class [ OneDrive3] - {A78ED123-AB77-406B-9962-2A5D9D2F7F30}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\JoséCarlos1057\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\FileSyncShell.dll =>.Microsoft Corporation® O106 - SIOI: UpToDateOverlayHandler Class [ OneDrive4] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\JoséCarlos1057\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\FileSyncShell.dll =>.Microsoft Corporation® O106 - SIOI: SyncingOverlayHandler Class [ OneDrive5] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\JoséCarlos1057\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\FileSyncShell.dll =>.Microsoft Corporation® O106 - SIOI: avast [00avast] - {472083B0-C522-11CF-8763-00608CC02F24}. (.AVAST Software - avast! Shell Extension.) -- C:\Program Files\AVAST Software\Avast\ashShell.dll =>.AVAST Software a.s.® ---\\ Lista dos drivers do sistema (65) - 18s O58 - SDL:2015/10/30 07:17:22 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [107360] =>.Microsoft Windows® O58 - SDL:2015/10/30 07:17:22 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [1135456] =>.Microsoft Windows® O58 - SDL:2000/01/01 00:00:00 A . (.LSI Corporation - SoftModem Device Driver.) -- C:\WINDOWS\System32\drivers\agrsm64.sys [1208320] =>.LSI Corporation O58 - SDL:2015/10/30 07:17:22 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [83296] =>.Microsoft Windows® O58 - SDL:2015/10/30 07:17:22 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259424] =>.Microsoft Windows® O58 - SDL:2015/10/30 07:17:22 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [26976] =>.Microsoft Windows® O58 - SDL:2015/10/30 07:17:22 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [131936] =>.Microsoft Windows® O58 - SDL:2015/12/18 23:42:16 A . (.AVAST Software - avast! HWID.) -- C:\WINDOWS\System32\drivers\aswHwid.sys [28656] =>.AVAST Software a.s.® O58 - SDL:2015/12/18 23:41:51 A . (.AVAST Software - avast! Keyboard Filter Driver.) -- C:\WINDOWS\System32\drivers\aswKbd.sys [28144] =>.AVAST Software a.s.® O58 - SDL:2015/12/18 23:43:01 A . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\WINDOWS\System32\drivers\aswmonflt.sys [97648] =>.AVAST Software a.s.® O58 - SDL:2015/12/18 23:41:48 A . (.AVAST Software - avast! Filtering NDIS driver.) -- C:\WINDOWS\System32\drivers\aswNdisFlt.sys [466400] =>.AVAST Software a.s.® O58 - SDL:2015/12/18 23:42:14 A . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\WINDOWS\System32\drivers\aswRdr2.sys [93528] =>.AVAST Software a.s.® O58 - SDL:2015/12/18 23:42:16 A . (.AVAST Software - avast! Revert.) -- C:\WINDOWS\System32\drivers\aswRvrt.sys [65224] =>.AVAST Software a.s.® O58 - SDL:2015/12/18 23:41:51 A . (.AVAST Software - avast! Virtualization Driver.) -- C:\WINDOWS\System32\drivers\aswSnx.sys [1055560] =>.AVAST Software a.s.® O58 - SDL:2015/12/18 23:43:01 A . (.AVAST Software - avast! self protection module.) -- C:\WINDOWS\System32\drivers\aswsp.sys [451040] =>.AVAST Software a.s.® O58 - SDL:2015/12/18 23:42:16 A . (.AVAST Software - Stream Filter.) -- C:\WINDOWS\System32\drivers\aswStm.sys [155304] =>.AVAST Software a.s.® O58 - SDL:2015/12/18 23:42:16 A . (.AVAST Software - avast! VM Monitor.) -- C:\WINDOWS\System32\drivers\aswVmm.sys [273784] =>.AVAST Software a.s.® O58 - SDL:2015/10/30 07:17:22 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn.sys [9728] =>.Windows (R) Win 7 DDK provider O58 - SDL:2015/10/30 07:17:22 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [9728] =>.Windows (R) Win 7 DDK provider O58 - SDL:2015/03/31 06:14:20 A . (.Baidu, Inc. - Baidu Antivirus Minifilter Driver.) -- C:\WINDOWS\System32\drivers\BprotectEx.sys [94480] {5FAEE9E83F32948F3B2040AC6DF0145C} =>.Baidu, Inc. O58 - SDL:2015/10/30 07:17:22 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [531296] =>.Microsoft Windows® O58 - SDL:2015/10/30 07:17:23 A . (.Intel Corporation - Intel(R) 10/100 Network Connection NDIS 5.1.) -- C:\WINDOWS\System32\drivers\eFE5b32e.sys [182656] =>.Intel Corporation O58 - SDL:2015/10/30 07:17:22 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3436896] =>.Microsoft Windows® O58 - SDL:2015/10/30 07:17:22 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64352] =>.Microsoft Windows® O58 - SDL:2015/10/30 07:17:18 A . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\WINDOWS\System32\drivers\iai2c.sys [81408] =>.Intel(R) Corporation O58 - SDL:2015/10/30 07:17:18 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [165888] =>.Intel Corporation O58 - SDL:2015/10/30 07:17:18 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group® O58 - SDL:2015/10/30 07:17:18 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [113152] =>.Intel Corporation O58 - SDL:2015/10/30 07:17:22 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [673120] =>.Microsoft Windows® O58 - SDL:2015/10/30 07:17:22 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412000] =>.Microsoft Windows® O58 - SDL:2015/10/30 07:17:23 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\System32\drivers\ibbus.sys [424800] =>.Microsoft Windows® O58 - SDL:2015/12/29 12:18:10 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\WINDOWS\System32\drivers\idmwfp.sys [199152] =>.Tonec Inc.® O58 - SDL:2015/10/30 07:17:23 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [108888] =>.Microsoft Windows® O58 - SDL:2015/10/30 07:17:23 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2i.sys [104800] =>.Microsoft Windows® O58 - SDL:2015/10/30 07:17:23 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys [99168] =>.Microsoft Windows® O58 - SDL:2015/10/30 07:17:23 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82784] =>.Microsoft Windows® O58 - SDL:2015/10/05 09:50:06 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\mbam.sys [25816] =>.Malwarebytes Corporation® O58 - SDL:2015/10/05 09:50:10 A . (.Malwarebytes - Malwarebytes Chameleon Protection Driver.) -- C:\WINDOWS\System32\drivers\mbamchameleon.sys [109272] =>.Malwarebytes Corporation® O58 - SDL:2016/01/04 16:57:41 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [192216] =>.Malwarebytes Corporation® O58 - SDL:2015/10/30 07:17:23 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [59744] =>.Microsoft Windows® O58 - SDL:2015/10/30 07:17:23 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575840] =>.Microsoft Windows® O58 - SDL:2015/10/30 07:17:23 A . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\System32\drivers\mlx4_bus.sys [705376] =>.Microsoft Windows® O58 - SDL:2015/10/30 07:17:23 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63840] =>.Microsoft Windows® O58 - SDL:2015/10/05 09:50:22 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\WINDOWS\System32\drivers\mwac.sys [64216] =>.Malwarebytes Corporation® O58 - SDL:2015/10/30 07:17:23 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys [76128] =>.Microsoft Windows® O58 - SDL:2014/05/06 17:40:10 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\WINDOWS\System32\drivers\NETwLv64.sys [7533568] =>.Intel Corporation O58 - SDL:2009/01/30 09:12:00 A . (.NVIDIA Corporation - NVIDIA Compatible Windows Vista Kernel Mode.) -- C:\WINDOWS\System32\drivers\nvlddmkm.sys [9677216] =>.NVIDIA Corporation® O58 - SDL:2015/10/30 07:17:23 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150368] =>.Microsoft Windows® O58 - SDL:2015/10/30 07:17:23 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [166240] =>.Microsoft Windows® O58 - SDL:2015/10/30 07:17:23 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas2i.sys [58208] =>.Microsoft Windows® O58 - SDL:2015/10/30 07:17:23 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys [58720] =>.Microsoft Windows® O58 - SDL:2008/03/14 13:56:04 A . (.Point Grey Research - PGR1394b Device Driver.) -- C:\WINDOWS\System32\drivers\PGR1394.sys [88064] O58 - SDL:2015/10/30 07:17:23 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44896] =>.Microsoft Windows® O58 - SDL:2015/10/30 07:17:23 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81760] =>.Microsoft Windows® O58 - SDL:2015/10/18 12:02:58 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_AMDASF_Aux.sys [33448] =>.Synaptics Incorporated® O58 - SDL:2015/10/18 12:02:58 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_Intel_Aux.sys [33960] =>.Synaptics Incorporated® O58 - SDL:2015/10/30 07:17:23 