~ ZHPDiag v2016.1.31.23 Por Nicolas Coolman (2016/01/30) ~ iniciado por ADEMIR MONTEIRO (Administrator) (2017/05/01 10:24:28) ~ Site: http://www.nicolascoolman.fr ~ Facebook: https://www.facebook.com/nicolascoolman1 ~ Status da versão: Rede de arquivo ~ Modo: Scanner ~ Relatório: C:\Users\ADEMIR MONTEIRO\Desktop\ZHPDiag.txt ~ Relatório: C:\Users\ADEMIR MONTEIRO\AppData\Roaming\ZHP\ZHPDiag.txt ~ UAC: Activate ~ Inicialização do sistema: Normal (Normal boot) Windows 10 Home Single Language, 64-bit (Build 14393) ---\\ Navegadores Internet (3) - 1s GCIE: Google Chrome v58.0.3029.81 MFIE: Mozilla Firefox 53.0 (x86 pt-BR) MSIE: Internet Explorer v11.1066.14393.0 ---\\ Informações sobre os produtos Windows (3) - 3s ~ Windows Server License Manager Script : OK System - VBScript Engine not found Windows Automatic Updates : OK ---\\ Softwares de proteçao do sistema (1) - 3s Windows Defender (Activate) ---\\ Monitoramento dos softwares (2) - 4s Adobe Flash Player 25 NPAPI Adobe Acrobat Reader DC - Português ---\\ Informações sobre o sistema (6) - 0s ~ Operating System: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel ~ Operating System: 64-bit ~ Boot mode: Normal (Normal boot) Total RAM: 4056.156 MB (46% free) System Restore: Activé (Enable) System drive C: has 513 GB () free of 703 GB ---\\ Modo de conexão ao sistema (3) - 0s ~ Computer Name: ADEMIR ~ User Name: ADEMIR MONTEIRO ~ Logged in as Administrator ---\\ Enumeração das unidades dos discos (2) - 0s ~ Drive C: has 513 GB free of 703 GB (System) ~ Drive Y: has 0 GB free of 9 GB ---\\ Estado do Centro de Segurança do Windows (8) - 0s [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK ---\\ Pesquisa particular de ficheiros genéricos (24) - 1s [MD5.F2D58A2E27C2CD486F8F0A123A3F34C3] - 04/03/2017 - (.Microsoft Corporation - Windows Explorer.) -- C:\WINDOWS\Explorer.exe [4674360] {33000001066EC325C431C9180E000000000106} =>.Microsoft Corporation [MD5.C7645D43451C6D94D87F4D07BDE59C89] - 16/07/2016 - (.Microsoft Corporation - Processo de host do Windows (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [69632] =>.Microsoft Corporation [MD5.99A19C9A74E2F9820E501DCE77F84F70] - 16/07/2016 - (.Microsoft Corporation - Aplicativo de Inicialização do Windows.) -- C:\WINDOWS\System32\Wininit.exe [304240] {33000000D0ED4ADB049E69E8710000000000D0} =>.Microsoft Corporation [MD5.C9028EFC81B0AD00D2E5037AAF377FB5] - 28/03/2017 - (.Microsoft Corporation - Internet Extensions para Win32.) -- C:\WINDOWS\System32\wininet.dll [2895872] =>.Microsoft Corporation [MD5.917F081E2AB667C44F7D96DE1D16DFAE] - 14/12/2016 - (.Microsoft Corporation - Aplicativo de Logon do Windows.) -- C:\WINDOWS\System32\Winlogon.exe [673792] =>.Microsoft Corporation [MD5.9600B7F2F89DE60A80D13DE42F672834] - 16/07/2016 - (.Microsoft Corporation - Biblioteca de Licenciamento de Software.) -- C:\WINDOWS\System32\sppcomapi.dll [402432] =>.Microsoft Corporation [MD5.2813C62F5BE7FAF0A1C5CC37E5C2F25D] - 04/03/2017 - (.Microsoft Corporation - DLL da API de cliente DNS.) -- C:\WINDOWS\System32\dnsapi.dll [646688] {33000001066EC325C431C9180E000000000106} =>.Microsoft Corporation [MD5.AA86DC342B4ED1C1F839C3BC8AEA64B1] - 04/03/2017 - (.Microsoft Corporation - DLL da API de cliente DNS.) -- C:\WINDOWS\Syswow64\dnsapi.dll [497416] {33000001066EC325C431C9180E000000000106} =>.Microsoft Corporation [MD5.323AA1953ED9C01E23F740FA891FE064] - 15/10/2016 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [584032] =>.Microsoft Windows® [MD5.A10F989A812B57B9695F6C305907C9C6] - 16/07/2016 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [28512] =>.Microsoft Windows® [MD5.F8FB51B9EF6372610E9B31A1D86B62FC] - 16/07/2016 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [92160] =>.Microsoft Corporation [MD5.613D0137C269187FA298A157E3D14A18] - 16/07/2016 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [173056] =>.Microsoft Corporation [MD5.4BC21E937E9F9F408672D2C2CBE4A153] - 04/03/2017 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [145408] =>.Microsoft Corporation [MD5.10E3515FE5DBA6656FA62C29342EC4A1] - 16/07/2016 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [83456] =>.Microsoft Corporation [MD5.B54B30992620C97230013A74461C8517] - 16/07/2016 - (.Microsoft Corporation - Driver de porta i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [114176] =>.Microsoft Corporation [MD5.F1DAECC3B3D6399875D4F10529D6A77C] - 16/07/2016 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [212480] =>.Microsoft Corporation [MD5.D559FF28B1AD9B1E15A4186E785E61F6] - 04/03/2017 - (.Microsoft Corporation - Minirdr SMB do Windows NT.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [450400] {33000001066EC325C431C9180E000000000106} =>.Microsoft Corporation [MD5.6FEBB0A847FFD5F057B9AC8889F1B9A7] - 16/07/2016 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [279040] =>.Microsoft Corporation [MD5.98BBD81DC481E9D58EEB31C81EBDEFF5] - 04/03/2017 - (.Microsoft Corporation - Driver do Sistema de Arquivos NT.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2255712] {33000001066EC325C431C9180E000000000106} =>.Microsoft Corporation [MD5.6B81BF7853D161DB8AC62CD8B9C2DE6B] - 16/07/2016 - (.Microsoft Corporation - Driver de porta paralela.) -- C:\WINDOWS\System32\drivers\Parport.sys [96768] =>.Microsoft Corporation [MD5.17E565710172ED71B8531D8822E1C5D1] - 16/07/2016 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [104960] =>.Microsoft Corporation [MD5.7135785C21CA79D270D11037C43D3F19] - 16/07/2016 - (.Microsoft Corporation - Redirecionador do Dispositivo RDP da Micros.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [177152] =>.Microsoft Corporation [MD5.0B237F8A96952BF95A14865030E131F2] - 04/03/2017 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [118624] {33000001066EC325C431C9180E000000000106} =>.Microsoft Corporation [MD5.BF2546583BB75F01DDA60A7921DFB230] - 16/07/2016 - (.Microsoft Corporation - Volume Shadow Copy driver.) -- C:\WINDOWS\System32\drivers\volsnap.sys [391520] =>.Microsoft Windows® ---\\ Serviços NT não Microsoft e não desativados (17) - 3s O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated® O23 - Service: Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe {0EBC1935D5294A594B4F32707B0A0AB9} =>.Apple Inc. O23 - Service: Serviço do Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.® O23 - Service: Dell Digital Delivery Service (DellDigitalDelivery) . (.Dell Products, LP. - Dell Digital Delivery Windows Service.) - C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe =>.Dell Inc.® O23 - Service: Dell Update Service (DellUpdate) . (.Dell Inc. - Dell Update Windows Service.) - C:\Program Files (x86)\Dell Update\DellUpService.exe =>.Dell Inc.® O23 - Service: Serviço do Google Update (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc® O23 - Service: IconMan_R (IconMan_R) . (.Realsil Microelectronics Inc. - Realtek Card Reader Patch Tool..) - C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe =>.Realtek Semiconductor Corp® O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\Windows\System32\igfxCUIService.exe {330000B898AA86B5A39E5A1BBD00020000B898} =>.Intel Corporation O23 - Service: iSafeService (iSafeService) . (.Elex do Brasil Participações Ltda - iSafeSvc.) - C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe =>PUP.Optional.Elex O23 - Service: Intel(R) Security Assist Helper (isaHelperSvc) . (...) - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe =>.Intel Corporation - Embedded Subsystems and IP Blocks Group® O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Intel(R) Local Management Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation - Embedded Subsystems and IP Blocks Group® O23 - Service: Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor - Realtek Audio Service.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp® O23 - Service: SoftThinks Agent Service (SftService) . (.SoftThinks SAS - SoftThinks Agent Service.) - C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe =>.Dell Inc.® O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe {330000008AF4BE0B29747A0FA000000000008A} =>.Skype Technologies O23 - Service: Dell SupportAssist Agent (SupportAssistAgent) . (.Dell Inc. - Service.) - C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe {0D84B32B03C91B75100348ACAC32285F} =>.Dell Inc. O23 - Service: The vSnapshot Service (ThevSnapshotService) . (.Copyright (C) 2015 - The vSnapshot Service.) - C:\Program Files (x86)\vSnapshot\1.0.0.0\vSnapshotServ.exe {41B441E443A07A8FA01DB64D5D90C567} ---\\ Serviços não Microsoft (SR=Executados, SS=Parados) (29) - 28s SR - Auto [02/02/2017] [ 82640] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated® SS - Demand [15/04/2017] [ 271448] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated® SR - Auto [17/03/2017] [ 83768] Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe {0EBC1935D5294A594B4F32707B0A0AB9} =>.Apple Inc. SR - Auto [12/08/2015] [ 462096] Serviço do Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.® SS - Demand [03/05/2016] [ 299488] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe {330000B898AA86B5A39E5A1BBD00020000B898} =>.Intel Corporation SR - Auto [16/03/2015] [ 237448] Dell Digital Delivery Service (DellDigitalDelivery) . (.Dell Products, LP..) - C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe =>.Dell Inc.® SR - Auto [27/08/2015] [ 237272] Dell Update Service (DellUpdate) . (.Dell Inc..) - C:\Program Files (x86)\Dell Update\DellUpService.exe =>.Dell Inc.® SS - Demand [05/05/2014] [ 527928] Gbp Service (GbpSv) . (.GAS Tecnologia.) - C:\Program Files (x86)\GbPlugin\gbpsv.exe {43FA90A311EFC01947FA97B37E9710CB} SS - Demand [22/05/2015] [ 310080] GoToAssist Corporate (GoToAssist) . (.Citrix Online, a division of Citrix Systems, Inc..) - C:\Program Files (x86)\Citrix\GoToAssist Corporate\1121\G2AC_Service.exe {3E228A34D17F29234AAB15FCA8D23D7A} SS - Auto [27/08/2015] [ 144200] Serviço do Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc® SS - Demand [27/08/2015] [ 144200] Serviço do Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc® SS - Demand [26/06/2015] [ 194032] Google Software Updater (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe =>.Google Inc® SR - Auto [08/09/2012] [ 2464400] IconMan_R (IconMan_R) . (.Realsil Microelectronics Inc..) - C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe =>.Realtek Semiconductor Corp® SR - Auto [03/05/2016] [ 337888] Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation.) - C:\Windows\System32\igfxCUIService.exe =>.Intel Corporation SS - Demand [22/05/2015] [ 881152] Intel(R) Capability Licensing Service TCP IP Interface (Intel(R) Capability Licensing Service TCP IP Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe =>.Intel® Trusted Connect Service® SR - Demand [19/05/2015] [ 335872] Intel(R) Security Assist (Intel(R) Security Assist) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe =>.Intel Corporation SS - Demand [22/03/2017] [ 689464] iPod Service (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe {0EBC1935D5294A594B4F32707B0A0AB9} =>.Apple Inc. SR - Auto [02/12/2016] [ 131024] iSafeService (iSafeService) . (.Elex do Brasil Participações Ltda.) - C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe =>PUP.Optional.Elex SS - Auto [19/05/2015] [ 7680] Intel(R) Security Assist Helper (isaHelperSvc) . (...) - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe SR - Auto [24/06/2015] [ 223008] Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe =>.Intel Corporation - Embedded Subsystems and IP Blocks Group® SR - Auto [24/06/2015] [ 411936] Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation - Embedded Subsystems and IP Blocks Group® SS - Demand [14/04/2017] [ 173512] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation® SS - Demand [24/04/2012] [ 254512] Cyberlink RichVideo Service(CRVS) (RichVideo) . (.Copyright 2004.) - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe =>.CyberLink® SR - Auto [04/08/2015] [ 312056] Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp® SR - Auto [12/02/2015] [ 2005392] SoftThinks Agent Service (SftService) . (.SoftThinks SAS.) - C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe =>.Dell Inc.® SS - Auto [16/01/2017] [ 317400] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe {330000008AF4BE0B29747A0FA000000000008A} =>.Skype Technologies SR - Auto [13/04/2017] [ 32728] Dell SupportAssist Agent (SupportAssistAgent) . (.Dell Inc..) - C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe {0D84B32B03C91B75100348ACAC32285F} =>.Dell Inc. SR - Auto [24/12/2016] [ 152264] The vSnapshot Service (ThevSnapshotService) . (.Copyright (C) 2015.) - C:\Program Files (x86)\vSnapshot\1.0.0.0\vSnapshotServ.exe {41B441E443A07A8FA01DB64D5D90C567} ---\\ Tarefas planificadas automaticamente (15) - 4s [MD5.BE62B286791F715E430FB022C1707BBA] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [271448] =>.Adobe Systems Incorporated® [MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-1492537628-2073842835-3753687853-1001Core] (.Facebook Inc..) -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096] =>.Facebook, Inc.