Flux RSS


Yahoo! 
MSN 
AOL 
Netvibes 
Bloglines 


Social bookmarking

Social bookmarking Digg  Social bookmarking Delicious  Social bookmarking Reddit  Social bookmarking Stumbleupon  Social bookmarking Slashdot  Social bookmarking Yahoo  Social bookmarking Google  Social bookmarking Blinklist  Social bookmarking Blogmarks  Social bookmarking Technorati  

Conservar e compartilhar o endereço de PC Seguro em seu site de social bookmarking

Conservar e compartilhar o endereço de Fórum PC Brasil em seu site de social bookmarking

Estatísticas
Temos 14428 usuários registrados
O último usuário registrado atende pelo nome de RS_Computadores

Os nossos membros postaram um total de 35112 mensagens em 3557 assuntos
Últimos assuntos
» Notebook Travando!
por RS_Computadores Qui 21 Set 2017, 10:37

Quem está conectado
Não há nenhum usuário online :: Nenhum usuário registrado, Nenhum Invisível e nenhuma Visita :: 1 Motor de busca

Nenhum

O recorde de usuários online foi de 108 em Qui 15 Maio 2014, 21:18
Buscar
 
 

Resultados por:
 


Rechercher Busca avançada

Setembro 2017
SegTerQuaQuiSexSabDom
    123
45678910
11121314151617
18192021222324
252627282930 

Calendário Calendário

Palavras chave


Remoção de Supra Savings

Página 1 de 2 1, 2  Seguinte

Ver o tópico anterior Ver o tópico seguinte Ir em baixo

Remoção de Supra Savings

Mensagem por Muratori em Sab 17 Maio 2014, 21:23

Olá Boa Noite ,
Há uns 3 dias baixei um programa pra converter músicas de m4a para mp3 , e junto veio uma grande quantidade de programas indesejados , a grande maioria eu consegui eliminar mais o Supra Savings continua , mesmo eu tendo usado Ccleaner , YAC e um outro da IObit , mas nenhum conseguiu excluí-lo , preciso de ajuda . Obrigado desde já
avatar
Muratori
Iniciante
Iniciante

Mensagens : 46
Reputação : 0
Data de inscrição : 17/05/2014

Voltar ao Topo Ir em baixo

Re: Remoção de Supra Savings

Mensagem por Power Max em Sab 17 Maio 2014, 21:26

  Olá Muratori.

Baixe o programa Adwcleaner clicando no link abaixo e depois clique no botão Download Now @BleepingComputer:
[Você precisa estar registrado e conectado para ver este link.]

Para executar corretamente o AdwCleaner é só seguir as dicas deste tutorial:

Remova adwares e toolbars maliciosas com o Adwcleaner

* Na sua próxima resposta poste o log (relatório) do Adwcleaner que estará em C:\AdwCleaner\AdwCleaner[S0].txt

Ficamos na espera.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

Fórum PC Brasil = O melhor da internet você encontra aqui.

Super Links = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: Remoção de Supra Savings

Mensagem por Muratori em Sab 17 Maio 2014, 21:35

# AdwCleaner v3.208 - Relatório criado 17/05/2014 às 21:29:52
# Atualizado 11/05/2014 por Xplode
# Sistema Operacional : Windows 8.1 Single Language  (64 bits)
# Usuário : Marcello Simões - MARCELLO
# Executando de : C:\Users\Marcello Simões\Downloads\AdwCleaner.exe
# Opção : Limpar

***** [ Serviços ] *****

Serviço Deletada : iSafeKrnl
Serviço Deletada : iSafeNetFilter
[#] Serviço Deletada : iSafeService
[#] Serviço Deletada : SECUREASSIST
Serviço Deletada : xmkysecqun64

***** [ Arquivos / Pastas ] *****

Pasta Deletada : C:\ProgramData\WPM
[!] Pasta Deletada : C:\Program Files (x86)\iSafe
Pasta Deletada : C:\Program Files\003
Pasta Deletada : C:\Program Files\SupraSavings
Pasta Deletada : C:\Users\Marcello Simões\AppData\Roaming\eCyber
Pasta Deletada : C:\Users\Marcello Simões\AppData\Roaming\iSafe
Arquivo Deletada : C:\WINDOWS\SysWOW64\SecureAssist.ini
Arquivo Deletada : C:\WINDOWS\SysWOW64\SecureAssistOff.ini
Arquivo Deletada : C:\WINDOWS\System32\drivers\SAWFP64.sys
Arquivo Deletada : C:\WINDOWS\System32\SecureAssist.ini
Arquivo Deletada : C:\WINDOWS\System32\SecureAssistOff.ini

***** [ Atalhos ] *****


***** [ Registro ] *****

Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{76A60138-58B3-4E27-85FB-8FEF344A8998}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\CLSID\{533403E2-6E21-4615-9E28-43F4E97E977B}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Chave Deletedo : HKCU\Software\AppDataLow\Software\Rr Savings
Chave Deletedo : HKCU\Software\AppDataLow\Software\Supra Savings
Chave Deletedo : HKLM\Software\iSafe
Chave Deletedo : HKLM\Software\suprasavings
Chave Deletedo : HKLM\Software\Wpm
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\iSafe
Chave Deletedo : [x64] HKLM\SOFTWARE\LevelQualityWatcher
Chave Deletedo : [x64] HKLM\SOFTWARE\Rr Savings
Chave Deletedo : [x64] HKLM\SOFTWARE\suprasavings

***** [ Navegadores ] *****

-\\ Internet Explorer v11.0.9600.17037

Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Configurações Restauradas : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Configurações Restauradas : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

-\\ Google Chrome v34.0.1847.137

[ Arquivo : C:\Users\Marcello Simões\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [3936 octets] - [17/05/2014 21:29:42]
AdwCleaner[S0].txt - [3264 octets] - [17/05/2014 21:29:52]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3324 octets] ##########
avatar
Muratori
Iniciante
Iniciante

Mensagens : 46
Reputação : 0
Data de inscrição : 17/05/2014

Voltar ao Topo Ir em baixo

Re: Remoção de Supra Savings

Mensagem por Power Max em Sab 17 Maio 2014, 21:47

Desative temporariamente seu antivírus para evitar conflitos.

 Acesse este link abaixo e clique no primeiro botão da esquerda que é o botão Download Zoek.exe:
[Você precisa estar registrado e conectado para ver este link.]

*Clique com o botão direito do mouse no Zoek.exe e selecione [Você precisa estar registrado e conectado para ver esta imagem.]

* Selecione e copie todo este texto destacado em vermelho que te passei e cole-o no espaço em branco do Zoek.

*Clique [Run Script]

*Durante o scan uma mensagem parecida com esta abaixo mostrando o progresso do escaneamento será apresentada. Aguarde o término...pode demorar!

[Você precisa estar registrado e conectado para ver esta imagem.]

*Caso a reinicialização do PC seja solicitada, clique [OK]

* Poste o log do Zoek que estará em C:\zoek-results.txt em sua próxima resposta.


Última edição por Power Max em Dom 18 Maio 2014, 00:37, editado 1 vez(es)

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

Fórum PC Brasil = O melhor da internet você encontra aqui.

Super Links = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Relatorio Zoek

Mensagem por Muratori em Sab 17 Maio 2014, 22:08

Zoek.exe v5.0.0.0 Updated 14-April-2014
Tool run by Marcello Simäes on 17/05/2014 at 21:57:14,70.
Microsoft Windows 8.1 Single Language 6.3.9600  x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\MARCEL~1\Downloads\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

17/05/2014 21:58:16 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
#      102.54.94.97     rhino.acme.com          # source server
#       38.25.63.10     x.acme.com              # x client host

127.0.0.1       localhost

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\Users\Marcello Simões\AppData\Local\nwhb-v9.4.15.crx not found
C:\PROGRA~3\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D} deleted
C:\PROGRA~2\iSafe deleted
C:\PROGRA~3\ProductData deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YAC deleted
C:\Users\MARCEL~1\Downloads\DownloadManagerSetup.exe deleted

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.google.com"
"Search Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.google.com"
"Search Page"="http://www.google.com"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0191A6B0-1154-4C22-9182-23A95BBE92D9}"
{0191A6B0-1154-4C22-9182-23A95BBE92D9} Google  Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Unknown  Url="Not_Found"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Reset Google Chrome ======================

Nothing found to reset

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2690360052-3579935041-4268471611-1002\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully

==== Deleting CLSID Registry Values ======================


==== shortcuts on Users Desktops ======================

C:\Users\Marcello Simões\Desktop\Computador - Atalho.lnk -  
C:\Users\Marcello Simões\Desktop\Kastor Free Mp3 M4a Wma Converter.lnk -  
C:\Users\Marcello Simões\Desktop\PXG Client.lnk -  
C:\Users\Marcello Simões\Desktop\ASUS\ASUS Install.lnk -  
C:\Users\Marcello Simões\Desktop\ASUS\ASUS Instant Connect Installer.lnk -  
C:\Users\Marcello Simões\Desktop\ASUS\ASUS InstantOn.lnk -  
C:\Users\Marcello Simões\Desktop\ASUS\ASUS N Series Demo.lnk -  
C:\Users\Marcello Simões\Desktop\ASUS\ASUS Product Demo Movie.Lnk -  
C:\Users\Marcello Simões\Desktop\ASUS\ASUS Tutor.lnk -  
C:\Users\Marcello Simões\Desktop\ASUS\Waves MAXXAudio.lnk -  
C:\Users\Marcello Simões\Desktop\ASUS\WebStorage Sync Agent.lnk -  
C:\Users\Marcello Simões\Desktop\ASUS\ASUS\Business tool\Adobe Reader X.lnk -  
C:\Users\Marcello Simões\Desktop\ASUS\ASUS\Entertainment\LifeFrame.lnk -  
C:\Users\Marcello Simões\Desktop\ASUS\ASUS\System tool\ASUS Instant Key Menu.lnk -  
C:\Users\Marcello Simões\Desktop\ASUS\ASUS\System tool\ASUS On-Screen Display.lnk -  
C:\Users\Marcello Simões\Desktop\ASUS\ASUS\System tool\Power4Gear Hybrid.lnk -  
C:\Users\Marcello Simões\Desktop\ASUS\ASUS\System tool\Splendid Utility.Lnk -  
C:\Users\Marcello Simões\Desktop\Jogos Online\Tibia.lnk -  
C:\Users\Marcello Simões\Desktop\Jogos Online\World of Tanks.lnk -  
C:\Users\Marcello Simões\Desktop\Steam\Steam.lnk -  
C:\Users\Marcello Simões\Desktop\VIVO\Guia Vivo Internet.lnk -  
C:\Users\Marcello Simões\Desktop\VIVO\Kantoo English.lnk -  
C:\Users\Marcello Simões\Desktop\VIVO\Nuvem de Livros.lnk -  
C:\Users\Marcello Simões\Desktop\VIVO\Segurança Online.lnk -  

==== shortcuts on All Users Desktop ======================

C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstview.exe
C:\Users\Public\Desktop\CCleaner.lnk - C:\Program Files\CCleaner\CCleaner64.exe
C:\Users\Public\Desktop\CPUID CPU-Z.lnk - C:\Program Files\CPUID\CPU-Z\cpuz.exe
C:\Users\Public\Desktop\Dead Space™.lnk -  
C:\Users\Public\Desktop\Driver Booster.lnk - C:\Program Files (x86)\IObit\Driver Booster\SkipUacExec.exe
C:\Users\Public\Desktop\eManual.Lnk - C:\eSupport\Manual\eManual.exe
C:\Users\Public\Desktop\GeForce Experience.lnk - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\GFExperience.exe
C:\Users\Public\Desktop\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Public\Desktop\IObit Uninstaller.lnk - C:\Program Files (x86)\IObit\IObit Uninstaller\Uninstaler_SkipUac.exe
C:\Users\Public\Desktop\LogMeIn Hamachi.lnk - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Users\Public\Desktop\Origin.lnk - C:\Program Files (x86)\Origin\Origin.exe
C:\Users\Public\Desktop\Overwolf.lnk - C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe
C:\Users\Public\Desktop\Skype.lnk - C:\WINDOWS\Installer\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}\SkypeIcon.exe
C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk - C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe
C:\Users\Public\Desktop\Tibia MULTI-IP Changer.lnk - C:\Program Files (x86)\Asprate\Tibia Multi IP Changer\Tibia MULTI-ip changer.exe
C:\Users\Public\Desktop\Unity.lnk - C:\Program Files (x86)\Unity\Editor\Unity.exe
C:\Users\Public\Desktop\VIVO INTERNET.lnk - C:\Program Files (x86)\VIVO INTERNET\VIVO INTERNET.exe
C:\Users\Public\Desktop\YAC.lnk - C:\Program Files (x86)\iSafe\iStart.exe

==== shortcuts in Users Start Menu ======================

C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AdwCleaner.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free mp3 Wma Converter.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wallpaper.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\Uninstall Ghost Recon Phantoms - NA.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AdwCleaner.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free mp3 Wma Converter.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wallpaper.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\Uninstall Ghost Recon Phantoms - NA.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AdwCleaner.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free mp3 Wma Converter.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wallpaper.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\Uninstall Ghost Recon Phantoms - NA.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AdwCleaner.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free mp3 Wma Converter.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wallpaper.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\Uninstall Ghost Recon Phantoms - NA.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AdwCleaner.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free mp3 Wma Converter.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wallpaper.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\Uninstall Ghost Recon Phantoms - NA.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AdwCleaner.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free mp3 Wma Converter.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wallpaper.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\Uninstall Ghost Recon Phantoms - NA.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AdwCleaner.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free mp3 Wma Converter.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wallpaper.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\Uninstall Ghost Recon Phantoms - NA.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AdwCleaner.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free mp3 Wma Converter.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wallpaper.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\Uninstall Ghost Recon Phantoms - NA.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AdwCleaner.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free mp3 Wma Converter.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wallpaper.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\Uninstall Ghost Recon Phantoms - NA.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AdwCleaner.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free mp3 Wma Converter.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wallpaper.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\Uninstall Ghost Recon Phantoms - NA.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AdwCleaner.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free mp3 Wma Converter.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wallpaper.lnk -  
C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\Uninstall Ghost Recon Phantoms - NA.lnk -  

==== shortcuts in All Users Start Menu ======================

C:\ProgramData\Microsoft\Windows\Start Menu\YAC.lnk - C:\Program Files (x86)\iSafe\iStart.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster\Desinstalar Driver Booster.lnk - C:\Program Files (x86)\IObit\Driver Booster\unins000.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster\Driver Booster.lnk - C:\Program Files (x86)\IObit\Driver Booster\SkipUacExec.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller\Help.lnk - C:\Program Files (x86)\IObit\IObit Uninstaller\help.html
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller\IObit Uninstaller.lnk - C:\Program Files (x86)\IObit\IObit Uninstaller\Uninstaler_SkipUac.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller\Uninstall IObit Uninstaller.lnk - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallDisplay.exe uninstall_start
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kastor Free Mp3 M4a Wma Converter\Desinstalar Kastor Free Mp3 M4a Wma Converter.lnk - C:\Program Files (x86)\Kastor Free Mp3 M4a Wma Converter\unins000.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kastor Free Mp3 M4a Wma Converter\Kastor Free Mp3 M4a Wma Converter.lnk - C:\Program Files (x86)\Kastor Free Mp3 M4a Wma Converter\FreeMp3M4aWmaConverter.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi\LogMeIn Hamachi.lnk - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi\Uninstall.lnk - C:\WINDOWS\SysWOW64\msiexec.exe /i {A313C1BB-04A5-49FA-AA26-6C3DDD9F6C7F} REMOVE=ALL

==== Reset IE Proxy ======================

Value(s) before fix:
"ProxyEnable"=dword:00000000

Value(s) after fix:
"ProxyEnable"=dword:00000000

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Marcello Simões\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Marcello Simões\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=910 folders=140 63168965 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Marcello Simões\AppData\Local\Temp emptied successfully
C:\Users\USURIO~1\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\MARCEL~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on 17/05/2014 at 22:06:29,50 ======================
avatar
Muratori
Iniciante
Iniciante

Mensagens : 46
Reputação : 0
Data de inscrição : 17/05/2014

Voltar ao Topo Ir em baixo

Re: Remoção de Supra Savings

Mensagem por Power Max em Sab 17 Maio 2014, 22:10

Baixe o programa Junkware Removal Tool no link abaixo:
[Você precisa estar registrado e conectado para ver este link.]

Para executar corretamente o programa acima é só seguir as dicas deste tutorial:

Tutorial do Junkware Removal Tool

* Na sua próxima resposta poste o log (relatório) do Junkware Removal Tool que estará salvo em sua área de trabalho com o nome de JRT.txt

Ficamos na espera.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

Fórum PC Brasil = O melhor da internet você encontra aqui.

Super Links = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: Remoção de Supra Savings

Mensagem por Muratori em Sab 17 Maio 2014, 22:22

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 8.1 Single Language x64
Ran by Marcello Simäes on 17/05/2014 at 22:18:14,02
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\baidu
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\isafe



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 17/05/2014 at 22:21:38,81
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
avatar
Muratori
Iniciante
Iniciante

Mensagens : 46
Reputação : 0
Data de inscrição : 17/05/2014

Voltar ao Topo Ir em baixo

Re: Remoção de Supra Savings

Mensagem por Power Max em Sab 17 Maio 2014, 22:31

Faça o download do < ZHPDiag2.exe > < [Você precisa estar registrado e conectado para ver esta imagem.]> ( ... de Nicolas Coolman )

Para instalá-lo e executá-lo corretamente siga as dicas deste artigo:

Tutorial de instalação e execução do aplicativo ZHPDiag

* Assim que ele concluir a sua verificação, copie todo o conteúdo do seu relatório ZHPDiag.txt e poste em sua próxima resposta.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

Fórum PC Brasil = O melhor da internet você encontra aqui.

Super Links = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: Remoção de Supra Savings

Mensagem por Muratori em Sab 17 Maio 2014, 22:39

~ Relatório do ZHPDiag v2014.5.17.66 - Nicolas Coolman (17/05/2014)
~ Iniciado por Marcello Simões (17/05/2014 22:37:10)
~ Endereço do Website : [Você precisa estar registrado e conectado para ver este link.]
~ Blog de análise de software : [Você precisa estar registrado e conectado para ver este link.]
~ Fóruns de suporte gratuito para desinfecção : [Você precisa estar registrado e conectado para ver este link.]
~ Tradução pelo utilizador
~ Estatuto da versão :
~ Lista Branca : Ativado pelo programa
~ Elevação dos Privilégios : OK
~ Controle de Conta de Utilizador : Activate by user


---\\ Navegadores Internet
MSIE: Internet Explorer v11.0.9600.17107
GCIE: Google Chrome v34.0.1847.137 (Defaut)

---\\ Informações sobre os produtos Windows
~ Langage: Portugais
Windows 8.1 Single Language, 64-bit (Build 9600)
Windows Server License Manager Script : OK

---\\ Softwares de proteçao do sistema
Windows Defender W8

---\\ Softwares d'optimização do sistema
CCleaner v4.07

---\\ Softwares de partilha do PeerToPeer (P2P)

---\\ Monitoramento dos softwares
Adobe Reader X MUI

---\\ Informações sobre o sistema
~ Processor: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 8077 MB (80% free)
System Restore: Activé (Enable)
System drive C: has 218 GB (58%) free of 373 GB

---\\ Modo de conexão ao sistema
~ Computer Name: MARCELLO
~ User Name: Marcello Simões
~ All Users Names: Marcello Simões, HomeGroupUser$, Convidado, Administrador,
~ Unselected Option: 045,061,O62,065,066,080,O82,089
Logged in as Administrator

---\\ As variáveis de ambiente
~ System Unit : C:\
~ %AppZHP% : C:\Users\Marcello Simões\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\Marcello Simões\AppData\Roaming\
~ %Desktop% : C:\Users\Marcello Simões\Desktop\
~ %Favorites% : C:\Users\Marcello Simões\Favorites\
~ %LocalAppData% : C:\Users\Marcello Simões\AppData\Local\
~ %StartMenu% : C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumeração das unidades dos discos
C: Hard drive, Flash drive, Thumb drive (Free 218 Go of 373 Go)
D: Hard drive, Flash drive, Thumb drive (Free 500 Go of 517 Go)
E: CD-ROM drive (Free 0 Go of 0 Go)
F: Floppy drive, Flash card reader, USB Key (Not Inserted)
G: CD-ROM drive (Not Inserted)



---\\ Estado do Centro de Segurança do Windows
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
~ Security Center: 49 Legitimates Filtered in 00mn 00s



---\\ Pesquisa particular de ficheiros genéricos
[MD5.81394C91B7B5A7C799E249AE82491F13] - (.Microsoft Corporation - Windows Explorer.) (.04/03/2014 - 09:25:49.) -- C:\Windows\Explorer.exe [2373784]
[MD5.48CFA7BE561A7BE144C29BB912055016] - (.Microsoft Corporation - Aplicativo de Inicialização do Windows.) (.22/08/2013 - 06:58:29.) -- C:\Windows\System32\Wininit.exe [144384]
[MD5.65C36A29A131A3A5D64B29FAC4EF6DD6] - (.Microsoft Corporation - Internet Extensions para Win32.) (.22/02/2014 - 06:11:56.) -- C:\Windows\System32\wininet.dll [2262016]
[MD5.306EB21E5B480AE9065EA55AC8C35936] - (.Microsoft Corporation - Aplicativo de Logon do Windows.) (.22/02/2014 - 06:45:48.) -- C:\Windows\System32\Winlogon.exe [562176]
[MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - (.Microsoft Corporation - Biblioteca de Licenciamento de Software.) (.21/12/2013 - 05:54:07.) -- C:\Windows\System32\sppcomapi.dll [447488]
[MD5.239268BAB58EAE9A3FF4E08334C00451] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.22/08/2013 - 10:25:35.) -- C:\Windows\system32\Drivers\AFD.sys [567296]
[MD5.74B14192CF79A72F7536B27CB8814FBD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.22/08/2013 - 09:43:41.) -- C:\Windows\system32\Drivers\atapi.sys [26464]
[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - (.Microsoft Corporation - CD-ROM File System Driver.) (.22/08/2013 - 08:40:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [88576]
[MD5.C6796EA22B513E3457514D92DCDB1A3D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.22/08/2013 - 05:46:35.) -- C:\Windows\system32\Drivers\Cdrom.sys [164352]
[MD5.A03F362C5557E238CBFA914689C77248] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.06/03/2014 - 06:22:50.) -- C:\Windows\system32\Drivers\DfsC.sys [134144]
[MD5.03909BDBFF0DCACCABF2B2D4ADEE44DC] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.22/08/2013 - 08:38:38.) -- C:\Windows\system32\Drivers\HDAudBus.sys [78336]
[MD5.84CFC5EFA97D0C965EDE1D56F116A541] - (.Microsoft Corporation - Driver de porta i8042.) (.22/08/2013 - 08:39:15.) -- C:\Windows\system32\Drivers\i8042prt.sys [107520]
[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - (.Microsoft Corporation - IP Network Address Translator.) (.27/11/2013 - 09:02:29.) -- C:\Windows\system32\Drivers\IpNat.sys [142848]
[MD5.C997E6A37BA8915224B3FB5024A34F69] - (.Microsoft Corporation - Minirdr SMB do Windows NT.) (.06/03/2014 - 06:20:23.) -- C:\Windows\system32\Drivers\MRxSmb.sys [402944]
[MD5.0217532E19A748F0E5D569307363D5FD] - (.Microsoft Corporation - MBT Transport driver.) (.22/08/2013 - 08:37:02.) -- C:\Windows\system32\Drivers\netBT.sys [282624]
[MD5.1C80517BE6836A812F6A9B99B8321351] - (.Microsoft Corporation - Driver do Sistema de Arquivos NT.) (.20/03/2014 - 00:41:24.) -- C:\Windows\system32\Drivers\ntfs.sys [2013016]
[MD5.764B1121867B2D9B31C491668AC72B2B] - (.Microsoft Corporation - Driver de porta paralela.) (.22/08/2013 - 08:40:02.) -- C:\Windows\system32\Drivers\Parport.sys [94208]
[MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.22/08/2013 - 08:35:51.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [120832]
[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - (.Microsoft Corporation - Redirecionador do Dispositivo RDP da Microsoft.) (.14/11/2013 - 04:15:38.) -- C:\Windows\system32\Drivers\rdpdr.sys [195584]
[MD5.FFF28F9F6823EB1756C60F1649560BBF] - (.Microsoft Corporation - TDI Translation Driver.) (.22/08/2013 - 10:25:35.) -- C:\Windows\system32\Drivers\tdx.sys [107520]
[MD5.3595FBDF25F8BA6256072D103937D7D6] - (.Microsoft Corporation - Driver de cópia de sombra de volume.) (.22/02/2014 - 12:44:13.) -- C:\Windows\system32\Drivers\volsnap.sys [311640]
~ Generic Processes: Scanned in 00mn 01s



---\\ Estatuto dos ficheiros ocultos (Oculto/Total)
~ Mes images (My Pictures) : 1/28
~ Mes musiques (My Musics) : 1/2
~ Mes Favoris (My Favorites) : 1/7
~ Mes Documents (My Documents) : 1/23
~ Mon Bureau (My Desktop) : 2/4621
~ Menu demarrer (Programs) : 1/44
~ Hidden Files: Scanned in 00mn 02s



---\\ Processos lançados
[MD5.CDA9313E34887A111B8309B55BCDCD82] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [411936] [PID.612]
[MD5.D01D1B40EEF27F64B45165CE0ACDE6CD] - (.ASUSTek Computer Inc. - ASLDR Service.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [106880] [PID.1508]
[MD5.DBC598E47E7A382E60E2A4745D41FEF9] - (.ASUS - GFNEXSrv.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [96896] [PID.1540]
[MD5.3A13CFFC1233ADD8F2FAFE33BE14FAD4] - (.Cherished Technololgy LIMITED - IePlugin Service.) -- C:\ProgramData\IePluginServices\PluginService.exe [704112] [PID.1576] =>Trojan.SProtector
[MD5.6A122B4F0E5293CACFA8A5F2CBA9B356] - (.ASUS - ASUS InstantOn Program.) -- C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe [277120] [PID.1928]
[MD5.78ABBE558F57144047F10A0F50FE4B2F] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720] [PID.1068]
[MD5.1C7C6D7481CABD4EF38A81F5B68F02E8] - (.NVIDIA Corporation - NVIDIA Network Service.) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304] [PID.1780]
[MD5.616F6E52CAE254727A886BA8EDA1BEEA] - (.No owner - RichVideo Module.) -- C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [247152] [PID.2088]
[MD5.918C73F0275D7813E6F01E100B39DBD9] - (.Atheros - Atheros Coex Service Application.) -- C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584] [PID.2220]
[MD5.AC68B12E9B314F708730FE0399791D9C] - (.ASUSTek Computer Inc. - HControl.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe [184704] [PID.3508]
[MD5.20E39BE7B43479FA66F6C8D6C7FA2F9A] - (.ASUS - ASUS InstantOn Program.) -- C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exe [590208] [PID.3516]
[MD5.7C58A2513C3DA421A461D75C66C56D21] - (.ASUSTek Computer Inc. - ASUS USB Charger Plus.) -- C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [1123536] [PID.3564]
[MD5.79174FD5F4DE078642BE1CACB124BFCA] - (.ASUS - ASUS InstantOn.) -- C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnCfg.exe [1126784] [PID.3580]
[MD5.4F870EF9292559AB9DE6F31527A1DCBF] - (.ASUSTek Computer Inc. - KBFiltr.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe [113312] [PID.3860]
[MD5.349AB4F70E2AC44970894E7F03E1576E] - (.Huawei Technologies Co., Ltd. - DataCardMonitor MFC Application.) -- C:\ProgramData\DatacardService\DCSHelper.exe [236384] [PID.3904]
[MD5.A2791CF11D1ED52DBCD75D2FFD4D50E7] - (.ASUSTek Computer Inc. - ATK Media.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [178848] [PID.4040]
[MD5.2D32F0EF950AED6AD007D042676FD39E] - (.ASUSTek Computer Inc. - ATKOSD2.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [328064] [PID.4064]
[MD5.99BDEA9E7B9658B69619BB8AD060D017] - (...) -- C:\Program Files (x86)\VIVO INTERNET\VIVO INTERNET.exe [536576] [PID.3144]
[MD5.05C5CBE5C0C26EFF48AF60639F30F4F5] - (.NVIDIA Corporation - NVIDIA GeForce Experience Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712] [PID.3680]
[MD5.DB0C938BC311B31CF90C13821AE682B3] - (.ASUSTeK Computer Inc. - ASUS Live Update.) -- C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [1559936] [PID.4056]
[MD5.29769215DEB6E8418EF3656B0423776E] - (.ASUSTeK Computer Inc. - ASUS Quick Gesture Exe.) -- C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe [20352] [PID.2604]
[MD5.9656F8E29F6C3161A3E99BCD3A472FF9] - (.Intel Corporation - Intel(R) ME Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856] [PID.5552]
[MD5.2C24DC448DBE8DB9BE1441B824C57E79] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [277824] [PID.5572]
[MD5.E1A119AD21F5AFE22EB516C549306D3D] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [365376] [PID.5696]
[MD5.345B1798395CEA9C178AFF1784FA2A37] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [841032] [PID.3388]
[MD5.1F0D27B7142CDEA3FBEC7A7DE56D3D1B] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [7877120] [PID.3012]
~ Processes Running: Scanned in 00mn 00s



