Jump to content

DaniieL™

Members
  • Content count

    368
  • Joined

  • Last visited

Community Reputation

0 Comum

About DaniieL™

  • Rank
    ° TЋ€ Ћiv€ ZǺЯ Kiпg °
  • Birthday 04/12/1994

Informações Pessoais

  • Sexo
    Masculino
  • Localização
    São João De Meriti - RJ
  1. DaniieL™

    Medo de atualizar o Windows (Win7)

    Olá! Desde a situação do windows update conheçido como "KB3133977" e o problema com usuário de placa mãe Asus eu estou sem atualizar o windows, e tenho bastante atualizações acumuladas... eu não fui vitima desse update pois um amigo me avisou antes de eu executar o update... de qualquer forma agora tenho medo de atualizar e algo acontecer... procurei online más consegui achar... Alguem saberia me dizer se há alguma lugar na internet, algum artigo, qualquer coisa que liste os updates do windows e diz quais são 100% seguros? se algo acontecerá caso o usuário tenha hardware X da marca Y ? mesmo que não seja no idioma do brazil seria de grande ajuda pois já faz mêses que continuo me recusando a atualizar o windows... desde já grato a atenção... Ps: O Update que listei acima ainda contina na minha lista de updates opcionais porém não tenho NENHUMA intenção de instalá-lo...
  2. DaniieL™