® [MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-1492537628-2073842835-3753687853-1001UA] (.Facebook Inc..) -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096] =>.Facebook, Inc.® [MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [googleupdatetaskmachinecore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] =>.Google Inc® [MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [googleupdatetaskmachineua] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] =>.Google Inc® [MD5.00000000000000000000000000000000] [APT] [OneDrive Standalone Update Task] (...) -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe (.not file.) [0] [MD5.2AEDCCA604B6A8808DBA746AFC5D9B4A] [APT] [Apple\AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [570240] {0EBC1935D5294A594B4F32707B0A0AB9} =>.Apple Inc. O39 - APT: FacebookUpdateTaskUserS-1-5-21-1492537628-2073842835-3753687853-1001Core - (.Facebook Inc..) -- C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1492537628-2073842835-3753687853-1001Core.job [960] =>.Facebook Inc. O39 - APT: FacebookUpdateTaskUserS-1-5-21-1492537628-2073842835-3753687853-1001UA - (.Facebook Inc..) -- C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1492537628-2073842835-3753687853-1001UA.job [982] =>.Facebook Inc. O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater [4460] =>.Adobe Systems Incorporated O39 - APT: FacebookUpdateTaskUserS-1-5-21-1492537628-2073842835-3753687853-1001Core - (.Facebook Inc..) -- C:\WINDOWS\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1492537628-2073842835-3753687853-1001Core [3176] =>.Facebook Inc. O39 - APT: FacebookUpdateTaskUserS-1-5-21-1492537628-2073842835-3753687853-1001UA - (.Facebook Inc..) -- C:\WINDOWS\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1492537628-2073842835-3753687853-1001UA [3418] =>.Facebook Inc. O39 - APT: googleupdatetaskmachinecore - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\googleupdatetaskmachinecore [3462] =>.Google Inc. O39 - APT: googleupdatetaskmachineua - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\googleupdatetaskmachineua [3586] =>.Google Inc. O39 - APT: OneDrive Standalone Update Task - (...) -- C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task [2844] (.Orphean.) ---\\ Processos lançados (33) - 3s [MD5.6FEA419122DCFABD79A17FC6C9FFB0A6] - (.Elex do Brasil Participações Ltda - iSafeSvc.) -- C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe [131024] [PID.1376] =>PUP.Optional.Elex [MD5.6A9C613D0F5F9676D128F39B63ACE45B] - (.Intel Corporation - igfxCUIService Module.) -- C:\Windows\System32\igfxCUIService.exe [337888] [PID.1672] {330000B898AA86B5A39E5A1BBD00020000B898} =>.Intel Corporation [MD5.DBE1ADA144291F8E0F29ECC40AE14562] - (.Realtek Semiconductor - Realtek Audio Service.) -- C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [312056] [PID.1816] =>.Realtek Semiconductor Corp® [MD5.ED1FF139AFD82CB4500B6511C05DE5E1] - (.Elex do Brasil Participações Ltda - iSafeSvc2.) -- C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc2.exe [131024] [PID.1868] =>PUP.Optional.Elex [MD5.671133C0AC2D8B40B7574F69059653E9] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82640] [PID.2284] =>.Adobe Systems, Incorporated® [MD5.A5E8EB3B4244358F62DADF769DB59567] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768] [PID.2292] {0EBC1935D5294A594B4F32707B0A0AB9} =>.Apple Inc. [MD5.CB03C5EE94D94D5DB9AA6FF576CA15F3] - (.Filseclab Corporation Limited - ScreenShot Service.) -- C:\Program Files (x86)\ScreenShot\SSSvc.exe [139744] [PID.2376] {62AA6AB63BF9E374F94F77B86133E629} [MD5.B5C2F92EE1106DFE7BB1CCE4D35B6037] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [462096] [PID.2384] =>.Apple Inc.® [MD5.CC39B2015FD48CA82A8114146DA966BE] - (.Copyright (C) 2015 - The vSnapshot Service.) -- C:\Program Files (x86)\vSnapshot\1.0.0.0\vSnapshotServ.exe [152264] [PID.2468] {41B441E443A07A8FA01DB64D5D90C567} [MD5.44C694C2B542DB3CDAEBDB1FF3233F4D] - (.Dell Inc. - Dell Update Windows Service.) -- C:\Program Files (x86)\Dell Update\DellUpService.exe [237272] [PID.6904] =>.Dell Inc.® [MD5.33E6E5822E22A5E1DEA523C06155FD07] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe [288848] [PID.1068] {14F8FDD167F92402B1570B5DC495C815} =>.Google Inc. [MD5.27BEAF3F308ED2276F3863C2F2597556] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe [366672] [PID.1856] {14F8FDD167F92402B1570B5DC495C815} =>.Google Inc. [MD5.829EA5ECCAA623279D94EAEE3B5AD140] - (.Realsil Microelectronics Inc. - Realtek Card Reader Patch Tool..) -- C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [2464400] [PID.5776] =>.Realtek Semiconductor Corp® [MD5.51054A35D0303B0466F2031DAFDCE302] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223008] [PID.6852] =>.Intel Corporation - Embedded Subsystems and IP Blocks Group® [MD5.36E02306E8697940D42C1DDA1CD1CE2A] - (.Intel Corporation - Intel(R) Local Management Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [411936] [PID.4976] =>.Intel Corporation - Embedded Subsystems and IP Blocks Group® [MD5.07A09E5F9683AD05F887CB82B86F1195] - (.SoftThinks SAS - SoftThinks Agent Service.) -- C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe [2005392] [PID.6184] =>.Dell Inc.® [MD5.A72D314EDCB9A8E8C1241C0208109C75] - (.Dell Inc. - Service.) -- C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [32728] [PID.2184] {0D84B32B03C91B75100348ACAC32285F} =>.Dell Inc. [MD5.8213094EA736A9C575AB0E22AD09B0BA] - (.Intel Corporation - Intel(R) Security Assist.) -- C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872] [PID.5664] =>.Intel Corporation [MD5.188BCE1A33FAEE1F19A8D8875B0781DC] - (.Dell Products, LP. - Dell Digital Delivery Windows Service.) -- C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe [237448] [PID.6488] =>.Dell Inc.® [MD5.BC5A40AEAC1CF7708D07CBC2F577F90B] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411320] [PID.6916] =>.Realtek Semiconductor Corp® [MD5.BC5A40AEAC1CF7708D07CBC2F577F90B] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411320] [PID.8012] =>.Realtek Semiconductor Corp® [MD5.C7025ED9332D112CD4DAD7C8E92F30B1] - (.Intel Corporation - igfxEM Module.) -- C:\Windows\System32\igfxEM.exe [549344] [PID.11924] {330000B898AA86B5A39E5A1BBD00020000B898} =>.Intel Corporation [MD5.D8D19E718075D7B3DCA6B668968F3A87] - (.Intel Corporation - igfxHK Module.) -- C:\Windows\System32\igfxHK.exe [266208] [PID.7868] {330000B898AA86B5A39E5A1BBD00020000B898} =>.Intel Corporation [MD5.4617EAF2CA20C96A8F58A6060472FC35] - (.Elex do Brasil Participações Ltda - YACTray.) -- C:\Program Files (x86)\Elex-tech\YAC\iSafeTray.exe [427000] [PID.12108] =>PUP.Optional.Elex [MD5.CC436BB2A26391F3DEBE316F6FB0474F] - (.© 2015 Microsoft Corporation - Microsoft Bing Service.) -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008] [PID.13644] =>.Microsoft Corporation® [MD5.E3A3B4F97E15A77B679F720CBC9D4029] - (.Dell - Dell System Detect.) -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Apps\2.0\WWLRRZDM.8HZ\9LDMOPTM.O9J\dell..tion_831211ca63b981c5_0008.0004_3d463ceeb98aa2c1\DellSystemDetect.exe [313264] [PID.4780] {4374C1FFD2A33CC000000000556624BD} =>.Dell [MD5.A443A7C05ABF0FCD16E89593F63B633B] - (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288] [PID.6884] =>.Oracle America, Inc.® [MD5.9221F67A8FC9EF9629E8E5CF0C5931B0] - (.Dell Inc. - Dell Update.) -- C:\Program Files (x86)\Dell Update\DellUpTray.exe [707800] [PID.6324] =>.Dell Inc.® [MD5.1EE9093A151777146FA0A470335FB5B7] - (.SoftThinks - Dell - Dell Backup And Recovery Update Launcher.) -- C:\Program Files (x86)\Dell Backup and Recovery\COMPONENTS\DBRUPDATE\DBRUpd.exe [514960] [PID.14288] =>.Dell Inc.® [MD5.2B6235FD8AEE5821BAFF47FF0B39B818] - (.SoftThinks - Dell - Dell Backup And Recovery Toaster.) -- C:\Program Files (x86)\Dell Backup and Recovery\Toaster.exe [4191632] [PID.11048] =>.Dell Inc.® [MD5.6B674E1C84549106D69CADBFD525ECD1] - (...) -- C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.14.675.0_x64__kzf8qxf38zg5c\SkypeHost.exe [77312] [PID.5768] [MD5.AE17D5E86A1891500CE02BA659FFD018] - (.SoftThinks - Dell - Dell Backup And Recovery Sync.) -- C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBRSync.exe [508304] [PID.12808] =>.Dell Inc.® [MD5.FF9CE0FC9E3B4BC22001764A9EFE4741] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\ADEMIR MONTEIRO\Desktop\ZHPDiag3.exe [2105344] [PID.7840] =>.Nicolas Coolman ---\\ Google Chrome, Arranque,Pesquisa,Extensões (9) - 1s G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [kkdkcgeghhfjiglphfppinecpcpnnbne] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router ---\\ Mozilla Firefox, Plugins,Arranque,Pesquisa,Extensões (6) - 2s P2 - EXT FILE: (...) -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Mozilla\Firefox\Profiles\w6trckk7.default\extensions\translator@zoli.bod.xpi P2 - EXT FILE: (...) -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Mozilla\Firefox\Profiles\w6trckk7.default\extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi P2 - EXT FILE: (...) -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Mozilla\Firefox\Profiles\w6trckk7.default\searchplugins\McSiteAdvisor.xml P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\McSiteAdvisor.xml P2 - EXT: (.NetVideoHunter - NetVideoHunter.) -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Mozilla\Firefox\Profiles\w6trckk7.default\extensions\netvideohunter@netvideohunter.com =>.NetVideoHunter P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_148.dll =>.Adobe Systems Incorporated ---\\ Internet Explorer, Arranque, Pesquisa, Phishing (11) - 0s R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKEY_USERS\S-1-5-21-1492537628-2073842835-3753687853-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer ---\\ Internet Explorer, Gestão do Proxy (6) - 0s R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 ---\\ Análise das linhas, Carregamento Automático de programas (3) - 0s F2 - REG:system.ini: UserInit= F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation F2 - REG:system.ini: VMApplet= ---\\ Redireção do ficheiro Hosts (1) - 0s ~ Le fichier hôte est sain (The hosts file is clean) (21) ---\\ Browser Helper Objects do navegador (5) - 0s O2 - BHO: Lync Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} (Orphean) O2 - BHO: Groove GFS Browser Helper [64Bits] - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation® O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll {2A9C21ACAAA63A3C58A7B9322BEE948D} =>.Google Inc. O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL =>.Microsoft Corporation® O2 - BHO: Microsoft SkyDrive Pro Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} (Orphean) ---\\ Aplicações iniciadas por registo & pastas (30) - 2s O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gerenciador de áudio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe =>.Realtek Semiconductor Corp® O4 - HKLM\..\Run: [RtHDVBg] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe =>.Realtek Semiconductor Corp® O4 - HKLM\..\Run: [QuickSet] . (.Dell Inc. - QuickSet.) -- c:\Program Files\Dell\QuickSet\quickset.exe =>.Dell Inc® O4 - HKLM\..\Run: [DellWPF] C:\Program Files (x86)\Synaptics\SynTP\DellTouchpad.exe (.not file.) O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.) O4 - HKLM\..\Run: [WindowsDefender] C:\Program Files (x86)\Windows Defender\MSASCuiL.exe (.not file.) O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe {0EBC1935D5294A594B4F32707B0A0AB9} =>.Apple Inc. O4 - HKCU\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Spotify\SpotifyWebHelper.exe =>.Spotify AB® O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe {330000008AF4BE0B29747A0FA000000000008A} =>.Skype Technologies S.A. O4 - HKCU\..\Run: [BingSvc] . (.© 2015 Microsoft Corporation - Microsoft Bing Service.) -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Microsoft\BingSvc\BingSvc.exe =>.Microsoft Corporation® O4 - HKCU\..\Run: [OfficeSyncProcess] . (.Microsoft Corporation - Microsoft Office Document Cache.) -- C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE =>.Microsoft Corporation® O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Microsoft\OneDrive\OneDrive.exe {330000013FBFE82DC1EE0D270500010000013F} =>.Microsoft Corporation O4 - HKCU\..\Run: [Spotify] . (.Spotify Ltd - Spotify.) -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Spotify\Spotify.exe =>.Spotify AB® O4 - HKCU\..\Run: [VDownloader] . (.Vitzo - VDownloader.) -- C:\Program Files\VDownloader\Vdownloader4.exe O4 - HKCU\..\Run: [Chromium] . (.The Chromium Authors - Chromium.) -- c:\Users\ademir monteiro\AppData\Local\chromium\application\chrome.exe =>.The Chromium Authors O4 - HKCU\..