---\\ Google Chrome, Arranque,Pesquisa,Extensões (G0,G1,G2)
C:\Users\Marcello Simões\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] [Você precisa estar registrado e conectado para ver este link.]
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Loja v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [neajdppkdcdipfabeoofebfddakdcjhd] Google Network Speech v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [nkeimhogjdpnpccoofpliimaahmaaome] Hangout Services v.1.0 (Activé)

---\\ Pasta de extensão do Google Chrome
~ Google Lines Browser: 16 Legitimates Filtered in 00mn 00s



---\\ Mozilla Firefox, Plugins,Arranque,Pesquisa,Extensões (P2,M0,M1,M2,M3)
P2 - FPN: [HKCU] [@unity3d.com/UnityPlayer,version=1.0] - (...) -- C:\Users\Marcello Simões\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (.not file.)
~ Firefox Browser: 3 Legitimates Filtered in 00mn 00s



---\\ Internet Explorer, Gestão do Proxy (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Análise das linhas F0, F1, F2, F3 - Ficheiros ini, Carregamento Automático de programas
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Redireção do ficheiro Hosts (01)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 19



---\\ Outras conexões do utilizador (04)
O4 - GS\Desktop [Public]: YAC.lnk . (...) -- C:\Program Files (x86)\iSafe\iStart.exe (.not file.) =>Trojan.Staser
~ Global Startup: 1 Legitimates Filtered in 00mn 01s



---\\ Aplicações iniciadas por registo & pastas (04)
O4 - HKCU\..\Run: [HW_OPENEYE_OUC_] . (.Huawei Technologies Co., Ltd. - Online Update Clinet.) -- C:\Program Files (x86)\VIVO INTERNET\UpdateDog\ouc.exe
O4 - HKCU\..\Run: [EADM] . (.Electronic Arts - Origin.) -- C:\Program Files (x86)\Origin\Origin.exe
O4 - HKCU\..\Run: [Facebook Update] . (.Facebook Inc. - Facebook Installer.) -- C:\Users\Marcello Simões\AppData\Local\Facebook\Update\FacebookUpdate.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKLM\..\Wow6432Node\Run: [ASUS InstantKey] . (.ASUS - Ikey_start.) -- C:\Program Files (x86)\ASUS\ASUS Instant Key\Ikey_start.exe
O4 - HKLM\..\Wow6432Node\Run: [LogMeIn Hamachi Ui] . (.LogMeIn Inc. - Hamachi Client Application.) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
O4 - HKUS\S-1-5-21-2690360052-3579935041-4268471611-1002\..\Run: [HW_OPENEYE_OUC_] . (.Huawei Technologies Co., Ltd. - Online Update Clinet.) -- C:\Program Files (x86)\VIVO INTERNET\UpdateDog\ouc.exe
O4 - HKUS\S-1-5-21-2690360052-3579935041-4268471611-1002\..\Run: [EADM] . (.Electronic Arts - Origin.) -- C:\Program Files (x86)\Origin\Origin.exe
O4 - HKUS\S-1-5-21-2690360052-3579935041-4268471611-1002\..\Run: [Facebook Update] . (.Facebook Inc. - Facebook Installer.) -- C:\Users\Marcello Simões\AppData\Local\Facebook\Update\FacebookUpdate.exe
O4 - HKUS\S-1-5-21-2690360052-3579935041-4268471611-1002\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
~ Application: Scanned in 00mn 00s



---\\ Boutões da barra de ferramentas principal do Internet Explorer (09)
O9 - Extra button: Send by Bluetooth to [64Bits] - {7815BE26-237D-41A8-A98F-F7BD75F71086} -- Chave orfã
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Site na zona confiavél do Internet Explorer (05)
O15 - Trusted Zone: [HKCU\...\EscDomains] http.connectify.me
O15 - Trusted Zone: [HKCU\...\EscDomains] http.fastspring.com
O15 - Trusted Zone: [HKLM\...\EscDomains] http.connectify.me
O15 - Trusted Zone: [HKLM\...\EscDomains] http.fastspring.com
~ IE Zone Confiance: Scanned in 00mn 00s



---\\ Alteração Dominio/Clientes DNS (017)
O17 - HKLM\System\CCS\Services\Tcpip\..\{A83CC804-C9AF-4830-BACF-B8D1CAD70F7A}: NameServer = 187.100.246.254 187.100.246.251
O17 - HKLM\System\CCS\Services\Tcpip\..\{81BEADEA-FC81-49F5-8EE0-258840DFDBDC}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{A83CC804-C9AF-4830-BACF-B8D1CAD70F7A}: NameServer = 187.100.246.254 187.100.246.251
O17 - HKLM\System\CS1\Services\Tcpip\..\{81BEADEA-FC81-49F5-8EE0-258840DFDBDC}: DhcpNameServer = 192.168.0.1
~ Domain: Scanned in 00mn 00s



---\\ Protocolo adicional (018)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valor do Registo AppInit_DLLs e sub-chaves Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s



---\\ Lista dos serviços NT não Microsoft e não desativados (023)
O23 - Service: HWDeviceService64.exe (HWDeviceService64.exe) . (.No owner - DCSHOST.) - C:\ProgramData\DatacardService\HWDeviceService64.exe
O23 - Service: IePlugin Services (IePluginServices) . (.Cherished Technololgy LIMITED - IePlugin Service.) - C:\ProgramData\IePluginServices\PluginService.exe =>Trojan.SProtector
~ Services: 22 Legitimates Filtered in 00mn 02s



---\\ Tarefas planificadas automaticamente (039)
[MD5.6EE33998658AC2EDCF867E00F20543A4] [APT] [{46FFC6FC-7F9C-47FA-9913-BFC70F5A8D63}] (...) -- C:\Users\Marcello Simões\Desktop\Marcello\'-'\pxgclient.exe [2203136]
[MD5.00000000000000000000000000000000] [APT] [{9BD1DA6A-D411-4308-A3EE-F00D8347A202}] (...) -- C:\Users\Marcello Simões\Desktop\Perfect World\unins000.exe (.not file.) [0]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2690360052-3579935041-4268471611-1002Core [964]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2690360052-3579935041-4268471611-1002UA [986]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1100]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1104]
O39 - APT: - (..) -- C:\Windows\Tasks\Uninstaller_SkipUac_Administrator.job [316]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\Uninstaller_SkipUac_Administrator [316]
~ Scheduled Task: 23 Legitimates Filtered in 00mn 04s



---\\ Drivers lançados ao arranque do sistema (041)
O41 - Driver: (Bfilter) . (. - .) - C:\WINDOWS\system32\drivers\Bfilter.sys (.not file.)
O41 - Driver: (Bfmon) . (. - .) - C:\WINDOWS\system32\drivers\Bfmon.sys (.not file.)
O41 - Driver: (Bnbase) . (. - .) - C:\Windows\System32\drivers\bnbasex64.sys (.not file.)
O41 - Driver: (Bndef) . (. - .) - C:\WINDOWS\system32\drivers\bndef64.sys (.not file.)
O41 - Driver: (Bprotect) . (. - .) - C:\WINDOWS\system32\drivers\Bprotect.sys (.not file.)
O41 - Driver: (iSafeKrnlKit) . (. - .) - C:\Program Files (x86)\iSafe\iSafeKrnlKit.sys (.not file.) =>Trojan.Staser
O41 - Driver: ({9edd0ea8-2819-47c2-8320-b007d5996f8a}Gw64) . (.StdLib - StdLib.) - C:\Windows\System32\drivers\{9edd0ea8-2819-47c2-8320-b007d5996f8a}Gw64.sys =>PUP.LinkiDoo
~ Drivers: 52 Legitimates Filtered in 00mn 00s



---\\ Software instalados (042)
O42 - Logiciel: March of War - (.ISOTX.) [HKLM][64Bits] -- Steam App 234310
O42 - Logiciel: Vivo - Guia Vivo Internet versão 1.0 - (.Vivo.) [HKLM][64Bits] -- {C2E8B9C9-677A-46E6-AEC7-9435B5BCA765}_is1
~ Logic: 10 Legitimates Filtered in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\Baidu Security] =>Adware.BDSearch
[HKLM\Software\Baidu Security] =>Adware.BDSearch
[HKLM\Software\Wow6432Node\Asprate]
[HKLM\Software\Wow6432Node\Baidu Security] =>Adware.BDSearch
[HKLM\Software\Wow6432Node\Baidu_Drp_pos] =>Adware.BDSearch
[HKLM\Software\Wow6432Node\SupDp] =>PUP.SupTab
[HKLM\Software\Wow6432Node\Wpm] =>PUP.WpManager
~ Key Software: 240 Legitimates Filtered in 00mn 00s



---\\ Conteúdo das pastas Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 31/03/2014 - 18:27:29 - [] ----D C:\Program Files (x86)\Asprate
O43 - CFD: 15/05/2014 - 18:11:58 - [] ----D C:\Program Files (x86)\Baidu Security =>Adware.BDSearch
O43 - CFD: 10/08/2013 - 15:45:38 - [] ----D C:\Program Files (x86)\Vivo
O43 - CFD: 06/11/2013 - 21:19:57 - [] ----D C:\Program Files (x86)\VIVO INTERNET
O43 - CFD: 15/05/2014 - 18:12:10 - [] ----D C:\ProgramData\Baidu Security =>Adware.BDSearch
O43 - CFD: 16/05/2014 - 16:42:18 - [] ----D C:\ProgramData\IePluginServices =>Trojan.SProtector
O43 - CFD: 16/05/2014 - 17:05:59 - [] ----D C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
O43 - CFD: 16/05/2014 - 17:05:58 - [] ----D C:\ProgramData\{E1ED556E-3EA0-4F44-8BE7-CC5FB0F4B424}
O43 - CFD: 23/12/2013 - 20:50:07 - [] ----D C:\Users\Marcello Simões\AppData\Roaming\Baidu Security =>Adware.BDSearch
O43 - CFD: 16/05/2014 - 17:07:55 - [] ----D C:\Users\Marcello Simões\AppData\Roaming\ProductData
O43 - CFD: 18/12/2013 - 15:46:32 - [] ----D C:\Users\Marcello Simões\AppData\Roaming\pxgclient
O43 - CFD: 25/08/2013 - 23:28:18 - [] ----D C:\Users\Marcello Simões\AppData\Roaming\VIVO INTERNET
O43 - CFD: 06/12/2013 - 18:24:27 - [] ----D C:\Users\Marcello Simões\AppData\Local\DeathZ Entertainment
~ Program Folder: 176 Legitimates Filtered in 00mn 00s



---\\ Últimos ficheiros alterados ou criados no Windows e Sistema32 (044)
O44 - LFC:[MD5.9CACD67D22F5B8CA642D822C2A97F030] - 12/05/2014 - 16:40:58 ---A- . (.StdLib - StdLib.) -- C:\Windows\System32\Drivers\{9edd0ea8-2819-47c2-8320-b007d5996f8a}Gw64.sys [61112] =>PUP.LinkiDoo
O44 - LFC:[MD5.3FA124F9ADEA8CDA2F33B7EDC688F305] - 15/05/2014 - 23:27:06 ---A- . (...) -- C:\Windows\win.ini [226]
O44 - LFC:[MD5.D53A0800A3E7E720F12C1FD2854CC97B] - 16/05/2014 - 17:30:09 ---A- . (...) -- C:\Windows\System32\Drivers\RTAIODAT.DAT [757301]
O44 - LFC:[MD5.7F32E0B2D1BC0E97FEF28111E8E004DB] - 16/05/2014 - 17:32:31 ---A- . (...) -- C:\Windows\System32\Drivers\RTWAVES30.dat [109544]
O44 - LFC:[MD5.A3F58AF389FA3B2A6FB18D7BFDBE67EE] - 16/05/2014 - 17:32:40 ---A- . (...) -- C:\log.txt [7090]
O44 - LFC:[MD5.12B0701B1CEC1A7BB0E4C71D97661E23] - 16/05/2014 - 18:34:54 ---A- . (...) -- C:\Windows\System32\ApnDatabase.xml [387210]
O44 - LFC:[MD5.385AF1C48CE3E86B37B9E66749FFEC1B] - 16/05/2014 - 20:20:43 ---A- . (...) -- C:\Windows\System32\srms.dat [50053]
O44 - LFC:[MD5.E7B53AF004BEE5112F787A6E5B04D737] - 16/05/2014 - 20:20:46 ---A- . (...) -- C:\Windows\System32\connectedsearch-results.searchconnector-ms [11109]
O44 - LFC:[MD5.F1DB86EA935C13CDFF27AB957297136A] - 16/05/2014 - 20:20:55 ---A- . (...) -- C:\Windows\System32\connectedsearch-suggestions.searchconnector-ms [7762]
O44 - LFC:[MD5.1FDF29F970E2E843B4DC5D0626D0EDD5] - 16/05/2014 - 20:20:55 ---A- . (...) -- C:\Windows\System32\connectedsearch-zeroinput.searchconnector-ms [7130]
O44 - LFC:[MD5.DE461B86C05946D10E519F512D09E389] - 16/05/2014 - 20:20:56 ---A- . (...) -- C:\Windows\System32\RacRules.xml [100197]
O44 - LFC:[MD5.119E0F7A71775A5CFB208B036ECE35E1] - 16/05/2014 - 20:21:35 ---A- . (...) -- C:\Windows\System32\WimBootCompress.ini [2255]
O44 - LFC:[MD5.DCF2510E0745720E543E84F5E921FCC0] - 16/05/2014 - 20:23:12 ---A- . (...) -- C:\Windows\System32\dfpinc.dat [262335]
O44 - LFC:[MD5.FFFCC3C3ED6886A95D3C0E1B49C652BA] - 16/05/2014 - 20:24:43 ---A- . (...) -- C:\Windows\System32\systemsf.ebd [139600]
O44 - LFC:[MD5.08750A50CF027F93070C8BB78E27C3B7] - 16/05/2014 - 20:45:51 -SH-- . (...) -- C:\Windows\System32\desktop.ini [75]
O44 - LFC:[MD5.635DA49E3C3C17FD6C1FFCFBBDCAA61B] - 17/05/2014 - 12:48:05 ---A- . (...) -- C:\MyXML.xml [165659]
O44 - LFC:[MD5.77DBE0A0FE2A6D9C545CCE4B7BE5E287] - 17/05/2014 - 12:48:13 ---A- . (...) -- C:\Windows\System32\prfc0416.dat [158494]
O44 - LFC:[MD5.C67DABADA4A743C52CF49E8335F63707] - 17/05/2014 - 12:48:13 ---A- . (...) -- C:\Windows\System32\prfh0416.dat [774900]
O44 - LFC:[MD5.A9B2979ED2801F65E73F2B29B3E63334] - 17/05/2014 - 12:55:40 ---A- . (...) -- C:\ASCInit.log [6071]
O44 - LFC:[MD5.B245AC8448053F9AB24AA823B0970E7A] - 17/05/2014 - 16:12:53 ---A- . (.Elex do Brasil Participações Ltda - iSafe Kernel Boot Driver.) -- C:\Windows\System32\Drivers\iSafeKrnlBoot.sys [34304] =>Trojan.Staser
O44 - LFC:[MD5.CC7AA7B42CF418FC3D926913490048F8] - 17/05/2014 - 21:57:00 ---A- . (...) -- C:\Windows\zoek-delete.exe [24064]
O44 - LFC:[MD5.87568B14E9447C307CF49230982EACDD] - 17/05/2014 - 22:06:29 ---A- . (...) -- C:\zoek-results.log [16159]
~ Files: 618 Legitimates Filtered in 00mn 17s



---\\ Chave do registo Shell MountPoints2 (MPKS) (O51)
O51 - MPSK:{111ca81d-7e6e-11e3-8250-93b708a5d983}\AutoRun\command. (.No owner - AutoRun.) -- E:\AutoRun.exe
O51 - MPSK:{39ea5d5b-bd94-11e3-bee2-94dbc9b62ad8}\AutoRun\command. (.No owner - AutoRun.) -- E:\AutoRun.exe
O51 - MPSK:{d08f5ae1-a570-11e3-bed9-94dbc9b62ad8}\AutoRun\command. (.No owner - AutoRun.) -- E:\AutoRun.exe
~ Keys: Scanned in 00mn 00s



---\\ Enumeração das chaves do registo PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "DisableCAD"=1
~ MWPS: 22 Legitimates Filtered in 00mn 00s



---\\ Enumeração das chaves do registo PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoLowDiskSpaceChecks"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
~ MWPE Keys: 8 Legitimates Filtered in 00mn 00s



---\\ Lista dos drivers do sistema (SDL) (O58)
O58 - SDL:12/08/2013 - 20:25:46 ---A- . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\Drivers\bcmfn2.sys [17624]
O58 - SDL:23/12/2013 - 21:36:39 ---A- . (.Connectify - NDIS filter driver.) -- C:\Windows\System32\Drivers\cnnctfy2.sys [31344]
O58 - SDL:23/12/2013 - 21:02:13 ---A- . (.Connectify - NDISRD helper driver.) -- C:\Windows\System32\Drivers\cnnctfy3.sys [35352]
O58 - SDL:08/10/2010 - 15:59:40 ---A- . (.Huawei Tech. Co., Ltd. - HUAWEI USB Smart Card Driver.) -- C:\Windows\System32\Drivers\ewdcsc.sys [32768]
O58 - SDL:11/04/2014 - 03:12:08 ---A- . (.Elex do Brasil Participações Ltda - iSafe Kernel Boot Driver.) -- C:\Windows\System32\Drivers\iSafeKrnlBoot.sys [34304] =>Trojan.Staser
O58 - SDL:02/08/2012 - 00:22:48 ---A- . (.No owner - Keyboard Filter Driver.) -- C:\Windows\System32\Drivers\kbfiltr.sys [14992]
O58 - SDL:06/08/2010 - 06:43:20 ---A- . (.DiBcom SA - DiBcom AVSTREAM BDA driver.) -- C:\Windows\System32\Drivers\mod7700.sys [1001472]
O58 - SDL:28/10/2013 - 00:12:10 ---A- . (.DEVGURU Co., LTD.([Você precisa estar registrado e conectado para ver este link.] - SAMSUNG USB Composite Device Driver (MSS Ver.3).) -- C:\Windows\System32\Drivers\ssudbus.sys [107288]
O58 - SDL:22/01/2014 - 08:52:10 ---A- . (.DEVGURU Co., LTD.([Você precisa estar registrado e conectado para ver este link.] - SAMSUNG Android Modem Device Driver (MSS Ver.3).) -- C:\Windows\System32\Drivers\ssudmdm.sys [206080]
O58 - SDL:22/08/2013 - 09:43:32 ---A- . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Windows x64.) -- C:\Windows\System32\Drivers\stexstor.sys [31072]
O58 - SDL:12/05/2014 - 16:40:58 ---A- . (.StdLib - StdLib.) -- C:\Windows\System32\Drivers\{9edd0ea8-2819-47c2-8320-b007d5996f8a}Gw64.sys [61112] =>PUP.LinkiDoo
~ Drivers: 78 Legitimates Filtered in 00mn 06s



---\\ Lista das ferramentas de remoção de vírus (LAT) (063)
O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s



---\\ Associações Shell Spawning (O67)
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Not Key.)
~ FASS Keys: 11 Legitimates Filtered in 00mn 00s



---\\ Menu de inicialização Internet (068)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- c:\program files (x86)\google\chrome\application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- c:\program files\internet explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s



---\\ Pesquisa de infeção nos navegadores da Internet (SBI) (069)
O69 - SBI: SearchScopes [HKCU] Web - (Web) - [Você precisa estar registrado e conectado para ver este link.]
O69 - SBI: SearchScopes [HKCU] {0191A6B0-1154-4C22-9182-23A95BBE92D9} [DefaultScope] - (Google) - [Você precisa estar registrado e conectado para ver este link.]
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - [Você precisa estar registrado e conectado para ver este link.]
~ Keys: Scanned in 00mn 00s



---\\ Pesquisa adicional à raiz do sistema (radicular) (SPRF) (O84)
[MD5.4A93070098539B54FDA391D4D551C880] [SPRF][22/07/2009] (...) -- C:\ProgramData\SetStretch.exe [24576]
[MD5.CDE8CF0241C98CA56327B47343E4E5D9] [SPRF][16/03/2014] (...) -- C:\Users\Marcello Simões\AppData\Roaming\sp_data.sys [408]
~ Files: 2 Legitimates Filtered in 00mn 00s



---\\ Listagem dos códigos dos software (PUC) (090)
O90 - PUC: "BD04C21DD7DC68D42958E5F22E63394E" . (.SupraSavings.) -- c:\WINDOWS\Installer\{D12C40DB-CD7D-4D86-9285-5E2FE23693E4}\icon64.ico =>PUP.SupraSavings
~ Update Products: 1 Legitimates Filtered in 00mn 00s



---\\ Pesquisa dos pacotes WindowsInstaller (WIS) (O93) (NTFS)
[MD5.9A5263D3C011F34BFA10C5458CF27197] [WIS][15/05/2014] (.SupraSavings - SupraSavings.) -- C:\Windows\Installer\953c0e.msi [4997120] =>PUP.SupraSavings
~ WIS: 1 Legitimates Filtered in 00mn 01s



---\\ Search Tracing Registry Key (O100)
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\updatewebget_RASAPI32 =>PUP.WebGet
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\updatewebget_RASMANCS =>PUP.WebGet
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\utilwebget_RASAPI32 =>PUP.WebGet
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\utilwebget_RASMANCS =>PUP.WebGet
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\webget_RASAPI32 =>PUP.WebGet
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\webget_RASMANCS =>PUP.WebGet
~ BTK: 70 Legitimates Filtered in 00mn 00s



---\\ Estado general dos serviços não Microsoft (EGS) (SR=Executados, SS=Parados)
SS - | Demand 01/10/2013 279000 | (cphs) . (.Intel Corporation.) - C:\Windows\SysWow64\IntelCpHeciSvc.exe
SS - | Demand 10/08/2013 116648 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 10/08/2013 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 03/04/2005 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
SS - | Auto 08/04/2014 2152768 | (LiveUpdateSvc) . (.IObit.) - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
SS - | Demand 09/12/2013 96184 | (OverwolfUpdaterService) . (.Overwolf.) - C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
SS - | Auto 23/10/2013 172192 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SS - | Demand 23/04/2014 572096 | (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
SS - | Disabled 10/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
SS - | Auto 22/08/2013 37768 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 11/09/2012 106880 | (ASLDRService) . (.ASUSTek Computer Inc..) - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
SR - | Auto 13/04/2012 277120 | (ASUS InstantOn) . (.ASUS.) - C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
SR - | Auto 10/08/2012 211584 | (AtherosSvc) . (.Qualcomm Atheros Commnucations.) - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
SR - | Auto 21/11/2011 96896 | (ATKGFNEXSrv) . (.ASUS.) - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
SR - | Auto 15/04/2014 2227536 | (Hamachi2Svc) . (.LogMeIn Inc..) - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
SR - | Auto 14/03/2011 346976 | (HWDeviceService64.exe) . (...) - C:\ProgramData\DatacardService\HWDeviceService64.exe
SR - | Auto 13/07/2012 2451456 | (IconMan_R) . (.Realsil Microelectronics Inc..) - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
SR - | Auto 08/05/2014 704112 | (IePluginServices) . (.Cherished Technololgy LIMITED.) - C:\ProgramData\IePluginServices\PluginService.exe =>Trojan.SProtector
SR - | Auto 20/04/2012 635104 | (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
SR - | Auto 27/06/2012 129856 | (Intel(R) ME Service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
SR - | Auto 25/06/2012 166720 | (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
SR - | Auto 08/04/2014 377616 | (LMIGuardianSvc) . (.LogMeIn, Inc..) - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
SR - | Auto 17/07/2012 277824 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SR - | Auto 09/12/2013 1494304 | (NvNetworkService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
SR - | Auto 09/12/2013 15129376 | (NvStreamSvc) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
SR - | Auto 04/03/2014 922968 | (nvsvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvvsvc.exe
SR - | Auto 17/04/2009 247152 | (RichVideo) . (...) - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
SR - | Auto 04/03/2014 411936 | (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
SR - | Auto 17/07/2012 365376 | (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SR - | Demand 10/07/1658 0 | (WdNisSvc) . (...) - C:\Program Files (x86)\Windows Defender\NisSrv.exe
SR - | Demand 10/07/1658 0 | (WinDefend) . (...) - C:\Program Files (x86)\Windows Defender\MsMpEng.exe
SR - | Auto 10/08/2012 323584 | (ZAtheros Bt&Wlan Coex Agent) . (.Atheros.) - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
~ Services: Scanned in 00mn 05s



---\\ Scâner Aditional (088)
Database Version : 13045 - (17/05/2014)
Clés trouvées (Keys found) : 2
Valeurs trouvées (Values found) : 1
Dossiers trouvés (Folders found) : 4
Fichiers trouvés (Files found) : 9

[HKLM\SYSTEM\CurrentControlSet\Services\IePluginServices] =>Trojan.SProtector^
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}] =>PUP.V9Software
C:\Program Files (x86)\Baidu Security =>Adware.BDSearch^
C:\ProgramData\Baidu Security =>Adware.BDSearch^
C:\ProgramData\IePluginServices =>Trojan.SProtector^
C:\Users\Marcello Simões\AppData\Roaming\Baidu Security =>Adware.BDSearch^
C:\ProgramData\IePluginServices\PluginService.exe =>Trojan.SProtector^
[HKCU\Software\Baidu Security] =>Adware.BDSearch^
[HKLM\Software\Baidu Security] =>Adware.BDSearch^
[HKLM\Software\Wow6432Node\Baidu Security] =>Adware.BDSearch^
[HKLM\Software\Wow6432Node\Baidu_Drp_pos] =>Adware.BDSearch^
[HKLM\Software\Wow6432Node\SupDp] =>PUP.SupTab^
[HKLM\Software\Wow6432Node\Wpm] =>PUP.WpManager^
C:\Windows\Installer\953c0e.msi =>PUP.SupraSavings^
C:\Users\Marcello Simões\Downloads\SaveAs.exe =>PUP.Offerware
~ Additionnel Scan: 267133 Items scanned in 00mn 28s



---\\ Sumário das deteções encontradas na sua estação
[Você precisa estar registrado e conectado para ver este link.] =>Trojan.SProtector
[Você precisa estar registrado e conectado para ver este link.] =>Trojan.Staser
[Você precisa estar registrado e conectado para ver este link.] =>PUP.LinkiDoo
[Você precisa estar registrado e conectado para ver este link.] =>Adware.BDSearch
[Você precisa estar registrado e conectado para ver este link.] =>PUP.SupTab
[Você precisa estar registrado e conectado para ver este link.] =>PUP.WpManager
[Você precisa estar registrado e conectado para ver este link.] =>PUP.SupraSavings
[Você precisa estar registrado e conectado para ver este link.] =>PUP.WebGet
[Você precisa estar registrado e conectado para ver este link.] =>PUP.V9Software
[Você precisa estar registrado e conectado para ver este link.] =>PUP.Offerware
~ MSI: 10 link(s) detected in 00mn 00s



~ 1264 Legitimates filtered by white list
End of the scan (513 lines in 01mn 21s)(0)
avatar
Muratori
Iniciante
Iniciante

Mensagens : 46
Reputação : 0
Data de inscrição : 17/05/2014

Voltar ao Topo Ir em baixo

Re: Remoção de Supra Savings

Mensagem por Power Max em Sab 17 Maio 2014, 23:35

 Acesse o site [Você precisa estar registrado e conectado para ver este link.] e envie este arquivo destacado em azul abaixo para ser analisado:
C:\Users\Marcello Simões\Desktop\Marcello\'-'\pxgclient.exe

Assim que a análise dele for concluída, copie o link que aparecerá na barra de endereços de seu navegador e poste este link em sua próxima resposta juntamente com o relatório do ZHPFix pedido também nesta postagem.

Maiores informações de como analisar arquivos no site Virus Total você encontra neste tutorial:

Analise arquivos e links suspeitos de forma online e totalmente gratuita
_________________________________________________________________________________________________________

 Selecione e copie todo o texto destacado em vermelho que te passei.
_____________________________________________________________________________________________________________

 Vá no menu: Iniciar > Todos os programas > ZHP > Clique com o botão direito do mouse sobre o Zhpfix e escolha a opção de Executar como administrador > Clique em Importação > Clique no botão GO > Clique em Oui > Caso queira que os arquivos da lixeira sejam excluídos clique em Oui novamente > Um relatório aparecerá no bloco de notas.

Copie este relatório e poste em sua próxima resposta juntamente com o link da análise do arquivo no site Virus Total.


Última edição por Power Max em Dom 18 Maio 2014, 00:24, editado 1 vez(es)

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

Fórum PC Brasil = O melhor da internet você encontra aqui.