    Problema com windows 7 Sound Mixer

    Olá! Estou com um pequeno problema, recentemente comprei um Headset da Razer, funciona perfeitamente porém é bem alto, por esse motivo deixo o Volume principal á 15%, porém quando vou jogar algums jogos, o volume fica baixo demais, resolve-se quando aumento o volume principal mais ai tudo que é programa fica alto suficiente para estourar os ouvidos... Minha dúvida é, seria possivel ajustar o volume de um programa especifico no Mixer SEM afectar o volume principal? Exemplo: Volume principal 15%, Jogo 65%... gostaria de poder fazer isso sem ter o volume principal em 65% ou acima... Procurei pela internet porém mais não achei nada que me ajudasse... Ps: o volume nas configurações dentro dos jogos já estão a 100% e mesmo assim é baixo Desde já, grato
  3. Olá Minha placa de vídeo está muito quente na temperature "idle" segue abaixo o link da temperatura ~> http://postimg.org/image/erf7kobjj/ Os unicos programas aberto quando tirei essa Print são: Speed Fan 4.51 Firefox Raidcall uTorrent HWMonitor nada mais!!!!!! se estivesse algum jogo exigente aberto como "GTA V" ou "Battlefield 4" seria plausível porém não tem nada aberto que explicaria tanto calor!.. De acordo com o site da Nvidia GeForce a temperatura mesmo estando quente, está segura e infelizmente no momento não tenho nenhum jogo exigente para testar mais tenho certeza que esquentaria ainda mais... Troca da pasta termal foi feita em 2 dias e antes disso acontecer a temperatura era um pouco maior; entre 68-71C... Gostaria de saber como posso resolver esse problem pois sinceramente essa temperatura está muito alta sem nenhum jogo ou aplicativo exigente aberto... Desde já, obrigado a atenção OBS.: desliguei o PC por tempo suficience para normalizar o calor, e liguei novamente, assim que a tela da area de trabalho surgiu, rapidamente abri ambos, "Speed Fan" e "HWMonitor" e pude ver a placa de video aumentando a temperatura sem motivo algum dos 35 C e parando entre 64-67 C em ambos programas, essa mudança de temperatura aconteceu entre 1 minuto e meio a 2 minutos
  4. Olá Power Max Desculpe pela demora na resposta, eu estive testando o desligando do PC, aparentemente o problema sumiu, faz 4 dias e nada de programa aberto na hora de desligar o PC.. Enfim, Muito Obrigado pela Ajuda!!
  5. ~ ZHPCleaner v2015.6.16.276 by Nicolas Coolman (2015\06\16) ~ Run by user (Administrator) (16/06/2015 14:11:09) ~ Site : http://nicolascoolman.com/fr ~ Facebook : https://www.facebook.com/nicolascoolman1 ~ State version : Version OK ~ Type : Reparo ~ Report : C:\Users\user\Desktop\ZHPCleaner.txt ~ Quarantine : C:\Users\user\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt ~ UAC : Deactivate ~ Boot Mode : Normal (Normal boot) ~ Windows 7, 64-bit Service Pack 1 (Build 7601) ---\\ Serviços (0) ~ Nenhum ítem malicioso foi encontrado. ---\\ Navegadores de Internet (0) ~ Nenhum ítem malicioso foi encontrado. ---\\ Arquivo hosts (0) ~ Nenhum ítem malicioso foi encontrado. ---\\ Tarefas automáticas agendadas. (0) ~ Nenhum ítem malicioso foi encontrado. ---\\ Explorer ( Arquivos, Pastas) (1) MOVIDO arquivo: C:\Users\user\AppData\Roaming\ProgSense (PUP.ProgSense) ---\\ Registro ( Chaves, Valores, Dados ) (3) SUPRIMIDO chave*: HKEY_USERS\S-1-5-21-1842667124-3955753076-3068624421-1000\Software\ProgSense [] (PUP.ProgSense) SUPRIMIDO chave: HKCU\Software\ProgSense [] (PUP.ProgSense) SUPRIMIDO chave*: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Orbit_is1 [www.orbitdownloader.com] (P2P.OrbitDownloader) ---\\ Resultado de reparação Reparação efectuada com sucesso ~ Este navegador está faltando ! (Opera Software) ---\\ Estatísticas ~ Items scan : 949 ~ Items encontrado : 0 ~ items cancelados : 0 ~ Items réparo : 4 End of clean at 14:11:18 =================== ZHPCleaner-[R]-16062015-14_11_18.txt ZHPCleaner--16062015-14_09_20.txt
  6. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 6.9.9 (06.16.2015:2) OS: Windows 7 Home Premium x64 Ran by user on 16/06/2015 at 11:32:21,08 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Tasks ~~~ Registry Values ~~~ Registry Keys ~~~ Files Successfully deleted: [File] C:\ProgramData\duplicaterecord.js ~~~ Folders Successfully deleted: [Folder] C:\Program Files (x86)\baidu security Successfully deleted: [Folder] C:\Program Files (x86)\orbitdownloader Successfully deleted: [Folder] C:\ProgramData\baidu security Successfully deleted: [Folder] C:\ProgramData\baidu Successfully deleted: [Folder] C:\users\public\documents\Baidu Security Successfully deleted: [Folder] C:\users\public\documents\Baidu Successfully deleted: [Folder] C:\users\public\documents\pc faster Successfully deleted: [Folder] C:\Users\user\appdata\local\crashrpt ~~~ FireFox ~~~ Chrome [C:\Users\user\appdata\local\Google\Chrome\User Data\Default\Preferences] - default search provider reset [C:\Users\user\appdata\local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted: [C:\Users\user\appdata\local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset [C:\Users\user\appdata\local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted: [] ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on 16/06/2015 at 11:34:24,35 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  7. Olá Abaixo o Log do AdwCleaner ############################################################### # AdwCleaner v4.206 - Relatório criado 15/04/2015 às 20:07:38 # Atualizado 01/06/2015 por Xplode # Base de dados : 2015-06-14.1 [servidor] # Sistema operacional : Windows 7 Home Premium Service Pack 1 (x64) # Usuário : user - GORISHIPC # Executando de : C:\Users\user\Desktop\AdwCleaner.exe # Opção : Limpar ***** [ Serviços ] ***** ***** [ Arquivos / Pastas ] ***** [x] Não Excluído : C:\Program Files (x86)\orbitdownloader Pasta Excluído : C:\users\user\AppData\Roaming\Mozilla\Firefox\Profiles\r2eezoxp.default\Extensions\anttoolbar@ant.com Arquivo Excluído : C:\ProgramData\Duplicaterecord.js ***** [ Tarefas agendadas ] ***** Tarefa Apagado : paretologic registration3 ***** [ Atalhos ] ***** ***** [ Registro ] ***** Chave Apagado : HKCU\Software\Microsoft\Internet Explorer\MenuExt\&Download by Orbit Chave Apagado : HKCU\Software\Microsoft\Internet Explorer\MenuExt\&Grab video by Orbit Chave Apagado : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Do&wnload selected by Orbit Chave Apagado : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Down&load all by Orbit Chave Apagado : HKLM\SOFTWARE\Classes\CLSID\{000123B4-9B42-4900-B3F7-F4B073EFC214} Chave Apagado : HKLM\SOFTWARE\Classes\CLSID\{3F1D494B-0CEF-4468-96C9-386E2E4DEC90} Chave Apagado : HKLM\SOFTWARE\Classes\CLSID\{7854F00C-DC77-477E-A10E-603F48442D3B} Chave Apagado : HKLM\SOFTWARE\Classes\TypeLib\{A0880527-DC28-4EBB-BA27-D22102F22A9F} Chave Apagado : HKLM\SOFTWARE\Classes\TypeLib\{BCDDE143-FAE3-4C57-B22B-C4E8678CFDC0} Chave Apagado : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{000123B4-9B42-4900-B3F7-F4B073EFC214} Chave Apagado : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{000123B4-9B42-4900-B3F7-F4B073EFC214} Chave Apagado : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{000123B4-9B42-4900-B3F7-F4B073EFC214} Chave Apagado : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4250488A-CB24-0893-C066-B1AEA57BCFF2} Chave Apagado : HKCU\Software\Orbit Chave Apagado : HKCU\Software\SpeedBit Chave Apagado : HKLM\SOFTWARE\Orbit Chave Apagado : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Orbit_is1 ***** [ Navegadores ] ***** -\\ Internet Explorer v11.0.9600.17840 -\\ Mozilla Firefox v38.0.5 (x86 en-US) -\\ Google Chrome v43.0.2357.124 [C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Apagado [search Provider] : hxxp://br.ask.com/web?q={searchTerms} ************************* AdwCleaner[R0].txt - [2855 bytes] - [15/04/2015 20:03:51] AdwCleaner[s0].txt - [2617 bytes] - [15/04/2015 20:07:38] ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [2676 bytes] ########## Não entendi porque o AdwCleaner os detectou como algo malicioso, poderia me explicar? Abraço!
  8. Olá, Eu li que ficar forçando programas a fechar repetidamente pode levar a corromper os arquivos do mesmo interferindo em sua funcionalidade e como não sei qual o programa que está ficando "preso" na hora do desligamento não posso dizer se o mesmo é importante ou não.. mas de qualquer forma, como já passou um bom tempinho desse jeito (quase 2 semanas) e não notei diferença alguma, provavelmente não é nada mesmo não.. mas gostaria de saber qual o programa que está causando isso pois sou um pouco paranoico com essas coisas, ainda mais porque isso nunca tinha acontecido.. rsrs enfim, obrigado pelo feedback Segue abaixo o Log do ZHPFix; ###################################### Rapport de ZHPFix 2015.4.9.5 par Nicolas Coolman, Update du 18/03/2015 Fichier d'export Registre : Run by user at 14/06/2015 19:23:52 High Elevated Privileges : OK Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601) Reciclagem vazia (00mn 05s) Reparação de atalhos do navegador ========== Chaves do Registo ========== ELIMINÉ: HKCU\Software\ProgSense ELIMINÉ: HKCU\Software\Systweak ELIMINÉ CLSID MPSK: {a42b5cd6-4aec-11e4-8b9a-806e6f6e6963} ELIMINÉ: SearchScopes :{0633EE93-D776-472f-A0FF-E1416B8B2E3A} ELIMINÉ: SearchScopes :{0A7BB8F0-8771-46C5-A3C2-0452045573CC} ========== Valores do Registo ========== ELIMINÉ RunValue: CCleaner Monitoring ========== Pastas ========== Nenhuma pasta CLSID local utilizador vazia ========== Ficheiros ========== ELIMINA REINICIAR: c:\program files\ccleaner\ccleaner64.exe ELIMINÉ: c:\users\user\appdata\local\temp\tmpf1fc.tmp.exe ELIMINÉ Temporários windows (345) (645.968.410 octets) ELIMINÉ Flash Cookies (0) (0 octets) ========== Ficheiro HOSTS ========== O ficheiro Hosts não foi reparado, por favor, desative o seu antivírus. ========== Tarefa planificada ========== ELIMINÉ: {AAD0AB7F-34C0-4045-9F5D-6DAB62969EF8} ELIMINÉ: {B2641376-AF76-4385-A515-6E4063823165} ELIMINÉ: {E3169739-32F4-4129-8147-0B0D407FE974} ========== Restauração Sistema ========== Ponto de restauro do sistema criado com sucesso ========== Recapitulativo ========== 5 : Chaves do Registo 1 : Valores do Registo 1 : Pastas 4 : Ficheiros 1 : Ficheiro HOSTS 3 : Tarefa planificada 1 : Restauração Sistema End of clean in 00mn 45s ========== Caminho do ficheiro do relatório ========== C:\Users\user\AppData\Roaming\ZHP\ZHPFix[R1].txt - 14/06/2015 19:23:58 [1678]
  9. Grato a atenção Power Max Segue abaixo o Log do ZHPDiag: #################################### ~ Relatório do ZHPDiag v2015.6.4.54 - Nicolas Coolman (31/05/2015) ~ Iniciado por user (14/06/2015 02:43:31) ~ Facebook : https://www.facebook.com/nicolascoolman1 ~ Endereço do Webforum : http://forum.nicolascoolman.fr ~ Tradução pelo utilizador ~ Estatuto da versão : Versão atualizada. ~ Lista Branca : Desativado pelo Utilizador ~ Elevação dos Privilégios : OK ~ Controle de Conta de Utilizador : Deactivate by user ---\\ Navegadores Internet MSIE: Internet Explorer v11.0.9600.17843 MFIE: Mozilla Firefox 38.0.5 (Defaut) GCIE: Google Chrome v43.0.2357.124 ---\\ Informações sobre os produtos Windows ~ Langage: Portugais Windows Server License Manager Script : Absent (Not found) Windows ID Activation : Inconnue (Unknown) Windows Licence : Inconnue (Unknown) Software Protection Service (Protection logicielle) : OK Windows Automatic Updates : OK Windows Activation Technologies : OK Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601) ---\\ Softwares de proteçao do sistema Malwarebytes Anti-Malware version 2.1.6.1022 Windows Defender W7 (Activate) ---\\ Softwares d'optimização do sistema CCleaner v4.18 ---\\ Softwares de partilha do PeerToPeer (P2P) ---\\ Monitoramento dos softwares Adobe Flash Player 18 NPAPI ---\\ Informações sobre o sistema ~ Processor: Intel64 Family 6 Model 60 Stepping 3, GenuineIntel ~ Operating System: 64 Bits Boot mode: Normal (Normal boot) Total RAM: 16290 MB (77% free) System Restore: Activé (Enable) System drive C: has 53 GB (10%) free of 488 GB ---\\ Modo de conexão ao sistema ~ Computer Name: GORISHIPC ~ User Name: user ~ All Users Names: user, Convidado, Administrador, ~ Unselected Option: None Logged in as Administrator ---\\ As variáveis de ambiente ~ System Unit : C:\ ~ %AppZHP% : C:\Users\user\AppData\Roaming\ZHP\ ~ %AppData% : C:\Users\user\AppData\Roaming\ ~ %Desktop% : C:\Users\user\Desktop\ ~ %Favorites% : C:\Users\user\Favorites\ ~ %LocalAppData% : C:\Users\user\AppData\Local\ ~ %StartMenu% : C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\ ~ %Windir% : C:\Windows\ ~ %System% : C:\Windows\System32\ ---\\ Enumeração das unidades dos discos C: Hard drive, Flash drive, Thumb drive (Free 53 Go of 488 Go) E: Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go) H: Hard drive, Flash drive, Thumb drive (Free 85 Go of 168 Go) I: Hard drive, Flash drive, Thumb drive (Free 163 Go of 443 Go) J: CD-ROM drive (Not Inserted) ---\\ Estado do Centro de Segurança do Windows [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK ~ Security Center: 46 Scanned in 00mn 00s ---\\ Pesquisa particular de ficheiros genéricos [MD5.AC4C51EB24AA95B77F705AB159189E24] - (.Microsoft Corporation - Windows Explorer.) (.21/11/2010 - 00:24:11.) -- C:\Windows\Explorer.exe [2872320] [MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Aplicativo de Inicialização do Windows.) (.13/07/2009 - 22:39:52.) -- C:\Windows\System32\Wininit.exe [129024] [MD5.417F80E4AFBA1AA9EBBD618F1C6D9165] - (.Microsoft Corporation - Internet Extensions para Win32.) (.22/05/2015 - 14:50:20.) -- C:\Windows\System32\wininet.dll [2426880] [MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - (.Microsoft Corporation - Aplicativo de Logon do Windows.) (.16/07/2014 - 23:07:24.) -- C:\Windows\System32\Winlogon.exe [455168] [MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Biblioteca de Licenciamento de Software.) (.21/11/2010 - 00:24:16.) -- C:\Windows\System32\sppcomapi.dll [232448] [MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.30/05/2014 - 03:45:52.) -- C:\Windows\system32\Drivers\AFD.sys [497152] [MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.13/07/2009 - 22:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128] [MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.13/07/2009 - 20:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160] [MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.21/11/2010 - 00:23:47.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456] [MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.21/11/2010 - 00:24:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400] [MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.21/11/2010 - 00:23:47.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368] [MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Driver de porta i8042.) (.13/07/2009 - 20:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472] [MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.13/07/2009 - 21:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224] [MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.26/04/2011 - 23:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208] [MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.21/11/2010 - 00:23:51.) -- C:\Windows\system32\Drivers\netBT.sys [261632] [MD5.B98F8C6E31CD07B2E6F71F7F648E38C0] - (.Microsoft Corporation - Driver do Sistema de Arquivos NT.) (.12/04/2013 - 11:45:08.) -- C:\Windows\system32\Drivers\ntfs.sys [1656680] [MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Driver de porta paralela.) (.13/07/2009 - 21:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280] [MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/11/2010 - 00:24:33.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536] [MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.13/07/2009 - 21:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184] [MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.21/11/2010 - 00:24:32.) -- C:\Windows\system32\Drivers\tdx.sys [119296] [MD5.DF8126BD41180351A093A3AD2FC8903B] - (.Microsoft Corporation - Driver de cópia de sombra de volume.) (.25/02/2011 - 03:25:38.) -- C:\Windows\system32\Drivers\volsnap.sys [296320] ~ Generic Processes: Scanned in 00mn 00s ---\\ Estatuto dos ficheiros ocultos (Oculto/Total) ~ Mes musiques (My Musics) : 1/4 ~ Mes Favoris (My Favorites) : 1/22 ~ Mes Documents (My Documents) : 1/2876 ~ Mon Bureau (My Desktop) : 3/47160 ~ Menu demarrer (Programs) : 1/47 ~ Hidden Files: Scanned in 00mn 20s ---\\ Processos lançados [MD5.A416FBE18A8FF5C942B5E4A65A66EAE0] - (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2754704] [PID.3796] [MD5.63FC59FDECDE3577B6952C9070F1677E] - (.RealNetworks, Inc. - RealTimes Service UI.) -- C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpsystray.exe [1133144] [PID.1688] [MD5.094E4E76FB9AB960A73F841BC6733F42] - (.Intel Corporation - iusb3mon.) -- C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848] [PID.4676] [MD5.16AFB34618E1286FF856DC600AC49C79] - (.No owner - DivX Update.) -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968] [PID.4712] [MD5.34084D25BE6F48D072AA54DE630438FD] - (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896] [PID.4724] [MD5.658450EBD38C5538CD66219B5CBE1EDC] - (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [286272] [PID.4732] [MD5.3D45AD2B246B90DBD3E6F213E7AEBF64] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [287592] [PID.4228] [MD5.923FE895B22B22A9CA03C72F3D15CE20] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [376944] [PID.648] [MD5.12E2FC1F74265881402DE856D01EFFFE] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8214016] [PID.816] [MD5.2E273A5E7A22A2E4EAFB05D6D5D856EB] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [410768] [PID.1016] [MD5.BBF8F831C7720DD5135D8C4C8325187A] - (...) -- C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728] [PID.1724] [MD5.FB51E8E39E3FDB6757874653B743BE72] - (.ESET - ESET Service.) -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1349576] [PID.1932] [MD5.DB7C6892180C79714EF79F69A788E865] - (.NVIDIA Corporation - NVIDIA Network Service.) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1893008] [PID.1244] [MD5.58B29B29743C375944DE2E0A97EE7402] - (...) -- C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe [31856] [PID.2076] [MD5.6957ADD27EAF4E1DA177971B2B9B450A] - (.RealNetworks, Inc. - RealTimes Desktop Service.) -- C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe [1115224] [PID.2104] [MD5.20E83F4632E15A5E9E716FF2E8AC7FAE] - (.Intel Corporation - IAStorDataSvc.) -- C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [15720] [PID.4416] [MD5.52069AEB42D3D0F97CBCA1085EBF55E6] - (.Intel Corporation - Intel® Dynamic Application Loader Host In.) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432] [PID.4980] [MD5.08E2B577DB95156F9A658C988EE71F5D] - (.Intel Corporation - Intel® Local Management Service.) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [390616] [PID.4584] ~ Processes Running: Scanned in 00mn 00s ---\\ Google Chrome, Arranque,Pesquisa,Extensões (G0,G1,G2) C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences ---\\ Pasta de extensão do Google Chrome G2 - EXT: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [__MSG_appName__] G2 - EXT: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [__MSG_appName__] G2 - EXT: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [__MSG_appName__] G2 - EXT: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [__MSG_appName__] G2 - EXT: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [__MSG_appName__] G2 - EXT: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [__MSG_appName__] G2 - EXT: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [bookmark Manager] G2 - EXT: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [Chrome Hotword Shared Module] G2 - EXT: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [__MSG_APP_NAME__] G2 - EXT: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [__MSG_appName__] ~ Google Lines Browser: 20 Scanned in 00mn 00s ---\\ Mozilla Firefox, Plugins,Arranque,Pesquisa,Extensões (P2,M0,M1,M2,M3) M0 - MFSP: prefs.js [user - r2eezoxp.default] www.google.com M2 - MFEP: prefs.js [user - r2eezoxp.default\anttoolbar@ant.com] [] Ant Video Downloader v2.4.7.31.1-signed (..) M2 - MFEP: Extension [user - r2eezoxp.default] anttoolbar@ant.com M2 - MFEP: Extension [user - r2eezoxp.default] jid1-cwbvBTE216jjpg@jetpack.xpi M2 - MFEP: Extension [user - r2eezoxp.default] {1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi M2 - MFEP: Extension [user - r2eezoxp.default] {35379F86-8CCB-4724-AE33-4278DE266C70} M2 - MFEP: Extension [user - r2eezoxp.default] {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi =>.Adblock Plus Extension Mozilla Firefox P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\amazondotcom.xml P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\bing.xml P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\ddg.xml P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\eBay.xml P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\google.xml P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\twitter.xml P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wikipedia.xml P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo.xml P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_160.dll ~ Firefox Browser: 24 Scanned in 00mn 00s ---\\ Internet Explorer, Arranque, Pesquisa, URLSearchHook( gancho de URL), Phishing (R0,R1,R3,R4) R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navegador da Internet.) (11.00.9600.17840 (winblue_r11.150522-0826)) -- C:\Windows\SysWOW64\ieframe.dll R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0 R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0 ~ IE Browser: 17 Scanned in 00mn 00s ---\\ Internet Explorer, Gestão do Proxy (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ~ Proxy management: Scanned in 00mn 00s ---\\ Análise das linhas F0, F1, F2, F3 - Ficheiros ini, Carregamento Automático de programas F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: Shell=C:\Windows\explorer.exe F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe ~ Keys: Scanned in 00mn 00s ---\\ Redireção do ficheiro Hosts (01) O1 - Hosts: 173.212.255.178 embedded.garena.com O1 - Hosts: 173.212.255.178 embedded.garenanow.com ~ Nombre lignes détournées 2/23 (Hosts file redirected) ~ Hosts File: Scanned in 00mn 00s ---\\ Browser Helper Objects do navegador (02) O2 - BHO: btorbit.com [64Bits] - {000123B4-9B42-4900-B3F7-F4B073EFC214} . (.Orbitdownloader.com - Orbitcth.) -- C:\Program Files (x86)\Orbitdownloader\orbitcth.dll O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer [64Bits] - {3049C3E9-B461-4BC5-8870-4C09146192CA} . (.RealDownloader - RealTimes Video Downloader.) -- C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll O2 - BHO: Groove GFS Browser Helper [64Bits] - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Java Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java Platform SE binary.) -- C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll O2 - BHO: Java Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java Platform SE binary.) -- C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll O2 - BHO: Adblock Plus for IE Browser Helper Object [64Bits] - {FFCB3198-32F3-4E8B-9539-4324694ED664} . (.Adblock Plus - Adblock Plus Module.) -- C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll ~ BHO: 8 Scanned in 00mn 00s ---\\ Outras conexões do utilizador (04) O4 - GS\QuickLaunch [user]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) -- C:\Users\user\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent O4 - GS\Desktop [user]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) -- C:\Users\user\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent ~ Global Startup: 2 Scanned in 00mn 03s ---\\ Aplicações iniciadas por registo & pastas (04) O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gerenciador de áudio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe O4 - HKLM\..\Run: [iAStorIcon] . (.Intel Corporation - Delayed launcher.) -- C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe O4 - HKLM\..\Run: [NvBackend] . (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe O4 - HKLM\..\Run: [shadowPlay] . (.NVIDIA Corporation - NVIDIA Capture Server Proxy.) -- C:\Windows\system32\nvspcap64.dll O4 - HKLM\..\Run: [egui] . (.ESET - ESET Main GUI.) -- C:\Program Files\ESET\ESET Smart Security\egui.exe O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd O4 - HKLM\..\Wow6432Node\Run: [iMSS] . (.Intel Corporation - PIcon startup utility.) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe O4 - HKLM\..\Wow6432Node\Run: [uSB3MON] . (.Intel Corporation - iusb3mon.) -- C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe O4 - HKLM\..\Wow6432Node\Run: [GrooveMonitor] . (.Microsoft Corporation - GrooveMonitor Utility.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe O4 - HKLM\..\Wow6432Node\Run: [DivXMediaServer] . (.DivX, LLC - DivX Media Server Launcher.) -- C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe O4 - HKLM\..\Wow6432Node\Run: [DivXUpdate] . (.No owner - DivX Update.) -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe O4 - HKLM\..\Wow6432Node\Run: [sunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle Corporation O4 - HKLM\..\Wow6432Node\Run: [TkBellExe] . (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe =>.RealNetworks, Inc O4 - HKLM\..\Wow6432Node\Run: [RealDownloader] . (.No owner - RealDownloader.) -- C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets da Área de Trabalho do Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets da Área de Trabalho do Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-21-1842667124-3955753076-3068624421-1000\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd ~ Application: Scanned in 00mn 00s ---\\ Icones das opções IE invisiveis no painel das configurações (05) O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no ~ IE Control Panel: 1 Scanned in 00mn 00s ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Provedor de Correção de Nomeação de Emails.) -- C:\Windows\system32\napinsp.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - PNRP Name Space Provider.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - PNRP Name Space Provider.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Provedor de serviços do Microsoft Windows Sockets 2.0.) -- C:\Windows\system32\mswsock.dll O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll ~ Winsock: 6 Scanned in 00mn 00s ---\\ Alteração Dominio/Clientes DNS (017) O17 - HKLM\System\CCS\Services\Tcpip\..\{1FD32B9F-C5E9-456D-B0B3-EBDE74697F94}: DhcpNameServer = 187.122.188.109 187.122.188.101 201.6.4.116 O17 - HKLM\System\CCS\Services\Tcpip\..\{60FEC447-01F8-4895-9D5F-9CFAAEF5EBB9}: DhcpNameServer = 187.122.188.109 187.122.188.101 201.6.4.116 O17 - HKLM\System\CS1\Services\Tcpip\..\{1FD32B9F-C5E9-456D-B0B3-EBDE74697F94}: DhcpNameServer = 187.122.188.109 187.122.188.101 201.6.4.116 O17 - HKLM\System\CS1\Services\Tcpip\..\{60FEC447-01F8-4895-9D5F-9CFAAEF5EBB9}: DhcpNameServer = 187.122.188.109 187.122.188.101 201.6.4.116 O17 - HKLM\System\CS2\Services\Tcpip\..\{1FD32B9F-C5E9-456D-B0B3-EBDE74697F94}: DhcpNameServer = 187.122.188.109 187.122.188.101 201.6.4.116 O17 - HKLM\System\CS2\Services\Tcpip\..\{60FEC447-01F8-4895-9D5F-9CFAAEF5EBB9}: DhcpNameServer = 187.122.188.109 187.122.188.101 201.6.4.116 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 187.122.188.109 187.122.188.101 201.6.4.116 ~ Domain: Scanned in 00mn 00s ---\\ Protocolo adicional (018) O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft ®.) -- C:\Windows\System32\mshtml.dll O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll =>.Microsoft Corporation ~ Protocole Additionnel: Scanned in 00mn 00s ---\\ Chave do Registo autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. ~ SSODL: 1 Scanned in 00mn 00s ---\\ Lista dos serviços NT não Microsoft e não desativados (023) O23 - Service: ASUS Com Service (asComSvc) . (...) - C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe O23 - Service: ESET Service (ekrn) . (.ESET - ESET Service.) - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) . (.NVIDIA Corporation - NVIDIA GeForce ExperienceService.) - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe O23 - Service: Serviço do Google Update (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: Intel® Capability Licensing Service Interface (Intel® Capability Licensing Service Interface) . (.Intel® Corporation - Intel® Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe O23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel® Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe O23 - Service: Intel® Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Intel® Local Management Service.) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe O23 - Service: NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation - NVIDIA Network Service.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe O23 - Service: NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation - NVIDIA Streamer Service.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 353.0.) - C:\Windows\system32\nvvsvc.exe O23 - Service: RealPlayer Update Service (RealPlayerUpdateSvc) . (...) - C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe O23 - Service: RealTimes Desktop Service (RealTimes Desktop Service) . (.RealNetworks, Inc. - RealTimes Desktop Service.) - C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe ~ Services: 15 Scanned in 00mn 02s ---\\ Enumeração Ativa do Ambiente de trabalho & Editor MHTML (024) O24 - Default MHTML Editor: Last - .(...) - (.not file.) ~ Desktop Component: 4 Scanned in 00mn 00s ---\\ Listagem dos dados do BootExecute (Bex) (034) O34 - HKLM BootExecute: (autocheck autochk *) - File not found ~ BEX: 1 Scanned in 00mn 00s ---\\ Tarefas planificadas automaticamente (039) [MD5.7C58046ACEAF10525077BD586A740E9F] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [268976] [MD5.F308D7378BF60B91DA495FCAA1C216E7] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [4811032] [MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648] [MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore1d04022b7d97314] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648] [MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648] [MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA1d04022b8de15a5] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648] [MD5.2A5C656B0A364580E578B26EAE2EE889] [APT] [klcp_update] (...) -- C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1173504] [MD5.DBEDC7B8CD3CA0AEA6CB93630BB39DB6] [APT] [RealDownloader Update Check] (...) -- C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe [590400] [MD5.D0F699CB06F3E81769852F28FFA78391] [APT] [RealDownloaderDownloaderScheduledTaskS-1-5-21-1842667124-3955753076-3068624421-1000] (.RealNetworks, Inc..) -- C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe [342104] [MD5.3C8967DD3BC24208F50915178516783C] [APT] [RealDownloaderRealUpgradeLogonTaskS-1-5-21-1842667124-3955753076-3068624421-1000] (.RealNetworks, Inc..) -- C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [143424] [MD5.3C8967DD3BC24208F50915178516783C] [APT] [RealDownloaderRealUpgradeScheduledTaskS-1-5-21-1842667124-3955753076-3068624421-1000] (.RealNetworks, Inc..) -- C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [143424] [MD5.B79C8FBFE81C52FB22310C86CED64040] [APT] [RealPlayerRealUpgradeLogonTaskS-1-5-21-1842667124-3955753076-3068624421-1000] (.RealNetworks, Inc..) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [137216] [MD5.B79C8FBFE81C52FB22310C86CED64040] [APT] [RealPlayerRealUpgradeScheduledTaskS-1-5-21-1842667124-3955753076-3068624421-1000] (.RealNetworks, Inc..) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [137216] [MD5.00000000000000000000000000000000] [APT] [{AAD0AB7F-34C0-4045-9F5D-6DAB62969EF8}] (...) -- C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revouninstaller.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{B2641376-AF76-4385-A515-6E4063823165}] (...) -- C:\KMPlayer\KMPSetup.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{E3169739-32F4-4129-8147-0B0D407FE974}] (...) -- C:\users\user\Desktop\Downloads\Setup.exe (.not file.) [0] O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [902] O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [902] O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1066] O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1066] O39 - APT: GoogleUpdateTaskMachineCore1d04022b7d97314 - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d04022b7d97314.job [1066] O39 - APT: GoogleUpdateTaskMachineCore1d04022b7d97314 - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1d04022b7d97314 [1066] O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1070] O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1070] O39 - APT: GoogleUpdateTaskMachineUA1d04022b8de15a5 - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d04022b8de15a5.job [1070] O39 - APT: GoogleUpdateTaskMachineUA1d04022b8de15a5 - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1d04022b8de15a5 [1070] ~ Scheduled Task: 23 Scanned in 00mn 05s ---\\ Componentes instalados (ActiveSetup Installed Components) (040) O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Recursos do Windows Media Player.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API de tema do Windows.) -- C:\Windows\System32\themeui.dll O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extensão shell da pasta FTP do Microsoft Internet Explorer.) -- C:\Windows\System32\msieftp.dll O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Recursos do Windows Media Player.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation O40 - ASIC: Disable SSL3 [64Bits] - {7D715857-A67C-4C2F-A929-038448584D63} . (.Microsoft Corporation - Utilitário de Inicialização por Usuário do Internet Explorer.) -- C:\Windows\System32\ie4uinit.exe O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL comum do Shell do Windows.) -- C:\Windows\System32\shell32.dll O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitário de Inicialização por Usuário do Internet Explorer.) -- C:\Windows\System32\ie4uinit.exe O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll ~ Active Setup: 10 Scanned in 00mn 00s ---\\ Drivers lançados ao arranque do sistema (041) O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys O41 - Driver: (AsIO) . (...) - C:\Windows\Syswow64\drivers\AsIO.sys O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys O41 - Driver: (eamonm) . (.ESET - Amon monitor.) - C:\Windows\System32\DRIVERS\eamonm.sys O41 - Driver: (ehdrv) . (.ESET - ESET Helper driver.) - C:\Windows\System32\DRIVERS\ehdrv.sys O41 - Driver: (EpfwLWF) . (.ESET - Epfw NDIS LightWeight Filter.) - C:\Windows\System32\DRIVERS\EpfwLWF.sys O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\System32\DRIVERS\mssmbios.