\Run: [DellSystemDetect] . (.Dell - Dell System Detect.) -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Apps\2.0\WWLRRZDM.8HZ\9LDMOPTM.O9J\dell..tion_831211ca63b981c5_0008.0004_3d463ceeb98aa2c1\DellSystemDetect.exe {4374C1FFD2A33CC000000000556624BD} =>.Dell O4 - HKLM\..\Wow6432Node\Run: [Diebold - Warsaw] . (.GAS Tecnologia LTDA - GAS Tecnologia - Core.) -- C:\Program Files (x86)\Diebold\Warsaw\core.exe {58C005F9811C3FD333668072A04E0D1B} O4 - HKLM\..\Wow6432Node\Run: [BCSSync] . (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe =>.Microsoft Corporation® O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle America, Inc.® O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation® O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation® O4 - HKUS\S-1-5-21-1492537628-2073842835-3753687853-1001\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Spotify\SpotifyWebHelper.exe =>.Spotify AB® O4 - HKUS\S-1-5-21-1492537628-2073842835-3753687853-1001\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe {330000008AF4BE0B29747A0FA000000000008A} =>.Skype Technologies S.A. O4 - HKUS\S-1-5-21-1492537628-2073842835-3753687853-1001\..\Run: [BingSvc] . (.© 2015 Microsoft Corporation - Microsoft Bing Service.) -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Microsoft\BingSvc\BingSvc.exe =>.Microsoft Corporation® O4 - HKUS\S-1-5-21-1492537628-2073842835-3753687853-1001\..\Run: [OfficeSyncProcess] . (.Microsoft Corporation - Microsoft Office Document Cache.) -- C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE =>.Microsoft Corporation® O4 - HKUS\S-1-5-21-1492537628-2073842835-3753687853-1001\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Microsoft\OneDrive\OneDrive.exe {330000013FBFE82DC1EE0D270500010000013F} =>.Microsoft Corporation O4 - HKUS\S-1-5-21-1492537628-2073842835-3753687853-1001\..\Run: [Spotify] . (.Spotify Ltd - Spotify.) -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Spotify\Spotify.exe =>.Spotify AB® O4 - HKUS\S-1-5-21-1492537628-2073842835-3753687853-1001\..\Run: [VDownloader] . (.Vitzo - VDownloader.) -- C:\Program Files\VDownloader\Vdownloader4.exe O4 - HKUS\S-1-5-21-1492537628-2073842835-3753687853-1001\..\Run: [Chromium] . (.The Chromium Authors - Chromium.) -- c:\Users\ademir monteiro\AppData\Local\chromium\application\chrome.exe =>.The Chromium Authors O4 - HKUS\S-1-5-21-1492537628-2073842835-3753687853-1001\..\Run: [DellSystemDetect] . (.Dell - Dell System Detect.) -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Apps\2.0\WWLRRZDM.8HZ\9LDMOPTM.O9J\dell..tion_831211ca63b981c5_0008.0004_3d463ceeb98aa2c1\DellSystemDetect.exe {4374C1FFD2A33CC000000000556624BD} =>.Dell ---\\ Atalhos globais Startup (59) - 7s O4 - GS\Desktop [ADEMIR MONTEIRO]: Chromium.lnk . (.The Chromium Authors - Chromium.) C:\Users\ADEMIR MONTEIRO\AppData\Local\chromium\Application\chrome.exe =>.The Chromium Authors O4 - GS\Desktop [ADEMIR MONTEIRO]: DOWNLOADS.lnk . (...) C:\Users\ADEMIR MONTEIRO\Downloads O4 - GS\Desktop [ADEMIR MONTEIRO]: LINKS - Sites em 2004.docx - Atalho.lnk . (...) C:\Users\ADEMIR MONTEIRO\Documents\AM-Sites.docx O4 - GS\Desktop [ADEMIR MONTEIRO]: LITERATURA.lnk . (...) C:\Users\ADEMIR MONTEIRO\Documents\Ademir DOC\LITERATURA O4 - GS\Desktop [ADEMIR MONTEIRO]: MÚSICAS.lnk . (...) C:\Users\ADEMIR MONTEIRO\Music O4 - GS\Desktop [ADEMIR MONTEIRO]: VÍDEOS.lnk . (...) C:\Users\ADEMIR MONTEIRO\Videos O4 - GS\Desktop [ADEMIR MONTEIRO]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\ADEMIR MONTEIRO\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\Quicklaunch [ADEMIR MONTEIRO]: Chromium.lnk . (.The Chromium Authors - Chromium.) C:\Users\ADEMIR MONTEIRO\AppData\Local\chromium\Application\chrome.exe =>.The Chromium Authors O4 - GS\Quicklaunch [ADEMIR MONTEIRO]: Google Chrome.lnk . (...) C:\Program Files (x86)\Eastness\Application\chrome.exe O4 - GS\sendTo [ADEMIR MONTEIRO]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe {330000008AF4BE0B29747A0FA000000000008A} =>.Skype Technologies S.A. O4 - GS\TaskBar [ADEMIR MONTEIRO]: CyberLink Media Suite Essentials.lnk . (.CyberLink Corp. - CyberLink Media Suite Essentials Launcher M.) C:\Program Files (x86)\CyberLink\Media Suite\CMSLauncher.exe =>.CyberLink Corp.® O4 - GS\TaskBar [ADEMIR MONTEIRO]: Google Chrome.lnk . (...) C:\Program Files (x86)\Eastness\Application\chrome.exe O4 - GS\TaskBar [ADEMIR MONTEIRO]: Google Earth.lnk . (.Google - Google Earth.) C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe {2A9C21ACAAA63A3C58A7B9322BEE948D} =>.Google O4 - GS\TaskBar [ADEMIR MONTEIRO]: iTunes.lnk . (.Apple Inc. - .) C:\Program Files (x86)\iTunes\iTunes.exe =>.Apple Inc. O4 - GS\TaskBar [ADEMIR MONTEIRO]: Mozilla Firefox.lnk . (...) C:\Program Files (x86)\Firefox\Firefox.exe O4 - GS\TaskBar [ADEMIR MONTEIRO]: QuickTime Player.lnk . (...) C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe O4 - GS\TaskBar [ADEMIR MONTEIRO]: Spotify.lnk . (.Spotify Ltd - Spotify.) C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Spotify\Spotify.exe =>.Spotify AB® O4 - GS\Desktop [Administrador]: Chromium.lnk . (.The Chromium Authors - Chromium.) C:\Users\ADEMIR MONTEIRO\AppData\Local\chromium\Application\chrome.exe =>.The Chromium Authors O4 - GS\Desktop [Administrador]: DOWNLOADS.lnk . (...) C:\Users\ADEMIR MONTEIRO\Downloads O4 - GS\Desktop [Administrador]: LINKS - Sites em 2004.docx - Atalho.lnk . (...) C:\Users\ADEMIR MONTEIRO\Documents\AM-Sites.docx O4 - GS\Desktop [Administrador]: LITERATURA.lnk . (...) C:\Users\ADEMIR MONTEIRO\Documents\Ademir DOC\LITERATURA O4 - GS\Desktop [Administrador]: MÚSICAS.lnk . (...) C:\Users\ADEMIR MONTEIRO\Music O4 - GS\Desktop [Administrador]: VÍDEOS.lnk . (...) C:\Users\ADEMIR MONTEIRO\Videos O4 - GS\Desktop [Administrador]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\ADEMIR MONTEIRO\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\Quicklaunch [Administrador]: Chromium.lnk . (.The Chromium Authors - Chromium.) C:\Users\ADEMIR MONTEIRO\AppData\Local\chromium\Application\chrome.exe =>.The Chromium Authors O4 - GS\Quicklaunch [Administrador]: Google Chrome.lnk . (...) C:\Program Files (x86)\Eastness\Application\chrome.exe O4 - GS\sendTo [Administrador]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe {330000008AF4BE0B29747A0FA000000000008A} =>.Skype Technologies S.A. O4 - GS\TaskBar [Administrador]: CyberLink Media Suite Essentials.lnk . (.CyberLink Corp. - CyberLink Media Suite Essentials Launcher M.) C:\Program Files (x86)\CyberLink\Media Suite\CMSLauncher.exe =>.CyberLink Corp.® O4 - GS\TaskBar [Administrador]: Google Chrome.lnk . (...) C:\Program Files (x86)\Eastness\Application\chrome.exe O4 - GS\TaskBar [Administrador]: Google Earth.lnk . (.Google - Google Earth.) C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe {2A9C21ACAAA63A3C58A7B9322BEE948D} =>.Google O4 - GS\TaskBar [Administrador]: iTunes.lnk . (.Apple Inc. - .) C:\Program Files (x86)\iTunes\iTunes.exe =>.Apple Inc. O4 - GS\TaskBar [Administrador]: Mozilla Firefox.lnk . (...) C:\Program Files (x86)\Firefox\Firefox.exe O4 - GS\TaskBar [Administrador]: QuickTime Player.lnk . (...) C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe O4 - GS\TaskBar [Administrador]: Spotify.lnk . (.Spotify Ltd - Spotify.) C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Spotify\Spotify.exe =>.Spotify AB® O4 - GS\Desktop [Convidado]: Chromium.lnk . (.The Chromium Authors - Chromium.) C:\Users\ADEMIR MONTEIRO\AppData\Local\chromium\Application\chrome.exe =>.The Chromium Authors O4 - GS\Desktop [Convidado]: DOWNLOADS.lnk . (...) C:\Users\ADEMIR MONTEIRO\Downloads O4 - GS\Desktop [Convidado]: LINKS - Sites em 2004.docx - Atalho.lnk . (...) C:\Users\ADEMIR MONTEIRO\Documents\AM-Sites.docx O4 - GS\Desktop [Convidado]: LITERATURA.lnk . (...) C:\Users\ADEMIR MONTEIRO\Documents\Ademir DOC\LITERATURA O4 - GS\Desktop [Convidado]: MÚSICAS.lnk . (...) C:\Users\ADEMIR MONTEIRO\Music O4 - GS\Desktop [Convidado]: VÍDEOS.lnk . (...) C:\Users\ADEMIR MONTEIRO\Videos O4 - GS\Desktop [Convidado]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\ADEMIR MONTEIRO\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\Quicklaunch [Convidado]: Chromium.lnk . (.The Chromium Authors - Chromium.) C:\Users\ADEMIR MONTEIRO\AppData\Local\chromium\Application\chrome.exe =>.The Chromium Authors O4 - GS\Quicklaunch [Convidado]: Google Chrome.lnk . (...) C:\Program Files (x86)\Eastness\Application\chrome.exe O4 - GS\sendTo [Convidado]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe {330000008AF4BE0B29747A0FA000000000008A} =>.Skype Technologies S.A. O4 - GS\TaskBar [Convidado]: CyberLink Media Suite Essentials.lnk . (.CyberLink Corp. - CyberLink Media Suite Essentials Launcher M.) C:\Program Files (x86)\CyberLink\Media Suite\CMSLauncher.exe =>.CyberLink Corp.® O4 - GS\TaskBar [Convidado]: Google Chrome.lnk . (...) C:\Program Files (x86)\Eastness\Application\chrome.exe O4 - GS\TaskBar [Convidado]: Google Earth.lnk . (.Google - Google Earth.) C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe {2A9C21ACAAA63A3C58A7B9322BEE948D} =>.Google O4 - GS\TaskBar [Convidado]: iTunes.lnk . (.Apple Inc. - .) C:\Program Files (x86)\iTunes\iTunes.exe =>.Apple Inc. O4 - GS\TaskBar [Convidado]: Mozilla Firefox.lnk . (...) C:\Program Files (x86)\Firefox\Firefox.exe O4 - GS\TaskBar [Convidado]: QuickTime Player.lnk . (...) C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe O4 - GS\TaskBar [Convidado]: Spotify.lnk . (.Spotify Ltd - Spotify.) C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Spotify\Spotify.exe =>.Spotify AB® O4 - GS\CommonDesktop [Public]: Acrobat Reader DC.lnk . (.Adobe Systems Incorporated - Adobe Acrobat Reader DC.) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe =>.Adobe Systems, Incorporated® O4 - GS\CommonDesktop [Public]: Call of Duty(R) 4 - Modern Warfare(TM) Demo.lnk . (...) C:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare Demo\iw3sp.exe O4 - GS\CommonDesktop [Public]: Euro Truck Simulator 2.lnk . (.SCS Software - Euro Truck Simulator 2.) C:\Program Files (x86)\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe =>.SCS Software s.r.o.® O4 - GS\CommonDesktop [Public]: Need for Speed™ Most Wanted PC Demo.lnk . (...) C:\Program Files (x86)\EA GAMES\Need for Speed Most Wanted PC Demo\speedDemo.exe O4 - GS\CommonDesktop [Public]: SpinTires Tech Demo (June 060613).lnk . (...) C:\WINDOWS\Installer\{9AF7D6F5-50A5-432C-9F7B-83BCE03B11A0}\_2C43D8048601DA28349E11.exe O4 - GS\CommonDesktop [Public]: VDownloader.lnk . (.Vitzo - VDownloader.) C:\Program Files\VDownloader\VDownloader4.exe O4 - GS\Programs [Public]: Chromium.lnk . (.The Chromium Authors - Chromium.) C:\Users\ADEMIR MONTEIRO\AppData\Local\chromium\Application\chrome.exe =>.The Chromium Authors O4 - GS\Programs [Public]: Spotify.lnk . (.Spotify Ltd - Spotify.) C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Spotify\Spotify.exe =>.Spotify AB® ---\\ Alteração Dominio/Clientes DNS (4) - 0s O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = oi.com.br O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2e8ca994-9582-4af2-821d-4754298962c3}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2e8ca994-9582-4af2-821d-4754298962c3}: DhcpDomain = oi.com.br ---\\ Protocolo adicional (29) - 0s O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Controle ActiveX para streaming de vídeo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: livecall [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll =>.Microsoft Corporation® O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\SysWOW64\inetcomm.dll =>.Microsoft Corporation O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll =>.Microsoft Corporation® O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation O18 - Handler: msnim [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll =>.Microsoft Corporation® O18 - Handler: osf [64Bits] - {D924BDC6-C83A-4BD5-90D0-095128A113D1} . (.Microsoft Corporation - Microsoft Office 2013 component.) -- C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLL =>.Microsoft Corporation® O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll =>.Microsoft Corporation O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Controle ActiveX para streaming de vídeo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: windows.tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll =>.Microsoft Corporation O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll =>.Microsoft Corporation® O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Photo Gallery Album Download Protocol Handl.