Super Links = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: Remoção de Supra Savings

Mensagem por Muratori em Sab 17 Maio 2014, 23:44

Rapport de ZHPFix 2014.4.13.3 par Nicolas Coolman, Update du 13/04/2014
Fichier d'export Registre :
Run by Marcello Simões at 17/05/2014 23:42:41
High Elevated Privileges : OK
Windows 8 Home Premium Edition, 64-bit Service Pack 1 (9600)

Reciclagem vazia (00mn 02s)
Reparação de atalhos do navegador

========== Processo memória ==========
ELIMINÉ: Memory Process: C:\Users\Marcello Simões\Downloads\SaveAs.exe

========== Chaves do Registo ==========
ELIMINÉ: Service: IePluginServices
ELIMINÉ Driver Key: Bfilter
ELIMINÉ Driver Key: Bfmon
ELIMINÉ Driver Key: Bnbase
ELIMINÉ Driver Key: Bndef
ELIMINÉ Driver Key: Bprotect
ELIMINÉ Driver Key: iSafeKrnlKit
ELIMINÉ Driver Key: {9edd0ea8-2819-47c2-8320-b007d5996f8a}Gw64
ELIMINÉ: HKCU\Software\Baidu Security
ELIMINÉ:* HKLM\Software\Baidu Security
ELIMINÉ:³ HKLM\Software\Wow6432Node\Baidu Security
ELIMINÉ: HKLM\Software\Wow6432Node\Baidu_Drp_pos
ELIMINÉ: HKLM\Software\Wow6432Node\SupDp
ELIMINÉ: HKLM\Software\Wow6432Node\Wpm
ELIMINÉ CLSID MPSK: {111ca81d-7e6e-11e3-8250-93b708a5d983}
ELIMINÉ CLSID MPSK: {39ea5d5b-bd94-11e3-bee2-94dbc9b62ad8}
ELIMINÉ CLSID MPSK: {d08f5ae1-a570-11e3-bed9-94dbc9b62ad8}
ELIMINÉ: [HKLM\Software\Classes\Installer\Products\\BD04C21DD7DC68D42958E5F22E63394E]
ELIMINÉ: [HKLM\Software\Classes\Installer\Features\BD04C21DD7DC68D42958E5F22E63394E]
ELIMINÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\updatewebget_RASAPI32
ELIMINÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\updatewebget_RASMANCS
ELIMINÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\utilwebget_RASAPI32
ELIMINÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\utilwebget_RASMANCS
ELIMINÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\webget_RASAPI32
ELIMINÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\webget_RASMANCS
ELIMINÉ:* HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}

========== Valores do Registo ==========
ProxyFix : Configuração proxy removida com sucesso
ELIMINÉ ProxyServer Value
ELIMINÉ ProxyEnable Value
ELIMINÉ EnableHttp1_1 Value
ELIMINÉ ProxyHttp1.1 Value
ELIMINÉ ProxyOverride Value

========== Pastas ==========
Nenhuma pasta CLSID local utilizador vazia

========== Ficheiros ==========
ELIMINÉ: c:\users\public\desktop\yac.lnk
ELIMINA REINICIAR: c:\programdata\iepluginservices\pluginservice.exe
ELIMINA REINICIAR: c:\windows\system32\drivers\{9edd0ea8-2819-47c2-8320-b007d5996f8a}gw64.sys
ELIMINA REINICIAR: e:\autorun.exe
ELIMINÉ: C:\Windows\Installer\953c0e.msi
ELIMINÉ Temporários windows (0) (0 octets)
ELIMINÉ Flash Cookies (0) (0 octets)

========== Tarefa planificada ==========
ELIMINÉ: {9BD1DA6A-D411-4308-A3EE-F00D8347A202}

========== Restauração Sistema ==========
Ponto de restauro do sistema criado com sucesso

========== Outros ==========
NÃO-TRATADO __________


========== Recapitulativo ==========
1 : Processo memória
26 : Chaves do Registo
6 : Valores do Registo
1 : Pastas
7 : Ficheiros
1 : Tarefa planificada
1 : Restauração Sistema
1 : Outros


End of clean in 00mn 08s

========== Caminho do ficheiro do relatório ==========
C:\Users\Marcello Simões\AppData\Roaming\ZHP\ZHPFix[R1].txt - 17/05/2014 23:42:44 [3146]
[Você precisa estar registrado e conectado para ver este link.] << link da anasile do site
avatar
Muratori
Iniciante
Iniciante

Mensagens : 46
Reputação : 0
Data de inscrição : 17/05/2014

Voltar ao Topo Ir em baixo

Re: Remoção de Supra Savings

Mensagem por Power Max em Sab 17 Maio 2014, 23:55

Você conhece este arquivo abaixo? Sabe do que se trata?
C:\Users\Marcello Simões\Desktop\Marcello\'-'\pxgclient.exe
_______________________________________________________

Abra novamente o ( ZHPDiag )

[Você precisa estar registrado e conectado para ver esta imagem.]

|- Clique "SEARCH" ou "PESQUISAR" e aguarde a conclusão.

[Você precisa estar registrado e conectado para ver esta imagem.]

|- Clique OK e, ao concluir, poste o relatório ZHPDiag.txt

[Você precisa estar registrado e conectado para ver esta imagem.]

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

Fórum PC Brasil = O melhor da internet você encontra aqui.

Super Links = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: Remoção de Supra Savings

Mensagem por Muratori em Dom 18 Maio 2014, 00:06

É um jogo que eu jogava , mais já saiu uma versão mais nova desse mesmo jogo e eu esqueci de deletar a antiga .
~ Relatório do ZHPDiag v2014.5.17.66 - Nicolas Coolman (17/05/2014)
~ Iniciado por Marcello Simões (18/05/2014 00:02:53)
~ Endereço do Website : [Você precisa estar registrado e conectado para ver este link.]
~ Blog de análise de software : [Você precisa estar registrado e conectado para ver este link.]
~ Fóruns de suporte gratuito para desinfecção : [Você precisa estar registrado e conectado para ver este link.]
~ Tradução pelo utilizador
~ Estatuto da versão :
~ Lista Branca : Ativado pelo programa
~ Elevação dos Privilégios : OK
~ Controle de Conta de Utilizador : Activate by user


---\\ Navegadores Internet
MSIE: Internet Explorer v11.0.9600.17107
GCIE: Google Chrome v34.0.1847.137 (Defaut)

---\\ Informações sobre os produtos Windows
~ Langage: Portugais
Windows 8.1 Single Language, 64-bit (Build 9600)
Windows Server License Manager Script : OK

---\\ Softwares de proteçao do sistema
Windows Defender W8

---\\ Softwares d'optimização do sistema
CCleaner v4.07

---\\ Softwares de partilha do PeerToPeer (P2P)

---\\ Monitoramento dos softwares
Adobe Reader X MUI

---\\ Informações sobre o sistema
~ Processor: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 8077 MB (77% free)
System Restore: Activé (Enable)
System drive C: has 239 GB (64%) free of 373 GB

---\\ Modo de conexão ao sistema
~ Computer Name: MARCELLO
~ User Name: Marcello Simões
~ All Users Names: Marcello Simões, HomeGroupUser$, Convidado, Administrador,
~ Unselected Option: 045,061,O62,065,066,080,O82,089
Logged in as Administrator

---\\ As variáveis de ambiente
~ System Unit : C:\
~ %AppZHP% : C:\Users\Marcello Simões\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\Marcello Simões\AppData\Roaming\
~ %Desktop% : C:\Users\Marcello Simões\Desktop\
~ %Favorites% : C:\Users\Marcello Simões\Favorites\
~ %LocalAppData% : C:\Users\Marcello Simões\AppData\Local\
~ %StartMenu% : C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumeração das unidades dos discos
C: Hard drive, Flash drive, Thumb drive (Free 239 Go of 373 Go)
D: Hard drive, Flash drive, Thumb drive (Free 500 Go of 517 Go)
E: CD-ROM drive (Free 0 Go of 0 Go)
F: Floppy drive, Flash card reader, USB Key (Not Inserted)
G: CD-ROM drive (Not Inserted)



---\\ Estado do Centro de Segurança do Windows
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
~ Security Center: 49 Legitimates Filtered in 00mn 00s



---\\ Pesquisa particular de ficheiros genéricos
[MD5.81394C91B7B5A7C799E249AE82491F13] - (.Microsoft Corporation - Windows Explorer.) (.04/03/2014 - 09:25:49.) -- C:\Windows\Explorer.exe [2373784]
[MD5.48CFA7BE561A7BE144C29BB912055016] - (.Microsoft Corporation - Aplicativo de Inicialização do Windows.) (.22/08/2013 - 06:58:29.) -- C:\Windows\System32\Wininit.exe [144384]
[MD5.65C36A29A131A3A5D64B29FAC4EF6DD6] - (.Microsoft Corporation - Internet Extensions para Win32.) (.22/02/2014 - 06:11:56.) -- C:\Windows\System32\wininet.dll [2262016]
[MD5.306EB21E5B480AE9065EA55AC8C35936] - (.Microsoft Corporation - Aplicativo de Logon do Windows.) (.22/02/2014 - 06:45:48.) -- C:\Windows\System32\Winlogon.exe [562176]
[MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - (.Microsoft Corporation - Biblioteca de Licenciamento de Software.) (.21/12/2013 - 05:54:07.) -- C:\Windows\System32\sppcomapi.dll [447488]
[MD5.239268BAB58EAE9A3FF4E08334C00451] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.22/08/2013 - 10:25:35.) -- C:\Windows\system32\Drivers\AFD.sys [567296]
[MD5.74B14192CF79A72F7536B27CB8814FBD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.22/08/2013 - 09:43:41.) -- C:\Windows\system32\Drivers\atapi.sys [26464]
[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - (.Microsoft Corporation - CD-ROM File System Driver.) (.22/08/2013 - 08:40:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [88576]
[MD5.C6796EA22B513E3457514D92DCDB1A3D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.22/08/2013 - 05:46:35.) -- C:\Windows\system32\Drivers\Cdrom.sys [164352]
[MD5.A03F362C5557E238CBFA914689C77248] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.06/03/2014 - 06:22:50.) -- C:\Windows\system32\Drivers\DfsC.sys [134144]
[MD5.03909BDBFF0DCACCABF2B2D4ADEE44DC] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.22/08/2013 - 08:38:38.) -- C:\Windows\system32\Drivers\HDAudBus.sys [78336]
[MD5.84CFC5EFA97D0C965EDE1D56F116A541] - (.Microsoft Corporation - Driver de porta i8042.) (.22/08/2013 - 08:39:15.) -- C:\Windows\system32\Drivers\i8042prt.sys [107520]
[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - (.Microsoft Corporation - IP Network Address Translator.) (.27/11/2013 - 09:02:29.) -- C:\Windows\system32\Drivers\IpNat.sys [142848]
[MD5.C997E6A37BA8915224B3FB5024A34F69] - (.Microsoft Corporation - Minirdr SMB do Windows NT.) (.06/03/2014 - 06:20:23.) -- C:\Windows\system32\Drivers\MRxSmb.sys [402944]
[MD5.0217532E19A748F0E5D569307363D5FD] - (.Microsoft Corporation - MBT Transport driver.) (.22/08/2013 - 08:37:02.) -- C:\Windows\system32\Drivers\netBT.sys [282624]
[MD5.1C80517BE6836A812F6A9B99B8321351] - (.Microsoft Corporation - Driver do Sistema de Arquivos NT.) (.20/03/2014 - 00:41:24.) -- C:\Windows\system32\Drivers\ntfs.sys [2013016]
[MD5.764B1121867B2D9B31C491668AC72B2B] - (.Microsoft Corporation - Driver de porta paralela.) (.22/08/2013 - 08:40:02.) -- C:\Windows\system32\Drivers\Parport.sys [94208]
[MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.22/08/2013 - 08:35:51.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [120832]
[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - (.Microsoft Corporation - Redirecionador do Dispositivo RDP da Microsoft.) (.14/11/2013 - 04:15:38.) -- C:\Windows\system32\Drivers\rdpdr.sys [195584]
[MD5.FFF28F9F6823EB1756C60F1649560BBF] - (.Microsoft Corporation - TDI Translation Driver.) (.22/08/2013 - 10:25:35.) -- C:\Windows\system32\Drivers\tdx.sys [107520]
[MD5.3595FBDF25F8BA6256072D103937D7D6] - (.Microsoft Corporation - Driver de cópia de sombra de volume.) (.22/02/2014 - 12:44:13.) -- C:\Windows\system32\Drivers\volsnap.sys [311640]
~ Generic Processes: Scanned in 00mn 00s



---\\ Estatuto dos ficheiros ocultos (Oculto/Total)
~ Mes images (My Pictures) : 1/28
~ Mes musiques (My Musics) : 1/2
~ Mes Favoris (My Favorites) : 1/7
~ Mes Documents (My Documents) : 1/23
~ Mon Bureau (My Desktop) : 2/658
~ Menu demarrer (Programs) : 1/44
~ Hidden Files: Scanned in 00mn 06s



---\\ Processos lançados
[MD5.7C58A2513C3DA421A461D75C66C56D21] - (.ASUSTek Computer Inc. - ASUS USB Charger Plus.) -- C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [1123536] [PID.3568]
[MD5.79174FD5F4DE078642BE1CACB124BFCA] - (.ASUS - ASUS InstantOn.) -- C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnCfg.exe [1126784] [PID.3588]
[MD5.349AB4F70E2AC44970894E7F03E1576E] - (.Huawei Technologies Co., Ltd. - DataCardMonitor MFC Application.) -- C:\ProgramData\DatacardService\DCSHelper.exe [236384] [PID.3732]
[MD5.05C5CBE5C0C26EFF48AF60639F30F4F5] - (.NVIDIA Corporation - NVIDIA GeForce Experience Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712] [PID.3780]
[MD5.99BDEA9E7B9658B69619BB8AD060D017] - (...) -- C:\Program Files (x86)\VIVO INTERNET\VIVO INTERNET.exe [536576] [PID.4020]
[MD5.A2791CF11D1ED52DBCD75D2FFD4D50E7] - (.ASUSTek Computer Inc. - ATK Media.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [178848] [PID.3108]
[MD5.2D32F0EF950AED6AD007D042676FD39E] - (.ASUSTek Computer Inc. - ATKOSD2.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [328064] [PID.3120]
[MD5.DB0C938BC311B31CF90C13821AE682B3] - (.ASUSTeK Computer Inc. - ASUS Live Update.) -- C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [1559936] [PID.4708]
[MD5.8DF7F2A9B72B7CA4294BB9E59FEAEFCD] - (.Microsoft Corporation - Host WWA Microsoft.) -- C:\WINDOWS\syswow64\wwahost.exe [514560] [PID.2016]
[MD5.9D4A0ECBF734E2EECDD5B473A2D705FE] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [20922016] [PID.2440]
[MD5.29769215DEB6E8418EF3656B0423776E] - (.ASUSTeK Computer Inc. - ASUS Quick Gesture Exe.) -- C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe [20352] [PID.2196]
[MD5.345B1798395CEA9C178AFF1784FA2A37] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [841032] [PID.4744]
[MD5.1F0D27B7142CDEA3FBEC7A7DE56D3D1B] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [7877120] [PID.5996]
~ Processes Running: Scanned in 00mn 00s



---\\ Google Chrome, Arranque,Pesquisa,Extensões (G0,G1,G2)
C:\Users\Marcello Simões\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] [Você precisa estar registrado e conectado para ver este link.]
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Loja v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [neajdppkdcdipfabeoofebfddakdcjhd] Google Network Speech v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [nkeimhogjdpnpccoofpliimaahmaaome] Hangout Services v.1.0 (Activé)

---\\ Pasta de extensão do Google Chrome
~ Google Lines Browser: 16 Legitimates Filtered in 00mn 01s



---\\ Mozilla Firefox, Plugins,Arranque,Pesquisa,Extensões (P2,M0,M1,M2,M3)
P2 - FPN: [HKCU] [@unity3d.com/UnityPlayer,version=1.0] - (...) -- C:\Users\Marcello Simões\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (.not file.)
~ Firefox Browser: 3 Legitimates Filtered in 00mn 00s



---\\ Internet Explorer, Gestão do Proxy (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Análise das linhas F0, F1, F2, F3 - Ficheiros ini, Carregamento Automático de programas
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Redireção do ficheiro Hosts (01)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 19



---\\ Aplicações iniciadas por registo & pastas (04)
O4 - HKCU\..\Run: [HW_OPENEYE_OUC_] . (.Huawei Technologies Co., Ltd. - Online Update Clinet.) -- C:\Program Files (x86)\VIVO INTERNET\UpdateDog\ouc.exe
O4 - HKCU\..\Run: [EADM] . (.Electronic Arts - Origin.) -- C:\Program Files (x86)\Origin\Origin.exe
O4 - HKCU\..\Run: [Facebook Update] . (.Facebook Inc. - Facebook Installer.) -- C:\Users\Marcello Simões\AppData\Local\Facebook\Update\FacebookUpdate.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKLM\..\Wow6432Node\Run: [ASUS InstantKey] . (.ASUS - Ikey_start.) -- C:\Program Files (x86)\ASUS\ASUS Instant Key\Ikey_start.exe
O4 - HKLM\..\Wow6432Node\Run: [LogMeIn Hamachi Ui] . (.LogMeIn Inc. - Hamachi Client Application.) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
O4 - HKUS\S-1-5-21-2690360052-3579935041-4268471611-1002\..\Run: [HW_OPENEYE_OUC_] . (.Huawei Technologies Co., Ltd. - Online Update Clinet.) -- C:\Program Files (x86)\VIVO INTERNET\UpdateDog\ouc.exe
O4 - HKUS\S-1-5-21-2690360052-3579935041-4268471611-1002\..\Run: [EADM] . (.Electronic Arts - Origin.) -- C:\Program Files (x86)\Origin\Origin.exe
O4 - HKUS\S-1-5-21-2690360052-3579935041-4268471611-1002\..\Run: [Facebook Update] . (.Facebook Inc. - Facebook Installer.) -- C:\Users\Marcello Simões\AppData\Local\Facebook\Update\FacebookUpdate.exe
O4 - HKUS\S-1-5-21-2690360052-3579935041-4268471611-1002\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
~ Application: Scanned in 00mn 00s



---\\ Boutões da barra de ferramentas principal do Internet Explorer (09)
O9 - Extra button: Send by Bluetooth to [64Bits] - {7815BE26-237D-41A8-A98F-F7BD75F71086} -- Chave orfã
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Site na zona confiavél do Internet Explorer (05)
O15 - Trusted Zone: [HKCU\...\EscDomains] http.connectify.me
O15 - Trusted Zone: [HKCU\...\EscDomains] http.fastspring.com
O15 - Trusted Zone: [HKLM\...\EscDomains] http.connectify.me
O15 - Trusted Zone: [HKLM\...\EscDomains] http.fastspring.com
~ IE Zone Confiance: Scanned in 00mn 00s



---\\ Alteração Dominio/Clientes DNS (017)
O17 - HKLM\System\CCS\Services\Tcpip\..\{A83CC804-C9AF-4830-BACF-B8D1CAD70F7A}: NameServer = 200.204.135.253 187.100.246.252
O17 - HKLM\System\CCS\Services\Tcpip\..\{81BEADEA-FC81-49F5-8EE0-258840DFDBDC}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{A83CC804-C9AF-4830-BACF-B8D1CAD70F7A}: NameServer = 200.204.135.253 187.100.246.252
O17 - HKLM\System\CS1\Services\Tcpip\..\{81BEADEA-FC81-49F5-8EE0-258840DFDBDC}: DhcpNameServer = 192.168.0.1
~ Domain: Scanned in 00mn 00s



---\\ Protocolo adicional (018)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visualizador de HTML da Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valor do Registo AppInit_DLLs e sub-chaves Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s



---\\ Lista dos serviços NT não Microsoft e não desativados (023)
O23 - Service: HWDeviceService64.exe (HWDeviceService64.exe) . (.No owner - DCSHOST.) - C:\ProgramData\DatacardService\HWDeviceService64.exe
~ Services: 21 Legitimates Filtered in 00mn 03s



---\\ Tarefas planificadas automaticamente (039)
[MD5.6EE33998658AC2EDCF867E00F20543A4] [APT] [{46FFC6FC-7F9C-47FA-9913-BFC70F5A8D63}] (...) -- C:\Users\Marcello Simões\Desktop\Marcello\'-'\pxgclient.exe [2203136]
[MD5.00000000000000000000000000000000] [APT] [{BE9C5DB8-9AA6-4A38-ACA2-D3E7EDA2310C}] (...) -- C:\Users\Marcello Simões\Desktop\Marcello\Dead Space\Support\Dead Space_code.exe (.not file.) [0]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2690360052-3579935041-4268471611-1002Core [964]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2690360052-3579935041-4268471611-1002UA [986]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1100]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1104]
O39 - APT: - (..) -- C:\Windows\Tasks\Uninstaller_SkipUac_Administrator.job [316]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\Uninstaller_SkipUac_Administrator [316]
~ Scheduled Task: 22 Legitimates Filtered in 00mn 08s



---\\ Software instalados (042)
O42 - Logiciel: March of War - (.ISOTX.) [HKLM][64Bits] -- Steam App 234310
O42 - Logiciel: Vivo - Guia Vivo Internet versão 1.0 - (.Vivo.) [HKLM][64Bits] -- {C2E8B9C9-677A-46E6-AEC7-9435B5BCA765}_is1
~ Logic: 10 Legitimates Filtered in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKLM\Software\Wow6432Node\Asprate]
[HKLM\Software\Wow6432Node\Baidu Security] =>Adware.BDSearch
~ Key Software: 235 Legitimates Filtered in 00mn 00s



---\\ Conteúdo das pastas Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 31/03/2014 - 18:27:29 - [] ----D C:\Program Files (x86)\Asprate
O43 - CFD: 10/08/2013 - 15:45:38 - [] ----D C:\Program Files (x86)\Vivo
O43 - CFD: 06/11/2013 - 21:19:57 - [] ----D C:\Program Files (x86)\VIVO INTERNET
O43 - CFD: 16/05/2014 - 17:05:59 - [] ----D C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
O43 - CFD: 16/05/2014 - 17:05:58 - [] ----D C:\ProgramData\{E1ED556E-3EA0-4F44-8BE7-CC5FB0F4B424}
O43 - CFD: 16/05/2014 - 17:07:55 - [] ----D C:\Users\Marcello Simões\AppData\Roaming\ProductData
O43 - CFD: 18/12/2013 - 15:46:32 - [] ----D C:\Users\Marcello Simões\AppData\Roaming\pxgclient
O43 - CFD: 25/08/2013 - 23:28:18 - [] ----D C:\Users\Marcello Simões\AppData\Roaming\VIVO INTERNET
O43 - CFD: 06/12/2013 - 18:24:27 - [] ----D C:\Users\Marcello Simões\AppData\Local\DeathZ Entertainment
~ Program Folder: 171 Legitimates Filtered in 00mn 00s



---\\ Últimos ficheiros alterados ou criados no Windows e Sistema32 (044)
O44 - LFC:[MD5.9CACD67D22F5B8CA642D822C2A97F030] - 12/05/2014 - 16:40:58 ---A- . (.StdLib - StdLib.) -- C:\Windows\System32\Drivers\{9edd0ea8-2819-47c2-8320-b007d5996f8a}Gw64.sys [61112] =>PUP.LinkiDoo
O44 - LFC:[MD5.3FA124F9ADEA8CDA2F33B7EDC688F305] - 15/05/2014 - 23:27:06 ---A- . (...) -- C:\Windows\win.ini [226]
O44 - LFC:[MD5.D53A0800A3E7E720F12C1FD2854CC97B] - 16/05/2014 - 17:30:09 ---A- . (...) -- C:\Windows\System32\Drivers\RTAIODAT.DAT [757301]
O44 - LFC:[MD5.7F32E0B2D1BC0E97FEF28111E8E004DB] - 16/05/2014 - 17:32:31 ---A- . (...) -- C:\Windows\System32\Drivers\RTWAVES30.dat [109544]
O44 - LFC:[MD5.A3F58AF389FA3B2A6FB18D7BFDBE67EE] - 16/05/2014 - 17:32:40 ---A- . (...) -- C:\log.txt [7090]
O44 - LFC:[MD5.12B0701B1CEC1A7BB0E4C71D97661E23] - 16/05/2014 - 18:34:54 ---A- . (...) -- C:\Windows\System32\ApnDatabase.xml [387210]
O44 - LFC:[MD5.385AF1C48CE3E86B37B9E66749FFEC1B] - 16/05/2014 - 20:20:43 ---A- . (...) -- C:\Windows\System32\srms.dat [50053]
O44 - LFC:[MD5.E7B53AF004BEE5112F787A6E5B04D737] - 16/05/2014 - 20:20:46 ---A- . (...) -- C:\Windows\System32\connectedsearch-results.searchconnector-ms [11109]
O44 - LFC:[MD5.F1DB86EA935C13CDFF27AB957297136A] - 16/05/2014 - 20:20:55 ---A- . (...) -- C:\Windows\System32\connectedsearch-suggestions.searchconnector-ms [7762]
O44 - LFC:[MD5.1FDF29F970E2E843B4DC5D0626D0EDD5] - 16/05/2014 - 20:20:55 ---A- . (...) -- C:\Windows\System32\connectedsearch-zeroinput.searchconnector-ms [7130]
O44 - LFC:[MD5.DE461B86C05946D10E519F512D09E389] - 16/05/2014 - 20:20:56 ---A- . (...) -- C:\Windows\System32\RacRules.xml [100197]
O44 - LFC:[MD5.119E0F7A71775A5CFB208B036ECE35E1] - 16/05/2014 - 20:21:35 ---A- . (...) -- C:\Windows\System32\WimBootCompress.ini [2255]
O44 - LFC:[MD5.DCF2510E0745720E543E84F5E921FCC0] - 16/05/2014 - 20:23:12 ---A- . (...) -- C:\Windows\System32\dfpinc.dat [262335]
O44 - LFC:[MD5.FFFCC3C3ED6886A95D3C0E1B49C652BA] - 16/05/2014 - 20:24:43 ---A- . (...) -- C:\Windows\System32\systemsf.ebd [139600]
O44 - LFC:[MD5.08750A50CF027F93070C8BB78E27C3B7] - 16/05/2014 - 20:45:51 -SH-- . (...) -- C:\Windows\System32\desktop.ini [75]
O44 - LFC:[MD5.635DA49E3C3C17FD6C1FFCFBBDCAA61B] - 17/05/2014 - 12:48:05 ---A- . (...) -- C:\MyXML.xml [165659]
O44 - LFC:[MD5.77DBE0A0FE2A6D9C545CCE4B7BE5E287] - 17/05/2014 - 12:48:13 ---A- . (...) -- C:\Windows\System32\prfc0416.dat [158494]
O44 - LFC:[MD5.C67DABADA4A743C52CF49E8335F63707] - 17/05/2014 - 12:48:13 ---A- . (...) -- C:\Windows\System32\prfh0416.dat [774900]
O44 - LFC:[MD5.A9B2979ED2801F65E73F2B29B3E63334] - 17/05/2014 - 12:55:40 ---A- . (...) -- C:\ASCInit.log [6071]
O44 - LFC:[MD5.B245AC8448053F9AB24AA823B0970E7A] - 17/05/2014 - 16:12:53 ---A- . (.Elex do Brasil Participações Ltda - iSafe Kernel Boot Driver.) -- C:\Windows\System32\Drivers\iSafeKrnlBoot.sys [34304] =>Trojan.Staser
O44 - LFC:[MD5.CC7AA7B42CF418FC3D926913490048F8] - 17/05/2014 - 21:57:00 ---A- . (...) -- C:\Windows\zoek-delete.exe [24064]
O44 - LFC:[MD5.87568B14E9447C307CF49230982EACDD] - 17/05/2014 - 22:06:29 ---A- . (...) -- C:\zoek-results.log [16159]
~ Files: 618 Legitimates Filtered in 00mn 27s



---\\ Enumeração das chaves do registo PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "DisableCAD"=1
~ MWPS: 22 Legitimates Filtered in 00mn 00s



---\\ Enumeração das chaves do registo PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoLowDiskSpaceChecks"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
~ MWPE Keys: 8 Legitimates Filtered in 00mn 00s



---\\ Lista dos drivers do sistema (SDL) (O58)
O58 - SDL:12/08/2013 - 20:25:46 ---A- . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\Drivers\bcmfn2.sys [17624]
O58 - SDL:23/12/2013 - 21:36:39 ---A- . (.Connectify - NDIS filter driver.) -- C:\Windows\System32\Drivers\cnnctfy2.sys [31344]
O58 - SDL:23/12/2013 - 21:02:13 ---A- . (.Connectify - NDISRD helper driver.) -- C:\Windows\System32\Drivers\cnnctfy3.sys [35352]
O58 - SDL:08/10/2010 - 15:59:40 ---A- . (.Huawei Tech. Co., Ltd. - HUAWEI USB Smart Card Driver.) -- C:\Windows\System32\Drivers\ewdcsc.sys [32768]
O58 - SDL:11/04/2014 - 03:12:08 ---A- . (.Elex do Brasil Participações Ltda - iSafe Kernel Boot Driver.) -- C:\Windows\System32\Drivers\iSafeKrnlBoot.sys [34304] =>Trojan.Staser
O58 - SDL:02/08/2012 - 00:22:48 ---A- . (.No owner - Keyboard Filter Driver.) -- C:\Windows\System32\Drivers\kbfiltr.sys [14992]
O58 - SDL:06/08/2010 - 06:43:20 ---A- . (.DiBcom SA - DiBcom AVSTREAM BDA driver.) -- C:\Windows\System32\Drivers\mod7700.sys [1001472]
O58 - SDL:28/10/2013 - 00:12:10 ---A- . (.DEVGURU Co., LTD.([Você precisa estar registrado e conectado para ver este link.] - SAMSUNG USB Composite Device Driver (MSS Ver.3).) -- C:\Windows\System32\Drivers\ssudbus.sys [107288]
O58 - SDL:22/01/2014 - 08:52:10 ---A- . (.DEVGURU Co., LTD.([Você precisa estar registrado e conectado para ver este link.] - SAMSUNG Android Modem Device Driver (MSS Ver.3).) -- C:\Windows\System32\Drivers\ssudmdm.sys [206080]
O58 - SDL:22/08/2013 - 09:43:32 ---A- . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Windows x64.) -- C:\Windows\System32\Drivers\stexstor.sys [31072]
O58 - SDL:12/05/2014 - 16:40:58 ---A- . (.StdLib - StdLib.) -- C:\Windows\System32\Drivers\{9edd0ea8-2819-47c2-8320-b007d5996f8a}Gw64.sys [61112] =>PUP.LinkiDoo
~ Drivers: 78 Legitimates Filtered in 00mn 04s