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Agendador de pacotes de serviço.) - C:\Windows\System32\DRIVERS\pacer.sys O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Driver do Subsistema de Buffer da Unidade R.) - C:\Windows\System32\DRIVERS\rdbss.sys O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys O41 - Driver: (Serial) . (.Microsoft Corporation - Driver de dispositivo serial.) - C:\Windows\System32\DRIVERS\serial.sys O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys ~ Drivers: 75 Scanned in 00mn 00s ---\\ Software instalados (042) O42 - Logiciel: Adblock Plus para o IE (32 e 64 bits) - (.Eyeo GmbH.) [HKLM][64Bits] -- {62D748B9-5C7C-4E54-8C11-C79FE79D9E24} O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI O42 - Logiciel: Adobe Shockwave Player 12.1 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Shockwave Player O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM][64Bits] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1 O42 - Logiciel: DivX Setup - (.DivX, LLC.) [HKLM][64Bits] -- DivX Setup O42 - Logiciel: ESET Smart Security - (.ESET, spol s r. o..) [HKLM][64Bits] -- {293ADC3B-DCF3-44C2-9CE8-19DD2B4F7646} O42 - Logiciel: FormatFactory 3.6.0.0 - (.Format Factory.) [HKLM][64Bits] -- FormatFactory O42 - Logiciel: Foxit Reader - (.Foxit Software Inc..) [HKLM][64Bits] -- Foxit Reader_is1 O42 - Logiciel: Fraps (remove only) - (...) [HKLM][64Bits] -- Fraps O42 - Logiciel: Freemake Video Converter version 4.1.4 - (.Ellora Assets Corporation.) [HKLM][64Bits] -- Freemake Video Converter_is1 O42 - Logiciel: GIF Viewer - (...) [HKLM][64Bits] -- GIF Viewer O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} O42 - Logiciel: Intel® Control Center - (.Intel Corporation.) [HKLM][64Bits] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421} O42 - Logiciel: Intel® Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} O42 - Logiciel: Intel® Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {409CB30E-E457-4008-9B1A-ED1B9EA21140} O42 - Logiciel: Intel® Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {93F692D4-0C4D-4EED-9BFE-657C1D5959FE} O42 - Logiciel: Intel® USB 3.0 eXtensible Host Controller Driver - (.Intel Corporation.) [HKLM][64Bits] -- {240C3DDD-C5E9-4029-9DF7-95650D040CF2} O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {B5E06417-A4AC-4225-B36E-7E34C91616E7} O42 - Logiciel: Java 8 Update 45 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218045F0} O42 - Logiciel: K-Lite Codec Pack 11.1.5 Basic - (...) [HKLM][64Bits] -- KLiteCodecPack_is1 O42 - Logiciel: Malwarebytes Anti-Malware version 2.1.6.1022 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 O42 - Logiciel: Mozilla Firefox 38.0.5 (x86 en-US) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 38.0.5 (x86 en-US) O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService O42 - Logiciel: NVIDIA Driver de controle do 3D Vision 352.65 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB O42 - Logiciel: NVIDIA Driver de gráficos 353.06 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver O42 - Logiciel: NVIDIA Driver de áudio HD 1.3.34.3 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver O42 - Logiciel: NVIDIA Driver do 3D Vision 353.06 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision O42 - Logiciel: NVIDIA GeForce Experience 2.4.5.28 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience O42 - Logiciel: NVIDIA Software do sistema PhysX 9.15.0428 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIAStereo O42 - Logiciel: Orbit Downloader - (.www.orbitdownloader.com.) [HKLM][64Bits] -- Orbit_is1 O42 - Logiciel: PhotoScape - (...) [HKLM][64Bits] -- PhotoScape O42 - Logiciel: PremiumSoft Navicat Premium 11.1 - (.PremiumSoft CyberTech Ltd..) [HKLM][64Bits] -- PremiumSoft Navicat Premium_is1 O42 - Logiciel: RaidCall - (.raidcall.com.br.) [HKLM][64Bits] -- RaidCall O42 - Logiciel: Ralink RT2870 Wireless LAN Card - (.Ralink.) [HKLM][64Bits] -- {28DA7D8B-F9A4-4F18-8AA0-551B1E084D0D} O42 - Logiciel: RealDownloader - (.RealNetworks, Inc..) [HKLM][64Bits] -- {9F3B20DF-76F2-47F4-9372-F0F56485A58D} O42 - Logiciel: RealDownloader - (.RealNetworks.) [HKLM][64Bits] -- {e1f55556-ee3b-4059-961f-390ab7191c03} O42 - Logiciel: RealTimes (RealPlayer) - (.RealNetworks.) [HKLM][64Bits] -- RealPlayer 18.0 O42 - Logiciel: RealUpgrade 1.1 - (.RealNetworks, Inc..) [HKLM][64Bits] -- {28C2DED6-325B-4CC7-983A-1777C8F7FBAB} O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} O42 - Logiciel: Recuva - (.Piriform.) [HKLM][64Bits] -- Recuva O42 - Logiciel: Rockstar Games Social Club - (.Rockstar Games.) [HKLM][64Bits] -- Rockstar Games Social Club O42 - Logiciel: SKTimeStamp - (.Stefans Tools.) [HKLM][64Bits] -- {AAD52EF2-3EEB-489C-9F93-B0C1EC1D21A8} O42 - Logiciel: The KMPlayer (remove only) - (.KMP Media co., Ltd.) [HKLM][64Bits] -- The KMPlayer O42 - Logiciel: UpdateService - (.RealNetworks, Inc..) [HKLM][64Bits] -- {E3AE96D6-E196-45B4-AF62-2B41998B9E37} O42 - Logiciel: VC80CRTRedist - 8.0.50727.6195 - (.DivX, Inc.) [HKLM][64Bits] -- {933B4015-4618-4716-A828-5289FC03165F} O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN O42 - Logiciel: WinRAR 5.11 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM][64Bits] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726} O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent =>P2P.BitTorrent ~ Logic: 57 Scanned in 00mn 00s ---\\ HKCU & HKLM Software Keys [HKCU\Software\ASUS] [HKCU\Software\AdblockPlus] [HKCU\Software\Adobe] [HKCU\Software\AppDataLow\Software\JavaSoft] [HKCU\Software\AppDataLow] [HKCU\Software\BitTorrent] =>P2P.BitTorrent [HKCU\Software\Blizzard Entertainment] [HKCU\Software\Canneverbe Limited] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\DivXNetworks] [HKCU\Software\DivX] [HKCU\Software\ESET] [HKCU\Software\Foxit Software] [HKCU\Software\Fraps3] [HKCU\Software\FreeTime] [HKCU\Software\Freemake] [HKCU\Software\GNU] [HKCU\Software\Gabest] [HKCU\Software\Geek Uninstaller] [HKCU\Software\Google] [HKCU\Software\Haali] [HKCU\Software\Icaros] [HKCU\Software\Intel] [HKCU\Software\JavaSoft] [HKCU\Software\KMPlayer] [HKCU\Software\MCAFEE] [HKCU\Software\MPC-HC] [HKCU\Software\Macromedia] [HKCU\Software\MainConcept] [HKCU\Software\Mirage] [HKCU\Software\Mooii] [HKCU\Software\MozillaPlugins] [HKCU\Software\Mozilla] [HKCU\Software\NTSCorp] [HKCU\Software\NVIDIA Corporation] [HKCU\Software\Netscape] [HKCU\Software\NewTechnologyStudio] [HKCU\Software\ODBC] [HKCU\Software\Orbit] [HKCU\Software\Piriform] [HKCU\Software\PokeGen] [HKCU\Software\Policies] [HKCU\Software\PremiumSoft] [HKCU\Software\ProgSense] =>PUP.ProgSense [HKCU\Software\RealNetworks] [HKCU\Software\Real] [HKCU\Software\Realtek] [HKCU\Software\Rockstar Games] [HKCU\Software\SecuROM] [HKCU\Software\Skype] [HKCU\Software\SpeedBit] [HKCU\Software\Systweak] [HKCU\Software\Trend Micro] [HKCU\Software\Trolltech] [HKCU\Software\VB and VBA Program Settings] [HKCU\Software\WinRAR SFX] [HKCU\Software\WinRAR] [HKCU\Software\Winamp] [HKCU\Software\Wow6432Node] [HKCU\Software\madshi] [HKLM\Software\AGEIA Technologies] [HKLM\Software\ATI Technologies] [HKLM\Software\Adblock Plus for IE] [HKLM\Software\Apple Inc.] [HKLM\Software\CBSTEST] [HKLM\Software\Canneverbe Limited] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\DTS] [HKLM\Software\DivX] [HKLM\Software\Dolby] [HKLM\Software\ESET] [HKLM\Software\Foxit Software] [HKLM\Software\Icaros] [HKLM\Software\Intel] [HKLM\Software\Khronos] [HKLM\Software\Knowles] [HKLM\Software\LAV64] [HKLM\Software\Macromedia] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\NVIDIA Corporation] [HKLM\Software\Nuance] [HKLM\Software\ODBC] [HKLM\Software\Piriform] [HKLM\Software\Policies] [HKLM\Software\RTLSetup] [HKLM\Software\Realtek] [HKLM\Software\RegisteredApplications] [HKLM\Software\SRS Labs] [HKLM\Software\SonicFocus] [HKLM\Software\Sonic] [HKLM\Software\Waves Audio] [HKLM\Software\WinRAR] [HKLM\Software\Wow6432Node\AGEIA Technologies] [HKLM\Software\Wow6432Node\ASUS] [HKLM\Software\Wow6432Node\Adobe] [HKLM\Software\Wow6432Node\AppDataLow] [HKLM\Software\Wow6432Node\AviSynth] [HKLM\Software\Wow6432Node\Blizzard Entertainment] [HKLM\Software\Wow6432Node\CDDB] [HKLM\Software\Wow6432Node\Classes] [HKLM\Software\Wow6432Node\Clients] [HKLM\Software\Wow6432Node\DivX] [HKLM\Software\Wow6432Node\ESET] [HKLM\Software\Wow6432Node\Foxit Software] [HKLM\Software\Wow6432Node\Fraps2] [HKLM\Software\Wow6432Node\Freemake] [HKLM\Software\Wow6432Node\GNU] [HKLM\Software\Wow6432Node\Google] [HKLM\Software\Wow6432Node\HaaliMkx] [HKLM\Software\Wow6432Node\Icaros] [HKLM\Software\Wow6432Node\Intel] [HKLM\Software\Wow6432Node\InterVideo] [HKLM\Software\Wow6432Node\JavaSoft] [HKLM\Software\Wow6432Node\JreMetrics] [HKLM\Software\Wow6432Node\KLCodecPack] [HKLM\Software\Wow6432Node\KMPlayer] [HKLM\Software\Wow6432Node\Khronos] [HKLM\Software\Wow6432Node\LAV] [HKLM\Software\Wow6432Node\Licenses] [HKLM\Software\Wow6432Node\Macromedia] [HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware] [HKLM\Software\Wow6432Node\McAfee.com] [HKLM\Software\Wow6432Node\Mooii] [HKLM\Software\Wow6432Node\MozillaPlugins] [HKLM\Software\Wow6432Node\Mozilla] [HKLM\Software\Wow6432Node\NVIDIA Corporation] [HKLM\Software\Wow6432Node\Nuance] [HKLM\Software\Wow6432Node\ODBC] [HKLM\Software\Wow6432Node\Orbit] [HKLM\Software\Wow6432Node\Policies] [HKLM\Software\Wow6432Node\RCBR] [HKLM\Software\Wow6432Node\Ralink] [HKLM\Software\Wow6432Node\RealNetworks] [HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.] [HKLM\Software\Wow6432Node\Realtek] [HKLM\Software\Wow6432Node\RegisteredApplications] [HKLM\Software\Wow6432Node\Rockstar Games] [HKLM\Software\Wow6432Node\TrendMicro] [HKLM\Software\Wow6432Node\VideoLAN] [HKLM\Software\Wow6432Node\Xing Technology Corp.] [HKLM\Software\Wow6432Node\mozilla.org] [HKLM\Software\Wow6432Node] ~ Key Software: 260 Scanned in 00mn 00s ---\\ Conteúdo das pastas Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 03/10/2014 - 10:32:15 - [] ----D C:\Program Files (x86)\ASUS O43 - CFD: 07/06/2015 - 00:24:00 - [] ----D C:\Program Files (x86)\Common Files O43 - CFD: 31/05/2015 - 02:10:35 - [] ----D C:\Program Files (x86)\DivX O43 - CFD: 03/10/2014 - 11:15:05 - [] ----D C:\Program Files (x86)\Foxit Software O43 - CFD: 07/10/2014 - 14:23:25 - [] ----D C:\Program Files (x86)\Freemake O43 - CFD: 15/03/2015 - 13:04:59 - [] ----D C:\Program Files (x86)\FreeTime O43 - CFD: 31/05/2015 - 12:20:24 - [] ----D C:\Program Files (x86)\GIF Viewer O43 - CFD: 03/10/2014 - 11:16:22 - [] ----D C:\Program Files (x86)\Google O43 - CFD: 12/12/2014 - 22:09:01 - [] --H-D C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 03/10/2014 - 10:46:36 - [] ----D C:\Program Files (x86)\Intel O43 - CFD: 10/06/2015 - 01:47:32 - [] ----D C:\Program Files (x86)\Internet Explorer O43 - CFD: 08/05/2015 - 15:12:14 - [] ----D C:\Program Files (x86)\Java O43 - CFD: 16/05/2015 - 00:48:24 - [] ----D C:\Program Files (x86)\K-Lite Codec Pack O43 - CFD: 07/10/2014 - 14:57:44 - [] ----D C:\Program Files (x86)\LAV Filters O43 - CFD: 07/10/2014 - 15:05:55 - [] ----D C:\Program Files (x86)\MadVR O43 - CFD: 24/05/2015 - 04:02:10 - [] ----D C:\Program Files (x86)\Malwarebytes Anti-Malware O43 - CFD: 08/10/2014 - 15:03:24 - [] ----D C:\Program Files (x86)\Microsoft Office O43 - CFD: 03/10/2014 - 12:33:56 - [] ----D C:\Program Files (x86)\Microsoft Visual Studio O43 - CFD: 03/10/2014 - 12:32:29 - [] ----D C:\Program Files (x86)\Microsoft Visual Studio 8 O43 - CFD: 07/10/2014 - 13:23:01 - [] ----D C:\Program Files (x86)\Microsoft Works O43 - CFD: 03/10/2014 - 12:33:44 - [] ----D C:\Program Files (x86)\Microsoft.NET O43 - CFD: 06/06/2015 - 23:50:23 - [] ----D C:\Program Files (x86)\Mozilla Firefox O43 - CFD: 06/06/2015 - 23:56:25 - [] ----D C:\Program Files (x86)\Mozilla Maintenance Service O43 - CFD: 03/10/2014 - 12:34:02 - [] ----D C:\Program Files (x86)\MSBuild O43 - CFD: 08/05/2015 - 17:08:15 - [] ----D C:\Program Files (x86)\NVIDIA Corporation O43 - CFD: 30/10/2014 - 13:16:40 - [] ----D C:\Program Files (x86)\Orbitdownloader O43 - CFD: 31/03/2015 - 15:06:52 - [0] ----D C:\Program Files (x86)\PCSX2 1.2.1 O43 - CFD: 23/04/2015 - 18:12:46 - [] ----D C:\Program Files (x86)\PhotoScape O43 - CFD: 25/12/2014 - 18:16:56 - [] ----D C:\Program Files (x86)\RaidCall.BR O43 - CFD: 07/06/2015 - 00:24:35 - [] ----D C:\Program Files (x86)\Real O43 - CFD: 07/06/2015 - 00:24:16 - [] ----D C:\Program Files (x86)\RealNetworks O43 - CFD: 03/10/2014 - 10:38:17 - [] ----D C:\Program Files (x86)\Realtek O43 - CFD: 14/07/2009 - 02:32:38 - [] ----D C:\Program Files (x86)\Reference Assemblies O43 - CFD: 04/06/2015 - 14:24:13 - [] ----D C:\Program Files (x86)\Rockstar Games O43 - CFD: 03/10/2014 - 10:36:51 - [0] --H-D C:\Program Files (x86)\Temp O43 - CFD: 16/04/2015 - 01:15:13 - [] ----D C:\Program Files (x86)\The KMPlayer O43 - CFD: 13/06/2015 - 12:41:00 - [] ----D C:\Program Files (x86)\Trend Micro O43 - CFD: 14/07/2009 - 01:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information O43 - CFD: 08/10/2014 - 13:59:50 - [] ----D C:\Program Files (x86)\VideoLAN O43 - CFD: 06/10/2014 - 21:08:04 - [0] ----D C:\Program Files (x86)\VS Revo Group O43 - CFD: 07/10/2014 - 21:59:46 - [] ----D C:\Program Files (x86)\Windows Defender O43 - CFD: 07/10/2014 - 21:59:46 - [] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation O43 - CFD: 10/06/2015 - 01:47:33 - [] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation O43 - CFD: 14/07/2009 - 02:32:38 - [] ----D C:\Program Files (x86)\Windows NT O43 - CFD: 07/10/2014 - 21:59:46 - [] ----D C:\Program Files (x86)\Windows Photo Viewer O43 - CFD: 21/11/2010 - 00:31:38 - [] ----D C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 07/10/2014 - 21:59:46 - [] ----D C:\Program Files (x86)\Windows Sidebar O43 - CFD: 07/10/2014 - 15:08:18 - [] ----D C:\Program Files (x86)\xyVSFilter O43 - CFD: 14/06/2015 - 02:41:47 - [] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman O43 - CFD: 08/10/2014 - 15:02:44 - [] ----D C:\Program Files (x86)\Common Files\DESIGNER O43 - CFD: 30/11/2014 - 18:55:27 - [] ----D C:\Program Files (x86)\Common Files\DivX Shared O43 - CFD: 03/10/2014 - 10:35:46 - [] ----D C:\Program Files (x86)\Common Files\InstallShield O43 - CFD: 03/10/2014 - 10:41:59 - [] ----D C:\Program Files (x86)\Common Files\Intel Corporation O43 - CFD: 08/05/2015 - 15:12:51 - [] ----D C:\Program Files (x86)\Common Files\Java O43 - CFD: 07/10/2014 - 13:23:04 - [] ----D C:\Program Files (x86)\Common Files\microsoft shared O43 - CFD: 03/10/2014 - 10:39:31 - [] ----D C:\Program Files (x86)\Common Files\postureAgent O43 - CFD: 14/07/2009 - 00:20:08 - [] ----D C:\Program Files (x86)\Common Files\Services O43 - CFD: 14/07/2009 - 00:20:08 - [] ----D C:\Program Files (x86)\Common Files\SpeechEngines O43 - CFD: 07/10/2014 - 14:02:35 - [] ----D C:\Program Files (x86)\Common Files\System O43 - CFD: 07/06/2015 - 00:24:00 - [] ----D C:\Program Files (x86)\Common Files\xing shared O43 - CFD: 14/07/2009 - 02:08:56 - [] -SH-D C:\ProgramData\Application Data O43 - CFD: 15/03/2015 - 13:06:02 - [] ----D C:\ProgramData\Baidu O43 - CFD: 15/04/2015 - 20:32:13 - [] ----D C:\ProgramData\boost_interprocess O43 - CFD: 03/10/2014 - 08:06:24 - [] -SH-D C:\ProgramData\Dados de aplicativos O43 - CFD: 14/07/2009 - 02:08:56 - [] -SH-D C:\ProgramData\Desktop O43 - CFD: 31/05/2015 - 02:10:36 - [] ----D C:\ProgramData\DivX O43 - CFD: 03/10/2014 - 08:06:24 - [] -SH-D C:\ProgramData\Documentos O43 - CFD: 14/07/2009 - 02:08:56 - [] -SH-D C:\ProgramData\Documents O43 - CFD: 14/05/2015 - 00:47:58 - [] ----D C:\ProgramData\ESET O43 - CFD: 14/07/2009 - 02:08:56 - [] -SH-D C:\ProgramData\Favorites O43 - CFD: 03/10/2014 - 08:06:24 - [] -SH-D C:\ProgramData\Favoritos O43 - CFD: 07/10/2014 - 14:23:34 - [] ----D C:\ProgramData\Freemake O43 - CFD: 03/10/2014 - 10:41:04 - [] ----D C:\ProgramData\Intel O43 - CFD: 30/10/2014 - 16:02:23 - [] ----D C:\ProgramData\IsolatedStorage O43 - CFD: 07/10/2014 - 00:27:54 - [] ----D C:\ProgramData\Malwarebytes O43 - CFD: 06/10/2014 - 22:40:48 - [] ----D C:\ProgramData\McAfee O43 - CFD: 03/10/2014 - 08:06:24 - [] -SH-D C:\ProgramData\Menu Iniciar O43 - CFD: 02/11/2014 - 17:47:26 - [] -S--D C:\ProgramData\Microsoft O43 - CFD: 10/06/2015 - 01:46:46 - [] ----D C:\ProgramData\Microsoft Help O43 - CFD: 03/10/2014 - 08:06:24 - [] -SH-D C:\ProgramData\Modelos O43 - CFD: 06/10/2014 - 21:40:19 - [] ----D C:\ProgramData\Mozilla O43 - CFD: 13/06/2015 - 21:54:48 - [] ----D C:\ProgramData\NVIDIA O43 - CFD: 15/04/2015 - 21:28:24 - [] ----D C:\ProgramData\NVIDIA Corporation O43 - CFD: 08/05/2015 - 15:14:03 - [] ----D C:\ProgramData\Oracle O43 - CFD: 07/06/2015 - 00:24:18 - [] ----D C:\ProgramData\Package Cache O43 - CFD: 03/10/2014 - 09:29:25 - [] ----D C:\ProgramData\Ralink Driver O43 - CFD: 07/06/2015 - 00:18:45 - [] ----D C:\ProgramData\Real O43 - CFD: 07/06/2015 - 00:24:16 - [] ----D C:\ProgramData\RealNetworks O43 - CFD: 31/05/2015 - 16:34:40 - [] -SH-D C:\ProgramData\SecuROM O43 - CFD: 03/06/2015 - 18:11:54 - [0] ----D C:\ProgramData\SpeedBit O43 - CFD: 14/07/2009 - 02:08:56 - [] -SH-D C:\ProgramData\Start Menu O43 - CFD: 08/05/2015 - 15:12:52 - [] ----D C:\ProgramData\Sun O43 - CFD: 03/06/2015 - 18:11:06 - [0] ---AD C:\ProgramData\TEMP O43 - CFD: 14/07/2009 - 02:08:56 - [] -SH-D C:\ProgramData\Templates O43 - CFD: 06/10/2014 - 21:23:23 - [] ----D