Fórum PC Brasil
Gostaria de reagir a esta mensagem? Crie uma conta em poucos cliques ou inicie sessão para continuar.

Implementa recursos de segurança e limpeza ao computador!

Flux RSS


Yahoo! 
MSN 
AOL 
Netvibes 
Bloglines 


Social bookmarking

Social bookmarking reddit      

Conservar e compartilhar o endereço de PC Seguro em seu site de social bookmarking

Conservar e compartilhar o endereço de Fórum PC Brasil em seu site de social bookmarking

Estatísticas
Temos 14810 usuários registrados
O último membro registrado é Josevinil

Os nossos membros postaram um total de 36047 mensagens em 3685 assuntos
Últimos assuntos
» Problema no disco rígido do Windows 11
por joram Seg 01 Abr 2024, 06:35

Quem está conectado?
11 usuários online :: 0 registrados, 0 invisíveis e 11 visitantes :: 1 motor de busca

Nenhum

O recorde de usuários online foi de 301 em Ter 26 Out 2021, 15:28
Procurar
 
 

Resultados por:
 

Rechercher Pesquisa avançada

Top dos mais postadores
Power Max
Remover Shetef solutions Vote_lcapRemover Shetef solutions Voting_barRemover Shetef solutions Vote_rcap 
joram
Remover Shetef solutions Vote_lcapRemover Shetef solutions Voting_barRemover Shetef solutions Vote_rcap 
Wings [In Memoriam]
Remover Shetef solutions Vote_lcapRemover Shetef solutions Voting_barRemover Shetef solutions Vote_rcap 
caedurodrigues
Remover Shetef solutions Vote_lcapRemover Shetef solutions Voting_barRemover Shetef solutions Vote_rcap 
Amigo Brasileiro
Remover Shetef solutions Vote_lcapRemover Shetef solutions Voting_barRemover Shetef solutions Vote_rcap 
luizvilarinho
Remover Shetef solutions Vote_lcapRemover Shetef solutions Voting_barRemover Shetef solutions Vote_rcap 
Danii
Remover Shetef solutions Vote_lcapRemover Shetef solutions Voting_barRemover Shetef solutions Vote_rcap 
Admin
Remover Shetef solutions Vote_lcapRemover Shetef solutions Voting_barRemover Shetef solutions Vote_rcap 
Danilo Marsaro
Remover Shetef solutions Vote_lcapRemover Shetef solutions Voting_barRemover Shetef solutions Vote_rcap 
Andreata
Remover Shetef solutions Vote_lcapRemover Shetef solutions Voting_barRemover Shetef solutions Vote_rcap 

maio 2024
SegTerQuaQuiSexSábDom
  12345
6789101112
13141516171819
20212223242526
2728293031  

Calendário Calendário

Palavras-chaves

vídeos  teclado  SOFTWARE  flash  2015  popup  excluir  desinstalar  SISPNCD  áudio  windows  adobe  notebook  2013  remoção  video  player  PARA  mcafee  virus  impressora  2025  game  instalação  placa  deletar  


Remover Shetef solutions

2 participantes

Fórum PC Brasil :: Segurança da Informação :: Tópicos Arquivados

Ir para baixo

Remover Shetef solutions Empty Remover Shetef solutions

Mensagem por santoselias Ter 15 Out 2013, 01:43


Alberto Nunes escreveu:
APOS ESTA PROCEDIMENTO O QUE DEVO FAZER????
Remover Shetef solutions 772309 Copie o conteúdo dos arquivos OTL.txt e Extras.txt e coloque aqui no seu tópico para que sejam analisados. Se não couber em uma só resposta, poste cada pedaço que couber em várias respostas.
[Tens de ter uma conta e sessão iniciada para poderes visualizar este link] logfile created on: 15/10/2013 01:14:58 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\eliass\Downloads
Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16721)
Locale: 00000416 | Country: Brasil | Language: PTB | Date Format: dd/MM/yyyy

3,38 Gb Total Physical Memory | 2,04 Gb Available Physical Memory | 60,25% Memory free
6,75 Gb Paging File | 4,96 Gb Available in Paging File | 73,36% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 463,77 Gb Total Space | 420,85 Gb Free Space | 90,74% Space Free | Partition Type: NTFS
Drive D: | 463,77 Gb Total Space | 452,00 Gb Free Space | 97,46% Space Free | Partition Type: NTFS
Drive G: | 3,77 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF

