Flux RSS


Yahoo! 
MSN 
AOL 
Netvibes 
Bloglines 


Social bookmarking

Social bookmarking Digg  Social bookmarking Delicious  Social bookmarking Reddit  Social bookmarking Stumbleupon  Social bookmarking Slashdot  Social bookmarking Yahoo  Social bookmarking Google  Social bookmarking Blinklist  Social bookmarking Blogmarks  Social bookmarking Technorati  

Conservar e compartilhar o endereço de PC Seguro em seu site de social bookmarking

Conservar e compartilhar o endereço de Fórum PC Brasil em seu site de social bookmarking

Estatísticas
Temos 14443 usuários registrados
O último usuário registrado atende pelo nome de Caio Flavio

Os nossos membros postaram um total de 35198 mensagens em 3565 assuntos
Últimos assuntos
» Notebook lento, acho que está com virus
por joram Ontem à(s) 18:38

Quem está conectado
2 usuários online :: Nenhum usuário registrado, Nenhum Invisível e 2 Visitantes :: 1 Motor de busca

Nenhum

O recorde de usuários online foi de 108 em Qui 15 Maio 2014, 21:18
Buscar
 
 

Resultados por:
 


Rechercher Busca avançada

Novembro 2017
SegTerQuaQuiSexSabDom
  12345
6789101112
13141516171819
20212223242526
27282930   

Calendário Calendário


Não consigo instalar o malwarebytes

Página 1 de 2 1, 2  Seguinte

Ver o tópico anterior Ver o tópico seguinte Ir em baixo

Não consigo instalar o malwarebytes

Mensagem por vbm em Dom 27 Abr 2014, 11:33

Bom dia a todos.

Acabei de me inscrever neste forum, na esperança de que consigam resolver a minha questão.
O meu sistema operacional é o Windows 8.1 Pro x64 e após baixar o malwarebytes e tentar executar o setup me dá a mensagem: "Este aplicativo não pode ser executado em seu PC" .
Ouvi falar que tem alguns virus que impedem a execução ou instalação de Malwarebytes e gostaria de saber se existe algum meio de resolver o problema, ou será que meu sistema operacional não aceita o Malwarebytes?
Alguém poderia me ajudar na questão?
Desde já agradeço.
avatar
vbm
Iniciante
Iniciante

Mensagens : 20
Reputação : 0
Data de inscrição : 27/04/2014

Voltar ao Topo Ir em baixo

Re: Não consigo instalar o malwarebytes

Mensagem por Power Max em Dom 27 Abr 2014, 11:41

  Olá vbm. Seja bem vindo ao Fórum PC Brasil.

Vamos ver se há algo de perigoso em seu PC que possa estar causando este problema:

Faça o download do < [Você precisa estar registrado e conectado para ver este link.] > < [Você precisa estar registrado e conectado para ver esta imagem.]> ( ... de Nicolas Coolman )

Para instalá-lo e executá-lo corretamente siga as dicas deste artigo:

[Você precisa estar registrado e conectado para ver este link.]

* Assim que ele concluir a sua verificação, copie todo o conteúdo do seu relatório ZHPDiag.txt e poste em sua próxima resposta.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Você precisa estar registrado e conectado para ver este link.] = O melhor da internet você encontra aqui.

[Você precisa estar registrado e conectado para ver este link.] = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: Não consigo instalar o malwarebytes

Mensagem por vbm em Dom 27 Abr 2014, 11:48

Obrigado pela pronta resposta Powermax.

Estou executando o aplicativo e assim que terminar eu posto o resultado.
avatar
vbm
Iniciante
Iniciante

Mensagens : 20
Reputação : 0
Data de inscrição : 27/04/2014

Voltar ao Topo Ir em baixo

Re: Não consigo instalar o malwarebytes

Mensagem por Power Max em Dom 27 Abr 2014, 11:49

Ok, ficamos na espera.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Você precisa estar registrado e conectado para ver este link.] = O melhor da internet você encontra aqui.

[Você precisa estar registrado e conectado para ver este link.] = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: Não consigo instalar o malwarebytes

Mensagem por vbm em Dom 27 Abr 2014, 11:51

Eis aí o relatório:

~ Relatório do ZHPDiag v2014.4.26.45 - Nicolas Coolman (26/04/2014)
~ Iniciado por Vittorio (27/04/2014 11:45:45)
~ Endereço do Website : [Você precisa estar registrado e conectado para ver este link.]
~ Fóruns de suporte gratuito para desinfecção : [Você precisa estar registrado e conectado para ver este link.]
~ Tradução pelo utilizador
~ Estatuto da versão :
~ Lista Branca : Ativado pelo programa
~ Elevação dos Privilégios : OK
~ Controle de Conta de Utilizador : Activate by user


---\\ Navegadores Internet
MSIE: Internet Explorer v11.0.9600.16659
MFIE: Mozilla Firefox 28.0
GCIE: Google Chrome v34.0.1847.116 (Defaut)
OPIE: Opera vStable 20.0.1387.91

---\\ Informações sobre os produtos Windows
~ Langage: Portugais
Windows 8.1 Pro, 64-bit (Build 9600)
Windows Server License Manager Script : OK
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ Softwares de proteçao do sistema
Malwarebytes Anti-Malware versão 1.75.0.1300
Panda Cloud Cleaner v1.0.98
Spybot - Search & Destroy v2.2.25
Windows Defender W8

---\\ Softwares d'optimização do sistema

---\\ Softwares de partilha do PeerToPeer (P2P)

---\\ Monitoramento dos softwares
Adobe Flash Player 13 Plugin
Java 7 Update 55

---\\ Informações sobre o sistema
~ Processor: AMD64 Family 18 Model 1 Stepping 0, AuthenticAMD
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 7659 MB (57% free)
System Restore: Activé (Enable)
System drive C: has 264 GB (56%) free of 466 GB

---\\ Modo de conexão ao sistema
~ Computer Name: VBM
~ User Name: Vittorio
~ All Users Names: ___VMware_Conv_SA___, Vittorio, Convidado, Administrador,
~ Unselected Option: 045,061,O62,065,066,080,O82,089
Logged in as Administrator

---\\ As variáveis de ambiente
~ System Unit : C:\
~ %AppZHP% : C:\Users\Vittorio\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\Vittorio\AppData\Roaming\
~ %Desktop% : C:\Users\Vittorio\Desktop\
~ %Favorites% : C:\Users\Vittorio\Favorites\
~ %LocalAppData% : C:\Users\Vittorio\AppData\Local\
~ %StartMenu% : C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumeração das unidades dos discos
C: Hard drive, Flash drive, Thumb drive (Free 264 Go of 466 Go)
D: Hard drive, Flash drive, Thumb drive (Free 185 Go of 466 Go)
E: CD-ROM drive (Not Inserted)
H: CD-ROM drive (Not Inserted)



---\\ Estado do Centro de Segurança do Windows
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
~ Security Center: 46 Legitimates Filtered in 00mn 00s



---\\ Pesquisa particular de ficheiros genéricos
[MD5.63DC38C3E4564B2405D562855643ABA2] - (.Microsoft Corporation - Windows Explorer.) (.22/10/2013 - 04:55:27.) -- C:\Windows\Explorer.exe [2328872]
[MD5.48CFA7BE561A7BE144C29BB912055016] - (.Microsoft Corporation - Aplicativo de Inicialização do Windows.) (.22/08/2013 - 06:58:29.) -- C:\Windows\System32\Wininit.exe [144384]
[MD5.DF79CE9B950C62677D232154E93A81C7] - (.Microsoft Corporation - Internet Extensions para Win32.) (.01/03/2014 - 00:10:28.) -- C:\Windows\System32\wininet.dll [2334208]
[MD5.7C94FDA3809015B8F2208D2E1C221F17] - (.Microsoft Corporation - Aplicativo de Logon do Windows.) (.22/08/2013 - 06:55:08.) -- C:\Windows\System32\Winlogon.exe [564736]
[MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - (.Microsoft Corporation - Biblioteca de Licenciamento de Software.) (.21/12/2013 - 05:54:07.) -- C:\Windows\System32\sppcomapi.dll [447488]
[MD5.239268BAB58EAE9A3FF4E08334C00451] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.22/08/2013 - 10:25:35.) -- C:\Windows\system32\Drivers\AFD.sys [567296]
[MD5.74B14192CF79A72F7536B27CB8814FBD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.22/08/2013 - 09:43:41.) -- C:\Windows\system32\Drivers\atapi.sys [26464]
[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - (.Microsoft Corporation - CD-ROM File System Driver.) (.22/08/2013 - 08:40:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [88576]
[MD5.C6796EA22B513E3457514D92DCDB1A3D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.22/08/2013 - 05:46:35.) -- C:\Windows\system32\Drivers\Cdrom.sys [164352]
[MD5.5DB26D7E0216D0BF364A81D3829AD7B9] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.22/08/2013 - 08:38:00.) -- C:\Windows\system32\Drivers\DfsC.sys [134656]
[MD5.03909BDBFF0DCACCABF2B2D4ADEE44DC] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.22/08/2013 - 08:38:38.) -- C:\Windows\system32\Drivers\HDAudBus.sys [78336]
[MD5.84CFC5EFA97D0C965EDE1D56F116A541] - (.Microsoft Corporation - Driver de porta i8042.) (.22/08/2013 - 08:39:15.) -- C:\Windows\system32\Drivers\i8042prt.sys [107520]
[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - (.Microsoft Corporation - IP Network Address Translator.) (.27/11/2013 - 09:02:29.) -- C:\Windows\system32\Drivers\IpNat.sys [142848]
[MD5.79B6F3DF7CDFD12159871FF71464F0CE] - (.Microsoft Corporation - Minirdr SMB do Windows NT.) (.23/11/2013 - 04:08:19.) -- C:\Windows\system32\Drivers\MRxSmb.sys [403456]
[MD5.0217532E19A748F0E5D569307363D5FD] - (.Microsoft Corporation - MBT Transport driver.) (.22/08/2013 - 08:37:02.) -- C:\Windows\system32\Drivers\netBT.sys [282624]
[MD5.725EF69B2DBEB7B33280019A556201BC] - (.Microsoft Corporation - Driver do Sistema de Arquivos NT.) (.10/03/2014 - 07:35:58.) -- C:\Windows\system32\Drivers\ntfs.sys [2008408]
[MD5.764B1121867B2D9B31C491668AC72B2B] - (.Microsoft Corporation - Driver de porta paralela.) (.22/08/2013 - 08:40:02.) -- C:\Windows\system32\Drivers\Parport.sys [94208]
[MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.22/08/2013 - 08:35:51.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [120832]
[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - (.Microsoft Corporation - Redirecionador do Dispositivo RDP da Microsoft.) (.30/09/2013 - 00:59:28.) -- C:\Windows\system32\Drivers\rdpdr.sys [195584]
[MD5.FFF28F9F6823EB1756C60F1649560BBF] - (.Microsoft Corporation - TDI Translation Driver.) (.22/08/2013 - 10:25:35.) -- C:\Windows\system32\Drivers\tdx.sys [107520]
[MD5.C85C075DE5B6D0FE116043054DE8EE02] - (.Microsoft Corporation - Driver de cópia de sombra de volume.) (.31/01/2014 - 13:15:23.) -- C:\Windows\system32\Drivers\volsnap.sys [311640]
~ Generic Processes: Scanned in 00mn 03s



---\\ Estatuto dos ficheiros ocultos (Oculto/Total)
~ Mes images (My Pictures) : 1/102
~ Mes Favoris (My Favorites) : 1/3
~ Mes Documents (My Documents) : 1/289
~ Mon Bureau (My Desktop) : 1/226
~ Menu demarrer (Programs) : 1/76
~ Hidden Files: Scanned in 00mn 00s



---\\ Processos lançados
[MD5.615E58F9963734185756AEE4959BA964] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [20728480] [PID.6636]
[MD5.7C2CFFAE5D23BE740CBEF9EF37EE149B] - (.Plex, Inc. - Plex Media Server.) -- C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [4409480] [PID.4672]
[MD5.7AB3022015F70EC23AC04B6E7EDDF026] - (.Tenda Technology, Corp. - Tenda Wireless LAN Card Utility.) -- C:\Program Files (x86)\Tenda\Common\RaUI.exe [12419072] [PID.5648]
[MD5.5B6E8E09BE6401A7E022F52FDFCB2FF8] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336] [PID.6572]
[MD5.9697018D7ABCB009F3B81D405341B7D0] - (.Acronis - Acronis True Image Monitor.) -- C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [7805936] [PID.2164]
[MD5.8E82108A801F3629413C368657F73178] - (.Acronis International GmbH - Acronis TIB Mounter Monitor.) -- C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [1102192] [PID.1624]
[MD5.F121A4E1799C490EAA3765FB6295E43E] - (.VMware, Inc. - VMware Tray Process.) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [112856] [PID.5908]
[MD5.24F4643941535195B19C962C96067DB8] - (.FNet Co., Ltd. - XFast USB.) -- C:\Program Files (x86)\XFastUSB\XFastUsb.exe [5021448] [PID.2112]
[MD5.AF49D1C79EA49A7833017F290EE63B82] - (.Safer-Networking Ltd. - Spybot - Search & Destroy tray access.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784] [PID.1860]
[MD5.316A3529EB2E8563BC564FAA90A535F7] - (.Python Software Foundation - Python.) -- C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe [34952] [PID.4308]
[MD5.2EBBBFC120593C683796092F2DDA0EFC] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [841032] [PID.1224]
[MD5.76CAAEB9A3E5DAC21BAF71396ACA49E0] - (.Plex, Inc. - Plex Media Server DLNA Service.) -- C:\Program Files (x86)\Plex\Plex Media Server\PlexDlnaServer.exe [1625224] [PID.1988]
[MD5.225561D6A5B48FB535FE8BC4864DB317] - (.Symantec Corporation - Fixtool for W32.Blaster.Worm.) -- C:\Users\Vittorio\Downloads\FixBlast.exe [135360] [PID.3884]
[MD5.B6381489F9C8612AFFD4A2765ABD341C] - (...) -- C:\Users\Vittorio\Downloads\mbam-chameleon-1.62.1.1000\mbam-chameleon.exe [218184] [PID.6704]
[MD5.7EA50DC775B557AD1E06ABF3C7A2A24D] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [7869952] [PID.3312]
[MD5.534A3CB0847BA114F0D8A5F2BB2EF6D0] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe [887432] [PID.5736]
~ Processes Running: Scanned in 00mn 01s



---\\ Google Chrome, Arranque,Pesquisa,Extensões (G0,G1,G2)
C:\Users\Vittorio\AppData\Local\Google\Chrome\User Data\Default\Preferences
G0 - GCSP: Preference [User Data\Default][HomePage] [Você precisa estar registrado e conectado para ver este link.] =>PUP.Babylon
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Loja v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [bgofflgeghkhocbociocnckocbjmomjh] Quizlet v.4.1 (Activé)
G2 - GCE: Preference [User Data\Default] [bjohiacoelemalmancnccjggomjnkfod] Snooker v.1.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [dcilimldmomiaihcfkmaldanopfejefg] Desafio de Golfe WGT v.45.0.0 (Activé)
G2 - GCE: Preference [User Data\Default] [ekpfaaakmnhcembbiennfjiaodandmhg] Hangman v.1 (Activé)
G2 - GCE: Preference [User Data\Default] [imcbnnnoghiihopefblgehihofbfbmei] Desprotetor de Links v.2.0.1.7, (Activé)
G2 - GCE: Preference [User Data\Default] [neajdppkdcdipfabeoofebfddakdcjhd] Google Network Speech v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [nkeimhogjdpnpccoofpliimaahmaaome] Hangout Services v.1.0 (Activé)

---\\ Pasta de extensão do Google Chrome
~ Google Lines Browser: 28 Legitimates Filtered in 00mn 11s



---\\ Mozilla Firefox, Plugins,Arranque,Pesquisa,Extensões (P2,M0,M1,M2,M3)
C:\Users\Vittorio\AppData\Roaming\Mozilla\Firefox\Profiles\d946c69k.default\prefs.js
M2 - MFEP: prefs.js [Vittorio - d946c69k.default\e8g87vzbj@qdawmaea.edu] [] save uneet v5.14 (..) =>PUP.SaveNet
M2 - MFEP: prefs.js [Vittorio - d946c69k.default\tgbti9udt@xbqyuoe-.co.uk] [] SNT v2.1 (..)
~ Firefox Browser: 7 Legitimates Filtered in 00mn 00s



---\\ Internet Explorer, Gestão do Proxy (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Análise das linhas F0, F1, F2, F3 - Ficheiros ini, Carregamento Automático de programas
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Redireção do ficheiro Hosts (01)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 22



---\\ Browser Helper Objects do navegador (02)
O2 - BHO: Adblock Plus for IE Browser Helper Object [64Bits] - {FFCB3198-32F3-4E8B-9539-4324694ED664} . (.Adblock Plus - Adblock Plus Module.) -- C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
~ BHO: 8 Legitimates Filtered in 00mn 00s



---\\ Outras conexões do utilizador (04)
O4 - GS\QuickLaunch [Vittorio]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Vittorio\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
O4 - GS\Desktop [Vittorio]: KMSELDI.exe - Atalho.lnk . (...) -- C:\Program Files (x86)\KMSpico\KMSELDI.exe (.not file.) =>PUP.KMSpico
O4 - GS\Desktop [Vittorio]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Vittorio\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
~ Global Startup: 3 Legitimates Filtered in 00mn 11s



---\\ Aplicações iniciadas por registo & pastas (04)
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] . (.Acronis - Acronis Scheduler Helper.) -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
O4 - HKLM\..\Run: [Symantec System Recovery 2013] . (.Symantec Corporation - Tray Application.) -- C:\Program Files\Symantec\Symantec System Recovery\Agent\VProTray.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKCU\..\Run: [Autodesk Sync] . (.Autodesk, Inc. - Autodesk 360.) -- C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
O4 - HKCU\..\Run: [Plex Media Server] . (.Plex, Inc. - Plex Media Server.) -- C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe
O4 - HKCU\..\Run: [BankerFixV3] . (...) -- \LinhaDefensiva\rotinas\postreboot.bat
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe =>.Advanced Micro Devices, Inc
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle Corporation
O4 - HKLM\..\Wow6432Node\Run: [HDAudDeck] . (.VIA - VIA HD Audio CPL.) -- C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
O4 - HKLM\..\Wow6432Node\Run: [TrueImageMonitor.exe] . (.Acronis - Acronis True Image Monitor.) -- C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
O4 - HKLM\..\Wow6432Node\Run: [AcronisTibMounterMonitor] . (.Acronis International GmbH - Acronis TIB Mounter Monitor.) -- C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
O4 - HKLM\..\Wow6432Node\Run: [vmware-tray.exe] . (.VMware, Inc. - VMware Tray Process.) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe =>.VMware, Inc
O4 - HKLM\..\Wow6432Node\Run: [XFastUSB] . (.FNet Co., Ltd. - XFast USB.) -- C:\Program Files (x86)\XFastUSB\XFastUsb.exe
O4 - HKLM\..\Wow6432Node\Run: [SDTray] . (.Safer-Networking Ltd. - Spybot - Search & Destroy tray access.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
O4 - HKLM\..\Wow6432Node\RunOnce: [Malwarebytes Anti-Malware] . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
O4 - HKUS\.DEFAULT\..\Run: [Autodesk Sync] . (.Autodesk, Inc. - Autodesk 360.) -- C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
O4 - HKUS\S-1-5-18\..\Run: [Autodesk Sync] . (.Autodesk, Inc. - Autodesk 360.) -- C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
O4 - HKUS\S-1-5-21-369259818-4087978498-4106999455-1001\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKUS\S-1-5-21-369259818-4087978498-4106999455-1001\..\Run: [Autodesk Sync] . (.Autodesk, Inc. - Autodesk 360.) -- C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
O4 - HKUS\S-1-5-21-369259818-4087978498-4106999455-1001\..\Run: [Plex Media Server] . (.Plex, Inc. - Plex Media Server.) -- C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe
O4 - HKUS\S-1-5-21-369259818-4087978498-4106999455-1001\..\Run: [BankerFixV3] . (...) -- \LinhaDefensiva\rotinas\postreboot.bat
~ Application: Scanned in 00mn 00s



---\\ Boutões da barra de ferramentas principal do Internet Explorer (09)
O9 - Extra button: &Enviar para o OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files (x86)\MICROS~1\Office15\ONBttnIE.dll =>.Microsoft Corporation
O9 - Extra button: Clique para Telefonar do Lync [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Microsoft Lync.) -- C:\Program Files\Microsoft Office\Office15\lync.exe
O9 - Extra button: &Anotações Vinculadas do OneNote [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files (x86)\MICROS~1\Office15\ONBTTN~1.dll =>.Microsoft Corporation
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Alteração Dominio/Clientes DNS (017)
O17 - HKLM\System\CCS\Services\Tcpip\..\{2833E75E-D28A-4E82-AED7-655B924C3EC4}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{8058F113-ABD3-4606-8821-0B22ED354AC8}: DhcpNameServer = 192.168.1.2
O17 - HKLM\System\CCS\Services\Tcpip\..\{8058F113-ABD3-4606-8821-0B22ED354AC8}: DhcpDomain = Realtek
O17 - HKLM\System\CS1\Services\Tcpip\..\{2833E75E-D28A-4E82-AED7-655B924C3EC4}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{8058F113-ABD3-4606-8821-0B22ED354AC8}: DhcpNameServer = 192.168.1.2
O17 - HKLM\System\CS1\Services\Tcpip\..\{8058F113-ABD3-4606-8821-0B22ED354AC8}: DhcpDomain = Realtek
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s



---\\ Protocolo adicional (018)
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) --
O18 - Filter: text/xml [64Bits] - {807583E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Lista dos serviços NT não Microsoft e não desativados (023)
O23 - Service: SW-Sustainer (d0e87c27) . (...) - C:\Program Files (x86)\sw-boo~1\AssistantSvc.dll (.not file.) =>PUP.SafeWeb
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) . (.Safer-Networking Ltd. - Windows Security Center integration..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
~ Services: 25 Legitimates Filtered in 00mn 10s



---\\ Tarefas planificadas automaticamente (039)
[MD5.00000000000000000000000000000000] [APT] [SW-Booster-S-584836823] (...) -- c:\programdata\myapps\sw-booster\SW-Booster.exe (.not file.) [0] =>PUP.SafeWeb
[MD5.8FF67794F347C2EAFD57DAF41727B3CF] [APT] [{7E8591AA-5411-496D-A007-D421A5F11236}] (...) -- C:\Program Files (x86)\2 Tasty Too lamour a Paris Update\2TastyToo.exe [4760576]
O39 - APT: SW-Booster-S-584836823 - (...) -- C:\Windows\Tasks\SW-Booster-S-584836823.job [446] =>PUP.SafeWeb
~ Scheduled Task: 13 Legitimates Filtered in 00mn 07s



---\\ Software instalados (042)
O42 - Logiciel: COLOGA versão 3.5.2 - (.GSN Sistemas.) [HKLM][64Bits] -- {E2027A17-F4AD-4D3D-A44F-B97EB89DBD9A}_is1
O42 - Logiciel: FileRestore Professional - (.PC Recovery.) [HKLM][64Bits] -- FileRestore Professional
O42 - Logiciel: FileRestore Professional - (.PC Recovery.) [HKLM][64Bits] -- {2E51AC08-F39A-4A99-A110-A28870941804}
O42 - Logiciel: ICE ECC v2.7 - (.ICE Graphics.) [HKLM][64Bits] -- ICE ECC
O42 - Logiciel: KMSpico v9.1.3 - (...) [HKLM][64Bits] -- KMSpico_is1 =>PUP.KMSpico
O42 - Logiciel: NASCAR '14 - (...) [HKLM][64Bits] -- TkFTQ0FSMTQ=_is1
O42 - Logiciel: Sim Aquarium 3 - (.Ladislav Vojnic.) [HKLM][64Bits] -- Sim Aquarium 3_is1
~ Logic: 41 Legitimates Filtered in 00mn 01s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\COLOGA]
[HKCU\Software\Perseus]
[HKCU\Software\Vlad]
~ Key Software: 364 Legitimates Filtered in 00mn 01s



---\\ Conteúdo das pastas Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 15/03/2014 - 20:03:10 - [] ----D C:\Program Files (x86)\Carnaval Mahjong
O43 - CFD: 18/02/2014 - 21:15:23 - [] ----D C:\Program Files (x86)\COLOGA
O43 - CFD: 23/01/2014 - 19:46:49 - [] ----D C:\Program Files (x86)\Demigods
O43 - CFD: 01/04/2014 - 19:17:03 - [] ----D C:\Program Files (x86)\Disharmony Blocks 2
O43 - CFD: 23/02/2014 - 16:15:01 - [] ----D C:\Program Files (x86)\Fill and Cross Pirate Riddles
O43 - CFD: 29/01/2014 - 19:36:22 - [] ----D C:\Program Files (x86)\Hoyle Illusions- Mahjongg
O43 - CFD: 23/04/2014 - 12:22:07 - [] ----D C:\Program Files (x86)\ICE ECC
O43 - CFD: 15/03/2014 - 19:03:17 - [] ----D C:\Program Files (x86)\NASCAR
O43 - CFD: 15/03/2014 - 19:11:08 - [] ----D C:\Program Files (x86)\NASCAR '14
O43 - CFD: 12/04/2014 - 20:10:00 - [] ----D C:\Program Files (x86)\Riddles of The Mask
O43 - CFD: 18/03/2014 - 20:16:58 - [] ----D C:\Program Files (x86)\Rush for Gold 2- California
O43 - CFD: 10/04/2014 - 17:11:27 - [] ----D C:\Program Files (x86)\Sim Aquarium 3
O43 - CFD: 26/03/2014 - 20:35:28 - [] ----D C:\Program Files (x86)\The Adventures of Perseus
O43 - CFD: 17/02/2014 - 20:28:41 - [] ----D C:\Program Files (x86)\Viking Saga 2- New World
O43 - CFD: 08/02/2014 - 14:59:11 - [] ----D C:\Program Files (x86)\Where Are My Pipes
O43 - CFD: 26/04/2014 - 15:52:53 - [] ----D C:\ProgramData\94a319e247fc8866
O43 - CFD: 26/04/2014 - 16:38:01 - [] ----D C:\ProgramData\boost_interprocess
O43 - CFD: 23/01/2014 - 17:50:56 - [] ----D C:\ProgramData\FARO
O43 - CFD: 26/04/2014 - 18:02:53 - [] ----D C:\ProgramData\InstallMate =>PUP.Tarma
O43 - CFD: 26/04/2014 - 18:05:45 - [] ----D C:\ProgramData\MyApps
O43 - CFD: 26/03/2014 - 21:01:51 - [] ----D C:\ProgramData\Perseus
O43 - CFD: 26/04/2014 - 17:32:09 - [] ---AD C:\ProgramData\SimAquarium
O43 - CFD: 01/04/2014 - 19:17:44 - [] ----D C:\Users\Vittorio\AppData\Roaming\Disharmony Blocks II
O43 - CFD: 10/04/2014 - 17:10:18 - [] ----D C:\Users\Vittorio\AppData\Roaming\SimAquarium
O43 - CFD: 08/02/2014 - 15:04:00 - [] ----D C:\Users\Vittorio\AppData\Roaming\Where are my pipes
O43 - CFD: 22/01/2014 - 18:42:03 - [0] ----D C:\Users\Vittorio\AppData\Local\PackageStaging
O43 - CFD: 15/03/2014 - 20:03:12 - [] ----D C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Carnaval Mahjong
O43 - CFD: 23/01/2014 - 19:46:51 - [] ----D C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Demigods
O43 - CFD: 01/04/2014 - 19:17:16 - [] ----D C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Disharmony Blocks 2
O43 - CFD: 23/02/2014 - 16:15:02 - [] ----D C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fill and Cross Pirate Riddles
O43 - CFD: 29/01/2014 - 19:36:32 - [] ----D C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hoyle Illusions- Mahjongg
O43 - CFD: 23/04/2014 - 12:20:16 - [0] ----D C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ICE ECC
O43 - CFD: 25/01/2014 - 20:00:28 - [] ----D C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mahjong Epic 2
O43 - CFD: 12/04/2014 - 20:10:21 - [] ----D C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Riddles of The Mask
O43 - CFD: 18/03/2014 - 20:16:59 - [] ----D C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rush for Gold 2- California
O43 - CFD: 26/03/2014 - 20:35:28 - [] ----D C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Adventures of Perseus
O43 - CFD: 17/02/2014 - 20:28:41 - [] ----D C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Viking Saga 2- New World
O43 - CFD: 08/02/2014 - 14:59:23 - [] ----D C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Where Are My Pipes
~ Program Folder: 251 Legitimates Filtered in 00mn 01s



---\\ Últimos ficheiros alterados ou criados no Windows e Sistema32 (044)
O44 - LFC:[MD5.5DD52D2591842AF23B765611653ACEE4] - 12/04/2014 - 20:10:22 ---A- . (...) -- C:\Windows\Riddles of The Mask Setup Log.txt [178005]
O44 - LFC:[MD5.096A4A608B93BAFCB94B31D39723A918] - 14/04/2014 - 18:13:05 ---A- . (...) -- C:\Windows\Aztec Bricks Setup Log.txt [97080]
O44 - LFC:[MD5.081EE1182212FF6D81914A525D7D6C71] - 18/04/2014 - 14:17:54 ---A- . (...) -- C:\.rnd [1024]
O44 - LFC:[MD5.E341178C116DAC6A3A764587E68DFA7B] - 20/04/2014 - 19:09:18 ---A- . (.FNet Co., Ltd. - FNetUrPx.sys.) -- C:\Windows\System32\Drivers\FNETURPX.SYS [16648]
O44 - LFC:[MD5.DAA6AAD525D12F8985695B882301336F] - 23/04/2014 - 00:19:51 ---A- . (...) -- C:\Windows\win.ini [167]
O44 - LFC:[MD5.508401A63E6B1CBF0B9C9A011498731F] - 24/04/2014 - 18:12:12 ---A- . (.FNet Co., Ltd. - FNetTbos.sys.) -- C:\Windows\System32\Drivers\FNETTBOH_305.SYS [32320]
O44 - LFC:[MD5.A94A703B55C0AC01B44B5289E9E5991A] - 25/04/2014 - 19:59:35 ---A- . (...) -- C:\Windows\Sparkle Unleashed Setup Log.txt [11253]
O44 - LFC:[MD5.6FA29E292CE30162C409410E6CCC26FF] - 26/04/2014 - 16:32:24 ---A- . (...) -- C:\Windows\ntbtlog.txt [163742]
O44 - LFC:[MD5.74A7E4CF1041165AD782EA088E67273C] - 26/04/2014 - 17:34:49 ---A- . (...) -- C:\Windows\System32\prfc0416.dat [159506]
O44 - LFC:[MD5.A5B816DC1C7C3CE084E83C1C714C329A] - 26/04/2014 - 17:34:49 ---A- . (...) -- C:\Windows\System32\prfh0416.dat [777386]
O44 - LFC:[MD5.8B03202C731A0B967927EB7E5B2E470C] - 27/04/2014 - 11:36:42 ---A- . (...) -- C:\Windows\System32\Drivers\mbamchameleon.sys [36680]
~ Files: 43 Legitimates Filtered in 00mn 05s



---\\ Negação do serviço (Local Security Authority) (048)
~ LSA: 3 Legitimates Filtered in 00mn 00s



---\\ Pesquisa de infeções nos drivers (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.ac3filter"="ac3filter64.acm" . (...) -- C:\Windows\System32\ac3filter64.acm
~ TDSD: 3 Legitimates Filtered in 00mn 00s



---\\ Enumeração das chaves do registo PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLinkedConnections"=1
~ MWPS: 18 Legitimates Filtered in 00mn 00s



---\\ Enumeração das chaves do registo PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
~ MWPE Keys: 4 Legitimates Filtered in 00mn 00s



---\\ Lista dos drivers do sistema (SDL) (O58)
O58 - SDL:12/08/2013 - 20:25:46 ---A- . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\Drivers\bcmfn2.sys [17624]
O58 - SDL:24/04/2014 - 18:12:12 ---A- . (.FNet Co., Ltd. - FNetTbos.sys.) -- C:\Windows\System32\Drivers\FNETTBOH_305.SYS [32320]
O58 - SDL:20/04/2014 - 19:09:18 ---A- . (.FNet Co., Ltd. - FNetUrPx.sys.) -- C:\Windows\System32\Drivers\FNETURPX.SYS [16648]
O58 - SDL:29/04/2009 - 15:28:30 ---A- . (.Windows (R) Codename Longhorn DDK provider - KMWDFilter Driver from UASSOFT.COM.) -- C:\Windows\System32\Drivers\KMWDFILTER.sys [30208]
O58 - SDL:27/04/2014 - 11:36:42 ---A- . (...) -- C:\Windows\System32\Drivers\mbamchameleon.sys [36680]
O58 - SDL:22/01/2014 - 08:52:10 ---A- . (.DEVGURU Co., LTD.([Você precisa estar registrado e conectado para ver este link.] - SAMSUNG USB Composite Device Driver (MSS Ver.3).) -- C:\Windows\System32\Drivers\ssudbus.sys [108800]
O58 - SDL:22/01/2014 - 08:52:10 ---A- . (.DEVGURU Co., LTD.([Você precisa estar registrado e conectado para ver este link.] - SAMSUNG Android Modem Device Driver (MSS Ver.3).) -- C:\Windows\System32\Drivers\ssudmdm.sys [206080]
O58 - SDL:22/08/2013 - 09:43:32 ---A- . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Windows x64.) -- C:\Windows\System32\Drivers\stexstor.sys [31072]
O58 - SDL:23/03/2014 - 12:32:52 ---A- . (.Scott - usbdriver.) -- C:\Windows\System32\Drivers\USBDrv_AMD64.sys [17280]
~ Drivers: 75 Legitimates Filtered in 00mn 09s



---\\ Lista das ferramentas de remoção de vírus (LAT) (063)
O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s



---\\ Associações Shell Spawning (O67)
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Not Key.)
~ FASS Keys: 12 Legitimates Filtered in 00mn 00s



---\\ Menu de inicialização Internet (068)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\Launcher.exe
~ Keys: Scanned in 00mn 00s



---\\ Pesquisa de infeção nos navegadores da Internet (SBI) (069)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - [Você precisa estar registrado e conectado para ver este link.]
~ Keys: Scanned in 00mn 00s



---\\ Pesquisa adicional à raiz do sistema (radicular) (SPRF) (O84)
[MD5.D04A3A0897AA3D653DE2741A281FDDE0] [SPRF][10/09/2011] (...) -- C:\Users\Vittorio\Desktop\DriverChecker.exe [77880558]
[MD5.8F3AC2BACE1B433588D763D6AD030E09] [SPRF][05/01/2013] (.No owner - Office 2013 Permanent Activator By Web21.) -- C:\Users\Vittorio\Desktop\Office 2013 Permanent Activator 1.0.exe [6791680]
[MD5.F02E53B18532DD9DF02034C6205C9E91] [SPRF][27/03/2013] (...) -- C:\Users\Vittorio\Desktop\xf-adsk64.exe [312832]
~ Files: 4 Legitimates Filtered in 00mn 02s



---\\ Lista das exceções do FireWall (FirewallRules) (O87)
O87 - FAEL: "{76EAE51D-7D08-4D98-8BFF-860EAFB7E40C}" | In - None - P6 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Vittorio\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
O87 - FAEL: "{B833AEF8-AC61-4D6E-8F8C-CC935C067E09}" | In - None - P17 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Vittorio\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
~ Firewall: 2 Legitimates Filtered in 00mn 02s