C:\ProgramData\VS Revo Group O43 - CFD: 03/10/2014 - 08:04:52 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 14/07/2009 - 01:57:13 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 07/10/2014 - 03:41:43 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner O43 - CFD: 31/05/2015 - 02:10:31 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX O43 - CFD: 14/05/2015 - 00:47:58 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET O43 - CFD: 03/10/2014 - 11:15:09 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader O43 - CFD: 07/10/2014 - 14:23:26 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake O43 - CFD: 03/10/2014 - 08:04:40 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games O43 - CFD: 03/10/2014 - 11:16:27 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome O43 - CFD: 03/10/2014 - 10:41:04 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel O43 - CFD: 21/01/2015 - 19:45:09 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java O43 - CFD: 16/05/2015 - 00:48:22 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack O43 - CFD: 14/07/2009 - 01:57:09 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 24/05/2015 - 04:02:10 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware O43 - CFD: 03/10/2014 - 12:35:10 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office O43 - CFD: 15/04/2015 - 21:28:21 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation O43 - CFD: 30/10/2014 - 13:16:40 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Orbit O43 - CFD: 23/04/2015 - 18:11:39 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoScape O43 - CFD: 30/10/2014 - 13:53:03 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PremiumSoft O43 - CFD: 23/10/2014 - 12:58:03 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RaidCall O43 - CFD: 07/06/2015 - 00:24:17 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks O43 - CFD: 12/10/2014 - 00:58:11 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva O43 - CFD: 07/06/2015 - 00:23:41 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 21/11/2010 - 04:16:41 - [0] R-H-D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC O43 - CFD: 08/10/2014 - 13:59:59 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN O43 - CFD: 03/10/2014 - 11:11:19 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR O43 - CFD: 14/06/2015 - 02:41:47 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP =>.Nicolas Coolman O43 - CFD: 06/10/2014 - 22:03:51 - [] ----D C:\Users\user\AppData\Roaming\Adobe O43 - CFD: 07/06/2015 - 00:05:57 - [] ----D C:\Users\user\AppData\Roaming\Apowersoft O43 - CFD: 03/10/2014 - 11:15:22 - [] ----D C:\Users\user\AppData\Roaming\Canneverbe Limited O43 - CFD: 05/12/2014 - 11:54:28 - [] ----D C:\Users\user\AppData\Roaming\DivX O43 - CFD: 06/10/2014 - 21:15:34 - [] ----D C:\Users\user\AppData\Roaming\ESET O43 - CFD: 30/10/2014 - 13:43:35 - [] ----D C:\Users\user\AppData\Roaming\Foxit Software O43 - CFD: 02/11/2014 - 15:01:22 - [] ----D C:\Users\user\AppData\Roaming\Geek Uninstaller O43 - CFD: 03/10/2014 - 08:06:42 - [] ----D C:\Users\user\AppData\Roaming\Identities O43 - CFD: 03/10/2014 - 09:28:57 - [] ----D C:\Users\user\AppData\Roaming\InstallShield O43 - CFD: 03/10/2014 - 10:41:15 - [] ----D C:\Users\user\AppData\Roaming\Intel Corporation O43 - CFD: 30/10/2014 - 16:02:23 - [] ----D C:\Users\user\AppData\Roaming\IsolatedStorage O43 - CFD: 06/10/2014 - 22:43:05 - [] ----D C:\Users\user\AppData\Roaming\Macromedia O43 - CFD: 21/11/2010 - 04:16:41 - [0] ----D C:\Users\user\AppData\Roaming\Media Center Programs O43 - CFD: 13/06/2015 - 12:41:00 - [] -S--D C:\Users\user\AppData\Roaming\Microsoft O43 - CFD: 06/10/2014 - 19:52:51 - [] ----D C:\Users\user\AppData\Roaming\Mozilla O43 - CFD: 09/06/2015 - 23:19:13 - [] ----D C:\Users\user\AppData\Roaming\New Technology Studio O43 - CFD: 08/05/2015 - 17:29:37 - [] ----D C:\Users\user\AppData\Roaming\NVIDIA O43 - CFD: 15/10/2014 - 00:14:05 - [] ----D C:\Users\user\AppData\Roaming\Oracle O43 - CFD: 04/06/2015 - 14:25:14 - [] ----D C:\Users\user\AppData\Roaming\Orbit O43 - CFD: 23/04/2015 - 18:24:06 - [] ----D C:\Users\user\AppData\Roaming\PhotoScape O43 - CFD: 30/10/2014 - 13:16:44 - [] ----D C:\Users\user\AppData\Roaming\ProgSense =>PUP.ProgSense O43 - CFD: 23/10/2014 - 12:58:13 - [] ----D C:\Users\user\AppData\Roaming\raidcall O43 - CFD: 07/06/2015 - 00:24:41 - [] ----D C:\Users\user\AppData\Roaming\Real O43 - CFD: 07/06/2015 - 00:24:24 - [] ----D C:\Users\user\AppData\Roaming\RealNetworks O43 - CFD: 31/05/2015 - 16:34:34 - [] R-H-D C:\Users\user\AppData\Roaming\SecuROM O43 - CFD: 03/06/2015 - 17:48:57 - [] ----D C:\Users\user\AppData\Roaming\SpeedBit O43 - CFD: 13/12/2014 - 00:11:39 - [] ----D C:\Users\user\AppData\Roaming\uTorrent =>P2P.µTorrent O43 - CFD: 18/01/2015 - 23:33:42 - [] ----D C:\Users\user\AppData\Roaming\vlc O43 - CFD: 03/10/2014 - 12:34:49 - [] ----D C:\Users\user\AppData\Roaming\WinRAR O43 - CFD: 14/06/2015 - 02:44:05 - [] ----D C:\Users\user\AppData\Roaming\ZHP =>.Nicolas Coolman O43 - CFD: 12/06/2015 - 13:10:53 - [0] ----D C:\Users\user\AppData\Local\Adobe O43 - CFD: 03/10/2014 - 11:15:37 - [] ----D C:\Users\user\AppData\Local\Apps O43 - CFD: 06/06/2015 - 23:17:15 - [] ----D C:\Users\user\AppData\Local\CrashRpt O43 - CFD: 03/10/2014 - 08:06:30 - [] -SH-D C:\Users\user\AppData\Local\Dados de aplicativos O43 - CFD: 28/10/2014 - 21:42:53 - [] ----D C:\Users\user\AppData\Local\DDMSettings O43 - CFD: 03/10/2014 - 11:15:45 - [0] ----D C:\Users\user\AppData\Local\Deployment O43 - CFD: 09/06/2015 - 16:58:14 - [0] ----D C:\Users\user\AppData\Local\ElevatedDiagnostics O43 - CFD: 15/11/2014 - 20:46:17 - [] -SH-D C:\Users\user\AppData\Local\EmieBrowserModeList O43 - CFD: 06/10/2014 - 22:05:14 - [] -SH-D C:\Users\user\AppData\Local\EmieSiteList O43 - CFD: 06/10/2014 - 22:05:14 - [] -SH-D C:\Users\user\AppData\Local\EmieUserList O43 - CFD: 06/10/2014 - 21:15:34 - [] ----D C:\Users\user\AppData\Local\ESET O43 - CFD: 03/10/2014 - 11:16:28 - [] ----D C:\Users\user\AppData\Local\Google O43 - CFD: 14/06/2015 - 02:37:43 - [] ----D C:\Users\user\AppData\Local\GVSE O43 - CFD: 03/10/2014 - 08:06:30 - [] -SH-D C:\Users\user\AppData\Local\Histórico O43 - CFD: 30/10/2014 - 13:28:45 - [] ----D C:\Users\user\AppData\Local\JeutieControl O43 - CFD: 31/05/2015 - 12:21:51 - [] ----D C:\Users\user\AppData\Local\Luiz Fernando O43 - CFD: 06/10/2014 - 22:43:05 - [] ----D C:\Users\user\AppData\Local\Macromedia O43 - CFD: 07/06/2015 - 00:06:12 - [] ----D C:\Users\user\AppData\Local\Microsoft O43 - CFD: 03/10/2014 - 12:31:54 - [0] ----D C:\Users\user\AppData\Local\Microsoft Help O43 - CFD: 06/10/2014 - 20:24:10 - [] ----D C:\Users\user\AppData\Local\Mozilla O43 - CFD: 09/06/2015 - 23:19:13 - [] ----D C:\Users\user\AppData\Local\New Technology Studio O43 - CFD: 08/05/2015 - 17:11:54 - [] ----D C:\Users\user\AppData\Local\NVIDIA O43 - CFD: 08/05/2015 - 17:11:48 - [] ----D C:\Users\user\AppData\Local\NVIDIA Corporation O43 - CFD: 03/10/2014 - 11:12:21 - [] ----D C:\Users\user\AppData\Local\Programs O43 - CFD: 06/06/2015 - 23:16:05 - [] ----D C:\Users\user\AppData\Local\Real O43 - CFD: 04/06/2015 - 14:09:16 - [] ----D C:\Users\user\AppData\Local\Rockstar Games O43 - CFD: 30/10/2014 - 16:01:38 - [0] ----D C:\Users\user\AppData\Local\SpaceKace O43 - CFD: 14/06/2015 - 02:41:49 - [] ----D C:\Users\user\AppData\Local\Temp O43 - CFD: 03/10/2014 - 08:06:30 - [] -SH-D C:\Users\user\AppData\Local\Temporary Internet Files O43 - CFD: 03/10/2014 - 08:06:40 - [0] ----D C:\Users\user\AppData\Local\VirtualStore O43 - CFD: 06/10/2014 - 21:23:26 - [] ----D C:\Users\user\AppData\Local\VS Revo Group O43 - CFD: 14/07/2009 - 01:54:32 - [] R---D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 11/03/2015 - 20:10:31 - [] R---D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 15/03/2015 - 13:05:24 - [] ----D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory O43 - CFD: 10/01/2015 - 20:05:52 - [] ----D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fraps O43 - CFD: 07/10/2014 - 14:23:26 - [] ----D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake O43 - CFD: 18/12/2014 - 19:01:26 - [] ----D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games O43 - CFD: 13/06/2015 - 12:41:00 - [] ----D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis O43 - CFD: 14/07/2009 - 01:49:38 - [] R---D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 09/06/2015 - 23:19:15 - [] ----D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenIV O43 - CFD: 11/03/2015 - 20:10:31 - [] R---D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 11/03/2015 - 01:10:39 - [] ----D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The KMPlayer O43 - CFD: 03/10/2014 - 11:11:19 - [] ----D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR ~ Program Folder: 195 Scanned in 00mn 00s ---\\ Últimos ficheiros alterados ou criados no Windows e Sistema32 (044) O44 - LFC:[MD5.D202078FBA3A77B85D39669EE4110DE2] - 01/06/2015 - 16:16:09 ---A- . (.Microsoft Corporation - Identidade visual IEAK.) -- C:\Windows\System32\iedkcs32.dll [389840] O44 - LFC:[MD5.4542CC17440E85D2D2D73A7D40FAED0A] - 07/06/2015 - 00:02:16 ---A- . (.Wondershare - Wondershare Virtual Audio Device.) -- C:\Windows\System32\Drivers\Apowersoft_AudioDevice.sys [31920] O44 - LFC:[MD5.7C3B449F661D99A9B1033A14033D2987] - 09/06/2015 - 00:40:42 ---A- . (.Microsoft Corporation - Microsoft® C Runtime Library.) -- C:\Windows\System32\msvcr110.dll [849360] O44 - LFC:[MD5.06A8CE6C3AE6B7916F026B0EFDDCAAA5] - 09/06/2015 - 16:33:30 ---A- . (.Microsoft Corporation - Classificação da Internet e DLL de gerencia.) -- C:\Windows\System32\msrating.dll [199680] O44 - LFC:[MD5.2BC2D3A41BB755487FD55C09938F00BC] - 09/06/2015 - 16:33:30 ---A- . (.Microsoft Corporation - Conversor de HTML da Microsoft.) -- C:\Windows\System32\html.iec [417792] O44 - LFC:[MD5.16091938F6CDBCCCBA1CBE24600121BC] - 09/06/2015 - 16:33:30 ---A- . (.Microsoft Corporation - DAC for Trident DOM.) -- C:\Windows\System32\MshtmlDac.dll [88064] O44 - LFC:[MD5.A29BAFC1543F9D2234AFFFEA9BCE76C8] - 09/06/2015 - 16:33:30 ---A- . (.Microsoft Corporation - Visualizador de HTML da Microsoft ®.) -- C:\Windows\System32\mshtml.dll [24917504] O44 - LFC:[MD5.417F80E4AFBA1AA9EBBD618F1C6D9165] - 09/06/2015 - 16:33:31 ---A- . (.Microsoft Corporation - Internet Extensions para Win32.) -- C:\Windows\System32\wininet.dll [2426880] O44 - LFC:[MD5.35622F5A652C4E16774234DCA0026E74] - 09/06/2015 - 16:33:31 ---A- . (.Microsoft Corporation - Mecanismo da Interface do Usuário do Intern.) -- C:\Windows\System32\ieui.dll [633856] O44 - LFC:[MD5.4A5A84B457C72E79A64AE4036EC6BB0E] - 09/06/2015 - 16:33:31 ---A- . (.Microsoft Corporation - Microsoft ® HTML Media DLL.) -- C:\Windows\System32\mshtmlmedia.dll [1359360] O44 - LFC:[MD5.3854BFE1C0F14872C94501421CC40813] - 09/06/2015 - 16:33:31 ---A- . (.Microsoft Corporation - Microsoft ® JScript Diagnostics.) -- C:\Windows\System32\jscript9diag.dll [814080] O44 - LFC:[MD5.83781DF625A4448B39410D7FA2BDC48D] - 09/06/2015 - 16:33:31 ---A- . (.Microsoft Corporation - Microsoft ® JScript.) -- C:\Windows\System32\jscript.dll [816640] O44 - LFC:[MD5.CFA52E2FE8E623042A1EEF96EB1B9481] - 09/06/2015 - 16:33:31 ---A- . (.Microsoft Corporation - Microsoft ® JScript.) -- C:\Windows\System32\jscript9.dll [6026240] O44 - LFC:[MD5.ACD6FE6C82B93813F023FC01A51CB940] - 09/06/2015 - 16:33:31 ---A- . (.Microsoft Corporation - Microsoft® HTML Editing Component.) -- C:\Windows\System32\mshtmled.dll [92160] O44 - LFC:[MD5.AE5A2843B4A2E1E558B9EE13EF62CCE5] - 09/06/2015 - 16:33:31 ---A- . (.Microsoft Corporation - Navegador da Internet.) -- C:\Windows\System32\ieframe.dll [14404096] O44 - LFC:[MD5.AFF5C12099B87FA645F8867701729894] - 09/06/2015 - 16:33:32 ---A- . (.Microsoft Corporation - JScript Proxy Auto-Configuration.) -- C:\Windows\System32\jsproxy.dll [54784] O44 - LFC:[MD5.33B5F1A727FACDEA7CDA0E35FFAADDCF] - 09/06/2015 - 16:33:32 ---A- . (.Microsoft Corporation - Microsoft ® VBScript.) -- C:\Windows\System32\vbscript.dll [584192] O44 - LFC:[MD5.6E295C7364DAEB151CC0E98434B6AC92] - 09/06/2015 - 16:33:32 ---A- . (.Microsoft Corporation - Run time utility for Internet Explorer.) -- C:\Windows\System32\iertutil.dll [2885632] O44 - LFC:[MD5.0EDA3219FA027A486AA11269355AB279] - 09/06/2015 - 16:33:32 ---A- . (.Microsoft Corporation - Utilitário de Instalação Autônoma do IE 7.0.) -- C:\Windows\System32\ieUnatt.exe [144384] O44 - LFC:[MD5.36F3718E67F442F54AB4A39DCDD8FD19] - 09/06/2015 - 16:33:33 ---A- . (.Microsoft Corporation - IE ETW Collector Service Resources.) -- C:\Windows\System32\ieetwcollectorres.dll [4096] O44 - LFC:[MD5.5F8EE9311ECF078CD9426874FFAD660C] - 09/06/2015 - 16:33:33 ---A- . (.Microsoft Corporation - Mapa de versão IOD.) -- C:\Windows\System32\iesetup.dll [66560] O44 - LFC:[MD5.083BCA14FCE290D682D8DAC9372CBF23] - 09/06/2015 - 16:33:33 ---A- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\System32\msfeeds.dll [801280] O44 - LFC:[MD5.7F8F9AE03D1BA4354671E05F07A40F1A] - 09/06/2015 - 16:33:33 ---A- . (.Microsoft Corporation - Microsoft SmartScreen Filter.) -- C:\Windows\System32\ieapfltr.dll [800768] O44 - LFC:[MD5.57DFACB53ED16190EF732E2430B39741] - 09/06/2015 - 16:33:33 ---A- . (.Microsoft Corporation - Microsoft Spell Checking Facility.) -- C:\Windows\System32\MsSpellCheckingFacility.exe [968704] O44 - LFC:[MD5.FF84182188CA8F0DC28CFED06C9B7816] - 09/06/2015 - 16:33:33 ---A- . (.Microsoft Corporation - Painel de Controle da Internet.) -- C:\Windows\System32\inetcpl.cpl [2125824] O44 - LFC:[MD5.6ABFC5736EC920C4436F32111F5CBCEE] - 09/06/2015 - 16:33:34 ---A- . (.Microsoft Corporation - Extensões OLE32 para Win32.) -- C:\Windows\System32\urlmon.dll [1545728] O44 - LFC:[MD5.4BD747AAF01C480901B3E777EC48826B] - 09/06/2015 - 16:33:34 ---A- . (.Microsoft Corporation - JavaScript Performance Collection Agent.) -- C:\Windows\System32\JavaScriptCollectionAgent.dll [77824] O44 - LFC:[MD5.3C3E159F284F51D55DB59C3D0B843979] - 09/06/2015 - 16:33:34 ---A- . (.Microsoft Corporation - Microsoft® MSHTML Typelib.) -- C:\Windows\System32\mshtml.tlb [2724864] O44 - LFC:[MD5.9E2B8C0601E3D460F78F0233B509CE4F] - 09/06/2015 - 16:33:34 ---A- . (.Microsoft Corporation - Processamento de RunOnce estendido com inte.) -- C:\Windows\System32\iernonce.dll [34304] O44 - LFC:[MD5.70D24021ED327CE7FFA9DEE327BB4C6B] - 09/06/2015 - 16:33:34 ---A- . (.Microsoft Corporation - Utilitário de Inicialização por Usuário do.) -- C:\Windows\System32\ie4uinit.exe [720384] O44 - LFC:[MD5.9DB8E01D5A546FAFCACE95489E351186] - 09/06/2015 - 16:33:35 ---A- . (.Microsoft Corporation - IE ETW Collector Proxy Stub Resources.) -- C:\Windows\System32\ieetwproxystub.dll [48640] O44 - LFC:[MD5.73509D13542A90E260F45D1D6D4100A8] - 09/06/2015 - 16:33:35 ---A- . (.Microsoft Corporation - IE ETW Collector Service.) -- C:\Windows\System32\ieetwcollector.exe [114688] O44 - LFC:[MD5.D7B8CFB3D17DC664049FE3B78D1016E2] - 09/06/2015 - 16:33:41 ---A- . (.Microsoft Corporation - AMD64 Wow64 CPU.) -- C:\Windows\System32\wow64cpu.dll [13312] O44 - LFC:[MD5.7531D546D99A09EBB85DD852EAA84ACB] - 09/06/2015 - 16:33:41 ---A- . (.Microsoft Corporation - DLL cliente da API BASE do Windows NT.) -- C:\Windows\System32\KernelBase.dll [424960] O44 - LFC:[MD5.6AA0DD89D7A90033FC3111CC83187C1D] - 09/06/2015 - 16:33:41 ---A- . (.Microsoft Corporation - DLL cliente da API BASE do Windows NT.) -- C:\Windows\System32\kernel32.dll [1162752] O44 - LFC:[MD5.A171AC55EE4B4EE35C18EF0977017A72] - 09/06/2015 - 16:33:41 ---A- . (.Microsoft Corporation - DLL do Windows Server para multiusuários.) -- C:\Windows\System32\winsrv.dll [215040] O44 - LFC:[MD5.1500DFF62202840DCE0E3945B157F139] - 09/06/2015 - 16:33:41 ---A- . (.Microsoft Corporation - Emulação de 16 bits em NT64.) -- C:\Windows\System32\ntvdm64.dll [16384] O44 - LFC:[MD5.BBFA57E64CE337686C2BC3F56881D55B] - 09/06/2015 - 16:33:41 ---A- . (.Microsoft Corporation - Host da Janela do Console.) -- C:\Windows\System32\conhost.exe [338432] O44 - LFC:[MD5.EF7170DDCCF7EB24EA7CE61203A862FD] - 09/06/2015 - 16:33:41 ---A- . (.Microsoft Corporation - Win32 Emulation on NT64.) -- C:\Windows\System32\wow64.dll [243712] O44 - LFC:[MD5.737D7612774992D049EA3CAC53A93316] - 09/06/2015 - 16:33:41 ---A- . (.Microsoft Corporation - Wow64 Console and Win32 API Logging.) -- C:\Windows\System32\wow64win.dll [362496] O44 - LFC:[MD5.391C50E93494E37B32B8E046A7A43DB5] - 09/06/2015 - 16:33:41 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll [3072] O44 - LFC:[MD5.FFF421817E827D22B65AC78D20808491] - 09/06/2015 - 16:33:41 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll [3072] O44 - LFC:[MD5.85C7A363E3C60B34863E8E1A385E811F] - 09/06/2015 - 16:33:41 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll [3072] O44 - LFC:[MD5.A00E600C8EEB14464BB2CF659BBFF74D] - 09/06/2015 - 16:33:41 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll [3072] O44 - LFC:[MD5.E2A6A7A3C8B64A36F9219F8224AC61EB] - 09/06/2015 - 16:33:41 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll [3072] O44 - LFC:[MD5.325DD0DA1C534C6BA56A2605B48E75D1] - 09/06/2015 - 16:33:41 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll [3072] O44 - LFC:[MD5.43702163125BA1EB664544778001C937] - 09/06/2015 - 16:33:41 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll [5120] O44 - LFC:[MD5.8823358C20A2F19FA9B22B616BB8368A] - 09/06/2015 - 16:33:41 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll [3072] O44 - LFC:[MD5.FDD740517FD5E17563D06635162D786E] - 