---\\ Lista das ferramentas de remoção de vírus (LAT) (063)
O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s



---\\ Associações Shell Spawning (O67)
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Not Key.)
~ FASS Keys: 11 Legitimates Filtered in 00mn 00s



---\\ Menu de inicialização Internet (068)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- c:\program files (x86)\google\chrome\application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- c:\program files\internet explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s



---\\ Pesquisa de infeção nos navegadores da Internet (SBI) (069)
O69 - SBI: SearchScopes [HKCU] Web - (Web) - [Você precisa estar registrado e conectado para ver este link.]
O69 - SBI: SearchScopes [HKCU] {0191A6B0-1154-4C22-9182-23A95BBE92D9} [DefaultScope] - (Google) - [Você precisa estar registrado e conectado para ver este link.]
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - [Você precisa estar registrado e conectado para ver este link.]
~ Keys: Scanned in 00mn 00s



---\\ Pesquisa adicional à raiz do sistema (radicular) (SPRF) (O84)
[MD5.4A93070098539B54FDA391D4D551C880] [SPRF][22/07/2009] (...) -- C:\ProgramData\SetStretch.exe [24576]
[MD5.CDE8CF0241C98CA56327B47343E4E5D9] [SPRF][16/03/2014] (...) -- C:\Users\Marcello Simões\AppData\Roaming\sp_data.sys [408]
~ Files: 2 Legitimates Filtered in 00mn 00s



---\\ Estado general dos serviços não Microsoft (EGS) (SR=Executados, SS=Parados)
SS - | Demand 01/10/2013 279000 | (cphs) . (.Intel Corporation.) - C:\Windows\SysWow64\IntelCpHeciSvc.exe
SS - | Demand 10/08/2013 116648 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 10/08/2013 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 03/04/2005 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
SS - | Auto 08/04/2014 2152768 | (LiveUpdateSvc) . (.IObit.) - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
SS - | Demand 09/12/2013 96184 | (OverwolfUpdaterService) . (.Overwolf.) - C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
SS - | Auto 23/10/2013 172192 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SS - | Demand 23/04/2014 572096 | (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
SS - | Disabled 10/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
SR - | Auto 11/09/2012 106880 | (ASLDRService) . (.ASUSTek Computer Inc..) - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
SR - | Auto 13/04/2012 277120 | (ASUS InstantOn) . (.ASUS.) - C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
SR - | Auto 10/08/2012 211584 | (AtherosSvc) . (.Qualcomm Atheros Commnucations.) - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
SR - | Auto 21/11/2011 96896 | (ATKGFNEXSrv) . (.ASUS.) - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
SR - | Auto 15/04/2014 2227536 | (Hamachi2Svc) . (.LogMeIn Inc..) - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
SR - | Auto 14/03/2011 346976 | (HWDeviceService64.exe) . (...) - C:\ProgramData\DatacardService\HWDeviceService64.exe
SR - | Auto 13/07/2012 2451456 | (IconMan_R) . (.Realsil Microelectronics Inc..) - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
SR - | Auto 20/04/2012 635104 | (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
SR - | Auto 27/06/2012 129856 | (Intel(R) ME Service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
SR - | Auto 25/06/2012 166720 | (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
SR - | Auto 08/04/2014 377616 | (LMIGuardianSvc) . (.LogMeIn, Inc..) - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
SR - | Auto 17/07/2012 277824 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SR - | Auto 09/12/2013 1494304 | (NvNetworkService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
SR - | Auto 09/12/2013 15129376 | (NvStreamSvc) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
SR - | Auto 04/03/2014 922968 | (nvsvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvvsvc.exe
SR - | Auto 17/04/2009 247152 | (RichVideo) . (...) - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
SR - | Auto 04/03/2014 411936 | (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
SR - | Auto 17/07/2012 365376 | (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SR - | Demand 10/07/1658 0 | (WdNisSvc) . (...) - C:\Program Files (x86)\Windows Defender\NisSrv.exe
SR - | Demand 10/07/1658 0 | (WinDefend) . (...) - C:\Program Files (x86)\Windows Defender\MsMpEng.exe
SR - | Auto 22/08/2013 37768 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 10/08/2012 323584 | (ZAtheros Bt&Wlan Coex Agent) . (.Atheros.) - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
~ Services: Scanned in 00mn 06s



---\\ Scâner Aditional (088)
Database Version : 13045 - (17/05/2014)
Clés trouvées (Keys found) : 0
Valeurs trouvées (Values found) : 0
Dossiers trouvés (Folders found) : 0
Fichiers trouvés (Files found) : 1

[HKLM\Software\Wow6432Node\Baidu Security] =>Adware.BDSearch^
~ Additionnel Scan: 266356 Items scanned in 00mn 45s



---\\ Sumário das deteções encontradas na sua estação
[Você precisa estar registrado e conectado para ver este link.] =>Adware.BDSearch
[Você precisa estar registrado e conectado para ver este link.] =>PUP.LinkiDoo
[Você precisa estar registrado e conectado para ver este link.] =>Trojan.Staser
~ MSI: 3 link(s) detected in 00mn 00s



~ 1237 Legitimates filtered by white list
End of the scan (419 lines in 02mn 01s)(0)
avatar
Muratori
Iniciante
Iniciante

Mensagens : 46
Reputação : 0
Data de inscrição : 17/05/2014

Voltar ao Topo Ir em baixo

Re: Remoção de Supra Savings

Mensagem por Power Max em Dom 18 Maio 2014, 00:24

 Selecione e copie todo o texto destacado em vermelho que te passei.
_____________________________________________________________________________________________________________

 Vá no menu: Iniciar > Todos os programas > ZHP > Clique com o botão direito do mouse sobre o Zhpfix e escolha a opção de Executar como administrador > Clique em Importação > Clique no botão GO > Clique em Oui > Caso queira que os arquivos da lixeira sejam excluídos clique em Oui novamente > Um relatório aparecerá no bloco de notas.

Copie este relatório e poste em sua próxima resposta juntamente com o link da análise do arquivo no site Virus Total.


Última edição por Power Max em Dom 18 Maio 2014, 00:37, editado 1 vez(es)

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

Fórum PC Brasil = O melhor da internet você encontra aqui.

Super Links = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: Remoção de Supra Savings

Mensagem por Muratori em Dom 18 Maio 2014, 00:34

Rapport de ZHPFix 2014.4.13.3 par Nicolas Coolman, Update du 13/04/2014
Fichier d'export Registre :
Run by Marcello Simões at 18/05/2014 00:26:53
High Elevated Privileges : OK
Windows 8 Home Premium Edition, 64-bit Service Pack 1 (9600)

Reciclagem vazia (00mn 02s)

========== Chaves do Registo ==========
ELIMINÉ:³ HKLM\Software\Wow6432Node\Baidu Security

========== Pastas ==========
Nenhuma pasta CLSID local utilizador vazia

========== Ficheiros ==========
ELIMINA REINICIAR: c:\windows\system32\drivers\{9edd0ea8-2819-47c2-8320-b007d5996f8a}gw64.sys
ELIMINÉ Temporários windows (6) (2.486 octets)
ELIMINÉ Flash Cookies (0) (0 octets)

========== Tarefa planificada ==========
ELIMINÉ: {46FFC6FC-7F9C-47FA-9913-BFC70F5A8D63}
ELIMINÉ: {BE9C5DB8-9AA6-4A38-ACA2-D3E7EDA2310C}

========== Restauração Sistema ==========
Ponto de restauro do sistema criado com sucesso


========== Recapitulativo ==========
1 : Chaves do Registo
1 : Pastas
3 : Ficheiros
2 : Tarefa planificada
1 : Restauração Sistema


End of clean in 00mn 08s

========== Caminho do ficheiro do relatório ==========
C:\Users\Marcello Simões\AppData\Roaming\ZHP\ZHPFix[R1].txt - 17/05/2014 23:42:44 [3236]
C:\Users\Marcello Simões\AppData\Roaming\ZHP\ZHPFix[R2].txt - 18/05/2014 00:26:56 [1216]
avatar
Muratori
Iniciante
Iniciante

Mensagens : 46
Reputação : 0
Data de inscrição : 17/05/2014

Voltar ao Topo Ir em baixo

Re: Remoção de Supra Savings

Mensagem por Power Max em Dom 18 Maio 2014, 00:37

Como está o PC?

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

Fórum PC Brasil = O melhor da internet você encontra aqui.

Super Links = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: Remoção de Supra Savings

Mensagem por Muratori em Dom 18 Maio 2014, 00:41

Só está travando um pouco mais de resto os problemas do navegador e tal foram todos resolvidos
avatar
Muratori
Iniciante
Iniciante

Mensagens : 46
Reputação : 0
Data de inscrição : 17/05/2014

Voltar ao Topo Ir em baixo

Re: Remoção de Supra Savings

Mensagem por Power Max em Dom 18 Maio 2014, 00:43

Baixe o Farbar Recovery Scan Tool e salve-o no Desktop (Área de Trabalho)

Obs: Ao acessar o link acima, clique no botão Download Now 64-Bit Version

Execute o Farbar seguindo as dicas deste tutorial:

Analise importantes áreas do Windows com Farbar Recovery Scan Tool (versão 64 bits)

*Serão criados dois relatórios no Desktop: FRST.txt e Addition.txt

Poste estes dois relatórios em sua próxima resposta. (Obs: se não couber em uma só resposta, pode dividi-la em mais postagens).

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

Fórum PC Brasil = O melhor da internet você encontra aqui.

Super Links = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: Remoção de Supra Savings

Mensagem por Muratori em Dom 18 Maio 2014, 00:47

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 17-05-2014
Ran by Marcello Simões (administrator) on MARCELLO on 18-05-2014 00:44:20
Running from C:\Users\Marcello Simões\Downloads
Platform: Windows 8.1 Single Language (Update 1) (X64) OS Language: Portuguese Brazilian
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: [Você precisa estar registrado e conectado para ver este link.]
Download link for 64-Bit Version: [Você precisa estar registrado e conectado para ver este link.]
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: [Você precisa estar registrado e conectado para ver este link.]

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
() C:\ProgramData\DatacardService\HWDeviceService64.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnCfg.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Program Files (x86)\VIVO INTERNET\VIVO INTERNET.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
() C:\Users\Marcello Simões\AppData\Roaming\pxgclient\pxgclient\client\pxgclient.exe
(Microsoft Corporation) C:\Windows\System32\calc.exe


==================== Registry (Whitelisted) ==================

HKLM-x32\...\Run: [ASUS InstantKey] => C:\Program Files (x86)\ASUS\ASUS Instant Key\Ikey_start.exe [20456 2012-02-20] (ASUS)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3814736 2014-04-15] (LogMeIn Inc.)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-2690360052-3579935041-4268471611-1002\...\Run: [HW_OPENEYE_OUC_] => C:\Program Files (x86)\VIVO INTERNET\UpdateDog\ouc.exe [110592 2009-07-27] (Huawei Technologies Co., Ltd.)
HKU\S-1-5-21-2690360052-3579935041-4268471611-1002\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3588952 2014-03-08] (Electronic Arts)
HKU\S-1-5-21-2690360052-3579935041-4268471611-1002\...\Run: [Facebook Update] => C:\Users\Marcello Simões\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2014-03-22] (Facebook Inc.)
HKU\S-1-5-21-2690360052-3579935041-4268471611-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [20922016 2014-02-10] (Skype Technologies S.A.)
HKU\S-1-5-21-2690360052-3579935041-4268471611-1002\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages =
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM - DefaultScope {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = [Você precisa estar registrado e conectado para ver este link.]
SearchScopes: HKLM - {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = [Você precisa estar registrado e conectado para ver este link.]
SearchScopes: HKLM-x32 - DefaultScope {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = [Você precisa estar registrado e conectado para ver este link.]
SearchScopes: HKLM-x32 - {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = [Você precisa estar registrado e conectado para ver este link.]
SearchScopes: HKCU - DefaultScope {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = [Você precisa estar registrado e conectado para ver este link.]
SearchScopes: HKCU - Web URL = [Você precisa estar registrado e conectado para ver este link.]
SearchScopes: HKCU - {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = [Você precisa estar registrado e conectado para ver este link.]
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = [Você precisa estar registrado e conectado para ver este link.]
BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
BHO: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
BHO-x32: No Name - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - No File
BHO-x32: No Name - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\..\Interfaces\{A83CC804-C9AF-4830-BACF-B8D1CAD70F7A}: [NameServer]187.100.246.254 187.100.246.251

FireFox:
========
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll No File
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll No File
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll No File
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll No File
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Marcello Simões\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll No File
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Marcello Simões\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll No File

Chrome:
=======
CHR DefaultSearchKeyword: google
CHR DefaultSearchURL: [Você precisa estar registrado e conectado para ver este link.]
CHR DefaultNewTabURL:
CHR Extension: (Google Docs) - C:\Users\Marcello Simões\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-16]
CHR Extension: (Google Drive) - C:\Users\Marcello Simões\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-16]
CHR Extension: (YouTube) - C:\Users\Marcello Simões\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-04-10]
CHR Extension: (Pesquisa do Google) - C:\Users\Marcello Simões\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-16]
CHR Extension: (AdBlock) - C:\Users\Marcello Simões\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-05-17]
CHR Extension: (Google Wallet) - C:\Users\Marcello Simões\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-31]
CHR Extension: (Gmail) - C:\Users\Marcello Simões\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-16]

==================== Services (Whitelisted) =================

R2 ASUS InstantOn; C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe [277120 2012-04-13] (ASUS)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [211584 2012-08-10] (Qualcomm Atheros Commnucations)
R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [346976 2011-03-14] ()
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-06-27] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2152768 2014-04-08] (IObit)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-04-08] (LogMeIn, Inc.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-09] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-09] (NVIDIA Corporation)
S3 OverwolfUpdaterService; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [96184 2013-12-09] (Overwolf)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [247152 2009-04-17] ()
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-23] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-23] (Microsoft Corporation)
R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2012-08-10] (Atheros)

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [61824 2012-10-31] (ASUS Corporation)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-12] (Windows (R) Win 7 DDK provider)
R2 bdfsfltr; C:\WINDOWS\system32\Drivers\bdfsfltr.sys [431176 2011-03-24] (BitDefender)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [76952 2012-08-10] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [46136 2014-04-15] (LogMeIn Inc.)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-09] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2014-01-16] (Microsoft Corporation)
S3 iSafeKrnlBoot; C:\Windows\System32\DRIVERS\iSafeKrnlBoot.sys [34304 2014-04-11] (Elex do Brasil Participações Ltda)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [14992 2012-08-02] ( )
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [100312 2014-05-16] (Intel Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R1 nvkflt; C:\Windows\system32\DRIVERS\nvkflt.sys [300320 2014-03-04] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)
R2 plctrl; C:\Program Files\ASUS\P4G\plctrl.sys [13696 2012-09-17] (ASUSTek Computer Inc.)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924504 2014-02-22] (Microsoft Corporation)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2014-01-16] (Microsoft Corporation)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-14] (Microsoft Corporation)
S3 Trufos; C:\Windows\System32\DRIVERS\TRUFOS.sys [329800 2011-11-21] (BitDefender S.R.L.)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-23] (Microsoft Corporation)
R0 Wof; C:\Windows\System32\Drivers\Wof.sys [157016 2014-03-13] (Microsoft Corporation)
S3 BprotectEx; \??\C:\Windows\System32\drivers\BprotectEx.sys [X]
S3 PCFApiUtil; \??\C:\Program Files (x86)\Baidu Security\PC Faster\4.0.0.0\PCFApiUtil64.sys [X]
S2 SAWFP; \??\C:\WINDOWS\system32\Drivers\SAWFP64.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-05-18 00:44 - 2014-05-18 00:44 - 00015768 _____ () C:\Users\Marcello Simões\Downloads\FRST.txt
2014-05-18 00:44 - 2014-05-18 00:44 - 00000000 ____D () C:\FRST
2014-05-18 00:43 - 2014-05-18 00:44 - 02067456 _____ (Farbar) C:\Users\Marcello Simões\Downloads\FRST64.exe
2014-05-18 00:28 - 2014-05-18 00:28 - 00001304 _____ () C:\Users\Marcello Simões\Desktop\FIX.txt
2014-05-18 00:27 - 2014-05-18 00:26 - 00001306 _____ () C:\Users\Marcello Simões\Desktop\ZHPFixReport.txt
2014-05-18 00:04 - 2014-05-18 00:04 - 00029583 _____ () C:\Users\Marcello Simões\Desktop\ZHPDiag.txt
2014-05-17 22:37 - 2014-05-18 00:03 - 00000040 _____ () C:\Users\Marcello
2014-05-17 22:36 - 2014-05-18 00:26 - 00000000 ____D () C:\Users\Marcello Simões\AppData\Roaming\ZHP
2014-05-17 22:36 - 2014-05-18 00:26 - 00000000 ____D () C:\Program Files (x86)\ZHPDiag
2014-05-17 22:36 - 2014-05-17 22:36 - 00002009 _____ () C:\Users\Marcello Simões\Desktop\ZHPFix.lnk
2014-05-17 22:36 - 2014-05-17 22:36 - 00001878 _____ () C:\Users\Marcello Simões\Desktop\ZHPDiag.lnk
2014-05-17 22:36 - 2014-05-17 22:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
2014-05-17 22:35 - 2014-05-17 22:35 - 06779861 _____ (Nicolas Coolman ) C:\Users\Marcello Simões\Downloads\ZHPDiag2.exe
2014-05-17 22:21 - 2014-05-17 22:21 - 00000786 _____ () C:\Users\Marcello Simões\Desktop\JRT.txt
2014-05-17 22:18 - 2014-05-17 22:18 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-05-17 22:17 - 2014-05-17 22:17 - 01016261 _____ (Thisisu) C:\Users\Marcello Simões\Downloads\JRT.exe
2014-05-17 22:04 - 2014-05-17 22:04 - 00000000 ____D () C:\Users\Marcello Sim§es\AppData\Roaming\Macromedia
2014-05-17 22:04 - 2014-05-17 22:04 - 00000000 ____D () C:\Users\Marcello Sim§es
2014-05-17 22:04 - 2014-05-17 21:57 - 00024064 _____ () C:\WINDOWS\zoek-delete.exe
2014-05-17 22:02 - 2014-05-17 22:02 - 00005425 _____ () C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AdwCleaner.lnk
2014-05-17 22:01 - 2014-05-17 22:01 - 00000000 _____ () C:\Users\Marcello Simões\Desktop\Zoek Relatorio.txt
2014-05-17 21:57 - 2014-05-17 22:06 - 00016159 _____ () C:\zoek-results.log
2014-05-17 21:57 - 2014-05-17 22:03 - 00000000 ____D () C:\zoek_backup
2014-05-17 21:56 - 2014-05-17 21:56 - 01285120 _____ () C:\Users\Marcello Simões\Downloads\zoek.exe
2014-05-17 21:29 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\WINDOWS\SysWOW64\sqlite3.dll
2014-05-17 21:28 - 2014-05-17 21:30 - 00000000 ____D () C:\AdwCleaner
2014-05-17 21:27 - 2014-05-17 21:28 - 01325827 _____ () C:\Users\Marcello Simões\Downloads\AdwCleaner.exe
2014-05-17 21:00 - 2014-05-18 00:29 - 00003908 _____ () C:\WINDOWS\PFRO.log
2014-05-17 16:12 - 2014-05-17 16:12 - 00001804 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\YAC.lnk
2014-05-17 16:12 - 2014-05-17 16:12 - 00000000 ____D () C:\WINDOWS\system32\log
2014-05-17 16:12 - 2014-04-11 03:12 - 00034304 _____ (Elex do Brasil Participações Ltda) C:\WINDOWS\system32\Drivers\iSafeKrnlBoot.sys
2014-05-17 16:10 - 2014-05-17 16:12 - 13118120 _____ (Elex do Brasil Participações Ltda) C:\Users\Marcello Simões\Downloads\YAC_4.3.75.exe
2014-05-17 16:07 - 2014-05-18 00:33 - 00002205 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-05-17 15:59 - 2014-05-17 15:59 - 00000000 __SHD () C:\Users\Marcello Simões\AppData\Local\EmieUserList
2014-05-17 15:59 - 2014-05-17 15:59 - 00000000 __SHD () C:\Users\Marcello Simões\AppData\Local\EmieSiteList
2014-05-17 15:54 - 2014-05-17 15:54 - 00000000 ____D () C:\Users\Marcello Simões\Desktop\revouninstaller-portable
2014-05-17 15:51 - 2014-05-17 15:52 - 03007700 _____ () C:\Users\Marcello Simões\Downloads\revouninstaller.zip
2014-05-17 12:53 - 2014-05-17 21:29 - 00000316 _____ () C:\WINDOWS\Tasks\Uninstaller_SkipUac_Administrator.job
2014-05-17 12:53 - 2014-05-17 12:53 - 00002436 _____ () C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_Administrator
2014-05-17 12:53 - 2014-05-17 12:53 - 00001260 _____ () C:\Users\Public\Desktop\IObit Uninstaller.lnk
2014-05-17 12:53 - 2014-05-17 12:53 - 00000000 ____D () C:\WINDOWS\Tasks\ImCleanDisabled
2014-05-17 12:52 - 2014-05-17 12:55 - 00006071 _____ () C:\ASCInit.log
2014-05-17 12:47 - 2014-05-17 12:47 - 00000000 ____D () C:\Users\Usuário Padrão\AppData\Roaming\IObit
2014-05-17 12:47 - 2014-05-17 12:47 - 00000000 ____D () C:\Users\Default\AppData\Roaming\IObit
2014-05-17 12:47 - 2014-05-17 12:47 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\IObit
2014-05-16 22:35 - 2014-03-23 23:30 - 00257880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2014-05-16 22:35 - 2014-03-23 23:30 - 00123224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2014-05-16 22:35 - 2014-03-23 23:27 - 00035856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2014-05-16 22:35 - 2014-03-13 04:42 - 00308224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wusa.exe
2014-05-16 22:35 - 2014-03-13 03:51 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wusa.exe
2014-05-16 22:34 - 2014-05-06 01:40 - 23544320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-05-16 22:34 - 2014-05-06 00:25 - 17382912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-05-16 22:34 - 2014-05-06 00:00 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-05-16 22:34 - 2014-05-05 23:10 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-05-16 22:34 - 2014-04-11 07:03 - 00555736 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2014-05-16 22:34 - 2014-04-11 07:03 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2014-05-16 22:34 - 2014-04-11 05:25 - 00419928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2014-05-16 22:34 - 2014-04-11 03:04 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2014-05-16 22:34 - 2014-04-11 02:53 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe
2014-05-16 22:34 - 2014-04-11 02:22 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2014-05-16 22:34 - 2014-04-11 00:54 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2014-05-16 22:34 - 2014-04-11 00:36 - 11792384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-05-16 22:34 - 2014-04-11 00:24 - 13288960 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-05-16 22:34 - 2014-04-11 00:06 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2014-05-16 22:34 - 2014-04-11 00:05 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-05-16 22:34 - 2014-04-11 00:05 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2014-05-16 22:34 - 2014-04-11 00:02 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-05-16 22:34 - 2014-04-11 00:02 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2014-05-16 22:34 - 2014-04-11 00:01 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2014-05-16 22:34 - 2014-04-11 00:00 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2014-05-16 22:34 - 2014-04-10 23:59 - 00666624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2014-05-16 22:34 - 2014-04-10 23:57 - 00190976 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2014-05-16 22:34 - 2014-04-10 23:56 - 00381440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2014-05-16 22:34 - 2014-04-10 23:55 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2014-05-16 22:34 - 2014-04-10 23:53 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2014-05-16 22:34 - 2014-04-10 23:52 - 03464192 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2014-05-16 22:34 - 2014-04-10 23:46 - 01705472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2014-05-16 22:34 - 2014-04-10 23:36 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2014-05-16 22:34 - 2014-04-10 23:34 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-05-16 22:34 - 2014-04-10 23:29 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2014-05-16 22:34 - 2014-04-10 23:25 - 00921088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-05-16 22:31 - 2014-04-08 19:46 - 00086688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mrt_map.dll
2014-05-16 22:31 - 2014-04-08 19:46 - 00028320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mrt100.dll
2014-05-16 22:31 - 2014-04-08 15:54 - 00080032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mrt_map.dll
2014-05-16 22:31 - 2014-04-08 15:54 - 00026784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mrt100.dll
2014-05-16 22:29 - 2014-03-27 06:12 - 21225584 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-05-16 22:29 - 2014-03-27 04:48 - 18679728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-05-16 22:27 - 2014-05-16 22:28 - 16527392 _____ (IObit ) C:\Users\Marcello Simões\Downloads\driver_booster_setup.exe
2014-05-16 22:25 - 2014-05-16 22:25 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-05-16 22:25 - 2014-05-16 22:25 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-05-16 20:45 - 2014-05-16 20:45 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-05-16 20:45 - 2014-05-16 20:45 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-05-16 20:45 - 2014-05-16 20:45 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-05-16 20:45 - 2014-05-16 20:45 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-05-16 20:45 - 2014-05-16 20:45 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-05-16 20:45 - 2014-05-16 20:45 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-05-16 20:45 - 2014-05-16 20:45 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-05-16 20:45 - 2014-05-16 20:45 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-05-16 20:44 - 2014-05-16 20:44 - 00233912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2014-05-16 20:44 - 2014-05-16 20:44 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-05-16 20:44 - 2014-05-16 20:44 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-05-16 20:24 - 2014-02-22 12:55 - 01435304 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2014-05-16 20:24 - 2014-02-22 12:53 - 03394384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2014-05-16 20:24 - 2014-02-22 12:48 - 02574240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2014-05-16 20:24 - 2014-02-22 12:46 - 01927600 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2014-05-16 20:24 - 2014-02-22 12:44 - 00311640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2014-05-16 20:24 - 2014-02-22 12:41 - 02142976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2014-05-16 20:24 - 2014-02-22 11:38 - 01374384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2014-05-16 20:24 - 2014-02-22 11:04 - 02144984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2014-05-16 20:24 - 2014-02-22 09:15 - 04192768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-05-16 20:24 - 2014-02-22 09:08 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\OobeFldr.dll
2014-05-16 20:24 - 2014-02-22 08:44 - 02767360 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-05-16 20:24 - 2014-02-22 08:30 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-05-16 20:24 - 2014-02-22 08:17 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-05-16 20:24 - 2014-02-22 08:17 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OobeFldr.dll
2014-05-16 20:24 - 2014-02-22 08:01 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2014-05-16 20:24 - 2014-02-22 08:00 - 05784064 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-05-16 20:24 - 2014-02-22 07:59 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-05-16 20:24 - 2014-02-22 07:44 - 02178048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-05-16 20:24 - 2014-02-22 07:36 - 04254720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-05-16 20:24 - 2014-02-22 07:34 - 11742720 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2014-05-16 20:24 - 2014-02-22 07:33 - 00592896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-05-16 20:24 - 2014-02-22 07:18 - 00488448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2014-05-16 20:24 - 2014-02-22 07:06 - 02943488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2014-05-16 20:24 - 2014-02-22 07:02 - 08946688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2014-05-16 20:24 - 2014-02-22 07:00 - 02043904 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-05-16 20:24 - 2014-02-22 06:47 - 01192448 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2014-05-16 20:24 - 2014-02-22 06:39 - 13551104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-05-16 20:24 - 2014-02-22 06:33 - 11745792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-05-16 20:24 - 2014-02-22 06:33 - 01967104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-05-16 20:24 - 2014-02-22 06:28 - 02643456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2014-05-16 20:24 - 2014-02-22 06:23 - 03494912 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2014-05-16 20:24 - 2014-02-22 06:23 - 01576960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2014-05-16 20:24 - 2014-02-22 06:16 - 11776000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2014-05-16 20:24 - 2014-02-22 06:13 - 01728000 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2014-05-16 20:24 - 2014-02-22 06:11 - 02262016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-05-16 20:24 - 2014-02-22 06:01 - 13933568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2014-05-16 20:24 - 2014-02-22 05:53 - 12027904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2014-05-16 20:24 - 2014-02-22 05:49 - 08874496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2014-05-16 20:24 - 2014-02-22 05:49 - 01400832 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-05-16 20:24 - 2014-02-22 05:40 - 02368512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2014-05-16 20:24 - 2014-02-22 05:38 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-05-16 20:24 - 2014-02-22 05:37 - 01716736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2014-05-16 20:24 - 2014-02-22 05:35 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-05-16 20:24 - 2014-02-22 05:32 - 01789440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-05-16 20:24 - 2014-02-22 05:27 - 01143808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-05-16 20:24 - 2014-02-07 22:08 - 00139600 _____ () C:\WINDOWS\system32\systemsf.ebd
2014-05-16 20:23 - 2014-02-22 13:59 - 01519520 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2014-05-16 20:23 - 2014-02-22 13:59 - 01290688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2014-05-16 20:23 - 2014-02-22 13:59 - 00526304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2014-05-16 20:23 - 2014-02-22 13:59 - 00461176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2014-05-16 20:23 - 2014-02-22 13:59 - 00407536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2014-05-16 20:23 - 2014-02-22 13:15 - 01929608 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2014-05-16 20:23 - 2014-02-22 13:15 - 01206000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2014-05-16 20:23 - 2014-02-22 13:00 - 00590168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2014-05-16 20:23 - 2014-02-22 13:00 - 00249688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2014-05-16 20:23 - 2014-02-22 12:55 - 00388408 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2014-05-16 20:23 - 2014-02-22 12:50 - 02588168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2014-05-16 20:23 - 2014-02-22 12:50 - 00645104 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2014-05-16 20:23 - 2014-02-22 12:49 - 00384856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2014-05-16 20:23 - 2014-02-22 12:49 - 00280920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2014-05-16 20:23 - 2014-02-22 12:46 - 01445616 _____ (Microsoft Corporation) C:\WINDOWS\system32\webservices.dll
2014-05-16 20:23 - 2014-02-22 12:46 - 01000424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2014-05-16 20:23 - 2014-02-22 12:46 - 00669896 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2014-05-16 20:23 - 2014-02-22 12:44 - 00539992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2014-05-16 20:23 - 2014-02-22 12:44 - 00424280 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2014-05-16 20:23 - 2014-02-22 12:43 - 01727760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2014-05-16 20:23 - 2014-02-22 12:43 - 01659056 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2014-05-16 20:23 - 2014-02-22 12:43 - 01519592 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2014-05-16 20:23 - 2014-02-22 12:43 - 01487520 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2014-05-16 20:23 - 2014-02-22 12:43 - 01356360 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2014-05-16 20:23 - 2014-02-22 12:41 - 01399176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2014-05-16 20:23 - 2014-02-22 12:41 - 01374384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2014-05-16 20:23 - 2014-02-22 12:41 - 01215832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2014-05-16 20:23 - 2014-02-22 12:41 - 00881616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2014-05-16 20:23 - 2014-02-22 12:41 - 00800552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2014-05-16 20:23 - 2014-02-22 12:41 - 00609456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2014-05-16 20:23 - 2014-02-22 12:41 - 00391008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2014-05-16 20:23 - 2014-02-22 12:41 - 00372360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2014-05-16 20:23 - 2014-02-22 12:40 - 01118552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2014-05-16 20:23 - 2014-02-22 11:52 - 01767440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2014-05-16 20:23 - 2014-02-22 11:51 - 01063976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2014-05-16 20:23 - 2014-02-22 11:42 - 01017936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2014-05-16 20:23 - 2014-02-22 11:42 - 00422968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2014-05-16 20:23 - 2014-02-22 11:42 - 00410568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2014-05-16 20:23 - 2014-02-22 11:42 - 00369288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2014-05-16 20:23 - 2014-02-22 11:38 - 01077944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll
2014-05-16 20:23 - 2014-02-22 11:25 - 02410496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2014-05-16 20:23 - 2014-02-22 11:18 - 00477744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2014-05-16 20:23 - 2014-02-22 11:08 - 01474104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2014-05-16 20:23 - 2014-02-22 11:04 - 01206000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2014-05-16 20:23 - 2014-02-22 11:04 - 01011280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2014-05-16 20:23 - 2014-02-22 11:04 - 00707048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2014-05-16 20:23 - 2014-02-22 11:04 - 00650736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2014-05-16 20:23 - 2014-02-22 11:04 - 00518552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2014-05-16 20:23 - 2014-02-22 11:04 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2014-05-16 20:23 - 2014-02-22 09:24 - 02825216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2014-05-16 20:23 - 2014-02-22 09:22 - 01163264 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2014-05-16 20:23 - 2014-02-22 09:14 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2014-05-16 20:23 - 2014-02-22 09:11 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2014-05-16 20:23 - 2014-02-22 09:07 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2014-05-16 20:23 - 2014-02-22 09:07 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WofUtil.dll
2014-05-16 20:23 - 2014-02-22 08:46 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2014-05-16 20:23 - 2014-02-22 08:28 - 02428928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2014-05-16 20:23 - 2014-02-22 08:25 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\recimg.exe
2014-05-16 20:23 - 2014-02-22 08:25 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2014-05-16 20:23 - 2014-02-22 08:16 - 00617472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2014-05-16 20:23 - 2014-02-22 07:57 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2014-05-16 20:23 - 2014-02-22 07:54 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-05-16 20:23 - 2014-02-22 07:47 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfp.exe
2014-05-16 20:23 - 2014-02-22 07:41 - 00878592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2014-05-16 20:23 - 2014-02-22 07:40 - 00138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2014-05-16 20:23 - 2014-02-22 07:38 - 00390656 _____ (Microsoft Corporation) C:\WINDOWS\system32\DfpCommon.dll
2014-05-16 20:23 - 2014-02-22 07:36 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2014-05-16 20:23 - 2014-02-22 07:25 - 01428480 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2014-05-16 20:23 - 2014-02-22 07:22 - 00606208 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2014-05-16 20:23 - 2014-02-22 07:18 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2014-05-16 20:23 - 2014-02-22 07:09 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-05-16 20:23 - 2014-02-22 07:08 - 00997888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2014-05-16 20:23 - 2014-02-22 07:05 - 01757184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2014-05-16 20:23 - 2014-02-22 07:01 - 02648064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll
2014-05-16 20:23 - 2014-02-22 07:01 - 01227776 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2014-05-16 20:23 - 2014-02-22 07:01 - 00367616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2014-05-16 20:23 - 2014-02-22 06:57 - 00710656 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2014-05-16 20:23 - 2014-02-22 06:53 - 00825344 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2014-05-16 20:23 - 2014-02-22 06:52 - 01132032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2014-05-16 20:23 - 2014-02-22 06:48 - 00427520 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2014-05-16 20:23 - 2014-02-22 06:46 - 00528896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2014-05-16 20:23 - 2014-02-22 06:45 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2014-05-16 20:23 - 2014-02-22 06:40 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-05-16 20:23 - 2014-02-22 06:38 - 00753664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2014-05-16 20:23 - 2014-02-22 06:37 - 02220032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2014-05-16 20:23 - 2014-02-22 06:36 - 01392640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2014-05-16 20:23 - 2014-02-22 06:35 - 00968704 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2014-05-16 20:23 - 2014-02-22 06:35 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WofTasks.dll
2014-05-16 20:23 - 2014-02-22 06:34 - 00467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\energy.dll
2014-05-16 20:23 - 2014-02-22 06:33 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\system32\DismApi.dll
2014-05-16 20:23 - 2014-02-22 06:32 - 01162752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2014-05-16 20:23 - 2014-02-22 06:26 - 00792576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2014-05-16 20:23 - 2014-02-22 06:26 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2014-05-16 20:23 - 2014-02-22 06:25 - 01361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2014-05-16 20:23 - 2014-02-22 06:25 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2014-05-16 20:23 - 2014-02-22 06:24 - 00666624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2014-05-16 20:23 - 2014-02-22 06:23 - 02843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-05-16 20:23 - 2014-02-22 06:23 - 00628224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msTextPrediction.dll
2014-05-16 20:23 - 2014-02-22 06:21 - 01287168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2014-05-16 20:23 - 2014-02-22 06:14 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2014-05-16 20:23 - 2014-02-22 06:11 - 02395136 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2014-05-16 20:23 - 2014-02-22 06:11 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2014-05-16 20:23 - 2014-02-22 06:10 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2014-05-16 20:23 - 2014-02-22 06:07 - 00718336 _____ (Microsoft Corporation) C:\WINDOWS\system32\swprv.dll
2014-05-16 20:23 - 2014-02-22 06:07 - 00551424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2014-05-16 20:23 - 2014-02-22 06:04 - 01107456 _____ (Microsoft Corporation) C:\WINDOWS\system32\perftrack.dll
2014-05-16 20:23 - 2014-02-22 06:04 - 01029120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2014-05-16 20:23 - 2014-02-22 06:00 - 01341440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dui70.dll
2014-05-16 20:23 - 2014-02-22 06:00 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2014-05-16 20:23 - 2014-02-22 05:59 - 01621504 _____ (Microsoft Corporation) C:\WINDOWS\system32\RacEngn.dll
2014-05-16 20:23 - 2014-02-22 05:59 - 01403392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2014-05-16 20:23 - 2014-02-22 05:59 - 00791552 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2014-05-16 20:23 - 2014-02-22 05:59 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2014-05-16 20:23 - 2014-02-22 05:54 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-05-16 20:23 - 2014-02-22 05:51 - 01258496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RacEngn.dll
2014-05-16 20:23 - 2014-02-22 05:47 - 00517120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-05-16 20:23 - 2014-02-22 05:45 - 00845824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2014-05-16 20:23 - 2014-02-22 05:44 - 00721408 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2014-05-16 20:23 - 2014-02-22 05:39 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2014-05-16 20:23 - 2014-02-22 05:34 - 02100736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-05-16 20:23 - 2014-02-22 05:24 - 02760704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2014-05-16 20:23 - 2014-02-22 05:22 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-05-16 20:23 - 2014-02-22 05:21 - 00600576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-05-16 20:23 - 2014-02-22 05:18 - 00576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2014-05-16 20:23 - 2014-02-22 05:17 - 00459264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2014-05-16 20:23 - 2014-02-22 05:06 - 01640960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2014-05-16 20:23 - 2014-02-22 05:04 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2014-05-16 20:23 - 2014-02-22 05:03 - 01496576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2014-05-16 20:23 - 2014-02-22 05:01 - 00978944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2014-05-16 20:23 - 2014-02-22 05:01 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2014-05-16 20:23 - 2014-02-22 05:00 - 00514560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2014-05-16 20:23 - 2014-02-22 01:33 - 00262335 _____ () C:\WINDOWS\system32\dfpinc.dat
2014-05-16 20:23 - 2014-02-02 11:48 - 00307304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2014-05-16 20:23 - 2014-02-02 10:33 - 00230808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2014-05-16 20:23 - 2014-01-29 05:53 - 01653352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2014-05-16 20:23 - 2014-01-29 04:44 - 01369736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2014-05-16 20:23 - 2014-01-27 12:38 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2014-05-16 20:23 - 2014-01-07 22:30 - 00745328 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2014-05-16 20:23 - 2013-12-10 04:35 - 00530944 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2014-05-16 20:22 - 2014-02-22 13:59 - 00289752 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqmapi.dll
2014-05-16 20:22 - 2014-02-22 13:59 - 00209160 _____ (Microsoft Corporation) C:\WINDOWS\system32\imm32.dll
2014-05-16 20:22 - 2014-02-22 13:59 - 00139464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2014-05-16 20:22 - 2014-02-22 13:59 - 00123448 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2014-05-16 20:22 - 2014-02-22 13:15 - 00531128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2014-05-16 20:22 - 2014-02-22 13:15 - 00275312 _____ (Microsoft Corporation) C:\WINDOWS\system32\powrprof.dll
2014-05-16 20:22 - 2014-02-22 13:15 - 00188464 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2014-05-16 20:22 - 2014-02-22 13:15 - 00071888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2014-05-16 20:22 - 2014-02-22 13:02 - 00170952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2014-05-16 20:22 - 2014-02-22 13:02 - 00083120 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhost.exe
2014-05-16 20:22 - 2014-02-22 13:02 - 00080048 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostex.exe
2014-05-16 20:22 - 2014-02-22 13:00 - 00236888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2014-05-16 20:22 - 2014-02-22 13:00 - 00151384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2014-05-16 20:22 - 2014-02-22 13:00 - 00079192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fileinfo.sys
2014-05-16 20:22 - 2014-02-22 12:59 - 00032088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2014-05-16 20:22 - 2014-02-22 12:55 - 00244848 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2014-05-16 20:22 - 2014-02-22 12:55 - 00152848 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2014-05-16 20:22 - 2014-02-22 12:55 - 00131168 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2014-05-16 20:22 - 2014-02-22 12:55 - 00105864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2014-05-16 20:22 - 2014-02-22 12:50 - 00761792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
avatar
Muratori
Iniciante
Iniciante