---\\ Listagem dos dados da chave NameSpace (MNS) (O92)
O92 - MNS: - {1CF1260C-4DD0-4ebb-811F-33C572699FDE}
O92 - MNS: - {374DE290-123F-4565-9164-39C4925E467B}
O92 - MNS: - {3ADD1653-EB32-4cb0-BBD7-DFA0ABB5ACCA}
O92 - MNS: - {A0953C92-50DC-43bf-BE83-3742FED03C9C}
O92 - MNS: - {A8CDFF1C-4878-43be-B5FD-F8091C1C60D0}
O92 - MNS: - {B4BFCC3A-DB2C-424C-B029-7FE99A87C641}
~ MNS: 7 Legitimates Filtered in 00mn 00s



---\\ Estado general dos serviços não Microsoft (EGS) (SR=Executados, SS=Parados)
SS - | Demand 18/04/2014 257712 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Auto 10/07/1658 0 | (d0e87c27) . (...) - C:\Program Files (x86)\sw-boo~1\AssistantSvc.dll =>PUP.SafeWeb
SS - | Demand 23/01/2014 1471352 | (FlexNet Licensing Service 64) . (.Flexera Software LLC.) - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
SS - | Demand 26/03/2013 1979384 | (GenericMount Helper Service) . (.Symantec.) - C:\Program Files\Symantec\Symantec System Recovery\Shared\Drivers\GenericMountHelperx64.exe
SS - | Auto 22/01/2014 116648 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 22/01/2014 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 17/02/2010 3093880 | C:\Program Files (x86)\Symantec\LIVEUP~1\LUCOMS~1.exe (LiveUpdate) . (.Symantec Corporation.) - C:\Program Files (x86)\Symantec\LiveUpdate\LuComServer_3_3.exe
SS - | Demand 29/03/2014 119408 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SS - | Demand 04/03/2011 621632 | (RaMediaServer) . (...) - C:\Program Files (x86)\Tenda\Common\RaMediaServer.exe
SS - | Auto 23/10/2013 172192 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SS - | Demand 14/04/2014 14407384 | (VMwareHostd) . (...) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe =>.VMware, Inc
SS - | Demand 10/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
SS - | Demand 22/08/2013 37768 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 18/07/2013 1142584 | (AcrSch2Svc) . (.Acronis.) - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
SR - | Auto 18/04/2014 3873784 | (afcdpsrv) . (.Acronis.) - C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
SR - | Auto 13/12/2013 239616 | (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe
SR - | Auto 06/08/2012 361984 | (AMD FUEL Service) . (.Advanced Micro Devices, Inc..) - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
SR - | Auto 13/12/2012 12288 | (Autodesk Content Service) . (.Autodesk, Inc..) - C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
SR - | Auto 07/10/2010 345376 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
SR - | Auto 12/11/2013 230920 | (NitroDriverReadSpool9) . (.Nitro PDF Software.) - C:\Program Files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe
SR - | Auto 12/11/2013 69640 | (nlsX86cc) . (.Nalpeiron Ltd..) - C:\Windows\SysWOW64\NLSSRV32.exe
SR - | Auto 31/03/2011 375872 | (RalinkRegistryWriter) . (.Ralink Technology, Corp..) - C:\Program Files (x86)\Tenda\Common\RaRegistry.exe
SR - | Auto 31/03/2011 454208 | (RalinkRegistryWriter64) . (.Ralink Technology, Corp..) - C:\Program Files (x86)\Tenda\Common\RaRegistry64.exe
SR - | Auto 15/10/2013 3921880 | (SDScannerService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
SR - | Auto 20/09/2013 1042272 | (SDUpdateService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
SR - | Auto 13/09/2013 171416 | (SDWSCService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
SR - | Auto 24/04/2013 6287176 | (Symantec System Recovery) . (.Symantec Corporation.) - C:\Program Files\Symantec\Symantec System Recovery\Agent\VProSvc.exe
SR - | Demand 24/04/2013 2976736 | (SymTrackService) . (.Symantec.) - C:\Program Files\Symantec\Symantec System Recovery\Shared\Drivers\Service\SymTrackServicex64.exe
SR - | Auto 04/02/2014 7142320 | (syncagentsrv) . (.Acronis.) - C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
SR - | Auto 17/02/2014 4915040 | (TeamViewer9) . (.TeamViewer GmbH.) - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
SR - | Auto 14/08/2012 27792 | (VIAKaraokeService) . (.VIA Technologies, Inc..) - C:\Windows\System32\viakaraokesrv.exe
SR - | Auto 14/04/2014 86744 | (VMAuthdService) . (.VMware, Inc..) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe =>.VMware, Inc
SR - | Auto 10/07/1658 0 | (VMnetDHCP) . (.VMware, Inc..) - C:\Windows\system32\vmnetdhcp.exe
SR - | Auto 27/02/2014 906432 | (VMUSBArbService) . (.VMware, Inc..) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
SR - | Auto 10/07/1658 0 | (VMware NAT Service) . (.VMware, Inc..) - C:\Windows\system32\vmnat.exe
SR - | Auto 09/04/2013 479824 | (vmware-converter-agent) . (.VMware, Inc..) - C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter-a.exe
SR - | Auto 09/04/2013 479824 | (vmware-converter-server) . (.VMware, Inc..) - C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe
SR - | Auto 09/04/2013 479824 | (vmware-converter-worker) . (.VMware, Inc..) - C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe
SR - | Demand 10/07/1658 0 | (WdNisSvc) . (...) - C:\Program Files (x86)\Windows Defender\NisSrv.exe
SR - | Auto 10/07/1658 0 | (WinDefend) . (...) - C:\Program Files (x86)\Windows Defender\MsMpEng.exe
~ Services: Scanned in 00mn 13s



---\\ Scâner Aditional (088)
Database Version : 13045 - (26/04/2014)
Clés trouvées (Keys found) : 2
Valeurs trouvées (Values found) : 3
Dossiers trouvés (Folders found) : 3
Fichiers trouvés (Files found) : 1

[HKLM\SYSTEM\CurrentControlSet\Services\d0e87c27] =>PUP.SafeWeb^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\KMSpico_is1] =>PUP.KMSpico^
C:\Users\Vittorio\AppData\Roaming\Mozilla\Firefox\Profiles\d946c69k.default\extensions\e8g87vzbj@qdawmaea.edu =>PUP.SaveNet^
C:\ProgramData\InstallMate =>PUP.Tarma^
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico =>PUP.KMSpico
C:\Windows\Tasks\SW-Booster-S-584836823.job =>PUP.SafeWeb^
~ Additionnel Scan: 393639 Items scanned in 00mn 55s



---\\ Sumário das deteções encontradas na sua estação
[Você precisa estar registrado e conectado para ver este link.] =>PUP.Babylon
[Você precisa estar registrado e conectado para ver este link.] =>PUP.KMSpico
[Você precisa estar registrado e conectado para ver este link.] =>PUP.Tarma
~ MSI: 3 link(s) detected in 00mn 00s



~ 823 Legitimates filtered by white list
End of the scan (511 lines in 02mn 34s)(0)
avatar
vbm
Iniciante
Iniciante

Mensagens : 20
Reputação : 0
Data de inscrição : 27/04/2014

Voltar ao Topo Ir em baixo

Re: Não consigo instalar o malwarebytes

Mensagem por Power Max em Dom 27 Abr 2014, 12:25

 Selecione e copie todo o texto destacado em vermelho que te passei.
_____________________________________________________________________________________________________________

 Vá no menu: Iniciar > Todos os programas > ZHP > Clique com o botão direito do mouse sobre o Zhpfix e escolha a opção de Executar como administrador > Clique em Importação > Clique no botão GO > Clique em Oui > Caso queira que os arquivos da lixeira sejam excluídos clique em Oui novamente > Um relatório aparecerá no bloco de notas.

Copie este relatório e poste em sua próxima resposta.


Última edição por Power Max em Dom 27 Abr 2014, 14:24, editado 1 vez(es)

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Você precisa estar registrado e conectado para ver este link.] = O melhor da internet você encontra aqui.

[Você precisa estar registrado e conectado para ver este link.] = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: Não consigo instalar o malwarebytes

Mensagem por vbm em Dom 27 Abr 2014, 12:37

Aí está:

Rapport de ZHPFix 2014.4.13.3 par Nicolas Coolman, Update du 13/04/2014
Fichier d'export Registre :
Run by Vittorio at 27/04/2014 12:36:03
High Elevated Privileges : OK
Windows 8 Business Edition, 64-bit Service Pack 1 (9600)

Reciclagem vazia (00mn 02s)
Reparação de atalhos do navegador

========== Chaves do Registo ==========
ELIMINÉ: Service: d0e87c27
ELIMINÉ: Service: Bonjour Service

========== Valores do Registo ==========
ProxyFix : Configuração proxy removida com sucesso
ELIMINÉ ProxyServer Value
ELIMINÉ ProxyEnable Value
ELIMINÉ EnableHttp1_1 Value
ELIMINÉ ProxyHttp1.1 Value
ELIMINÉ ProxyOverride Value

========== Preferências do navegador ==========
AGORA Chrome File: C:\Users\Vittorio\AppData\Local\Google\Chrome\User Data\Default\Preferences
ELIMINÉ Chrome Site: [Você precisa estar registrado e conectado para ver este link.]

========== Pastas ==========
Nenhuma pasta CLSID local utilizador vazia

========== Ficheiros ==========
ELIMINÉ: c:\users\vittorio\desktop\kmseldi.exe - atalho.lnk
ELIMINA REINICIAR: c:\program files (x86)\bonjour\mdnsresponder.exe
ELIMINÉ Temporários windows (27) (4.211.332 octets)
ELIMINÉ Flash Cookies (0) (0 octets)

========== Restauração Sistema ==========
Ponto de restauro do sistema criado com sucesso


========== Recapitulativo ==========
2 : Chaves do Registo
6 : Valores do Registo
1 : Pastas
4 : Ficheiros
2 : Preferências do navegador
1 : Restauração Sistema


End of clean in 00mn 38s

========== Caminho do ficheiro do relatório ==========
C:\Users\Vittorio\AppData\Roaming\ZHP\ZHPFix[R1].txt - 27/04/2014 12:36:05 [1521]
avatar
vbm
Iniciante
Iniciante

Mensagens : 20
Reputação : 0
Data de inscrição : 27/04/2014

Voltar ao Topo Ir em baixo

Re: Não consigo instalar o malwarebytes

Mensagem por Power Max em Dom 27 Abr 2014, 12:39

Reinicie o PC para completar a remoção de alguns problemas.

Depois de reiniciar, abra novamente o ( ZHPDiag )

[Você precisa estar registrado e conectado para ver esta imagem.]

|- Clique "SEARCH" ou "PESQUISAR" e aguarde a conclusão.

[Você precisa estar registrado e conectado para ver esta imagem.]

|- Clique OK e, ao concluir, poste o relatório ZHPDiag.txt

[Você precisa estar registrado e conectado para ver esta imagem.]

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Você precisa estar registrado e conectado para ver este link.] = O melhor da internet você encontra aqui.

[Você precisa estar registrado e conectado para ver este link.] = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: Não consigo instalar o malwarebytes

Mensagem por vbm em Dom 27 Abr 2014, 12:52

Aí está:

~ Relatório do ZHPDiag v2014.4.26.45 - Nicolas Coolman (26/04/2014)
~ Iniciado por Vittorio (27/04/2014 12:49:53)
~ Endereço do Website : [Você precisa estar registrado e conectado para ver este link.]
~ Fóruns de suporte gratuito para desinfecção : [Você precisa estar registrado e conectado para ver este link.]
~ Tradução pelo utilizador
~ Estatuto da versão :
~ Lista Branca : Ativado pelo programa
~ Elevação dos Privilégios : OK
~ Controle de Conta de Utilizador : Activate by user


---\\ Navegadores Internet
MSIE: Internet Explorer v11.0.9600.16659
MFIE: Mozilla Firefox 28.0
GCIE: Google Chrome v34.0.1847.116 (Defaut)
OPIE: Opera vStable 20.0.1387.91

---\\ Informações sobre os produtos Windows
~ Langage: Portugais
Windows 8.1 Pro, 64-bit (Build 9600)
Windows Server License Manager Script : OK
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ Softwares de proteçao do sistema
Malwarebytes Anti-Malware versão 1.75.0.1300
Panda Cloud Cleaner v1.0.98
Spybot - Search & Destroy v2.2.25
Windows Defender W8

---\\ Softwares d'optimização do sistema

---\\ Softwares de partilha do PeerToPeer (P2P)

---\\ Monitoramento dos softwares
Adobe Flash Player 13 Plugin
Java 7 Update 55

---\\ Informações sobre o sistema
~ Processor: AMD64 Family 18 Model 1 Stepping 0, AuthenticAMD
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 7659 MB (64% free)
System Restore: Activé (Enable)
System drive C: has 264 GB (56%) free of 466 GB

---\\ Modo de conexão ao sistema
~ Computer Name: VBM
~ User Name: Vittorio
~ All Users Names: ___VMware_Conv_SA___, Vittorio, Convidado, Administrador,
~ Unselected Option: 045,061,O62,065,066,080,O82,089
Logged in as Administrator

---\\ As variáveis de ambiente
~ System Unit : C:\
~ %AppZHP% : C:\Users\Vittorio\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\Vittorio\AppData\Roaming\
~ %Desktop% : C:\Users\Vittorio\Desktop\
~ %Favorites% : C:\Users\Vittorio\Favorites\
~ %LocalAppData% : C:\Users\Vittorio\AppData\Local\
~ %StartMenu% : C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumeração das unidades dos discos
C: Hard drive, Flash drive, Thumb drive (Free 264 Go of 466 Go)
D: Hard drive, Flash drive, Thumb drive (Free 185 Go of 466 Go)
E: CD-ROM drive (Not Inserted)
H: CD-ROM drive (Not Inserted)



---\\ Estado do Centro de Segurança do Windows
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
~ Security Center: 46 Legitimates Filtered in 00mn 00s



---\\ Pesquisa particular de ficheiros genéricos
[MD5.63DC38C3E4564B2405D562855643ABA2] - (.Microsoft Corporation - Windows Explorer.) (.22/10/2013 - 04:55:27.) -- C:\Windows\Explorer.exe [2328872]
[MD5.48CFA7BE561A7BE144C29BB912055016] - (.Microsoft Corporation - Aplicativo de Inicialização do Windows.) (.22/08/2013 - 06:58:29.) -- C:\Windows\System32\Wininit.exe [144384]
[MD5.DF79CE9B950C62677D232154E93A81C7] - (.Microsoft Corporation - Internet Extensions para Win32.) (.01/03/2014 - 00:10:28.) -- C:\Windows\System32\wininet.dll [2334208]
[MD5.7C94FDA3809015B8F2208D2E1C221F17] - (.Microsoft Corporation - Aplicativo de Logon do Windows.) (.22/08/2013 - 06:55:08.) -- C:\Windows\System32\Winlogon.exe [564736]
[MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - (.Microsoft Corporation - Biblioteca de Licenciamento de Software.) (.21/12/2013 - 05:54:07.) -- C:\Windows\System32\sppcomapi.dll [447488]
[MD5.239268BAB58EAE9A3FF4E08334C00451] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.22/08/2013 - 10:25:35.) -- C:\Windows\system32\Drivers\AFD.sys [567296]
[MD5.74B14192CF79A72F7536B27CB8814FBD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.22/08/2013 - 09:43:41.) -- C:\Windows\system32\Drivers\atapi.sys [26464]
[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - (.Microsoft Corporation - CD-ROM File System Driver.) (.22/08/2013 - 08:40:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [88576]
[MD5.C6796EA22B513E3457514D92DCDB1A3D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.22/08/2013 - 05:46:35.) -- C:\Windows\system32\Drivers\Cdrom.sys [164352]
[MD5.5DB26D7E0216D0BF364A81D3829AD7B9] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.22/08/2013 - 08:38:00.) -- C:\Windows\system32\Drivers\DfsC.sys [134656]
[MD5.03909BDBFF0DCACCABF2B2D4ADEE44DC] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.22/08/2013 - 08:38:38.) -- C:\Windows\system32\Drivers\HDAudBus.sys [78336]
[MD5.84CFC5EFA97D0C965EDE1D56F116A541] - (.Microsoft Corporation - Driver de porta i8042.) (.22/08/2013 - 08:39:15.) -- C:\Windows\system32\Drivers\i8042prt.sys [107520]
[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - (.Microsoft Corporation - IP Network Address Translator.) (.27/11/2013 - 09:02:29.) -- C:\Windows\system32\Drivers\IpNat.sys [142848]
[MD5.79B6F3DF7CDFD12159871FF71464F0CE] - (.Microsoft Corporation - Minirdr SMB do Windows NT.) (.23/11/2013 - 04:08:19.) -- C:\Windows\system32\Drivers\MRxSmb.sys [403456]
[MD5.0217532E19A748F0E5D569307363D5FD] - (.Microsoft Corporation - MBT Transport driver.) (.22/08/2013 - 08:37:02.) -- C:\Windows\system32\Drivers\netBT.sys [282624]
[MD5.725EF69B2DBEB7B33280019A556201BC] - (.Microsoft Corporation - Driver do Sistema de Arquivos NT.) (.10/03/2014 - 07:35:58.) -- C:\Windows\system32\Drivers\ntfs.sys [2008408]
[MD5.764B1121867B2D9B31C491668AC72B2B] - (.Microsoft Corporation - Driver de porta paralela.) (.22/08/2013 - 08:40:02.) -- C:\Windows\system32\Drivers\Parport.sys [94208]
[MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.22/08/2013 - 08:35:51.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [120832]
[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - (.Microsoft Corporation - Redirecionador do Dispositivo RDP da Microsoft.) (.30/09/2013 - 00:59:28.) -- C:\Windows\system32\Drivers\rdpdr.sys [195584]
[MD5.FFF28F9F6823EB1756C60F1649560BBF] - (.Microsoft Corporation - TDI Translation Driver.) (.22/08/2013 - 10:25:35.) -- C:\Windows\system32\Drivers\tdx.sys [107520]
[MD5.C85C075DE5B6D0FE116043054DE8EE02] - (.Microsoft Corporation - Driver de cópia de sombra de volume.) (.31/01/2014 - 13:15:23.) -- C:\Windows\system32\Drivers\volsnap.sys [311640]
~ Generic Processes: Scanned in 00mn 00s



---\\ Estatuto dos ficheiros ocultos (Oculto/Total)
~ Mes images (My Pictures) : 1/102
~ Mes Favoris (My Favorites) : 1/3
~ Mes Documents (My Documents) : 1/289
~ Mon Bureau (My Desktop) : 1/225
~ Menu demarrer (Programs) : 1/76
~ Hidden Files: Scanned in 00mn 01s



---\\ Processos lançados
[MD5.615E58F9963734185756AEE4959BA964] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [20728480] [PID.4888]
[MD5.7C2CFFAE5D23BE740CBEF9EF37EE149B] - (.Plex, Inc. - Plex Media Server.) -- C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [4409480] [PID.4916]
[MD5.7AB3022015F70EC23AC04B6E7EDDF026] - (.Tenda Technology, Corp. - Tenda Wireless LAN Card Utility.) -- C:\Program Files (x86)\Tenda\Common\RaUI.exe [12419072] [PID.4932]
[MD5.5B6E8E09BE6401A7E022F52FDFCB2FF8] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336] [PID.5004]
[MD5.9697018D7ABCB009F3B81D405341B7D0] - (.Acronis - Acronis True Image Monitor.) -- C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [7805936] [PID.5088]
[MD5.8E82108A801F3629413C368657F73178] - (.Acronis International GmbH - Acronis TIB Mounter Monitor.) -- C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [1102192] [PID.5116]
[MD5.F121A4E1799C490EAA3765FB6295E43E] - (.VMware, Inc. - VMware Tray Process.) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [112856] [PID.4336]
[MD5.24F4643941535195B19C962C96067DB8] - (.FNet Co., Ltd. - XFast USB.) -- C:\Program Files (x86)\XFastUSB\XFastUsb.exe [5021448] [PID.1924]
[MD5.AF49D1C79EA49A7833017F290EE63B82] - (.Safer-Networking Ltd. - Spybot - Search & Destroy tray access.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784] [PID.3080]
[MD5.316A3529EB2E8563BC564FAA90A535F7] - (.Python Software Foundation - Python.) -- C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe [34952] [PID.5228]
[MD5.76CAAEB9A3E5DAC21BAF71396ACA49E0] - (.Plex, Inc. - Plex Media Server DLNA Service.) -- C:\Program Files (x86)\Plex\Plex Media Server\PlexDlnaServer.exe [1625224] [PID.5548]
[MD5.2EBBBFC120593C683796092F2DDA0EFC] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [841032] [PID.6412]
[MD5.7EA50DC775B557AD1E06ABF3C7A2A24D] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [7869952] [PID.4272]
~ Processes Running: Scanned in 00mn 01s



---\\ Google Chrome, Arranque,Pesquisa,Extensões (G0,G1,G2)
C:\Users\Vittorio\AppData\Local\Google\Chrome\User Data\Default\Preferences
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Loja v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [bgofflgeghkhocbociocnckocbjmomjh] Quizlet v.4.1 (Activé)
G2 - GCE: Preference [User Data\Default] [bjohiacoelemalmancnccjggomjnkfod] Snooker v.1.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [dcilimldmomiaihcfkmaldanopfejefg] Desafio de Golfe WGT v.45.0.0 (Activé)
G2 - GCE: Preference [User Data\Default] [ekpfaaakmnhcembbiennfjiaodandmhg] Hangman v.1 (Activé)
G2 - GCE: Preference [User Data\Default] [imcbnnnoghiihopefblgehihofbfbmei] Desprotetor de Links v.2.0.1.7, (Activé)
G2 - GCE: Preference [User Data\Default] [neajdppkdcdipfabeoofebfddakdcjhd] Google Network Speech v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [nkeimhogjdpnpccoofpliimaahmaaome] Hangout Services v.1.0 (Activé)

---\\ Pasta de extensão do Google Chrome
~ Google Lines Browser: 28 Legitimates Filtered in 00mn 10s



---\\ Mozilla Firefox, Plugins,Arranque,Pesquisa,Extensões (P2,M0,M1,M2,M3)
C:\Users\Vittorio\AppData\Roaming\Mozilla\Firefox\Profiles\d946c69k.default\prefs.js
M2 - MFEP: prefs.js [Vittorio - d946c69k.default\tgbti9udt@xbqyuoe-.co.uk] [] SNT v2.1 (..)
~ Firefox Browser: 6 Legitimates Filtered in 00mn 00s



---\\ Internet Explorer, Gestão do Proxy (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Análise das linhas F0, F1, F2, F3 - Ficheiros ini, Carregamento Automático de programas
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Redireção do ficheiro Hosts (01)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 22



---\\ Browser Helper Objects do navegador (02)
O2 - BHO: Adblock Plus for IE Browser Helper Object [64Bits] - {FFCB3198-32F3-4E8B-9539-4324694ED664} . (.Adblock Plus - Adblock Plus Module.) -- C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
~ BHO: 8 Legitimates Filtered in 00mn 00s



---\\ Outras conexões do utilizador (04)
O4 - GS\QuickLaunch [Vittorio]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Vittorio\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
O4 - GS\Desktop [Vittorio]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Vittorio\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
~ Global Startup: 2 Legitimates Filtered in 00mn 04s



---\\ Aplicações iniciadas por registo & pastas (04)
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] . (.Acronis - Acronis Scheduler Helper.) -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
O4 - HKLM\..\Run: [Symantec System Recovery 2013] . (.Symantec Corporation - Tray Application.) -- C:\Program Files\Symantec\Symantec System Recovery\Agent\VProTray.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKCU\..\Run: [Autodesk Sync] . (.Autodesk, Inc. - Autodesk 360.) -- C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
O4 - HKCU\..\Run: [Plex Media Server] . (.Plex, Inc. - Plex Media Server.) -- C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe
O4 - HKCU\..\Run: [BankerFixV3] . (...) -- \LinhaDefensiva\rotinas\postreboot.bat
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe =>.Advanced Micro Devices, Inc
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle Corporation
O4 - HKLM\..\Wow6432Node\Run: [HDAudDeck] . (.VIA - VIA HD Audio CPL.) -- C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
O4 - HKLM\..\Wow6432Node\Run: [TrueImageMonitor.exe] . (.Acronis - Acronis True Image Monitor.) -- C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
O4 - HKLM\..\Wow6432Node\Run: [AcronisTibMounterMonitor] . (.Acronis International GmbH - Acronis TIB Mounter Monitor.) -- C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
O4 - HKLM\..\Wow6432Node\Run: [vmware-tray.exe] . (.VMware, Inc. - VMware Tray Process.) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe =>.VMware, Inc
O4 - HKLM\..\Wow6432Node\Run: [XFastUSB] . (.FNet Co., Ltd. - XFast USB.) -- C:\Program Files (x86)\XFastUSB\XFastUsb.exe
O4 - HKLM\..\Wow6432Node\Run: [SDTray] . (.Safer-Networking Ltd. - Spybot - Search & Destroy tray access.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
O4 - HKUS\.DEFAULT\..\Run: [Autodesk Sync] . (.Autodesk, Inc. - Autodesk 360.) -- C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
O4 - HKUS\S-1-5-18\..\Run: [Autodesk Sync] . (.Autodesk, Inc. - Autodesk 360.) -- C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
O4 - HKUS\S-1-5-21-369259818-4087978498-4106999455-1001\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKUS\S-1-5-21-369259818-4087978498-4106999455-1001\..\Run: [Autodesk Sync] . (.Autodesk, Inc. - Autodesk 360.) -- C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
O4 - HKUS\S-1-5-21-369259818-4087978498-4106999455-1001\..\Run: [Plex Media Server] . (.Plex, Inc. - Plex Media Server.) -- C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe
O4 - HKUS\S-1-5-21-369259818-4087978498-4106999455-1001\..\Run: [BankerFixV3] . (...) -- \LinhaDefensiva\rotinas\postreboot.bat
~ Application: Scanned in 00mn 00s



---\\ Boutões da barra de ferramentas principal do Internet Explorer (09)
O9 - Extra button: &Enviar para o OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files (x86)\MICROS~1\Office15\ONBttnIE.dll =>.Microsoft Corporation
O9 - Extra button: Clique para Telefonar do Lync [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Microsoft Lync.) -- C:\Program Files\Microsoft Office\Office15\lync.exe
O9 - Extra button: &Anotações Vinculadas do OneNote [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files (x86)\MICROS~1\Office15\ONBTTN~1.dll =>.Microsoft Corporation
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Alteração Dominio/Clientes DNS (017)
O17 - HKLM\System\CCS\Services\Tcpip\..\{2833E75E-D28A-4E82-AED7-655B924C3EC4}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{8058F113-ABD3-4606-8821-0B22ED354AC8}: DhcpNameServer = 192.168.1.2
O17 - HKLM\System\CCS\Services\Tcpip\..\{8058F113-ABD3-4606-8821-0B22ED354AC8}: DhcpDomain = Realtek
O17 - HKLM\System\CS1\Services\Tcpip\..\{2833E75E-D28A-4E82-AED7-655B924C3EC4}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{8058F113-ABD3-4606-8821-0B22ED354AC8}: DhcpNameServer = 192.168.1.2
O17 - HKLM\System\CS1\Services\Tcpip\..\{8058F113-ABD3-4606-8821-0B22ED354AC8}: DhcpDomain = Realtek
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s



---\\ Protocolo adicional (018)
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) --
O18 - Filter: text/xml [64Bits] - {807583E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Lista dos serviços NT não Microsoft e não desativados (023)
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) . (.Safer-Networking Ltd. - Windows Security Center integration..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
~ Services: 24 Legitimates Filtered in 00mn 03s



---\\ Tarefas planificadas automaticamente (039)
[MD5.8FF67794F347C2EAFD57DAF41727B3CF] [APT] [{7E8591AA-5411-496D-A007-D421A5F11236}] (...) -- C:\Program Files (x86)\2 Tasty Too lamour a Paris Update\2TastyToo.exe [4760576]
~ Scheduled Task: 11 Legitimates Filtered in 00mn 05s



---\\ Software instalados (042)
O42 - Logiciel: COLOGA versão 3.5.2 - (.GSN Sistemas.) [HKLM][64Bits] -- {E2027A17-F4AD-4D3D-A44F-B97EB89DBD9A}_is1
O42 - Logiciel: FileRestore Professional - (.PC Recovery.) [HKLM][64Bits] -- FileRestore Professional
O42 - Logiciel: FileRestore Professional - (.PC Recovery.) [HKLM][64Bits] -- {2E51AC08-F39A-4A99-A110-A28870941804}
O42 - Logiciel: ICE ECC v2.7 - (.ICE Graphics.) [HKLM][64Bits] -- ICE ECC
O42 - Logiciel: KMSpico v9.1.3 - (...) [HKLM][64Bits] -- KMSpico_is1 =>PUP.KMSpico
O42 - Logiciel: NASCAR '14 - (...) [HKLM][64Bits] -- TkFTQ0FSMTQ=_is1
O42 - Logiciel: Sim Aquarium 3 - (.Ladislav Vojnic.) [HKLM][64Bits] -- Sim Aquarium 3_is1
~ Logic: 41 Legitimates Filtered in 00mn 01s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\COLOGA]
[HKCU\Software\Perseus]
[HKCU\Software\Vlad]
~ Key Software: 364 Legitimates Filtered in 00mn 01s



---\\ Conteúdo das pastas Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 15/03/2014 - 20:03:10 - [] ----D C:\Program Files (x86)\Carnaval Mahjong
O43 - CFD: 18/02/2014 - 21:15:23 - [] ----D C:\Program Files (x86)\COLOGA
O43 - CFD: 23/01/2014 - 19:46:49 - [] ----D C:\Program Files (x86)\Demigods
O43 - CFD: 01/04/2014 - 19:17:03 - [] ----D C:\Program Files (x86)\Disharmony Blocks 2
O43 - CFD: 23/02/2014 - 16:15:01 - [] ----D C:\Program Files (x86)\Fill and Cross Pirate Riddles
O43 - CFD: 29/01/2014 - 19:36:22 - [] ----D C:\Program Files (x86)\Hoyle Illusions- Mahjongg
O43 - CFD: 23/04/2014 - 12:22:07 - [] ----D C:\Program Files (x86)\ICE ECC
O43 - CFD: 15/03/2014 - 19:03:17 - [] ----D C:\Program Files (x86)\NASCAR
O43 - CFD: 15/03/2014 - 19:11:08 - [] ----D C:\Program Files (x86)\NASCAR '14
O43 - CFD: 12/04/2014 - 20:10:00 - [] ----D C:\Program Files (x86)\Riddles of The Mask
O43 - CFD: 18/03/2014 - 20:16:58 - [] ----D C:\Program Files (x86)\Rush for Gold 2- California
O43 - CFD: 10/04/2014 - 17:11:27 - [] ----D C:\Program Files (x86)\Sim Aquarium 3
O43 - CFD: 26/03/2014 - 20:35:28 - [] ----D C:\Program Files (x86)\The Adventures of Perseus
O43 - CFD: 17/02/2014 - 20:28:41 - [] ----D C:\Program Files (x86)\Viking Saga 2- New World
O43 - CFD: 08/02/2014 - 14:59:11 - [] ----D C:\Program Files (x86)\Where Are My Pipes
O43 - CFD: 26/04/2014 - 15:52:53 - [] ----D C:\ProgramData\94a319e247fc8866
O43 - CFD: 27/04/2014 - 12:47:55 - [] ----D C:\ProgramData\boost_interprocess
O43 - CFD: 23/01/2014 - 17:50:56 - [] ----D C:\ProgramData\FARO
O43 - CFD: 26/04/2014 - 18:05:45 - [] ----D C:\ProgramData\MyApps
O43 - CFD: 26/03/2014 - 21:01:51 - [] ----D C:\ProgramData\Perseus
O43 - CFD: 26/04/2014 - 17:32:09 - [] ---AD C:\ProgramData\SimAquarium
O43 - CFD: 01/04/2014 - 19:17:44 - [] ----D C:\Users\Vittorio\AppData\Roaming\Disharmony Blocks II
O43 - CFD: 10/04/2014 - 17:10:18 - [] ----D C:\Users\Vittorio\AppData\Roaming\SimAquarium
O43 - CFD: 08/02/2014 - 15:04:00 - [] ----D C:\Users\Vittorio\AppData\Roaming\Where are my pipes
O43 - CFD: 22/01/2014 - 18:42:03 - [0] ----D C:\Users\Vittorio\AppData\Local\PackageStaging
O43 - CFD: 15/03/2014 - 20:03:12 - [] ----D C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Carnaval Mahjong
O43 - CFD: 23/01/2014 - 19:46:51 - [] ----D C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Demigods
O43 - CFD: 01/04/2014 - 19:17:16 - [] ----D C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Disharmony Blocks 2
O43 - CFD: 23/02/2014 - 16:15:02 - [] ----D C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fill and Cross Pirate Riddles
O43 - CFD: 29/01/2014 - 19:36:32 - [] ----D C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hoyle Illusions- Mahjongg
O43 - CFD: 23/04/2014 - 12:20:16 - [0] ----D C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ICE ECC
O43 - CFD: 25/01/2014 - 20:00:28 - [] ----D C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mahjong Epic 2
O43 - CFD: 12/04/2014 - 20:10:21 - [] ----D C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Riddles of The Mask
O43 - CFD: 18/03/2014 - 20:16:59 - [] ----D C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rush for Gold 2- California
O43 - CFD: 26/03/2014 - 20:35:28 - [] ----D C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Adventures of Perseus
O43 - CFD: 17/02/2014 - 20:28:41 - [] ----D C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Viking Saga 2- New World
O43 - CFD: 08/02/2014 - 14:59:23 - [] ----D C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Where Are My Pipes
~ Program Folder: 250 Legitimates Filtered in 00mn 01s



---\\ Últimos ficheiros alterados ou criados no Windows e Sistema32 (044)
O44 - LFC:[MD5.5DD52D2591842AF23B765611653ACEE4] - 12/04/2014 - 20:10:22 ---A- . (...) -- C:\Windows\Riddles of The Mask Setup Log.txt [178005]
O44 - LFC:[MD5.096A4A608B93BAFCB94B31D39723A918] - 14/04/2014 - 18:13:05 ---A- . (...) -- C:\Windows\Aztec Bricks Setup Log.txt [97080]
O44 - LFC:[MD5.081EE1182212FF6D81914A525D7D6C71] - 18/04/2014 - 14:17:54 ---A- . (...) -- C:\.rnd [1024]
O44 - LFC:[MD5.E341178C116DAC6A3A764587E68DFA7B] - 20/04/2014 - 19:09:18 ---A- . (.FNet Co., Ltd. - FNetUrPx.sys.) -- C:\Windows\System32\Drivers\FNETURPX.SYS [16648]
O44 - LFC:[MD5.DAA6AAD525D12F8985695B882301336F] - 23/04/2014 - 00:19:51 ---A- . (...) -- C:\Windows\win.ini [167]
O44 - LFC:[MD5.508401A63E6B1CBF0B9C9A011498731F] - 24/04/2014 - 18:12:12 ---A- . (.FNet Co., Ltd. - FNetTbos.sys.) -- C:\Windows\System32\Drivers\FNETTBOH_305.SYS [32320]
O44 - LFC:[MD5.A94A703B55C0AC01B44B5289E9E5991A] - 25/04/2014 - 19:59:35 ---A- . (...) -- C:\Windows\Sparkle Unleashed Setup Log.txt [11253]
O44 - LFC:[MD5.6FA29E292CE30162C409410E6CCC26FF] - 26/04/2014 - 16:32:24 ---A- . (...) -- C:\Windows\ntbtlog.txt [163742]
O44 - LFC:[MD5.74A7E4CF1041165AD782EA088E67273C] - 26/04/2014 - 17:34:49 ---A- . (...) -- C:\Windows\System32\prfc0416.dat [159506]
O44 - LFC:[MD5.A5B816DC1C7C3CE084E83C1C714C329A] - 26/04/2014 - 17:34:49 ---A- . (...) -- C:\Windows\System32\prfh0416.dat [777386]
~ Files: 42 Legitimates Filtered in 00mn 04s