Computer Name: ELIASS-PC | User Name: eliass | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\eliass\Downloads\OTL (1).exe (OldTimer Tools)
PRC - C:\Users\eliass\AppData\Local\Apps\2.0\ZGZJ3AWR.1JC\QMZ0712Y.1B1\dell..tion_0f612f649c4a10af_0005.0003_d2152cbf7ce307ec\DellSystemDetect.exe (Dell)
PRC - C:\Windows\KMService.exe ()
PRC - C:\Windows\System32\srvany.exe ()
PRC - C:\Arquivos de Programas\Google\Chrome\Application\chrome.exe (Google Inc.)
PRC - C:\Users\eliass\AppData\Local\aHaskZ3\CashPartners.exe (CashPartners Company)
PRC - C:\Users\eliass\AppData\Local\Smartbar\Application\QuickShare.exe (Smartbar)
PRC - C:\Arquivos de Programas\Avira\AntiVir Desktop\avshadow.exe (Avira Operations GmbH & Co. KG)
PRC - C:\Arquivos de Programas\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
PRC - C:\Arquivos de Programas\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
PRC - C:\Arquivos de Programas\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
PRC - C:\Windows\System32\conhost.exe (Microsoft Corporation)
PRC - C:\Users\eliass\AppData\Local\keepvid.com.exe (keepvid.com Company)
PRC - C:\Arquivos de Programas\GbPlugin\GbpSv.exe (GAS Tecnologia)
PRC - C:\Arquivos de Programas\DAEMON Tools Pro\DTShellHlp.exe (Disc Soft Ltd)
PRC - C:\Windows\System32\consent.exe (Microsoft Corporation)
PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
PRC - C:\Arquivos de Programas\Dell Wireless\Ath_WlanAgent.exe (Atheros)
PRC - C:\Arquivos de Programas\Dell\QuickSet\quickset.exe (Dell Inc.)
PRC - C:\Arquivos de Programas\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
PRC - C:\Arquivos de Programas\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)