Mensagens : 46
Reputação : 0
Data de inscrição : 17/05/2014

Voltar ao Topo Ir em baixo

Re: Remoção de Supra Savings

Mensagem por Muratori em Dom 18 Maio 2014, 00:48

00258784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-05-16 20:22 - 2014-02-22 12:50 - 00101216 _____ (Microsoft Corporation) C:\WINDOWS\system32\RestoreOptIn.exe
2014-05-16 20:22 - 2014-02-22 12:50 - 00043408 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudNotifications.exe
2014-05-16 20:22 - 2014-02-22 12:50 - 00032544 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserAccountBroker.exe
2014-05-16 20:22 - 2014-02-22 12:49 - 00372568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2014-05-16 20:22 - 2014-02-22 12:49 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2014-05-16 20:22 - 2014-02-22 12:49 - 00148824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2014-05-16 20:22 - 2014-02-22 12:49 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2014-05-16 20:22 - 2014-02-22 12:49 - 00079192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
2014-05-16 20:22 - 2014-02-22 12:48 - 01791752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll
2014-05-16 20:22 - 2014-02-22 12:48 - 00210736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVol.exe
2014-05-16 20:22 - 2014-02-22 12:44 - 00924504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2014-05-16 20:22 - 2014-02-22 12:44 - 00360792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2014-05-16 20:22 - 2014-02-22 12:43 - 00142576 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe
2014-05-16 20:22 - 2014-02-22 12:43 - 00094560 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2014-05-16 20:22 - 2014-02-22 12:41 - 00324896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2014-05-16 20:22 - 2014-02-22 11:52 - 00251504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powrprof.dll
2014-05-16 20:22 - 2014-02-22 11:51 - 00140456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2014-05-16 20:22 - 2014-02-22 11:42 - 00232896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqmapi.dll
2014-05-16 20:22 - 2014-02-22 11:42 - 00137344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2014-05-16 20:22 - 2014-02-22 11:42 - 00098072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2014-05-16 20:22 - 2014-02-22 11:38 - 00506120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2014-05-16 20:22 - 2014-02-22 11:38 - 00336232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2014-05-16 20:22 - 2014-02-22 11:38 - 00089848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2014-05-16 20:22 - 2014-02-22 11:25 - 00180240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVol.exe
2014-05-16 20:22 - 2014-02-22 11:18 - 00089848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RestoreOptIn.exe
2014-05-16 20:22 - 2014-02-22 11:18 - 00041320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudNotifications.exe
2014-05-16 20:22 - 2014-02-22 11:18 - 00029912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserAccountBroker.exe
2014-05-16 20:22 - 2014-02-22 11:11 - 00490136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2014-05-16 20:22 - 2014-02-22 11:08 - 00079496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2014-05-16 20:22 - 2014-02-22 11:04 - 00317584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2014-05-16 20:22 - 2014-02-22 11:04 - 00285144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2014-05-16 20:22 - 2014-02-22 09:20 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2014-05-16 20:22 - 2014-02-22 09:20 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-kernel-power-events.dll
2014-05-16 20:22 - 2014-02-22 09:14 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
2014-05-16 20:22 - 2014-02-22 09:14 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2014-05-16 20:22 - 2014-02-22 09:09 - 00663040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2014-05-16 20:22 - 2014-02-22 09:07 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\clrhost.dll
2014-05-16 20:22 - 2014-02-22 09:06 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2014-05-16 20:22 - 2014-02-22 09:02 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\aelupsvc.dll
2014-05-16 20:22 - 2014-02-22 08:57 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2014-05-16 20:22 - 2014-02-22 08:54 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2014-05-16 20:22 - 2014-02-22 08:50 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\fsutil.exe
2014-05-16 20:22 - 2014-02-22 08:47 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsbas.dll
2014-05-16 20:22 - 2014-02-22 08:46 - 00548352 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-05-16 20:22 - 2014-02-22 08:41 - 00196608 _____ (Microsoft Corporation) C:\WINDOWS\system32\PkgMgr.exe
2014-05-16 20:22 - 2014-02-22 08:34 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmdskmgr.dll
2014-05-16 20:22 - 2014-02-22 08:27 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3mm.dll
2014-05-16 20:22 - 2014-02-22 08:22 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2014-05-16 20:22 - 2014-02-22 08:17 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAMM.dll
2014-05-16 20:22 - 2014-02-22 08:16 - 00432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2014-05-16 20:22 - 2014-02-22 08:16 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clrhost.dll
2014-05-16 20:22 - 2014-02-22 08:15 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imm32.dll
2014-05-16 20:22 - 2014-02-22 08:06 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2014-05-16 20:22 - 2014-02-22 08:05 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\RASMM.dll
2014-05-16 20:22 - 2014-02-22 08:05 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2014-05-16 20:22 - 2014-02-22 08:03 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\srclient.dll
2014-05-16 20:22 - 2014-02-22 08:02 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContent.dll
2014-05-16 20:22 - 2014-02-22 08:01 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fsutil.exe
2014-05-16 20:22 - 2014-02-22 08:00 - 00453120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-05-16 20:22 - 2014-02-22 07:59 - 01283584 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds.exe
2014-05-16 20:22 - 2014-02-22 07:58 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-05-16 20:22 - 2014-02-22 07:56 - 02862592 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2014-05-16 20:22 - 2014-02-22 07:56 - 00350720 _____ (Microsoft Corporation) C:\WINDOWS\system32\srchadmin.dll
2014-05-16 20:22 - 2014-02-22 07:56 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmvdsitf.dll
2014-05-16 20:22 - 2014-02-22 07:52 - 02288640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2014-05-16 20:22 - 2014-02-22 07:52 - 00331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2014-05-16 20:22 - 2014-02-22 07:51 - 00444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwizeng.dll
2014-05-16 20:22 - 2014-02-22 07:41 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2014-05-16 20:22 - 2014-02-22 07:41 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\netid.dll
2014-05-16 20:22 - 2014-02-22 07:39 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\osk.exe
2014-05-16 20:22 - 2014-02-22 07:37 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2014-05-16 20:22 - 2014-02-22 07:33 - 00402944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2014-05-16 20:22 - 2014-02-22 07:31 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-05-16 20:22 - 2014-02-22 07:28 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-05-16 20:22 - 2014-02-22 07:27 - 00397824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sharemediacpl.dll
2014-05-16 20:22 - 2014-02-22 07:18 - 00722432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsAnytimeUpgradeui.exe
2014-05-16 20:22 - 2014-02-22 07:17 - 00693248 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2014-05-16 20:22 - 2014-02-22 07:17 - 00367616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-05-16 20:22 - 2014-02-22 07:16 - 00308224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srchadmin.dll
2014-05-16 20:22 - 2014-02-22 07:15 - 01543680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2014-05-16 20:22 - 2014-02-22 07:14 - 02811392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
2014-05-16 20:22 - 2014-02-22 07:14 - 02165760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncCenter.dll
2014-05-16 20:22 - 2014-02-22 07:14 - 00376320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2014-05-16 20:22 - 2014-02-22 07:13 - 00897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
2014-05-16 20:22 - 2014-02-22 07:13 - 00307200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll
2014-05-16 20:22 - 2014-02-22 07:12 - 00797696 _____ (Microsoft Corporation) C:\WINDOWS\system32\PurchaseWindowsLicense.dll
2014-05-16 20:22 - 2014-02-22 07:09 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2014-05-16 20:22 - 2014-02-22 07:09 - 01224192 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2014-05-16 20:22 - 2014-02-22 07:04 - 00935424 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2014-05-16 20:22 - 2014-02-22 07:04 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WLanConn.dll
2014-05-16 20:22 - 2014-02-22 07:03 - 00779264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\osk.exe
2014-05-16 20:22 - 2014-02-22 07:02 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2014-05-16 20:22 - 2014-02-22 07:01 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenter.dll
2014-05-16 20:22 - 2014-02-22 07:00 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssphtb.dll
2014-05-16 20:22 - 2014-02-22 06:59 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2014-05-16 20:22 - 2014-02-22 06:55 - 00244224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-05-16 20:22 - 2014-02-22 06:54 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2014-05-16 20:22 - 2014-02-22 06:54 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-05-16 20:22 - 2014-02-22 06:49 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2014-05-16 20:22 - 2014-02-22 06:48 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2014-05-16 20:22 - 2014-02-22 06:45 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2014-05-16 20:22 - 2014-02-22 06:45 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2014-05-16 20:22 - 2014-02-22 06:45 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2014-05-16 20:22 - 2014-02-22 06:44 - 00675328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2014-05-16 20:22 - 2014-02-22 06:44 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\conhost.exe
2014-05-16 20:22 - 2014-02-22 06:43 - 00107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2014-05-16 20:22 - 2014-02-22 06:40 - 02537472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2014-05-16 20:22 - 2014-02-22 06:36 - 00835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2014-05-16 20:22 - 2014-02-22 06:36 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WLanConn.dll
2014-05-16 20:22 - 2014-02-22 06:36 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dism.exe
2014-05-16 20:22 - 2014-02-22 06:34 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2014-05-16 20:22 - 2014-02-22 06:31 - 00242688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2014-05-16 20:22 - 2014-02-22 06:28 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2014-05-16 20:22 - 2014-02-22 06:25 - 00449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2014-05-16 20:22 - 2014-02-22 06:25 - 00399872 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2014-05-16 20:22 - 2014-02-22 06:25 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2014-05-16 20:22 - 2014-02-22 06:25 - 00164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscinterop.dll
2014-05-16 20:22 - 2014-02-22 06:23 - 00344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2014-05-16 20:22 - 2014-02-22 06:22 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2014-05-16 20:22 - 2014-02-22 06:18 - 00619520 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2014-05-16 20:22 - 2014-02-22 06:15 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Dism.exe
2014-05-16 20:22 - 2014-02-22 06:14 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2014-05-16 20:22 - 2014-02-22 06:12 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DismApi.dll
2014-05-16 20:22 - 2014-02-22 06:10 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2014-05-16 20:22 - 2014-02-22 06:09 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2014-05-16 20:22 - 2014-02-22 06:08 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2014-05-16 20:22 - 2014-02-22 06:07 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscinterop.dll
2014-05-16 20:22 - 2014-02-22 06:06 - 01035264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-05-16 20:22 - 2014-02-22 06:02 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2014-05-16 20:22 - 2014-02-22 06:02 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2014-05-16 20:22 - 2014-02-22 05:55 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2014-05-16 20:22 - 2014-02-22 05:54 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
2014-05-16 20:22 - 2014-02-22 05:54 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcredprov.dll
2014-05-16 20:22 - 2014-02-22 05:54 - 00194560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2014-05-16 20:22 - 2014-02-22 05:54 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2014-05-16 20:22 - 2014-02-22 05:53 - 00876544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2014-05-16 20:22 - 2014-02-22 05:52 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-05-16 20:22 - 2014-02-22 05:52 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2014-05-16 20:22 - 2014-02-22 05:51 - 00716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2014-05-16 20:22 - 2014-02-22 05:51 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2014-05-16 20:22 - 2014-02-22 05:49 - 00755200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2014-05-16 20:22 - 2014-02-22 05:48 - 01144320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2014-05-16 20:22 - 2014-02-22 05:48 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioCredProv.dll
2014-05-16 20:22 - 2014-02-22 05:47 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMM.dll
2014-05-16 20:22 - 2014-02-22 05:47 - 00505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll
2014-05-16 20:22 - 2014-02-22 05:47 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\AltTab.dll
2014-05-16 20:22 - 2014-02-22 05:46 - 03312128 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2014-05-16 20:22 - 2014-02-22 05:45 - 00169472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-05-16 20:22 - 2014-02-22 05:44 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2014-05-16 20:22 - 2014-02-22 05:44 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2014-05-16 20:22 - 2014-02-22 05:43 - 00644608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2014-05-16 20:22 - 2014-02-22 05:43 - 00469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskeng.exe
2014-05-16 20:22 - 2014-02-22 05:43 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2014-05-16 20:22 - 2014-02-22 05:43 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2014-05-16 20:22 - 2014-02-22 05:42 - 00943104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WlanMM.dll
2014-05-16 20:22 - 2014-02-22 05:42 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2014-05-16 20:22 - 2014-02-22 05:42 - 00448000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VAN.dll
2014-05-16 20:22 - 2014-02-22 05:40 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll
2014-05-16 20:22 - 2014-02-22 05:40 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2014-05-16 20:22 - 2014-02-22 05:38 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
2014-05-16 20:22 - 2014-02-22 05:38 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2014-05-16 20:22 - 2014-02-22 05:37 - 00658432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2014-05-16 20:22 - 2014-02-22 05:36 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2014-05-16 20:22 - 2014-02-22 05:34 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2014-05-16 20:22 - 2014-02-22 05:33 - 00609792 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2014-05-16 20:22 - 2014-02-22 05:31 - 00432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2014-05-16 20:22 - 2014-02-22 05:29 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2014-05-16 20:22 - 2014-02-22 05:24 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmIndexer.dll
2014-05-16 20:22 - 2014-02-22 05:22 - 00591872 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2014-05-16 20:22 - 2014-02-22 05:21 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmIndexer.dll
2014-05-16 20:22 - 2014-02-22 04:54 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
2014-05-16 20:22 - 2014-01-31 09:08 - 01200640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2014-05-16 20:22 - 2014-01-31 06:55 - 03596800 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2014-05-16 20:22 - 2014-01-31 06:35 - 03085824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2014-05-16 20:22 - 2014-01-31 06:15 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2014-05-16 20:22 - 2014-01-31 06:10 - 00559104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2014-05-16 20:22 - 2014-01-31 06:08 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2014-05-16 20:22 - 2014-01-31 06:04 - 00409600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2014-05-16 20:22 - 2014-01-31 05:18 - 01185280 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.dll
2014-05-16 20:22 - 2014-01-29 05:52 - 00551256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2014-05-16 20:22 - 2014-01-28 21:36 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2014-05-16 20:22 - 2014-01-28 21:17 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2014-05-16 20:22 - 2014-01-27 16:53 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2014-05-16 20:22 - 2014-01-27 16:48 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2014-05-16 20:22 - 2014-01-27 14:04 - 01311744 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2014-05-16 20:22 - 2014-01-17 14:24 - 00388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ninput.dll
2014-05-16 20:22 - 2014-01-17 14:04 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ninput.dll
2014-05-16 20:22 - 2014-01-07 21:33 - 00552632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2014-05-16 20:22 - 2013-12-04 15:41 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthLEEnum.sys
2014-05-16 20:22 - 2013-12-04 12:54 - 00660480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2014-05-16 20:22 - 2013-12-04 12:16 - 00546304 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2014-05-16 20:22 - 2013-12-04 10:53 - 00473600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2014-05-16 20:22 - 2013-11-10 20:41 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2014-05-16 20:22 - 2013-11-08 01:04 - 00488960 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2014-05-16 20:21 - 2014-02-22 13:58 - 00036200 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2014-05-16 20:21 - 2014-02-22 12:59 - 00027480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2014-05-16 20:21 - 2014-02-22 12:55 - 00162176 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2014-05-16 20:21 - 2014-02-22 12:50 - 00054816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys
2014-05-16 20:21 - 2014-02-22 12:49 - 00189784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UCX01000.SYS
2014-05-16 20:21 - 2014-02-22 12:41 - 00028416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2014-05-16 20:21 - 2014-02-22 11:41 - 00033056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2014-05-16 20:21 - 2014-02-22 09:17 - 00902144 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe
2014-05-16 20:21 - 2014-02-22 09:17 - 00890880 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2014-05-16 20:21 - 2014-02-22 09:17 - 00874496 _____ (Microsoft Corporation) C:\WINDOWS\system32\autofmt.exe
2014-05-16 20:21 - 2014-02-22 09:17 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\f3ahvoas.dll
2014-05-16 20:21 - 2014-02-22 09:14 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\watchdog.sys
2014-05-16 20:21 - 2014-02-22 09:08 - 00173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncui.dll
2014-05-16 20:21 - 2014-02-22 09:08 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2014-05-16 20:21 - 2014-02-22 09:07 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2014-05-16 20:21 - 2014-02-22 09:04 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2014-05-16 20:21 - 2014-02-22 09:03 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2014-05-16 20:21 - 2014-02-22 09:03 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2014-05-16 20:21 - 2014-02-22 09:01 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\spcompat.dll
2014-05-16 20:21 - 2014-02-22 09:00 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgentc.exe
2014-05-16 20:21 - 2014-02-22 08:59 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsAnytimeUpgrade.exe
2014-05-16 20:21 - 2014-02-22 08:57 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll
2014-05-16 20:21 - 2014-02-22 08:50 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionQueue.dll
2014-05-16 20:21 - 2014-02-22 08:47 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsdyn.dll
2014-05-16 20:21 - 2014-02-22 08:47 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2014-05-16 20:21 - 2014-02-22 08:45 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll
2014-05-16 20:21 - 2014-02-22 08:45 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhevents.dll
2014-05-16 20:21 - 2014-02-22 08:42 - 00038680 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContentServer.exe
2014-05-16 20:21 - 2014-02-22 08:37 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\diskpart.exe
2014-05-16 20:21 - 2014-02-22 08:32 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsutil.dll
2014-05-16 20:21 - 2014-02-22 08:29 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RelPost.exe
2014-05-16 20:21 - 2014-02-22 08:25 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppnp.dll
2014-05-16 20:21 - 2014-02-22 08:24 - 00800256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoconv.exe
2014-05-16 20:21 - 2014-02-22 08:24 - 00792576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2014-05-16 20:21 - 2014-02-22 08:24 - 00780288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autofmt.exe
2014-05-16 20:21 - 2014-02-22 08:24 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SSShim.dll
2014-05-16 20:21 - 2014-02-22 08:24 - 00005632 ____H (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-session-winsta-l1-1-0.dll
2014-05-16 20:21 - 2014-02-22 08:22 - 00177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2014-05-16 20:21 - 2014-02-22 08:17 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\BulkOperationHost.exe
2014-05-16 20:21 - 2014-02-22 08:16 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe
2014-05-16 20:21 - 2014-02-22 08:16 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2014-05-16 20:21 - 2014-02-22 08:14 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\cleanmgr.exe
2014-05-16 20:21 - 2014-02-22 08:13 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2014-05-16 20:21 - 2014-02-22 08:11 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2014-05-16 20:21 - 2014-02-22 08:09 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgentc.exe
2014-05-16 20:21 - 2014-02-22 08:08 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2014-05-16 20:21 - 2014-02-22 08:07 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\scavengeui.dll
2014-05-16 20:21 - 2014-02-22 08:07 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll
2014-05-16 20:21 - 2014-02-22 08:05 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnpclean.dll
2014-05-16 20:21 - 2014-02-22 08:05 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContentHost.dll
2014-05-16 20:21 - 2014-02-22 08:04 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfrgui.exe
2014-05-16 20:21 - 2014-02-22 08:02 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\acppage.dll
2014-05-16 20:21 - 2014-02-22 07:59 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2014-05-16 20:21 - 2014-02-22 07:58 - 00610304 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2014-05-16 20:21 - 2014-02-22 07:58 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAConn.dll
2014-05-16 20:21 - 2014-02-22 07:57 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll
2014-05-16 20:21 - 2014-02-22 07:56 - 00467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\srcore.dll
2014-05-16 20:21 - 2014-02-22 07:55 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\srrstr.dll
2014-05-16 20:21 - 2014-02-22 07:55 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SrTasks.exe
2014-05-16 20:21 - 2014-02-22 07:53 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PkgMgr.exe
2014-05-16 20:21 - 2014-02-22 07:50 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\diskpart.exe
2014-05-16 20:21 - 2014-02-22 07:47 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmdskmgr.dll
2014-05-16 20:21 - 2014-02-22 07:47 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\migisol.dll
2014-05-16 20:21 - 2014-02-22 07:47 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupugc.exe
2014-05-16 20:21 - 2014-02-22 07:47 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-05-16 20:21 - 2014-02-22 07:46 - 00283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbadmin.exe
2014-05-16 20:21 - 2014-02-22 07:41 - 02566656 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2014-05-16 20:21 - 2014-02-22 07:38 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2014-05-16 20:21 - 2014-02-22 07:36 - 00385024 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2014-05-16 20:21 - 2014-02-22 07:35 - 00504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2014-05-16 20:21 - 2014-02-22 07:34 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsAnytimeUpgradeResults.exe
2014-05-16 20:21 - 2014-02-22 07:32 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe
2014-05-16 20:21 - 2014-02-22 07:30 - 00213504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cleanmgr.exe
2014-05-16 20:21 - 2014-02-22 07:29 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\rstrui.exe
2014-05-16 20:21 - 2014-02-22 07:25 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StorageContextHandler.dll
2014-05-16 20:21 - 2014-02-22 07:21 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dfrgui.exe
2014-05-16 20:21 - 2014-02-22 07:21 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srclient.dll
2014-05-16 20:21 - 2014-02-22 07:21 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\acppage.dll
2014-05-16 20:21 - 2014-02-22 07:20 - 01152512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2014-05-16 20:21 - 2014-02-22 07:17 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2014-05-16 20:21 - 2014-02-22 07:16 - 00592896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2014-05-16 20:21 - 2014-02-22 07:16 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmvdsitf.dll
2014-05-16 20:21 - 2014-02-22 07:13 - 00557056 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs.dll
2014-05-16 20:21 - 2014-02-22 07:12 - 00352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwizeng.dll
2014-05-16 20:21 - 2014-02-22 07:09 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\migisol.dll
2014-05-16 20:21 - 2014-02-22 07:09 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JavaScriptCollectionAgent.dll
2014-05-16 20:21 - 2014-02-22 07:04 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netid.dll
2014-05-16 20:21 - 2014-02-22 06:56 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2014-05-16 20:21 - 2014-02-22 06:54 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceassociation.dll
2014-05-16 20:21 - 2014-02-22 06:53 - 00545280 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2014-05-16 20:21 - 2014-02-22 06:52 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.exe
2014-05-16 20:21 - 2014-02-22 06:50 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbrand.dll
2014-05-16 20:21 - 2014-02-22 06:48 - 01136128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2014-05-16 20:21 - 2014-02-22 06:48 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2014-05-16 20:21 - 2014-02-22 06:46 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsku.dll
2014-05-16 20:21 - 2014-02-22 06:45 - 00453632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2014-05-16 20:21 - 2014-02-22 06:44 - 00182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\korwbrkr.dll
2014-05-16 20:21 - 2014-02-22 06:43 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-05-16 20:21 - 2014-02-22 06:41 - 00492032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintDialogs.dll
2014-05-16 20:21 - 2014-02-22 06:39 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dasHost.exe
2014-05-16 20:21 - 2014-02-22 06:37 - 00183808 _____ (Microsoft Corp.) C:\WINDOWS\system32\Defrag.exe
2014-05-16 20:21 - 2014-02-22 06:30 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll
2014-05-16 20:21 - 2014-02-22 06:29 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2014-05-16 20:21 - 2014-02-22 06:29 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2014-05-16 20:21 - 2014-02-22 06:28 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceassociation.dll
2014-05-16 20:21 - 2014-02-22 06:27 - 00484864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2014-05-16 20:21 - 2014-02-22 06:26 - 00299008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2014-05-16 20:21 - 2014-02-22 06:26 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powercfg.exe
2014-05-16 20:21 - 2014-02-22 06:25 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winbrand.dll
2014-05-16 20:21 - 2014-02-22 06:23 - 00256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2014-05-16 20:21 - 2014-02-22 06:23 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll
2014-05-16 20:21 - 2014-02-22 06:22 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsku.dll
2014-05-16 20:21 - 2014-02-22 06:19 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2014-05-16 20:21 - 2014-02-22 06:19 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-05-16 20:21 - 2014-02-22 06:16 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxshared.dll
2014-05-16 20:21 - 2014-02-22 06:09 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2014-05-16 20:21 - 2014-02-22 06:06 - 00251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2014-05-16 20:21 - 2014-02-22 06:04 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\slpts.dll
2014-05-16 20:21 - 2014-02-22 06:02 - 00559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll
2014-05-16 20:21 - 2014-02-22 05:59 - 01436160 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2014-05-16 20:21 - 2014-02-22 05:58 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2014-05-16 20:21 - 2014-02-22 05:55 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConfigureExpandedStorage.dll
2014-05-16 20:21 - 2014-02-22 05:55 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\energytask.dll
2014-05-16 20:21 - 2014-02-22 05:55 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slpts.dll
2014-05-16 20:21 - 2014-02-22 05:55 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\msshooks.dll
2014-05-16 20:21 - 2014-02-22 05:54 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AepRoam.dll
2014-05-16 20:21 - 2014-02-22 05:51 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2014-05-16 20:21 - 2014-02-22 05:49 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2014-05-16 20:21 - 2014-02-22 05:48 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConfigureExpandedStorage.dll
2014-05-16 20:21 - 2014-02-22 05:48 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2014-05-16 20:21 - 2014-02-22 05:48 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msshooks.dll
2014-05-16 20:21 - 2014-02-22 05:47 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcredprov.dll
2014-05-16 20:21 - 2014-02-22 05:45 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2014-05-16 20:21 - 2014-02-22 05:45 - 00164352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2014-05-16 20:21 - 2014-02-22 05:44 - 00405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\provsvc.dll
2014-05-16 20:21 - 2014-02-22 05:44 - 00154624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netplwiz.dll
2014-05-16 20:21 - 2014-02-22 05:43 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BioCredProv.dll
2014-05-16 20:21 - 2014-02-22 05:43 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Renewal.dll
2014-05-16 20:21 - 2014-02-22 05:40 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2014-05-16 20:21 - 2014-02-22 05:39 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskeng.exe
2014-05-16 20:21 - 2014-02-22 05:39 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\provsvc.dll
2014-05-16 20:21 - 2014-02-22 05:35 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingMonitor.dll
2014-05-16 20:21 - 2014-02-22 05:33 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingMonitor.dll
2014-05-16 20:21 - 2014-02-22 05:31 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2014-05-16 20:21 - 2014-02-22 05:30 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2014-05-16 20:21 - 2014-02-22 05:24 - 00082432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2014-05-16 20:21 - 2014-02-22 05:22 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncPolicy.dll
2014-05-16 20:21 - 2014-02-22 05:20 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2014-05-16 20:21 - 2014-02-22 05:19 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBroker.dll
2014-05-16 20:21 - 2014-02-22 05:17 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudStorageWizard.exe
2014-05-16 20:21 - 2014-02-22 05:17 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudStorageWizard.exe
2014-05-16 20:21 - 2014-02-01 03:00 - 00002255 _____ () C:\WINDOWS\SysWOW64\WimBootCompress.ini
2014-05-16 20:21 - 2014-02-01 03:00 - 00002255 _____ () C:\WINDOWS\system32\WimBootCompress.ini
2014-05-16 20:21 - 2014-01-31 09:09 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2014-05-16 20:21 - 2014-01-31 08:59 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpchttp.dll
2014-05-16 20:21 - 2014-01-31 08:11 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpchttp.dll
2014-05-16 20:21 - 2014-01-31 06:19 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2014-05-16 20:21 - 2014-01-31 05:24 - 01057792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.dll
2014-05-16 20:21 - 2014-01-29 05:40 - 00994136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2014-05-16 20:21 - 2014-01-28 21:18 - 00534528 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2014-05-16 20:21 - 2014-01-22 03:21 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2014-05-16 20:21 - 2014-01-22 02:50 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2014-05-16 20:21 - 2013-12-04 11:19 - 00439808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2014-05-16 20:21 - 2013-11-27 06:10 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiohlp.dll
2014-05-16 20:21 - 2013-11-27 05:56 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiohlp.dll
2014-05-16 20:21 - 2013-11-08 00:47 - 00370176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2014-05-16 20:20 - 2014-02-22 09:17 - 00008192 ____H (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-ntuser-private-l1-1-1.dll
2014-05-16 20:20 - 2014-02-22 09:17 - 00005632 ____H (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-session-winsta-l1-1-0.dll
2014-05-16 20:20 - 2014-02-22 09:17 - 00003584 ____H (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-ntuser-private-l1-1-0.dll
2014-05-16 20:20 - 2014-02-22 09:17 - 00003584 ____H (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-kernel32-package-l1-1-1.dll
2014-05-16 20:20 - 2014-02-22 09:08 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\shimeng.dll
2014-05-16 20:20 - 2014-02-22 09:08 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx
2014-05-16 20:20 - 2014-02-22 09:08 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxmasf.dll
2014-05-16 20:20 - 2014-02-22 09:00 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpksetupproxyserv.dll
2014-05-16 20:20 - 2014-02-22 08:48 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ocsetapi.dll
2014-05-16 20:20 - 2014-02-22 08:39 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsvcctl.dll
2014-05-16 20:20 - 2014-02-22 08:25 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\f3ahvoas.dll
2014-05-16 20:20 - 2014-02-22 08:25 - 00008192 ____H (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-ntuser-private-l1-1-1.dll
2014-05-16 20:20 - 2014-02-22 08:25 - 00003584 ____H (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-ntuser-private-l1-1-0.dll
2014-05-16 20:20 - 2014-02-22 08:24 - 00003584 ____H (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-networking-wcmapi-l1-1-0.dll
2014-05-16 20:20 - 2014-02-22 08:24 - 00003584 ____H (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-kernel32-package-l1-1-1.dll
2014-05-16 20:20 - 2014-02-22 08:16 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2014-05-16 20:20 - 2014-02-22 08:08 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll
2014-05-16 20:20 - 2014-02-22 08:07 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageContextHandler.dll
2014-05-16 20:20 - 2014-02-22 07:59 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ocsetapi.dll
2014-05-16 20:20 - 2014-02-22 07:35 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitagent.exe
2014-05-16 20:20 - 2014-02-22 07:27 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\occache.dll
2014-05-16 20:20 - 2014-02-22 07:03 - 02544128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2014-05-16 20:20 - 2014-02-22 06:59 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2014-05-16 20:20 - 2014-02-22 06:54 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2014-05-16 20:20 - 2014-02-22 06:53 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\occache.dll
2014-05-16 20:20 - 2014-02-22 06:51 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2014-05-16 20:20 - 2014-02-22 06:27 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2014-05-16 20:20 - 2014-02-22 06:19 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\korwbrkr.dll
2014-05-16 20:20 - 2014-02-22 05:57 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-05-16 20:20 - 2014-02-22 05:55 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dataclen.dll
2014-05-16 20:20 - 2014-02-22 05:48 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dataclen.dll
2014-05-16 20:20 - 2014-02-22 05:39 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2014-05-16 20:20 - 2014-02-22 05:20 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncPolicy.dll
2014-05-16 20:20 - 2014-02-22 01:43 - 00002440 ___RS () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileManager.lnk
2014-05-16 20:20 - 2014-02-22 01:37 - 00000369 _____ () C:\Users\Usuário Padrão\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2014-05-16 20:20 - 2014-02-22 01:37 - 00000369 _____ () C:\Users\Usuário Padrão\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2014-05-16 20:20 - 2014-02-22 01:37 - 00000369 _____ () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2014-05-16 20:20 - 2014-02-22 01:37 - 00000369 _____ () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2014-05-16 20:20 - 2014-02-22 01:37 - 00000369 _____ () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2014-05-16 20:20 - 2014-02-22 01:37 - 00000369 _____ () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2014-05-16 20:20 - 2014-02-07 22:08 - 00100197 _____ () C:\WINDOWS\SysWOW64\RacRules.xml
2014-05-16 20:20 - 2014-02-07 22:08 - 00100197 _____ () C:\WINDOWS\system32\RacRules.xml
2014-05-16 20:20 - 2014-02-01 03:00 - 00011109 _____ () C:\WINDOWS\SysWOW64\connectedsearch-results.searchconnector-ms
2014-05-16 20:20 - 2014-02-01 03:00 - 00011109 _____ () C:\WINDOWS\system32\connectedsearch-results.searchconnector-ms
2014-05-16 20:20 - 2014-02-01 03:00 - 00007762 _____ () C:\WINDOWS\SysWOW64\connectedsearch-suggestions.searchconnector-ms
2014-05-16 20:20 - 2014-02-01 03:00 - 00007762 _____ () C:\WINDOWS\system32\connectedsearch-suggestions.searchconnector-ms
2014-05-16 20:20 - 2014-02-01 03:00 - 00007130 _____ () C:\WINDOWS\SysWOW64\connectedsearch-zeroinput.searchconnector-ms
2014-05-16 20:20 - 2014-02-01 03:00 - 00007130 _____ () C:\WINDOWS\system32\connectedsearch-zeroinput.searchconnector-ms
2014-05-16 20:20 - 2014-01-27 14:54 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2014-05-16 20:20 - 2014-01-27 08:45 - 00050053 _____ () C:\WINDOWS\system32\srms.dat
2014-05-16 20:20 - 2013-11-27 06:47 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\finger.exe
2014-05-16 20:20 - 2013-11-27 06:20 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\finger.exe
2014-05-16 18:35 - 2014-03-20 01:19 - 01291200 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2014-05-16 18:35 - 2014-03-20 00:41 - 02013016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2014-05-16 18:35 - 2014-03-20 00:41 - 00376152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2014-05-16 18:35 - 2014-03-20 00:40 - 01112536 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2014-05-16 18:35 - 2014-03-19 22:29 - 04268544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-05-16 18:35 - 2014-03-19 21:53 - 00950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2014-05-16 18:35 - 2014-03-19 20:55 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2014-05-16 18:35 - 2014-03-19 20:39 - 00800256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2014-05-16 18:35 - 2014-03-19 04:13 - 00836096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2014-05-16 18:35 - 2014-03-19 02:57 - 00621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2014-05-16 18:35 - 2014-03-19 02:31 - 01656832 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2014-05-16 18:35 - 2014-03-19 02:08 - 01351168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2014-05-16 18:35 - 2014-03-19 01:41 - 00721408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-05-16 18:35 - 2014-03-19 01:17 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-05-16 18:35 - 2014-03-13 09:35 - 00157016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2014-05-16 18:35 - 2014-03-11 11:03 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2014-05-16 18:35 - 2014-03-11 11:00 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2014-05-16 18:35 - 2014-03-11 10:21 - 00918528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-05-16 18:35 - 2014-03-11 10:02 - 00629760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2014-05-16 18:35 - 2014-03-11 09:42 - 02641920 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-05-16 18:35 - 2014-03-11 09:35 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-05-16 18:35 - 2014-03-08 17:47 - 00565536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2014-05-16 18:35 - 2014-03-08 17:38 - 01542768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2014-05-16 18:35 - 2014-03-08 17:35 - 00467800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2014-05-16 18:35 - 2014-03-08 17:35 - 00337752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2014-05-16 18:35 - 2014-03-08 12:29 - 01339240 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2014-05-16 18:35 - 2014-03-08 12:29 - 00356848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2014-05-16 18:35 - 2014-03-08 08:34 - 01095488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2014-05-16 18:35 - 2014-03-08 04:51 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2014-05-16 18:35 - 2014-03-08 04:09 - 01411584 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-05-16 18:35 - 2014-03-08 04:03 - 00939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2014-05-16 18:35 - 2014-03-08 04:01 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2014-05-16 18:35 - 2014-03-08 03:50 - 01066496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2014-05-16 18:35 - 2014-03-08 03:48 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2014-05-16 18:35 - 2014-03-08 03:46 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2014-05-16 18:35 - 2014-03-08 03:37 - 00755712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2014-05-16 18:35 - 2014-03-08 03:31 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2014-05-16 18:35 - 2014-03-08 03:30 - 00197632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2014-05-16 18:35 - 2014-03-08 03:09 - 00958464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2014-05-16 18:35 - 2014-03-08 03:02 - 00801792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2014-05-16 18:35 - 2014-03-08 02:41 - 01306624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-05-16 18:35 - 2014-03-08 02:11 - 00924160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-05-16 18:35 - 2014-03-06 11:35 - 01466864 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2014-05-16 18:35 - 2014-03-06 11:34 - 02331000 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2014-05-16 18:35 - 2014-03-06 09:53 - 02141912 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2014-05-16 18:35 - 2014-03-06 09:53 - 00518552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
avatar
Muratori
Iniciante
Iniciante