---\\ Negação do serviço (Local Security Authority) (048)
~ LSA: 3 Legitimates Filtered in 00mn 00s



---\\ Pesquisa de infeções nos drivers (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.ac3filter"="ac3filter64.acm" . (...) -- C:\Windows\System32\ac3filter64.acm
~ TDSD: 3 Legitimates Filtered in 00mn 00s



---\\ Enumeração das chaves do registo PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLinkedConnections"=1
~ MWPS: 18 Legitimates Filtered in 00mn 00s



---\\ Enumeração das chaves do registo PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
~ MWPE Keys: 4 Legitimates Filtered in 00mn 00s



---\\ Lista dos drivers do sistema (SDL) (O58)
O58 - SDL:12/08/2013 - 20:25:46 ---A- . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\Drivers\bcmfn2.sys [17624]
O58 - SDL:24/04/2014 - 18:12:12 ---A- . (.FNet Co., Ltd. - FNetTbos.sys.) -- C:\Windows\System32\Drivers\FNETTBOH_305.SYS [32320]
O58 - SDL:20/04/2014 - 19:09:18 ---A- . (.FNet Co., Ltd. - FNetUrPx.sys.) -- C:\Windows\System32\Drivers\FNETURPX.SYS [16648]
O58 - SDL:29/04/2009 - 15:28:30 ---A- . (.Windows (R) Codename Longhorn DDK provider - KMWDFilter Driver from UASSOFT.COM.) -- C:\Windows\System32\Drivers\KMWDFILTER.sys [30208]
O58 - SDL:22/01/2014 - 08:52:10 ---A- . (.DEVGURU Co., LTD.([Você precisa estar registrado e conectado para ver este link.] - SAMSUNG USB Composite Device Driver (MSS Ver.3).) -- C:\Windows\System32\Drivers\ssudbus.sys [108800]
O58 - SDL:22/01/2014 - 08:52:10 ---A- . (.DEVGURU Co., LTD.([Você precisa estar registrado e conectado para ver este link.] - SAMSUNG Android Modem Device Driver (MSS Ver.3).) -- C:\Windows\System32\Drivers\ssudmdm.sys [206080]
O58 - SDL:22/08/2013 - 09:43:32 ---A- . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Windows x64.) -- C:\Windows\System32\Drivers\stexstor.sys [31072]
O58 - SDL:23/03/2014 - 12:32:52 ---A- . (.Scott - usbdriver.) -- C:\Windows\System32\Drivers\USBDrv_AMD64.sys [17280]
~ Drivers: 74 Legitimates Filtered in 00mn 03s



---\\ Lista das ferramentas de remoção de vírus (LAT) (063)
O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s



---\\ Associações Shell Spawning (O67)
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Not Key.)
~ FASS Keys: 12 Legitimates Filtered in 00mn 00s



---\\ Menu de inicialização Internet (068)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\Launcher.exe
~ Keys: Scanned in 00mn 00s



---\\ Pesquisa de infeção nos navegadores da Internet (SBI) (069)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - [Você precisa estar registrado e conectado para ver este link.]
~ Keys: Scanned in 00mn 00s



---\\ Pesquisa adicional à raiz do sistema (radicular) (SPRF) (O84)
[MD5.D04A3A0897AA3D653DE2741A281FDDE0] [SPRF][10/09/2011] (...) -- C:\Users\Vittorio\Desktop\DriverChecker.exe [77880558]
[MD5.8F3AC2BACE1B433588D763D6AD030E09] [SPRF][05/01/2013] (.No owner - Office 2013 Permanent Activator By Web21.) -- C:\Users\Vittorio\Desktop\Office 2013 Permanent Activator 1.0.exe [6791680]
~ Files: 3 Legitimates Filtered in 00mn 01s



---\\ Lista das exceções do FireWall (FirewallRules) (O87)
O87 - FAEL: "{76EAE51D-7D08-4D98-8BFF-860EAFB7E40C}" | In - None - P6 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Vittorio\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
O87 - FAEL: "{B833AEF8-AC61-4D6E-8F8C-CC935C067E09}" | In - None - P17 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Vittorio\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
~ Firewall: 2 Legitimates Filtered in 00mn 01s



---\\ Listagem dos dados da chave NameSpace (MNS) (O92)
O92 - MNS: - {1CF1260C-4DD0-4ebb-811F-33C572699FDE}
O92 - MNS: - {374DE290-123F-4565-9164-39C4925E467B}
O92 - MNS: - {3ADD1653-EB32-4cb0-BBD7-DFA0ABB5ACCA}
O92 - MNS: - {A0953C92-50DC-43bf-BE83-3742FED03C9C}
O92 - MNS: - {A8CDFF1C-4878-43be-B5FD-F8091C1C60D0}
O92 - MNS: - {B4BFCC3A-DB2C-424C-B029-7FE99A87C641}
~ MNS: 7 Legitimates Filtered in 00mn 00s



---\\ Estado general dos serviços não Microsoft (EGS) (SR=Executados, SS=Parados)
SS - | Demand 18/04/2014 257712 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Demand 23/01/2014 1471352 | (FlexNet Licensing Service 64) . (.Flexera Software LLC.) - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
SS - | Demand 26/03/2013 1979384 | (GenericMount Helper Service) . (.Symantec.) - C:\Program Files\Symantec\Symantec System Recovery\Shared\Drivers\GenericMountHelperx64.exe
SS - | Auto 22/01/2014 116648 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 22/01/2014 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 17/02/2010 3093880 | C:\Program Files (x86)\Symantec\LIVEUP~1\LUCOMS~1.exe (LiveUpdate) . (.Symantec Corporation.) - C:\Program Files (x86)\Symantec\LiveUpdate\LuComServer_3_3.exe
SS - | Demand 29/03/2014 119408 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SS - | Demand 04/03/2011 621632 | (RaMediaServer) . (...) - C:\Program Files (x86)\Tenda\Common\RaMediaServer.exe
SS - | Auto 23/10/2013 172192 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SS - | Demand 14/04/2014 14407384 | (VMwareHostd) . (...) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe =>.VMware, Inc
SS - | Demand 10/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
SS - | Demand 22/08/2013 37768 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 18/07/2013 1142584 | (AcrSch2Svc) . (.Acronis.) - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
SR - | Auto 18/04/2014 3873784 | (afcdpsrv) . (.Acronis.) - C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
SR - | Auto 13/12/2013 239616 | (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe
SR - | Auto 06/08/2012 361984 | (AMD FUEL Service) . (.Advanced Micro Devices, Inc..) - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
SR - | Auto 13/12/2012 12288 | (Autodesk Content Service) . (.Autodesk, Inc..) - C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
SR - | Auto 12/11/2013 230920 | (NitroDriverReadSpool9) . (.Nitro PDF Software.) - C:\Program Files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe
SR - | Auto 12/11/2013 69640 | (nlsX86cc) . (.Nalpeiron Ltd..) - C:\Windows\SysWOW64\NLSSRV32.exe
SR - | Auto 31/03/2011 375872 | (RalinkRegistryWriter) . (.Ralink Technology, Corp..) - C:\Program Files (x86)\Tenda\Common\RaRegistry.exe
SR - | Auto 31/03/2011 454208 | (RalinkRegistryWriter64) . (.Ralink Technology, Corp..) - C:\Program Files (x86)\Tenda\Common\RaRegistry64.exe
SR - | Auto 15/10/2013 3921880 | (SDScannerService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
SR - | Auto 20/09/2013 1042272 | (SDUpdateService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
SR - | Auto 13/09/2013 171416 | (SDWSCService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
SR - | Auto 24/04/2013 6287176 | (Symantec System Recovery) . (.Symantec Corporation.) - C:\Program Files\Symantec\Symantec System Recovery\Agent\VProSvc.exe
SR - | Demand 24/04/2013 2976736 | (SymTrackService) . (.Symantec.) - C:\Program Files\Symantec\Symantec System Recovery\Shared\Drivers\Service\SymTrackServicex64.exe
SR - | Auto 04/02/2014 7142320 | (syncagentsrv) . (.Acronis.) - C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
SR - | Auto 17/02/2014 4915040 | (TeamViewer9) . (.TeamViewer GmbH.) - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
SR - | Auto 14/08/2012 27792 | (VIAKaraokeService) . (.VIA Technologies, Inc..) - C:\Windows\System32\viakaraokesrv.exe
SR - | Auto 14/04/2014 86744 | (VMAuthdService) . (.VMware, Inc..) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe =>.VMware, Inc
SR - | Auto 10/07/1658 0 | (VMnetDHCP) . (.VMware, Inc..) - C:\Windows\system32\vmnetdhcp.exe
SR - | Auto 27/02/2014 906432 | (VMUSBArbService) . (.VMware, Inc..) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
SR - | Auto 10/07/1658 0 | (VMware NAT Service) . (.VMware, Inc..) - C:\Windows\system32\vmnat.exe
SR - | Auto 09/04/2013 479824 | (vmware-converter-agent) . (.VMware, Inc..) - C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter-a.exe
SR - | Auto 09/04/2013 479824 | (vmware-converter-server) . (.VMware, Inc..) - C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe
SR - | Auto 09/04/2013 479824 | (vmware-converter-worker) . (.VMware, Inc..) - C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe
SR - | Demand 10/07/1658 0 | (WdNisSvc) . (...) - C:\Program Files (x86)\Windows Defender\NisSrv.exe
SR - | Auto 10/07/1658 0 | (WinDefend) . (...) - C:\Program Files (x86)\Windows Defender\MsMpEng.exe
~ Services: Scanned in 00mn 10s



---\\ Scâner Aditional (088)
Database Version : 13045 - (26/04/2014)
Clés trouvées (Keys found) : 1
Valeurs trouvées (Values found) : 2
Dossiers trouvés (Folders found) : 1
Fichiers trouvés (Files found) : 0

[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\KMSpico_is1] =>PUP.KMSpico^
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico =>PUP.KMSpico
~ Additionnel Scan: 383758 Items scanned in 00mn 37s



---\\ Sumário das deteções encontradas na sua estação
[Você precisa estar registrado e conectado para ver este link.] =>PUP.KMSpico
~ MSI: 1 link(s) detected in 00mn 00s



~ 817 Legitimates filtered by white list
End of the scan (489 lines in 01mn 44s)(0)
avatar
vbm
Iniciante
Iniciante

Mensagens : 20
Reputação : 0
Data de inscrição : 27/04/2014

Voltar ao Topo Ir em baixo

Re: Não consigo instalar o malwarebytes

Mensagem por Power Max em Dom 27 Abr 2014, 13:12

  Há programas desnecessários iniciando junto com o Windows, o que torna o seu PC mais lento. Para corrigir isto, siga as dicas deste tutorial:

[Você precisa estar registrado e conectado para ver este link.]

De preferência deixe apenas os programas de segurança (anti-vírus/anti-spywares/firewall) iniciarem junto com o Windows.

Use também o programa Ccleaner, indicado neste tutorial acima, para fazer uma limpeza e otimização do PC agora e de tempos em tempos.
_______________________________________________________________________________________________________

 Selecione e copie todo o texto destacado em vermelho que te passei.
_____________________________________________________________________________________________________________

 Vá no menu: Iniciar > Todos os programas > ZHP > Clique com o botão direito do mouse sobre o Zhpfix e escolha a opção de Executar como administrador > Clique em Importação > Clique no botão GO > Clique em Oui > Caso queira que os arquivos da lixeira sejam excluídos clique em Oui novamente > Um relatório aparecerá no bloco de notas.

Copie este relatório e poste em sua próxima resposta.


Última edição por Power Max em Dom 27 Abr 2014, 14:24, editado 1 vez(es)

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Você precisa estar registrado e conectado para ver este link.] = O melhor da internet você encontra aqui.

[Você precisa estar registrado e conectado para ver este link.] = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: Não consigo instalar o malwarebytes

Mensagem por vbm em Dom 27 Abr 2014, 14:09

Segue relatório.

Rapport de ZHPFix 2014.4.13.3 par Nicolas Coolman, Update du 13/04/2014
Fichier d'export Registre :
Run by Vittorio at 27/04/2014 14:08:41
High Elevated Privileges : OK
Windows 8 Business Edition, 64-bit Service Pack 1 (9600)

Reciclagem vazia (00mn 03s)

========== Pastas ==========
Nenhuma pasta CLSID local utilizador vazia

========== Ficheiros ==========
ELIMINÉ Temporários windows (42) (3.760.589 octets)
ELIMINÉ Flash Cookies (0) (0 octets)


========== Recapitulativo ==========
1 : Pastas
2 : Ficheiros


End of clean in 00mn 05s

========== Caminho do ficheiro do relatório ==========
C:\Users\Vittorio\AppData\Roaming\ZHP\ZHPFix[R1].txt - 27/04/2014 12:36:05 [1604]
C:\Users\Vittorio\AppData\Roaming\ZHP\ZHPFix[R2].txt - 27/04/2014 14:08:45 [705]
avatar
vbm
Iniciante
Iniciante

Mensagens : 20
Reputação : 0
Data de inscrição : 27/04/2014

Voltar ao Topo Ir em baixo

Re: Não consigo instalar o malwarebytes

Mensagem por Power Max em Dom 27 Abr 2014, 14:23

Baixe o programa Adwcleaner clicando no link abaixo e depois clique no botão Download Now @BleepingComputer:
[Você precisa estar registrado e conectado para ver este link.]

Para executar corretamente o AdwCleaner é só seguir as dicas deste tutorial:

[Você precisa estar registrado e conectado para ver este link.]

* Na sua próxima resposta poste o log (relatório) do Adwcleaner que estará em C:\AdwCleaner\AdwCleaner[S0].txt

Ficamos na espera.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Você precisa estar registrado e conectado para ver este link.] = O melhor da internet você encontra aqui.

[Você precisa estar registrado e conectado para ver este link.] = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: Não consigo instalar o malwarebytes

Mensagem por vbm em Dom 27 Abr 2014, 14:49

Feito.
Segue relatório.

# AdwCleaner v3.204 - Relatório criado 27/04/2014 às 14:45:01
# Atualizado 26/04/2014 por Xplode
# Sistema Operacional : Windows 8.1 Pro (64 bits)
# Usuário : Vittorio - VBM
# Executando de : C:\Users\Vittorio\Desktop\adwcleaner.exe
# Opção : Limpar

***** [ Serviços ] *****


***** [ Arquivos / Pastas ] *****

Pasta Deletada : C:\Users\Administrador\AppData\Local\torch
Pasta Deletada : C:\Users\Convidado\AppData\Local\torch
Pasta Deletada : C:\Users\___VMware_Conv_SA___\AppData\Local\torch
Pasta Deletada : C:\Users\Vittorio\AppData\Roaming\Mozilla\Firefox\Profiles\d946c69k.default\Extensions\l7tq_rf@rzciai-.org
Pasta Deletada : C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\biehojlpdieefhdfodleadnkbpkgookg
Pasta Deletada : C:\Users\Convidado\AppData\Local\Google\Chrome\User Data\Default\Extensions\biehojlpdieefhdfodleadnkbpkgookg
Pasta Deletada : C:\Users\___VMware_Conv_SA___\AppData\Local\Google\Chrome\User Data\Default\Extensions\biehojlpdieefhdfodleadnkbpkgookg
Pasta Deletada : C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\lopahoajhkhbjpkoajmgabkokdhlofoc
Pasta Deletada : C:\Users\Convidado\AppData\Local\Google\Chrome\User Data\Default\Extensions\lopahoajhkhbjpkoajmgabkokdhlofoc
Pasta Deletada : C:\Users\___VMware_Conv_SA___\AppData\Local\Google\Chrome\User Data\Default\Extensions\lopahoajhkhbjpkoajmgabkokdhlofoc

***** [ Atalhos ] *****


***** [ Registro ] *****


***** [ Navegadores ] *****

-\\ Internet Explorer v11.0.9600.16518


-\\ Mozilla Firefox v28.0 (pt-BR)

[ Arquivo : C:\Users\Vittorio\AppData\Roaming\Mozilla\Firefox\Profiles\d946c69k.default\prefs.js ]

Linha deletada : user_pref("extensions.BtyJa.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"immediate-support.com\")>-1||url.indexOf(\"txtl[...]
Linha deletada : user_pref("extensions.U2gNbsEjXIK.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"immediate-support.com\")>-1||url.indexOf([...]
Linha deletada : user_pref("extensions.l_FzWlR.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1||url.indexOf(\"immediate-support.com\")>-1||url.indexOf(\"tx[...]

-\\ Google Chrome v34.0.1847.116

[ Arquivo : C:\Users\Vittorio\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deletedo [Extension] : biehojlpdieefhdfodleadnkbpkgookg
Deletedo [Extension] : lopahoajhkhbjpkoajmgabkokdhlofoc

*************************

AdwCleaner[R0].txt - [7648 octets] - [26/04/2014 15:58:24]
AdwCleaner[R1].txt - [2944 octets] - [27/04/2014 14:43:28]
AdwCleaner[S0].txt - [7146 octets] - [26/04/2014 16:00:19]
AdwCleaner[S1].txt - [2832 octets] - [27/04/2014 14:45:01]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [2892 octets] ##########
avatar
vbm
Iniciante
Iniciante

Mensagens : 20
Reputação : 0
Data de inscrição : 27/04/2014

Voltar ao Topo Ir em baixo

Re: Não consigo instalar o malwarebytes

Mensagem por Power Max em Dom 27 Abr 2014, 14:50

Baixe o programa Junkware Removal Tool no link abaixo:
[Você precisa estar registrado e conectado para ver este link.]

Para executar corretamente o programa acima é só seguir as dicas deste tutorial:

[Você precisa estar registrado e conectado para ver este link.]

* Na sua próxima resposta poste o log (relatório) do Junkware Removal Tool que estará salvo em sua área de trabalho com o nome de JRT.txt

Ficamos na espera.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Você precisa estar registrado e conectado para ver este link.] = O melhor da internet você encontra aqui.

[Você precisa estar registrado e conectado para ver este link.] = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: Não consigo instalar o malwarebytes

Mensagem por vbm em Dom 27 Abr 2014, 15:18

Baixei o JRT.exe e dá a mensagem: "Este aplicativo não pode ser executado em seu PC"
avatar
vbm
Iniciante
Iniciante

Mensagens : 20
Reputação : 0
Data de inscrição : 27/04/2014

Voltar ao Topo Ir em baixo

Re: Não consigo instalar o malwarebytes

Mensagem por Power Max em Dom 27 Abr 2014, 15:19

Desative temporariamente seu antivírus para evitar conflitos.

* Acesse este link abaixo e clique no primeiro botão da esquerda que é o botão Download Zoek.exe:
[Você precisa estar registrado e conectado para ver este link.]

Para executá-lo corretamente siga as dicas deste tutorial:

[Você precisa estar registrado e conectado para ver este link.]

* Assim que ele concluir a limpeza dos problemas acesse o log (relatório) do Zoek que estará em C:\zoek-results.txt e copie todo seu conteúdo e poste em sua próxima resposta.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Você precisa estar registrado e conectado para ver este link.] = O melhor da internet você encontra aqui.

[Você precisa estar registrado e conectado para ver este link.] = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: Não consigo instalar o malwarebytes

Mensagem por vbm em Dom 27 Abr 2014, 18:19

Feito:
Relatório


Zoek.exe v5.0.0.0 Updated 14-April-2014
Tool run by Vittorio on 27/04/2014 at 17:56:19,51.
Microsoft Windows 8.1 Pro 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Vittorio\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

27/04/2014 17:58:04 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\Vittorio\AppData\Roaming\Mozilla\Firefox\Profiles\d946c69k.default\prefs.js:

Added to C:\Users\Vittorio\AppData\Roaming\Mozilla\Firefox\Profiles\d946c69k.default\prefs.js:

ProfilePath: C:\Users\Vittorio\AppData\Roaming\Mozilla\Firefox\Profiles\d946c69k.default

user.js not found
---- FireFox user.js and prefs.js backups ----

prefs_042014_1807_.backup

==== Deleting Files \ Folders ======================

C:\Users\Vittorio\AppData\LocalLow\{6BC11CBD-9685-8540-B1B2-6FA0D8E29A28} deleted
C:\Users\Vittorio\AppData\LocalLow\{8D0D5F59-AB63-5F81-C925-F85711755BC2} deleted
C:\Users\Vittorio\AppData\LocalLow\{AD95A9C9-7D30-FC17-727C-4E5DCD69855A} deleted
C:\Users\Vittorio\AppData\Local\Packages\windows_ie_ac_001\AC\{6BC11CBD-9685-8540-B1B2-6FA0D8E29A28} deleted
C:\Users\Vittorio\AppData\Local\Packages\windows_ie_ac_001\AC\{8D0D5F59-AB63-5F81-C925-F85711755BC2} deleted
C:\Users\Vittorio\AppData\Local\Packages\windows_ie_ac_001\AC\{AD95A9C9-7D30-FC17-727C-4E5DCD69855A} deleted
C:\Users\Vittorio\AppData\Roaming\AlawarEntertainment deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\Vittorio\AppData\Local\cache deleted
C:\Users\Vittorio\AppData\Roaming\Mozilla\Firefox\Profiles\d946c69k.default\extensions\tgbti9udt@xbqyuoe-.co.uk deleted
"C:\Users\Vittorio\AppData\Local\RT2870_{2833E75E-D28A-4E82-AED7-655B924C3EC4}_prof" deleted
"C:\Users\Vittorio\AppData\Local\RT2870_{2833E75E-D28A-4E82-AED7-655B924C3EC4}_sta" deleted
"C:\Users\Vittorio\AppData\Local\RT2870_{2833E75E-D28A-4E82-AED7-655B924C3EC4}_wsc" deleted
"C:\Users\Vittorio\AppData\Local\RT2870_{F0FFC5DB-41E9-43FE-9A44-94954BB7004E}_prof" deleted
"C:\Users\Vittorio\AppData\Local\RT2870_{F0FFC5DB-41E9-43FE-9A44-94954BB7004E}_sta" deleted
"C:\Users\Vittorio\AppData\Local\RT2870_{F0FFC5DB-41E9-43FE-9A44-94954BB7004E}_wsc" deleted
"C:\PROGRA~3\94a319e247fc8866\{4820778D-AB0D-6D18-C316-52A6A0E1D507}" deleted
"C:\PROGRA~3\94a319e247fc8866\{7DD5E91C-3864-77EC-7635-D14910C2A03E}" deleted
"C:\PROGRA~3\94a319e247fc8866\{7DD5E91C-3864-77EC-7635-D14910C2A03E}.old" deleted
"C:\PROGRA~3\94a319e247fc8866\{AD11DADE-C597-45D9-D8C5-1D2EB0B89613}" deleted
"C:\PROGRA~3\94a319e247fc8866\{C670DCAE-E392-AA32-6F42-143C7FC4BDFD}" deleted
"C:\PROGRA~3\boost_interprocess\20140427144626.484528\plex_frame_mutex" deleted
"C:\PROGRA~3\94a319e247fc8866" deleted
"C:\PROGRA~3\boost_interprocess" not deleted
"C:\PROGRA~3\boost_interprocess\20140427144626.484528" not deleted

==== Firefox Extensions ======================

ProfilePath: C:\Users\Vittorio\AppData\Roaming\Mozilla\Firefox\Profiles\d946c69k.default
- Social Fixer - %ProfilePath%\extensions\socialfixer@mattkruse.com.xpi
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Vittorio\AppData\Roaming\Mozilla\Firefox\Profiles\d946c69k.default
ABE2E50533899C45DFA03E1D8767648F - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_182.dll - Shockwave Flash


==== Chrome Look ======================

YoutubeAdblocker - Administrador\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\biehojlpdieefhdfodleadnkbpkgookg
SNT - Administrador\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dnpkbneffpaeojmjbicbfpoohhjjefio
Proxy SwitchySharp - Administrador\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dpplabbmogkhghncfbfdeeokoefdjegm
save uneet - Administrador\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\lopahoajhkhbjpkoajmgabkokdhlofoc
SNT - Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnpkbneffpaeojmjbicbfpoohhjjefio
Proxy SwitchySharp - Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpplabbmogkhghncfbfdeeokoefdjegm
YoutubeAdblocker - Administrador\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\biehojlpdieefhdfodleadnkbpkgookg
SNT - Administrador\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dnpkbneffpaeojmjbicbfpoohhjjefio
Proxy SwitchySharp - Administrador\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dpplabbmogkhghncfbfdeeokoefdjegm
save uneet - Administrador\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\lopahoajhkhbjpkoajmgabkokdhlofoc
YoutubeAdblocker - Convidado\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\biehojlpdieefhdfodleadnkbpkgookg
SNT - Convidado\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dnpkbneffpaeojmjbicbfpoohhjjefio
Proxy SwitchySharp - Convidado\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dpplabbmogkhghncfbfdeeokoefdjegm
save uneet - Convidado\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\lopahoajhkhbjpkoajmgabkokdhlofoc
SNT - Convidado\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnpkbneffpaeojmjbicbfpoohhjjefio
Proxy SwitchySharp - Convidado\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpplabbmogkhghncfbfdeeokoefdjegm
YoutubeAdblocker - Convidado\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\biehojlpdieefhdfodleadnkbpkgookg
SNT - Convidado\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dnpkbneffpaeojmjbicbfpoohhjjefio
Proxy SwitchySharp - Convidado\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dpplabbmogkhghncfbfdeeokoefdjegm
save uneet - Convidado\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\lopahoajhkhbjpkoajmgabkokdhlofoc
YoutubeAdblocker - Vittorio\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\biehojlpdieefhdfodleadnkbpkgookg
SNT - Vittorio\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dnpkbneffpaeojmjbicbfpoohhjjefio
Proxy SwitchySharp - Vittorio\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dpplabbmogkhghncfbfdeeokoefdjegm
save uneet - Vittorio\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\lopahoajhkhbjpkoajmgabkokdhlofoc
Word Search - Vittorio\AppData\Local\Google\Chrome\User Data\Default\Extensions\alcobafdkcddhiabfgnongafffchimnl
Google Docs - Vittorio\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Vittorio\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
Quizlet - Vittorio\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgofflgeghkhocbociocnckocbjmomjh
Snooker - Vittorio\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjohiacoelemalmancnccjggomjnkfod
YouTube - Vittorio\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Anti Anti Adblock - Vittorio\AppData\Local\Google\Chrome\User Data\Default\Extensions\cdhdgbmpjfehpkmbgnonnaclejpcepjm
Google Search - Vittorio\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
WGT Golf Challenge - Vittorio\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcilimldmomiaihcfkmaldanopfejefg
Hangman - Vittorio\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekpfaaakmnhcembbiennfjiaodandmhg
Classic for Facebook - Vittorio\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffdodpcdalagnkbkojidmmcehlnhniad
AdBlock - Vittorio\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
Halloween Mahjong - Vittorio\AppData\Local\Google\Chrome\User Data\Default\Extensions\ielpieklegnicibpoklcphmbonpbdknd
Desprotetor de Links - Vittorio\AppData\Local\Google\Chrome\User Data\Default\Extensions\imcbnnnoghiihopefblgehihofbfbmei
Power Zoom - Vittorio\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlioidldolgbmanndggdnldambdlglgj
Google Wallet - Vittorio\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Disable Anti-Adblock - Vittorio\AppData\Local\Google\Chrome\User Data\Default\Extensions\oimhabmdhenmcaligiilhadkdliolpah
Gmail - Vittorio\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
YoutubeAdblocker - Vittorio\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\biehojlpdieefhdfodleadnkbpkgookg
SNT - Vittorio\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dnpkbneffpaeojmjbicbfpoohhjjefio
Proxy SwitchySharp - Vittorio\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dpplabbmogkhghncfbfdeeokoefdjegm
save uneet - Vittorio\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\lopahoajhkhbjpkoajmgabkokdhlofoc
YoutubeAdblocker - ___VMware_Conv_SA___\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\biehojlpdieefhdfodleadnkbpkgookg
SNT - ___VMware_Conv_SA___\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dnpkbneffpaeojmjbicbfpoohhjjefio
Proxy SwitchySharp - ___VMware_Conv_SA___\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dpplabbmogkhghncfbfdeeokoefdjegm
save uneet - ___VMware_Conv_SA___\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\lopahoajhkhbjpkoajmgabkokdhlofoc
SNT - ___VMware_Conv_SA___\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnpkbneffpaeojmjbicbfpoohhjjefio
Proxy SwitchySharp - ___VMware_Conv_SA___\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpplabbmogkhghncfbfdeeokoefdjegm
YoutubeAdblocker - ___VMware_Conv_SA___\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\biehojlpdieefhdfodleadnkbpkgookg
SNT - ___VMware_Conv_SA___\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dnpkbneffpaeojmjbicbfpoohhjjefio
Proxy SwitchySharp - ___VMware_Conv_SA___\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dpplabbmogkhghncfbfdeeokoefdjegm
save uneet - ___VMware_Conv_SA___\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\lopahoajhkhbjpkoajmgabkokdhlofoc
YoutubeAdblocker - ___VMW~1\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\biehojlpdieefhdfodleadnkbpkgookg
SNT - ___VMW~1\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dnpkbneffpaeojmjbicbfpoohhjjefio
Proxy SwitchySharp - ___VMW~1\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dpplabbmogkhghncfbfdeeokoefdjegm
save uneet - ___VMW~1\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\lopahoajhkhbjpkoajmgabkokdhlofoc
SNT - ___VMW~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnpkbneffpaeojmjbicbfpoohhjjefio
Proxy SwitchySharp - ___VMW~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpplabbmogkhghncfbfdeeokoefdjegm
YoutubeAdblocker - ___VMW~1\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\biehojlpdieefhdfodleadnkbpkgookg
SNT - ___VMW~1\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dnpkbneffpaeojmjbicbfpoohhjjefio
Proxy SwitchySharp - ___VMW~1\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dpplabbmogkhghncfbfdeeokoefdjegm
save uneet - ___VMW~1\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\lopahoajhkhbjpkoajmgabkokdhlofoc

==== Chrome Fix ======================

C:\Users\Vittorio\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_panda-cloud-antivirus.softonic.com.br_0.localstorage deleted successfully
C:\Users\Vittorio\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_panda-cloud-antivirus.softonic.com.br_0.localstorage-journal deleted successfully
C:\Users\Administrador\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\biehojlpdieefhdfodleadnkbpkgookg deleted successfully
C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\biehojlpdieefhdfodleadnkbpkgookg deleted successfully
C:\Users\Administrador\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\biehojlpdieefhdfodleadnkbpkgookg deleted successfully
C:\Users\Convidado\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\biehojlpdieefhdfodleadnkbpkgookg deleted successfully
C:\Users\Convidado\AppData\Local\Google\Chrome\User Data\Default\Extensions\biehojlpdieefhdfodleadnkbpkgookg deleted successfully
C:\Users\Convidado\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\biehojlpdieefhdfodleadnkbpkgookg deleted successfully
C:\Users\Vittorio\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\biehojlpdieefhdfodleadnkbpkgookg deleted successfully
C:\Users\Vittorio\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\biehojlpdieefhdfodleadnkbpkgookg deleted successfully
C:\Users\___VMware_Conv_SA___\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\biehojlpdieefhdfodleadnkbpkgookg deleted successfully
C:\Users\___VMware_Conv_SA___\AppData\Local\Google\Chrome\User Data\Default\Extensions\biehojlpdieefhdfodleadnkbpkgookg deleted successfully
C:\Users\___VMware_Conv_SA___\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\biehojlpdieefhdfodleadnkbpkgookg deleted successfully
C:\Users\Administrador\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dnpkbneffpaeojmjbicbfpoohhjjefio deleted successfully
C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnpkbneffpaeojmjbicbfpoohhjjefio deleted successfully
C:\Users\Administrador\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dnpkbneffpaeojmjbicbfpoohhjjefio deleted successfully
C:\Users\Convidado\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dnpkbneffpaeojmjbicbfpoohhjjefio deleted successfully
C:\Users\Convidado\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnpkbneffpaeojmjbicbfpoohhjjefio deleted successfully
C:\Users\Convidado\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dnpkbneffpaeojmjbicbfpoohhjjefio deleted successfully
C:\Users\Vittorio\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dnpkbneffpaeojmjbicbfpoohhjjefio deleted successfully
C:\Users\Vittorio\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dnpkbneffpaeojmjbicbfpoohhjjefio deleted successfully
C:\Users\___VMware_Conv_SA___\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dnpkbneffpaeojmjbicbfpoohhjjefio deleted successfully
C:\Users\___VMware_Conv_SA___\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnpkbneffpaeojmjbicbfpoohhjjefio deleted successfully
C:\Users\___VMware_Conv_SA___\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dnpkbneffpaeojmjbicbfpoohhjjefio deleted successfully
C:\Users\Administrador\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dpplabbmogkhghncfbfdeeokoefdjegm deleted successfully
C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpplabbmogkhghncfbfdeeokoefdjegm deleted successfully
C:\Users\Administrador\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dpplabbmogkhghncfbfdeeokoefdjegm deleted successfully
C:\Users\Convidado\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dpplabbmogkhghncfbfdeeokoefdjegm deleted successfully
C:\Users\Convidado\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpplabbmogkhghncfbfdeeokoefdjegm deleted successfully
C:\Users\Convidado\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dpplabbmogkhghncfbfdeeokoefdjegm deleted successfully
C:\Users\Vittorio\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dpplabbmogkhghncfbfdeeokoefdjegm deleted successfully
C:\Users\Vittorio\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dpplabbmogkhghncfbfdeeokoefdjegm deleted successfully
C:\Users\___VMware_Conv_SA___\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dpplabbmogkhghncfbfdeeokoefdjegm deleted successfully
C:\Users\___VMware_Conv_SA___\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpplabbmogkhghncfbfdeeokoefdjegm deleted successfully
C:\Users\___VMware_Conv_SA___\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\dpplabbmogkhghncfbfdeeokoefdjegm deleted successfully
C:\Users\Administrador\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\lopahoajhkhbjpkoajmgabkokdhlofoc deleted successfully
C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\lopahoajhkhbjpkoajmgabkokdhlofoc deleted successfully
C:\Users\Administrador\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\lopahoajhkhbjpkoajmgabkokdhlofoc deleted successfully
C:\Users\Convidado\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\lopahoajhkhbjpkoajmgabkokdhlofoc deleted successfully
C:\Users\Convidado\AppData\Local\Google\Chrome\User Data\Default\Extensions\lopahoajhkhbjpkoajmgabkokdhlofoc deleted successfully
C:\Users\Convidado\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\lopahoajhkhbjpkoajmgabkokdhlofoc deleted successfully
C:\Users\Vittorio\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\lopahoajhkhbjpkoajmgabkokdhlofoc deleted successfully
C:\Users\Vittorio\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\lopahoajhkhbjpkoajmgabkokdhlofoc deleted successfully
C:\Users\___VMware_Conv_SA___\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\lopahoajhkhbjpkoajmgabkokdhlofoc deleted successfully
C:\Users\___VMware_Conv_SA___\AppData\Local\Google\Chrome\User Data\Default\Extensions\lopahoajhkhbjpkoajmgabkokdhlofoc deleted successfully
C:\Users\___VMware_Conv_SA___\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\lopahoajhkhbjpkoajmgabkokdhlofoc deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Reset Google Chrome ======================

C:\Users\Vittorio\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Vittorio\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== shortcuts on Users Desktops ======================