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31072] =>.Microsoft Windows® O58 - SDL:2015/10/18 12:03:07 A . (.Synaptics Incorporated - Synaptics Touchpad Win64 Driver.) -- C:\WINDOWS\System32\drivers\SynTP.sys [609960] =>.Synaptics Incorporated® O58 - SDL:2009/06/19 16:44:56 A . (.Texas Instruments - tifm21.sys.) -- C:\WINDOWS\System32\drivers\tifm21.sys [319488] =>.Texas Instruments O58 - SDL:2015/10/30 07:17:23 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [166752] =>.Microsoft Windows® O58 - SDL:2015/10/30 07:17:23 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305504] =>.Microsoft Windows® O58 - SDL:2015/10/30 07:17:23 A . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\System32\drivers\winmad.sys [26976] =>.Microsoft Windows® O58 - SDL:2015/10/30 07:17:23 A . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\System32\drivers\winverbs.sys [59232] =>.Microsoft Windows® O58 - SDL:2009/03/30 09:40:02 A . (.ZTE Incorporated - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\ZTEusbnmea.sys [150784] =>.ZTE Incorporated O58 - SDL:2009/03/30 09:40:06 A . (.ZTE Incorporated - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\ZTEusbser6k.sys [150656] =>.ZTE Incorporated ---\\ Últimos ficheiros alterados ou criados (Utilizador) (4) - 25s O61 - LFC: 2016/01/09 00:42:59 A . (..) -- C:\Users\JoséCarlos1057\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\speech_onecorereg.bin [8192] O61 - LFC: 2016/01/09 00:47:07 A . (..) -- C:\Users\JoséCarlos1057\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\UrlBlock\urlblock_635878909877072335.bin [78368] O61 - LFC: 2016/01/09 00:37:12 A . (..) -- C:\Users\JoséCarlos1057\AppData\Local\Microsoft\Windows\UPPS\UPPS.bin [16148] O61 - LFC: 2016/01/09 00:41:47 A . (..) -- C:\Users\JoséCarlos1057\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [674082] ---\\ Associações Shell Spawning (10) - 1s O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Iniciador do Snap-in Visualizador de Evento.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe =>.Microsoft Corporation O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Editor de registo.) -- C:\Windows\regedit.exe =>.Microsoft Corporation O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S ---\\ Menu de inicialização Internet (12) - 0s O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc. O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Avast Software - Avast SafeZone Browser.) -- C:\Program Files\AVAST Software\SZBrowser\Launcher.exe =>.AVAST Software O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc. O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitário de Inicialização por utilizador.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Avast Software - Avast SafeZone Browser.) -- C:\Program Files\AVAST Software\SZBrowser\launcher.exe =>.AVAST Software O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc. O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitário de Inicialização por utilizador.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Avast Software - Avast SafeZone Browser.) -- C:\Program Files\AVAST Software\SZBrowser\launcher.exe =>.AVAST Software O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc. O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitário de Inicialização por utilizador.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Avast Software - Avast SafeZone Browser.) -- C:\Program Files\AVAST Software\SZBrowser\launcher.exe =>.AVAST Software ---\\ Pesquisa de infeção nos navegadores da Internet (3) - 1s O69 - SBI: SearchScopes [HKCU] {012E1000-F331-11DB-8314-0800200C9A66} [DefaultScope] - (Google) - http://www.google.com/ O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/ O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/ ---\\ Listagem dos serviços iniciados pelo Svchost (42) - 3s O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Serviço de Propagação de Certificados de Sm.) -- C:\WINDOWS\System32\certprop.dll [192000] =>.Microsoft Corporation O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Serviço de Propagação de Certificados de Sm.) -- C:\WINDOWS\System32\certprop.dll [192000] =>.Microsoft