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll =>.Microsoft Corporation® O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation O18 - Filter: text/xml [64Bits] - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL =>.Microsoft Corporation® ---\\ Lista de chave explorando StartupApproved (32) - 1s [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:DellSystemDetect [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:Spotify Web Helper [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:Facebook Update [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:Skype [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:Spotify [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:RESTART_STICKY_NOTES [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:BingSvc [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:OfficeSyncProcess [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:OneDrive [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:GoogleChromeAutoLaunch_75BD889C5F695DD03545732E9F8A7932 [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:Chromium [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:VDownloader [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\StartupFolder]:Enviar para o OneNote.lnk [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\StartupFolder]:Adobe Playpanel.lnk [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\StartupFolder]:Microsoft SharePoint Workspace.lnk [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\StartupFolder]:OneNote 2010 Screen Clipper and Launcher.lnk [HKEY_USERS\S-1-5-21-1492537628-2073842835-3753687853-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:DellSystemDetect [HKEY_USERS\S-1-5-21-1492537628-2073842835-3753687853-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:Spotify Web Helper [HKEY_USERS\S-1-5-21-1492537628-2073842835-3753687853-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:Facebook Update [HKEY_USERS\S-1-5-21-1492537628-2073842835-3753687853-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:Skype [HKEY_USERS\S-1-5-21-1492537628-2073842835-3753687853-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:Spotify [HKEY_USERS\S-1-5-21-1492537628-2073842835-3753687853-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:RESTART_STICKY_NOTES [HKEY_USERS\S-1-5-21-1492537628-2073842835-3753687853-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:BingSvc [HKEY_USERS\S-1-5-21-1492537628-2073842835-3753687853-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:OfficeSyncProcess [HKEY_USERS\S-1-5-21-1492537628-2073842835-3753687853-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:OneDrive [HKEY_USERS\S-1-5-21-1492537628-2073842835-3753687853-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:GoogleChromeAutoLaunch_75BD889C5F695DD03545732E9F8A7932 [HKEY_USERS\S-1-5-21-1492537628-2073842835-3753687853-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:Chromium [HKEY_USERS\S-1-5-21-1492537628-2073842835-3753687853-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]:VDownloader [HKEY_USERS\S-1-5-21-1492537628-2073842835-3753687853-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\StartupFolder]:Enviar para o OneNote.lnk [HKEY_USERS\S-1-5-21-1492537628-2073842835-3753687853-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\StartupFolder]:Adobe Playpanel.lnk [HKEY_USERS\S-1-5-21-1492537628-2073842835-3753687853-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\StartupFolder]:Microsoft SharePoint Workspace.lnk [HKEY_USERS\S-1-5-21-1492537628-2073842835-3753687853-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\StartupFolder]:OneNote 2010 Screen Clipper and Launcher.lnk ---\\ Software instalados (83) - 18s O42 - Logiciel: Adobe Acrobat Reader DC - Português - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1046-7B44-AC0F074E4100} =>.Adobe Systems Incorporated O42 - Logiciel: Adobe Flash Player 25 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated® O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824214663} =>.Adobe Systems Incorporated O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {DB18F1C0-846F-46F5-A074-5B97C8AF5C8E} =>.Apple Inc. O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {52D87F32-70E4-4348-8148-C0B9F35B1314} =>.Apple Inc. O42 - Logiciel: Assistente de Atualização do Windows 10 - (.Microsoft Corporation.) [HKLM][64Bits] -- {D5C69738-B486-402E-85AC-2456D98A64E4} {330000014096A9EE7056FECC07000100000140} =>.Microsoft Corporation O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {56DDDFB8-7F79-4480-89D5-25E1F52AB28F} =>.Apple Inc. O42 - Logiciel: Call of Duty(R) 4 - Modern Warfare(TM) Demo - (.Activision.) [HKLM][64Bits] -- {6734CA10-8FB8-4C7F-B8C7-75317C617DC5} =>.Activision O42 - Logiciel: Call of Duty(R) 4 - Modern Warfare(TM) Demo - (.Activision.) [HKLM][64Bits] -- InstallShield_{6734CA10-8FB8-4C7F-B8C7-75317C617DC5} =>.Activision O42 - Logiciel: Chromium - (...) [HKLM][64Bits] -- {1D62F5A2-4DE2-2422-FC62-54A22CE28722} O42 - Logiciel: Citrix Online Launcher - (.Citrix.) [HKLM][64Bits] -- {6740FE60-43C1-4D15-8C4A-001624134B14} =>.Citrix O42 - Logiciel: CyberLink LabelPrint 2.5 - (.CyberLink Corp..) [HKLM][64Bits] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243} =>.CyberLink Corp.® O42 - Logiciel: CyberLink Media Suite 11 - (.CyberLink Corp..) [HKLM][64Bits] -- {1FBF6C24-C1fD-4101-A42B-0C564F9E8E79} =>.CyberLink Corp.® O42 - Logiciel: CyberLink Media Suite Essentials - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7} =>.CyberLink Corp.® O42 - Logiciel: CyberLink Power2Go 8 - (.CyberLink Corp..) [HKLM][64Bits] -- {2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2} =>.CyberLink Corp.® O42 - Logiciel: CyberLink PowerDirector 10 - (.CyberLink Corp..) [HKLM][64Bits] -- {B0B4F6D2-F2AE-451A-9496-6F2F6A897B32} =>.CyberLink Corp.® O42 - Logiciel: CyberLink PowerDVD 12 - (.CyberLink Corp..) [HKLM][64Bits] -- {B46BEA36-0B71-4A4E-AE41-87241643FA0A} =>.CyberLink Corp.® O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} =>.Microsoft O42 - Logiciel: Dell Backup and Recovery - (.Dell Inc..) [HKLM][64Bits] -- {0ED7EE95-6A97-47AA-AD73-152C08A15B04} =>.Dell Inc. O42 - Logiciel: Dell Digital Delivery - (.Dell Products, LP.) [HKLM][64Bits] -- {693A23FB-F28B-4F7A-A720-4C1263F97F43} =>.Dell Products, LP O42 - Logiciel: Dell SupportAssist - (.Dell.) [HKLM][64Bits] -- PC-Doctor for Windows {0D84B32B03C91B75100348ACAC32285F} =>.Dell O42 - Logiciel: Dell SupportAssistAgent - (.Dell.) [HKLM][64Bits] -- {1AE53ECE-2255-4191-998B-07741E5EFCDA} =>.Dell O42 - Logiciel: Dell System Detect - (.Dell.) [HKCU][64Bits] -- d24084d039586cae {4374C1FFD2A33CC000000000556624BD} =>.Dell O42 - Logiciel: Dell Touchpad - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey =>.Synaptics Incorporated O42 - Logiciel: Dell Update - (.Dell Inc..) [HKLM][64Bits] -- {DB82968B-57A4-4397-81A5-ECAB21B5DFCD} =>.Dell Inc. O42 - Logiciel: Dell Update - SupportAssist Update Plugin - (.Dell Inc..) [HKLM][64Bits] -- {5F641343-FA40-4084-855A-7FA3251783DC} =>.Dell Inc. O42 - Logiciel: Dell WLAN and Bluetooth Client Installation - (.Dell Inc..) [HKLM][64Bits] -- {28006915-2739-4EBE-B5E8-49B25D32EB33} =>.Dell Inc. O42 - Logiciel: EPSON L555 Series Printer Uninstall - (.SEIKO EPSON Corporation.) [HKLM][64Bits] -- EPSON L555 Series =>.SEIKO EPSON Corporation® O42 - Logiciel: Euro Truck Simulator 2 - (.SCS Software.) [HKLM][64Bits] -- {1B705E8F-9893-4486-B5D7-4F7FEB9C871E}_is1 =>.SCS Software s.r.o.® O42 - Logiciel: Facebook Video Calling 3.1.0.521 - (.Skype Limited.) [HKLM][64Bits] -- {2091F234-EB58-4B80-8C96-8EB78C808CF7} =>.Skype Limited O42 - Logiciel: Galeria de Fotos - (.Microsoft Corporation.) [HKLM][64Bits] -- {9EE1AE8B-4872-41CA-8C9A-C33D899523E0} =>.Microsoft Corporation O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome {2A9C21ACAAA63A3C58A7B9322BEE948D} =>.Google Inc. O42 - Logiciel: Google Earth - (.Google.) [HKLM][64Bits] -- {F6430171-B86B-4639-839E-374913E7911D} =>.Google O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C} =>.Google Inc. O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F} {2A9C21ACAAA63A3C58A7B9322BEE948D} =>.Google Inc. O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc. O42 - Logiciel: GoToAssist Corporate - (.Citrix Online, a division of Citrix Systems, Inc..) [HKLM][64Bits] -- GoToAssist {3E228A34D17F29234AAB15FCA8D23D7A} O42 - Logiciel: Intel(R) Chipset Device Software - (.Intel Corporation.) [HKLM][64Bits] -- {55398EAC-F58E-4F19-B553-BDF8B9EFD839} =>.Intel Corporation O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM][64Bits] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421} =>.Intel Corporation® O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {06F2A7C5-19F0-4962-B8D2-A495B7DD2A30} =>.Intel Corporation O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {1CEAC85D-2590-4760-800F-8DE5E91F3700} =>.Intel Corporation O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {B4FF8C31-F307-4873-A244-BBC0233CAD4B} =>.Intel Corporation O42 - Logiciel: Intel(R) ME UninstallLegacy - (.Intel Corporation.) [HKLM][64Bits] -- {FD37351B-3074-4652-8188-1B3FB784EC4E} =>.Intel Corporation O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel Corporation - pGFX® O42 - Logiciel: Intel® Security Assist - (.Intel Corporation.) [HKLM][64Bits] -- {4B230374-6475-4A73-BA6E-41015E9C5013} =>.Intel Corporation O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {7D84E343-A23D-451C-B123-0195B2D903A6} =>.Intel Corporation O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {164600BE-9CEC-44E6-9B38-2B12D5FE2342} =>.Apple Inc. O42 - Logiciel: Java 8 Update 131 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F32180131F0} =>.Oracle Corporation O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Oracle Corporation O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {0BE9E708-5DC0-4963-9CFD-0AA519090E79} =>.Microsoft Corporation O42 - Logiciel: Microsoft Application Error Reporting - (.Microsoft Corporation.) [HKLM][64Bits] -- {95120000-00B9-0409-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe {330000013FBFE82DC1EE0D270500010000013F} =>.Microsoft Corporation O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} =>.Microsoft Corporation O42 - Logiciel: Mozilla Firefox 53.0 (x86 pt-BR) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 53.0 (x86 pt-BR) =>.Mozilla Corporation® O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService =>.Mozilla O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} =>.Microsoft O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM][64Bits] -- {E1D7DF5E-3771-11E3-9588-1040F3E7010F} =>.Sony Creative Software Inc. O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9} =>.Microsoft O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA} =>.Microsoft O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {E9FA781F-3E80-4399-825A-AD3E11C28C77} =>.Microsoft O42 - Logiciel: Need for Speed™ Most Wanted PC Demo - (...) [HKLM][64Bits] -- {E085FD28-F22C-4D41-00A1-F0751BF8EFC1} O42 - Logiciel: Noise Reduction Plug-In 2.0 - (.Sony.) [HKLM][64Bits] -- {847C6940-D852-11E2-81D2-F04DA23A5C58} =>.Sony O42 - Logiciel: Office 15 Click-to-Run Extensibility Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008C-0000-0000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Office 15 Click-to-Run Licensing Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008F-0000-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Office 15 Click-to-Run Localization Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008C-0416-0000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Quickset64 - (.Dell Inc..) [HKLM][64Bits] -- {87CF757E-C1F1-4D22-865C-00C6950B5258} =>.Dell Inc. O42 - Logiciel: QuickTime 7 - (.Apple Inc..) [HKLM][64Bits] -- {80CEEB1E-0A6C-45B9-A312-37A1D25FDEBC} =>.Apple Inc. O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp® O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {96AE7E41-E34E-47D0-AC07-1091A8127911} =>.Realtek Semiconductor Corp® O42 - Logiciel: Sawbuck - (.Google Inc.) [HKLM][64Bits] -- {459BFE07-FCF3-4274-AC8B-8E8DDA7214BA} =>.Google Inc O42 - Logiciel: Shared C Run-time for x64 - (.McAfee.) [HKLM][64Bits] -- {EF79C448-6946-4D71-8134-03407888C054} =>.McAfee O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B} =>.Microsoft Corporation O42 - Logiciel: Skype Web Plugin - (.Skype Technologies S.A..) [HKLM][64Bits] -- {CD62BCB9-02D2-443F-AC7A-443377DA5B38} =>.Skype Technologies S.A. O42 - Logiciel: Skype™ 7.32 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {FC965A47-4839-40CA-B618-18F486F042C6} =>.Skype Technologies S.A. O42 - Logiciel: Software de dispositivo do Chipset Intel® - (.Intel(R) Corporation.) [HKLM][64Bits] -- {c7f54569-0018-439c-809a-48046a4d4ebc} =>.Intel Corporation - Software and Firmware Products® O42 - Logiciel: SpinTires Tech Demo (June 060613) - (.Oovee.) [HKLM][64Bits] -- {9AF7D6F5-50A5-432C-9F7B-83BCE03B11A0} =>.Oovee O42 - Logiciel: Spotify - (.Spotify AB.) [HKCU][64Bits] -- Spotify =>.Spotify AB® O42 - Logiciel: Suporte para Aplicativos Apple (32-bit) - (.Apple Inc..) [HKLM][64Bits] -- {05E07D23-91E9-4E70-A4CC-EF505088F967} =>.Apple Inc. O42 - Logiciel: Suporte para Aplicativos Apple Apple (64-bit) - (.Apple Inc..) [HKLM][64Bits] -- {741291DA-2B34-4D44-8FB6-58EDE21261D8} =>.Apple Inc. O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU][64Bits] -- UnityWebPlayer =>.Unity Technologies ApS O42 - Logiciel: Warsaw 1.3.1 - (.GAS Tecnologia.) [HKLM][64Bits] -- {20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1 O42 - Logiciel: WinRAR 5.20 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH® O42 - Logiciel: YAC(Yet Another Cleaner!) - (.ELEX DO BRASIL PARTICIPAÇÕES LTDA.) [HKLM][64Bits] -- iSafe =>PUP.Optional.Elex ---\\ HKCU & HKLM Software Keys (139) - 18s HKLM\SOFTWARE\Wow6432Node\360Safe HKLM\SOFTWARE\Wow6432Node\Activision HKLM\SOFTWARE\Wow6432Node\Adobe HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc. HKLM\SOFTWARE\Wow6432Node\Apple Inc. HKLM\SOFTWARE\Wow6432Node\ATHEROS HKLM\SOFTWARE\Wow6432Node\baidu HKLM\SOFTWARE\Wow6432Node\Baidu Security HKLM\SOFTWARE\Wow6432Node\Baidu_Drp_pos HKLM\SOFTWARE\Wow6432Node\Bitstream HKLM\SOFTWARE\Wow6432Node\CDDB HKLM\SOFTWARE\Wow6432Node\Chromium HKLM\SOFTWARE\Wow6432Node\Citrix HKLM\SOFTWARE\Wow6432Node\CyberLink HKLM\SOFTWARE\Wow6432Node\Dell HKLM\SOFTWARE\Wow6432Node\Dell Inc. HKLM\SOFTWARE\Wow6432Node\DellBackupandRecovery HKLM\SOFTWARE\Wow6432Node\DellShared HKLM\SOFTWARE\Wow6432Node\Dell_Wlan HKLM\SOFTWARE\Wow6432Node\EA GAMES HKLM\SOFTWARE\Wow6432Node\Eastness HKLM\SOFTWARE\Wow6432Node\Elex-tech HKLM\SOFTWARE\Wow6432Node\EPSON HKLM\SOFTWARE\Wow6432Node\EVP HKLM\SOFTWARE\Wow6432Node\Google HKLM\SOFTWARE\Wow6432Node\IM Providers HKLM\SOFTWARE\Wow6432Node\InstallShield HKLM\SOFTWARE\Wow6432Node\Intel HKLM\SOFTWARE\Wow6432Node\JavaSoft HKLM\SOFTWARE\Wow6432Node\JreMetrics HKLM\SOFTWARE\Wow6432Node\Khronos HKLM\SOFTWARE\Wow6432Node\Lake HKLM\SOFTWARE\Wow6432Node\LogMeIn Rescue HKLM\SOFTWARE\Wow6432Node\Macromedia HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware (Trial) HKLM\SOFTWARE\Wow6432Node\McAfee HKLM\SOFTWARE\Wow6432Node\McAfee.com HKLM\SOFTWARE\Wow6432Node\MimarSinan HKLM\SOFTWARE\Wow6432Node\Mozilla HKLM\SOFTWARE\Wow6432Node\mozilla.org HKLM\SOFTWARE\Wow6432Node\MozillaPlugins HKLM\SOFTWARE\Wow6432Node\Network Associates HKLM\SOFTWARE\Wow6432Node\Nuance HKLM\SOFTWARE\Wow6432Node\ODBC HKLM\SOFTWARE\Wow6432Node\Orolix HKLM\SOFTWARE\Wow6432Node\PC-Doctor HKLM\SOFTWARE\Wow6432Node\Protexis HKLM\SOFTWARE\Wow6432Node\PSafe HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp. HKLM\SOFTWARE\Wow6432Node\SCS Software HKLM\SOFTWARE\Wow6432Node\Skype HKLM\SOFTWARE\Wow6432Node\SoftThinks HKLM\SOFTWARE\Wow6432Node\Sony Creative Software HKLM\SOFTWARE\Wow6432Node\Sony Media Software HKLM\SOFTWARE\Wow6432Node\SuppHelpDir HKLM\SOFTWARE\Wow6432Node\SymNRT HKLM\SOFTWARE\Wow6432Node\Synthesia HKLM\SOFTWARE\Wow6432Node\Volatile HKLM\SOFTWARE\Wow6432Node\Waves Audio HKLM\SOFTWARE\Wow6432Node\WOW6432Node HKLM\SOFTWARE\Wow6432Node\Yahoo =>.Yahoo! HKLM\SOFTWARE\Wow6432Node\RegisteredApplications HKLM\SOFTWARE\Wow6432Node\VolDellBackupAndRecovery HKCU\SOFTWARE\360 HKCU\SOFTWARE\4shared HKCU\SOFTWARE\Adobe HKCU\SOFTWARE\AOL HKCU\SOFTWARE\AppDataLow HKCU\SOFTWARE\Apple Computer, Inc. HKCU\SOFTWARE\Apple Inc. HKCU\SOFTWARE\Atheros HKCU\SOFTWARE\AutoHelpDesk HKCU\SOFTWARE\Baidu HKCU\SOFTWARE\Baidu Security HKCU\SOFTWARE\Bitstream HKCU\SOFTWARE\Chromium HKCU\SOFTWARE\Citrix HKCU\SOFTWARE\Corel HKCU\SOFTWARE\CyberLink HKCU\SOFTWARE\Dell HKCU\SOFTWARE\DirectShow HKCU\SOFTWARE\Disc Soft HKCU\SOFTWARE\Eastness HKCU\SOFTWARE\EPSON HKCU\SOFTWARE\Facebook HKCU\SOFTWARE\GbAs HKCU\SOFTWARE\GbPlugin HKCU\SOFTWARE\Google HKCU\SOFTWARE\Icaros HKCU\SOFTWARE\ICSW HKCU\SOFTWARE\IM Providers HKCU\SOFTWARE\Intel HKCU\SOFTWARE\JavaSoft HKCU\SOFTWARE\kde.org HKCU\SOFTWARE\Lake HKCU\SOFTWARE\Leadertech HKCU\SOFTWARE\Licenses HKCU\SOFTWARE\LiveUpdate360 HKCU\SOFTWARE\Local AppWizard-Generated Applications HKCU\SOFTWARE\Macromedia HKCU\SOFTWARE\Malwarebytes' Anti-Malware HKCU\SOFTWARE\Mine HKCU\SOFTWARE\Mozilla HKCU\SOFTWARE\MozillaPlugins HKCU\SOFTWARE\Netscape HKCU\SOFTWARE\Norton HKCU\SOFTWARE\ODBC HKCU\SOFTWARE\Orolix HKCU\SOFTWARE\OrolixCommunicator HKCU\SOFTWARE\PC-Doctor HKCU\SOFTWARE\profession HKCU\SOFTWARE\ProtectedStorage HKCU\SOFTWARE\PSafe HKCU\SOFTWARE\Realtek HKCU\SOFTWARE\RegisteredApplications HKCU\SOFTWARE\Skype HKCU\SOFTWARE\skypeapp-055e24bd6fef HKCU\SOFTWARE\SkypePlugin HKCU\SOFTWARE\Sony Creative Software HKCU\SOFTWARE\Spotify HKCU\SOFTWARE\SUPERAntiSpyware.com HKCU\SOFTWARE\Synaptics HKCU\SOFTWARE\SyncEngines HKCU\SOFTWARE\Sysinternals HKCU\SOFTWARE\Trolltech HKCU\SOFTWARE\Unity HKCU\SOFTWARE\Wargaming.net HKCU\SOFTWARE\Waves Audio HKCU\SOFTWARE\Windows Live Writer HKCU\SOFTWARE\WinRAR HKCU\SOFTWARE\WinRAR SFX HKCU\SOFTWARE\Wow6432Node HKCU\SOFTWARE\ZebHelpProcess Helper HKCU\SOFTWARE\ZHP HKCU\SOFTWARE\应用程序向导生成的本地应用程序 HKCU\SOFTWARE\AppDataLow\Software HKCU\SOFTWARE\AppDataLow\Software\JavaSoft HKCU\SOFTWARE\AppDataLow\Software\Unity ---\\ Conteúdo das pastas Programs (270) - 35s O43 - CFD: 21/02/2015 - [] D -- C:\Program Files (x86)\Activision O43 - CFD: 28/09/2015 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems, Incorporated® O43 - CFD: 26/03/2017 - [] AD -- C:\Program Files (x86)\Apple Software Update {0EBC1935D5294A594B4F32707B0A0AB9} O43 - CFD: 27/04/2017 - [] D -- C:\Program Files (x86)\BiaoJi O43 - CFD: 21/09/2015 - [] AD -- C:\Program Files (x86)\Bonjour =>.Apple Inc.® O43 - CFD: 22/05/2015 - [] D -- C:\Program Files (x86)\Citrix {3E228A34D17F29234AAB15FCA8D23D7A} O43 - CFD: 22/04/2017 - [] D -- C:\Program Files (x86)\Common Files O43 - CFD: 18/07/2014 - [] AD -- C:\Program Files (x86)\CyberLink =>.CyberLink® O43 - CFD: 29/04/2017 - [] D -- C:\Program Files (x86)\Dell O43 - CFD: 01/05/2017 - [] AD -- C:\Program Files (x86)\Dell Backup and Recovery =>.Dell Inc.® O43 - CFD: 22/10/2016 - [] AD -- C:\Program Files (x86)\Dell Digital Delivery O43 - CFD: 22/10/2016 - [] AD -- C:\Program Files (x86)\Dell Update =>.Dell Inc.® O43 - CFD: 14/03/2015 - [] AD -- C:\Program Files (x86)\Dell Wireless O43 - CFD: 30/09/2014 - [] D -- C:\Program Files (x86)\Diebold {58C005F9811C3FD333668072A04E0D1B} O43 - CFD: 29/09/2014 - [] D -- C:\Program Files (x86)\EA GAMES O43 - CFD: 25/04/2017 - [] D -- C:\Program Files (x86)\Elex-tech =>PUP.Optional.Elex =>PUP.Optional.Elex O43 - CFD: 11/03/2015 - [] AD -- C:\Program Files (x86)\Euro Truck Simulator 2 =>.SCS Software s.r.o.® O43 - CFD: 30/09/2014 - [] HD -- C:\Program Files (x86)\GAS Tecnologia O43 - CFD: 30/09/2014 - [] D -- C:\Program Files (x86)\GbPlugin {43FA90A311EFC01947FA97B37E9710CB} O43 - CFD: 12/02/2017 - [] D -- C:\Program Files (x86)\Google =>.Google Inc® O43 - CFD: 21/02/2015 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.CyberLink Corp.® O43 - CFD: 15/02/2017 - [] D -- C:\Program Files (x86)\Intel O43 - CFD: 13/04/2017 - [] D -- C:\Program Files (x86)\Internet Explorer O43 - CFD: 22/04/2017 - [] D -- C:\Program Files (x86)\Java =>.Oracle America, Inc.® O43 - CFD: 10/07/2016 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services O43 - CFD: 10/07/2016 - [] AD -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation® O43 - CFD: 31/12/2013 - [] D -- C:\Program Files (x86)\Microsoft SDKs =>.Microsoft Corporation® O43 - CFD: 12/04/2017 - [] AD -- C:\Program Files (x86)\Microsoft Silverlight {330000014096A9EE7056FECC07000100000140} O43 - CFD: 03/12/2013 - [] D -- C:\Program Files (x86)\Microsoft SkyDrive =>.Microsoft Corporation® O43 - CFD: 10/07/2016 - [] AD -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition O43 - CFD: 10/07/2016 - [] D -- C:\Program Files (x86)\Microsoft Sync Framework O43 - CFD: 10/07/2016 - [] D -- C:\Program Files (x86)\Microsoft Synchronization Services O43 - CFD: 10/07/2016 - [] AD -- C:\Program Files (x86)\Microsoft Visual Studio 8 O43 - CFD: 31/12/2013 - [] AD -- C:\Program Files (x86)\Microsoft Visual Studio 9.0 =>.Microsoft Corporation® O43 - CFD: 22/10/2016 - [] D -- C:\Program Files (x86)\Microsoft.NET O43 - CFD: 17/04/2017 - [] D -- C:\Program Files (x86)\MIO =>.Superfluous.Tencent O43 - CFD: 23/04/2017 - [] AD -- C:\Program Files (x86)\Mozilla Firefox =>.Mozilla Corporation® O43 - CFD: 27/04/2017 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla Corporation® O43 - CFD: 22/10/2016 - [] AD -- C:\Program Files (x86)\MSBuild O43 - CFD: 24/09/2014 - [] D -- C:\Program Files (x86)\Oovee O43 - CFD: 25/05/2015 - [] D -- C:\Program Files (x86)\PSafe {07F79AA9335B794D70779F719061AFF2} O43 - CFD: 08/10/2013 - [] D -- C:\Program Files (x86)\Realtek =>.Realtek Semiconductor Corp® O43 - CFD: 22/10/2016 - [] D -- C:\Program Files (x86)\Reference Assemblies O43 - CFD: 19/02/2017 - [] AD -- C:\Program Files (x86)\ScreenShot {62AA6AB63BF9E374F94F77B86133E629} O43 - CFD: 18/02/2017 - [] RD -- C:\Program Files (x86)\Skype {330000008AF4BE0B29747A0FA000000000008A} O43 - CFD: 11/09/2014 - [] D -- C:\Program Files (x86)\Sony {2E7521CEF8B50A1F1F93E637B204600A} O43 - CFD: 18/04/2017 - [] D -- C:\Program Files (x86)\temp O43 - CFD: 24/02/2017 - [] D -- C:\Program Files (x86)\vSnapshot {41B441E443A07A8FA01DB64D5D90C567} O43 - CFD: 12/04/2017 - [] D -- C:\Program Files (x86)\Windows Defender O43 - CFD: 14/01/2015 - [] AD -- C:\Program Files (x86)\Windows Live =>.Microsoft Corporation® O43 - CFD: 17/03/2017 - [] D -- C:\Program Files (x86)\Windows Mail O43 - CFD: 04/01/2017 - [] D -- C:\Program Files (x86)\Windows Media Player O43 - CFD: 16/07/2016 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform O43 - CFD: 16/07/2016 - [] D -- C:\Program Files (x86)\Windows NT O43 - CFD: 12/04/2017 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation® O43 - CFD: 16/07/2016 - [] D -- C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 16/07/2016 - [] SHD -- C:\Program Files (x86)\Windows Sidebar O43 - CFD: 16/07/2016 - [] D -- C:\Program Files (x86)\WindowsPowerShell O43 - CFD: 17/03/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility O43 - CFD: 12/04/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 22/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Activision O43 - CFD: 04/01/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 22/10/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Media Suite O43 - CFD: 24/04/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell O43 - CFD: 22/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES O43 - CFD: 22/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON O43 - CFD: 22/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Euro Truck Simulator 2 O43 - CFD: 08/08/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games O43 - CFD: 12/02/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth O43 - CFD: 22/10/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel O43 - CFD: 26/03/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes O43 - CFD: 22/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java O43 - CFD: 16/07/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 22/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office O43 - CFD: 22/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 O43 - CFD: 12/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight O43 - CFD: 22/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oovee O43 - CFD: 30/05/2014 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PSafe O43 - CFD: 19/02/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ScreenShot O43 - CFD: 22/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint O43 - CFD: 22/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype O43 - CFD: 22/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony O43 - CFD: 16/07/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp O43 - CFD: 16/07/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools O43 - CFD: 27/04/2016 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC O43 - CFD: 13/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VDownloader O43 - CFD: 22/10/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live O43 - CFD: 22/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR O43 - CFD: 16/05/2015 - [] SHD -- C:\ProgramData\360Quarant O43 - CFD: 13/05/2014 - [0] D -- C:\ProgramData\4shared Desktop O43 - CFD: 28/09/2015 - [] D -- C:\ProgramData\Adobe O43 - CFD: 13/08/2015 - [] D -- C:\ProgramData\Apple O43 - CFD: 13/08/2015 - [] D -- C:\ProgramData\Apple Computer O43 - CFD: 12/01/2014 - [] D -- C:\ProgramData\baidu O43 - CFD: 21/04/2015 - [] D -- C:\ProgramData\Baidu Security O43 - CFD: 02/01/2014 - [] D -- C:\ProgramData\Bitstream O43 - CFD: 10/05/2015 - [] D -- C:\ProgramData\boost_interprocess O43 - CFD: 08/10/2013 - [] D -- C:\ProgramData\CLSK O43 - CFD: 16/07/2016 - [0] D -- C:\ProgramData\Comms O43 - CFD: 11/02/2015 - [] D -- C:\ProgramData\Corel O43 - CFD: 04/10/2014 - [] D -- C:\ProgramData\CyberLink O43 - CFD: 21/11/2013 - [0] SHD -- C:\ProgramData\Dados de Aplicativos O43 - CFD: 10/07/2016 - [] D -- C:\ProgramData\DAEMON Tools Lite O43 - CFD: 22/02/2017 - [] D -- C:\ProgramData\Dell O43 - CFD: 22/10/2016 - [0] SHD -- C:\ProgramData\Desktop O43 - CFD: 21/11/2013 - [0] SHD -- C:\ProgramData\Documentos O43 - CFD: 04/03/2017 - [] D -- C:\ProgramData\EPSON O43 - CFD: 21/05/2015 - [] D -- C:\ProgramData\GAS Tecnologia