C:\Users\Vittorio\Desktop\2 Tasty Too lamour a Paris Update .lnk - C:\Program Files (x86)\2 Tasty Too lamour a Paris Update\2TastyToo.exe
C:\Users\Vittorio\Desktop\Aztec Bricks.lnk - C:\Program Files (x86)\Aztec Bricks\Aztec Bricks.exe
C:\Users\Vittorio\Desktop\biostery.com WebDisk.lnk - \\biostery.com@2077\DavWWWRoot
C:\Users\Vittorio\Desktop\calc274.exe - Atalho.lnk - C:\Calculadora Inteligente\calc274.exe
C:\Users\Vittorio\Desktop\Clownfish Aquarium.lnk - C:\Program Files (x86)\Sim Aquarium 3\Sim Aquarium 3.exe -yanemone
C:\Users\Vittorio\Desktop\CoffeeCup Web Form Builder.lnk - C:\Program Files (x86)\CoffeeCup Software\CoffeeCup Web Form Builder\FormWizard.exe
C:\Users\Vittorio\Desktop\Demigods.lnk - C:\Program Files (x86)\Demigods\Demigods.exe
C:\Users\Vittorio\Desktop\Disharmony Blocks 2.lnk - C:\Program Files (x86)\Disharmony Blocks 2\Disharmony Blocks II.exe
C:\Users\Vittorio\Desktop\Downloads em D Atalho.lnk - D:\Downloads
C:\Users\Vittorio\Desktop\Easy GIF Animator.lnk - C:\Program Files (x86)\Easy GIF Animator\gifan.exe
C:\Users\Vittorio\Desktop\Fairway Solitaire - Tee to Play.lnk - C:\Program Files (x86)\Fairway Solitaire - Tee to Play\Fairway Solitaire Tee to Play.exe
C:\Users\Vittorio\Desktop\Fill and Cross Pirate Riddles.lnk - C:\Program Files (x86)\Fill and Cross Pirate Riddles\Fill and Cross-Pirate Riddles.exe
C:\Users\Vittorio\Desktop\Guitar Pro 5.lnk - C:\Program Files (x86)\Guitar Pro 5\GP5.exe
C:\Users\Vittorio\Desktop\Hoyle Illusions- Mahjongg.lnk - C:\Program Files (x86)\Hoyle Illusions- Mahjongg\Hoyle Illusions.exe
C:\Users\Vittorio\Desktop\LiveSuit.exe.lnk - D:\Downloads\GT_8230_rom\LiveSuit\LiveSuit.exe
C:\Users\Vittorio\Desktop\Mahjong Carnaval.lnk - C:\Program Files (x86)\Carnaval Mahjong\Mahjong Carnaval.exe
C:\Users\Vittorio\Desktop\Mahjong Epic 2.lnk - C:\Program Files (x86)\Foxy Games\Mahjong Epic 2\Mahjong Epic 2.EXE
C:\Users\Vittorio\Desktop\MPC-HC x64.lnk - C:\Program Files\MPC-HC\mpc-hc64.exe
C:\Users\Vittorio\Desktop\NorthernTale3.exe - Atalho.lnk - D:\Downloads\Northern Tale 3\NorthernTale3.exe
C:\Users\Vittorio\Desktop\phpDesigner 7.lnk - C:\Program Files (x86)\phpDesigner 7\phpDesigner.exe
C:\Users\Vittorio\Desktop\Resource Hacker.lnk - C:\Program Files (x86)\Resource Hacker\ResHacker.exe
C:\Users\Vittorio\Desktop\Riddles of The Mask.lnk - C:\Program Files (x86)\Riddles of The Mask\Riddle of the mask.exe
C:\Users\Vittorio\Desktop\Royal Envoy 3 CE.lnk - C:\Program Files (x86)\Royal Envoy 3 CE\Royal Envoy 3.exe
C:\Users\Vittorio\Desktop\Rush for Gold 2- California.lnk - C:\Program Files (x86)\Rush for Gold 2- California\Gold_Rush_California.exe
C:\Users\Vittorio\Desktop\Sim Aquarium 3.lnk - C:\Program Files (x86)\Sim Aquarium 3\Sim Aquarium 3.exe
C:\Users\Vittorio\Desktop\Skype.exe - secundario.lnk - C:\Program Files (x86)\Skype\Phone\Skype.exe /secondary
C:\Users\Vittorio\Desktop\Sparkle Unleashed.lnk - C:\Program Files (x86)\Sparkle Unleashed\SparkleUnleashed.exe
C:\Users\Vittorio\Desktop\Strike Solitaire 2 Seaside Season.lnk - C:\Program Files (x86)\Strike Solitaire 2 Seaside Season\Strike Solitaire 2 Seaside Season.exe
C:\Users\Vittorio\Desktop\Subtitle Workshop.lnk - C:\Program Files (x86)\Subtitle Workshop\SubtitleWorkshop.exe
C:\Users\Vittorio\Desktop\The Adventures of Perseus.lnk - C:\Program Files (x86)\The Adventures of Perseus\Perseus.exe
C:\Users\Vittorio\Desktop\The Beardless Wizard.lnk - C:\Program Files (x86)\The Beardless Wizard\TheBeardlessWizard.exe
C:\Users\Vittorio\Desktop\TimeAdjuster.lnk - C:\Program Files (x86)\TimeAdjuster\time_adjuster.exe
C:\Users\Vittorio\Desktop\UltraISO.lnk - C:\Program Files (x86)\UltraISO\UltraISO.exe
C:\Users\Vittorio\Desktop\Viking Saga 2 - New World.lnk - C:\Program Files (x86)\Viking Saga 2- New World\Viking Saga 2 - New World.exe
C:\Users\Vittorio\Desktop\Where Are My Pipes.lnk - C:\Program Files (x86)\Where Are My Pipes\Where Are My Pipes.exe
C:\Users\Vittorio\Desktop\ZHPDiag.lnk - C:\Program Files (x86)\ZHPDiag\ZHPhep.exe
C:\Users\Vittorio\Desktop\ZHPFix.lnk - C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPhep.exe
C:\Users\Vittorio\Desktop\µTorrent.lnk -

==== shortcuts on All Users Desktop ======================

C:\Users\Public\Desktop\Acronis True Image 2014.lnk - C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageLauncher.exe
C:\Users\Public\Desktop\AutoCAD 2014 - English.lnk - C:\Program Files (x86)\Autodesk\AutoCAD 2014\acad.exe /product ACAD /language "en-US"
C:\Users\Public\Desktop\Autodesk 360.lnk - C:\Program Files (x86)\Autodesk\Autodesk Sync\AdSync.exe /browseLocal
C:\Users\Public\Desktop\Autodesk ReCap.lnk - C:\Program Files (x86)\Autodesk\Autodesk ReCap\recap.exe
C:\Users\Public\Desktop\COLOGA.lnk - C:\Program Files (x86)\COLOGA\Cologa.exe
C:\Users\Public\Desktop\FileRestore Professional.lnk - C:\Program Files (x86)\PC Recovery\FileRestore Professional\File Restore.exe
C:\Users\Public\Desktop\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Public\Desktop\HD VDeck.lnk - C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
C:\Users\Public\Desktop\Immunet 3.lnk - C:\Program Files\Immunet\3.1.8\iptray.exe -f
C:\Users\Public\Desktop\Intel WiDi Remote.lnk - C:\Windows\Installer\{9C81F3D4-425F-4198-8F94-7F3A676349AC}\icon.ico
C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
C:\Users\Public\Desktop\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Users\Public\Desktop\NASCAR '14.lnk - C:\Program Files (x86)\NASCAR '14\bin\NASCAR14.exe
C:\Users\Public\Desktop\Nitro Pro 9.lnk - C:\Program Files (x86)\Nitro\Pro 9\NitroPDF.exe
C:\Users\Public\Desktop\Opera.lnk - C:\Program Files (x86)\Opera\launcher.exe
C:\Users\Public\Desktop\Oracle VM VirtualBox.lnk - C:\Program Files (x86)\Oracle\VirtualBox\VirtualBox.exe
C:\Users\Public\Desktop\Panda Cloud Cleaner.lnk - C:\Program Files (x86)\Panda Security\Panda Cloud Cleaner\PCloudCleaner.exe
C:\Users\Public\Desktop\Roadkil's Unstoppable Copier.lnk - C:\Program Files (x86)\Roadkil.Net\UnstopCpy_5_2_Win2K_UP.exe
C:\Users\Public\Desktop\Skype.lnk - C:\Windows\Installer\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}\SkypeIcon.exe
C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe
C:\Users\Public\Desktop\StarWind V2V Image Converter.lnk - C:\Program Files (x86)\StarWind Software\StarWind V2V Image Converter\StarV2V.exe
C:\Users\Public\Desktop\TeamViewer 9.lnk - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
C:\Users\Public\Desktop\Tenda Wireless Utility.lnk - C:\Program Files (x86)\Tenda\Common\RAUI.exe
C:\Users\Public\Desktop\VMware vCenter Converter Standalone Client.lnk - C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\converter.exe
C:\Users\Public\Desktop\VMware Workstation.lnk - C:\Program Files (x86)\VMware\VMware Workstation\vmware.exe
C:\Users\Public\Desktop\WinZip.lnk - C:\Program Files (x86)\WinZip\WINZIP32.EXE
C:\Users\Public\Desktop\Xara Web Designer 7 Premium.lnk - C:\Program Files (x86)\Xara\Xara Web Designer 7 Premium\WebDesigner.exe
C:\Users\Public\Desktop\Xara Web Designer 9 Premium.lnk - C:\Program Files (x86)\Xara\Xara Web Designer 9 Premium\WebDesigner.exe
C:\Users\Public\Desktop\XFast USB.LNK - C:\Program Files (x86)\XFastUSB\XFastUsb.exe

==== shortcuts in Users Start Menu ======================

C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lixeira.lnk -
C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\2 Tasty Too lamour a Paris Update\2 Tasty Too lamour a Paris Update .lnk - C:\Program Files (x86)\2 Tasty Too lamour a Paris Update\2TastyToo.exe
C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\2 Tasty Too lamour a Paris Update\Uninstall 2 Tasty Too lamour a Paris Update.lnk - C:\Program Files (x86)\2 Tasty Too lamour a Paris Update\uninstall.exe "/U:C:\Program Files (x86)\2 Tasty Too lamour a Paris Update\Uninstall\uninstall.xml"
C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aztec Bricks\Aztec Bricks.lnk - C:\Program Files (x86)\Aztec Bricks\Aztec Bricks.exe
C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aztec Bricks\Language.lnk - C:\Program Files (x86)\Aztec Bricks\Language.exe
C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aztec Bricks\Uninstall Aztec Bricks.lnk - C:\Windows\Aztec Bricks\uninstall.exe "/U:C:\Program Files (x86)\Aztec Bricks\Uninstall\uninstall.xml"
C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Carnaval Mahjong\Mahjong Carnaval.lnk - C:\Program Files (x86)\Carnaval Mahjong\Mahjong Carnaval.exe
C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Carnaval Mahjong\Microsoft(R) DirectX for Windows(R).lnk - C:\Program Files (x86)\Carnaval Mahjong\dxwebsetup.exe
C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Carnaval Mahjong\Uninstall Carnaval Mahjong.lnk - C:\Windows\Carnaval Mahjong\uninstall.exe "/U:C:\Program Files (x86)\Carnaval Mahjong\Uninstall\uninstall.xml"
C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Disharmony Blocks 2\Disharmony Blocks 2.lnk - C:\Program Files (x86)\Disharmony Blocks 2\Disharmony Blocks II.exe
C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Disharmony Blocks 2\OpenAL Installer.lnk - C:\Program Files (x86)\Disharmony Blocks 2\oalinst.exe
C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Disharmony Blocks 2\Uninstall Disharmony Blocks 2.lnk - C:\Windows\Disharmony Blocks 2\uninstall.exe "/U:C:\Program Files (x86)\Disharmony Blocks 2\Uninstall\uninstall.xml"
C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Riddles of The Mask\Riddles of The Mask.lnk - C:\Program Files (x86)\Riddles of The Mask\Riddle of the mask.exe
C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Riddles of The Mask\Uninstall Riddles of The Mask.lnk - C:\Windows\Riddles of The Mask\uninstall.exe "/U:C:\Program Files (x86)\Riddles of The Mask\Uninstall\uninstall.xml"
C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Royal Envoy 3 CE\7-Zip.lnk - C:\Program Files (x86)\Royal Envoy 3 CE\Base\7za.exe
C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Royal Envoy 3 CE\Royal Envoy 3 CE.lnk - C:\Program Files (x86)\Royal Envoy 3 CE\Royal Envoy 3.exe
C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Royal Envoy 3 CE\Uninstall Royal Envoy 3 CE.lnk - C:\Windows\Royal Envoy 3 CE\uninstall.exe "/U:C:\Program Files (x86)\Royal Envoy 3 CE\Uninstall\uninstall.xml"
C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rush for Gold 2- California\Rush for Gold 2- California.lnk - C:\Program Files (x86)\Rush for Gold 2- California\Gold_Rush_California.exe
C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rush for Gold 2- California\Uninstall Rush for Gold 2- California.lnk - C:\Windows\Rush for Gold 2- California\uninstall.exe "/U:C:\Program Files (x86)\Rush for Gold 2- California\Uninstall\uninstall.xml"
C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sparkle Unleashed\Sparkle Unleashed.lnk - C:\Program Files (x86)\Sparkle Unleashed\SparkleUnleashed.exe
C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sparkle Unleashed\Uninstall Sparkle Unleashed.lnk - C:\Windows\Sparkle Unleashed\uninstall.exe "/U:C:\Program Files (x86)\Sparkle Unleashed\Uninstall\uninstall.xml"
C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Subtitle Workshop\Subtitle Workshop.lnk - C:\Program Files (x86)\Subtitle Workshop\SubtitleWorkshop.exe
C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Subtitle Workshop\Uninstall Subtitle Workshop.lnk - C:\Program Files (x86)\Subtitle Workshop\uninstall.exe
C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Subtitle Workshop\Help\Manual (Bulgarian).lnk - C:\Program Files (x86)\Subtitle Workshop\Manual\ManualBG.html
C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Subtitle Workshop\Help\Manual (English).lnk - C:\Program Files (x86)\Subtitle Workshop\Manual\Manual.html
C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Subtitle Workshop\Help\Manual (Russian).lnk - C:\Program Files (x86)\Subtitle Workshop\Manual\ManualRUS.html
C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Adventures of Perseus\The Adventures of Perseus.lnk - C:\Program Files (x86)\The Adventures of Perseus\Perseus.exe
C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Adventures of Perseus\Uninstall The Adventures of Perseus.lnk - C:\Windows\The Adventures of Perseus\uninstall.exe "/U:C:\Program Files (x86)\The Adventures of Perseus\Uninstall\uninstall.xml"
C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Beardless Wizard\OpenAL Installer.lnk - C:\Program Files (x86)\The Beardless Wizard\oalinst.exe
C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Beardless Wizard\The Beardless Wizard.lnk - C:\Program Files (x86)\The Beardless Wizard\TheBeardlessWizard.exe
C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Beardless Wizard\Uninstall The Beardless Wizard.lnk - C:\Windows\The Beardless Wizard\uninstall.exe "/U:C:\Program Files (x86)\The Beardless Wizard\Uninstall\uninstall.xml"

==== shortcuts in All Users Start Menu ======================

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk - C:\Program Files (x86)\Opera\launcher.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AC3Filter\AC3Filter Config.lnk - C:\Program Files (x86)\AC3Filter\ac3config.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AC3Filter\Clear filter cache.lnk - C:\Program Files (x86)\AC3Filter\Clear filter cache.reg
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AC3Filter\License.lnk - C:\Program Files (x86)\AC3Filter\GPL.txt
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AC3Filter\Readme.lnk - C:\Program Files (x86)\AC3Filter\Readme.txt
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AC3Filter\Reset to defaults.lnk - C:\Program Files (x86)\AC3Filter\Reset to defaults.reg
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AC3Filter\Restore default presets.lnk - C:\Program Files (x86)\AC3Filter\Presets.reg
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AC3Filter\SPDIF test (32bit).lnk - C:\Program Files (x86)\AC3Filter\spdif_test.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AC3Filter\SPDIF test (64bit).lnk - C:\Program Files (x86)\AC3Filter\x64\spdif_test.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AC3Filter\Uninstall AC3Filter.lnk - C:\Program Files (x86)\AC3Filter\unins000.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AC3Filter\Documentation (eng)\AC3Filter & SPDIF.lnk - C:\Program Files (x86)\AC3Filter\doc\spdif_eng.pdf
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AC3Filter\Documentation (eng)\AC3Filter User's Manual.lnk - C:\Program Files (x86)\AC3Filter\doc\ac3filter_eng.pdf
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AC3Filter\Documentation (eng)\Loudness and dynamic range.lnk - C:\Program Files (x86)\AC3Filter\doc\loudness_eng.pdf
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AC3Filter\Documentation (rus)\AC3Filter & SPDIF.lnk - C:\Program Files (x86)\AC3Filter\doc\spdif_rud.pdf
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AC3Filter\Documentation (rus)\AC3Filter - Ðóêîâîäñòâî ïîëüçîâàòåëÿ.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AC3Filter\Documentation (rus)\Ãðîìêîñòü è äèíàìè÷åñêèé äèàïàçîí.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Acronis True Image 2014.lnk - C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageLauncher.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Acronis WinPE ISO Builder.lnk - C:\Program Files (x86)\Acronis\TrueImageHome\winpe_iso.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Check for updates.lnk - C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageLauncher.exe /check_updates
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Tools and Utilities\Acronis System Report.lnk - C:\Program Files (x86)\Acronis\TrueImageHome\SystemReport.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Tools and Utilities\Clone Disk.lnk - C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe /clone_disk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Tools and Utilities\Convert Acronis backup.lnk - C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe /convert_tib_to_vhd
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Tools and Utilities\Convert Windows backup.lnk - C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe /convert_vhd_to_tib
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Tools and Utilities\DriveCleanser.lnk - C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe /drive_cleanser
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Tools and Utilities\File Shredder.lnk - C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe /file_shredder
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Tools and Utilities\Mount Image.lnk - C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe /mount_image
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Tools and Utilities\System Clean-up.lnk - C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe /system_cleanup
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis\True Image\Tools and Utilities\Try&Decide.lnk - C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe /tnd_tool
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileRestore Professional\FileRestore Professional Help.lnk - C:\Program Files (x86)\PC Recovery\FileRestore Professional\userguide.chm
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileRestore Professional\FileRestore Professional.lnk - C:\Program Files (x86)\PC Recovery\FileRestore Professional\File Restore.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileRestore Professional\Uninstall FileRestore Professional.lnk - C:\Windows\SysWOW64\msiexec.exe /x {2E51AC08-F39A-4A99-A110-A28870941804}
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ICE ECC\ICE ECC Help.lnk - C:\Program Files (x86)\ICE ECC\ICEECC.chm
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ICE ECC\ICE ECC Website.lnk - C:\Program Files (x86)\ICE ECC\ICE ECC.url
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ICE ECC\ICE ECC.lnk - C:\Program Files (x86)\ICE ECC\ICEECC.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ICE ECC\Uninstall ICE ECC.lnk - C:\Program Files (x86)\ICE ECC\uninst.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immunet 3\Custom Signature Tool.lnk - C:\Program Files\Immunet\clamav\sigui.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immunet 3\Immunet 3 Help.lnk - URL
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immunet 3\Immunet 3.lnk - C:\Program Files\Immunet\3.1.8\iptray.exe -f
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immunet 3\Support Diagnostic Tool.lnk - C:\Program Files\Immunet\3.1.8\ipsupporttool.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Corporation\Intel WiDi Remote.lnk - C:\Windows\Installer\{9C81F3D4-425F-4198-8F94-7F3A676349AC}\icon.ico
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\About Java.lnk - C:\Program Files (x86)\Java\jre7\bin\javacpl.exe -tab about
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Check For Updates.lnk - C:\Program Files (x86)\Java\jre7\bin\javacpl.exe -tab update
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Configure Java.lnk - C:\Program Files (x86)\Java\jre7\bin\javacpl.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Get Help.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Visit Java.com.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Desinstalar Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\unins000.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware Help.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.chm
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware Notifications.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\chameleon.chm
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Enviar para o OneNote 2013.lnk - C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\joticon.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Excel 2013.lnk - C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\xlicons.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\OneDrive for Business 2013.lnk - C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\grv_icons.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\OneNote 2013.lnk - C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\joticon.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\PowerPoint 2013.lnk - C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\pptico.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Word 2013.lnk - C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\wordicon.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Ferramentas do Office 2013\Database Compare 2013.lnk - C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\dbcicons.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Ferramentas do Office 2013\Spreadsheet Compare 2013.lnk - C:\Windows\Installer\{90150000-0011-0000-1000-0000000FF1CE}\sscicons.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox\License (English).lnk - C:\Program Files (x86)\Oracle\VirtualBox\License_en_US.rtf
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox\Oracle VM VirtualBox.lnk - C:\Program Files (x86)\Oracle\VirtualBox\VirtualBox.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox\User manual (CHM, English).lnk - C:\Program Files (x86)\Oracle\VirtualBox\VirtualBox.chm
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox\User manual (PDF, English).lnk - C:\Program Files (x86)\Oracle\VirtualBox\doc\UserManual.pdf
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Security\Panda Cloud Cleaner\Panda Cloud Cleaner.lnk - C:\Program Files (x86)\Panda Security\Panda Cloud Cleaner\PCloudCleaner.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Security\Panda Cloud Cleaner\Uninstall Panda Cloud Cleaner.lnk - C:\Program Files (x86)\Panda Security\Panda Cloud Cleaner\unins000.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plex Media Server\Plex Media Server.lnk - C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Resource Hacker\Resource Hacker.lnk - C:\Program Files (x86)\Resource Hacker\ResHacker.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roadkil.Net\Roadkil's Unstoppable Copier.lnk - C:\Program Files (x86)\Roadkil.Net\UnstopCpy_5_2_Win2K_UP.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sim Aquarium 3\Sim Aquarium 3.lnk - C:\Program Files (x86)\Sim Aquarium 3\Sim Aquarium 3.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sim Aquarium 3\Uninstall Sim Aquarium.lnk - C:\Program Files (x86)\Sim Aquarium 3\unins000.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2\Create System Report.lnk - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDLogReport.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2\File Scan.lnk - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFiles.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2\Immunization.lnk - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2\Rootkit Scan.lnk - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDRootAlyzer.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2\Spybot-S&D Start Center.lnk - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2\System Scan.lnk - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2\Tray Icon (Live Protection).lnk - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2\Uninstall Spybot-S&D.lnk - C:\Program Files (x86)\Spybot - Search & Destroy 2\unins000.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarWind Software\StarWind V2V Image Converter\StarWind V2V Image Converter.lnk - C:\Program Files (x86)\StarWind Software\StarWind V2V Image Converter\StarV2V.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarWind Software\StarWind V2V Image Converter\Uninstall.lnk - C:\Program Files (x86)\StarWind Software\StarWind V2V Image Converter\unins000.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SubSync\SubSync.LNK - C:\Program Files (x86)\SubSync\SubSync.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SubSync\Subtitled Media Player.LNK - C:\Program Files (x86)\SubSync\DVlaD.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Symantec System Recovery\Ferramenta de Configuração de Segurança.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Symantec System Recovery\Granular Restore Option.lnk - C:\Program Files (x86)\Symantec\Symantec System Recovery\Console\GranularRestore_.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Symantec System Recovery\Guia do Usuário.lnk -
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Symantec System Recovery\Recovery Point Browser.lnk - C:\Program Files (x86)\Symantec\Symantec System Recovery\Browser\V2iBrowser.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Symantec System Recovery\Symantec System Recovery 2013.lnk - C:\Program Files (x86)\Symantec\Symantec System Recovery\Console\VProConsole_.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TimeAdjuster\Help.lnk - C:\Program Files (x86)\TimeAdjuster\HELP.HLP
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TimeAdjuster\README.lnk - C:\Program Files (x86)\TimeAdjuster\readme.txt
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TimeAdjuster\Time_adjuster.lnk - C:\Program Files (x86)\TimeAdjuster\time_adjuster.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TimeAdjuster\Uninstall.lnk - C:\Program Files (x86)\TimeAdjuster\Uninstall.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TimeAdjuster\FAQs\FAQ-Bulgarski.lnk - C:\Program Files (x86)\TimeAdjuster\FAQ-Bulgarski.doc
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TimeAdjuster\FAQs\FAQ-English.lnk - C:\Program Files (x86)\TimeAdjuster\FAQ-English.doc
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TimeAdjuster\FAQs\FAQ-Espanol.lnk - C:\Program Files (x86)\TimeAdjuster\FAQ-Espanol.doc
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TimeAdjuster\FAQs\FAQ-Estonian.lnk - C:\Program Files (x86)\TimeAdjuster\FAQ-Estonian.doc
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TimeAdjuster\FAQs\FAQ-French.lnk - C:\Program Files (x86)\TimeAdjuster\FAQ-French.doc
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TimeAdjuster\FAQs\FAQ-German.lnk - C:\Program Files (x86)\TimeAdjuster\FAQ-German.doc
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TimeAdjuster\FAQs\FAQ-GREEK.lnk - C:\Program Files (x86)\TimeAdjuster\FAQ-GREEK.doc
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TimeAdjuster\FAQs\FAQ-Hebrew.lnk - C:\Program Files (x86)\TimeAdjuster\FAQ-Hebrew.doc
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TimeAdjuster\FAQs\FAQ-Italian.lnk - C:\Program Files (x86)\TimeAdjuster\FAQ-Italian.doc
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TimeAdjuster\FAQs\FAQ-Polski.lnk - C:\Program Files (x86)\TimeAdjuster\FAQ-Polski.doc
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TimeAdjuster\FAQs\FAQ-Romana.lnk - C:\Program Files (x86)\TimeAdjuster\FAQ-Romana.doc
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TimeAdjuster\FAQs\FAQ-Slovenski.lnk - C:\Program Files (x86)\TimeAdjuster\FAQ-Slovenski.doc
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TimeAdjuster\FAQs\FAQ-Turksh.lnk - C:\Program Files (x86)\TimeAdjuster\FAQ-Turksh.doc
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TimeAdjuster\FAQs\GYIK-Magyar.lnk - C:\Program Files (x86)\TimeAdjuster\GYIK-Magyar.doc
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TimeAdjuster\FAQs\PMF-Catalan.lnk - C:\Program Files (x86)\TimeAdjuster\PMF-Catalan.doc
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware\Virtual Network Editor.lnk - C:\Program Files (x86)\VMware\VMware Workstation\vmnetcfg.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware\VMware Player.lnk - C:\Program Files (x86)\VMware\VMware Workstation\vmplayer.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware\VMware vCenter Converter Standalone Client.lnk - C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\converter.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware\VMware Workstation.lnk - C:\Program Files (x86)\VMware\VMware Workstation\vmware.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip\Help Manual.lnk - C:\Windows\hh.exe C:\PROGRA~2\WinZip\winzip.chm
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip\WinZip 12.0.lnk - C:\Program Files (x86)\WinZip\WINZIP32.EXE
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast USB\XFast USB.LNK - C:\Program Files (x86)\XFastUSB\XFastUsb.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP\ZHPDiag.lnk - C:\Program Files (x86)\ZHPDiag\ZHPhep.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP\ZHPFix.lnk - C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPhep.exe

==== shortcuts in Quick Launch ======================

C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\VMware Workstation.lnk - C:\Program Files (x86)\VMware\VMware Workstation\vmware.exe
C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\VMware Workstation.lnk - C:\Program Files (x86)\VMware\VMware Workstation\vmware.exe
C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\Vittorio\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\FileRestore Professional.lnk - C:\Program Files (x86)\PC Recovery\FileRestore Professional\File Restore.exe
C:\Users\Vittorio\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Vittorio\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Users\Vittorio\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Oracle VM VirtualBox.lnk - C:\Program Files (x86)\Oracle\VirtualBox\VirtualBox.exe
C:\Users\Vittorio\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\Vittorio\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Sim Aquarium 3.lnk - C:\Program Files (x86)\Sim Aquarium 3\Sim Aquarium 3.exe
C:\Users\Vittorio\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Subtitle Workshop.lnk - C:\Program Files (x86)\Subtitle Workshop\SubtitleWorkshop.exe
C:\Users\Vittorio\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
C:\Users\Vittorio\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk -
C:\Users\Vittorio\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk -
C:\Users\Vittorio\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Vittorio\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Users\Vittorio\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Users\Vittorio\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Opera.lnk - C:\Program Files (x86)\Opera\launcher.exe
C:\Users\USURIO~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
C:\Users\USURIO~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\VMware Workstation.lnk - C:\Program Files (x86)\VMware\VMware Workstation\vmware.exe
C:\Users\USURIO~1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -

==== Reset IE Proxy ======================

Value(s) before fix:
"ProxyOverride"="*.local"
"ProxyEnable"=dword:00000000

Value(s) after fix:
"ProxyEnable"=dword:00000000

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\aa0c6d13-e62e-4388-afd8-e3a2df5c2916 deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Vittorio\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Vittorio\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Vittorio\AppData\Local\Mozilla\Firefox\Profiles\d946c69k.default\Cache emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Vittorio\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=399 folders=144 77896172 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Vittorio\AppData\Local\Temp will be emptied at reboot
C:\Users\USURIO~1\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Vittorio\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\PROGRA~3\boost_interprocess" not found

==== EOF on 27/04/2014 at 18:15:13,13 ======================
avatar
vbm
Iniciante
Iniciante

Mensagens : 20
Reputação : 0
Data de inscrição : 27/04/2014

Voltar ao Topo Ir em baixo

Re: Não consigo instalar o malwarebytes

Mensagem por Power Max em Dom 27 Abr 2014, 18:24

Baixe o [Você precisa estar registrado e conectado para ver este link.] e salve-o no Desktop (Área de Trabalho)

Obs: Ao acessar o link acima, clique no botão Download Now 64-Bit Version

Execute o Farbar seguindo as dicas deste tutorial:

[Você precisa estar registrado e conectado para ver este link.]

*Serão criados dois relatórios no Desktop: FRST.txt e Addition.txt

Poste estes dois relatórios em sua próxima resposta. (Obs: se não couber em uma só resposta, pode dividi-la em mais postagens).

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Você precisa estar registrado e conectado para ver este link.] = O melhor da internet você encontra aqui.

[Você precisa estar registrado e conectado para ver este link.] = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: Não consigo instalar o malwarebytes

Mensagem por vbm em Dom 27 Abr 2014, 18:33

Feito.
FRST.txt:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 27-04-2014
Ran by Vittorio (administrator) on VBM on 27-04-2014 18:29:03
Running from C:\Users\Vittorio\Desktop
Windows 8.1 Pro (X64) OS Language: Portuguese Brazilian
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: [Você precisa estar registrado e conectado para ver este link.]
Download link for 64-Bit Version: [Você precisa estar registrado e conectado para ver este link.]
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: [Você precisa estar registrado e conectado para ver este link.]

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
(Sourcefire, Inc.) C:\Program Files\Immunet\3.1.8\sfc.exe
(Microsoft Corporation) C:\Windows\system32\dashost.exe
(Nitro PDF Software) C:\Program Files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
(Ralink Technology, Corp.) C:\Program Files (x86)\Tenda\Common\RaRegistry.exe
(Ralink Technology, Corp.) C:\Program Files (x86)\Tenda\Common\RaRegistry64.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Symantec Corporation) C:\Program Files\Symantec\Symantec System Recovery\Agent\VProSvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(VIA Technologies, Inc.) C:\Windows\system32\viakaraokesrv.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter-a.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Symantec) C:\Program Files\Symantec\Symantec System Recovery\Shared\Drivers\Service\SymTrackServicex64.exe
(Microsoft Corporation) C:\Windows\System32\skydrive.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(Symantec Corporation) C:\Program Files\Symantec\Symantec System Recovery\Agent\VProTray.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe
(Tenda Technology, Corp.) C:\Program Files (x86)\Tenda\Common\RaUI.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\MsoSync.exe
(Acronis) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
(Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe
(FNet Co., Ltd.) C:\Program Files (x86)\XFastUSB\XFastUsb.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Immunet) C:\Program Files\Immunet\3.1.8\iptray.exe
(Python Software Foundation) C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe
(Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\PlexDlnaServer.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [518424 2013-07-18] (Acronis)
HKLM\...\Run: [Symantec System Recovery 2013] => C:\Program Files\Symantec\Symantec System Recovery\Agent\VProTray.exe [4161352 2013-04-24] (Symantec Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642216 2012-08-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5264016 2012-08-16] (VIA)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [7805936 2014-02-04] (Acronis)
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [1102192 2013-10-10] (Acronis International GmbH)
HKLM-x32\...\Run: [vmware-tray.exe] => C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [112856 2014-04-14] (VMware, Inc.)
HKLM-x32\...\Run: [XFastUSB] => C:\Program Files (x86)\XFastUSB\XFastUsb.exe [5021448 2014-04-20] (FNet Co., Ltd.)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [Immunet Protect] => C:\Program Files\Immunet\3.1.8\iptray.exe [3232512 2014-04-27] (Immunet)
HKU\.DEFAULT\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1081224 2013-02-05] (Autodesk, Inc.)
HKU\S-1-5-21-369259818-4087978498-4106999455-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [20728480 2014-01-14] (Skype Technologies S.A.)
HKU\S-1-5-21-369259818-4087978498-4106999455-1001\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1081224 2013-02-05] (Autodesk, Inc.)
HKU\S-1-5-21-369259818-4087978498-4106999455-1001\...\Run: [Plex Media Server] => C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [4409480 2014-03-12] (Plex, Inc.)
HKU\S-1-5-21-369259818-4087978498-4106999455-1001\...\Run: [BankerFixV3] => \LinhaDefensiva\rotinas\postreboot.bat [924 2008-09-05] ()
HKU\S-1-5-21-369259818-4087978498-4106999455-1001\...\Policies\Explorer: []
HKU\S-1-5-21-369259818-4087978498-4106999455-1001\...\Winlogon: [Shell] explorer.exe [2328872 2013-10-22] (Microsoft Corporation) <==== ATTENTION
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Tenda Wireless Utility.lnk
ShortcutTarget: Tenda Wireless Utility.lnk -> C:\Program Files (x86)\Tenda\Common\RaUI.exe (Tenda Technology, Corp.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\W311U.lnk
ShortcutTarget: W311U.lnk -> C:\Program Files (x86)\Tenda\W311U\UI.exe (No File)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = [Você precisa estar registrado e conectado para ver este link.]
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x4975ECEEA35CCF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = pt-BR,pt;q=0.5
SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = [Você precisa estar registrado e conectado para ver este link.]
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = [Você precisa estar registrado e conectado para ver este link.]
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll (Adblock Plus)
BHO-x32: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll (Adblock Plus)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Vittorio\AppData\Roaming\Mozilla\Firefox\Profiles\d946c69k.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_182.dll ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_182.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF - C:\Program Files (x86)\Nitro\Pro 9\npnitromozilla.dll (Nitro PDF)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\buscape.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mercadolivre.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-br.xml
FF Extension: Social Fixer - C:\Users\Vittorio\AppData\Roaming\Mozilla\Firefox\Profiles\d946c69k.default\Extensions\socialfixer@mattkruse.com.xpi [2014-04-03]
FF Extension: Adblock Plus - C:\Users\Vittorio\AppData\Roaming\Mozilla\Firefox\Profiles\d946c69k.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-01-24]

Chrome:
=======
CHR StartupUrls: "hxxp://www.globo.com/", "https://www.google.com.br/"
CHR DefaultSearchKeyword: google.com.br
CHR Extension: (Google Docs) - C:\Users\Vittorio\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-22]
CHR Extension: (Google Drive) - C:\Users\Vittorio\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-22]
CHR Extension: (YouTube) - C:\Users\Vittorio\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-22]
CHR Extension: (Pesquisa do Google) - C:\Users\Vittorio\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-22]
CHR Extension: (Google Wallet) - C:\Users\Vittorio\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-22]
CHR Extension: (Gmail) - C:\Users\Vittorio\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-22]