Corporation O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL do Serviço de Servidor.) -- C:\WINDOWS\system32\srvsvc.dll [283136] =>.Microsoft Corporation O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Cliente de Política de Grupo.) -- C:\WINDOWS\System32\gpsvc.dll [1338368] =>.Microsoft Corporation O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extensão IKE.) -- C:\WINDOWS\System32\ikeext.dll [957952] =>.Microsoft Corporation O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Serviço que oferece conectividade IPv6 numa.) -- C:\WINDOWS\System32\iphlpsvc.dll [958464] =>.Microsoft Corporation O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL secundária de serviço de início de sess.) -- C:\WINDOWS\system32\seclogon.dll [31232] =>.Microsoft Corporation O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Serviço de Informações sobre Aplicações.) -- C:\WINDOWS\System32\appinfo.dll [94720] =>.Microsoft Corporation O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Serviço de Deteção iSCSI.) -- C:\WINDOWS\system32\iscsiexe.dll [151040] =>.Microsoft Corporation O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Serviço EAPHost da Microsoft.) -- C:\WINDOWS\System32\eapsvc.dll [112640] =>.Microsoft Corporation O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Serviço Programador de Tarefas.) -- C:\WINDOWS\system32\schedsvc.dll [1012224] =>.Microsoft Corporation O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\WMIsvc.dll [225280] =>.Microsoft Corporation O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL do Browser de Computador.) -- C:\WINDOWS\System32\browser.dll [134656] =>.Microsoft Corporation O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\WINDOWS\system32\profsvc.dll [328192] =>.Microsoft Corporation O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Serviço de Configuração do Ambiente de Trab.) -- C:\Windows\System32\SessEnv.dll [372736] =>.Microsoft Corporation O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Relatórios e Soluções de Problemas.) -- C:\WINDOWS\System32\wercplsupport.dll [96256] =>.Microsoft Corporation O83 - Search Svchost Services: DcpSvc (DcpSvc) . (.Microsoft Corporation - dcpsvc Task.) -- C:\WINDOWS\system32\dcpsvc.dll [186880] =>.Microsoft Corporation O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Serviço Conta Microsoft®.) -- C:\WINDOWS\system32\wlidsvc.dll [2058240] =>.Microsoft Corporation O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Serviço do Assistente de Conectividade da R.) -- C:\WINDOWS\System32\ncasvc.dll [168960] =>.Microsoft Corporation O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Serviço de Configuração de Rede.) -- C:\WINDOWS\System32\NetSetupSvc.dll [203776] =>.Microsoft Corporation O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL de Serviços de Tema da Shell do Windows.) -- C:\WINDOWS\system32\themeservice.dll [59392] =>.Microsoft Corporation O83 - Search Svchost Services: RetailDemo (RetailDemo) . (.Microsoft Corporation - RDXService.) -- C:\WINDOWS\system32\RDXService.dll [1073152] =>.Microsoft Corporation O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Serviço de Geolocalização.) -- C:\Windows\System32\lfsvc.dll [27136] =>.Microsoft Corporation O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestor de Marcação Automática de Acesso Rem.) -- C:\WINDOWS\System32\rasauto.dll [106496] =>.Microsoft Corporation O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestor de Ligação de Acesso Remoto.) -- C:\WINDOWS\System32\rasmans.dll [696320] =>.Microsoft Corporation O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestor de Interfaces Dinâmicas.) -- C:\Windows\System32\mprdim.dll [507904] =>.Microsoft Corporation O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Serviço de Notificação de Eventos do Sistem.) -- C:\WINDOWS\System32\sens.dll [73216] =>.Microsoft Corporation O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Componentes do Microsoft NAT Helper.) -- C:\WINDOWS\System32\ipnathlp.dll [457728] =>.Microsoft Corporation O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Servidor de telefonia Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [311808] =>.Microsoft