09/06/2015 - 16:33:41 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll [3584] O44 - LFC:[MD5.EEF83BB40DCD072A2A9A3B601CEE9273] - 09/06/2015 - 16:33:41 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll [3072] O44 - LFC:[MD5.4069518D42630C50214352C33B4A20CB] - 09/06/2015 - 16:33:41 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll [3072] O44 - LFC:[MD5.0D7DDBC3DE60A504CE387724955B3704] - 09/06/2015 - 16:33:41 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll [3584] O44 - LFC:[MD5.D9AFF1524EE348C0DA0EFD2FB5A1EAB9] - 09/06/2015 - 16:33:41 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll [4096] O44 - LFC:[MD5.C2A97076460A44CB6209755EEADE71F4] - 09/06/2015 - 16:33:41 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll [4096] O44 - LFC:[MD5.014265A3B77ABB30AEE0CC476BE96248] - 09/06/2015 - 16:33:41 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll [3584] O44 - LFC:[MD5.972C6D2ACD237781385E1C1DEBCFA851] - 09/06/2015 - 16:33:41 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll [3584] O44 - LFC:[MD5.B2CBDC740C5D9B3E26D139982C828622] - 09/06/2015 - 16:33:41 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll [3584] O44 - LFC:[MD5.B900A595D5CF4544EAD008E924C2AC25] - 09/06/2015 - 16:33:41 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll [3584] O44 - LFC:[MD5.DC70320A199E09C8FE9F8C80BAE76EAC] - 09/06/2015 - 16:33:41 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll [4608] O44 - LFC:[MD5.3BF40969BAAAE133DD8E1B27EDB2A3E0] - 09/06/2015 - 16:33:41 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll [3072] O44 - LFC:[MD5.CAC43B67473627D1FA5C04C236F92FDF] - 09/06/2015 - 16:33:41 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll [3584] O44 - LFC:[MD5.773776C5335A2FFA51FE95F69F8C0097] - 09/06/2015 - 16:33:41 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll [3072] O44 - LFC:[MD5.7F32A166E2252F2D7667DDF2CF771345] - 09/06/2015 - 16:33:41 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll [4096] O44 - LFC:[MD5.AE82F5A89A819DC9725600FEBCC6AE5D] - 09/06/2015 - 16:33:41 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll [4096] O44 - LFC:[MD5.BBCF665624DBE18728C0C0B100DFA6C4] - 09/06/2015 - 16:33:41 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll [4608] O44 - LFC:[MD5.D16C96EACE93985DB3C375727C8BECB9] - 09/06/2015 - 16:33:41 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll [3072] O44 - LFC:[MD5.18A748297B93AB2E5133E4621ACB9FBE] - 09/06/2015 - 16:33:41 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll [3072] O44 - LFC:[MD5.1E7B74E9FDEA3582951A56C6FA1EC673] - 09/06/2015 - 16:33:41 --HA- . (.Microsoft Corporation - ApiSet Stub DLL.) -- C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll [6144] O44 - LFC:[MD5.1EE2DBA5AD2E5EB618C7FB187C2CFDF4] - 09/06/2015 - 16:33:43 ---A- . (.Microsoft Corporation - Driver Win32 multiusuário.) -- C:\Windows\System32\win32k.sys [3206144] O44 - LFC:[MD5.51F89CE2D0FEC66070354504E6C4C3E4] - 09/06/2015 - 16:33:44 ---A- . (.Microsoft Corporation - Biblioteca de Controles de Experiência do U.) -- C:\Windows\System32\comctl32.dll [633856] O44 - LFC:[MD5.51ECEE70F33601310DDEF3EEE39550D3] - 09/06/2015 - 16:33:45 ---A- . (.Microsoft Corporation - Recursos do Windows Media Player.) -- C:\Windows\System32\wmploc.DLL [12625920] O44 - LFC:[MD5.1A8C5D4BE449E4A9D8667A341E535E22] - 09/06/2015 - 16:33:46 ---A- . (.Microsoft Corporation - Microsoft Windows Media Component Removal F.) -- C:\Windows\System32\dxmasf.dll [5120] O44 - LFC:[MD5.1A8C5D4BE449E4A9D8667A341E535E22] - 09/06/2015 - 16:33:46 ---A- . (.Microsoft Corporation - Microsoft Windows Media Component Removal F.) -- C:\Windows\System32\msdxm.ocx [5120] O44 - LFC:[MD5.834FD7C31EA16D59CC3B2DC60F2F2620] - 09/06/2015 - 16:33:46 ---A- . (.Microsoft Corporation - Windows Media Player System Preparation DLL.) -- C:\Windows\System32\spwmp.dll [9728] O44 - LFC:[MD5.9D80A82B0BB77AC3EF6A87FA0C534E20] - 09/06/2015 - 16:33:46 ---A- . (.Microsoft Corporation - Windows Media Player.) -- C:\Windows\System32\wmp.dll [14635008] O44 - LFC:[MD5.8E8E66D376776BC541E3179D2F5EAF76] - 10/06/2015 - 01:42:27 ---A- . (.Microsoft Corporation - Ferramentas de Remoção de Software Mal-Inte.) -- C:\Windows\System32\MRT.exe [140135120] O44 - LFC:[MD5.FF37CFD0B50F96AA24B8ADBD71728FD6] - 10/06/2015 - 01:48:47 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [407608] O44 - LFC:[MD5.E9CD058C79EA15B4AA93E259FA713B07] - 12/06/2015 - 12:57:57 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\MBAMSwissArmy.sys [136408] O44 - LFC:[MD5.062DF0490E6E0339D363D8C9BE5569A4] - 13/06/2015 - 12:13:51 ---A- . (...) -- C:\Windows\PFRO.log [18706] O44 - LFC:[MD5.E26BBFD430B526C4CA7E4E7C08C96FB2] - 13/06/2015 - 12:38:13 ---A- . (...) -- C:\HijackThis.msi [1402880] O44 - LFC:[MD5.06C224F78331BA4BD17A9DB98DD973D9] - 13/06/2015 - 12:41:00 ---A- . (...) -- C:\HiJackThis.lnk [2971] O44 - LFC:[MD5.88FAD11AC11AED9FE3A80FE1283A32A5] - 13/06/2015 - 21:54:47 -S-A- . (...) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.272423B1E4D0A07CFD7A35708618402C] - 13/06/2015 - 21:54:58 ---A- . (...) -- C:\Windows\setupact.log [103362] O44 - LFC:[MD5.0566C92DC59F35443A195AB61C8F67F7] - 14/06/2015 - 02:40:04 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1833392] ~ Files: 86 Scanned in 00mn 06s ---\\ Exportar a chave da aplicação autorizada (047) O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Orbitdownloader\orbitdm.exe" [Enabled] .(.Orbitdownloader.com.) -- C:\Program Files (x86)\Orbitdownloader\orbitdm.exe O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Orbitdownloader\orbitnet.exe" [Enabled] .(.Orbitdownloader.com.) -- C:\Program Files (x86)\Orbitdownloader\orbitnet.exe ~ Keys Export: 2 Scanned in 00mn 00s ---\\ Negação do serviço (Local Security Authority) (048) O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Mecanismo cliente do 'Editor de configuração de segurança Windows'.) -- C:\Windows\System32\scecli.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pacote de Segurança Kerberos.) -- C:\Windows\System32\kerberos.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll ~ LSA: 8 Scanned in 00mn 00s ---\\ Controlo do Modo de Segurança (CSB) (49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Driver de porta de mouse serial.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Driver de Extensão do Gerenciador de Volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Driver de porta de mouse serial.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Driver de Extensão do Gerenciador de Volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys ~ CSB: 13 Scanned in 00mn 00s ---\\ Chave do registo Shell MountPoints2 (MPSK) (O51) O51 - MPSK:{a42b5cd6-4aec-11e4-8b9a-806e6f6e6963}\AutoRun\command. (...) -- J:\Bin\ASSETUP.exe (.not file.) ~ Keys: Scanned in 00mn 00s ---\\ Pesquisa de infeções nos drivers (HKLM)(TDSD) (O52) O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \Drivers32\"VIDC.FPS1"="frapsv64.dll" . (.Beepa P/L - Fraps.) -- C:\Windows\System32\frapsv64.dll O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \drivers.desc\"frapsv64.dll"="Fraps Video Decompressor" . (.Beepa P/L - Fraps.) -- C:\Windows\System32\frapsv64.dll ~ TDSD: 4 Scanned in 00mn 00s ---\\ Enumeração das chaves do registo SecurityProviders (MCSP) (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll ~ MSCP: 2 Scanned in 00mn 00s ---\\ Enumeração das chaves do registo PoliciesSystem (MWPS) (O55) O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=0 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0 O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 ~ MWPS: 16 Scanned in 00mn 00s ---\\ Enumeração das chaves do registo PoliciesExplorer (MWPE) (O56) O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0 ~ MWPE Keys: 4 Scanned in 00mn 00s ---\\ Lista dos drivers do sistema (SDL) (O58) O58 - SDL:13/07/2009 - 22:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [491088] O58 - SDL:13/07/2009 - 22:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\Drivers\adpahci.sys [339536] O58 - SDL:13/07/2009 - 22:52:21 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\Drivers\adpu320.sys [182864] O58 - SDL:13/07/2009 - 22:52:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\Drivers\aliide.sys [15440] O58 - SDL:21/11/2010 - 00:23:47 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys [107904] O58 - SDL:13/07/2009 - 22:52:20 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\System32\Drivers\amdsbs.sys [194128] O58 - SDL:21/11/2010 - 00:23:47 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys [27008] O58 - SDL:09/04/2014 - 21:05:52 ---A- . (.Wondershare - Wondershare Virtual Audio Device.) -- C:\Windows\System32\Drivers\Apowersoft_AudioDevice.sys [31920] O58 - SDL:13/07/2009 - 22:52:21 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\Drivers\arc.sys [87632] O58 - SDL:13/07/2009 - 22:52:21 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys [97856] O58 - SDL:10/06/2009 - 17:34:23 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\System32\Drivers\b57nd60a.sys [270848] O58 - SDL:10/06/2009 - 17:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltLo.sys [18432] O58 - SDL:10/06/2009 - 17:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltUp.sys [8704] O58 - SDL:13/07/2009 - 22:19:07 ---A- . (.Brother Industries Ltd. - Brother Serial I/F Driver (WDM).) -- C:\Windows\System32\Drivers\BrSerId.sys [286720] O58 - SDL:10/06/2009 - 17:41:10 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\Drivers\BrSerWdm.sys [47104] O58 - SDL:10/06/2009 - 17:41:10 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\Drivers\BrUsbMdm.sys [14976] O58 - SDL:10/06/2009 - 17:41:10 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\Drivers\BrUsbSer.sys [14720] O58 - SDL:10/06/2009 - 17:34:28 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\Drivers\bxvbda.sys [468480] O58 - SDL:13/07/2009 - 22:52:31 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\cmdide.sys [17488] O58 - SDL:30/01/2015 - 16:13:30 ---A- . (.ESET - Amon monitor.) -- C:\Windows\System32\Drivers\eamonm.sys [246000] O58 - SDL:30/01/2015 - 16:13:30 ---A- . (.ESET - Devmon monitor.) -- C:\Windows\System32\Drivers\edevmon.sys [241880] O58 - SDL:30/01/2015 - 16:13:30 ---A- . (.ESET - ESET Helper driver.) -- C:\Windows\System32\Drivers\ehdrv.sys [169792] O58 - SDL:13/07/2009 - 22:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys [530496] O58 - SDL:30/01/2015 - 16:13:30 ---A- . (.ESET - ESET Personal Firewall driver.) -- C:\Windows\System32\Drivers\epfw.sys [222280] O58 - SDL:30/01/2015 - 16:13:30 ---A- . (.ESET - Epfw NDIS LightWeight Filter.) -- C:\Windows\System32\Drivers\EpfwLWF.sys [44632] O58 - SDL:30/01/2015 - 16:13:30 ---A- . (.ESET - ESET Personal Firewall driver.) -- C:\Windows\System32\Drivers\epfwwfp.sys [64208] O58 - SDL:10/06/2009 - 17:34:33 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\Drivers\evbda.sys [3286016] O58 - SDL:10/06/2009 - 17:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\hcw85cir.sys [31232] O58 - SDL:21/11/2010 - 00:23:47 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\System32\Drivers\HpSAMD.sys [78720] O58 - SDL:07/08/2013 - 14:23:46 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\System32\Drivers\iaStorA.sys [644968] O58 - SDL:07/08/2013 - 14:23:46 ---A- . (.Intel Corporation - Intel Rapid Storage Technology Filter driver - x64.) -- C:\Windows\System32\Drivers\iaStorF.sys [28008] O58 - SDL:21/11/2010 - 00:23:47 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\Drivers\iaStorV.sys [410496] O58 - SDL:13/07/2009 - 22:48:04 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\Drivers\iirsp.sys [44112] O58 - SDL:26/04/2013 - 07:24:58 ---A- . (.Intel Corporation - Intel® USB 3.0 Host Controller Switch Driver.) -- C:\Windows\System32\Drivers\iusb3hcs.sys [20464] O58 - SDL:26/04/2013 - 07:24:56 ---A- . (.Intel Corporation - Intel® USB 3.0 Hub Driver.) -- C:\Windows\System32\Drivers\iusb3hub.sys [368112] O58 - SDL:26/04/2013 - 07:24:56 ---A- . (.Intel Corporation - Intel® USB 3.0 eXtensible Host Controller Driver.) -- C:\Windows\System32\Drivers\iusb3xhc.sys [786416] O58 - SDL:13/07/2009 - 22:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_fc.sys [114752] O58 - SDL:13/07/2009 - 22:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys [106560] O58 - SDL:13/07/2009 - 22:48:04 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas2.sys [65600] O58 - SDL:13/07/2009 - 22:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_scsi.sys [115776] O58 - SDL:14/04/2015 - 09:37:42 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys [25816] O58 - SDL:14/04/2015 - 09:37:46 ---A- . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\Drivers\mbamchameleon.sys [107736] O58 - SDL:12/06/2015 - 12:57:57 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\MBAMSwissArmy.sys [136408] O58 - SDL:13/07/2009 - 22:48:04 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\System32\Drivers\megasas.sys [35392] O58 - SDL:13/07/2009 - 22:48:04 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\MegaSR.sys [284736] O58 - SDL:14/04/2015 - 09:37:56 ---A- . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\Drivers\mwac.sys [63704] O58 - SDL:17/04/2012 - 10:31:12 ---A- . (.Ralink Technology Corp. - Ralink 802.11n Wireless Adapter Driver.) -- C:\Windows\System32\Drivers\netr28ux.sys [1728064] O58 - SDL:13/07/2009 - 22:48:26 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\Drivers\nfrd960.sys [51264] O58 - SDL:13/05/2015 - 03:52:35 ---A- . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\System32\Drivers\nvhda64v.sys [195912] O58 - SDL:28/05/2015 - 04:04:11 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 353.06.) -- C:\Windows\System32\Drivers\nvlddmkm.sys [10995528] O58 - SDL:21/11/2010 - 00:23:47 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys [148352] O58 - SDL:21/11/2010 - 00:23:47 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys [166272] O58 - SDL:03/04/2015 - 10:21:00 ---A- . (.NVIDIA Corporation - NVIDIA Virtual Audio Driver.) -- C:\Windows\System32\Drivers\nvvad64v.sys [38032] O58 - SDL:13/07/2009 - 22:45:46 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\Drivers\ql2300.sys [1524816] O58 - SDL:13/07/2009 - 22:45:45 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\Drivers\ql40xx.sys [128592] O58 - SDL:27/08/2013 - 03:08:42 ---A- . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver.) -- C:\Windows\System32\Drivers\Rt64win7.sys [883928] O58 - SDL:22/10/2013 - 09:38:24 ---A- . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\RTKVHD64.sys [3692632] O58 - SDL:10/06/2009 - 17:37:19 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys [23040] O58 - SDL:13/07/2009 - 22:45:45 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid2.sys [43584] O58 - SDL:13/07/2009 - 22:45:46 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys [80464] O58 - SDL:13/07/2009 - 22:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\System32\Drivers\stexstor.sys [24656] O58 - SDL:16/09/2013 - 01:19:22 ---A- . (.Intel Corporation - Intel® Management Engine Interface.) -- C:\Windows\System32\Drivers\TeeDriverx64.sys [99288] O58 - SDL:13/07/2009 - 22:45:55 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\viaide.sys [17488] O58 - SDL:13/07/2009 - 22:45:55 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\Drivers\vsmraid.sys [161872] O58 - SDL:22/08/2012 - 06:54:10 ---A- . (...) -- C:\Windows\SysWOW64\drivers\AsIO.sys [15232] O58 - SDL:02/04/2009 - 09:30:14 ---A- . (...) -- C:\Windows\SysWOW64\drivers\ASUSHWIO.SYS [10296] ~ Drivers: 66 Scanned in 00mn 23s ---\\ Últimos ficheiros alterados ou criados (Utilizador) (061) O61 - LFC: 07/06/2015 - 02:44:46 ----- . (.Microsoft Corporation.) -- C:\Users\user\AppData\Local\Temp\~rnsetu2\GEMSETUP\msvcr100.dll [773968] O61 - LFC: 07/06/2015 - 02:44:46 ----- . (.Microsoft Corporation.) -- C:\Users\user\AppData\Local\Temp\~rnsetu3\GEMSETUP\msvcr100.dll [773968] O61 - LFC: 07/06/2015 - 02:44:46 ----- . (.RealNetworks, Inc..) -- C:\Users\user\AppData\Local\Temp\~rnsetu2\GEMSETUP\pnrs3260.dll [15872] O61 - LFC: 07/06/2015 - 02:44:46 ----- . (.RealNetworks, Inc..) -- C:\Users\user\AppData\Local\Temp\~rnsetu3\GEMSETUP\pnrs3260.dll [21568] O61 - LFC: 07/06/2015 - 02:44:46 ---A- . (...) -- C:\Users\user\AppData\Local\Temp\tmpF1FC.tmp.exe [5816367] O61 - LFC: 07/06/2015 - 02:44:46 ---A- . (...) -- C:\Users\user\AppData\Roaming\Apowersoft\ApowersoftVideoHelper.dll [5816367] O61 - LFC: 07/06/2015 - 02:44:47 ---A- . (.RealNetworks, Inc..) -- C:\Users\user\Desktop\Downloads\RealPlayer16.exe [38501456] O61 - LFC: 09/06/2015 - 02:44:39 ---A- . (...) -- C:\Users\user\AppData\Local\New Technology Studio\Apps\OpenIV\System\qsort.dll [33792] O61 - LFC: 09/06/2015 - 02:44:39 ---A- . (.Alexander Blade.) -- C:\Users\user\AppData\Local\New Technology Studio\Apps\OpenIV\Games\Five\x64\dinput8.dll [131072] O61 - LFC: 09/06/2015 - 02:44:39 ---A- . (.New Technology Studio.) -- C:\Users\user\AppData\Local\New Technology Studio\Apps\OpenIV\OpenIV.exe [19129344] O61 - LFC: 09/06/2015 - 02:44:39 ---A- . (.New Technology Studio.) -- C:\Users\user\AppData\Local\New Technology Studio\Apps\OpenIV\uninstall.exe [3984384] O61 - LFC: 09/06/2015 - 02:44:39 ---A- . (.OpenIV Dev. Team.) -- C:\Users\user\AppData\Local\New Technology Studio\Apps\OpenIV\System\Black.DX11TextureTools.dll [503808] O61 - LFC: 09/06/2015 - 02:44:39 ---A- . (.Un4seen Developments.) -- C:\Users\user\AppData\Local\New Technology Studio\Apps\OpenIV\System\bass.dll [99392] O61 - LFC: 09/06/2015 - 02:44:40 ---A- . (...) -- C:\Users\user\AppData\Local\NVIDIA\NvBackend\Packages\000077eb\CoProc update.19655412.exe [453720] O61 - LFC: 09/06/2015 - 02:44:40 ---A- . (...) -- C:\Users\user\AppData\Local\NVIDIA\NvBackend\UMDShim\nvcoproc.bin [4421614] O61 - LFC: 09/06/2015 - 02:44:47 ---A- . (.New Technology Studio.) -- C:\Users\user\Desktop\Downloads\ovisetup.exe [3984384] O61 - LFC: 11/06/2015 - 02:44:40 ---A- . (...) -- C:\Users\user\AppData\Local\NVIDIA\NvBackend\Packages\0000782e\DAO.19663661.exe [5811488] O61 - LFC: 11/06/2015 - 02:44:40 ---A- . (.NVIDIA Corporation.) -- C:\Users\user\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe [675256] O61 - LFC: 11/06/2015 - 02:44:40 ---A- . (.NVIDIA Corporation.) -- C:\Users\user\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe [172984] O61 - LFC: 11/06/2015 - 02:44:40 ---A- . (.NVIDIA Corporation.) -- C:\Users\user\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\Ontology.dll [1403832] O61 - LFC: 11/06/2015 - 02:44:46 ---A- . (...) -- C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\r2eezoxp.default\ffmpeg.exe [27155968] O61 - LFC: 12/06/2015 - 02:44:47 ---A- . (.Malwarebytes.) -- C:\Users\user\Desktop\Downloads\mbae-setup-1.06.1.1019.exe [3020968] O61 - LFC: 13/06/2015 - 02:44:46 R--A- . (.Trend Micro Inc..) -- C:\Users\user\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe [388096] O61 - LFC: 14/06/2015 - 02:44:47 ---A- . (.Nicolas Coolman.) -- C:\Users\user\Desktop\Imasters Temp\ZHPDiag2.exe [6880102] =>.Nicolas Coolman ~ 342 Fichiers temporaires (Temporary files) ~ 66 Fichiers cookies (Cookies files) ~ Files: 24 Scanned in 00mn 09s ---\\ Lista das ferramentas de remoção de vírus (LAT) (063) O63 - Logiciel: ZHPDiag 2015 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman O63 - Logiciel: HiJackThis - (.Trend Micro.) [HKLM] -- {45A66726-69BC-466B-A7A4-12FCBA4883D7} ~ ADS: Scanned in 00mn 00s ---\\ Lista dos serviços Legacy du registo (064) O64 - Services: CurCS - 22/08/2012 - C:\Windows\Syswow64\drivers\AsIO.sys (AsIO) .