==================== Services (Whitelisted) =================

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-08-06] (Advanced Micro Devices, Inc.)
R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [12288 2012-12-13] (Autodesk, Inc.)
S3 GenericMount Helper Service; C:\Program Files\Symantec\Symantec System Recovery\Shared\Drivers\GenericMountHelperx64.exe [1979384 2013-03-26] (Symantec)
R2 ImmunetProtect; C:\Program Files\Immunet\3.1.8\sfc.exe [546256 2014-04-27] (Sourcefire, Inc.)
S3 LiveUpdate; C:\Program Files (x86)\Symantec\LiveUpdate\LuComServer_3_3.EXE [3093880 2010-02-17] (Symantec Corporation)
R2 NitroDriverReadSpool9; C:\Program Files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe [230920 2013-11-12] (Nitro PDF Software)
R2 RalinkRegistryWriter; C:\Program Files (x86)\Tenda\Common\RaRegistry.exe [375872 2011-03-31] (Ralink Technology, Corp.)
R2 RalinkRegistryWriter64; C:\Program Files (x86)\Tenda\Common\RaRegistry64.exe [454208 2011-03-31] (Ralink Technology, Corp.)
S3 RaMediaServer; C:\Program Files (x86)\Tenda\Common\RaMediaServer.exe [621632 2011-03-04] ()
S3 scan; C:\Program Files\Immunet\tetra\scan.dll [447744 2014-04-27] (BitDefender)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)
R2 Symantec System Recovery; C:\Program Files\Symantec\Symantec System Recovery\Agent\VProSvc.exe [6287176 2013-04-24] (Symantec Corporation)
R3 SymTrackService; C:\Program Files\Symantec\Symantec System Recovery\Shared\Drivers\Service\SymTrackServicex64.exe [2976736 2013-04-24] (Symantec)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27792 2012-08-14] (VIA Technologies, Inc.)
R2 vmware-converter-agent; C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter-a.exe [479824 2013-04-09] (VMware, Inc.)
R2 vmware-converter-server; C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe [479824 2013-04-09] (VMware, Inc.)
R2 vmware-converter-worker; C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe [479824 2013-04-09] (VMware, Inc.)
S3 VMwareHostd; C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [14407384 2014-04-14] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [348392 2013-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2013-10-30] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [53888 2012-03-05] (Advanced Micro Devices)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [98472 2014-01-22] (Advanced Micro Devices)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-12] (Windows (R) Win 7 DDK provider)
S3 bmdrvr; C:\Windows\SysWow64\drivers\bmdrvr.sys [75344 2013-02-22] (VMware, Inc.)
R3 DCamUSBVM; C:\Windows\System32\Drivers\usbVM31b.sys [142336 2005-09-19] (Vimicro Corporation)
S3 FNETTBOH_305; C:\Windows\System32\drivers\FNETTBOH_305.SYS [32320 2014-04-24] (FNet Co., Ltd.)
R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [16648 2014-04-20] (FNet Co., Ltd.)
R3 GenericMount; C:\Windows\System32\drivers\GenericMount.sys [69208 2013-03-26] (Symantec Corporation)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-09] (Intel Corporation)
R2 ImmunetNetworkMonitorDriver; C:\Windows\System32\Drivers\ImmunetNetworkMonitor.sys [99584 2014-04-27] (Sourcefire, Inc.)
R1 ImmunetProtectDriver; C:\Windows\System32\Drivers\immunetprotect.sys [58112 2014-04-27] (Windows (R) Win 7 DDK provider)
R1 ImmunetSelfProtectDriver; C:\Windows\System32\Drivers\immunetselfprotect.sys [33024 2014-04-27] (Windows (R) Win 7 DDK provider)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-10] (Microsoft Corporation)
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [104912 2007-11-07] (EZB Systems, Inc.)
S3 kbldfltr; C:\Windows\System32\drivers\kbldfltr.sys [22272 2013-09-30] (Microsoft Corporation)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
S3 PSKMAD; C:\Windows\System32\DRIVERS\PSKMAD.sys [47632 2013-04-29] (Panda Security, S.L.)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-25] (Microsoft Corporation)
R0 SSRFsF; C:\Windows\System32\DRIVERS\SSRFsF.sys [28152 2013-04-24] (Symantec)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-10-05] (Microsoft Corporation)
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1120032 2014-04-18] (Acronis International GmbH)
R0 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [198432 2014-04-18] (Acronis International GmbH)
S3 Trufos; C:\Windows\System32\Drivers\trufos.sys [329800 2014-04-27] (BitDefender S.R.L.)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 usbUDisc; C:\Windows\System32\drivers\USBDrv_AMD64.sys [17280 2014-03-23] (Scott)
R3 VMfilt; C:\Windows\system32\drivers\VMfilt64.sys [25600 2009-07-31] (Creative Technology Ltd.)
R2 VMparport; C:\Windows\system32\drivers\VMparport.sys [32472 2014-04-14] (VMware, Inc.)
S3 VProEventMonitor; C:\Windows\system32\DRIVERS\vproeventmonitor.sys [22104 2013-03-26] (Symantec Corporation)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [73296 2013-10-08] (VMware, Inc.)
R2 vstor2-mntapi20-shared; C:\Windows\SysWow64\drivers\vstor2-mntapi20-shared.sys [33872 2013-02-22] (VMware, Inc.)
R0 Vtrack; C:\Windows\System32\DRIVERS\VTrack.sys [350712 2013-04-24] (Symantec)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124760 2013-10-30] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-04-27 18:29 - 2014-04-27 18:29 - 00020447 _____ () C:\Users\Vittorio\Desktop\FRST.txt
2014-04-27 18:28 - 2014-04-27 18:29 - 00000000 ____D () C:\FRST
2014-04-27 18:28 - 2014-04-27 18:28 - 02061824 _____ (Farbar) C:\Users\Vittorio\Desktop\FRST64.exe
2014-04-27 18:15 - 2014-04-27 18:15 - 00000000 ____D () C:\Users\Todos os Usuários\boost_interprocess
2014-04-27 18:15 - 2014-04-27 18:15 - 00000000 ____D () C:\ProgramData\boost_interprocess
2014-04-27 18:13 - 2014-04-27 17:56 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-04-27 17:58 - 2014-04-27 18:15 - 00058413 _____ () C:\zoek-results.log
2014-04-27 17:55 - 2014-04-27 18:09 - 00000000 ____D () C:\zoek_backup
2014-04-27 17:54 - 2014-04-27 17:54 - 01285120 _____ () C:\Users\Vittorio\Desktop\zoek.exe
2014-04-27 15:16 - 2014-04-27 15:16 - 00002614 _____ () C:\Users\Vittorio\Desktop\JRT (1).exe
2014-04-27 15:15 - 2014-04-27 15:15 - 00002614 _____ () C:\Users\Vittorio\Desktop\JRT.exe
2014-04-27 14:43 - 2014-04-27 14:43 - 01329501 _____ () C:\Users\Vittorio\Desktop\adwcleaner.exe
2014-04-27 14:10 - 2014-04-27 14:08 - 00000787 _____ () C:\Users\Vittorio\Desktop\ZHPFixReport.txt
2014-04-27 13:08 - 2014-04-27 13:08 - 00000930 _____ () C:\Users\Public\Desktop\Immunet 3.lnk
2014-04-27 13:08 - 2014-04-27 13:08 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ImmunetNetworkMonitor_01009.Wdf
2014-04-27 13:08 - 2014-04-27 13:08 - 00000000 ____D () C:\Users\Todos os Usuários\Immunet
2014-04-27 13:08 - 2014-04-27 13:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immunet 3
2014-04-27 13:08 - 2014-04-27 13:08 - 00000000 ____D () C:\ProgramData\Immunet
2014-04-27 13:08 - 2014-04-27 13:07 - 00099584 _____ (Sourcefire, Inc.) C:\Windows\system32\Drivers\ImmunetNetworkMonitor.sys
2014-04-27 13:08 - 2014-04-27 13:07 - 00033024 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\immunetselfprotect.sys
2014-04-27 13:07 - 2014-04-27 18:29 - 00000000 ____D () C:\Program Files\Immunet
2014-04-27 13:07 - 2014-04-27 13:07 - 16377216 _____ (Sourcefire, Inc.) C:\Users\Vittorio\Downloads\ImmunetProtect.exe
2014-04-27 13:07 - 2014-04-27 13:07 - 00329800 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys
2014-04-27 13:07 - 2014-04-27 13:07 - 00058112 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\immunetprotect.sys
2014-04-27 13:06 - 2014-04-27 13:06 - 00106696 _____ (Immunet Corporation) C:\Users\Vittorio\Downloads\protect-enu.exe
2014-04-27 12:51 - 2014-04-27 12:51 - 00035828 _____ () C:\Users\Vittorio\Desktop\ZHPDiag.txt
2014-04-27 12:49 - 2014-04-27 12:49 - 00846288 _____ () C:\Users\Vittorio\Downloads\80F1.tmp
2014-04-27 12:28 - 2014-04-27 18:16 - 00004994 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for VBM-Vittorio VBM
2014-04-27 12:16 - 2014-04-27 12:16 - 00846288 _____ () C:\Users\Vittorio\Downloads\PandaCloudAntivirus.exe
2014-04-27 11:45 - 2014-04-27 14:08 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\ZHP
2014-04-27 11:45 - 2014-04-27 12:49 - 00000000 ____D () C:\Program Files (x86)\ZHPDiag
2014-04-27 11:45 - 2014-04-27 11:45 - 00002008 _____ () C:\Users\Vittorio\Desktop\ZHPFix.lnk
2014-04-27 11:45 - 2014-04-27 11:45 - 00001877 _____ () C:\Users\Vittorio\Desktop\ZHPDiag.lnk
2014-04-27 11:45 - 2014-04-27 11:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
2014-04-27 11:42 - 2014-04-27 11:43 - 06825069 _____ (Nicolas Coolman ) C:\Users\Vittorio\Downloads\ZHPDiag2.exe
2014-04-27 11:37 - 2014-04-27 11:37 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Malwarebytes
2014-04-27 11:36 - 2014-04-27 11:37 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-04-27 11:36 - 2014-04-27 11:36 - 00000973 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-04-27 11:36 - 2014-04-27 11:36 - 00000000 ____D () C:\Users\Vittorio\Downloads\mbam-chameleon-1.62.1.1000
2014-04-27 11:36 - 2014-04-27 11:36 - 00000000 ____D () C:\Users\Todos os Usuários\Malwarebytes
2014-04-27 11:36 - 2014-04-27 11:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
2014-04-27 11:36 - 2014-04-27 11:36 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-04-27 11:36 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-04-27 11:35 - 2014-04-27 11:36 - 00065232 _____ (Malwarebytes) C:\Users\Vittorio\Downloads\regassassin-setup-1.03.exe
2014-04-27 11:35 - 2014-04-27 11:35 - 01440846 _____ () C:\Users\Vittorio\Downloads\mbam-chameleon-1.62.1.1000.zip
2014-04-27 11:17 - 2014-04-27 11:59 - 00231719 _____ () C:\Users\Vittorio\Downloads\FixBlast.log
2014-04-27 11:16 - 2014-04-27 11:17 - 00135360 _____ (Symantec Corporation) C:\Users\Vittorio\Downloads\FixBlast.exe
2014-04-26 19:55 - 2014-04-26 19:55 - 00003818 _____ () C:\Users\Vittorio\Downloads\test.rc
2014-04-26 19:55 - 2014-04-26 19:55 - 00000533 _____ () C:\Users\Vittorio\Downloads\Data_1.bin
2014-04-26 19:52 - 2014-04-26 19:52 - 00001124 _____ () C:\Users\Vittorio\Downloads\t.txt
2014-04-26 19:48 - 2010-08-02 11:44 - 05748405 _____ (Luiz Eduardo Segadas Vianna-Tel.(55)(21)2236-4162/9944-6145) C:\Users\Vittorio\Downloads\DENTALCLINIC2.exe
2014-04-26 19:48 - 2010-08-02 11:44 - 05748405 _____ (Luiz Eduardo Segadas Vianna-Tel.(55)(21)2236-4162/9944-6145) C:\Users\Vittorio\Downloads\DENTALCLINIC2
2014-04-26 19:48 - 2010-08-02 11:44 - 05748405 _____ (Luiz Eduardo Segadas Vianna-Tel.(55)(21)2236-4162/9944-6145) C:\Users\Vittorio\Downloads\DENTALCLINIC1.exe
2014-04-26 19:30 - 2014-04-26 19:30 - 00081338 _____ (Dental Clinic-Tel.(55)(21)2236-4162/9944-6145) C:\Users\Vittorio\Downloads\DENTCLIN.exe
2014-04-26 19:01 - 2014-04-26 19:01 - 00001018 _____ () C:\Users\Vittorio\Desktop\Resource Hacker.lnk
2014-04-26 19:00 - 2014-04-26 19:00 - 00748246 _____ ( ) C:\Users\Vittorio\Downloads\reshack_setup.exe
2014-04-26 19:00 - 2014-04-26 19:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Resource Hacker
2014-04-26 19:00 - 2014-04-26 19:00 - 00000000 ____D () C:\Program Files (x86)\Resource Hacker
2014-04-26 16:46 - 2014-04-26 16:46 - 28172368 _____ (Panda Security ) C:\Users\Vittorio\Downloads\PandaCloudCleaner (1).exe
2014-04-26 16:43 - 2014-04-26 16:43 - 00001303 _____ () C:\Users\Public\Desktop\Panda Cloud Cleaner.lnk
2014-04-26 16:43 - 2013-04-29 08:17 - 00047632 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\PSKMAD.sys
2014-04-26 16:42 - 2014-04-26 16:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Security
2014-04-26 16:42 - 2014-04-26 16:42 - 00000000 ____D () C:\Program Files (x86)\Panda Security
2014-04-26 16:41 - 2014-04-26 16:42 - 28413552 _____ (Panda Security ) C:\Users\Vittorio\Downloads\PandaCloudCleaner.exe
2014-04-26 16:38 - 2014-04-26 16:39 - 00000000 ____D () C:\LinhaDefensiva
2014-04-26 16:17 - 2014-04-26 16:17 - 00178597 _____ (Igor Pavlov) C:\Users\Vittorio\Downloads\bankerfix.exe
2014-04-26 16:15 - 2014-04-26 16:15 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2014-04-26 16:14 - 2014-04-26 18:19 - 00000000 ____D () C:\Users\Todos os Usuários\Spybot - Search & Destroy
2014-04-26 16:14 - 2014-04-26 18:19 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-04-26 16:14 - 2014-04-26 16:18 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-04-26 16:14 - 2014-04-26 16:14 - 00001408 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2014-04-26 16:14 - 2014-04-26 16:14 - 00001396 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-04-26 16:14 - 2014-04-26 16:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2014-04-26 16:14 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2014-04-26 16:12 - 2014-04-26 16:12 - 00315392 _____ (Malwarebytes Corporation) C:\Users\Vittorio\Downloads\mbam-clean-2.0.2.0.exe
2014-04-26 16:10 - 2014-04-26 16:11 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\Vittorio\Downloads\spybot-2.2.exe
2014-04-26 15:59 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-04-26 15:54 - 2014-04-26 15:55 - 00002422 _____ () C:\Users\Vittorio\Downloads\mbam-setup-2.0.1.1004.exe
2014-04-26 15:53 - 2014-04-26 15:53 - 00000000 ____D () C:\Windows\SysWOW64\X86
2014-04-26 15:53 - 2014-04-26 15:53 - 00000000 ____D () C:\Windows\SysWOW64\AMD64
2014-04-26 15:52 - 2014-04-26 15:52 - 00000000 ____D () C:\Users\Vittorio\AppData\Local\Comodo
2014-04-26 15:52 - 2014-04-26 15:52 - 00000000 ____D () C:\Users\Convidado\AppData\Local\Google
2014-04-26 15:52 - 2014-04-26 15:52 - 00000000 ____D () C:\Users\Convidado\AppData\Local\Comodo
2014-04-26 15:52 - 2014-04-26 15:52 - 00000000 ____D () C:\Users\Convidado
2014-04-26 15:52 - 2014-04-26 15:52 - 00000000 ____D () C:\Users\Administrador\AppData\Local\Google
2014-04-26 15:52 - 2014-04-26 15:52 - 00000000 ____D () C:\Users\Administrador\AppData\Local\Comodo
2014-04-26 15:52 - 2014-04-26 15:52 - 00000000 ____D () C:\Users\Administrador
2014-04-26 15:52 - 2014-04-26 15:52 - 00000000 ____D () C:\Users\___VMware_Conv_SA___\AppData\Local\Google
2014-04-26 15:52 - 2014-04-26 15:52 - 00000000 ____D () C:\Users\___VMware_Conv_SA___\AppData\Local\Comodo
2014-04-26 15:52 - 2014-04-26 15:52 - 00000000 ____D () C:\Users\___VMware_Conv_SA___
2014-04-26 11:32 - 2014-04-26 11:32 - 00053881 _____ () C:\Users\Vittorio\Downloads\That.Awkward.Moment.2014-[Você precisa estar registrado e conectado para ver este link.]
2014-04-26 10:42 - 2014-04-26 10:42 - 00180336 _____ () C:\Users\Vittorio\Downloads\that-awkward-moment-brazilian-portuguese-yify-12411.zip
2014-04-25 20:43 - 2014-04-25 21:16 - 647888896 _____ () C:\Users\Vittorio\Downloads\Local disk (C)_full_b1_s1_v1.vmdk
2014-04-25 20:15 - 2014-04-26 19:18 - 1147574784 _____ () C:\Users\Vittorio\Downloads\Local disk (C)_full_b1_s1_v1.vhd
2014-04-25 20:00 - 2014-04-25 20:00 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\10tons
2014-04-25 19:59 - 2014-04-25 19:59 - 00002039 _____ () C:\Users\Vittorio\Desktop\Sparkle Unleashed.lnk
2014-04-25 19:59 - 2014-04-25 19:59 - 00000000 ____D () C:\Windows\Sparkle Unleashed
2014-04-25 19:59 - 2014-04-25 19:59 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sparkle Unleashed
2014-04-25 19:59 - 2014-04-25 19:59 - 00000000 ____D () C:\Program Files (x86)\Sparkle Unleashed
2014-04-25 19:48 - 2014-04-25 19:57 - 111060158 _____ () C:\Users\Vittorio\Downloads\Sparkle Unleashed.rar
2014-04-25 19:06 - 2014-04-25 19:06 - 00001355 _____ () C:\Users\Public\Desktop\StarWind V2V Image Converter.lnk
2014-04-25 19:06 - 2014-04-25 19:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarWind Software
2014-04-25 19:06 - 2014-04-25 19:06 - 00000000 ____D () C:\Program Files (x86)\StarWind Software
2014-04-25 19:05 - 2014-04-25 19:05 - 01631592 _____ (StarWind Software ) C:\Users\Vittorio\Downloads\StarWindConverter.exe
2014-04-25 18:14 - 2014-04-25 18:14 - 00058182 _____ () C:\Users\Vittorio\Desktop\ConverterDiagnostics20140425181353.zip
2014-04-24 19:02 - 2014-04-24 19:02 - 00051904 _____ () C:\Users\Vittorio\Downloads\veronica-mars-brazilian-portuguese-yify-12342 (1).zip
2014-04-24 18:45 - 2014-04-24 18:45 - 00051904 _____ () C:\Users\Vittorio\Downloads\veronica-mars-brazilian-portuguese-yify-12342.zip
2014-04-24 18:29 - 2014-04-24 18:29 - 00000000 ____D () C:\Users\Vittorio\AppData\Local\WinZip
2014-04-24 18:28 - 2014-04-24 18:28 - 00002002 _____ () C:\Users\Public\Desktop\WinZip.lnk
2014-04-24 18:28 - 2014-04-24 18:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2014-04-24 18:27 - 2014-04-24 18:29 - 00000000 ____D () C:\Users\Todos os Usuários\WinZip
2014-04-24 18:27 - 2014-04-24 18:29 - 00000000 ____D () C:\ProgramData\WinZip
2014-04-24 18:27 - 2014-04-24 18:27 - 00000000 ____D () C:\Program Files (x86)\WinZip
2014-04-24 17:50 - 2014-04-24 18:04 - 00000000 ____D () C:\Users\Vittorio\Downloads\veronica-mars-brazilian-portuguese-yify-12315
2014-04-24 17:50 - 2014-04-24 17:50 - 00000000 ____D () C:\Users\Vittorio\Downloads\veronica-mars-english-yify-12290
2014-04-24 17:49 - 2014-04-24 17:49 - 00056819 _____ () C:\Users\Vittorio\Downloads\veronica-mars-english-yify-12290.zip
2014-04-24 17:49 - 2014-04-24 17:49 - 00051909 _____ () C:\Users\Vittorio\Downloads\veronica-mars-brazilian-portuguese-yify-12315.zip
2014-04-23 19:03 - 2014-04-23 19:03 - 00032445 _____ () C:\Users\Vittorio\Downloads\the-east-portuguese-yify-8404.zip
2014-04-23 13:14 - 2014-04-23 13:14 - 00001292 _____ () C:\Users\Public\Desktop\FileRestore Professional.lnk
2014-04-23 13:14 - 2014-04-23 13:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileRestore Professional
2014-04-23 13:14 - 2014-04-23 13:14 - 00000000 ____D () C:\Program Files (x86)\PC Recovery
2014-04-23 12:25 - 2014-04-23 12:25 - 00001047 _____ () C:\Users\Public\Desktop\Roadkil's Unstoppable Copier.lnk
2014-04-23 12:25 - 2014-04-23 12:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roadkil.Net
2014-04-23 12:25 - 2014-04-23 12:25 - 00000000 ____D () C:\Program Files (x86)\Roadkil.Net
2014-04-23 12:24 - 2014-04-23 12:24 - 00427256 _____ (Roadkil.Net ) C:\Users\Vittorio\Downloads\UnstopCpy_5_2_Win2K_UP_Setup.exe
2014-04-23 12:20 - 2014-04-23 12:22 - 00000000 ____D () C:\Program Files (x86)\ICE ECC
2014-04-23 12:20 - 2014-04-23 12:20 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ICE ECC
2014-04-23 12:20 - 2014-04-23 12:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ICE ECC
2014-04-23 12:19 - 2014-04-23 12:19 - 00719786 _____ () C:\Users\Vittorio\Downloads\ICEECCSetup.exe
2014-04-22 20:50 - 2014-04-22 20:52 - 02544453 _____ () C:\Users\Vittorio\Downloads\Ot.rar
2014-04-22 19:47 - 2014-04-22 19:47 - 00166304 _____ () C:\Users\Vittorio\Downloads\the-railway-man-brazilian-portuguese-yify-12178.zip
2014-04-22 19:14 - 2014-04-22 19:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plex Media Server
2014-04-22 19:13 - 2014-04-22 19:13 - 00000000 ____D () C:\Program Files (x86)\Plex
2014-04-22 19:09 - 2014-04-22 19:09 - 63290992 _____ (Plex, Inc.) C:\Users\Vittorio\Downloads\Plex-Media-Server-0.9.907.429-f80a8d6-en-US.exe
2014-04-21 12:48 - 2014-04-21 12:48 - 00000000 ____D () C:\Users\Vittorio\AppData\Local\Intel_Corporation
2014-04-21 12:44 - 2014-04-21 12:44 - 04082616 _____ (Intel Corporation) C:\Users\Vittorio\Downloads\Intel(R) WiDi Remote Setup.exe
2014-04-21 12:44 - 2014-04-21 12:44 - 00002531 _____ () C:\Users\Public\Desktop\Intel WiDi Remote.lnk
2014-04-21 12:44 - 2014-04-21 12:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Corporation
2014-04-21 12:44 - 2014-04-21 12:44 - 00000000 ____D () C:\Program Files (x86)\Intel Corporation
2014-04-21 12:35 - 2014-04-21 12:35 - 08420211 _____ () C:\Users\Vittorio\Downloads\20070813082717640_Samsung_USB_Driver_Installer.exe
2014-04-21 12:24 - 2014-04-22 19:16 - 00000000 ____D () C:\Users\Vittorio\AppData\Local\Plex Media Server
2014-04-21 12:24 - 2014-04-21 12:24 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Apple Computer
2014-04-21 12:24 - 2014-04-21 12:24 - 00000000 ____D () C:\Users\Vittorio\AppData\Local\Apple Computer
2014-04-21 12:22 - 2014-04-27 12:46 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-04-21 12:22 - 2014-04-21 12:22 - 52385872 _____ (Microsoft Corporation) C:\Users\Vittorio\Downloads\Plex-Media-Server-v0.9.502-en-US.exe
2014-04-21 12:22 - 2014-04-21 12:22 - 00000000 ____D () C:\Users\Todos os Usuários\Apple
2014-04-21 12:22 - 2014-04-21 12:22 - 00000000 ____D () C:\ProgramData\Apple
2014-04-21 12:22 - 2014-04-21 12:22 - 00000000 ____D () C:\Program Files\Bonjour
2014-04-21 12:19 - 2014-04-21 12:19 - 00684088 _____ () C:\Users\Vittorio\Downloads\lg-smart-share.exe
2014-04-20 19:09 - 2014-04-24 18:12 - 00032320 _____ (FNet Co., Ltd.) C:\Windows\system32\Drivers\FNETTBOH_305.SYS
2014-04-20 19:09 - 2014-04-20 19:09 - 00016648 _____ (FNet Co., Ltd.) C:\Windows\system32\Drivers\FNETURPX.SYS
2014-04-20 19:09 - 2014-04-20 19:09 - 00001902 _____ () C:\Users\Public\Desktop\XFast USB.LNK
2014-04-20 19:09 - 2014-04-20 19:09 - 00000000 ____D () C:\Users\Todos os Usuários\FNET
2014-04-20 19:09 - 2014-04-20 19:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast USB
2014-04-20 19:09 - 2014-04-20 19:09 - 00000000 ____D () C:\ProgramData\FNET
2014-04-20 19:09 - 2014-04-20 19:09 - 00000000 ____D () C:\Program Files (x86)\XFastUSB
2014-04-20 19:09 - 2012-08-21 12:16 - 00000000 ____D () C:\Users\Vittorio\Desktop\XFastUSB(v3.02.31)
2014-04-20 19:08 - 2014-04-20 19:08 - 04723339 _____ () C:\Users\Vittorio\Downloads\XFastUSB(v3.02.31).zip
2014-04-20 18:26 - 2014-04-20 18:26 - 00023005 _____ () C:\Users\Vittorio\Downloads\the-legend-of-hercules-brazilian-portuguese-yify-10525.zip
2014-04-20 18:17 - 2014-04-20 18:17 - 00026300 _____ () C:\Users\Vittorio\Downloads\khumba-brazilian-portuguese-yify-12088.zip
2014-04-20 18:15 - 2014-04-20 18:15 - 00030165 _____ () C:\Users\Vittorio\Downloads\zambezia-brazilian-portuguese-yify-6056.zip
2014-04-20 14:20 - 2014-04-20 14:20 - 00011943 _____ () C:\Users\Vittorio\Downloads\CassioSanches_legendas_tv_20140415073335.rar
2014-04-20 13:19 - 2014-04-20 13:19 - 00037135 _____ () C:\Users\Vittorio\Downloads\The.Physician.2013-[Você precisa estar registrado e conectado para ver este link.]
2014-04-20 13:18 - 2014-04-20 13:18 - 00037646 _____ () C:\Users\Vittorio\Downloads\the-physician-brazilian-portuguese-yify-11942.zip
2014-04-20 11:17 - 2014-04-20 11:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-04-20 11:17 - 2014-04-14 20:13 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-04-20 11:17 - 2014-04-14 20:05 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-04-20 11:17 - 2014-04-14 20:05 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-04-20 11:17 - 2014-04-14 20:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-04-20 11:16 - 2014-04-20 11:17 - 00004244 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_55-b14.log
2014-04-20 00:06 - 2014-04-20 00:06 - 00000291 _____ () C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lixeira.lnk
2014-04-19 15:56 - 2014-04-19 15:56 - 00225656 _____ () C:\Users\Vittorio\Downloads\RoboCop.2014-[Você precisa estar registrado e conectado para ver este link.]
2014-04-19 15:48 - 2014-04-19 15:48 - 00052117 _____ () C:\Users\Vittorio\Downloads\jewtopia-brazilian-portuguese-yify-11055.zip
2014-04-19 14:03 - 2014-04-19 14:03 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Symantec
2014-04-19 14:03 - 2014-04-19 14:03 - 00000000 ____D () C:\Users\Vittorio\AppData\Local\Symantec_Corporation
2014-04-19 13:39 - 2014-04-19 13:39 - 00000000 ____D () C:\Program Files (x86)\Symantec
2014-04-19 13:39 - 2013-04-24 15:13 - 00033240 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2014-04-19 13:39 - 2010-02-17 10:53 - 00511328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capicom.dll
2014-04-19 13:39 - 2007-03-21 21:39 - 01060864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFC71.DLL
2014-04-19 13:39 - 2007-03-21 21:33 - 00503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVCP71.DLL
2014-04-19 13:39 - 2007-03-21 21:33 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVCR71.DLL
2014-04-19 13:38 - 2014-04-19 13:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Symantec System Recovery
2014-04-19 13:38 - 2014-04-19 13:38 - 00000000 ____D () C:\Program Files\Symantec
2014-04-19 13:38 - 2014-04-19 13:38 - 00000000 ____D () C:\Program Files\Common Files\Symantec Shared
2014-04-19 13:38 - 2013-04-24 00:10 - 00350712 ____S (Symantec) C:\Windows\system32\Drivers\VTrack.sys
2014-04-19 13:38 - 2013-04-24 00:09 - 00028152 ____S (Symantec) C:\Windows\system32\Drivers\SSRFsF.sys
2014-04-19 13:38 - 2013-03-26 17:59 - 00022104 _____ (Symantec Corporation) C:\Windows\system32\Drivers\vproeventmonitor.sys
2014-04-19 13:36 - 2014-04-19 13:42 - 00000000 ____D () C:\Users\Todos os Usuários\Symantec
2014-04-19 13:36 - 2014-04-19 13:42 - 00000000 ____D () C:\ProgramData\Symantec
2014-04-18 23:25 - 2014-04-18 23:25 - 00000000 ____D () C:\Users\Todos os Usuários\McAfee
2014-04-18 23:25 - 2014-04-18 23:25 - 00000000 ____D () C:\ProgramData\McAfee
2014-04-18 18:08 - 2014-04-26 15:17 - 00000000 ____D () C:\Users\Vittorio\VirtualBox VMs
2014-04-18 17:56 - 2014-04-18 17:57 - 04329002 _____ () C:\Users\Vittorio\Downloads\unlock-all-v120.zip
2014-04-18 15:39 - 2014-04-18 18:29 - 00000000 ____D () C:\Users\Vittorio\Downloads\Mac OSX Snow Leopard 10.6.7 Intel AMD Vmware Image
2014-04-18 15:06 - 2014-04-18 15:06 - 00001146 _____ () C:\Users\Public\Desktop\Opera.lnk
2014-04-18 15:06 - 2014-04-18 15:06 - 00001146 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2014-04-18 15:06 - 2014-04-18 15:06 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Opera Software
2014-04-18 15:06 - 2014-04-18 15:06 - 00000000 ____D () C:\Users\Vittorio\AppData\Local\Opera Software
2014-04-18 15:06 - 2014-04-18 15:06 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-04-18 14:40 - 2014-04-18 14:40 - 02536266 _____ (Oleg N. Scherbakov) C:\Users\Vittorio\Downloads\Mac OS X Lion VMware Files.exe
2014-04-18 14:17 - 2014-04-18 14:17 - 00001315 _____ () C:\Users\Public\Desktop\VMware vCenter Converter Standalone Client.lnk
2014-04-18 14:17 - 2014-04-18 14:17 - 00001024 _____ () C:\.rnd
2014-04-18 14:02 - 2014-04-18 18:02 - 00000000 ____D () C:\Users\Vittorio\Downloads\OS X Mountain Lion 10.8.3 VMware Image
2014-04-18 12:38 - 2014-04-18 12:38 - 03916136 _____ () C:\Users\Vittorio\Downloads\unlock-all-v110.rar
2014-04-18 12:12 - 2014-04-26 11:38 - 00000000 ____D () C:\Users\Vittorio\Documents\Virtual Machines
2014-04-18 12:07 - 2014-04-27 15:14 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\VMware
2014-04-18 12:07 - 2014-04-27 15:14 - 00000000 ____D () C:\Users\Vittorio\AppData\Local\VMware
2014-04-18 12:06 - 2014-04-14 16:41 - 00931032 _____ (VMware, Inc.) C:\Windows\system32\vnetlib64.dll
2014-04-18 12:06 - 2014-04-14 16:41 - 00437976 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
2014-04-18 12:06 - 2014-04-14 16:41 - 00359128 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
2014-04-18 12:06 - 2014-04-14 16:41 - 00064728 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmx86.sys
2014-04-18 12:06 - 2014-04-14 16:41 - 00032472 _____ (VMware, Inc.) C:\Windows\system32\Drivers\VMparport.sys
2014-04-18 12:06 - 2014-04-14 16:41 - 00031448 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnetuserif.sys
2014-04-18 12:06 - 2013-10-08 18:21 - 00073296 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vsock.sys
2014-04-18 12:06 - 2013-10-08 18:21 - 00067664 _____ (VMware, Inc.) C:\Windows\system32\vsocklib.dll
2014-04-18 12:06 - 2013-10-08 18:21 - 00063568 _____ (VMware, Inc.) C:\Windows\SysWOW64\vsocklib.dll
2014-04-18 12:05 - 2014-04-18 14:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware
2014-04-18 12:05 - 2014-04-18 12:05 - 01813972 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-04-18 12:05 - 2014-04-18 12:05 - 00002148 _____ () C:\Users\Public\Desktop\VMware Workstation.lnk
2014-04-18 12:05 - 2014-04-18 12:05 - 00001024 _____ () C:\Windows\SysWOW64\%TMP%
2014-04-18 12:05 - 2014-04-18 12:05 - 00000000 ____D () C:\Program Files\Common Files\VMware
2014-04-18 12:05 - 2014-02-27 18:40 - 00054464 _____ (VMware, Inc.) C:\Windows\system32\Drivers\hcmon.sys
2014-04-18 12:04 - 2014-04-27 18:15 - 00000000 ____D () C:\Users\Todos os Usuários\VMware
2014-04-18 12:04 - 2014-04-27 18:15 - 00000000 ____D () C:\ProgramData\VMware
2014-04-18 12:04 - 2014-04-18 14:17 - 00000000 ____D () C:\Program Files (x86)\VMware
2014-04-18 12:04 - 2014-04-18 12:04 - 00000000 ____D () C:\Users\Public\Documents\Shared Virtual Machines
2014-04-18 11:54 - 2014-04-18 11:54 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Acronis
2014-04-18 11:53 - 2014-04-23 11:48 - 00000000 ____D () C:\Users\Todos os Usuários\Acronis
2014-04-18 11:53 - 2014-04-23 11:48 - 00000000 ____D () C:\ProgramData\Acronis
2014-04-18 11:53 - 2014-04-18 11:53 - 01464096 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tdrpman.sys
2014-04-18 11:53 - 2014-04-18 11:53 - 01120032 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tib.sys
2014-04-18 11:53 - 2014-04-18 11:53 - 00367200 _____ (Acronis) C:\Windows\system32\Drivers\afcdp.sys
2014-04-18 11:53 - 2014-04-18 11:53 - 00269600 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\snapman.sys
2014-04-18 11:53 - 2014-04-18 11:53 - 00198432 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tib_mounter.sys
2014-04-18 11:53 - 2014-04-18 11:53 - 00116000 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\fltsrv.sys
2014-04-18 11:53 - 2014-04-18 11:53 - 00001222 _____ () C:\Users\Public\Desktop\Acronis True Image 2014.lnk
2014-04-18 11:53 - 2014-04-18 11:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis
2014-04-18 11:52 - 2014-04-18 11:52 - 00000000 ____D () C:\Program Files (x86)\Acronis
2014-04-14 18:13 - 2014-04-14 18:13 - 00001966 _____ () C:\Users\Vittorio\Desktop\Aztec Bricks.lnk
2014-04-14 18:13 - 2014-04-14 18:13 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aztec Bricks
2014-04-14 18:12 - 2014-04-14 18:13 - 00000000 ____D () C:\Program Files (x86)\Aztec Bricks
2014-04-14 18:12 - 2014-04-14 18:12 - 00000000 ____D () C:\Windows\Aztec Bricks
2014-04-14 16:40 - 2014-04-14 16:40 - 00080464 _____ (VMware, Inc.) C:\Windows\system32\vmnetbridge.dll
2014-04-14 16:40 - 2014-04-14 16:40 - 00049232 _____ (VMware, Inc.) C:\Windows\system32\vnetinst.dll
2014-04-14 16:40 - 2014-04-14 16:40 - 00046160 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnetbridge.sys
2014-04-14 16:40 - 2014-04-14 16:40 - 00024656 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnet.sys
2014-04-14 16:40 - 2014-04-14 16:40 - 00020560 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnetadapter.sys
2014-04-12 20:10 - 2014-04-12 20:10 - 00002071 _____ () C:\Users\Vittorio\Desktop\Riddles of The Mask.lnk
2014-04-12 20:10 - 2014-04-12 20:10 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Riddles of The Mask
2014-04-12 20:09 - 2014-04-12 20:10 - 00000000 ____D () C:\Program Files (x86)\Riddles of The Mask
2014-04-12 20:09 - 2014-04-12 20:09 - 00000000 ____D () C:\Windows\Riddles of The Mask
2014-04-12 20:02 - 2014-04-12 20:07 - 43356700 _____ () C:\Users\Vittorio\Downloads\Riddles of The Mask.rar
2014-04-11 22:55 - 2014-04-11 22:55 - 00002080 _____ () C:\Users\Vittorio\Desktop\The Beardless Wizard.lnk
2014-04-11 22:55 - 2014-04-11 22:55 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Beardless Wizard
2014-04-11 22:54 - 2014-04-11 22:55 - 00000000 ____D () C:\Program Files (x86)\The Beardless Wizard
2014-04-11 22:54 - 2014-04-11 22:54 - 00000000 ____D () C:\Windows\The Beardless Wizard
2014-04-11 14:55 - 2014-04-11 14:55 - 00000000 ____D () C:\Users\Vittorio\Documents\Modelos Personalizados do Office
2014-04-10 17:11 - 2014-04-26 17:32 - 00000000 ____D () C:\Users\Todos os Usuários\SimAquarium
2014-04-10 17:11 - 2014-04-26 17:32 - 00000000 ____D () C:\ProgramData\SimAquarium
2014-04-10 17:11 - 2013-12-20 14:01 - 01238080 _____ (Vojnic Ladislav) C:\Windows\SimAquarium3.rbc
2014-04-10 17:10 - 2014-04-10 17:11 - 00000000 ____D () C:\Program Files (x86)\Sim Aquarium 3
2014-04-10 17:10 - 2014-04-10 17:10 - 00001206 _____ () C:\Users\Vittorio\Desktop\Clownfish Aquarium.lnk
2014-04-10 17:10 - 2014-04-10 17:10 - 00001204 _____ () C:\Users\Vittorio\Desktop\Sim Aquarium 3.lnk
2014-04-10 17:10 - 2014-04-10 17:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sim Aquarium 3
2014-04-10 17:10 - 2013-12-20 14:01 - 01242624 _____ (Vojnic Ladislav) C:\Windows\SimAquarium3.scr
2014-04-10 17:10 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\D3DX9_43.dll
2014-04-09 18:56 - 2014-04-10 17:10 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\SimAquarium
2014-04-09 18:56 - 2014-04-09 18:56 - 08974863 _____ () C:\Users\Vittorio\Downloads\Fish.themepack
2014-04-09 18:55 - 2014-04-09 18:55 - 37429256 _____ (Ladislav Vojnic ) C:\Users\Vittorio\Downloads\SimAQUARIUM-V3.exe
2014-04-09 18:42 - 2014-04-09 18:42 - 00003258 _____ () C:\Windows\System32\Tasks\{7E8591AA-5411-496D-A007-D421A5F11236}
2014-04-09 18:23 - 2014-04-09 18:23 - 00002134 _____ () C:\Users\Vittorio\Desktop\2 Tasty Too lamour a Paris Update .lnk
2014-04-09 18:23 - 2014-04-09 18:23 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\2 Tasty Too lamour a Paris Update
2014-04-09 18:23 - 2014-04-09 18:23 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Maximize Games
2014-04-09 18:23 - 2014-04-09 18:23 - 00000000 ____D () C:\Users\Todos os Usuários\Maximize Games
2014-04-09 18:23 - 2014-04-09 18:23 - 00000000 ____D () C:\ProgramData\Maximize Games
2014-04-09 18:22 - 2014-04-09 18:22 - 00000000 ____D () C:\Program Files (x86)\2 Tasty Too lamour a Paris Update
2014-04-09 17:40 - 2014-04-09 18:07 - 285385361 _____ () C:\Users\Vittorio\Downloads\2_Tasty_Too_lamour_a_Paris_Update.rar
2014-04-09 16:44 - 2014-04-09 16:44 - 00002569 _____ () C:\Users\Vittorio\Downloads\install_flashplayer13x32au_mssd_aaa_aih.exe
2014-04-08 17:56 - 2014-03-30 22:16 - 23134208 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-08 17:56 - 2014-03-30 20:57 - 17073152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-04-08 17:56 - 2014-03-10 07:35 - 02008408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-04-08 17:56 - 2014-03-10 07:35 - 00377176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2014-04-08 17:56 - 2014-03-06 06:19 - 01287576 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-04-08 17:56 - 2014-03-06 06:02 - 01109424 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-04-08 17:56 - 2014-03-06 03:17 - 00835584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-04-08 17:56 - 2014-03-06 03:10 - 01036288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-04-08 17:51 - 2014-04-08 17:51 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-04-08 17:51 - 2014-04-08 17:51 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-07 22:21 - 2014-04-07 22:21 - 24472525 _____ () C:\Users\Vittorio\Downloads\LIVRO ILUSTRADO - Eu Não Consigo Emagrecer - Pierre Dukan.zip
2014-04-04 19:54 - 2014-04-02 08:29 - 00080426 _____ () C:\Users\Vittorio\Desktop\The Nut Job (2014) 720p HDRip [G2G].srt
2014-04-04 19:34 - 2014-04-04 19:34 - 00001993 _____ () C:\Users\Vittorio\Desktop\TimeAdjuster.lnk
2014-04-04 19:34 - 2014-04-04 19:34 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TimeAdjuster
2014-04-04 19:34 - 2014-04-04 19:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TimeAdjuster
2014-04-04 19:34 - 2014-04-04 19:34 - 00000000 ____D () C:\Program Files (x86)\TimeAdjuster
2014-04-04 19:33 - 2014-04-04 19:33 - 00953448 _____ () C:\Users\Vittorio\Desktop\time-adjuster-3.1-multi.zip
2014-04-04 19:06 - 2014-04-04 19:07 - 00000000 ____D () C:\Program Files (x86)\Subtitle Workshop
2014-04-04 19:06 - 2014-04-04 19:06 - 00002083 _____ () C:\Users\Vittorio\Desktop\Subtitle Workshop.lnk
2014-04-04 19:06 - 2014-04-04 19:06 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Subtitle Workshop
2014-04-04 19:05 - 2014-04-04 19:06 - 02059818 _____ () C:\Users\Vittorio\Downloads\SubtitleWorkshop_6.0b_131121_installer.exe
2014-04-04 19:02 - 2014-04-04 19:02 - 00249856 ____N (Microsoft Corporation) C:\Windows\Setup1.exe
2014-04-04 19:02 - 2014-04-04 19:02 - 00073216 _____ (Microsoft Corporation) C:\Windows\ST6UNST.EXE
2014-04-04 19:02 - 2014-04-04 19:02 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SubSync
2014-04-04 19:02 - 2014-04-04 19:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SubSync
2014-04-04 19:02 - 2014-04-04 19:02 - 00000000 ____D () C:\Program Files (x86)\SubSync
2014-04-01 19:17 - 2014-04-01 19:17 - 00002085 _____ () C:\Users\Vittorio\Desktop\Disharmony Blocks 2.lnk
2014-04-01 19:17 - 2014-04-01 19:17 - 00000000 ____D () C:\Windows\Disharmony Blocks 2
2014-04-01 19:17 - 2014-04-01 19:17 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Disharmony Blocks 2
2014-04-01 19:17 - 2014-04-01 19:17 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Disharmony Blocks II
2014-04-01 19:17 - 2014-04-01 19:17 - 00000000 ____D () C:\Program Files (x86)\Disharmony Blocks 2
2014-04-01 19:13 - 2014-04-01 19:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AC3Filter
2014-04-01 19:13 - 2014-04-01 19:13 - 00000000 ____D () C:\Program Files (x86)\AC3Filter
2014-04-01 19:13 - 2009-08-11 21:22 - 00580096 _____ () C:\Windows\system32\ac3filter64.acm
2014-04-01 19:13 - 2009-08-11 21:18 - 00497664 _____ () C:\Windows\SysWOW64\ac3filter.acm
2014-04-01 18:54 - 2014-04-01 19:04 - 43974609 _____ () C:\Users\Vittorio\Downloads\Disharmony Blocks 2.rar
2014-03-30 11:39 - 2014-04-19 17:39 - 00000000 ____D () C:\Users\Vittorio\Desktop\Driver Checker v2.7.5
2014-03-30 11:39 - 2011-09-10 12:28 - 77880558 _____ () C:\Users\Vittorio\Desktop\DriverChecker.exe
2014-03-29 20:25 - 2014-03-29 20:25 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-29 11:05 - 2014-03-29 11:05 - 00001097 _____ () C:\Users\Public\Desktop\Oracle VM VirtualBox.lnk
2014-03-29 11:05 - 2014-03-29 11:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2014-03-29 11:05 - 2014-03-29 11:05 - 00000000 ____D () C:\Program Files\Oracle
2014-03-29 11:05 - 2014-03-26 19:01 - 00254240 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxDrv.sys
2014-03-29 11:05 - 2014-03-26 19:00 - 00128288 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxUSBMon.sys
avatar
vbm
Iniciante
Iniciante