Corporation O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\WINDOWS\system32\wuaueng.dll [2280448] =>.Microsoft Corporation O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Serviço de transferência inteligente em seg.) -- C:\WINDOWS\System32\qmgr.dll [1144320] =>.Microsoft Corporation O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - DLL de serviços da shell do Windows.) -- C:\Windows\System32\shsvcs.dll [608768] =>.Microsoft Corporation O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\WINDOWS\system32\dmwappushsvc.dll [57856] =>.Microsoft Corporation O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Serviço BDE.) -- C:\WINDOWS\System32\bdesvc.dll [360448] =>.Microsoft Corporation O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\WINDOWS\system32\XboxNetApiSvc.dll [1035776] =>.Microsoft Corporation O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Atualização de Sessão Orchestrator Core.) -- C:\WINDOWS\system32\usocore.dll [360960] =>.Microsoft Corporation O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\WINDOWS\System32\XblGameSave.dll [1130496] =>.Microsoft Corporation O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL do Serviço do Windows Management.) -- C:\Windows\System32\Windows.Internal.Management.dll [278016] =>.Microsoft Corporation O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestor de Configuração de Dispositivos.) -- C:\WINDOWS\System32\DeviceSetupManager.dll [205824] =>.Microsoft Corporation O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\WINDOWS\System32\usermgr.dll [912384] =>.Microsoft Corporation O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\WINDOWS\System32\XblAuthManager.dll [948224] =>.Microsoft Corporation O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Serviço de instalação de software.) -- C:\Windows\System32\appmgmts.dll [200192] =>.Microsoft Corporation ---\\ Serviços não Microsoft (SR=Executados, SS=Parados) (16) - 103s SS - Disabl [01/01/2000] [ 16896] Agere Modem Call Progress Audio (AgereModemAudio) . (.LSI Corporation.) - C:\Program Files\LSI SoftModem\agr64svc.exe =>.LSI Corporation SR - Auto [07/10/2015] [ 77104] Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe =>.Apple Inc.® SR - Auto [18/12/2015] [ 226440] Avast Antivirus (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe =>.AVAST Software a.s.® SR - Auto [18/12/2015] [ 109520] Avast Firewall (avast! Firewall) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\afwServ.exe =>.AVAST Software a.s.® SS - Disabl [25/05/2015] [ 1697896] Baidu Cleaner Service (BCleanerSvc) . (.Baidu Inc..) - C:\Program Files (x86)\Baidu Cleaner\BCleanerSvc.exe {5FAEE9E83F32948F3B2040AC6DF0145C} SR - Auto [12/08/2015] [ 462096] Serviço de Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.® SS - Disabl [29/10/2015] [ 144200] Serviço Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc® SS - Disabl [29/10/2015] [ 144200] Serviço Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc® SR - Auto [28/09/2015] [ 25800] HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe =>.Hewlett-Packard Company® SS - Demand [17/12/2015] [ 644880] Serviço iPod (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe =>.Apple Inc.® SS - Disabl [05/10/2015] [ 1135416] (MBAMService) . (.Malwarebytes.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation® SS - Disabl [30/01/2009] [ 364064] @oem5.inf,%NVSVC.name%;NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvvsvc.exe =>.NVIDIA Corporation SS - Boot [25/05/2015] [ 1697896] (PCFasterSvc_{PCFaster_6.0.0.0}) . (.Baidu Inc..) - C:\Program Files (x86)\Baidu Cleaner\BCleanerSvc.exe {5FAEE9E83F32948F3B2040AC6DF0145C} SS - Disabl [09/07/2015] [ 327296] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl® SS - Disabl [18/10/2015] [ 237736] SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe =>.Synaptics Incorporated® ---\\ Scâner Aditional (1) - 0s ~ Nenhum ítem malicioso o desnecessários foi encontrado. ---\\ Informações complémentaires do módulos (1) - 0s http://www.nicolascoolman.fr/?p=4664 =>.Superfluous.DriverToolkit ~ End of the scan, 13582 items in 00h05mn18s (651)(0)