(...) - LEGACY_ASIO O64 - Services: CurCS - 30/01/2015 - C:\Windows\System32\DRIVERS\eamonm.sys (eamonm) .(.ESET - Amon monitor.) - LEGACY_EAMONM O64 - Services: CurCS - 30/01/2015 - C:\Windows\System32\DRIVERS\ehdrv.sys (ehdrv) .(.ESET - ESET Helper driver.) - LEGACY_EHDRV O64 - Services: CurCS - 30/01/2015 - C:\Windows\System32\DRIVERS\epfw.sys (epfw) .(.ESET - ESET Personal Firewall driver.) - LEGACY_EPFW O64 - Services: CurCS - 30/01/2015 - C:\Windows\System32\DRIVERS\EpfwLWF.sys (EpfwLWF) .(.ESET - Epfw NDIS LightWeight Filter.) - LEGACY_EPFWLWF O64 - Services: CurCS - 30/01/2015 - C:\Windows\System32\DRIVERS\epfwwfp.sys (epfwwfp) .(.ESET - ESET Personal Firewall driver.) - LEGACY_EPFWWFP O64 - Services: CurCS - 14/04/2015 - C:\Windows\system32\drivers\mbam.sys (MBAMProtector) .(.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - LEGACY_MBAMPROTECTOR O64 - Services: CurCS - 22/05/2015 - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys (NvStreamKms) .(.NVIDIA Corporation - Nvidia Streaming Kernel Service.) - LEGACY_NVSTREAMKMS O64 - Services: CurCS - 10/06/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV ~ Legacy: 73 Scanned in 00mn 00s ---\\ Associações Shell Spawning (O67) O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Iniciador do snap-in de 'Visualizar eventos'.) -- C:\Windows\System32\eventvwr.exe O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Editor do Registro.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.scr> <scrfile>[HKLM\..\open\Command] (...) -- "%1" /S O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe ~ FASS Keys: 11 Scanned in 00mn 00s ---\\ Menu de inicialização Internet (068) O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ~ Keys: Scanned in 00mn 00s ---\\ Pesquisa de infeção nos navegadores da Internet (SBI) (069) O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com O69 - SBI: SearchScopes [HKCU] {0A7BB8F0-8771-46C5-A3C2-0452045573CC} [DefaultScope] - (Google) - http://www.google.com ~ Keys: Scanned in 00mn 00s ---\\ Listagem dos serviços iniciados pelo Svchost (SSS) (O83) O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Serviço de Experiência com Aplicativo.) -- C:\Windows\System32\aelupsvc.dll [72192] O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Serviço de Propagação de Certificado de Cartão Inteligente da Microsof.) -- C:\Windows\System32\certprop.dll [80384] O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Serviço de Propagação de Certificado de Cartão Inteligente da Microsof.) -- C:\Windows\System32\certprop.dll [80384] O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL de Serviço do Servidor.) -- C:\Windows\System32\srvsvc.dll [236032] O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Cliente da Diretiva de Grupo.) -- C:\Windows\System32\gpsvc.dll [777728] O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extensão IKE.) -- C:\Windows\System32\ikeext.dll [859648] O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Serviço de Áudio do Windows.) -- C:\Windows\System32\Audiosrv.dll [680960] O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gerenciador de Discagem Automática de Acesso Remoto.) -- C:\Windows\System32\rasauto.dll [99328] O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gerenciador de conexão de acesso remoto.) -- C:\Windows\System32\rasmans.dll [344064] O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gerenciador de Interface Dinâmica.) -- C:\Windows\System32\mprdim.dll [97792] O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Serviço de Notificação de Eventos do Sistema (SENS).) -- C:\Windows\System32\sens.dll [64512] O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Componentes do Microsoft NAT Helper.) -- C:\Windows\System32\ipnathlp.dll [359424] O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Servidor de telefonia do Microsoft® Windows.) -- C:\Windows\System32\tapisrv.dll [316928] O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gerenciador de Conexões Remotas do Servidor Host da Sessão da Área de.) -- C:\Windows\System32\termsrv.dll [683520] O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\System32\wuaueng.dll [2553856] O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Serviço de transferência inteligente de plano de fundo.) -- C:\Windows\System32\qmgr.dll [849920] O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - DLL de serviços do Shell do Windows.) -- C:\Windows\System32\shsvcs.dll [370688] O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Serviço que oferece conectividade IPv6 em uma rede IPv4..) -- C:\Windows\System32\iphlpsvc.dll [569344] O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de serviço de logon secundário.) -- C:\Windows\system32\seclogon.dll [30720] O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Serviço de Informações de Aplicativos.) -- C:\Windows\System32\appinfo.dll [70144] O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Serviço de Descoberta iSCSI.) -- C:\Windows\System32\iscsiexe.dll [156672] O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Serviço Agendador de Classes de Multimídia.) -- C:\Windows\System32\mmcss.dll [67584] O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [242688] O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Serviço de Configuração da Área de Trabalho Remota.) -- C:\Windows\System32\sessenv.dll [121856] O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL de Serviço Pesquisador de Computadores.) -- C:\Windows\System32\browser.dll [136704] O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Serviço Microsoft EAPHost.) -- C:\Windows\System32\eapsvc.dll [111104] O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Serviço Agendador de Tarefas.) -- C:\Windows\System32\schedsvc.dll [1110016] O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Serviço de Gerenciamento de Chaves.) -- C:\Windows\System32\kmsvc.dll [90624] O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Relatórios de Problemas e Soluções.) -- C:\Windows\System32\wercplsupport.dll [84480] O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [210432] O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL do Serviço de Tema do Shell do Windows.) -- C:\Windows\System32\themeservice.dll [44544] O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Serviço BDE.) -- C:\Windows\System32\bdesvc.dll [100864] ~ Services: 32 Scanned in 00mn 00s ---\\ Pesquisa adicional à raiz do sistema (radicular) (SPRF) (O84) [MD5.CA0F88B728845FF111AE600C84627EDD] [sPRF][19/03/2015] (.Crosire - Crosire's ReShade post-processing injector for 64-bit.) -- C:\Users\user\Desktop\d3d11.dll [415232] [MD5.E6EBE13418733BCC15F9B68668D01C36] [sPRF][02/04/2015] (.Geek Uninstaller - Geek Unіnstaller.) -- C:\Users\user\Desktop\GeekUninstaller.exe [6337032] [MD5.FE78C5A0EBF27DB46CB774DF6AE8D007] [sPRF][15/04/2015] (...) -- C:\Users\user\Desktop\visualsettings.dat [41622] ~ Files: 3 Scanned in 00mn 00s ---\\ Lista das exceções do FireWall (FirewallRules) (O87) O87 - FAEL: "{C7387F0B-C305-4FC9-8DFE-628A16E0AA1E}" | In - None - P6 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\user\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent O87 - FAEL: "{2BAC77E5-ED90-4608-A38E-23B757DBDB6D}" | In - None - P17 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\user\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent ~ Firewall: 2 Scanned in 00mn 00s ---\\ Estado general dos serviços não Microsoft (EGS) (SR=Executados, SS=Parados) SS - | Demand 12/06/2015 268976 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe SS - | Auto 03/10/2014 116648 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Demand 03/10/2014 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Demand 27/08/2013 828376 | (Intel® Capability Licensing Service TCP IP Interface) . (.Intel® Corporation.) - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe SS - | Auto 14/04/2015 1080120 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe SS - | Demand 06/06/2015 148080 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe SS - | Demand 08/05/2015 207872 | (PAExec) . (.Power Admin LLC.) - C:\Windows\PAexec.exe SS - | Demand 22/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation SR - | Auto 07/05/2013 936728 | (asComSvc) . (...) - C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe SR - | Auto 28/01/2015 1349576 | (ekrn) . (.ESET.) - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe SR - | Auto 22/05/2015 1152656 | (GfExperienceService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe SR - | Auto 07/08/2013 15720 | (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe SR - | Auto 27/08/2013 747520 | (Intel® Capability Licensing Service Interface) . (.Intel® Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe SR - | Auto 16/09/2013 169432 | (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe SR - | Auto 16/09/2013 390616 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe SR - | Auto 22/05/2015 1893008 | (NvNetworkService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe SR - | Auto 22/05/2015 23006864 | (NvStreamSvc) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe SR - | Auto 28/05/2015 937288 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe SR - | Auto 16/05/2015 31856 | (RealPlayerUpdateSvc) . (...) - C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe SR - | Auto 07/06/2015 1115224 | (RealTimes Desktop Service) . (.RealNetworks, Inc..) - C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe SR - | Auto 28/05/2015 410768 | (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe SR - | Demand 22/07/1658 1255736 | (WatAdminSvc) . (...) - C:\Windows\System32\Wat\WatAdminSvc.exe SR - | Auto 13/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe SR - | Auto 13/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe ~ Services: Scanned in 00mn 05s ---\\ Pesquisa de infeção no Registo Mestre de Inicialização (MBR) (080) Run by user at 14/06/2015 02:45:13 ~ OS 64 not supported by MBR tool ~ MBR: 0 Scanned in 00mn 00s ---\\ Pesquisa de infeção no Registo Mestre de Inicialização (MBRCheck) (080) Written by ad13, http://ad13.geekstog Run by user at 14/06/2015 02:45:15 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin ~ MBR: Scanned in 00mn 02s ---\\ Scâner Aditional (088) Database Version : 13008 - (31/05/2015) Clés trouvées (Keys found) : 1 Valeurs trouvées (Values found) : 2 Dossiers trouvés (Folders found) : 2 Fichiers trouvés (Files found) : 2 [HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\uTorrent] =>P2P.BitTorrent^ C:\Users\user\AppData\Roaming\ProgSense =>PUP.ProgSense^ C:\Users\user\AppData\Roaming\uTorrent =>P2P.µTorrent^ [HKCU\Software\BitTorrent] =>P2P.BitTorrent^ [HKCU\Software\ProgSense] =>PUP.ProgSense^ ~ Additionnel Scan: 211729 Items scanned in 00mn 08s ---\\ Informações complémentaires do módulos ~ =>.Google Chrome, Arranque,Pesquisa,Extensões (G0,G1,G2) ~ =>.Internet Explorer, Gestão do Proxy (R5) ~ =>.Browser Helper Objects do navegador (02) ~ =>.Aplicações iniciadas por registo & pastas (04) ~ =>.Chave do registo Shell MountPoints2 (MPSK) (O51) ~ AMI: 5 Scanned in 00mn 00s ---\\ Sumário das deteções encontradas na sua estação =>PUP.ProgSense ~ MSI: 1 link(s) detected in 00mn 00s End of the scan (1298 lines in 01mn 55s)(0.8)
  10. Olá! Estou com um pequeno problema com relação á algum misterioso programa que sempre permanece aberto quando vou desligar o PC... Isso já aconteceu antes, e descobri que era o Firefox e depois disso passei a esperar 30s-1m depois de fechar o mesmo para desligar o PC e o problema foi aparentemente resolvido.. porém, o mesmo está de volta e acho que não seja o Firefox (o mesmo não se encontra no gerenciador de tarefas como aberto), já tentei esperar 5m-10m depois de fechar todos os programas pra desligar o PC e ainda assim continua.. já tentei também ligar o PC sem abrir nenhum navegador esperar 30m e desligar, e o windows ainda assim informa que algum programa esta aberto na hora de desligar e automaticamente o força a fechar na hora e desliga (não me dando tempo de clicar e ver qual é o programa que esta aberto)... enfim.. isso já ta acontecendo a 1 semana.. e apesar de Malwarebytes e Eset não encontrarem nada em ambos scans e aparentemente tudo no PC estar funcionando 100% ainda sim tenho receio que isso seja comportamento de virus.. um programa que fica rodando no fundo sem eu saber e ainda permanece ao desligar o PC ? hmm sei não.. alias, isso está acontecendo a 1 semana e não notei nenhuma mudança no PC.. capaz de não ser nada.. mais mesmo assim gostaria de ter certeza do que se trata.. Ps: algumas vezes, ao reiniciar, isso não acontece.. ######################################################################################################## Segue abaixo Log Hijackthis Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 12:42:14, on 13/06/2015 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v11.0 (11.00.9600.17840) Boot mode: Normal Running processes: C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpsystray.exe C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe, O1 - Hosts: 173.212.255.178 embedded.garena.com O1 - Hosts: 173.212.255.178 embedded.garenanow.com O2 - BHO: btorbit.com - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files (x86)\Orbitdownloader\orbitcth.dll O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll O4 - HKLM\..\Run: [iMSS] "C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe" O4 - HKLM\..\Run: [uSB3MON] "C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [DivXMediaServer] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe" -osboot O4 - HKLM\..\Run: [RealDownloader] C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVIÇO LOCAL') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVIÇO LOCAL') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVIÇO DE REDE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVIÇO DE REDE') O4 - Global Startup: RealTimes.lnk = C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpsystray.exe O8 - Extra context menu item: &Download by Orbit - res://C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll/201 O8 - Extra context menu item: &Grab video by Orbit - res://C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll/204 O8 - Extra context menu item: Do&wnload selected by Orbit - res://C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll/203 O8 - Extra context menu item: Down&load all by Orbit - res://C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll/202 O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe O23 - Service: Serviço do Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Serviço do Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: Intel® Capability Licensing Service Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe O23 - Service: Intel® Capability Licensing Service TCP IP Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe O23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: PAExec - Power Admin LLC - C:\Windows\PAExec.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: RealPlayer Update Service (RealPlayerUpdateSvc) - Unknown owner - C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe O23 - Service: RealTimes Desktop Service - RealNetworks, Inc. - C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 11085 bytes
  11. DaniieL™