Mensagens : 20
Reputação : 0
Data de inscrição : 27/04/2014

Voltar ao Topo Ir em baixo

Re: Não consigo instalar o malwarebytes

Mensagem por vbm em Dom 27 Abr 2014, 18:34

Continua:

==================== One Month Modified Files and Folders =======

2014-04-27 18:29 - 2014-04-27 18:29 - 00020447 _____ () C:\Users\Vittorio\Desktop\FRST.txt
2014-04-27 18:29 - 2014-04-27 18:28 - 00000000 ____D () C:\FRST
2014-04-27 18:29 - 2014-04-27 13:07 - 00000000 ____D () C:\Program Files\Immunet
2014-04-27 18:28 - 2014-04-27 18:28 - 02061824 _____ (Farbar) C:\Users\Vittorio\Desktop\FRST64.exe
2014-04-27 18:28 - 2014-01-22 18:34 - 01640778 _____ () C:\Windows\WindowsUpdate.log
2014-04-27 18:27 - 2014-01-22 18:44 - 00003934 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{5C15B4BC-CB91-488A-8FE8-C4150C676798}
2014-04-27 18:20 - 2014-01-22 18:47 - 00003596 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-369259818-4087978498-4106999455-1001
2014-04-27 18:19 - 2014-01-22 19:52 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Skype
2014-04-27 18:17 - 2014-01-22 18:47 - 00002206 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-04-27 18:16 - 2014-04-27 12:28 - 00004994 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for VBM-Vittorio VBM
2014-04-27 18:15 - 2014-04-27 18:15 - 00000000 ____D () C:\Users\Todos os Usuários\boost_interprocess
2014-04-27 18:15 - 2014-04-27 18:15 - 00000000 ____D () C:\ProgramData\boost_interprocess
2014-04-27 18:15 - 2014-04-27 17:58 - 00058413 _____ () C:\zoek-results.log
2014-04-27 18:15 - 2014-04-18 12:04 - 00000000 ____D () C:\Users\Todos os Usuários\VMware
2014-04-27 18:15 - 2014-04-18 12:04 - 00000000 ____D () C:\ProgramData\VMware
2014-04-27 18:15 - 2014-01-22 18:45 - 00001076 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-27 18:15 - 2014-01-22 18:42 - 00000000 __RDO () C:\Users\Vittorio\SkyDrive
2014-04-27 18:14 - 2013-09-29 21:05 - 00024820 _____ () C:\Windows\PFRO.log
2014-04-27 18:14 - 2013-08-22 11:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-27 18:09 - 2014-04-27 17:55 - 00000000 ____D () C:\zoek_backup
2014-04-27 18:06 - 2014-01-22 18:45 - 00001080 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-27 18:00 - 2013-08-22 12:36 - 00000000 ____D () C:\Windows\system32\sru
2014-04-27 17:56 - 2014-04-27 18:13 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-04-27 17:54 - 2014-04-27 17:54 - 01285120 _____ () C:\Users\Vittorio\Desktop\zoek.exe
2014-04-27 17:30 - 2014-01-24 18:49 - 00000902 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-27 15:16 - 2014-04-27 15:16 - 00002614 _____ () C:\Users\Vittorio\Desktop\JRT (1).exe
2014-04-27 15:15 - 2014-04-27 15:15 - 00002614 _____ () C:\Users\Vittorio\Desktop\JRT.exe
2014-04-27 15:14 - 2014-04-18 12:07 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\VMware
2014-04-27 15:14 - 2014-04-18 12:07 - 00000000 ____D () C:\Users\Vittorio\AppData\Local\VMware
2014-04-27 14:45 - 2013-09-04 18:58 - 00000000 ____D () C:\AdwCleaner
2014-04-27 14:43 - 2014-04-27 14:43 - 01329501 _____ () C:\Users\Vittorio\Desktop\adwcleaner.exe
2014-04-27 14:13 - 2013-08-22 10:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-04-27 14:08 - 2014-04-27 14:10 - 00000787 _____ () C:\Users\Vittorio\Desktop\ZHPFixReport.txt
2014-04-27 14:08 - 2014-04-27 11:45 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\ZHP
2014-04-27 13:08 - 2014-04-27 13:08 - 00000930 _____ () C:\Users\Public\Desktop\Immunet 3.lnk
2014-04-27 13:08 - 2014-04-27 13:08 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ImmunetNetworkMonitor_01009.Wdf
2014-04-27 13:08 - 2014-04-27 13:08 - 00000000 ____D () C:\Users\Todos os Usuários\Immunet
2014-04-27 13:08 - 2014-04-27 13:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immunet 3
2014-04-27 13:08 - 2014-04-27 13:08 - 00000000 ____D () C:\ProgramData\Immunet
2014-04-27 13:08 - 2013-08-22 11:46 - 00028072 _____ () C:\Windows\setupact.log
2014-04-27 13:07 - 2014-04-27 13:08 - 00099584 _____ (Sourcefire, Inc.) C:\Windows\system32\Drivers\ImmunetNetworkMonitor.sys
2014-04-27 13:07 - 2014-04-27 13:08 - 00033024 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\immunetselfprotect.sys
2014-04-27 13:07 - 2014-04-27 13:07 - 16377216 _____ (Sourcefire, Inc.) C:\Users\Vittorio\Downloads\ImmunetProtect.exe
2014-04-27 13:07 - 2014-04-27 13:07 - 00329800 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys
2014-04-27 13:07 - 2014-04-27 13:07 - 00058112 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\immunetprotect.sys
2014-04-27 13:06 - 2014-04-27 13:06 - 00106696 _____ (Immunet Corporation) C:\Users\Vittorio\Downloads\protect-enu.exe
2014-04-27 12:51 - 2014-04-27 12:51 - 00035828 _____ () C:\Users\Vittorio\Desktop\ZHPDiag.txt
2014-04-27 12:49 - 2014-04-27 12:49 - 00846288 _____ () C:\Users\Vittorio\Downloads\80F1.tmp
2014-04-27 12:49 - 2014-04-27 11:45 - 00000000 ____D () C:\Program Files (x86)\ZHPDiag
2014-04-27 12:46 - 2014-04-21 12:22 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-04-27 12:37 - 2013-08-22 12:36 - 00000000 ____D () C:\Windows\AppReadiness
2014-04-27 12:16 - 2014-04-27 12:16 - 00846288 _____ () C:\Users\Vittorio\Downloads\PandaCloudAntivirus.exe
2014-04-27 11:59 - 2014-04-27 11:17 - 00231719 _____ () C:\Users\Vittorio\Downloads\FixBlast.log
2014-04-27 11:45 - 2014-04-27 11:45 - 00002008 _____ () C:\Users\Vittorio\Desktop\ZHPFix.lnk
2014-04-27 11:45 - 2014-04-27 11:45 - 00001877 _____ () C:\Users\Vittorio\Desktop\ZHPDiag.lnk
2014-04-27 11:45 - 2014-04-27 11:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
2014-04-27 11:43 - 2014-04-27 11:42 - 06825069 _____ (Nicolas Coolman ) C:\Users\Vittorio\Downloads\ZHPDiag2.exe
2014-04-27 11:37 - 2014-04-27 11:37 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Malwarebytes
2014-04-27 11:37 - 2014-04-27 11:36 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-04-27 11:36 - 2014-04-27 11:36 - 00000973 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-04-27 11:36 - 2014-04-27 11:36 - 00000000 ____D () C:\Users\Vittorio\Downloads\mbam-chameleon-1.62.1.1000
2014-04-27 11:36 - 2014-04-27 11:36 - 00000000 ____D () C:\Users\Todos os Usuários\Malwarebytes
2014-04-27 11:36 - 2014-04-27 11:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
2014-04-27 11:36 - 2014-04-27 11:36 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-04-27 11:36 - 2014-04-27 11:35 - 00065232 _____ (Malwarebytes) C:\Users\Vittorio\Downloads\regassassin-setup-1.03.exe
2014-04-27 11:35 - 2014-04-27 11:35 - 01440846 _____ () C:\Users\Vittorio\Downloads\mbam-chameleon-1.62.1.1000.zip
2014-04-27 11:17 - 2014-04-27 11:16 - 00135360 _____ (Symantec Corporation) C:\Users\Vittorio\Downloads\FixBlast.exe
2014-04-26 19:55 - 2014-04-26 19:55 - 00003818 _____ () C:\Users\Vittorio\Downloads\test.rc
2014-04-26 19:55 - 2014-04-26 19:55 - 00000533 _____ () C:\Users\Vittorio\Downloads\Data_1.bin
2014-04-26 19:52 - 2014-04-26 19:52 - 00001124 _____ () C:\Users\Vittorio\Downloads\t.txt
2014-04-26 19:46 - 2014-02-15 15:02 - 00000000 ____D () C:\Users\Vittorio\.VirtualBox
2014-04-26 19:30 - 2014-04-26 19:30 - 00081338 _____ (Dental Clinic-Tel.(55)(21)2236-4162/9944-6145) C:\Users\Vittorio\Downloads\DENTCLIN.exe
2014-04-26 19:18 - 2014-04-25 20:15 - 1147574784 _____ () C:\Users\Vittorio\Downloads\Local disk (C)_full_b1_s1_v1.vhd
2014-04-26 19:01 - 2014-04-26 19:01 - 00001018 _____ () C:\Users\Vittorio\Desktop\Resource Hacker.lnk
2014-04-26 19:00 - 2014-04-26 19:00 - 00748246 _____ ( ) C:\Users\Vittorio\Downloads\reshack_setup.exe
2014-04-26 19:00 - 2014-04-26 19:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Resource Hacker
2014-04-26 19:00 - 2014-04-26 19:00 - 00000000 ____D () C:\Program Files (x86)\Resource Hacker
2014-04-26 18:19 - 2014-04-26 16:14 - 00000000 ____D () C:\Users\Todos os Usuários\Spybot - Search & Destroy
2014-04-26 18:19 - 2014-04-26 16:14 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-04-26 18:02 - 2014-01-22 19:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico
2014-04-26 18:02 - 2014-01-22 19:11 - 00000000 ____D () C:\Program Files\KMSpico
2014-04-26 17:34 - 2013-09-30 01:15 - 01805284 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-26 17:34 - 2013-09-30 00:56 - 00777386 _____ () C:\Windows\system32\prfh0416.dat
2014-04-26 17:34 - 2013-09-30 00:56 - 00159506 _____ () C:\Windows\system32\prfc0416.dat
2014-04-26 17:32 - 2014-04-10 17:11 - 00000000 ____D () C:\Users\Todos os Usuários\SimAquarium
2014-04-26 17:32 - 2014-04-10 17:11 - 00000000 ____D () C:\ProgramData\SimAquarium
2014-04-26 16:46 - 2014-04-26 16:46 - 28172368 _____ (Panda Security ) C:\Users\Vittorio\Downloads\PandaCloudCleaner (1).exe
2014-04-26 16:43 - 2014-04-26 16:43 - 00001303 _____ () C:\Users\Public\Desktop\Panda Cloud Cleaner.lnk
2014-04-26 16:43 - 2014-04-26 16:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Security
2014-04-26 16:42 - 2014-04-26 16:42 - 00000000 ____D () C:\Program Files (x86)\Panda Security
2014-04-26 16:42 - 2014-04-26 16:41 - 28413552 _____ (Panda Security ) C:\Users\Vittorio\Downloads\PandaCloudCleaner.exe
2014-04-26 16:39 - 2014-04-26 16:38 - 00000000 ____D () C:\LinhaDefensiva
2014-04-26 16:18 - 2014-04-26 16:14 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-04-26 16:17 - 2014-04-26 16:17 - 00178597 _____ (Igor Pavlov) C:\Users\Vittorio\Downloads\bankerfix.exe
2014-04-26 16:15 - 2014-04-26 16:15 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2014-04-26 16:14 - 2014-04-26 16:14 - 00001408 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2014-04-26 16:14 - 2014-04-26 16:14 - 00001396 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-04-26 16:14 - 2014-04-26 16:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2014-04-26 16:12 - 2014-04-26 16:12 - 00315392 _____ (Malwarebytes Corporation) C:\Users\Vittorio\Downloads\mbam-clean-2.0.2.0.exe
2014-04-26 16:11 - 2014-04-26 16:10 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\Vittorio\Downloads\spybot-2.2.exe
2014-04-26 15:55 - 2014-04-26 15:54 - 00002422 _____ () C:\Users\Vittorio\Downloads\mbam-setup-2.0.1.1004.exe
2014-04-26 15:53 - 2014-04-26 15:53 - 00000000 ____D () C:\Windows\SysWOW64\X86
2014-04-26 15:53 - 2014-04-26 15:53 - 00000000 ____D () C:\Windows\SysWOW64\AMD64
2014-04-26 15:52 - 2014-04-26 15:52 - 00000000 ____D () C:\Users\Vittorio\AppData\Local\Comodo
2014-04-26 15:52 - 2014-04-26 15:52 - 00000000 ____D () C:\Users\Convidado\AppData\Local\Google
2014-04-26 15:52 - 2014-04-26 15:52 - 00000000 ____D () C:\Users\Convidado\AppData\Local\Comodo
2014-04-26 15:52 - 2014-04-26 15:52 - 00000000 ____D () C:\Users\Convidado
2014-04-26 15:52 - 2014-04-26 15:52 - 00000000 ____D () C:\Users\Administrador\AppData\Local\Google
2014-04-26 15:52 - 2014-04-26 15:52 - 00000000 ____D () C:\Users\Administrador\AppData\Local\Comodo
2014-04-26 15:52 - 2014-04-26 15:52 - 00000000 ____D () C:\Users\Administrador
2014-04-26 15:52 - 2014-04-26 15:52 - 00000000 ____D () C:\Users\___VMware_Conv_SA___\AppData\Local\Google
2014-04-26 15:52 - 2014-04-26 15:52 - 00000000 ____D () C:\Users\___VMware_Conv_SA___\AppData\Local\Comodo
2014-04-26 15:52 - 2014-04-26 15:52 - 00000000 ____D () C:\Users\___VMware_Conv_SA___
2014-04-26 15:52 - 2014-01-22 18:45 - 00000000 ____D () C:\Users\Vittorio\AppData\Local\Google
2014-04-26 15:17 - 2014-04-18 18:08 - 00000000 ____D () C:\Users\Vittorio\VirtualBox VMs
2014-04-26 11:38 - 2014-04-18 12:12 - 00000000 ____D () C:\Users\Vittorio\Documents\Virtual Machines
2014-04-26 11:32 - 2014-04-26 11:32 - 00053881 _____ () C:\Users\Vittorio\Downloads\That.Awkward.Moment.2014-[Você precisa estar registrado e conectado para ver este link.]
2014-04-26 11:27 - 2014-01-23 21:31 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\uTorrent
2014-04-26 10:42 - 2014-04-26 10:42 - 00180336 _____ () C:\Users\Vittorio\Downloads\that-awkward-moment-brazilian-portuguese-yify-12411.zip
2014-04-25 21:16 - 2014-04-25 20:43 - 647888896 _____ () C:\Users\Vittorio\Downloads\Local disk (C)_full_b1_s1_v1.vmdk
2014-04-25 20:00 - 2014-04-25 20:00 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\10tons
2014-04-25 19:59 - 2014-04-25 19:59 - 00002039 _____ () C:\Users\Vittorio\Desktop\Sparkle Unleashed.lnk
2014-04-25 19:59 - 2014-04-25 19:59 - 00000000 ____D () C:\Windows\Sparkle Unleashed
2014-04-25 19:59 - 2014-04-25 19:59 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sparkle Unleashed
2014-04-25 19:59 - 2014-04-25 19:59 - 00000000 ____D () C:\Program Files (x86)\Sparkle Unleashed
2014-04-25 19:57 - 2014-04-25 19:48 - 111060158 _____ () C:\Users\Vittorio\Downloads\Sparkle Unleashed.rar
2014-04-25 19:06 - 2014-04-25 19:06 - 00001355 _____ () C:\Users\Public\Desktop\StarWind V2V Image Converter.lnk
2014-04-25 19:06 - 2014-04-25 19:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarWind Software
2014-04-25 19:06 - 2014-04-25 19:06 - 00000000 ____D () C:\Program Files (x86)\StarWind Software
2014-04-25 19:05 - 2014-04-25 19:05 - 01631592 _____ (StarWind Software ) C:\Users\Vittorio\Downloads\StarWindConverter.exe
2014-04-25 18:14 - 2014-04-25 18:14 - 00058182 _____ () C:\Users\Vittorio\Desktop\ConverterDiagnostics20140425181353.zip
2014-04-24 19:02 - 2014-04-24 19:02 - 00051904 _____ () C:\Users\Vittorio\Downloads\veronica-mars-brazilian-portuguese-yify-12342 (1).zip
2014-04-24 18:45 - 2014-04-24 18:45 - 00051904 _____ () C:\Users\Vittorio\Downloads\veronica-mars-brazilian-portuguese-yify-12342.zip
2014-04-24 18:29 - 2014-04-24 18:29 - 00000000 ____D () C:\Users\Vittorio\AppData\Local\WinZip
2014-04-24 18:29 - 2014-04-24 18:27 - 00000000 ____D () C:\Users\Todos os Usuários\WinZip
2014-04-24 18:29 - 2014-04-24 18:27 - 00000000 ____D () C:\ProgramData\WinZip
2014-04-24 18:28 - 2014-04-24 18:28 - 00002002 _____ () C:\Users\Public\Desktop\WinZip.lnk
2014-04-24 18:28 - 2014-04-24 18:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2014-04-24 18:28 - 2014-01-22 18:38 - 00000000 ____D () C:\Users\Vittorio
2014-04-24 18:27 - 2014-04-24 18:27 - 00000000 ____D () C:\Program Files (x86)\WinZip
2014-04-24 18:12 - 2014-04-20 19:09 - 00032320 _____ (FNet Co., Ltd.) C:\Windows\system32\Drivers\FNETTBOH_305.SYS
2014-04-24 18:04 - 2014-04-24 17:50 - 00000000 ____D () C:\Users\Vittorio\Downloads\veronica-mars-brazilian-portuguese-yify-12315
2014-04-24 17:50 - 2014-04-24 17:50 - 00000000 ____D () C:\Users\Vittorio\Downloads\veronica-mars-english-yify-12290
2014-04-24 17:49 - 2014-04-24 17:49 - 00056819 _____ () C:\Users\Vittorio\Downloads\veronica-mars-english-yify-12290.zip
2014-04-24 17:49 - 2014-04-24 17:49 - 00051909 _____ () C:\Users\Vittorio\Downloads\veronica-mars-brazilian-portuguese-yify-12315.zip
2014-04-24 17:16 - 2013-08-22 10:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2014-04-23 19:03 - 2014-04-23 19:03 - 00032445 _____ () C:\Users\Vittorio\Downloads\the-east-portuguese-yify-8404.zip
2014-04-23 13:14 - 2014-04-23 13:14 - 00001292 _____ () C:\Users\Public\Desktop\FileRestore Professional.lnk
2014-04-23 13:14 - 2014-04-23 13:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileRestore Professional
2014-04-23 13:14 - 2014-04-23 13:14 - 00000000 ____D () C:\Program Files (x86)\PC Recovery
2014-04-23 12:25 - 2014-04-23 12:25 - 00001047 _____ () C:\Users\Public\Desktop\Roadkil's Unstoppable Copier.lnk
2014-04-23 12:25 - 2014-04-23 12:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roadkil.Net
2014-04-23 12:25 - 2014-04-23 12:25 - 00000000 ____D () C:\Program Files (x86)\Roadkil.Net
2014-04-23 12:24 - 2014-04-23 12:24 - 00427256 _____ (Roadkil.Net ) C:\Users\Vittorio\Downloads\UnstopCpy_5_2_Win2K_UP_Setup.exe
2014-04-23 12:22 - 2014-04-23 12:20 - 00000000 ____D () C:\Program Files (x86)\ICE ECC
2014-04-23 12:20 - 2014-04-23 12:20 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ICE ECC
2014-04-23 12:20 - 2014-04-23 12:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ICE ECC
2014-04-23 12:19 - 2014-04-23 12:19 - 00719786 _____ () C:\Users\Vittorio\Downloads\ICEECCSetup.exe
2014-04-23 11:48 - 2014-04-18 11:53 - 00000000 ____D () C:\Users\Todos os Usuários\Acronis
2014-04-23 11:48 - 2014-04-18 11:53 - 00000000 ____D () C:\ProgramData\Acronis
2014-04-23 00:24 - 2013-08-22 12:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-04-23 00:20 - 2014-01-23 18:02 - 00000000 ____D () C:\Users\Todos os Usuários\Microsoft Help
2014-04-23 00:20 - 2014-01-23 18:02 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-04-23 00:19 - 2013-08-22 12:36 - 00000000 ____D () C:\Program Files\Common Files\System
2014-04-23 00:19 - 2013-08-22 10:25 - 00000167 _____ () C:\Windows\win.ini
2014-04-22 20:52 - 2014-04-22 20:50 - 02544453 _____ () C:\Users\Vittorio\Downloads\Ot.rar
2014-04-22 19:47 - 2014-04-22 19:47 - 00166304 _____ () C:\Users\Vittorio\Downloads\the-railway-man-brazilian-portuguese-yify-12178.zip
2014-04-22 19:16 - 2014-04-21 12:24 - 00000000 ____D () C:\Users\Vittorio\AppData\Local\Plex Media Server
2014-04-22 19:14 - 2014-04-22 19:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plex Media Server
2014-04-22 19:13 - 2014-04-22 19:13 - 00000000 ____D () C:\Program Files (x86)\Plex
2014-04-22 19:09 - 2014-04-22 19:09 - 63290992 _____ (Plex, Inc.) C:\Users\Vittorio\Downloads\Plex-Media-Server-0.9.907.429-f80a8d6-en-US.exe
2014-04-21 12:48 - 2014-04-21 12:48 - 00000000 ____D () C:\Users\Vittorio\AppData\Local\Intel_Corporation
2014-04-21 12:44 - 2014-04-21 12:44 - 04082616 _____ (Intel Corporation) C:\Users\Vittorio\Downloads\Intel(R) WiDi Remote Setup.exe
2014-04-21 12:44 - 2014-04-21 12:44 - 00002531 _____ () C:\Users\Public\Desktop\Intel WiDi Remote.lnk
2014-04-21 12:44 - 2014-04-21 12:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Corporation
2014-04-21 12:44 - 2014-04-21 12:44 - 00000000 ____D () C:\Program Files (x86)\Intel Corporation
2014-04-21 12:35 - 2014-04-21 12:35 - 08420211 _____ () C:\Users\Vittorio\Downloads\20070813082717640_Samsung_USB_Driver_Installer.exe
2014-04-21 12:24 - 2014-04-21 12:24 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Apple Computer
2014-04-21 12:24 - 2014-04-21 12:24 - 00000000 ____D () C:\Users\Vittorio\AppData\Local\Apple Computer
2014-04-21 12:22 - 2014-04-21 12:22 - 52385872 _____ (Microsoft Corporation) C:\Users\Vittorio\Downloads\Plex-Media-Server-v0.9.502-en-US.exe
2014-04-21 12:22 - 2014-04-21 12:22 - 00000000 ____D () C:\Users\Todos os Usuários\Apple
2014-04-21 12:22 - 2014-04-21 12:22 - 00000000 ____D () C:\ProgramData\Apple
2014-04-21 12:22 - 2014-04-21 12:22 - 00000000 ____D () C:\Program Files\Bonjour
2014-04-21 12:19 - 2014-04-21 12:19 - 00684088 _____ () C:\Users\Vittorio\Downloads\lg-smart-share.exe
2014-04-20 20:10 - 2013-08-22 12:36 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-04-20 19:09 - 2014-04-20 19:09 - 00016648 _____ (FNet Co., Ltd.) C:\Windows\system32\Drivers\FNETURPX.SYS
2014-04-20 19:09 - 2014-04-20 19:09 - 00001902 _____ () C:\Users\Public\Desktop\XFast USB.LNK
2014-04-20 19:09 - 2014-04-20 19:09 - 00000000 ____D () C:\Users\Todos os Usuários\FNET
2014-04-20 19:09 - 2014-04-20 19:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast USB
2014-04-20 19:09 - 2014-04-20 19:09 - 00000000 ____D () C:\ProgramData\FNET
2014-04-20 19:09 - 2014-04-20 19:09 - 00000000 ____D () C:\Program Files (x86)\XFastUSB
2014-04-20 19:08 - 2014-04-20 19:08 - 04723339 _____ () C:\Users\Vittorio\Downloads\XFastUSB(v3.02.31).zip
2014-04-20 18:26 - 2014-04-20 18:26 - 00023005 _____ () C:\Users\Vittorio\Downloads\the-legend-of-hercules-brazilian-portuguese-yify-10525.zip
2014-04-20 18:17 - 2014-04-20 18:17 - 00026300 _____ () C:\Users\Vittorio\Downloads\khumba-brazilian-portuguese-yify-12088.zip
2014-04-20 18:15 - 2014-04-20 18:15 - 00030165 _____ () C:\Users\Vittorio\Downloads\zambezia-brazilian-portuguese-yify-6056.zip
2014-04-20 14:20 - 2014-04-20 14:20 - 00011943 _____ () C:\Users\Vittorio\Downloads\CassioSanches_legendas_tv_20140415073335.rar
2014-04-20 13:19 - 2014-04-20 13:19 - 00037135 _____ () C:\Users\Vittorio\Downloads\The.Physician.2013-[Você precisa estar registrado e conectado para ver este link.]
2014-04-20 13:18 - 2014-04-20 13:18 - 00037646 _____ () C:\Users\Vittorio\Downloads\the-physician-brazilian-portuguese-yify-11942.zip
2014-04-20 11:26 - 2014-01-22 19:34 - 00000000 ____D () C:\Users\Todos os Usuários\Oracle
2014-04-20 11:26 - 2014-01-22 19:34 - 00000000 ____D () C:\ProgramData\Oracle
2014-04-20 11:17 - 2014-04-20 11:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-04-20 11:17 - 2014-04-20 11:16 - 00004244 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_55-b14.log
2014-04-20 11:17 - 2014-01-22 19:34 - 00000000 ____D () C:\Program Files (x86)\Java
2014-04-20 00:06 - 2014-04-20 00:06 - 00000291 _____ () C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lixeira.lnk
2014-04-19 17:39 - 2014-03-30 11:39 - 00000000 ____D () C:\Users\Vittorio\Desktop\Driver Checker v2.7.5
2014-04-19 15:56 - 2014-04-19 15:56 - 00225656 _____ () C:\Users\Vittorio\Downloads\RoboCop.2014-[Você precisa estar registrado e conectado para ver este link.]
2014-04-19 15:48 - 2014-04-19 15:48 - 00052117 _____ () C:\Users\Vittorio\Downloads\jewtopia-brazilian-portuguese-yify-11055.zip
2014-04-19 14:03 - 2014-04-19 14:03 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Symantec
2014-04-19 14:03 - 2014-04-19 14:03 - 00000000 ____D () C:\Users\Vittorio\AppData\Local\Symantec_Corporation
2014-04-19 13:42 - 2014-04-19 13:36 - 00000000 ____D () C:\Users\Todos os Usuários\Symantec
2014-04-19 13:42 - 2014-04-19 13:36 - 00000000 ____D () C:\ProgramData\Symantec
2014-04-19 13:39 - 2014-04-19 13:39 - 00000000 ____D () C:\Program Files (x86)\Symantec
2014-04-19 13:39 - 2014-04-19 13:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Symantec System Recovery
2014-04-19 13:38 - 2014-04-19 13:38 - 00000000 ____D () C:\Program Files\Symantec
2014-04-19 13:38 - 2014-04-19 13:38 - 00000000 ____D () C:\Program Files\Common Files\Symantec Shared
2014-04-19 12:45 - 2014-01-28 17:25 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Nitro PDF
2014-04-19 00:01 - 2013-08-22 12:36 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
2014-04-18 23:26 - 2014-01-24 18:48 - 00000000 ____D () C:\Users\Vittorio\AppData\Local\Adobe
2014-04-18 23:25 - 2014-04-18 23:25 - 00000000 ____D () C:\Users\Todos os Usuários\McAfee
2014-04-18 23:25 - 2014-04-18 23:25 - 00000000 ____D () C:\ProgramData\McAfee
2014-04-18 23:25 - 2014-01-24 18:49 - 00003790 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-04-18 18:29 - 2014-04-18 15:39 - 00000000 ____D () C:\Users\Vittorio\Downloads\Mac OSX Snow Leopard 10.6.7 Intel AMD Vmware Image
2014-04-18 18:02 - 2014-04-18 14:02 - 00000000 ____D () C:\Users\Vittorio\Downloads\OS X Mountain Lion 10.8.3 VMware Image
2014-04-18 17:57 - 2014-04-18 17:56 - 04329002 _____ () C:\Users\Vittorio\Downloads\unlock-all-v120.zip
2014-04-18 15:06 - 2014-04-18 15:06 - 00001146 _____ () C:\Users\Public\Desktop\Opera.lnk
2014-04-18 15:06 - 2014-04-18 15:06 - 00001146 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2014-04-18 15:06 - 2014-04-18 15:06 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Opera Software
2014-04-18 15:06 - 2014-04-18 15:06 - 00000000 ____D () C:\Users\Vittorio\AppData\Local\Opera Software
2014-04-18 15:06 - 2014-04-18 15:06 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-04-18 14:40 - 2014-04-18 14:40 - 02536266 _____ (Oleg N. Scherbakov) C:\Users\Vittorio\Downloads\Mac OS X Lion VMware Files.exe
2014-04-18 14:17 - 2014-04-18 14:17 - 00001315 _____ () C:\Users\Public\Desktop\VMware vCenter Converter Standalone Client.lnk
2014-04-18 14:17 - 2014-04-18 14:17 - 00001024 _____ () C:\.rnd
2014-04-18 14:17 - 2014-04-18 12:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware
2014-04-18 14:17 - 2014-04-18 12:04 - 00000000 ____D () C:\Program Files (x86)\VMware
2014-04-18 12:38 - 2014-04-18 12:38 - 03916136 _____ () C:\Users\Vittorio\Downloads\unlock-all-v110.rar
2014-04-18 12:05 - 2014-04-18 12:05 - 01813972 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-04-18 12:05 - 2014-04-18 12:05 - 00002148 _____ () C:\Users\Public\Desktop\VMware Workstation.lnk
2014-04-18 12:05 - 2014-04-18 12:05 - 00001024 _____ () C:\Windows\SysWOW64\%TMP%
2014-04-18 12:05 - 2014-04-18 12:05 - 00000000 ____D () C:\Program Files\Common Files\VMware
2014-04-18 12:04 - 2014-04-18 12:04 - 00000000 ____D () C:\Users\Public\Documents\Shared Virtual Machines
2014-04-18 11:54 - 2014-04-18 11:54 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Acronis
2014-04-18 11:53 - 2014-04-18 11:53 - 01464096 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tdrpman.sys
2014-04-18 11:53 - 2014-04-18 11:53 - 01120032 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tib.sys
2014-04-18 11:53 - 2014-04-18 11:53 - 00367200 _____ (Acronis) C:\Windows\system32\Drivers\afcdp.sys
2014-04-18 11:53 - 2014-04-18 11:53 - 00269600 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\snapman.sys
2014-04-18 11:53 - 2014-04-18 11:53 - 00198432 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tib_mounter.sys
2014-04-18 11:53 - 2014-04-18 11:53 - 00116000 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\fltsrv.sys
2014-04-18 11:53 - 2014-04-18 11:53 - 00001222 _____ () C:\Users\Public\Desktop\Acronis True Image 2014.lnk
2014-04-18 11:53 - 2014-04-18 11:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis
2014-04-18 11:52 - 2014-04-18 11:52 - 00000000 ____D () C:\Program Files (x86)\Acronis
2014-04-14 20:13 - 2014-04-20 11:17 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-04-14 20:05 - 2014-04-20 11:17 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-04-14 20:05 - 2014-04-20 11:17 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-04-14 20:04 - 2014-04-20 11:17 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-04-14 18:13 - 2014-04-14 18:13 - 00001966 _____ () C:\Users\Vittorio\Desktop\Aztec Bricks.lnk
2014-04-14 18:13 - 2014-04-14 18:13 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aztec Bricks
2014-04-14 18:13 - 2014-04-14 18:12 - 00000000 ____D () C:\Program Files (x86)\Aztec Bricks
2014-04-14 18:12 - 2014-04-14 18:12 - 00000000 ____D () C:\Windows\Aztec Bricks
2014-04-14 16:41 - 2014-04-18 12:06 - 00931032 _____ (VMware, Inc.) C:\Windows\system32\vnetlib64.dll
2014-04-14 16:41 - 2014-04-18 12:06 - 00437976 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
2014-04-14 16:41 - 2014-04-18 12:06 - 00359128 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
2014-04-14 16:41 - 2014-04-18 12:06 - 00064728 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmx86.sys
2014-04-14 16:41 - 2014-04-18 12:06 - 00032472 _____ (VMware, Inc.) C:\Windows\system32\Drivers\VMparport.sys
2014-04-14 16:41 - 2014-04-18 12:06 - 00031448 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnetuserif.sys
2014-04-14 16:40 - 2014-04-14 16:40 - 00080464 _____ (VMware, Inc.) C:\Windows\system32\vmnetbridge.dll
2014-04-14 16:40 - 2014-04-14 16:40 - 00049232 _____ (VMware, Inc.) C:\Windows\system32\vnetinst.dll
2014-04-14 16:40 - 2014-04-14 16:40 - 00046160 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnetbridge.sys
2014-04-14 16:40 - 2014-04-14 16:40 - 00024656 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnet.sys
2014-04-14 16:40 - 2014-04-14 16:40 - 00020560 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnetadapter.sys
2014-04-12 20:13 - 2014-02-19 17:44 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\8floor
2014-04-12 20:10 - 2014-04-12 20:10 - 00002071 _____ () C:\Users\Vittorio\Desktop\Riddles of The Mask.lnk
2014-04-12 20:10 - 2014-04-12 20:10 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Riddles of The Mask
2014-04-12 20:10 - 2014-04-12 20:09 - 00000000 ____D () C:\Program Files (x86)\Riddles of The Mask
2014-04-12 20:09 - 2014-04-12 20:09 - 00000000 ____D () C:\Windows\Riddles of The Mask
2014-04-12 20:07 - 2014-04-12 20:02 - 43356700 _____ () C:\Users\Vittorio\Downloads\Riddles of The Mask.rar
2014-04-11 22:55 - 2014-04-11 22:55 - 00002080 _____ () C:\Users\Vittorio\Desktop\The Beardless Wizard.lnk
2014-04-11 22:55 - 2014-04-11 22:55 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Beardless Wizard
2014-04-11 22:55 - 2014-04-11 22:54 - 00000000 ____D () C:\Program Files (x86)\The Beardless Wizard
2014-04-11 22:54 - 2014-04-11 22:54 - 00000000 ____D () C:\Windows\The Beardless Wizard
2014-04-11 14:55 - 2014-04-11 14:55 - 00000000 ____D () C:\Users\Vittorio\Documents\Modelos Personalizados do Office
2014-04-10 17:11 - 2014-04-10 17:10 - 00000000 ____D () C:\Program Files (x86)\Sim Aquarium 3
2014-04-10 17:11 - 2014-01-22 18:40 - 00000000 ____D () C:\Users\Vittorio\AppData\Local\VirtualStore
2014-04-10 17:10 - 2014-04-10 17:10 - 00001206 _____ () C:\Users\Vittorio\Desktop\Clownfish Aquarium.lnk
2014-04-10 17:10 - 2014-04-10 17:10 - 00001204 _____ () C:\Users\Vittorio\Desktop\Sim Aquarium 3.lnk
2014-04-10 17:10 - 2014-04-10 17:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sim Aquarium 3
2014-04-10 17:10 - 2014-04-09 18:56 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\SimAquarium
2014-04-09 19:03 - 2014-01-23 21:47 - 00000000 ____D () C:\Users\Vittorio\AppData\Local\Windows Live
2014-04-09 18:56 - 2014-04-09 18:56 - 08974863 _____ () C:\Users\Vittorio\Downloads\Fish.themepack
2014-04-09 18:55 - 2014-04-09 18:55 - 37429256 _____ (Ladislav Vojnic ) C:\Users\Vittorio\Downloads\SimAQUARIUM-V3.exe
2014-04-09 18:42 - 2014-04-09 18:42 - 00003258 _____ () C:\Windows\System32\Tasks\{7E8591AA-5411-496D-A007-D421A5F11236}
2014-04-09 18:23 - 2014-04-09 18:23 - 00002134 _____ () C:\Users\Vittorio\Desktop\2 Tasty Too lamour a Paris Update .lnk
2014-04-09 18:23 - 2014-04-09 18:23 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\2 Tasty Too lamour a Paris Update
2014-04-09 18:23 - 2014-04-09 18:23 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Maximize Games
2014-04-09 18:23 - 2014-04-09 18:23 - 00000000 ____D () C:\Users\Todos os Usuários\Maximize Games
2014-04-09 18:23 - 2014-04-09 18:23 - 00000000 ____D () C:\ProgramData\Maximize Games
2014-04-09 18:22 - 2014-04-09 18:22 - 00000000 ____D () C:\Program Files (x86)\2 Tasty Too lamour a Paris Update
2014-04-09 18:07 - 2014-04-09 17:40 - 285385361 _____ () C:\Users\Vittorio\Downloads\2_Tasty_Too_lamour_a_Paris_Update.rar
2014-04-09 16:44 - 2014-04-09 16:44 - 00002569 _____ () C:\Users\Vittorio\Downloads\install_flashplayer13x32au_mssd_aaa_aih.exe
2014-04-08 18:49 - 2014-01-23 18:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2014-04-08 18:48 - 2014-01-25 13:48 - 00000000 ____D () C:\Windows\system32\MRT
2014-04-08 18:46 - 2014-01-25 13:48 - 90655440 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-04-08 17:51 - 2014-04-08 17:51 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-04-08 17:51 - 2014-04-08 17:51 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-07 22:21 - 2014-04-07 22:21 - 24472525 _____ () C:\Users\Vittorio\Downloads\LIVRO ILUSTRADO - Eu Não Consigo Emagrecer - Pierre Dukan.zip
2014-04-04 19:34 - 2014-04-04 19:34 - 00001993 _____ () C:\Users\Vittorio\Desktop\TimeAdjuster.lnk
2014-04-04 19:34 - 2014-04-04 19:34 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TimeAdjuster
2014-04-04 19:34 - 2014-04-04 19:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TimeAdjuster
2014-04-04 19:34 - 2014-04-04 19:34 - 00000000 ____D () C:\Program Files (x86)\TimeAdjuster
2014-04-04 19:33 - 2014-04-04 19:33 - 00953448 _____ () C:\Users\Vittorio\Desktop\time-adjuster-3.1-multi.zip
2014-04-04 19:07 - 2014-04-04 19:06 - 00000000 ____D () C:\Program Files (x86)\Subtitle Workshop
2014-04-04 19:06 - 2014-04-04 19:06 - 00002083 _____ () C:\Users\Vittorio\Desktop\Subtitle Workshop.lnk
2014-04-04 19:06 - 2014-04-04 19:06 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Subtitle Workshop
2014-04-04 19:06 - 2014-04-04 19:05 - 02059818 _____ () C:\Users\Vittorio\Downloads\SubtitleWorkshop_6.0b_131121_installer.exe
2014-04-04 19:02 - 2014-04-04 19:02 - 00249856 ____N (Microsoft Corporation) C:\Windows\Setup1.exe
2014-04-04 19:02 - 2014-04-04 19:02 - 00073216 _____ (Microsoft Corporation) C:\Windows\ST6UNST.EXE
2014-04-04 19:02 - 2014-04-04 19:02 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SubSync
2014-04-04 19:02 - 2014-04-04 19:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SubSync
2014-04-04 19:02 - 2014-04-04 19:02 - 00000000 ____D () C:\Program Files (x86)\SubSync
2014-04-04 19:02 - 2014-01-22 18:40 - 00000000 ___RD () C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-04-02 08:29 - 2014-04-04 19:54 - 00080426 _____ () C:\Users\Vittorio\Desktop\The Nut Job (2014) 720p HDRip [G2G].srt
2014-04-01 19:17 - 2014-04-01 19:17 - 00002085 _____ () C:\Users\Vittorio\Desktop\Disharmony Blocks 2.lnk
2014-04-01 19:17 - 2014-04-01 19:17 - 00000000 ____D () C:\Windows\Disharmony Blocks 2
2014-04-01 19:17 - 2014-04-01 19:17 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Disharmony Blocks 2
2014-04-01 19:17 - 2014-04-01 19:17 - 00000000 ____D () C:\Users\Vittorio\AppData\Roaming\Disharmony Blocks II
2014-04-01 19:17 - 2014-04-01 19:17 - 00000000 ____D () C:\Program Files (x86)\Disharmony Blocks 2
2014-04-01 19:13 - 2014-04-01 19:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AC3Filter
2014-04-01 19:13 - 2014-04-01 19:13 - 00000000 ____D () C:\Program Files (x86)\AC3Filter
2014-04-01 19:04 - 2014-04-01 18:54 - 43974609 _____ () C:\Users\Vittorio\Downloads\Disharmony Blocks 2.rar
2014-03-31 18:23 - 2013-08-22 12:38 - 00693240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-03-31 18:23 - 2013-08-22 12:38 - 00105464 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-03-30 22:16 - 2014-04-08 17:56 - 23134208 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-30 20:57 - 2014-04-08 17:56 - 17073152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-03-30 17:01 - 2014-01-22 18:45 - 00004052 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-03-30 17:01 - 2014-01-22 18:45 - 00003816 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-03-30 16:09 - 2014-01-22 19:14 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-03-29 20:25 - 2014-03-29 20:25 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-29 11:05 - 2014-03-29 11:05 - 00001097 _____ () C:\Users\Public\Desktop\Oracle VM VirtualBox.lnk
2014-03-29 11:05 - 2014-03-29 11:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2014-03-29 11:05 - 2014-03-29 11:05 - 00000000 ____D () C:\Program Files\Oracle