========== Modules (No Company Name) ==========

MOD - C:\Users\eliass\AppData\Local\Google\Chrome\User Data\PepperFlash\11.9.900.117\pepflashplayer.dll ()
MOD - C:\Windows\assembly\GAC_32\System.Data.SQLite\1.0.66.0__db937bc2d44ff139\System.Data.SQLite.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\Interop.SHDocVw\1.1.0.0__84542ff99aed6a4d\Interop.SHDocVw.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\ef0a534be135cd8f0d99d938d8b1814a\System.Windows.Forms.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Deployment\0a7b20934d7587787e7dae923d1614f4\System.Deployment.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\4eef5a3a4d0ed6d6fd882947a70df530\WindowsBase.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\29f3ae8d313e62b4daed1107ccd29f9f\System.Configuration.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\de6ee26de5e4f343509de7e92ab48ba6\CustomMarshalers.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\9a1bc983c28c695729b3e46acdc6933e\System.Management.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\45581138b36fd338c87813390775b65f\IAStorCommon.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\591b99d5681c59ed6c5e9544d7def0ea\IAStorUtil.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\3d075c3b7d099aca217beecac1f66b4b\System.Web.Services.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\d473c19e69818875b9c739cad8f386a5\System.Runtime.Remoting.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\764054efc88f51b54c8d7e44df26b671\System.Data.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\5970036570c1e44e8ae0f6f94c1039aa\System.EnterpriseServices.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\4ada2213cefea889a5ed6e2fb6839b93\System.Transactions.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\5aa44bce7933e4de09d935848f868a4b\System.Drawing.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\09db78d6068543df01862a023aca785a\System.Xml.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System\5d22a30e587e2cac106b81fb351e7c08\System.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\9a6c1b7af18b4d5a91dc7f8d6617522f\mscorlib.ni.dll ()
MOD - C:\Windows\assembly\GAC\Microsoft.mshtml\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.mshtml.dll ()
MOD - C:\Arquivos de Programas\Google\Chrome\Application\30.0.1599.69\ppgooglenaclpluginchrome.dll ()
MOD - C:\Arquivos de Programas\Google\Chrome\Application\30.0.1599.69\pdf.dll ()
MOD - C:\Arquivos de Programas\Google\Chrome\Application\30.0.1599.69\libglesv2.dll ()
MOD - C:\Arquivos de Programas\Google\Chrome\Application\30.0.1599.69\libegl.dll ()
MOD - C:\Arquivos de Programas\Google\Chrome\Application\30.0.1599.69\ffmpegsumo.dll ()
MOD - C:\Users\eliass\AppData\Local\Smartbar\Application\Smartbar.Resources.Utilities.dll ()
MOD - C:\Users\eliass\AppData\Local\Smartbar\Application\Smartbar.Resources.SocialNetsSharer.dll ()
MOD - C:\Users\eliass\AppData\Local\Smartbar\Application\Smartbar.Resources.SideBySide.dll ()
MOD - C:\Users\eliass\AppData\Local\Smartbar\Application\Smartbar.Resources.NetSeer.dll ()
MOD - C:\Users\eliass\AppData\Local\Smartbar\Application\Smartbar.Resources.ProcessDownMonitor.dll ()
MOD - C:\Users\eliass\AppData\Local\Smartbar\Application\Smartbar.Resources.HistoryAndStatsWrapper.dll ()
MOD - C:\Users\eliass\AppData\Local\Smartbar\Application\Smartbar.Resources.LanguageSettings.dll ()
MOD - C:\Users\eliass\AppData\Local\Smartbar\Application\Smartbar.Resources.AutomaticUpdates.dll ()
MOD - C:\Users\eliass\AppData\Local\Smartbar\Application\Smartbar.Personalization.Settings.PublisherSettingsManager.dll ()
MOD - C:\Users\eliass\AppData\Local\Smartbar\Application\Smartbar.Personalization.BusinessLogic.dll ()
MOD - C:\Users\eliass\AppData\Local\Smartbar\Application\Smartbar.Personalization.Common.dll ()
MOD - C:\Users\eliass\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Utilities.dll ()
MOD - C:\Users\eliass\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.InternetExplorerLocalPlugin.dll ()
MOD - C:\Users\eliass\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.EventManager.dll ()
MOD - C:\Users\eliass\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Core.dll ()
MOD - C:\Users\eliass\AppData\Local\Smartbar\Application\Smartbar.GUI.Multimedia.Loader.dll ()
MOD - C:\Users\eliass\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.BusinessEntities.dll ()
MOD - C:\Users\eliass\AppData\Local\Smartbar\Application\Smartbar.GUI.MainClient.dll ()
MOD - C:\Users\eliass\AppData\Local\Smartbar\Application\Smartbar.GUI.Docking.dll ()
MOD - C:\Users\eliass\AppData\Local\Smartbar\Application\Smartbar.GUI.Controls.dll ()
MOD - C:\Users\eliass\AppData\Local\Smartbar\Application\pt\Smartbar.Resources.LanguageSettings.resources.dll ()
MOD - C:\Users\eliass\AppData\Local\Smartbar\Application\MACTrackBarLib.dll ()
MOD - C:\Windows\System32\IccLibDll.dll ()
MOD - C:\Arquivos de Programas\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF ()
MOD - C:\Windows\assembly\GAC_MSIL\System.resources\2.0.0.0_pt-BR_b77a5c561934e089\System.resources.dll ()
MOD - C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll ()
MOD - C:\Windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_pt-BR_b77a5c561934e089\mscorlib.resources.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\System.Runtime.Remoting.resources\2.0.0.0_pt-BR_b77a5c561934e089\System.Runtime.Remoting.resources.dll ()
MOD - C:\Windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll ()