    Piadas!

    Na véspera de uma prova, 4 alunos resolveram chutar o balde: decidiram viajar! Voltaram na terça, sendo que a prova havia ocorrido na segunda. Então, se dirigiram ao professor: — Professor, fomos viajar, o pneu furou, não conseguimos consertá-lo, tivemos mil problemas, e por conta disso tudo nos atrasamos, mas gostaríamos de fazer a prova. O professor, sempre compreensivo: — Claro, vocês podem fazer a prova hoje à tarde, após o almoço. E assim foi feito. Os rapazes correram para casa e se racharam de tanto estudar. Na hora da prova, o professor pôs cada aluno em uma sala diferente e lhes entregou a prova. Primeira pergunta, valendo 1 ponto: fale sobre a "Lei de Ohm". Os quatro ficaram contentes, pois haviam visto algo sobre o assunto. A prova seria fácil e haviam conseguido se "dar bem", pensaram. Segunda pergunta, valendo 9 pontos: "Qual pneu furou?"
  12. DaniieL™

    Piadas!

    Uma mulher acompanha o marido em um consultório médico e depois de fazer um check-up completo, o médico a chama dentro de outra sala e diz: — O seu marido está com stress profundo e se a senhora não seguir estas instruções, ele certamente morrerá! — Tudo bem, doutor... Pode falar! — concorda a esposa, apreensiva. — Toda manhã, prepare-lhe um café da manhã reforçado. Seja agradável e faça tudo para que ele se sinta bem. Para o almoço, ofereça-lhe uma refeição nutritiva. Para o jantar, prepare pratos especiais. Não o chateie com reclamações porque ele provavelmente terá tido um dia exaustivo. Não discuta seus problemas com ele. E, mais importante, faça sexo com ele várias vezes por semana e satisfaça todos seus desejos. No caminho de casa o marido pergunta o que foi que o médico disse. Ela responde: — Meu filho, você vai morrer!
  13. DaniieL™

    Indiquem melhores softwares

    Olá! Galera http://forum.imasters.com.br/public/style_emoticons/default/thumbsup.gif/> <><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><> ThreatFire Ferramenta completa para proteção contra vírus, worms, trojans, spyware, keyloggers e buffer overflows. ótima contribuição ao seu AntiVirus! Link -> Download ThreatFire SUPERAntiSpyware Anti-spyware gratuito para detectar e remover por completo as pragas de seu computador! Link -> Download SUPERAntiSypware Kaspersky Virus Removal Tool Complemente sua proteção antivírus com este detector de malwares com a qualidade Kaspersky. Link -> Download Kaspersky Virus Removal Tool Revo Uninstaller Esqueça a opção Adicionar/Remover Programas do Windows. Revo Uninstaller é muito mais eficiente e seguro. Link -> Download Revo Uninstaller Outpost Firewall Free 2009 Uma verdadeira barreira de fogo para proteger o seu computador de invasões por rede e Internet. Link -> Download Outpost Firewall Orbit Downloader Baixe tudo o que desejar com esse pequeno software que acelera, e muito, os downloads. Link -> Download Orbit EICAR - The Anti-Virus test file Teste prático e fácil para descobrir se o seu antivírus é mesmo eficiente. ATENÇÃO! Esse arquivo definitivamente NÃO É UM VÍRUS. Não é nada prejudicial para o seu computador. Ele somente simula um vírus para testar a resistência do programa, como um falso-positivo. Link -> Download Anti-Virus test file Avira AntiVir Personal Antivírus alemão, gratuito para uso pessoal. Monitore sua máquina e proteja-a contra programas maliciosos Link -> Download AviraAntiVir Personal PC Tools AntiVirus Free Proteja seu computador contra todo o tipo de vírus e ameaça virtual de forma totalmente gratuita e eficaz. Link -> Download PC Tools AntiVirus CCleaner Remova os arquivos desnecessários do PC para ganhar desempenho e espaço em disco. Compatível com Windows 7! Link -> Download CCleaner <><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><> Espero ter Ajudado, Felicidades a todos! Abraços!
×

Important Information

Ao usar o fórum, você concorda com nossos Terms of Use.