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-04-24 17:16

==================== End Of Log ============================
avatar
vbm
Iniciante
Iniciante

Mensagens : 20
Reputação : 0
Data de inscrição : 27/04/2014

Voltar ao Topo Ir em baixo

Re: Não consigo instalar o malwarebytes

Mensagem por vbm em Dom 27 Abr 2014, 18:35

Addition.txt:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-04-2014
Ran by Vittorio at 2014-04-27 18:29:48
Running from C:\Users\Vittorio\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Immunet 3 (Enabled - Up to date) {065276D9-6EBF-968C-B5ED-7B8B1DCF4059}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}

==================== Installed Programs ======================

µTorrent (HKCU\...\uTorrent) (Version: 3.3.2.30488 - BitTorrent Inc.)
2 Tasty Too lamour a Paris Update (HKLM-x32\...\2 Tasty Too lamour a Paris Update1.0) (Version: 1.0 - AllSmartGames)
AC3Filter 1.63b (HKLM-x32\...\AC3Filter_is1) (Version: 1.63b - Alexander Vigovsky)
Acronis True Image 2014 (HKLM-x32\...\{6B38A7DF-F641-45D5-BBCA-3E676ABCF5C8}Visible) (Version: 17.0.6673 - Acronis)
Acronis True Image 2014 (x32 Version: 17.0.6673 - Acronis) Hidden
Adblock Plus for IE (32-bit and 64-bit) (HKLM\...\{C23EE7CE-C1A3-4F94-A8F0-9E0AC9C6DE6E}) (Version: 1.1 - Eyeo GmbH)
Adblock Plus for IE (HKLM-x32\...\{fd97d1e2-368a-4cd9-af63-8eeff938044a}) (Version: 1.1 - )
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.182 - Adobe Systems Incorporated)
AMD APP SDK Runtime (Version: 10.0.938.2 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{F4C71C2A-F068-8EEB-61AE-EA4707C57A1B}) (Version: 8.0.881.0 - Advanced Micro Devices, Inc.)
AMD Fuel (Version: 2012.0806.1213.19931 - Nome de sua empresa:) Hidden
AMD VISION Engine Control Center (x32 Version: 2012.0806.1213.19931 - Nome de sua empresa:) Hidden
Arquivo do WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - )
AutoCAD 2014 - English (Version: 19.1.18.0 - Autodesk) Hidden
AutoCAD 2014 Language Pack - English (Version: 19.1.18.0 - Autodesk) Hidden
Autodesk 360 (HKLM\...\{52B28CAD-F49D-47BA-9FFE-29C2E85F0D0B}) (Version: 4.0.27.1 - Autodesk)
Autodesk App Manager (HKLM-x32\...\{C070121A-C8C5-4D52-9A7D-D240631BD433}) (Version: 1.1.0 - Autodesk)
Autodesk AutoCAD 2014 - English (HKLM\...\AutoCAD 2014 - English) (Version: 19.1.18.0 - Autodesk)
Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.1.3.0 - Autodesk)
Autodesk Content Service (x32 Version: 3.1.3.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (x32 Version: 3.1.3.0 - Autodesk) Hidden
Autodesk Featured Apps (HKLM-x32\...\{F732FEDA-7713-4428-934B-EF83B8DD65D0}) (Version: 1.1.0 - Autodesk)
Autodesk Material Library 2014 (HKLM-x32\...\{644F9B19-A462-499C-BF4D-300ABC2A28B1}) (Version: 4.0.19.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2014 (HKLM-x32\...\{51BF3210-B825-4092-8E0D-66D689916E02}) (Version: 4.0.19.0 - Autodesk)
Autodesk ReCap (HKLM\...\Autodesk ReCap) (Version: 1.0.43.13 - Autodesk)
Autodesk ReCap (Version: 1.0.43.13 - Autodesk) Hidden
Autodesk ReCap Language Pack-English (Version: 1.0.43.13 - Autodesk) Hidden
Aztec Bricks (HKLM-x32\...\Aztec BricksFinal) (Version: Final - AllSmartGames)
Bonjour (HKLM\...\{E4F5E48E-7155-4CF9-88CD-7F377EC9AC54}) (Version: 2.0.4.0 - Apple Inc.)
Carnaval Mahjong (HKLM-x32\...\Carnaval MahjongFinal) (Version: Final - AllSmartGames)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2012.0806.1213.19931 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2012.0806.1213.19931 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2012.0806.1213.19931 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2012.0806.1212.19931 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2012.0806.1212.19931 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2012.0806.1212.19931 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2012.0806.1212.19931 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2012.0806.1212.19931 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2012.0806.1212.19931 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2012.0806.1212.19931 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2012.0806.1212.19931 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2012.0806.1212.19931 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2012.0806.1212.19931 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2012.0806.1212.19931 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2012.0806.1212.19931 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2012.0806.1212.19931 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2012.0806.1212.19931 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2012.0806.1212.19931 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2012.0806.1212.19931 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2012.0806.1212.19931 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2012.0806.1212.19931 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2012.0806.1212.19931 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2012.0806.1212.19931 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2012.0806.1212.19931 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2012.0806.1212.19931 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2012.0806.1213.19931 - Advanced Micro Devices, Inc.) Hidden
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
CoffeeCup Web Form Builder - Registered (HKLM-x32\...\CoffeeCup Web Form Builder - Registered) (Version: - )
COLOGA versão 3.5.2 (HKLM-x32\...\{E2027A17-F4AD-4D3D-A44F-B97EB89DBD9A}_is1) (Version: 3.5.2 - GSN Sistemas)
CutePDF Writer 3.0 (HKLM\...\CutePDF Writer Installation) (Version: 3.0 - Acro Software Inc.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Definition Update for Microsoft Office 2013 (KB2760587) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{F68634D8-574F-42B2-B6D0-9B447EA9581E}) (Version: - Microsoft)
Demigods (HKLM-x32\...\DemigodsFinal) (Version: Final - AllSmartGames)
Disharmony Blocks 2 (HKLM-x32\...\Disharmony Blocks 2Final) (Version: Final - AllSmartGames)
Easy GIF Animator 6.0 (HKLM-x32\...\Easy GIF Animator_is1) (Version: Easy GIF Animator 6.0 - Karlis Blumentals)
Fairway Solitaire - Tee to Play (HKLM-x32\...\Fairway Solitaire - Tee to PlayFinal) (Version: Final - AllSmartGames)
FARO LS 1.1.501.0 (64bit) (HKLM-x32\...\{8A470330-70B2-49AD-86AF-79885EF9898A}) (Version: 5.1.0.30630 - FARO Scanner Production)
FileRestore Professional (HKLM-x32\...\FileRestore Professional) (Version: 4.2.1 - PC Recovery)
FileRestore Professional (x32 Version: 4.2.1 - PC Recovery) Hidden
Fill and Cross Pirate Riddles (HKLM-x32\...\Fill and Cross Pirate RiddlesFinal) (Version: Final - AllSmartGames)
Galeria de Fotos (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 34.0.1847.116 - Google Inc.)
Google Update Helper (x32 Version: 1.3.23.9 - Google Inc.) Hidden
Guitar Pro 5.2 (HKLM-x32\...\Guitar Pro 5_is1) (Version: - Arobas Music)
Hoyle Illusions- Mahjongg (HKLM-x32\...\Hoyle Illusions- MahjonggFinal) (Version: Final - AllSmartGames)
ICE ECC v2.7 (HKLM-x32\...\ICE ECC) (Version: v2.7 - ICE Graphics)
Immunet 3 (HKLM-x32\...\Immunet Protect) (Version: 3.1.8.9583 - Sourcefire, Inc.)
Intel(R) WiDi Remote (x32 Version: 1.0.0.0 - Intel Corporation) Hidden
Intel® WiDi Remote (HKLM-x32\...\{f329f83b-c06f-48ce-99eb-f324e2f94b01}) (Version: 1.0.0.0 - Intel Corporation)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
KMSpico v9.1.3 (HKLM\...\KMSpico_is1) (Version: 9.1.3 - )
LiveUpdate 3.3 (Symantec Corporation) (HKLM-x32\...\LiveUpdate) (Version: 3.3.0.96 - Symantec Corporation)
Mahjong Epic 2 (HKLM-x32\...\Mahjong Epic 21.1) (Version: 1.1 - Foxy Games)
Malwarebytes Anti-Malware versão 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
Microsoft Access MUI (Portuguese (Brazil)) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft DCF MUI (Portuguese (Brazil)) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Excel MUI (Portuguese (Brazil)) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Groove MUI (Portuguese (Brazil)) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft InfoPath MUI (Portuguese (Brazil)) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Lync MUI (Portuguese (Brazil)) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office 32-bit Components 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office OSM MUI (Portuguese (Brazil)) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office OSM UX MUI (Portuguese (Brazil)) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Portuguese (Brazil)) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - English (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - Español (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (Portuguese (Brazil)) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Portuguese (Brazil)) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft OneNote MUI (Portuguese (Brazil)) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Outlook MUI (Portuguese (Brazil)) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft PowerPoint MUI (Portuguese (Brazil)) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Publisher MUI (Portuguese (Brazil)) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Word MUI (Portuguese (Brazil)) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Mozilla Firefox 28.0 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 28.0 (x86 pt-BR)) (Version: 28.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla)
MPC-HC 1.7.3 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.3 - MPC-HC Team)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
NASCAR '14 (HKLM-x32\...\TkFTQ0FSMTQ=_is1) (Version: 1 - )
NASCAR version SEGA (HKLM-x32\...\{249B8B8F-C49D-4E92-8795-35FDFDE748D9}}_is1) (Version: SEGA - (c) SEGA)
Nitro Pro 9 (HKLM\...\{BC8E7DF0-4434-4688-B615-0A3E5FACFC26}) (Version: 9.0.4.5 - Nitro)
Opera Stable 20.0.1387.91 (HKLM-x32\...\Opera 20.0.1387.91) (Version: 20.0.1387.91 - Opera Software ASA)
Oracle VM VirtualBox 4.3.10 (HKLM\...\{5632714F-6A48-4BF2-89E0-F8B6CE9FE6D1}) (Version: 4.3.10 - Oracle Corporation)
Panda Cloud Cleaner (HKLM-x32\...\{92B2B132-C7F0-43DC-921A-4493C04F78A4}_is1) (Version: 1.0.98 - Panda Security)
Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
phpDesigner 7 version 7.2.2 (HKLM-x32\...\phpDesigner7_is1) (Version: - MPSOFTWARE)
Platform (x32 Version: 1.39 - VIA Technologies, Inc.) Hidden
Plex Media Server (HKLM-x32\...\{e9921c42-812d-4b39-9c02-612724349e82}) (Version: 0.9.907 - Plex, Inc.)
Plex Media Server (x32 Version: 0.9.907 - Plex, Inc.) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.2.612.2012 - Realtek)
Resource Hacker Version 3.6.0 (HKLM-x32\...\ResourceHacker_is1) (Version: - )
Revisores de Texto do Microsoft Office 2013 – Português do Brasil (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Riddles of The Mask (HKLM-x32\...\Riddles of The MaskFinal) (Version: Final - AllSmartGames)
Roadkil's Unstoppable Copier Version 5.2 (HKLM-x32\...\{A306FD29-7D3A-4287-91AC-9A0180931395}_is1) (Version: - Roadkil.Net)
Royal Envoy 3 CE (HKLM-x32\...\Royal Envoy 3 CEFinal) (Version: Final - AllSmartGames)
Rush for Gold 2- California (HKLM-x32\...\Rush for Gold 2- CaliforniaFinal) (Version: Final - AllSmartGames)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version: - Microsoft) Hidden
Sim Aquarium 3 (HKLM-x32\...\Sim Aquarium 3_is1) (Version: 3 - Ladislav Vojnic)
SketchUp Import for AutoCAD 2014 (HKLM-x32\...\{644E9589-F73A-49A4-AC61-A953B9DE5669}) (Version: 1.1.0 - Autodesk)
Skype™ 6.13 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.13.104 - Skype Technologies S.A.)
Sparkle Unleashed (HKLM-x32\...\Sparkle UnleashedFinal) (Version: Final - AllSmartGames)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.2.25 - Safer-Networking Ltd.)
StarWind V2V Image Converter V5.6 (build 2011-05-10) (HKLM-x32\...\StarWind Converter_is1) (Version: - StarWind Software)
Strike Solitaire 2 Seaside Season (HKLM-x32\...\Strike Solitaire 2 Seaside SeasonFinal) (Version: Final - AllSmartGames)
SubSync (HKLM-x32\...\ST6UNST #1) (Version: - )
Subtitle Workshop 6.0b (HKLM-x32\...\SubtitleWorkshop) (Version: - )
Symantec System Recovery 2013 (HKLM\...\Symantec System Recovery 2013) (Version: 11.0.1.47662 - Symantec Corporation)
Symantec System Recovery 2013 (Version: 11.0.1.47662 - Symantec Corporation) Hidden
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.26297 - TeamViewer)
Tenda Wireless LAN Card (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 1.5.12.0 - Tenda)
The Adventures of Perseus (HKLM-x32\...\The Adventures of PerseusFinal) (Version: Final - AllSmartGames)
The Beardless Wizard (HKLM-x32\...\The Beardless WizardFinal) (Version: Final - AllSmartGames)
Time Adjuster STANDARD 3.1 (HKCU\...\TimeAdjuster) (Version: - IrekSoftware.com)
tools-freebsd (x32 Version: 9.6.2.1744117 - VMware, Inc.) Hidden
tools-linux (x32 Version: 9.6.2.1744117 - VMware, Inc.) Hidden
tools-netware (x32 Version: 9.6.2.1744117 - VMware, Inc.) Hidden
tools-solaris (x32 Version: 9.6.2.1744117 - VMware, Inc.) Hidden
tools-windows (x32 Version: 9.6.2.1744117 - VMware, Inc.) Hidden
tools-winPre2k (x32 Version: 9.6.2.1744117 - VMware, Inc.) Hidden
UltraISO Premium V9.12 (HKLM-x32\...\UltraISO_is1) (Version: - )
Update for Microsoft Excel 2013 (KB2752087) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{A2275591-C3AA-4A6C-A696-F958B6C65B3E}) (Version: - Microsoft)
Update for Microsoft Excel 2013 (KB2752087) 64-Bit Edition (HKLM\...\{90150000-0016-0416-1000-0000000FF1CE}_Office15.PROPLUS_{A2275591-C3AA-4A6C-A696-F958B6C65B3E}) (Version: - Microsoft)
Update for Microsoft Excel 2013 (KB2752087) 64-Bit Edition (HKLM\...\{90150000-0018-0416-1000-0000000FF1CE}_Office15.PROPLUS_{A2275591-C3AA-4A6C-A696-F958B6C65B3E}) (Version: - Microsoft)
Update for Microsoft Excel 2013 (KB2752087) 64-Bit Edition (HKLM\...\{90150000-001B-0416-1000-0000000FF1CE}_Office15.PROPLUS_{A2275591-C3AA-4A6C-A696-F958B6C65B3E}) (Version: - Microsoft)
Update for Microsoft Excel 2013 (KB2752087) 64-Bit Edition (HKLM\...\{90150000-00C1-0416-1000-0000000FF1CE}_Office15.PROPLUS_{A2275591-C3AA-4A6C-A696-F958B6C65B3E}) (Version: - Microsoft)
Update for Microsoft Lync 2013 (KB2817678) 64-Bit Edition (HKLM\...\{90150000-012B-0416-1000-0000000FF1CE}_Office15.PROPLUS_{4E7A8226-66D0-4A61-B97A-E36EEED125C2}) (Version: - Microsoft)
Update for Microsoft Lync 2013 (KB2863908) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{259F7CA1-7A87-4E60-85A9-0A55E60FF254}) (Version: - Microsoft)
Update for Microsoft Lync 2013 (KB2863908) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{259F7CA1-7A87-4E60-85A9-0A55E60FF254}) (Version: - Microsoft)
Update for Microsoft Lync 2013 (KB2863908) 64-Bit Edition (HKLM\...\{90150000-012B-0416-1000-0000000FF1CE}_Office15.PROPLUS_{B3125B0A-3A4A-4B6C-941E-C404878DECEA}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2760344) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{EF77B4A6-DFEC-4010-A87D-9B6BF87FABEC}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2760544) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{62857CDD-2985-4939-91BA-19ED0B0031A5}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2768012) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{0814662C-FD28-4DE0-ACE5-EE50D1D6C8FB}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2817636) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D97AACA3-9AEA-43FF-8CBA-93BED0443FC2}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2817636) 64-Bit Edition (HKLM\...\{90150000-006E-0416-1000-0000000FF1CE}_Office15.PROPLUS_{D97AACA3-9AEA-43FF-8CBA-93BED0443FC2}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2817636) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D97AACA3-9AEA-43FF-8CBA-93BED0443FC2}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2825631) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{A54917FC-2C84-40F2-9525-7549BE08DE40}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2825631) 64-Bit Edition (HKLM\...\{90150000-006E-0416-1000-0000000FF1CE}_Office15.PROPLUS_{A54917FC-2C84-40F2-9525-7549BE08DE40}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2825631) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{A54917FC-2C84-40F2-9525-7549BE08DE40}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2827272) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{50F6EF67-B93C-4B7A-A2EB-E179E3436C69}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2827272) 64-Bit Edition (HKLM\...\{90150000-0016-0416-1000-0000000FF1CE}_Office15.PROPLUS_{50F6EF67-B93C-4B7A-A2EB-E179E3436C69}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2827272) 64-Bit Edition (HKLM\...\{90150000-0090-0416-1000-0000000FF1CE}_Office15.PROPLUS_{50F6EF67-B93C-4B7A-A2EB-E179E3436C69}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2863825) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{327EABFD-EDD3-44E7-AB47-7592DF33B719}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2863843) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{290D80DE-03AB-47EC-9402-108AF4CE4F66}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2863844) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{50F31E04-D56A-4159-BF36-CF3CE27DB30C}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2863860) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{6D170CB5-8D22-4D1B-A811-B899FE588946}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2863860) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{6D170CB5-8D22-4D1B-A811-B899FE588946}) (Version: - Microsoft)
Update for Microsoft OneDrive for Business (KB2863864) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{AFB7E303-C8CA-4A08-AD3F-44A562B3C809}) (Version: - Microsoft)
Update for Microsoft OneDrive for Business (KB2863864) 64-Bit Edition (HKLM\...\{90150000-00BA-0416-1000-0000000FF1CE}_Office15.PROPLUS_{AFB7E303-C8CA-4A08-AD3F-44A562B3C809}) (Version: - Microsoft)
Update for Microsoft OneDrive for Business (KB2863864) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{AFB7E303-C8CA-4A08-AD3F-44A562B3C809}) (Version: - Microsoft)
Update for Microsoft OneDrive for Business (KB2863864) 64-Bit Edition (HKLM\...\{90150000-00C1-0416-1000-0000000FF1CE}_Office15.PROPLUS_{AFB7E303-C8CA-4A08-AD3F-44A562B3C809}) (Version: - Microsoft)
Update for Microsoft OneNote 2013 (KB2817628) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{9367C385-2EF9-4BE3-8351-7D2AB0798A57}) (Version: - Microsoft)
Update for Microsoft OneNote 2013 (KB2817628) 64-Bit Edition (HKLM\...\{90150000-00A1-0416-1000-0000000FF1CE}_Office15.PROPLUS_{9367C385-2EF9-4BE3-8351-7D2AB0798A57}) (Version: - Microsoft)
Update for Microsoft OneNote 2013 (KB2817628) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{9367C385-2EF9-4BE3-8351-7D2AB0798A57}) (Version: - Microsoft)
Update for Microsoft Outlook 2013 (KB2863911) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{DF3798F3-F45C-44DA-83B7-229A9EBC9654}) (Version: - Microsoft)
Update for Microsoft Outlook 2013 (KB2863911) 64-Bit Edition (HKLM\...\{90150000-001A-0416-1000-0000000FF1CE}_Office15.PROPLUS_{93AE4190-926C-4CF7-894A-5796B70EF166}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2013 (KB2837627) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{FE06DACB-AE2C-4DB7-B95D-97A320E59F45}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2013 (KB2837627) 64-Bit Edition (HKLM\...\{90150000-0018-0416-1000-0000000FF1CE}_Office15.PROPLUS_{FE06DACB-AE2C-4DB7-B95D-97A320E59F45}) (Version: - Microsoft)
Update for Microsoft Visio Viewer 2013 (KB2817301) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{8E5CD68A-CDF8-4930-88DF-B7778B1871A9}) (Version: - Microsoft)
Update for Microsoft Visio Viewer 2013 (KB2817301) 64-Bit Edition (HKLM\...\{90150000-006E-0416-1000-0000000FF1CE}_Office15.PROPLUS_{8E5CD68A-CDF8-4930-88DF-B7778B1871A9}) (Version: - Microsoft)
Update for Microsoft Word 2013 (KB2863909) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{F9FAC8C0-20D9-4DC7-9A56-13B02BD4B724}) (Version: - Microsoft)
VIA Gerenciador de dispositivo de plataforma (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.)
Viking Saga 2- New World (HKLM-x32\...\Viking Saga 2- New WorldFinal) (Version: Final - AllSmartGames)
VMware vCenter Converter Standalone (HKLM-x32\...\{17C3235A-A4B9-44ED-8794-54D8408F9733}) (Version: 5.1.0.1087880 - VMware, Inc.)
VMware Workstation (HKLM-x32\...\VMware_Workstation) (Version: 10.0.2 - VMware, Inc)
VMware Workstation (Version: 10.0.2 - VMware, Inc.) Hidden
VS10Runtimex64 (Version: 1.0.0 - sourcefire) Hidden
W311U (HKLM-x32\...\{F30C2271-5D81-42DB-81C2-DD7853118F1E}) (Version: 1.00.0000 - Tenda)
Where Are My Pipes (HKLM-x32\...\Where Are My PipesFinal) (Version: Final - AllSmartGames)
Windows Live Communications Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
WinZip 12.0 (HKLM-x32\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240B7}) (Version: 12.0.8252 - WinZip Computing, S.L. )
Xara Web Designer 7 Premium (HKLM-x32\...\MAGIX_MSI_Xara_Web_Designer_7_Premium) (Version: 7.1.2.18332 - Xara Group Ltd)
Xara Web Designer 7 Premium (x32 Version: 7.1.2.18332 - Xara Group Ltd) Hidden
Xara Web Designer 7 Premium Content Pack (x32 Version: 1.0.2.0 - Xara Group Ltd) Hidden
Xara Web Designer 9 Premium (HKLM\...\MX.{38E363A2-5323-46CC-B260-C02AB59B454B}) (Version: 9.2.3.29638 - Xara Group Ltd)
Xara Web Designer 9 Premium (Version: 9.2.3.29638 - Xara Group Ltd) Hidden
XFastUSB (HKLM-x32\...\XFastUSB) (Version: 3.02.31 - ASRock Inc.)
ZHPDiag 2014 (HKLM-x32\...\ZHPDiag_is1) (Version: 2014 - Nicolas Coolman)