O43 - CFD: 30/09/2014 - [] D -- C:\ProgramData\GbPlugin O43 - CFD: 26/06/2015 - [] D -- C:\ProgramData\Google O43 - CFD: 30/09/2015 - [] D -- C:\ProgramData\HitmanPro O43 - CFD: 13/05/2014 - [] D -- C:\ProgramData\IconCache O43 - CFD: 18/07/2014 - [] D -- C:\ProgramData\install_clap O43 - CFD: 15/02/2017 - [] D -- C:\ProgramData\Intel O43 - CFD: 12/01/2014 - [] D -- C:\ProgramData\Log O43 - CFD: 30/09/2015 - [] D -- C:\ProgramData\Malwarebytes O43 - CFD: 26/11/2015 - [] D -- C:\ProgramData\McAfee O43 - CFD: 21/11/2013 - [0] SHD -- C:\ProgramData\Menu Iniciar O43 - CFD: 22/10/2016 - [] SD -- C:\ProgramData\Microsoft O43 - CFD: 12/04/2017 - [] D -- C:\ProgramData\Microsoft Help O43 - CFD: 22/10/2016 - [] D -- C:\ProgramData\Microsoft OneDrive O43 - CFD: 21/11/2013 - [0] SHD -- C:\ProgramData\Modelos O43 - CFD: 01/07/2014 - [] D -- C:\ProgramData\Mozilla O43 - CFD: 21/02/2015 - [] D -- C:\ProgramData\Norton O43 - CFD: 22/04/2017 - [] D -- C:\ProgramData\Oracle O43 - CFD: 15/02/2017 - [] D -- C:\ProgramData\Package Cache O43 - CFD: 24/04/2017 - [] D -- C:\ProgramData\PC-Doctor for Windows O43 - CFD: 12/02/2017 - [] D -- C:\ProgramData\PC-Doctor, Inc O43 - CFD: 23/03/2017 - [] D -- C:\ProgramData\PCDr O43 - CFD: 09/07/2016 - [] D -- C:\ProgramData\PRICache O43 - CFD: 31/12/2013 - [] D -- C:\ProgramData\Protexis O43 - CFD: 21/03/2015 - [] D -- C:\ProgramData\PSafe O43 - CFD: 22/10/2016 - [] AD -- C:\ProgramData\regid.1991-06.com.microsoft O43 - CFD: 18/02/2017 - [] D -- C:\ProgramData\Skype O43 - CFD: 22/10/2016 - [] D -- C:\ProgramData\softthinks O43 - CFD: 16/07/2016 - [0] D -- C:\ProgramData\SoftwareDistribution O43 - CFD: 11/09/2014 - [] D -- C:\ProgramData\Sony O43 - CFD: 29/04/2017 - [] D -- C:\ProgramData\SupportAssistAgent O43 - CFD: 24/08/2015 - [] D -- C:\ProgramData\Temp O43 - CFD: 30/04/2017 - [0] D -- C:\ProgramData\tools O43 - CFD: 22/10/2016 - [] D -- C:\ProgramData\USOPrivate O43 - CFD: 22/10/2016 - [] D -- C:\ProgramData\USOShared O43 - CFD: 28/09/2015 - [] AD -- C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 13/08/2015 - [] D -- C:\Program Files (x86)\Common Files\Apple O43 - CFD: 08/10/2013 - [] D -- C:\Program Files (x86)\Common Files\Atheros O43 - CFD: 08/10/2013 - [] D -- C:\Program Files (x86)\Common Files\CyberLink O43 - CFD: 19/08/2016 - [] AD -- C:\Program Files (x86)\Common Files\DESIGNER O43 - CFD: 22/10/2016 - [] D -- C:\Program Files (x86)\Common Files\Intel O43 - CFD: 08/10/2013 - [] D -- C:\Program Files (x86)\Common Files\Intel Corporation O43 - CFD: 22/04/2017 - [] D -- C:\Program Files (x86)\Common Files\Java O43 - CFD: 08/12/2015 - [0] D -- C:\Program Files (x86)\Common Files\McAfee O43 - CFD: 22/10/2016 - [] AD -- C:\Program Files (x86)\Common Files\Microsoft Shared O43 - CFD: 08/10/2013 - [] D -- C:\Program Files (x86)\Common Files\postureAgent O43 - CFD: 16/07/2016 - [] D -- C:\Program Files (x86)\Common Files\Services O43 - CFD: 18/02/2017 - [] AD -- C:\Program Files (x86)\Common Files\Skype O43 - CFD: 12/04/2017 - [] D -- C:\Program Files (x86)\Common Files\System O43 - CFD: 08/10/2013 - [] D -- C:\Program Files (x86)\Common Files\Windows Live O43 - CFD: 28/09/2015 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Adobe O43 - CFD: 10/12/2015 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Apple Computer O43 - CFD: 13/02/2016 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\baidu O43 - CFD: 12/01/2014 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Baidu Security O43 - CFD: 13/10/2014 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\BitTorrent O43 - CFD: 18/07/2014 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\CyberLink O43 - CFD: 10/07/2016 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\DAEMON Tools Lite O43 - CFD: 29/04/2017 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Elex-tech =>PUP.Optional.Elex O43 - CFD: 02/07/2015 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Google O43 - CFD: 26/04/2014 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Identities O43 - CFD: 21/11/2013 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Intel Corporation O43 - CFD: 24/11/2013 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Leadertech O43 - CFD: 23/11/2013 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Macromedia O43 - CFD: 09/02/2014 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Malwarebytes O43 - CFD: 23/08/2015 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\McAfee O43 - CFD: 23/10/2016 - [] SD -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Microsoft O43 - CFD: 01/07/2014 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Mozilla O43 - CFD: 06/03/2015 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Need for Speed World O43 - CFD: 24/04/2017 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\PCDr O43 - CFD: 25/04/2015 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\PSafe O43 - CFD: 11/09/2014 - [0] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Publish Providers O43 - CFD: 13/04/2017 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\ScreenShot O43 - CFD: 23/02/2017 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Skype O43 - CFD: 19/02/2017 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\SoftCDN O43 - CFD: 19/11/2014 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Sony O43 - CFD: 24/09/2014 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\SpinTires O43 - CFD: 04/04/2017 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Spotify O43 - CFD: 13/04/2017 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\SSMgre O43 - CFD: 28/09/2015 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Sun O43 - CFD: 04/03/2015 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Synthesia O43 - CFD: 30/04/2017 - [0] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Tools O43 - CFD: 06/04/2015 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Unity O43 - CFD: 26/04/2017 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\VDownloader O43 - CFD: 01/05/2017 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\vSnapshot O43 - CFD: 09/11/2014 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\wargaming.net O43 - CFD: 07/12/2013 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\WebApp O43 - CFD: 18/05/2015 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Windows Live Writer O43 - CFD: 10/07/2016 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\WinRAR O43 - CFD: 02/03/2017 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Yahoo O43 - CFD: 01/05/2017 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\ZHP O43 - CFD: 19/04/2017 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\3DM O43 - CFD: 10/07/2016 - [0] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\ActiveSync O43 - CFD: 15/04/2017 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Adobe O43 - CFD: 13/08/2015 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Apple O43 - CFD: 21/09/2015 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Apple Computer O43 - CFD: 12/12/2013 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Apps O43 - CFD: 21/11/2013 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\BMExplorer O43 - CFD: 29/08/2015 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\CEF O43 - CFD: 19/02/2017 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\chromium O43 - CFD: 22/05/2015 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Citrix O43 - CFD: 26/07/2016 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Comms O43 - CFD: 22/10/2016 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\ConnectedDevicesPlatform O43 - CFD: 31/05/2014 - [0] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\CrashDumps O43 - CFD: 18/07/2014 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\CyberLink O43 - CFD: 22/10/2016 - [0] SHD -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Dados de Aplicativos O43 - CFD: 01/05/2017 - [0] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Deployment O43 - CFD: 25/04/2017 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Diagnostics O43 - CFD: 10/07/2016 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Disc_Soft_Ltd O43 - CFD: 06/03/2015 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Electronic_Arts_Inc O43 - CFD: 25/04/2017 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\ElevatedDiagnostics O43 - CFD: 08/07/2015 - [0] SHD -- C:\Users\ADEMIR MONTEIRO\AppData\Local\EmieBrowserModeList O43 - CFD: 08/07/2015 - [0] SHD -- C:\Users\ADEMIR MONTEIRO\AppData\Local\EmieSiteList O43 - CFD: 08/07/2015 - [0] SHD -- C:\Users\ADEMIR MONTEIRO\AppData\Local\EmieUserList O43 - CFD: 09/11/2014 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Facebook O43 - CFD: 30/09/2014 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\GAS Tecnologia O43 - CFD: 09/03/2017 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Google O43 - CFD: 31/05/2015 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\GWX O43 - CFD: 22/10/2016 - [0] SHD -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Histórico O43 - CFD: 01/06/2014 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Intel_Corporation O43 - CFD: 11/07/2014 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\IsolatedStorage O43 - CFD: 18/04/2017 - [0] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\LogMeIn Rescue Applet O43 - CFD: 01/07/2014 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Macromedia O43 - CFD: 22/07/2014 - [0] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\MediaShow O43 - CFD: 22/10/2016 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Microsoft O43 - CFD: 02/08/2016 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Microsoft Help O43 - CFD: 12/07/2016 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\MicrosoftEdge O43 - CFD: 16/07/2014 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Microsoft_Corporation O43 - CFD: 01/07/2014 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Mozilla O43 - CFD: 10/07/2016 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\mpress O43 - CFD: 10/07/2016 - [0] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\NetworkTiles O43 - CFD: 13/04/2017 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Packages O43 - CFD: 28/09/2015 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\PackageStaging O43 - CFD: 21/11/2013 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Power2Go8 O43 - CFD: 09/02/2014 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Programs O43 - CFD: 25/04/2015 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\PSafe O43 - CFD: 10/07/2016 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Publishers O43 - CFD: 10/07/2016 - [0] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Skype O43 - CFD: 23/02/2017 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\SkypePlugin O43 - CFD: 21/11/2013 - [0] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\softthinks O43 - CFD: 11/09/2014 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Sony O43 - CFD: 27/10/2016 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\speech O43 - CFD: 04/04/2017 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Spotify O43 - CFD: 01/05/2017 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Temp O43 - CFD: 22/10/2016 - [0] SHD -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Temporary Internet Files O43 - CFD: 10/07/2016 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\TileDataLayer O43 - CFD: 10/06/2016 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Unity O43 - CFD: 26/04/2017 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\VDownloader O43 - CFD: 11/09/2014 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\VirtualStore O43 - CFD: 23/10/2016 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Windows Live O43 - CFD: 19/02/2015 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Windows Live Writer O43 - CFD: 29/04/2017 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\ZHP O43 - CFD: 13/04/2017 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Local\{A9F79FAB-8D5F-F313-E0C7-D6FBC4AF2A63} O43 - CFD: 22/10/2016 - [] RD -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility O43 - CFD: 28/04/2017 - [] RD -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 12/04/2017 - [] RD -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 22/02/2017 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell O43 - CFD: 22/10/2016 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hao123-Brazil O43 - CFD: 16/07/2016 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 22/10/2016 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sawbuck O43 - CFD: 12/04/2017 - [] RD -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 22/10/2016 - [] RD -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools O43 - CFD: 16/07/2016 - [] RD -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell O43 - CFD: 22/10/2016 - [] D -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR ---\\ ShellIconOverlayIdentifiers (SIOI) (13) - 2s O106 - SIOI: ErrorOverlayHandler Class [ OneDrive1] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\FileSyncShell.dll {330000013FBFE82DC1EE0D270500010000013F} =>.Microsoft Corporation O106 - SIOI: SharedOverlayHandler Class [ OneDrive2] - {5AB7172C-9C11-405C-8DD5-AF20F3606282}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\FileSyncShell.dll {330000013FBFE82DC1EE0D270500010000013F} =>.Microsoft Corporation O106 - SIOI: SharedSyncingOverlayHandler Class [ OneDrive3] - {A78ED123-AB77-406B-9962-2A5D9D2F7F30}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\FileSyncShell.dll {330000013FBFE82DC1EE0D270500010000013F} =>.Microsoft Corporation O106 - SIOI: UpToDateOverlayHandler Class [ OneDrive4] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\FileSyncShell.dll {330000013FBFE82DC1EE0D270500010000013F} =>.Microsoft Corporation O106 - SIOI: SyncingOverlayHandler Class [ OneDrive5] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\FileSyncShell.dll {330000013FBFE82DC1EE0D270500010000013F} =>.Microsoft Corporation O106 - SIOI: UpToDateOverlayHandler Class [ SkyDrive1] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\FileSyncShell.dll {330000013FBFE82DC1EE0D270500010000013F} =>.Microsoft Corporation O106 - SIOI: SyncingOverlayHandler Class [ SkyDrive2] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\FileSyncShell.dll {330000013FBFE82DC1EE0D270500010000013F} =>.Microsoft Corporation O106 - SIOI: ErrorOverlayHandler Class [ SkyDrive3] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\FileSyncShell.dll {330000013FBFE82DC1EE0D270500010000013F} =>.Microsoft Corporation O106 - SIOI: Groove Explorer Icon Overlay 1 (GFS Unread Stub) [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] - {99FD978C-D287-4F50-827F-B2C658EDA8E7}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation® O106 - SIOI: Groove Explorer Icon Overlay 2 (GFS Stub) [Groove Explorer Icon Overlay 2 (GFS Stub)] - {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation® O106 - SIOI: Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] - {920E6DB1-9907-4370-B3A0-BAFC03D81399}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation® O106 - SIOI: Groove Explorer Icon Overlay 3 (GFS Folder) [Groove Explorer Icon Overlay 3 (GFS Folder)] - {16F3DD56-1AF5-4347-846D-7C10C4192619}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation® O106 - SIOI: Groove Explorer Icon Overlay 4 (GFS Unread Mark) [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] - {2916C86E-86A6-43FE-8112-43ABE6BF8DCC}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation® ---\\ Lista dos drivers do sistema (75) - 15s O58 - SDL:2016/07/16 08:41:53 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [107360] =>.Microsoft Windows® O58 - SDL:2016/07/16 08:41:53 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [1135456] =>.Microsoft Windows® O58 - SDL:2016/07/16 08:41:53 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [83296] =>.Microsoft Windows® O58 - SDL:2016/07/16 08:41:53 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259424] =>.Microsoft Windows® O58 - SDL:2016/07/16 08:41:53 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [26976] =>.Microsoft Windows® O58 - SDL:2016/07/16 08:41:53 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [131936] =>.Microsoft Windows® O58 - SDL:2016/07/16 08:41:50 A . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\WINDOWS\System32\drivers\athw8x.sys [4233728] =>.Qualcomm Atheros Communications, Inc. O58 - SDL:2016/07/16 08:41:53 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn.sys [9728] =>.Windows (R) Win 7 DDK provider O58 - SDL:2016/07/16 08:41:53 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [9728] =>.Windows (R) Win 7 DDK provider O58 - SDL:2015/04/29 10:44:36 A . (.Qualcomm Atheros - Qualcomm Atheros BtFilter Driver.) -- C:\WINDOWS\System32\drivers\btfilter.sys [600088] =>.Microsoft Windows Hardware Compatibility Publisher® O58 - SDL:2016/07/16 08:41:52 A . (.QLogic Corporation - QLogic Gigabit Ethernet VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [533856] =>.Microsoft Windows® O58 - SDL:2016/07/16 08:41:53 A . (.Chelsio Communications - Chelsio iSCSI Crash Dump Driver.) -- C:\WINDOWS\System32\drivers\cht4dx64.sys [102752] =>.Microsoft Windows® O58 - SDL:2016/07/16 08:41:53 A . (.Chelsio Communications - Chelsio iSCSI VMiniport Driver.) -- C:\WINDOWS\System32\drivers\cht4sx64.sys [346976] =>.Microsoft Windows® O58 - SDL:2016/07/16 08:41:53 A . (.Chelsio Communications - Virtual Bus Driver for Chelsio ® T4 Chipset.) -- C:\WINDOWS\System32\drivers\cht4vx64.sys [2104160] =>.Microsoft Windows® O58 - SDL:2012/06/25 10:24:50 A . (.CyberLink - It is a virtual device driver which could c.) -- C:\WINDOWS\System32\drivers\CLVirtualDrive.sys [92536] =>.CyberLink® O58 - SDL:2015/02/26 13:00:46 A . (.Dell Computer Corporation - DDDriver.sys.) -- C:\WINDOWS\System32\drivers\DDDriver64Dcsa.sys [23760] =>.Techporch Incorporated® O58 - SDL:2015/02/26 13:00:46 A . (.Dell Computer Corporation - DellProf.sys.) -- C:\WINDOWS\System32\drivers\DellProf.sys [23312] =>.Techporch Incorporated® O58 - SDL:2016/07/10 15:31:37 A . (.Disc Soft Ltd - DAEMON Tools Lite Virtual SCSI Bus Driver.) -- C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264] =>.Disc Soft Ltd® O58 - SDL:2016/07/10 15:31:58 A . (.Disc Soft Ltd - DAEMON Tools Lite Virtual USB Bus Driver.) -- C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672] =>.Disc Soft Ltd® O58 - SDL:2016/07/16 08:41:52 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3418976] =>.Microsoft Windows® O58 - SDL:2012/07/02 20:16:02 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\WINDOWS\System32\drivers\HECIx64.sys [62784] =>.Intel Corporation® O58 - SDL:2015/09/30 14:36:07 A . (.© 2014 SurfRight B.V. - HitmanPro 3.7 Support Driver.) -- C:\WINDOWS\System32\drivers\hitmanpro37.sys [41080] =>.SurfRight B.V.® O58 - SDL:2016/07/16 08:41:53 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64352] =>.Microsoft Windows® O58 - SDL:2016/07/16 08:41:54 A . (.Intel(R) Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iagpio.sys [33280] =>.Intel(R) Corporation O58 - SDL:2016/07/16 08:41:54 A . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\WINDOWS\System32\drivers\iai2c.sys [81408] =>.Intel(R) Corporation O58 - SDL:2016/07/16 08:41:54 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [64512] =>.Intel Corporation O58 - SDL:2016/07/16 08:41:54 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [176384] =>.Intel Corporation - Embedded Subsystems and IP Blocks Group® O58 - SDL:2016/07/16 08:41:52 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group® O58 - SDL:2016/07/16 08:41:50 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [113152] =>.Intel Corporation O58 - SDL:2012/07/09 18:43:12 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorA.sys [645952] =>.Intel Corporation® O58 - SDL:2016/07/16 08:41:53 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [673120] =>.Microsoft Windows® O58 - SDL:2016/07/16 08:41:53 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412000] =>.Microsoft Windows® O58 - SDL:2016/07/16 08:41:53 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\System32\drivers\ibbus.sys [526176] =>.Microsoft Windows® O58 - SDL:2016/05/03 23:30:46 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\igdkmd64.sys [3811288] {330000B898AA86B5A39E5A1BBD00020000B898} =>.Intel Corporation O58 - SDL:2015/08/21 11:50:48 N . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\WINDOWS\System32\drivers\IntcDAud.sys [463112] =>.Intel Corporation - Client Components Group® O58 - SDL:2015/12/01 16:46:03 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\WINDOWS\System32\drivers\intelaud.sys [50160] {330000B7E741A34024FC3AB6E700020000B7E7} =>.Intel Corporation O58 - SDL:2016/05/19 03:42:01 A . (.Elex do Brasil Participações Ltda - iSafeNetFilter SDK WFP Driver (WPP).) -- C:\WINDOWS\System32\drivers\iSafeNetFilter.sys [52392] =>PUP.Optional.Elex O58 - SDL:2015/12/01 16:46:03 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\WINDOWS\System32\drivers\iwdbus.sys [38896] {330000B7E741A34024FC3AB6E700020000B7E7} =>.Intel Corporation O58 - SDL:2016/07/16 08:41:53 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [108896] =>.Microsoft Windows® O58 - SDL:2016/07/16 08:41:53 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2i.sys [105824] =>.Microsoft Windows® O58 - SDL:2016/07/16 08:41:53 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys [101216] =>.Microsoft Windows® O58 - SDL:2016/07/16 08:41:53 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82776] =>.Microsoft Windows® O58 - SDL:2016/07/16 08:41:53 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [59744] =>.Microsoft Windows® O58 - SDL:2016/10/05 07:09:07 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\MegaSas2i.sys [64352] =>.Microsoft Windows® O58 - SDL:2016/07/16 08:41:53 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575840] =>.Microsoft Windows® O58 - SDL:2016/07/16 08:41:53 A . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\System32\drivers\mlx4_bus.sys [842584] =>.Microsoft Windows® O58 - SDL:2016/07/16 08:41:53 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63840] =>.Microsoft Windows® O58 - SDL:2016/07/16 08:41:53 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys [108896] =>.Microsoft Windows® O58 - SDL:2016/07/16 08:42:03 A . (...) -- C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624] O58 - SDL:2016/07/16 08:41:53 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150368] =>.Microsoft Windows® O58 - SDL:2016/07/16 08:41:53 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [166240] =>.Microsoft Windows® O58 - SDL:2016/07/16 08:41:53 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas2i.sys [58720] =>.Microsoft Windows® O58 - SDL:2016/07/16 08:41:53 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys [61792] =>.Microsoft Windows® O58 - SDL:2017/04/25 09:27:11 A . (.Sysinternals - www.sysinternals.com - Process Explorer.) -- C:\WINDOWS\System32\drivers\PROCEXP152.SYS [34328] =>.Sysinternals® O58 - SDL:2016/07/16 08:41:53 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.40 64-bit Dri.) -- C:\WINDOWS\System32\drivers\rt640x64.sys [589824] =>.Realtek O58 - SDL:2012/09/05 01:49:42 A . (.Realtek Semiconductor Corp. - Realtek Turbo Mode Filter Driver.) -- C:\WINDOWS\System32\drivers\rtcrfilt64.sys [19600] =>.Realtek Semiconductor Corp® O58 - SDL:2015/08/04 00:21:50 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS\System32\drivers\RTKVHD64.sys [4518136] =>.Realtek Semiconductor Corp® O58 - SDL:2012/09/05 01:49:42 A . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/V.) -- C:\WINDOWS\System32\drivers\RtsUVStor.sys [317584] =>.Realtek Semiconductor Corp® O58 - SDL:2016/07/16 08:41:53 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44896] =>.Microsoft Windows® O58 - SDL:2016/07/16 08:41:53 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81760] =>.Microsoft Windows® O58 - SDL:2012/09/08 00:17:10 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [41272] =>.Synaptics Incorporated® O58 - SDL:2016/07/15 07:42:42 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_AMDASF_Aux.sys [50872] =>.Synaptics Incorporated® O58 - SDL:2016/07/15 07:42:42 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [51392] =>.Synaptics Incorporated® O58 - SDL:2016/07/15 07:42:42 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_Intel_Aux.sys [51392] =>.Synaptics Incorporated® O58 - SDL:2016/07/16 08:41:53 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31072] =>.Microsoft Windows® O58 - SDL:2016/07/15 07:42:42 A . (.Synaptics Incorporated - Synaptics Touchpad Win64 Driver.) -- C:\WINDOWS\System32\drivers\SynTP.sys [622272] =>.Synaptics Incorporated® O58 - SDL:2015/06/12 04:54:56 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [183584] =>.Intel Corporation - Embedded Subsystems and IP Blocks Group® O58 - SDL:2013/09/03 18:53:44 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\WINDOWS\System32\drivers\TeeDriverx64.sys [99288] =>.Intel Corporation - Intel® Management Engine Firmware® O58 - SDL:2013/03/06 17:44:00 A . (.MediaTek Inc. - MediaTek USB to Com Port Driver.) -- C:\WINDOWS\System32\drivers\usb2ser.sys [81408] =>.MediaTek Inc. O58 - SDL:2016/07/16 08:41:53 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [166752] =>.Microsoft Windows® O58 - SDL:2016/07/16 08:41:53 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305504] =>.Microsoft Windows® O58 - SDL:2016/07/16 08:41:53 A . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\System32\drivers\winmad.sys [32096] =>.Microsoft Windows® O58 - SDL:2016/07/16 08:41:53 A . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\System32\drivers\winverbs.sys [64864] =>.Microsoft Windows® O58 - SDL:2012/08/22 20:18:40 A . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\WINDOWS\System32\athw8x.sys [3624960] =>.Qualcomm Atheros Communications, Inc. O58 - SDL:2013/08/15 20:13:30 A . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\WINDOWS\System32\athwbx.sys [3859968] =>.Qualcomm Atheros Communications, Inc. ---\\ Últimos ficheiros alterados ou criados (Utilizador) (16) - 111s O61 - LFC: 2017/04/24 21:20:23 R . (.Copyright © 2016.) -- C:\Users\ADEMIR MONTEIRO\AppData\Roaming\PCDr\Repair\BundleApplicationRepairTool.exe [625024] {76C03D2914B1370C8939579F986F20BB} O61 - LFC: 2017/04/23 13:44:02 A . (..) -- C:\Users\ADEMIR MONTEIRO\AppData\LocalLow\PCDr\Plugin\enumcache_6855_72_pt.bin [2409299] O61 - LFC: 2017/04/28 15:45:05 A . (..) -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\TempState\TileCache_100_0_TabletMode_Data.bin [11266296] O61 - LFC: 2017/04/28 15:04:08 A . (..) -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\TempState\TileCache_100_0_TabletMode_Header.bin [14632] O61 - LFC: 2017/05/01 01:50:55 A . (..) -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\UrlBlock\urlblock_636292080273883288.bin [81725] O61 - LFC: 2017/04/28 21:26:06 A . (..) -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Packages\GAMELOFTSA.Asphalt8Airborne_0pp20fcewvvtj\LocalState\Microsoft.Xbox\pop.bin [1293] O61 - LFC: 2017/04/29 00:46:30 A . (..) -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Packages\GAMELOFTSA.Asphalt8Airborne_0pp20fcewvvtj\LocalState\gv3\Batched.bin [1509] O61 - LFC: 2017/04/29 00:38:35 A . (..) -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Packages\GAMELOFTSA.Asphalt8Airborne_0pp20fcewvvtj\LocalState\gv3\FAT.bin [242] O61 - LFC: 2017/04/29 00:39:23 A . (..) -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Packages\GAMELOFTSA.Asphalt8Airborne_0pp20fcewvvtj\LocalState\gv3\Priority.bin [0] O61 - LFC: 2017/04/29 00:38:22 A . (..) -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Packages\GAMELOFTSA.Asphalt8Airborne_0pp20fcewvvtj\LocalState\gv3\Sessions.bin [112] O61 - LFC: 2017/04/29 00:45:55 A . (..) -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Packages\GAMELOFTSA.Asphalt8Airborne_0pp20fcewvvtj\LocalState\gv3\Stream.bin [0] O61 - LFC: 2017/04/29 00:46:51 A . (..) -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Packages\GAMELOFTSA.Asphalt8Airborne_0pp20fcewvvtj\LocalState\gv3\Timer.bin [167] O61 - LFC: 2017/04/29 00:45:44 A . (..) -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Packages\GAMELOFTSA.Asphalt8Airborne_0pp20fcewvvtj\LocalState\gv3\Token.bin [113] O61 - LFC: 2017/04/29 00:38:22 A . (..) -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Packages\GAMELOFTSA.Asphalt8Airborne_0pp20fcewvvtj\LocalState\gv3\Tracking.bin [151] O61 - LFC: 2017/05/01 09:57:29 A . (..) -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Microsoft\Windows\UPPS\UPPS.bin [16148] O61 - LFC: 2017/04/30 10:51:22 A . (..) -- C:\Users\ADEMIR MONTEIRO\AppData\Local\Microsoft\Internet Explorer\UrlBlock\urlblock_636291531373818246.bin [82677] ---\\ Associações Shell Spawning (11) - 1s O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Iniciador do snap-in de 'Visualizar eventos.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe {2A9C21ACAAA63A3C58A7B9322BEE948D} =>.Google Inc. O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe =>.Microsoft Corporation O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Editor do Registro.) -- C:\Windows\regedit.exe =>.Microsoft Corporation O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (...) -- C:\Program Files (x86)\Firefox\Firefox.exe ---\\ Menu de inicialização Internet (12) - 0s O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- c:\program files (x86)\mozilla firefox\firefox.exe =>.Mozilla Corporation® O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- c:\program files (x86)\google\chrome\application\chrome.exe {2A9C21ACAAA63A3C58A7B9322BEE948D} =>.Google Inc. O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- c:\program files\internet explorer\iexplore.exe {330000014096A9EE7056FECC07000100000140} =>.Microsoft Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc. O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitário de Inicialização por Usuário do.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc. O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitário de Inicialização por Usuário do.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc. O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitário de Inicialização por Usuário do.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation ---\\ Pesquisa de infeção nos navegadores da Internet (3) - 17s O69 - SBI: SearchScopes [HKCU] {BD62CFA9-F375-461C-A90E-AB90B578F202} - (Yahoo Search) - http://br.search.yahoo.com/ =>.Yahoo Search O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/ O69 - SBI: SearchScopes [HKLM] {6F2E5825-C576-4536-A9BE-FF7181495112} - (Bing) - http://www.bing.com/ ---\\ Listagem dos serviços iniciados pelo Svchost (45) - 1s O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Serviço de Propagação de Certificado de Car.) -- C:\Windows\System32\certprop.dll [193536] =>.Microsoft Corporation O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Serviço de Propagação de Certificado de Car.) -- C:\WINDOWS\System32\certprop.dll [193536] =>.Microsoft Corporation O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL de Serviço do Servidor.) -- C:\WINDOWS\system32\srvsvc.dll [305152] =>.Microsoft Corporation O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Cliente da Política de Grupo.) -- C:\WINDOWS\System32\gpsvc.dll [1227264] =>.Microsoft Corporation O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extensão IKE.) -- C:\WINDOWS\System32\ikeext.dll [932352] =>.Microsoft Corporation O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Serviço que oferece conectividade IPv6 em u.) -- C:\WINDOWS\System32\iphlpsvc.dll [945664] =>.Microsoft Corporation O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de serviço de logon secundário.) -- C:\WINDOWS\system32\seclogon.dll [31232] =>.Microsoft Corporation O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Serviço de Informações de Aplicativos.) -- C:\WINDOWS\System32\appinfo.dll [125952] =>.Microsoft Corporation O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Serviço de Descoberta iSCSI.) -- C:\WINDOWS\system32\iscsiexe.dll [151552] =>.Microsoft Corporation O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Serviço Microsoft EAPHost.) -- C:\WINDOWS\System32\eapsvc.dll [112128] =>.Microsoft Corporation O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Serviço Agendador de Tarefas.) -- C:\WINDOWS\system32\schedsvc.dll [948224] =>.Microsoft Corporation O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\WMIsvc.dll [222720] =>.Microsoft Corporation O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL de Serviço Pesquisador de Computadores.) -- C:\WINDOWS\System32\browser.dll [134656] =>.Microsoft Corporation O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Serviço de Configuração da Área de Trabalho.) -- C:\Windows\System32\SessEnv.dll [387072] =>.Microsoft Corporation O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Relatórios de Problemas e Soluções.) -- C:\WINDOWS\System32\wercplsupport.dll [94208] =>.Microsoft Corporation O83 - Search Svchost Services: shpamsvc (shpamsvc) . (.Microsoft Corporation - SharedPC.AccountManager.) -- C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll [161792] =>.Microsoft Corporation O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL do Serviço de Tema do Shell do Windows.) -- C:\WINDOWS\system32\themeservice.dll [70656] =>.Microsoft Corporation O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Serviço de Geolocalização.) -- C:\WINDOWS\System32\lfsvc.dll [37376] =>.Microsoft Corporation O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL do Serviço de Gerenciamento do Windows.) -- C:\Windows\System32\Windows.Internal.Management.dll [407552] =>.Microsoft Corporation O83 - Search Svchost Services: Irmon (Irmon) . (.Microsoft Corporation - Monitor de infravermelho.) -- C:\WINDOWS\System32\irmon.dll [25088] =>.Microsoft Corporation O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gerenciador de Discagem Automática de Acess.) -- C:\WINDOWS\System32\rasauto.dll [105472] =>.Microsoft Corporation O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gerenciador de conexão de acesso remoto.) -- C:\WINDOWS\System32\rasmans.dll [658432] =>.Microsoft Corporation O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gerenciador de Interface Dinâmica.) -- C:\Windows\System32\mprdim.dll [496128] =>.Microsoft Corporation O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Serviço de Notificação de Eventos do Sistem.) -- C:\WINDOWS\System32\sens.dll [70656] =>.Microsoft Corporation O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Componentes do Microsoft NAT Helper.) -- C:\WINDOWS\System32\ipnathlp.dll [541696] =>.Microsoft Corporation O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Servidor de telefonia do Microsoft® Windows.) -- C:\Windows\System32\tapisrv.dll [309248] =>.Microsoft Corporation O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\WINDOWS\system32\wuaueng.dll [2316288] =>.Microsoft Corporation O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Serviço de transferência inteligente de tel.) -- C:\WINDOWS\System32\qmgr.dll [1054208] =>.Microsoft Corporation O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - DLL de serviços do Shell do Windows.) -- C:\Windows\System32\shsvcs.dll [617472] =>.Microsoft Corporation O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\WINDOWS\system32\dmwappushsvc.dll [57344] =>.Microsoft Corporation O83 - Search Svchost Services: WpnService (WpnService) . (.Microsoft Corporation - Serviço do Sistema de Notificação por Push.) -- C:\WINDOWS\system32\WpnService.dll [234496] =>.Microsoft Corporation O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\WINDOWS\system32\XboxNetApiSvc.dll [1025536] =>.Microsoft Corporation O83 - Search Svchost Services: DcpSvc (DcpSvc) . (.Microsoft Corporation - dcpsvc Task.) -- C:\WINDOWS\system32\dcpsvc.dll [183808] =>.Microsoft Corporation O83 - Search Svchost Services: RetailDemo (RetailDemo) . (.Microsoft Corporation - RDXService.) -- C:\WINDOWS\system32\RDXService.dll [650752] =>.Microsoft Corporation O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Serviço BDE.) -- C:\WINDOWS\System32\bdesvc.dll [361472] =>.Microsoft Corporation O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gerenciador de Instalação de Dispositivo.) -- C:\WINDOWS\System32\DeviceSetupManager.dll [197632] =>.Microsoft Corporation O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Serviço Assistente de Conectividade de Rede.) -- C:\WINDOWS\System32\ncasvc.dll [167936] =>.Microsoft Corporation O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\WINDOWS\system32\profsvc.dll [358400] =>.Microsoft Corporation O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\WINDOWS\System32\usermgr.dll [1020928] =>.Microsoft Corporation O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\WINDOWS\System32\XblGameSave.dll [1159680] =>.Microsoft Corporation O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\WINDOWS\System32\XblAuthManager.dll [1016320] =>.Microsoft Corporation O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Atualizar Sessão do Orchestrator Core.) -- C:\WINDOWS\system32\usocore.dll [549376] =>.Microsoft Corporation O83 - Search Svchost Services: wisvc (wisvc) . (.Microsoft Corporation - Configurações da Nova Versão.) -- C:\WINDOWS\system32\flightsettings.dll [635904] =>.Microsoft Corporation O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Serviço Conta da Microsoft®.) -- C:\WINDOWS\system32\wlidsvc.dll [2104320] =>.Microsoft Corporation O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Serviço de Configuração de Rede.) -- C:\WINDOWS\System32\NetSetupSvc.dll [265728] =>.Microsoft Corporation ---\\ Lista das exceções do FireWall (FirewallRules) (3) - 3s O87 - FAEL: "{E82E9915-0DCD-42E5-B864-B4538715A49C}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Eastness\Application\chrome.exe (.not file.) O87 - FAEL: "{4714C182-F8C8-49A7-933C-2DBB13D41C4A}" [In-None-P6-TRUE] .(.TODO: <公司名> - D_box2.) -- C:\Program Files (x86)\MIO\loader\st750lm022xhn-m750mbb_s317j90d848001848001.dat O87 - FAEL: "{23696B22-14CB-42F3-A651-4CCA8F7F6712}" [In-None-P17-TRUE] .(.TODO: <公司名> - D_box2.) -- C:\Program Files (x86)\MIO\loader\st750lm022xhn-m750mbb_s317j90d848001848001.dat ---\\ Scâner Aditional (2) - 0s C:\Program Files (x86)\Elex-tech =>PUP.Optional.Elex C:\Users\ADEMIR MONTEIRO\AppData\Roaming\Elex-tech =>PUP.Optional.Elex ---\\ Resumo dos elementos encontrados na sua estação de trabalho (1) - 0s http://www.nicolascoolman.fr/?p=996 =>PUP.Optional.Elex ~ End of the scan, 44756 items in 00h05mn16s (1052)(0)