Mensagens : 46
Reputação : 0
Data de inscrição : 17/05/2014

Voltar ao Topo Ir em baixo

Re: Remoção de Supra Savings

Mensagem por Muratori em Dom 18 Maio 2014, 00:49

2014-05-16 18:35 - 2014-03-06 09:51 - 01557848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2014-05-16 18:35 - 2014-03-06 09:51 - 00488280 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2014-05-16 18:35 - 2014-03-06 09:51 - 00379224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2014-05-16 18:35 - 2014-03-06 09:42 - 07425368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-05-16 18:35 - 2014-03-06 09:40 - 00492256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2014-05-16 18:35 - 2014-03-06 09:40 - 00467504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2014-05-16 18:35 - 2014-03-06 09:40 - 00463264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2014-05-16 18:35 - 2014-03-06 09:40 - 00364640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2014-05-16 18:35 - 2014-03-06 09:40 - 00244888 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2014-05-16 18:35 - 2014-03-06 08:20 - 01200296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2014-05-16 18:35 - 2014-03-06 08:19 - 00390488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll
2014-05-16 18:35 - 2014-03-06 08:13 - 01779800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2014-05-16 18:35 - 2014-03-06 08:13 - 00406912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2014-05-16 18:35 - 2014-03-06 07:46 - 01679128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2014-05-16 18:35 - 2014-03-06 07:35 - 00388408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2014-05-16 18:35 - 2014-03-06 07:35 - 00326024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2014-05-16 18:35 - 2014-03-06 07:35 - 00305768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2014-05-16 18:35 - 2014-03-06 06:22 - 00679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2014-05-16 18:35 - 2014-03-06 06:20 - 00443392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2014-05-16 18:35 - 2014-03-06 06:20 - 00402944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2014-05-16 18:35 - 2014-03-06 06:20 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2014-05-16 18:35 - 2014-03-06 06:19 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpnpmgr.dll
2014-05-16 18:35 - 2014-03-06 06:19 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2014-05-16 18:35 - 2014-03-06 05:20 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2014-05-16 18:35 - 2014-03-06 05:00 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2014-05-16 18:35 - 2014-03-06 04:22 - 16875520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-05-16 18:35 - 2014-03-06 04:16 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2014-05-16 18:35 - 2014-03-06 04:02 - 00834560 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2014-05-16 18:35 - 2014-03-06 03:59 - 12732416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-05-16 18:35 - 2014-03-06 03:51 - 02900992 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2014-05-16 18:35 - 2014-03-06 03:39 - 02133504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2014-05-16 18:35 - 2014-03-06 03:34 - 00201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-05-16 18:35 - 2014-03-06 03:31 - 02479616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2014-05-16 18:35 - 2014-03-06 03:29 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2014-05-16 18:35 - 2014-03-06 03:23 - 02270208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2014-05-16 18:35 - 2014-03-06 03:21 - 00370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2014-05-16 18:35 - 2014-03-06 03:21 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2014-05-16 18:35 - 2014-03-06 03:16 - 01527296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2014-05-16 18:35 - 2014-03-06 03:16 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2014-05-16 18:35 - 2014-03-06 03:09 - 01764864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2014-05-16 18:35 - 2014-03-06 03:05 - 01230336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2014-05-16 18:35 - 2014-03-06 03:04 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll
2014-05-16 18:35 - 2014-03-06 03:04 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2014-05-16 18:35 - 2014-03-06 02:54 - 01023488 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2014-05-16 18:35 - 2014-03-06 02:54 - 00888320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2014-05-16 18:35 - 2014-03-06 02:47 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2014-05-16 18:35 - 2014-03-06 02:42 - 01129472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2014-05-16 18:35 - 2014-03-06 02:42 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2014-05-16 18:35 - 2014-03-06 02:33 - 00839168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2014-05-16 18:35 - 2014-03-06 02:28 - 08653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2014-05-16 18:35 - 2014-03-06 02:27 - 05833728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2014-05-16 18:35 - 2014-03-06 02:21 - 05770752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2014-05-16 18:35 - 2014-03-06 02:20 - 06641152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2014-05-16 18:35 - 2014-03-04 09:25 - 02373784 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2014-05-16 18:35 - 2014-03-04 09:15 - 02519384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-05-16 18:35 - 2014-03-04 08:16 - 02088160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2014-05-16 18:35 - 2014-03-04 04:16 - 00655360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2014-05-16 18:35 - 2014-03-04 04:13 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2014-05-16 18:35 - 2014-03-04 04:00 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2014-05-16 18:35 - 2014-03-04 03:50 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2014-05-16 18:35 - 2014-03-04 03:42 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2014-05-16 18:35 - 2014-03-04 03:32 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2014-05-16 18:35 - 2014-03-04 03:03 - 00669696 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2014-05-16 18:35 - 2014-03-04 02:52 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2014-05-16 18:34 - 2014-03-19 21:48 - 00201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2014-05-16 18:34 - 2014-03-19 20:36 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll
2014-05-16 18:34 - 2014-03-19 02:50 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32tm.exe
2014-05-16 18:34 - 2014-03-19 02:20 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\w32tm.exe
2014-05-16 18:34 - 2014-03-12 10:45 - 00387210 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2014-05-16 18:34 - 2014-03-11 12:45 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2014-05-16 18:34 - 2014-03-11 12:18 - 01015808 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2014-05-16 18:34 - 2014-03-11 12:02 - 00794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2014-05-16 18:34 - 2014-03-11 11:28 - 00887296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2014-05-16 18:34 - 2014-03-11 11:25 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2014-05-16 18:34 - 2014-03-11 11:05 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2014-05-16 18:34 - 2014-03-08 17:47 - 00180056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2014-05-16 18:34 - 2014-03-08 17:40 - 00136024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2014-05-16 18:34 - 2014-03-08 06:34 - 00731648 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2014-05-16 18:34 - 2014-03-08 06:02 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxproxy.dll
2014-05-16 18:34 - 2014-03-08 05:44 - 00731648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2014-05-16 18:34 - 2014-03-08 05:33 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\spp.dll
2014-05-16 18:34 - 2014-03-08 05:25 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SetNetworkLocation.dll
2014-05-16 18:34 - 2014-03-08 05:12 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxproxy.dll
2014-05-16 18:34 - 2014-03-08 04:53 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2014-05-16 18:34 - 2014-03-08 04:47 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spp.dll
2014-05-16 18:34 - 2014-03-08 04:12 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2014-05-16 18:34 - 2014-03-08 04:04 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2014-05-16 18:34 - 2014-03-08 03:41 - 00412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2014-05-16 18:34 - 2014-03-08 03:40 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2014-05-16 18:34 - 2014-03-08 03:25 - 00264192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2014-05-16 18:34 - 2014-03-08 03:04 - 00717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2014-05-16 18:34 - 2014-03-08 02:58 - 00567296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2014-05-16 18:34 - 2014-03-06 11:34 - 00113648 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll
2014-05-16 18:34 - 2014-03-06 09:39 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2014-05-16 18:34 - 2014-03-06 08:19 - 00094016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll
2014-05-16 18:34 - 2014-03-06 07:35 - 00406512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2014-05-16 18:34 - 2014-03-06 06:29 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2014-05-16 18:34 - 2014-03-06 06:24 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2014-05-16 18:34 - 2014-03-06 06:24 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IPMIDrv.sys
2014-05-16 18:34 - 2014-03-06 06:24 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2014-05-16 18:34 - 2014-03-06 06:22 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2014-05-16 18:34 - 2014-03-06 06:22 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2014-05-16 18:34 - 2014-03-06 06:19 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2014-05-16 18:34 - 2014-03-06 06:19 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvcfg.exe
2014-05-16 18:34 - 2014-03-06 06:19 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpipreg.sys
2014-05-16 18:34 - 2014-03-06 06:08 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe
2014-05-16 18:34 - 2014-03-06 06:08 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\l2gpstore.dll
2014-05-16 18:34 - 2014-03-06 05:41 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevPropMgr.dll
2014-05-16 18:34 - 2014-03-06 05:38 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2014-05-16 18:34 - 2014-03-06 05:37 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2014-05-16 18:34 - 2014-03-06 05:28 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanhlp.dll
2014-05-16 18:34 - 2014-03-06 05:10 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\l2gpstore.dll
2014-05-16 18:34 - 2014-03-06 05:09 - 00098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvinst.exe
2014-05-16 18:34 - 2014-03-06 04:47 - 01057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2014-05-16 18:34 - 2014-03-06 04:46 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
2014-05-16 18:34 - 2014-03-06 04:44 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2014-05-16 18:34 - 2014-03-06 04:08 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2014-05-16 18:34 - 2014-03-06 03:57 - 00443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2014-05-16 18:34 - 2014-03-06 03:32 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2014-05-16 18:34 - 2014-03-06 03:27 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2014-05-16 18:34 - 2014-03-06 03:24 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlangpui.dll
2014-05-16 18:34 - 2014-03-06 03:23 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWfdProvider.dll
2014-05-16 18:34 - 2014-03-06 03:13 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2014-05-16 18:34 - 2014-03-06 03:13 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2014-05-16 18:34 - 2014-03-06 03:11 - 02030080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2014-05-16 18:34 - 2014-03-06 03:06 - 00386560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlangpui.dll
2014-05-16 18:34 - 2014-03-06 03:01 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2014-05-16 18:34 - 2014-03-06 02:51 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2014-05-16 18:34 - 2014-03-04 09:15 - 00428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2014-05-16 18:34 - 2014-03-04 09:14 - 00360512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2014-05-16 18:34 - 2014-03-04 08:10 - 00355832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2014-05-16 18:34 - 2014-03-04 04:08 - 00299008 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2014-05-16 18:34 - 2014-03-04 03:56 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
2014-05-16 18:34 - 2014-03-04 03:39 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2014-05-16 18:34 - 2014-03-04 03:15 - 00542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2014-05-16 18:34 - 2014-03-04 03:05 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2014-05-16 18:34 - 2014-03-04 03:03 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2014-05-16 18:34 - 2014-03-04 02:54 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2014-05-16 18:34 - 2014-02-06 19:59 - 00425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2014-05-16 18:34 - 2014-02-06 18:26 - 00313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2014-05-16 18:34 - 2013-12-23 20:28 - 00262656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll
2014-05-16 18:34 - 2013-12-23 20:26 - 00325632 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll
2014-05-16 18:33 - 2014-02-26 03:29 - 02678784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-05-16 17:56 - 2014-05-16 17:57 - 00000000 ____D () C:\Users\Marcello Simões\Desktop\Jogos Online
2014-05-16 17:53 - 2014-05-16 17:58 - 00000000 ____D () C:\Users\Marcello Simões\Desktop\Steam
2014-05-16 17:53 - 2014-05-16 17:53 - 00000000 ____D () C:\Users\Marcello Simões\Desktop\VIVO
2014-05-16 17:39 - 2014-05-17 12:48 - 00165659 _____ () C:\MyXML.xml
2014-05-16 17:38 - 2014-03-10 18:17 - 00128288 _____ (IObit) C:\WINDOWS\system32\IObitSmartDefragExtension.dll
2014-05-16 17:38 - 2013-11-19 16:52 - 00034080 _____ (IObit) C:\WINDOWS\system32\SmartDefragBootTime.exe
2014-05-16 17:32 - 2014-05-16 17:32 - 00839896 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt630x64.sys
2014-05-16 17:32 - 2014-05-16 17:32 - 00073800 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2014-05-16 17:32 - 2014-05-16 17:32 - 00000000 ____H () C:\Users\Todos os Usuários\DP45977C.lfl
2014-05-16 17:32 - 2014-05-16 17:32 - 00000000 ____H () C:\ProgramData\DP45977C.lfl
2014-05-16 17:30 - 2014-05-16 17:30 - 56270848 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2014-05-16 17:30 - 2014-05-16 17:30 - 28310104 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioVnA64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 14737496 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 07164176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 06217904 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 03872984 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2014-05-16 17:30 - 2014-05-16 17:30 - 02825432 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 02792152 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkAPO64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 02770976 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 02101848 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 02037336 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 01958616 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2014-05-16 17:30 - 2014-05-16 17:30 - 01938608 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 01932888 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek264.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 01419376 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 01286872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 01033304 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 01024216 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 00947760 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 00946392 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 00757301 _____ () C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2014-05-16 17:30 - 2014-05-16 17:30 - 00663296 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 00662784 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 00624344 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 00501184 _____ (DTS) C:\WINDOWS\system32\DTSU2PLFX64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 00487360 _____ (DTS) C:\WINDOWS\system32\DTSU2PGFX64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 00434960 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 00415680 _____ (DTS) C:\WINDOWS\system32\DTSU2PREC64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 00313520 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 00260272 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 00209096 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 00141584 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 00124176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 00075024 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2014-05-16 17:29 - 2014-05-16 17:29 - 09889352 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RsCRIcon.dll
2014-05-16 17:29 - 2014-05-16 17:29 - 00313048 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RtsBaStor.sys
2014-05-16 17:26 - 2014-05-16 17:58 - 00000000 ____D () C:\Users\Marcello Simões\Desktop\ASUS
2014-05-16 17:12 - 2014-05-16 17:12 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-05-16 17:11 - 2014-05-16 17:11 - 01795952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2014-05-16 17:11 - 2014-05-16 17:11 - 00100312 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverx64.sys
2014-05-16 17:08 - 2014-05-16 22:30 - 00003234 _____ () C:\WINDOWS\System32\Tasks\Driver Booster Scan
2014-05-16 17:08 - 2014-05-16 22:30 - 00002874 _____ () C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (Marcello Simões)
2014-05-16 17:08 - 2014-05-16 22:30 - 00001192 _____ () C:\Users\Public\Desktop\Driver Booster.lnk
2014-05-16 17:08 - 2014-05-16 22:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster
2014-05-16 17:07 - 2014-05-16 17:07 - 00000000 ____D () C:\Users\Marcello Simões\AppData\Roaming\ProductData
2014-05-16 17:06 - 2011-11-21 18:59 - 00329800 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\Drivers\trufos.sys
2014-05-16 17:06 - 2011-03-24 15:36 - 00431176 _____ (BitDefender) C:\WINDOWS\system32\Drivers\bdfsfltr.sys
2014-05-16 17:05 - 2014-05-17 21:22 - 00000000 ____D () C:\Users\Todos os Usuários\IObit
2014-05-16 17:05 - 2014-05-17 21:22 - 00000000 ____D () C:\ProgramData\IObit
2014-05-16 17:05 - 2014-05-17 12:56 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-05-16 17:05 - 2014-05-17 12:54 - 00000000 ____D () C:\Users\Marcello Simões\AppData\Roaming\IObit
2014-05-16 17:05 - 2014-05-17 12:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare Ultimate 7
2014-05-16 17:05 - 2014-05-16 17:05 - 00000000 ____D () C:\Users\Todos os Usuários\{E1ED556E-3EA0-4F44-8BE7-CC5FB0F4B424}
2014-05-16 17:05 - 2014-05-16 17:05 - 00000000 ____D () C:\Users\Todos os Usuários\{D76294E6-03B8-4971-AF2E-3F846161A690}
2014-05-16 17:05 - 2014-05-16 17:05 - 00000000 ____D () C:\ProgramData\{E1ED556E-3EA0-4F44-8BE7-CC5FB0F4B424}
2014-05-16 17:05 - 2014-05-16 17:05 - 00000000 ____D () C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
2014-05-16 16:56 - 2014-05-16 17:04 - 64561352 _____ (IObit ) C:\Users\Marcello Simões\Downloads\asc-ultimate-setup.exe
2014-05-16 16:39 - 2014-05-16 17:41 - 00000000 ____D () C:\Program Files (x86)\Image Converter
2014-05-16 16:38 - 2014-05-16 16:38 - 00681736 _____ () C:\Users\Marcello Simões\Downloads\ImageEditorSetup (1).exe
2014-05-15 23:27 - 2014-05-12 16:40 - 00061112 _____ (StdLib) C:\WINDOWS\system32\Drivers\{9edd0ea8-2819-47c2-8320-b007d5996f8a}Gw64.sys
2014-05-15 18:12 - 2014-05-15 18:17 - 00003544 _____ () C:\WINDOWS\System32\Tasks\060184C3-9766-46a0-B258-F4518A0B2633
2014-05-15 18:08 - 2014-05-15 18:11 - 00000000 ____D () C:\Users\Marcello Simões\Documents\audio
2014-05-15 18:08 - 2014-05-15 18:09 - 00000000 ____D () C:\Users\Marcello Simões\AppData\Roaming\KastorFreeAudioConverter
2014-05-15 18:08 - 2014-05-15 18:08 - 00001270 _____ () C:\Users\Marcello Simões\Desktop\Kastor Free Mp3 M4a Wma Converter.lnk
2014-05-15 18:08 - 2014-05-15 18:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kastor Free Mp3 M4a Wma Converter
2014-05-15 18:08 - 2014-05-15 18:08 - 00000000 ____D () C:\Program Files (x86)\Kastor Free Mp3 M4a Wma Converter
2014-05-15 18:07 - 2014-05-15 18:07 - 02697456 _____ (KastorSoft ) C:\Users\Marcello Simões\Downloads\Setup_FreeAudioConverter.exe
2014-05-15 18:06 - 2014-05-15 18:06 - 00628104 _____ () C:\Users\Marcello Simões\Downloads\kastor-free-mp3-m4a-wma-converter-14-32-bits.exe
2014-05-15 17:47 - 2014-05-15 17:47 - 00028160 ___SH () C:\Users\Marcello Simões\Desktop\Thumbs.db
2014-05-15 17:43 - 2014-05-17 21:58 - 00003982 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{C42E06A5-FBF9-44BC-920F-D798B380DD00}
2014-05-15 17:42 - 2014-05-15 17:43 - 00000000 ____D () C:\Users\Marcello Simões\AppData\Roaming\FreeAudioPack
2014-05-15 17:42 - 2014-05-15 17:42 - 00001348 _____ () C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free mp3 Wma Converter.lnk
2014-05-15 17:42 - 2011-09-29 14:20 - 01986560 _____ (NCT Company Ltd.) C:\WINDOWS\SysWOW64\AudFile.dll
2014-05-15 17:42 - 2011-09-29 14:20 - 01212416 _____ (NCT Company Ltd.) C:\WINDOWS\SysWOW64\AudioInfos.dll
2014-05-15 17:42 - 2011-09-29 14:20 - 00458752 _____ (NCT Company Ltd.) C:\WINDOWS\SysWOW64\AudPlayer.dll
2014-05-15 17:42 - 2011-09-29 14:20 - 00348160 _____ (NCT Company Ltd.) C:\WINDOWS\SysWOW64\WMAFile.dll
2014-05-15 17:42 - 2011-09-29 14:20 - 00307200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr70.dll
2014-05-15 17:42 - 2011-09-29 14:20 - 00116296 _____ () C:\WINDOWS\SysWOW64\NCTWMAProfiles.prx
2014-05-15 17:42 - 2011-09-29 14:19 - 01081616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscomctl.ocx
2014-05-15 17:42 - 2011-09-29 14:19 - 00662288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSCOMCT2.OCX
2014-05-15 17:42 - 2011-09-29 14:19 - 00224016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TABCTL32.OCX
2014-05-15 17:42 - 2011-09-29 14:19 - 00152848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\COMDLG32.OCX
2014-05-15 17:42 - 2011-09-29 14:19 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSCMCFR.DLL
2014-05-15 17:42 - 2011-09-29 14:19 - 00119568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VB6FR.DLL
2014-05-15 17:42 - 2011-09-29 14:19 - 00115920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinet.OCX
2014-05-15 17:42 - 2011-09-29 14:19 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VB6STKIT.DLL
2014-05-15 17:42 - 2011-09-29 14:19 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Mscc2fr.dll
2014-05-15 17:42 - 2011-09-29 14:19 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CMDLGFR.DLL
2014-05-15 17:42 - 2011-09-29 14:19 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TABCTFR.DLL
2014-05-15 17:42 - 2011-09-29 14:19 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetfr.DLL
2014-05-15 17:41 - 2014-05-15 18:02 - 00000000 ____D () C:\Program Files (x86)\Free mp3 Wma Converter
2014-05-15 17:39 - 2014-05-15 17:39 - 00508632 _____ (r-installer) C:\Users\Marcello Simões\Downloads\Free Mp3 Wma Converter.exe
2014-05-12 06:47 - 2014-05-18 00:32 - 00000000 __RDO () C:\Users\Marcello Simões\SkyDrive
2014-05-11 21:56 - 2014-05-16 16:45 - 00000000 ____D () C:\WINDOWS\Minidump
2014-05-09 13:21 - 2014-05-17 15:44 - 00000000 ____D () C:\Users\Marcello Simões\AppData\Local\LogMeIn Hamachi
2014-05-09 13:21 - 2014-05-09 13:21 - 00000000 ____D () C:\Users\Todos os Usuários\LogMeIn
2014-05-09 13:21 - 2014-05-09 13:21 - 00000000 ____D () C:\Users\Marcello Simões\AppData\Local\LogMeIn
2014-05-09 13:21 - 2014-05-09 13:21 - 00000000 ____D () C:\ProgramData\LogMeIn
2014-05-09 13:20 - 2014-05-09 13:20 - 00000940 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-05-09 13:20 - 2014-05-09 13:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-05-09 13:20 - 2014-05-09 13:20 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-05-09 13:15 - 2014-05-09 13:17 - 08220672 _____ () C:\Users\Marcello Simões\Downloads\hamachi.msi
2014-05-09 12:56 - 2014-05-09 13:06 - 33172507 _____ () C:\Users\Marcello Simões\Downloads\PhoeniixGamer - Cube World.rar
2014-05-08 23:53 - 2014-05-08 23:53 - 00000666 _____ () C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wallpaper.lnk
2014-05-08 23:38 - 2014-05-17 23:54 - 00000000 ____D () C:\Users\Marcello Simões\Desktop\Wallpaper
2014-04-29 13:26 - 2014-04-29 13:26 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-04-29 13:26 - 2014-04-29 13:26 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll

==================== One Month Modified Files and Folders =======

2014-05-18 00:44 - 2014-05-18 00:44 - 00015768 _____ () C:\Users\Marcello Simões\Downloads\FRST.txt
2014-05-18 00:44 - 2014-05-18 00:44 - 00000000 ____D () C:\FRST
2014-05-18 00:44 - 2014-05-18 00:43 - 02067456 _____ (Farbar) C:\Users\Marcello Simões\Downloads\FRST64.exe
2014-05-18 00:42 - 2013-10-28 16:32 - 00000000 ____D () C:\Users\Marcello Simões\AppData\Roaming\Skype
2014-05-18 00:40 - 2014-04-10 16:24 - 01713794 _____ () C:\WINDOWS\WindowsUpdate.log
2014-05-18 00:36 - 2013-08-10 15:42 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2690360052-3579935041-4268471611-1002
2014-05-18 00:33 - 2014-05-17 16:07 - 00002205 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-05-18 00:32 - 2014-05-12 06:47 - 00000000 __RDO () C:\Users\Marcello Simões\SkyDrive
2014-05-18 00:32 - 2013-08-10 17:41 - 00001100 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-18 00:30 - 2013-10-25 18:52 - 00000439 _____ () C:\WINDOWS\system32\Drivers\etc\hosts.ics
2014-05-18 00:29 - 2014-05-17 21:00 - 00003908 _____ () C:\WINDOWS\PFRO.log
2014-05-18 00:29 - 2014-01-16 02:24 - 00000000 ____D () C:\Users\Todos os Usuários\NVIDIA
2014-05-18 00:29 - 2014-01-16 02:24 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-05-18 00:29 - 2013-08-22 11:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-05-18 00:29 - 2013-08-22 10:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-05-18 00:28 - 2014-05-18 00:28 - 00001304 _____ () C:\Users\Marcello Simões\Desktop\FIX.txt
2014-05-18 00:26 - 2014-05-18 00:27 - 00001306 _____ () C:\Users\Marcello Simões\Desktop\ZHPFixReport.txt
2014-05-18 00:26 - 2014-05-17 22:36 - 00000000 ____D () C:\Users\Marcello Simões\AppData\Roaming\ZHP
2014-05-18 00:26 - 2014-05-17 22:36 - 00000000 ____D () C:\Program Files (x86)\ZHPDiag
2014-05-18 00:14 - 2013-08-10 17:41 - 00001104 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-18 00:04 - 2014-05-18 00:04 - 00029583 _____ () C:\Users\Marcello Simões\Desktop\ZHPDiag.txt
2014-05-18 00:03 - 2014-05-17 22:37 - 00000040 _____ () C:\Users\Marcello
2014-05-18 00:00 - 2013-08-22 12:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-05-17 23:54 - 2014-05-08 23:38 - 00000000 ____D () C:\Users\Marcello Simões\Desktop\Wallpaper
2014-05-17 22:42 - 2013-08-10 14:44 - 00000000 ____D () C:\Users\Marcello Simões\Desktop\Marcello
2014-05-17 22:36 - 2014-05-17 22:36 - 00002009 _____ () C:\Users\Marcello Simões\Desktop\ZHPFix.lnk
2014-05-17 22:36 - 2014-05-17 22:36 - 00001878 _____ () C:\Users\Marcello Simões\Desktop\ZHPDiag.lnk
2014-05-17 22:36 - 2014-05-17 22:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
2014-05-17 22:35 - 2014-05-17 22:35 - 06779861 _____ (Nicolas Coolman ) C:\Users\Marcello Simões\Downloads\ZHPDiag2.exe
2014-05-17 22:21 - 2014-05-17 22:21 - 00000786 _____ () C:\Users\Marcello Simões\Desktop\JRT.txt
2014-05-17 22:18 - 2014-05-17 22:18 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-05-17 22:17 - 2014-05-17 22:17 - 01016261 _____ (Thisisu) C:\Users\Marcello Simões\Downloads\JRT.exe
2014-05-17 22:06 - 2014-05-17 21:57 - 00016159 _____ () C:\zoek-results.log
2014-05-17 22:04 - 2014-05-17 22:04 - 00000000 ____D () C:\Users\Marcello Sim§es\AppData\Roaming\Macromedia
2014-05-17 22:04 - 2014-05-17 22:04 - 00000000 ____D () C:\Users\Marcello Sim§es
2014-05-17 22:03 - 2014-05-17 21:57 - 00000000 ____D () C:\zoek_backup
2014-05-17 22:02 - 2014-05-17 22:02 - 00005425 _____ () C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AdwCleaner.lnk
2014-05-17 22:01 - 2014-05-17 22:01 - 00000000 _____ () C:\Users\Marcello Simões\Desktop\Zoek Relatorio.txt
2014-05-17 21:58 - 2014-05-15 17:43 - 00003982 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{C42E06A5-FBF9-44BC-920F-D798B380DD00}
2014-05-17 21:58 - 2014-03-22 15:53 - 00000986 _____ () C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2690360052-3579935041-4268471611-1002UA.job
2014-05-17 21:57 - 2014-05-17 22:04 - 00024064 _____ () C:\WINDOWS\zoek-delete.exe
2014-05-17 21:56 - 2014-05-17 21:56 - 01285120 _____ () C:\Users\Marcello Simões\Downloads\zoek.exe
2014-05-17 21:30 - 2014-05-17 21:28 - 00000000 ____D () C:\AdwCleaner
2014-05-17 21:29 - 2014-05-17 12:53 - 00000316 _____ () C:\WINDOWS\Tasks\Uninstaller_SkipUac_Administrator.job
2014-05-17 21:28 - 2014-05-17 21:27 - 01325827 _____ () C:\Users\Marcello Simões\Downloads\AdwCleaner.exe
2014-05-17 21:22 - 2014-05-16 17:05 - 00000000 ____D () C:\Users\Todos os Usuários\IObit
2014-05-17 21:22 - 2014-05-16 17:05 - 00000000 ____D () C:\ProgramData\IObit
2014-05-17 20:42 - 2013-12-06 15:42 - 00000000 ____D () C:\Program Files\TeamSpeak 3 Client
2014-05-17 16:12 - 2014-05-17 16:12 - 00001804 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\YAC.lnk
2014-05-17 16:12 - 2014-05-17 16:12 - 00000000 ____D () C:\WINDOWS\system32\log
2014-05-17 16:12 - 2014-05-17 16:10 - 13118120 _____ (Elex do Brasil Participações Ltda) C:\Users\Marcello Simões\Downloads\YAC_4.3.75.exe
2014-05-17 16:07 - 2013-08-10 17:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-05-17 15:59 - 2014-05-17 15:59 - 00000000 __SHD () C:\Users\Marcello Simões\AppData\Local\EmieUserList
2014-05-17 15:59 - 2014-05-17 15:59 - 00000000 __SHD () C:\Users\Marcello Simões\AppData\Local\EmieSiteList
2014-05-17 15:58 - 2014-03-22 15:53 - 00000964 _____ () C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2690360052-3579935041-4268471611-1002Core.job
2014-05-17 15:54 - 2014-05-17 15:54 - 00000000 ____D () C:\Users\Marcello Simões\Desktop\revouninstaller-portable
2014-05-17 15:53 - 2014-01-02 02:56 - 00513024 ___SH () C:\Users\Marcello Simões\Downloads\Thumbs.db
2014-05-17 15:52 - 2014-05-17 15:51 - 03007700 _____ () C:\Users\Marcello Simões\Downloads\revouninstaller.zip
2014-05-17 15:44 - 2014-05-09 13:21 - 00000000 ____D () C:\Users\Marcello Simões\AppData\Local\LogMeIn Hamachi
2014-05-17 15:24 - 2013-12-06 15:43 - 00000000 ____D () C:\Users\Marcello Simões\AppData\Roaming\TS3Client
2014-05-17 13:09 - 2013-08-22 12:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-05-17 12:56 - 2014-05-16 17:05 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-05-17 12:55 - 2014-05-17 12:52 - 00006071 _____ () C:\ASCInit.log
2014-05-17 12:54 - 2014-05-16 17:05 - 00000000 ____D () C:\Users\Marcello Simões\AppData\Roaming\IObit
2014-05-17 12:53 - 2014-05-17 12:53 - 00002436 _____ () C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_Administrator
2014-05-17 12:53 - 2014-05-17 12:53 - 00001260 _____ () C:\Users\Public\Desktop\IObit Uninstaller.lnk
2014-05-17 12:53 - 2014-05-17 12:53 - 00000000 ____D () C:\WINDOWS\Tasks\ImCleanDisabled
2014-05-17 12:51 - 2014-05-16 17:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare Ultimate 7
2014-05-17 12:48 - 2014-05-16 17:39 - 00165659 _____ () C:\MyXML.xml
2014-05-17 12:48 - 2013-11-14 04:26 - 01797166 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-05-17 12:48 - 2013-11-14 04:14 - 00774900 _____ () C:\WINDOWS\system32\prfh0416.dat
2014-05-17 12:48 - 2013-11-14 04:14 - 00158494 _____ () C:\WINDOWS\system32\prfc0416.dat
2014-05-17 12:47 - 2014-05-17 12:47 - 00000000 ____D () C:\Users\Usuário Padrão\AppData\Roaming\IObit
2014-05-17 12:47 - 2014-05-17 12:47 - 00000000 ____D () C:\Users\Default\AppData\Roaming\IObit
2014-05-17 12:47 - 2014-05-17 12:47 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\IObit
2014-05-17 02:24 - 2013-08-10 15:36 - 00000000 ___RD () C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-17 02:24 - 2013-08-10 15:36 - 00000000 ___RD () C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-17 02:21 - 2013-08-22 12:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-05-17 02:21 - 2013-08-22 12:36 - 00000000 ___RD () C:\Users\Usuário Padrão\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-05-17 02:21 - 2013-08-22 12:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-05-17 02:21 - 2013-08-22 12:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-05-17 02:21 - 2013-08-22 12:36 - 00000000 ____D () C:\WINDOWS\WinStore
2014-05-17 02:21 - 2013-08-22 12:36 - 00000000 ____D () C:\Program Files\Windows Defender
2014-05-17 02:21 - 2013-08-22 12:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-05-16 22:30 - 2014-05-16 17:08 - 00003234 _____ () C:\WINDOWS\System32\Tasks\Driver Booster Scan
2014-05-16 22:30 - 2014-05-16 17:08 - 00002874 _____ () C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (Marcello Simões)
2014-05-16 22:30 - 2014-05-16 17:08 - 00001192 _____ () C:\Users\Public\Desktop\Driver Booster.lnk
2014-05-16 22:30 - 2014-05-16 17:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster
2014-05-16 22:28 - 2014-05-16 22:27 - 16527392 _____ (IObit ) C:\Users\Marcello Simões\Downloads\driver_booster_setup.exe
2014-05-16 22:25 - 2014-05-16 22:25 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-05-16 22:25 - 2014-05-16 22:25 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-05-16 22:08 - 2013-08-22 12:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-05-16 21:10 - 2013-08-22 11:44 - 00345464 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ___RD () C:\Users\Usuário Padrão\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ____D () C:\WINDOWS\system32\zh-HK
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ____D () C:\WINDOWS\system32\uk-UA
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ____D () C:\WINDOWS\system32\tr-TR
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ____D () C:\WINDOWS\system32\th-TH
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ____D () C:\WINDOWS\system32\SystemResetPlatform
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ____D () C:\WINDOWS\system32\sr-Latn-RS
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ____D () C:\WINDOWS\system32\sr-Latn-CS
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ____D () C:\WINDOWS\system32\sl-SI
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ____D () C:\WINDOWS\system32\sk-SK
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ____D () C:\WINDOWS\system32\setup
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ____D () C:\WINDOWS\system32\ro-RO
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ____D () C:\WINDOWS\system32\migwiz
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ____D () C:\WINDOWS\system32\lv-LV
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ____D () C:\WINDOWS\system32\lt-LT
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ____D () C:\WINDOWS\system32\hr-HR
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ____D () C:\WINDOWS\system32\he-IL
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ____D () C:\WINDOWS\system32\et-EE
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ____D () C:\WINDOWS\system32\en-GB
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ____D () C:\WINDOWS\system32\bg-BG
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ____D () C:\WINDOWS\system32\ar-SA
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ____D () C:\WINDOWS\PolicyDefinitions
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ____D () C:\WINDOWS\MediaViewer
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ____D () C:\WINDOWS\FileManager
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ____D () C:\WINDOWS\Camera
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ____D () C:\Program Files\Windows Portable Devices
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ____D () C:\Program Files\Windows Multimedia Platform
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ____D () C:\Program Files (x86)\Windows Portable Devices
2014-05-16 21:06 - 2013-08-22 12:36 - 00000000 ____D () C:\Program Files (x86)\Windows Multimedia Platform
2014-05-16 21:06 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\oobe
2014-05-16 21:06 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\Dism
2014-05-16 21:06 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\system32\Sysprep
2014-05-16 21:06 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\system32\oobe
2014-05-16 21:06 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\system32\Dism
2014-05-16 21:06 - 2013-08-22 10:36 - 00000000 ____D () C:\WINDOWS\servicing
2014-05-16 20:45 - 2014-05-16 20:45 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-05-16 20:45 - 2014-05-16 20:45 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-05-16 20:45 - 2014-05-16 20:45 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-05-16 20:45 - 2014-05-16 20:45 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-05-16 20:45 - 2014-05-16 20:45 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-05-16 20:45 - 2014-05-16 20:45 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-05-16 20:45 - 2014-05-16 20:45 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-05-16 20:45 - 2014-05-16 20:45 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-05-16 20:44 - 2014-05-16 20:44 - 00233912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2014-05-16 20:44 - 2014-05-16 20:44 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-05-16 20:44 - 2014-05-16 20:44 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-05-16 19:53 - 2014-01-16 03:21 - 00000000 ___DC () C:\WINDOWS\Panther
2014-05-16 17:58 - 2014-05-16 17:53 - 00000000 ____D () C:\Users\Marcello Simões\Desktop\Steam
2014-05-16 17:58 - 2014-05-16 17:26 - 00000000 ____D () C:\Users\Marcello Simões\Desktop\ASUS
2014-05-16 17:57 - 2014-05-16 17:56 - 00000000 ____D () C:\Users\Marcello Simões\Desktop\Jogos Online
2014-05-16 17:53 - 2014-05-16 17:53 - 00000000 ____D () C:\Users\Marcello Simões\Desktop\VIVO
2014-05-16 17:41 - 2014-05-16 16:39 - 00000000 ____D () C:\Program Files (x86)\Image Converter
2014-05-16 17:32 - 2014-05-16 17:32 - 00839896 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt630x64.sys
2014-05-16 17:32 - 2014-05-16 17:32 - 00073800 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2014-05-16 17:32 - 2014-05-16 17:32 - 00000000 ____H () C:\Users\Todos os Usuários\DP45977C.lfl
2014-05-16 17:32 - 2014-05-16 17:32 - 00000000 ____H () C:\ProgramData\DP45977C.lfl
2014-05-16 17:32 - 2014-01-16 02:24 - 00109544 _____ () C:\WINDOWS\system32\Drivers\RTWAVES30.dat
2014-05-16 17:31 - 2014-01-16 02:24 - 00000000 ____D () C:\WINDOWS\SysWOW64\RTCOM
2014-05-16 17:30 - 2014-05-16 17:30 - 56270848 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2014-05-16 17:30 - 2014-05-16 17:30 - 28310104 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioVnA64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 14737496 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 07164176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 06217904 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 03872984 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2014-05-16 17:30 - 2014-05-16 17:30 - 02825432 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 02792152 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkAPO64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 02770976 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 02101848 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 02037336 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 01958616 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2014-05-16 17:30 - 2014-05-16 17:30 - 01938608 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 01932888 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek264.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 01419376 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 01286872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 01033304 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 01024216 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 00947760 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 00946392 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 00757301 _____ () C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2014-05-16 17:30 - 2014-05-16 17:30 - 00663296 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 00662784 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 00624344 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 00501184 _____ (DTS) C:\WINDOWS\system32\DTSU2PLFX64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 00487360 _____ (DTS) C:\WINDOWS\system32\DTSU2PGFX64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 00434960 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 00415680 _____ (DTS) C:\WINDOWS\system32\DTSU2PREC64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 00313520 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 00260272 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 00209096 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 00141584 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 00124176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2014-05-16 17:30 - 2014-05-16 17:30 - 00075024 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2014-05-16 17:29 - 2014-05-16 17:29 - 09889352 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RsCRIcon.dll
2014-05-16 17:29 - 2014-05-16 17:29 - 00313048 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RtsBaStor.sys
2014-05-16 17:12 - 2014-05-16 17:12 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-05-16 17:11 - 2014-05-16 17:11 - 01795952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2014-05-16 17:11 - 2014-05-16 17:11 - 00100312 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverx64.sys
2014-05-16 17:07 - 2014-05-16 17:07 - 00000000 ____D () C:\Users\Marcello Simões\AppData\Roaming\ProductData
2014-05-16 17:06 - 2013-10-27 01:10 - 00000000 ____D () C:\Users\Marcello Simões\AppData\Roaming\Apple Computer
2014-05-16 17:05 - 2014-05-16 17:05 - 00000000 ____D () C:\Users\Todos os Usuários\{E1ED556E-3EA0-4F44-8BE7-CC5FB0F4B424}
2014-05-16 17:05 - 2014-05-16 17:05 - 00000000 ____D () C:\Users\Todos os Usuários\{D76294E6-03B8-4971-AF2E-3F846161A690}
2014-05-16 17:05 - 2014-05-16 17:05 - 00000000 ____D () C:\ProgramData\{E1ED556E-3EA0-4F44-8BE7-CC5FB0F4B424}
2014-05-16 17:05 - 2014-05-16 17:05 - 00000000 ____D () C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
2014-05-16 17:04 - 2014-05-16 16:56 - 64561352 _____ (IObit ) C:\Users\Marcello Simões\Downloads\asc-ultimate-setup.exe
2014-05-16 16:46 - 2013-12-22 20:41 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-05-16 16:45 - 2014-05-11 21:56 - 00000000 ____D () C:\WINDOWS\Minidump
2014-05-16 16:38 - 2014-05-16 16:38 - 00681736 _____ () C:\Users\Marcello Simões\Downloads\ImageEditorSetup (1).exe
2014-05-15 23:27 - 2012-07-26 02:26 - 00000226 _____ () C:\WINDOWS\win.ini
2014-05-15 18:17 - 2014-05-15 18:12 - 00003544 _____ () C:\WINDOWS\System32\Tasks\060184C3-9766-46a0-B258-F4518A0B2633
2014-05-15 18:11 - 2014-05-15 18:08 - 00000000 ____D () C:\Users\Marcello Simões\Documents\audio
2014-05-15 18:09 - 2014-05-15 18:08 - 00000000 ____D () C:\Users\Marcello Simões\AppData\Roaming\KastorFreeAudioConverter
2014-05-15 18:08 - 2014-05-15 18:08 - 00001270 _____ () C:\Users\Marcello Simões\Desktop\Kastor Free Mp3 M4a Wma Converter.lnk
2014-05-15 18:08 - 2014-05-15 18:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kastor Free Mp3 M4a Wma Converter
2014-05-15 18:08 - 2014-05-15 18:08 - 00000000 ____D () C:\Program Files (x86)\Kastor Free Mp3 M4a Wma Converter
2014-05-15 18:07 - 2014-05-15 18:07 - 02697456 _____ (KastorSoft ) C:\Users\Marcello Simões\Downloads\Setup_FreeAudioConverter.exe
2014-05-15 18:06 - 2014-05-15 18:06 - 00628104 _____ () C:\Users\Marcello Simões\Downloads\kastor-free-mp3-m4a-wma-converter-14-32-bits.exe
2014-05-15 18:02 - 2014-05-15 17:41 - 00000000 ____D () C:\Program Files (x86)\Free mp3 Wma Converter
2014-05-15 17:47 - 2014-05-15 17:47 - 00028160 ___SH () C:\Users\Marcello Simões\Desktop\Thumbs.db
2014-05-15 17:43 - 2014-05-15 17:42 - 00000000 ____D () C:\Users\Marcello Simões\AppData\Roaming\FreeAudioPack
2014-05-15 17:42 - 2014-05-15 17:42 - 00001348 _____ () C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free mp3 Wma Converter.lnk
2014-05-15 17:39 - 2014-05-15 17:39 - 00508632 _____ (r-installer) C:\Users\Marcello Simões\Downloads\Free Mp3 Wma Converter.exe
2014-05-15 14:58 - 2013-08-15 21:30 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-05-15 14:57 - 2013-08-10 17:45 - 93223848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-05-15 14:56 - 2013-08-22 12:36 - 00000000 ____D () C:\WINDOWS\system32\SecureBootUpdates
2014-05-12 16:40 - 2014-05-15 23:27 - 00061112 _____ (StdLib) C:\WINDOWS\system32\Drivers\{9edd0ea8-2819-47c2-8320-b007d5996f8a}Gw64.sys
2014-05-12 06:47 - 2014-02-01 15:37 - 00000000 __RDO () C:\Users\Marcello Simões\SkyDrive (3).old
2014-05-12 06:47 - 2014-01-16 02:31 - 00000000 ____D () C:\Users\Marcello Simões
2014-05-10 17:42 - 2013-08-22 10:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-05-09 13:21 - 2014-05-09 13:21 - 00000000 ____D () C:\Users\Todos os Usuários\LogMeIn
2014-05-09 13:21 - 2014-05-09 13:21 - 00000000 ____D () C:\Users\Marcello Simões\AppData\Local\LogMeIn
2014-05-09 13:21 - 2014-05-09 13:21 - 00000000 ____D () C:\ProgramData\LogMeIn
2014-05-09 13:20 - 2014-05-09 13:20 - 00000940 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-05-09 13:20 - 2014-05-09 13:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-05-09 13:20 - 2014-05-09 13:20 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-05-09 13:17 - 2014-05-09 13:15 - 08220672 _____ () C:\Users\Marcello Simões\Downloads\hamachi.msi
2014-05-09 13:06 - 2014-05-09 12:56 - 33172507 _____ () C:\Users\Marcello Simões\Downloads\PhoeniixGamer - Cube World.rar
2014-05-08 23:53 - 2014-05-08 23:53 - 00000666 _____ () C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wallpaper.lnk
2014-05-08 23:15 - 2013-11-25 00:36 - 00000000 ____D () C:\Users\Marcello Simões\Downloads\Client OVL
2014-05-08 23:15 - 2013-08-17 17:11 - 00000000 ___RD () C:\Users\Marcello Simões\Downloads\Microsoft.SkypeApp_kzf8qxf38zg5c!App
2014-05-08 16:09 - 2013-08-10 17:41 - 00004076 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-08 16:09 - 2013-08-10 17:41 - 00003840 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-05-08 10:28 - 2013-08-22 12:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2014-05-06 01:40 - 2014-05-16 22:34 - 23544320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-05-06 00:25 - 2014-05-16 22:34 - 17382912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-05-06 00:00 - 2014-05-16 22:34 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-05-05 23:10 - 2014-05-16 22:34 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-05-03 12:51 - 2014-04-13 01:06 - 00000000 ____D () C:\Users\Marcello Simões\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2014-05-03 12:51 - 2014-04-13 01:05 - 00000000 ____D () C:\Users\Marcello Simões\AppData\Local\Deployment
2014-05-02 10:30 - 2012-07-26 05:12 - 00000000 ____D () C:\WINDOWS\LiveKernelReports
2014-05-01 17:30 - 2013-08-22 12:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-05-01 17:30 - 2013-08-22 12:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-04-29 13:26 - 2014-04-29 13:26 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-04-29 13:26 - 2014-04-29 13:26 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll

Files to move or delete:
====================
C:\ProgramData\SetStretch.exe
C:\Users\Todos os Usuários\SetStretch.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-05-17 23:24

==================== End Of Log ============================
avatar
Muratori
Iniciante
Iniciante

Mensagens : 46
Reputação : 0
Data de inscrição : 17/05/2014

Voltar ao Topo Ir em baixo

Re: Remoção de Supra Savings

Mensagem por Muratori em Dom 18 Maio 2014, 00:50

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-05-2014
Ran by Marcello Simões at 2014-05-18 00:45:37
Running from C:\Users\Marcello Simões\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

Adobe Reader X MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.0.0 - Adobe Systems Incorporated)
ASUS Instant Connect (HKLM-x32\...\{89ECB85A-D933-4CEA-9116-5CBC9C2ED95B}) (Version: 1.2.8 - ASUS)
ASUS Instant Key (HKLM-x32\...\{D97A1B80-131F-4692-9543-E652956D8B99}) (Version: 1.0.5 - ASUS)
ASUS InstantOn (HKLM-x32\...\{749F674B-2674-47E8-879C-5626A06B2A91}) (Version: 3.0.2 - ASUS)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.1.4 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.1.9 - ASUS)
ASUS N Series Demo (HKLM-x32\...\{246B4AFF-6540-4B72-93E8-B9EB86D37589}) (Version: 1.0.0002 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 2.1.1 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 1.0.35 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.03.0004 - ASUS)
ASUS Tutor (HKLM-x32\...\{58172D66-2F69-4215-9AEC-ED8196023736}) (Version: 1.0.6 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 2.1.4 - ASUS)
ASUS Video Magic (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 6.0.4712 - CyberLink Corp.)
ASUS Video Magic (x32 Version: 6.0.4712 - CyberLink Corp.) Hidden
ASUS WebStorage Sync Agent (HKLM-x32\...\ASUS WebStorage) (Version: 1.1.9.120 - ASUS Cloud Corporation)
ASUSDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4126.52 - CyberLink Corp.)
ASUSDVD (x32 Version: 10.0.4126.52 - CyberLink Corp.) Hidden
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0023 - ASUS)
Atualizações da NVIDIA 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.07 - Piriform)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
CPUID CPU-Z 1.68 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
CyberLink MediaEspresso 6.5 (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.3019_44673 - CyberLink Corp.)
CyberLink MediaEspresso 6.5 (x32 Version: 6.5.3019_44673 - CyberLink Corp.) Hidden
CyberLink PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 8.0.4905d - CyberLink Corp.)
CyberLink PowerDirector (x32 Version: 8.0.4905d - CyberLink Corp.) Hidden
Dead Space™ (HKLM-x32\...\{4D87DC92-C328-46EC-A7B4-9C88129DC696}) (Version: 1.0.222.0 - Electronic Arts)
Dota 2 (HKLM-x32\...\Steam App 570) (Version: - Valve)
Driver Booster (HKLM-x32\...\Driver Booster_is1) (Version: 1.4 - IObit)
Facebook Video Calling 2.0.0.447 (HKLM-x32\...\{8DF41A9F-FE13-43E8-A003-5F9B55A011EE}) (Version: 2.0.447 - Skype Limited)
Free Mp3 M4a Wma Converter V 1.6 (HKLM-x32\...\Free Mp3 M4a Wma Converter_is1) (Version: 1.6.0.0 - KastorSoft)
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
Ghost Recon Phantoms - NA (HKCU\...\fc418bf9b18f76aa) (Version: 1.35.6405.2 - Ubisoft)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 34.0.1847.137 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3308 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.24.388.1 - Intel Corporation) Hidden
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 3.1.8.2434 - IObit)
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.188 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.188 - LogMeIn, Inc.) Hidden
March of War (HKLM-x32\...\Steam App 234310) (Version: - ISOTX)
Max Payne 3 (HKLM-x32\...\Steam App 204100) (Version: - Rockstar Studios)
Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
NVIDIA Driver de áudio HD 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Driver de gráficos 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 335.23 - NVIDIA Corporation)
NVIDIA Driver do 3D Vision 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 335.23 - NVIDIA Corporation)
NVIDIA GeForce Experience 1.8.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.8.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.147.1067 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Optimus Update 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA ShadowPlay 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Software do sistema PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3523 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.19 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.4.5.195 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\{030F4BB3-F3C3-4A74-905C-44672D1ECB76}) (Version: 0.47.284 - Overwolf)
Pacote de Driver do Windows - ASUS (ATP) Mouse (10/29/2012 1.0.0.148) (HKLM\...\C01F56FBD9B141017E63E2A1A141E59934D4DC67) (Version: 10/29/2012 1.0.0.148 - ASUS)
Painel de controle da NVIDIA 335.23 (Version: 335.23 - NVIDIA Corporation) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.206 - Qualcomm Atheros Communications)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.2.612.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7183 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.2.8400.27024 - Realtek Semiconductor Corp.)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
SHIELD Streaming (Version: 1.6.85 - NVIDIA Corporation) Hidden
Skype™ 6.14 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.14.104 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
SupraSavings (Version: 1.0.0.0 - SupraSavings) Hidden <==== ATTENTION
Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.0 - IObit)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
Tibia (HKLM-x32\...\Tibia_is1) (Version: 8.60 - CipSoft GmbH)
Tibia MULTI-ip changer (HKLM-x32\...\TMIPC) (Version: - Asprate)
Unity (HKLM-x32\...\Unity) (Version: - Unity Technologies ApS)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Vivo - Guia Vivo Internet versão 1.0 (HKLM-x32\...\{C2E8B9C9-677A-46E6-AEC7-9435B5BCA765}_is1) (Version: 1.0 - Vivo)
VIVO INTERNET (HKLM-x32\...\VIVO INTERNET) (Version: 16.002.10.18.149 - Huawei Technologies Co.,Ltd)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.41.1 - ASUS)
WinRAR 5.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)
World of Tanks (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812NA}_is1) (Version: - Wargaming.net)
ZHPDiag 2014 (HKLM-x32\...\ZHPDiag_is1) (Version: 2014 - Nicolas Coolman)

==================== Restore Points =========================

14-05-2014 01:36:48 Windows Update
16-05-2014 20:09:54 Driver Booster : Intel(R) Management Engine Interface
18-05-2014 00:57:56 zoek.exe restore point

==================== Hosts content: ==========================

2014-05-17 21:58 - 2014-05-17 21:58 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {00CF437A-2996-4E3F-B89F-8A0A5A543DE1} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2690360052-3579935041-4268471611-1002UA => C:\Users\Marcello Simões\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-03-22] (Facebook Inc.)
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {3E3A85E6-BC2F-41D4-99CA-1B83187F1338} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network => Sc.exe start wuauserv
Task: {44AB0E55-A61E-4791-915E-98E168579ACC} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-10-21] (Piriform Ltd)
Task: {48B2CFFA-F274-48CD-959C-8BED818BF6C5} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2012-09-17] (ASUS)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {4A4C2FCA-1308-48AE-93F3-7B5716950F5C} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-05-15] (Microsoft Corporation)
Task: {4D7C3ED4-F015-4959-89AA-2AD48B438CA9} - System32\Tasks\ASUS InstantOn Config => C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnCfg.exe [2012-08-06] (ASUS)
Task: {537750E3-1B35-45D0-AA76-047FA77636A2} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-2690360052-3579935041-4268471611-1002
Task: {632D02F0-709F-417D-9B76-7FF06D73C718} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2012-07-24] (ASUSTek Computer Inc.)
Task: {68EA312F-B41B-4505-B998-70830AA787B7} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6C323FF8-BDA5-4DE2-B59C-12E99C157F9B} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\Windows\system32\cleanmgr.exe [2014-02-22] (Microsoft Corporation)
Task: {6D777D31-28A0-4B52-89D5-2E023389B661} - System32\Tasks\Driver Booster Scan => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2014-03-07] (IObit)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {758534AC-3B7E-4C18-8B55-ACC9887F885A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-10] (Google Inc.)
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {804DC28A-0BD0-4FF3-BA06-DC586F50F0BE} - \Driver Booster Update No Task File <==== ATTENTION
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {90B50F95-ABA9-4D30-8C36-F08005910531} - System32\Tasks\ASUS Touchpad Launcher (x64) => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2012-10-31] (AsusTek)
Task: {9144435F-50AD-4CB7-AD2E-B0C2306075C8} - System32\Tasks\Driver Booster SkipUAC (Marcello Simões) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2014-05-09] (IObit)
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {BC8686E2-E6D4-42F9-A9B1-83E2B55ECB00} - System32\Tasks\060184C3-9766-46a0-B258-F4518A0B2633 => Cscript.exe "C:\ProgramData\Baidu Security\Duplicaterecord.js"
Task: {C0E27672-A2AB-4BBA-8EA0-37F5BD8E252F} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics
Task: {CC5D9578-4D55-45CC-86E0-39849431B07B} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2690360052-3579935041-4268471611-1002Core => C:\Users\Marcello Simões\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-03-22] (Facebook Inc.)
Task: {CECF4E81-0C48-464E-93BD-46C8346C90BC} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2012-08-22] (ASUSTeK Computer Inc.)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {DDCA592F-0F69-47F9-9934-6FD1BC29B8CB} - System32\Tasks\Uninstaller_SkipUac_Administrator => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2014-02-13] (IObit)
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {E8803657-252B-4D30-951A-7F08917DF1B2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-10] (Google Inc.)
Task: {F43F705F-626D-4B62-A941-45BB1BF7C504} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2690360052-3579935041-4268471611-1002Core.job => C:\Users\Marcello Simões\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2690360052-3579935041-4268471611-1002UA.job => C:\Users\Marcello Simões\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_Administrator.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe

==================== Loaded Modules (whitelisted) =============

2013-11-19 18:18 - 2014-03-04 11:35 - 00013088 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2014-01-16 02:24 - 2014-03-04 10:05 - 00116056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2011-03-14 12:27 - 2011-03-14 12:27 - 00346976 _____ () C:\ProgramData\DatacardService\HWDeviceService64.exe
2012-12-10 23:43 - 2009-04-17 07:01 - 00247152 _____ () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
2012-09-17 20:05 - 2012-09-17 20:05 - 00031360 _____ () C:\Program Files\ASUS\P4G\DevMng.dll
2012-09-17 20:05 - 2012-09-17 20:05 - 00028544 _____ () C:\Program Files\ASUS\P4G\plctrl.dll
2013-11-06 21:18 - 2013-11-06 21:18 - 00536576 _____ () C:\Program Files (x86)\VIVO INTERNET\VIVO INTERNET.exe
2013-12-18 16:03 - 2014-05-10 00:04 - 02857472 _____ () C:\Users\Marcello Simões\AppData\Roaming\pxgclient\pxgclient\client\pxgclient.exe
2013-11-06 21:18 - 2007-08-23 15:39 - 00014848 ____R () C:\Program Files (x86)\VIVO INTERNET\isaputrace.dll
2013-11-06 21:18 - 2010-08-30 08:42 - 00122880 _____ () C:\Program Files (x86)\VIVO INTERNET\DeviceMgrPlugin.dll
2013-11-06 21:18 - 2010-08-30 08:43 - 00057344 _____ () C:\Program Files (x86)\VIVO INTERNET\ConfigFilePlugin.dll
2013-11-06 21:18 - 2010-08-30 08:41 - 00147456 _____ () C:\Program Files (x86)\VIVO INTERNET\NetInfoPlugin.dll
2013-11-06 21:18 - 2010-08-30 08:40 - 00090112 _____ () C:\Program Files (x86)\VIVO INTERNET\DialUpPlugin.dll
2013-11-06 21:18 - 2010-08-30 08:35 - 01019904 _____ () C:\Program Files (x86)\VIVO INTERNET\NDISAPI.dll
2013-11-06 21:18 - 2010-08-30 08:31 - 00172032 _____ () C:\Program Files (x86)\VIVO INTERNET\DetectDev.dll
2013-11-06 21:18 - 2010-08-30 08:30 - 00598016 _____ () C:\Program Files (x86)\VIVO INTERNET\atcomm.dll
2013-11-06 21:18 - 2011-06-03 11:01 - 00065536 _____ () C:\Program Files (x86)\VIVO INTERNET\XCodec.dll
2013-11-06 21:18 - 2010-08-30 08:30 - 00061440 _____ () C:\Program Files (x86)\VIVO INTERNET\DeviceOperate.dll
2013-11-06 21:18 - 2010-08-30 08:45 - 00139264 _____ () C:\Program Files (x86)\VIVO INTERNET\LocaleMgrPlugin.dll
2013-11-06 21:18 - 2010-08-30 08:44 - 00032768 _____ () C:\Program Files (x86)\VIVO INTERNET\NotifyServicePlugin.dll
2013-11-06 21:18 - 2010-08-30 08:40 - 00253952 _____ () C:\Program Files (x86)\VIVO INTERNET\DeviceMgrUIPlugin.dll
2013-11-06 21:18 - 2007-07-31 14:50 - 00090112 ____R () C:\Program Files (x86)\VIVO INTERNET\FileManager.dll
2013-11-06 21:18 - 2010-08-30 08:44 - 00163840 _____ () C:\Program Files (x86)\VIVO INTERNET\SMSPlugin.dll
2013-11-19 18:18 - 2014-03-04 11:35 - 00014280 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
2012-12-10 23:20 - 2012-06-25 15:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2014-05-17 16:07 - 2014-05-07 20:29 - 00065352 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.137\chrome_elf.dll
2014-05-17 16:07 - 2014-05-07 20:29 - 00674632 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.137\libglesv2.dll
2014-05-17 16:07 - 2014-05-07 20:29 - 00093000 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.137\libegl.dll
2014-05-17 16:07 - 2014-05-07 20:29 - 04081480 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.137\pdf.dll
2014-05-17 16:07 - 2014-05-07 20:29 - 00390472 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.137\ppGoogleNaClPluginChrome.dll
2014-05-17 16:07 - 2014-05-07 20:29 - 01647432 _____ () C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.137\ffmpegsumo.dll
2013-12-18 16:00 - 2013-12-18 16:00 - 00025088 _____ () C:\Users\Marcello Simões\AppData\Roaming\pxgclient\pxgclient\client\libboost_chrono-mt.dll
2013-12-18 16:00 - 2013-12-18 16:00 - 00015360 _____ () C:\Users\Marcello Simões\AppData\Roaming\pxgclient\pxgclient\client\libboost_system-mt.dll
2013-12-18 16:00 - 2013-12-18 16:00 - 00081920 _____ () C:\Users\Marcello Simões\AppData\Roaming\pxgclient\pxgclient\client\libboost_thread_win32-mt.dll
2013-12-18 16:00 - 2013-12-18 16:00 - 00119822 _____ () C:\Users\Marcello Simões\AppData\Roaming\pxgclient\pxgclient\client\libgcc_s_dw2-1.dll
2013-12-18 16:00 - 2013-12-18 16:00 - 00413184 _____ () C:\Users\Marcello Simões\AppData\Roaming\pxgclient\pxgclient\client\glew32.dll
2013-12-18 16:00 - 2013-12-18 16:00 - 00155150 _____ () C:\Users\Marcello Simões\AppData\Roaming\pxgclient\pxgclient\client\libphysfs.dll
2013-12-18 16:00 - 2013-12-18 16:00 - 00949774 _____ () C:\Users\Marcello Simões\AppData\Roaming\pxgclient\pxgclient\client\libstdc++-6.dll
2013-12-18 16:00 - 2013-12-18 16:00 - 00041472 _____ () C:\Users\Marcello Simões\AppData\Roaming\pxgclient\pxgclient\client\libvorbisfile-3.dll
2013-12-18 16:03 - 2013-12-18 16:03 - 00106496 _____ () C:\Users\Marcello Simões\AppData\Roaming\pxgclient\pxgclient\client\zlib1.dll
2013-12-18 16:00 - 2014-01-08 15:15 - 00411713 _____ () C:\Users\Marcello Simões\AppData\Roaming\pxgclient\pxgclient\client\lua51.dll
2013-12-18 16:00 - 2013-12-18 16:00 - 00180736 _____ () C:\Users\Marcello Simões\AppData\Roaming\pxgclient\pxgclient\client\libvorbis-0.dll
2013-12-18 16:00 - 2013-12-18 16:00 - 00025614 _____ () C:\Users\Marcello Simões\AppData\Roaming\pxgclient\pxgclient\client\libogg-0.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\Marcello Simões\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\Marcello Simões\SkyDrive (2).old:ms-properties
AlternateDataStreams: C:\Users\Marcello Simões\SkyDrive (3).old:ms-properties
AlternateDataStreams: C:\Users\Marcello Simões\SkyDrive.old:ms-properties

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SAWFP => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SecureAssist => ""="service"

==================== EXE Association (whitelisted) =============


==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============

Name: Bluetooth Audio Device
Description: Bluetooth Audio Device
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Qualcomm Atheros Communications
Service: BTATH_A2DP
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Virtual Bluetooth Support (Include Audio)
Description: Virtual Bluetooth Support (Include Audio)
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Qualcomm Atheros Communications
Service: AthBTPort
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Bluetooth LWFLT Device
Description: Bluetooth LWFLT Device
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Qualcomm Atheros Communications
Service: BTATH_LWFLT
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver


==================== Event log errors: =========================

Application errors:
==================
Error: (05/18/2014 00:30:29 AM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcNvVAD initialization failed [6]

Error: (05/18/2014 00:30:29 AM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]

Error: (05/18/2014 00:28:42 AM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (EventID: 1) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (05/17/2014 11:58:52 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcNvVAD initialization failed [6]

Error: (05/17/2014 11:58:52 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]


System errors:
=============
Error: (05/18/2014 00:29:59 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço SAWFP devido ao seguinte erro:
%%2

Error: (05/18/2014 00:28:37 AM) (Source: DCOM) (EventID: 10010) (User: MARCELLO)
Description: Windows.Networking.BackgroundTransfer.Internal.NetworkChangeTask.ClassId.2

Error: (05/17/2014 11:58:22 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Não foi possível iniciar o serviço SAWFP devido ao seguinte erro:
%%2

Error: (05/17/2014 10:45:41 PM) (Source: DCOM) (EventID: 10010) (User: MARCELLO)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}

Error: (05/17/2014 10:45:11 PM) (Source: DCOM) (EventID: 10010) (User: MARCELLO)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}

Error: (05/17/2014 10:44:41 PM) (Source: DCOM) (EventID: 10010) (User: MARCELLO)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}

Error: (05/17/2014 10:44:11 PM) (Source: DCOM) (EventID: 10010) (User: MARCELLO)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}

Error: (05/17/2014 10:43:41 PM) (Source: DCOM) (EventID: 10010) (User: MARCELLO)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}

Error: (05/17/2014 10:43:11 PM) (Source: DCOM) (EventID: 10010) (User: MARCELLO)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}

Error: (05/17/2014 10:42:41 PM) (Source: DCOM) (EventID: 10010) (User: MARCELLO)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}


Microsoft Office Sessions:
=========================
Error: (05/18/2014 00:30:29 AM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcNvVAD initialization failed [6]

Error: (05/18/2014 00:30:29 AM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]

Error: (05/18/2014 00:28:42 AM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (EventID: 1) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (05/17/2014 11:58:52 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcNvVAD initialization failed [6]

Error: (05/17/2014 11:58:52 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]


CodeIntegrity Errors:
===================================
Date: 2014-05-15 18:22:48.493
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-05-15 18:22:48.432
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-05-15 18:22:47.188
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-05-15 18:22:47.131
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-05-15 18:22:47.076
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-05-15 18:22:46.940
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-05-15 18:22:46.886
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-05-15 18:22:46.826
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-05-15 18:22:36.358
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-05-15 18:22:36.302
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

Percentage of memory in use: 27%
Total physical RAM: 8077.62 MB
Available physical RAM: 5860.95 MB
Total Pagefile: 16269.62 MB
Available Pagefile: 13876.81 MB
Total Virtual: 131072 MB
Available Virtual: 131071.81 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:372.78 GB) (Free:238.99 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (Data) (Fixed) (Total:517.02 GB) (Free:499.81 GB) NTFS
Drive e: (VIVO INTERNET) (CDROM) (Total:0.05 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 932 GB) (Disk ID: 04A53D1B)

Partition: GPT Partition Type.

==================== End Of Log ============================
avatar
Muratori
Iniciante
Iniciante

Mensagens : 46
Reputação : 0
Data de inscrição : 17/05/2014

Voltar ao Topo Ir em baixo

Re: Remoção de Supra Savings

Mensagem por Muratori em Dom 18 Maio 2014, 00:51

Mano sério , muito obrigado por estar me ajudando , perdendo seu valiosíssimo tempo comigo . Obrigado
avatar
Muratori
Iniciante
Iniciante

Mensagens : 46
Reputação : 0
Data de inscrição : 17/05/2014

Voltar ao Topo Ir em baixo

Re: Remoção de Supra Savings

Mensagem por Power Max em Dom 18 Maio 2014, 01:34

Baixe o arquivo fixlist.txt que está anexado nesta postagem e salve-o na mesma pasta onde você deixou o Farbar (FRST64) que é esta pasta abaixo:
C:\Users\Marcello Simões\Downloads

Execute o FRST64. Clique no botão Fix.

Aguarde e ao final, o log Fixlog.txt será salvo.

Selecione, copie e cole o conteúdo deste Fixlog.txt em sua próxima resposta.

_________________

Caixa de Dicas
= Sempre com novos tutoriais e novidades em informática, tecnologia e variedades.

Fórum PC Brasil = O melhor da internet você encontra aqui.

Super Links = Mensagens de fé e esperança para o seu coração
avatar
Power Max
Colaborador
Colaborador

Mensagens : 9086
Reputação : 1499
Data de inscrição : 14/04/2009

Voltar ao Topo Ir em baixo

Re: Remoção de Supra Savings

Mensagem por Muratori em Dom 18 Maio 2014, 01:41

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 17-05-2014
Ran by Marcello Simões at 2014-05-18 01:41:10 Run:1
Running from C:\Users\Marcello Simões\Downloads
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
start
HKLM\...\Policies\Explorer: [NoControlPanel] 0
SearchScopes: HKCU - Web URL = [Você precisa estar registrado e conectado para ver este link.]
S3 BprotectEx; \??\C:\Windows\System32\drivers\BprotectEx.sys [X]
S3 PCFApiUtil; \??\C:\Program Files (x86)\Baidu Security\PC Faster\4.0.0.0\PCFApiUtil64.sys [X]
S2 SAWFP; \??\C:\WINDOWS\system32\Drivers\SAWFP64.sys [X]
2014-05-17 16:12 - 2014-05-17 16:12 - 00001804 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\YAC.lnk
2014-05-17 16:10 - 2014-05-17 16:12 - 13118120 _____ (Elex do Brasil Participações Ltda) C:\Users\Marcello Simões\Downloads\YAC_4.3.75.exe
2014-05-15 18:12 - 2014-05-15 18:17 - 00003544 _____ () C:\WINDOWS\System32\Tasks\060184C3-9766-46a0-B258-F4518A0B2633
C:\ProgramData\SetStretch.exe
C:\Users\Todos os Usuários\SetStretch.exe
SupraSavings (Version: 1.0.0.0 - SupraSavings) Hidden <==== ATTENTION
Task: {804DC28A-0BD0-4FF3-BA06-DC586F50F0BE} - \Driver Booster Update No Task File <==== ATTENTION
Task: {BC8686E2-E6D4-42F9-A9B1-83E2B55ECB00} - System32\Tasks\060184C3-9766-46a0-B258-F4518A0B2633 => Cscript.exe "C:\ProgramData\Baidu Security\Duplicaterecord.js"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SAWFP => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SecureAssist => ""="service"
end
*****************

HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoControlPanel => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\Web => Key deleted successfully.
HKCR\CLSID\Web => Key not found.
BprotectEx => Service deleted successfully.
PCFApiUtil => Service deleted successfully.
SAWFP => Service deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\YAC.lnk => Moved successfully.
C:\Users\Marcello Simões\Downloads\YAC_4.3.75.exe => Moved successfully.
C:\WINDOWS\System32\Tasks\060184C3-9766-46a0-B258-F4518A0B2633 => Moved successfully.
C:\ProgramData\SetStretch.exe => Moved successfully.
"C:\Users\Todos os Usuários\SetStretch.exe" => File/Directory not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{D12C40DB-CD7D-4D86-9285-5E2FE23693E4}\\SystemComponent => Value deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{804DC28A-0BD0-4FF3-BA06-DC586F50F0BE} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{804DC28A-0BD0-4FF3-BA06-DC586F50F0BE} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster Update => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{BC8686E2-E6D4-42F9-A9B1-83E2B55ECB00} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BC8686E2-E6D4-42F9-A9B1-83E2B55ECB00} => Key deleted successfully.
C:\Windows\System32\Tasks\060184C3-9766-46a0-B258-F4518A0B2633 not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\060184C3-9766-46a0-B258-F4518A0B2633 => Key deleted successfully.
HKLM\System\CurrentControlSet\Control\SafeBoot\Network\SAWFP => Key deleted successfully.
HKLM\System\CurrentControlSet\Control\SafeBoot\Network\SecureAssist => Key deleted successfully.

==== End of Fixlog ====
avatar
Muratori
Iniciante
Iniciante

Mensagens : 46
Reputação : 0
Data de inscrição : 17/05/2014

Voltar ao Topo Ir em baixo

Re: Remoção de Supra Savings

Mensagem por Conteúdo patrocinado


Conteúdo patrocinado


Voltar ao Topo Ir em baixo

Página 1 de 2 1, 2  Seguinte

Ver o tópico anterior Ver o tópico seguinte Voltar ao Topo


 
Permissão deste fórum:
Você não pode responder aos tópicos neste fórum