==================== Restore Points =========================

22-04-2014 22:10:49 Plex Media Server
24-04-2014 21:27:19 Installed WinZip 12.0
27-04-2014 15:35:34 ZHPFix Restore System Point

==================== Hosts content: ==========================

2013-08-22 10:25 - 2014-04-27 17:58 - 00000753 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0A10A998-2BAC-4632-8891-F2DFCB1093ED} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
Task: {0B210CD0-711B-468A-AED4-D404E13EE518} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {10031514-0696-4208-82A7-F83242E1244D} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
Task: {1CBC20AE-6ACF-4FD1-B74F-20DC2F6E9B06} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2014-04-08] (Microsoft Corporation)
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {33AFA6BF-F2E9-42D1-A36D-9DF22B272181} - System32\Tasks\Microsoft Office 15 Sync Maintenance for VBM-Vittorio VBM => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [2014-01-23] (Microsoft Corporation)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {36A4D509-3E18-49DF-A708-07C098826107} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {606F1F97-5DE1-420F-93D7-036D7EEBD856} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-22] (Google Inc.)
Task: {667716DB-681B-4323-BF54-788E035A8EFF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-04-18] (Adobe Systems Incorporated)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {7456A3DF-4252-4A9F-82C3-31906F13573D} - System32\Tasks\Microsoft\Windows\Windows Activation Technologies\OatTask => C:\Office Activation Technologies\Install.cmd [2016-08-14] ()
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {7AF3904D-CD87-41C2-82F2-820AD8C49161} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {B0A85F97-7FB6-49B9-AE24-C43FA9A982B4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-22] (Google Inc.)
Task: {B37911A0-BE9A-4F18-B555-8C336997879A} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-03-25 19:40 - 2013-10-23 14:24 - 00087600 _____ () C:\Windows\System32\cpwmon64.dll
2012-08-06 11:24 - 2012-08-06 11:24 - 00212480 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2012-03-05 15:03 - 2012-03-05 15:03 - 00677376 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2012-02-16 13:53 - 2012-02-16 13:53 - 03642880 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2012-08-06 11:24 - 2012-08-06 11:24 - 00073728 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2014-04-27 13:07 - 2014-04-27 13:07 - 01501696 _____ () C:\Program Files\Immunet\3.1.8\LIBEAY32.dll
2014-04-27 13:07 - 2014-04-27 13:07 - 00331776 _____ () C:\Program Files\Immunet\3.1.8\SSLEAY32.dll
2014-04-27 13:07 - 2014-04-27 13:07 - 00440064 _____ () C:\Program Files\Immunet\3.1.8\dhr.dll
2014-04-27 13:07 - 2014-04-27 13:07 - 00573696 _____ () C:\Program Files\Immunet\3.1.8\dsp.dll
2013-10-01 10:26 - 2013-10-01 10:26 - 02810968 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll
2014-01-25 13:20 - 2012-08-16 17:04 - 00078480 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll
2014-01-25 13:20 - 2012-08-16 17:04 - 00386192 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll
2014-01-23 18:07 - 2012-11-27 01:16 - 00078848 _____ () C:\Program Files\Microsoft Office\Office15\MSIMG32.dll
2012-08-06 11:24 - 2012-08-06 11:24 - 00103424 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2014-04-26 16:14 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2014-04-26 16:14 - 2013-05-16 10:55 - 00113496 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-04-26 16:14 - 2013-05-16 10:55 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2014-04-26 16:14 - 2013-05-16 10:55 - 00161112 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2014-04-26 16:14 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2013-04-09 07:49 - 2013-04-09 07:49 - 00086096 _____ () C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\mspack.dll
2013-04-09 07:37 - 2013-04-09 07:37 - 01296976 _____ () C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\libxml2.dll
2013-04-09 07:37 - 2013-04-09 07:37 - 00542288 _____ () C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\sqlite3.dll
2014-04-14 16:41 - 2014-04-14 16:41 - 01261272 _____ () C:\Program Files (x86)\VMware\VMware Workstation\libxml2.dll
2014-03-12 19:56 - 2014-03-12 19:56 - 00840840 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libxml2.dll
2014-03-12 19:56 - 2014-03-12 19:56 - 00051848 _____ () C:\Program Files (x86)\Plex\Plex Media Server\soci_sqlite3-vc80-3_0.dll
2014-03-12 19:56 - 2014-03-12 19:56 - 00089224 _____ () C:\Program Files (x86)\Plex\Plex Media Server\soci_core-vc80-3_0.dll
2014-03-12 19:56 - 2014-03-12 19:56 - 07605400 _____ () C:\Program Files (x86)\Plex\Plex Media Server\avcodec-54.dll
2014-03-12 19:56 - 2014-03-12 19:56 - 01453720 _____ () C:\Program Files (x86)\Plex\Plex Media Server\avformat-54.dll
2014-03-12 19:56 - 2014-03-12 19:56 - 00202392 _____ () C:\Program Files (x86)\Plex\Plex Media Server\avutil-52.dll
2014-03-12 19:56 - 2014-03-12 19:56 - 00352920 _____ () C:\Program Files (x86)\Plex\Plex Media Server\swscale-2.dll
2014-03-12 19:57 - 2014-03-12 19:57 - 00507528 _____ () C:\Program Files (x86)\Plex\Plex Media Server\tag.dll
2014-03-12 19:57 - 2014-03-12 19:57 - 08495240 _____ () C:\Program Files (x86)\Plex\Plex Media Server\WebKit.dll
2014-03-12 19:57 - 2014-03-12 19:57 - 00073352 _____ () C:\Program Files (x86)\Plex\Plex Media Server\zlib.dll
2014-03-12 19:56 - 2014-03-12 19:56 - 00195720 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libidn.dll
2014-03-12 19:56 - 2014-03-12 19:56 - 00952968 _____ () C:\Program Files (x86)\Plex\Plex Media Server\CFLite.dll
2014-03-12 19:56 - 2014-03-12 19:56 - 01291400 _____ () C:\Program Files (x86)\Plex\Plex Media Server\JavaScriptCore.dll
2014-03-12 19:56 - 2014-03-12 19:56 - 01038984 _____ () C:\Program Files (x86)\Plex\Plex Media Server\cairo.dll
2014-03-12 19:57 - 2014-03-12 19:57 - 00073352 _____ () C:\Program Files (x86)\Plex\Plex Media Server\zlib1.dll
2014-01-25 14:57 - 2011-05-04 18:53 - 01058664 _____ () C:\Program Files (x86)\Tenda\Common\RaWLAPI.dll
2014-02-04 18:25 - 2014-02-04 18:25 - 00036672 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\qt_icontray_ex.dll
2014-02-04 18:25 - 2014-02-04 18:25 - 00028992 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\thread_pool.dll
2014-03-12 19:57 - 2014-03-12 19:57 - 00045192 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_socket.pyd
2014-03-12 19:57 - 2014-03-12 19:57 - 00028808 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_ssl.pyd
2014-03-12 19:57 - 2014-03-12 19:57 - 00019080 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_hashlib.pyd
2014-03-12 19:57 - 2014-03-12 19:57 - 00032392 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\simplejson\_speedups.pyd
2014-03-12 19:57 - 2014-03-12 19:57 - 00836744 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\lxml\etree.pyd
2014-03-12 19:56 - 2014-03-12 19:56 - 00062600 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libexslt.dll
2014-03-12 19:56 - 2014-03-12 19:56 - 00166024 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libxslt.dll
2014-03-12 19:57 - 2014-03-12 19:57 - 00192648 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\lxml\objectify.pyd
2014-03-12 19:57 - 2014-03-12 19:57 - 00016520 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\select.pyd
2014-03-12 19:57 - 2014-03-12 19:57 - 00056456 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\OpenSSL\crypto.pyd
2014-03-12 19:57 - 2014-03-12 19:57 - 00018056 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\OpenSSL\rand.pyd
2014-03-12 19:57 - 2014-03-12 19:57 - 00044680 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\OpenSSL\SSL.pyd
2014-03-12 19:57 - 2014-03-12 19:57 - 00083080 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_ctypes.pyd
2014-03-12 19:57 - 2014-03-12 19:57 - 00111752 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\pyexpat.pyd
2014-03-12 19:57 - 2014-03-12 19:57 - 00692360 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\unicodedata.pyd
2014-02-04 18:28 - 2014-02-04 18:28 - 00420160 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\ulxmlrpcpp.dll
2014-04-10 17:08 - 2014-04-01 22:57 - 00065352 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\chrome_elf.dll
2014-04-10 17:08 - 2014-04-01 22:57 - 00674632 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\libglesv2.dll
2014-04-10 17:08 - 2014-04-01 22:57 - 00093000 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\libegl.dll
2014-04-10 17:08 - 2014-04-01 22:57 - 04081480 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\pdf.dll
2014-04-10 17:08 - 2014-04-01 22:58 - 00390472 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\ppGoogleNaClPluginChrome.dll
2014-04-10 17:08 - 2014-04-01 22:57 - 01647432 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\ffmpegsumo.dll
2014-04-10 17:08 - 2014-04-01 22:58 - 13691720 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\PepperFlash\pepflashplayer.dll
2013-10-01 11:00 - 2013-10-01 11:00 - 00022336 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\ti_managers_proxy_stub.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Windows:nlsPreferences
AlternateDataStreams: C:\Users\Vittorio\SkyDrive:ms-properties

==================== Safe Mode (whitelisted) ===================


==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============

Name: USB Device(VID_1f3a_PID_efe8)
Description: USB Device(VID_1f3a_PID_efe8)
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: USB Devices
Service: usbUDisc
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (04/27/2014 06:13:43 PM) (Source: Application Error) (User: )
Description: Nome do aplicativo com falha: Fuel.Service.exe, versão: 1.0.0.0, carimbo de data/hora: 0x501fefb5
Nome do módulo com falha: Device.dll, versão: 4.1.0.0, carimbo de data/hora: 0x4f55e10b
Código de exceção: 0xc0000005
Deslocamento da falha: 0x00000000000033c1
ID do processo com falha: 0x730
Hora de início do aplicativo com falha: 0xFuel.Service.exe0
Caminho do aplicativo com falha: Fuel.Service.exe1
Caminho do módulo com falha: Fuel.Service.exe2
ID do Relatório: Fuel.Service.exe3
Nome completo do pacote com falha: Fuel.Service.exe4
ID do aplicativo relativo ao pacote com falha: Fuel.Service.exe5

Error: (04/27/2014 02:46:04 PM) (Source: Application Error) (User: )
Description: Nome do aplicativo com falha: Fuel.Service.exe, versão: 1.0.0.0, carimbo de data/hora: 0x501fefb5
Nome do módulo com falha: Device.dll, versão: 4.1.0.0, carimbo de data/hora: 0x4f55e10b
Código de exceção: 0xc0000005
Deslocamento da falha: 0x00000000000033c1
ID do processo com falha: 0x798
Hora de início do aplicativo com falha: 0xFuel.Service.exe0
Caminho do aplicativo com falha: Fuel.Service.exe1
Caminho do módulo com falha: Fuel.Service.exe2
ID do Relatório: Fuel.Service.exe3
Nome completo do pacote com falha: Fuel.Service.exe4
ID do aplicativo relativo ao pacote com falha: Fuel.Service.exe5

Error: (04/27/2014 02:13:31 PM) (Source: Application Error) (User: )
Description: Nome do aplicativo com falha: Fuel.Service.exe, versão: 1.0.0.0, carimbo de data/hora: 0x501fefb5
Nome do módulo com falha: Device.dll, versão: 4.1.0.0, carimbo de data/hora: 0x4f55e10b
Código de exceção: 0xc0000005
Deslocamento da falha: 0x00000000000033c1
ID do processo com falha: 0x714
Hora de início do aplicativo com falha: 0xFuel.Service.exe0
Caminho do aplicativo com falha: Fuel.Service.exe1
Caminho do módulo com falha: Fuel.Service.exe2
ID do Relatório: Fuel.Service.exe3
Nome completo do pacote com falha: Fuel.Service.exe4
ID do aplicativo relativo ao pacote com falha: Fuel.Service.exe5

Error: (04/27/2014 02:11:19 PM) (Source: Application Error) (User: )
Description: Nome do aplicativo com falha: acad.exe, versão: 25.1.18.0, carimbo de data/hora: 0x5114be09
Nome do módulo com falha: accore.dll, versão: 19.1.18.0, carimbo de data/hora: 0x5114bf67
Código de exceção: 0xc000041d
Deslocamento da falha: 0x000000000068eac8
ID do processo com falha: 0xbcc
Hora de início do aplicativo com falha: 0xacad.exe0
Caminho do aplicativo com falha: acad.exe1
Caminho do módulo com falha: acad.exe2
ID do Relatório: acad.exe3
Nome completo do pacote com falha: acad.exe4
ID do aplicativo relativo ao pacote com falha: acad.exe5

Error: (04/27/2014 01:04:03 PM) (Source: Application Error) (User: )
Description: Nome do aplicativo com falha: {D55B56B4-96A9-4166-A4BA-5E48F6382E93}.exe, versão: 0.0.0.0, carimbo de data/hora: 0x52160b82
Nome do módulo com falha: {D55B56B4-96A9-4166-A4BA-5E48F6382E93}.exe, versão: 0.0.0.0, carimbo de data/hora: 0x52160b82
Código de exceção: 0xc0000005
Deslocamento da falha: 0x0001d348
ID do processo com falha: 0x133c
Hora de início do aplicativo com falha: 0x{D55B56B4-96A9-4166-A4BA-5E48F6382E93}.exe0
Caminho do aplicativo com falha: {D55B56B4-96A9-4166-A4BA-5E48F6382E93}.exe1
Caminho do módulo com falha: {D55B56B4-96A9-4166-A4BA-5E48F6382E93}.exe2
ID do Relatório: {D55B56B4-96A9-4166-A4BA-5E48F6382E93}.exe3
Nome completo do pacote com falha: {D55B56B4-96A9-4166-A4BA-5E48F6382E93}.exe4
ID do aplicativo relativo ao pacote com falha: {D55B56B4-96A9-4166-A4BA-5E48F6382E93}.exe5

Error: (04/27/2014 00:45:57 PM) (Source: Application Error) (User: )
Description: Nome do aplicativo com falha: Fuel.Service.exe, versão: 1.0.0.0, carimbo de data/hora: 0x501fefb5
Nome do módulo com falha: Device.dll, versão: 4.1.0.0, carimbo de data/hora: 0x4f55e10b
Código de exceção: 0xc0000005
Deslocamento da falha: 0x00000000000033c1
ID do processo com falha: 0x744
Hora de início do aplicativo com falha: 0xFuel.Service.exe0
Caminho do aplicativo com falha: Fuel.Service.exe1
Caminho do módulo com falha: Fuel.Service.exe2
ID do Relatório: Fuel.Service.exe3
Nome completo do pacote com falha: Fuel.Service.exe4
ID do aplicativo relativo ao pacote com falha: Fuel.Service.exe5

Error: (04/27/2014 00:40:46 PM) (Source: Application Error) (User: )
Description: Nome do aplicativo com falha: {DCFAC998-0486-4487-91A8-949B61B94D70}.exe, versão: 0.0.0.0, carimbo de data/hora: 0x52160b82
Nome do módulo com falha: {DCFAC998-0486-4487-91A8-949B61B94D70}.exe, versão: 0.0.0.0, carimbo de data/hora: 0x52160b82
Código de exceção: 0xc0000005
Deslocamento da falha: 0x0001d348
ID do processo com falha: 0x1300
Hora de início do aplicativo com falha: 0x{DCFAC998-0486-4487-91A8-949B61B94D70}.exe0
Caminho do aplicativo com falha: {DCFAC998-0486-4487-91A8-949B61B94D70}.exe1
Caminho do módulo com falha: {DCFAC998-0486-4487-91A8-949B61B94D70}.exe2
ID do Relatório: {DCFAC998-0486-4487-91A8-949B61B94D70}.exe3
Nome completo do pacote com falha: {DCFAC998-0486-4487-91A8-949B61B94D70}.exe4
ID do aplicativo relativo ao pacote com falha: {DCFAC998-0486-4487-91A8-949B61B94D70}.exe5

Error: (04/27/2014 00:35:44 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Falha dos Serviços de Criptografia ao processar a chamada de OnIdentity() no Objeto de Gravador do Sistema..


Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP.

System Error:
Acesso negado.
.

Error: (04/27/2014 00:20:41 PM) (Source: Application Error) (User: )
Description: Nome do aplicativo com falha: {F52D89B3-844E-49DA-8D0C-8520B10AF0BD}.exe, versão: 0.0.0.0, carimbo de data/hora: 0x52160b82
Nome do módulo com falha: {F52D89B3-844E-49DA-8D0C-8520B10AF0BD}.exe, versão: 0.0.0.0, carimbo de data/hora: 0x52160b82
Código de exceção: 0xc0000005
Deslocamento da falha: 0x0001d348
ID do processo com falha: 0x17d8
Hora de início do aplicativo com falha: 0x{F52D89B3-844E-49DA-8D0C-8520B10AF0BD}.exe0
Caminho do aplicativo com falha: {F52D89B3-844E-49DA-8D0C-8520B10AF0BD}.exe1
Caminho do módulo com falha: {F52D89B3-844E-49DA-8D0C-8520B10AF0BD}.exe2
ID do Relatório: {F52D89B3-844E-49DA-8D0C-8520B10AF0BD}.exe3
Nome completo do pacote com falha: {F52D89B3-844E-49DA-8D0C-8520B10AF0BD}.exe4
ID do aplicativo relativo ao pacote com falha: {F52D89B3-844E-49DA-8D0C-8520B10AF0BD}.exe5

Error: (04/27/2014 00:17:26 PM) (Source: Application Error) (User: )
Description: Nome do aplicativo com falha: {749BE89A-3F10-4A95-9160-8B6DA7B286E7}.exe, versão: 0.0.0.0, carimbo de data/hora: 0x52160b82
Nome do módulo com falha: {749BE89A-3F10-4A95-9160-8B6DA7B286E7}.exe, versão: 0.0.0.0, carimbo de data/hora: 0x52160b82
Código de exceção: 0xc0000005
Deslocamento da falha: 0x0001d348
ID do processo com falha: 0x698
Hora de início do aplicativo com falha: 0x{749BE89A-3F10-4A95-9160-8B6DA7B286E7}.exe0
Caminho do aplicativo com falha: {749BE89A-3F10-4A95-9160-8B6DA7B286E7}.exe1
Caminho do módulo com falha: {749BE89A-3F10-4A95-9160-8B6DA7B286E7}.exe2
ID do Relatório: {749BE89A-3F10-4A95-9160-8B6DA7B286E7}.exe3
Nome completo do pacote com falha: {749BE89A-3F10-4A95-9160-8B6DA7B286E7}.exe4
ID do aplicativo relativo ao pacote com falha: {749BE89A-3F10-4A95-9160-8B6DA7B286E7}.exe5


System errors:
=============
Error: (04/27/2014 06:13:43 PM) (Source: Service Control Manager) (User: )
Description: O serviço AMD FUEL Service foi encerrado inesperadamente. Isso aconteceu 1 vez(es).

Error: (04/27/2014 06:13:40 PM) (Source: DCOM) (User: VBM)
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}

Error: (04/27/2014 06:13:40 PM) (Source: DCOM) (User: VBM)
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}

Error: (04/27/2014 06:07:19 PM) (Source: Service Control Manager) (User: )
Description: O serviço PEVSystemStart está marcado como um serviço interativo. No entanto, o sistema está configurado para não permitir serviços interativos. Esse serviço pode não funcionar corretamente.

Error: (04/27/2014 06:07:19 PM) (Source: Service Control Manager) (User: )
Description: O serviço PEVSystemStart está marcado como um serviço interativo. No entanto, o sistema está configurado para não permitir serviços interativos. Esse serviço pode não funcionar corretamente.

Error: (04/27/2014 06:07:18 PM) (Source: Service Control Manager) (User: )
Description: O serviço PEVSystemStart está marcado como um serviço interativo. No entanto, o sistema está configurado para não permitir serviços interativos. Esse serviço pode não funcionar corretamente.

Error: (04/27/2014 06:07:18 PM) (Source: Service Control Manager) (User: )
Description: O serviço PEVSystemStart está marcado como um serviço interativo. No entanto, o sistema está configurado para não permitir serviços interativos. Esse serviço pode não funcionar corretamente.

Error: (04/27/2014 06:07:18 PM) (Source: Service Control Manager) (User: )
Description: O serviço PEVSystemStart está marcado como um serviço interativo. No entanto, o sistema está configurado para não permitir serviços interativos. Esse serviço pode não funcionar corretamente.

Error: (04/27/2014 05:54:10 PM) (Source: Service Control Manager) (User: )
Description: O serviço VMware vCenter Converter Standalone Server foi finalizado inesperadamente. Isto aconteceu 183 vez(es). A seguinte ação corretiva será tomada em 60000 milissegundos: Reiniciar o serviço.

Error: (04/27/2014 05:53:09 PM) (Source: Service Control Manager) (User: )
Description: O serviço VMware vCenter Converter Standalone Server foi finalizado inesperadamente. Isto aconteceu 182 vez(es). A seguinte ação corretiva será tomada em 60000 milissegundos: Reiniciar o serviço.


Microsoft Office Sessions:
=========================
Error: (04/27/2014 06:13:43 PM) (Source: Application Error)(User: )
Description: Fuel.Service.exe1.0.0.0501fefb5Device.dll4.1.0.04f55e10bc000000500000000000033c173001cf6240a7d3e497C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exeC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dllcf9aef19-ce50-11e3-8284-bc5ff446b1ea

Error: (04/27/2014 02:46:04 PM) (Source: Application Error)(User: )
Description: Fuel.Service.exe1.0.0.0501fefb5Device.dll4.1.0.04f55e10bc000000500000000000033c179801cf623c1e43957aC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exeC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dllcd60cb42-ce33-11e3-8283-bc5ff446b1ea

Error: (04/27/2014 02:13:31 PM) (Source: Application Error)(User: )
Description: Fuel.Service.exe1.0.0.0501fefb5Device.dll4.1.0.04f55e10bc000000500000000000033c171401cf622fe1541882C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exeC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll417c0587-ce2f-11e3-8282-bc5ff446b1ea

Error: (04/27/2014 02:11:19 PM) (Source: Application Error)(User: )
Description: acad.exe25.1.18.05114be09accore.dll19.1.18.05114bf67c000041d000000000068eac8bcc01cf62335c7bf6e4C:\Program Files\Autodesk\AutoCAD 2014\acad.exeC:\Program Files\Autodesk\AutoCAD 2014\accore.dllf2588a96-ce2e-11e3-8282-bc5ff446b1ea

Error: (04/27/2014 01:04:03 PM) (Source: Application Error)(User: )
Description: {D55B56B4-96A9-4166-A4BA-5E48F6382E93}.exe0.0.0.052160b82{D55B56B4-96A9-4166-A4BA-5E48F6382E93}.exe0.0.0.052160b82c00000050001d348133c01cf62324f7522cfC:\Users\Vittorio\AppData\Local\Temp\{D55B56B4-96A9-4166-A4BA-5E48F6382E93}.exeC:\Users\Vittorio\AppData\Local\Temp\{D55B56B4-96A9-4166-A4BA-5E48F6382E93}.exe8d2dc46d-ce25-11e3-8282-bc5ff446b1ea

Error: (04/27/2014 00:45:57 PM) (Source: Application Error)(User: )
Description: Fuel.Service.exe1.0.0.0501fefb5Device.dll4.1.0.04f55e10bc000000500000000000033c174401cf62296af6d9a0C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exeC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll05644a43-ce23-11e3-8281-bc5ff446b1ea

Error: (04/27/2014 00:40:46 PM) (Source: Application Error)(User: )
Description: {DCFAC998-0486-4487-91A8-949B61B94D70}.exe0.0.0.052160b82{DCFAC998-0486-4487-91A8-949B61B94D70}.exe0.0.0.052160b82c00000050001d348130001cf622f0eb2f3f3C:\Users\Vittorio\AppData\Local\Temp\{DCFAC998-0486-4487-91A8-949B61B94D70}.exeC:\Users\Vittorio\AppData\Local\Temp\{DCFAC998-0486-4487-91A8-949B61B94D70}.exe4c7c6431-ce22-11e3-8281-bc5ff446b1ea

Error: (04/27/2014 00:35:44 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description:
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocolo Microsoft LLDP.

System Error:
Acesso negado.

Error: (04/27/2014 00:20:41 PM) (Source: Application Error)(User: )
Description: {F52D89B3-844E-49DA-8D0C-8520B10AF0BD}.exe0.0.0.052160b82{F52D89B3-844E-49DA-8D0C-8520B10AF0BD}.exe0.0.0.052160b82c00000050001d34817d801cf622c40560712C:\Users\Vittorio\AppData\Local\Temp\{F52D89B3-844E-49DA-8D0C-8520B10AF0BD}.exeC:\Users\Vittorio\AppData\Local\Temp\{F52D89B3-844E-49DA-8D0C-8520B10AF0BD}.exe7e168e0d-ce1f-11e3-8281-bc5ff446b1ea

Error: (04/27/2014 00:17:26 PM) (Source: Application Error)(User: )
Description: {749BE89A-3F10-4A95-9160-8B6DA7B286E7}.exe0.0.0.052160b82{749BE89A-3F10-4A95-9160-8B6DA7B286E7}.exe0.0.0.052160b82c00000050001d34869801cf622bcc1a4176C:\Users\Vittorio\AppData\Local\Temp\{749BE89A-3F10-4A95-9160-8B6DA7B286E7}.exeC:\Users\Vittorio\AppData\Local\Temp\{749BE89A-3F10-4A95-9160-8B6DA7B286E7}.exe09e916de-ce1f-11e3-8281-bc5ff446b1ea


CodeIntegrity Errors:
===================================
Date: 2014-04-27 11:47:55.746
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-04-27 11:47:55.651
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

Percentage of memory in use: 31%
Total physical RAM: 7659.78 MB
Available physical RAM: 5249.81 MB
Total Pagefile: 8875.78 MB
Available Pagefile: 6122.94 MB
Total Virtual: 131072 MB
Available Virtual: 131071.78 MB

==================== Drives ================================

Drive c: (WD500) (Fixed) (Total:465.76 GB) (Free:262.36 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:465.76 GB) (Free:185.31 GB) NTFS ==>[System with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Cool (Size: 466 GB) (Disk ID: A46D2C01)
Partition 1: (Active) - (Size=466 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or Cool (Size: 466 GB) (Disk ID: 7C681650)
Partition 1: (Active) - (Size=466 GB) - (Type=07 NTFS)

==================== End Of Log ============================
avatar
vbm
Iniciante
Iniciante

Mensagens : 20
Reputação : 0
Data de inscrição : 27/04/2014

Voltar ao Topo Ir em baixo

Re: Não consigo instalar o malwarebytes

Mensagem por Power Max em Dom 27 Abr 2014, 19:22

Estou analisando os seus relatórios. Enquanto isto faça o seguinte, por gentileza:

Acesse o site [Você precisa estar registrado e conectado para ver este link.] e envie este arquivo destacado em azul abaixo para ser analisado e assim que ele for analisado copie o link que aparecerá na barra de endereços de seu navegador e poste este link em sua próxima resposta:
C:\Program Files (x86)\2 Tasty Too lamour a Paris Update\2TastyToo.exe

Maiores informações de como enviar arquivos para análise no site VirScan você encontra neste tutorial:

[Você precisa estar registrado e conectado para ver este link.]

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Você precisa estar registrado e conectado para ver este link.] = O melhor da internet você encontra aqui.

[Você precisa estar registrado e conectado para ver este link.] = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: Não consigo instalar o malwarebytes

Mensagem por vbm em Dom 27 Abr 2014, 19:47

Relatório

VirSCAN.org Scanned Report :
Scanned time : 2014/04/27 18:40:09 (AMT)
Scanner results: Todos os softwares reportaram que não encontraram códigos maliciosos!
File Name : 2TastyToo.exe
File Size : 4760576 byte
File Type : PE32 executable for MS Windows (GUI) Intel 80386 32-bit
MD5 : 8ff67794f347c2eafd57daf41727b3cf
SHA1 : a5ddd336c43798bd1dbc524a5c6409679c7c33dc
Online report : [Você precisa estar registrado e conectado para ver este link.]

Scanner Engine Ver Sig Ver Sig Date Time Scan result
a-squared 5.1.0.4 00050000000000 0005-00-00 1.04 -
AhnLab V3 2013.05.28.00 2013.05.28 2013-05-28 3.82 -
AntiVir 1.9.159.0 1.9.2.0 7.11.142.34 13.29 -
Antiy 2.0.18 2.0.18. 0002-18-00 0.21 -
Arcavir 2011 201404070015 2014-04-07 7.75 -
Authentium 5.3.14 5.3.14 0005-14-00 0.97 -
AVAST! 4.7.4 140408-2 2014-04-08 0.21 -
AVG 10.0.1405 2109/6813 2014-04-07 0.27 -
BitDefender 7.90123.118432177.54121 2014-04-18 8.12 -
ClamAV 0.97.8 18762 2014-04-09 2.42 -
Comodo 5.1 15023 2013-12-15 2.47 -
CP Secure 1.3.0.5 2013.10.19 2013-10-19 0.20 -
Dr.Web 5.0.2.3300 2014.04.28 2014-04-28 28.50 -
F-Prot 4.6.2.117 20140201 2014-02-01 1.05 -
F-Secure 7.02.73807 2014.04.08.04 2014-04-08 2.09 -
Fortinet 4.3.392 16.549 2014-04-17 0.23 -
GData 22.14422 20131216 2013-12-16 10.21 -
ViRobot 20140324 2014.03.24 2014-03-24 0.45 -
Ikarus T3.1.32.10.0 ..1.32.10.0. --1.32.10.0 4.26 -
JiangMin 16.0.100 2013.02.09 2013-02-09 32.74 -
Kaspersky 5.5.10 2013.07.09 2013-07-09 0.00 -
KingSoft 2009.2.5.15 2014.4.9.9 2014-04-09 0.93 -
McAfee 5400.1158 7420 2014-04-26 10.79 -
Microsoft 1.10100 2013.12.15 2013-12-15 8.43 -
NOD32 3.0.21 9357 2014-01-30 0.21 -
Norman 6.8.3 201305031020 2013-05-03 0.24 -
Panda 9.05.01 2013.01.22 2013-01-22 7.63 -
Trend Micro 9.500-1005 10.716.03 2014-04-09 0.30 -
Quick Heal 11.00 2014.01.03 2014-01-03 5.16 -
Rising 20.0 24.46.00.03 2013-01-21 5.60 -
Sophos 3.16.1 4.62 2014-04-09 3.18 -
Sunbelt 3.9.2585.2 28176 2014-04-09 2.14 -
Symantec 1.3.0.24 20130909.001 2013-09-09 0.89 -
nProtect 20131227.01 16183671 2013-12-27 2.47 -
The Hacker 6.8.0.5 v00379 2013-12-15 0.95 -
VBA32 3.12.26.0 20140425.0708 2014-04-25 3.48 -
VirusBuster 5.5.2.13 15.0.704.0/154044542014-02-11 12.53 -
avatar
vbm
Iniciante
Iniciante

Mensagens : 20
Reputação : 0
Data de inscrição : 27/04/2014

Voltar ao Topo Ir em baixo

Re: Não consigo instalar o malwarebytes

Mensagem por Power Max em Dom 27 Abr 2014, 20:06

 Você conhece este programa abaixo que está em seu PC?

Resource Hacker
_______________________________________________________________________________________________

Sugiro que desinstale o Bonjour, que é um programa desnecessário e pode deixar o PC mais lento.
_________________________________________________________________________________________________

 Baixe o arquivo fixlist.txt que está anexado nesta postagem e salve-o no desktop (área de trabalho).

Execute o FRST64. Clique no botão Fix.

Aguarde e ao final, o log Fixlog.txt será salvo no seu desktop.

Selecione, copie e cole o conteúdo deste Fixlog.txt em sua próxima resposta e responda a pergunta que te fiz acima.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

[Você precisa estar registrado e conectado para ver este link.] = O melhor da internet você encontra aqui.

[Você precisa estar registrado e conectado para ver este link.] = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: Não consigo instalar o malwarebytes

Mensagem por vbm em Dom 27 Abr 2014, 20:23

Resource Hacker é um descompilador obtido em [Você precisa estar registrado e conectado para ver este link.]
avatar
vbm
Iniciante
Iniciante

Mensagens : 20
Reputação : 0
Data de inscrição : 27/04/2014

Voltar ao Topo Ir em baixo

Re: Não consigo instalar o malwarebytes

Mensagem por Conteúdo patrocinado


Conteúdo patrocinado


Voltar ao Topo Ir em baixo

Página 1 de 2 1, 2  Seguinte

Ver o tópico anterior Ver o tópico seguinte Voltar ao Topo


 
Permissão deste fórum:
Você não pode responder aos tópicos neste fórum