========== Services (SafeList) ==========

SRV - (PCFasterSvc_{PCFaster_3.7.0.0}) -- C:\Program Files\Baidu Security\PC Faster\3.7.0.0\PCFasterSvc.exe File not found
SRV - (KMService) -- C:\Windows\System32\srvany.exe ()
SRV - (WatAdminSvc) -- C:\Windows\System32\Wat\WatAdminSvc.exe (Microsoft Corporation)
SRV - (SkypeUpdate) -- C:\Arquivos de Programas\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (AntiVirSchedulerService) -- C:\Arquivos de Programas\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
SRV - (AntiVirWebService) -- C:\Arquivos de Programas\Avira\AntiVir Desktop\avwebgrd.exe (Avira Operations GmbH & Co. KG)
SRV - (AntiVirService) -- C:\Arquivos de Programas\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
SRV - (GbpSv) -- C:\Arquivos de Programas\GbPlugin\GbpSv.exe (GAS Tecnologia)
SRV - (WinDefend) -- C:\Arquivos de Programas\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (cphs) -- C:\Windows\System32\IntelCpHeciSvc.exe (Intel Corporation)
SRV - (Microsoft SharePoint Workspace Audit Service) -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE (Microsoft Corporation)
SRV - (ZAtheros Wlan Agent) -- C:\Arquivos de Programas\Dell Wireless\Ath_WlanAgent.exe (Atheros)
SRV - (IAStorDataMgrSvc) -- C:\Arquivos de Programas\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
SRV - (WMPNetworkSvc) -- C:\Arquivos de Programas\Windows Media Player\wmpnetwk.exe (Microsoft Corporation)
SRV - (osppsvc) -- C:\Arquivos de Programas\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation)
SRV - (ose) -- C:\Arquivos de Programas\Common Files\microsoft shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (StorSvc) -- C:\Windows\System32\StorSvc.dll (Microsoft Corporation)
SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
SRV - (PeerDistSvc) -- C:\Windows\System32\PeerDistSvc.dll (Microsoft Corporation)


========== Driver Services (SafeList) ==========

DRV - (Bprotect) -- C:\Windows\System32\drivers\Bprotect.sys File not found
DRV - (Bhbase) -- System32\drivers\Bhbase.sys File not found
DRV - (Bfmon) -- C:\Windows\System32\drivers\Bfmon.sys File not found
DRV - (Bfilter) -- C:\Windows\System32\drivers\Bfilter.sys File not found
DRV - (NdisrdMP) -- C:\Windows\System32\drivers\GbpNdisrd.sys (GbPlugin NDIS Device Driver)
DRV - (Ndisrd) -- C:\Windows\System32\drivers\GbpNdisrd.sys (GbPlugin NDIS Device Driver)
DRV - (dtsoftbus01) -- C:\Windows\System32\drivers\dtsoftbus01.sys (DT Soft Ltd)
DRV - (avgntflt) -- C:\Windows\System32\drivers\avgntflt.sys (Avira Operations GmbH & Co. KG)
DRV - (avipbb) -- C:\Windows\System32\drivers\avipbb.sys (Avira Operations GmbH & Co. KG)
DRV - (BprotectEx) -- C:\Windows\System32\drivers\BprotectEx.sys (Baidu, Inc.)
DRV - (GbpKm) -- C:\Windows\System32\drivers\gbpkm.sys (GAS Tecnologia)
DRV - (avkmgr) -- C:\Windows\System32\drivers\avkmgr.sys (Avira Operations GmbH & Co. KG)
DRV - (ssmdrv) -- C:\Windows\System32\drivers\ssmdrv.sys (Avira GmbH)
DRV - (MEI) -- C:\Windows\System32\drivers\HECI.sys (Intel Corporation)
DRV - (athr) -- C:\Windows\System32\drivers\athr.sys (Atheros Communications, Inc.)
DRV - (TsUsbFlt) -- C:\Windows\System32\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV - (vmbus) -- C:\Windows\System32\drivers\vmbus.sys (Microsoft Corporation)
DRV - (dmvsc) -- C:\Windows\System32\drivers\dmvsc.sys (Microsoft Corporation)
DRV - (storflt) -- C:\Windows\System32\drivers\vmstorfl.sys (Microsoft Corporation)
DRV - (storvsc) -- C:\Windows\System32\drivers\storvsc.sys (Microsoft Corporation)
DRV - (VMBusHID) -- C:\Windows\System32\drivers\VMBusHID.sys (Microsoft Corporation)
DRV - (s3cap) -- C:\Windows\System32\drivers\vms3cap.sys (Microsoft Corporation)
DRV - (WinUsb) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation)
DRV - (TsUsbGD) -- C:\Windows\System32\drivers\TsUsbGD.sys (Microsoft Corporation)
DRV - (npf) -- C:\Windows\System32\drivers\npf.sys (CACE Technologies, Inc.)
DRV - (vwifimp) -- C:\Windows\System32\drivers\vwifimp.sys (Microsoft Corporation)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-2987511519-2633101970-1212776175-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
IE - HKU\S-1-5-21-2987511519-2633101970-1212776175-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
IE - HKU\S-1-5-21-2987511519-2633101970-1212776175-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = pt-br
IE - HKU\S-1-5-21-2987511519-2633101970-1212776175-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = DC 42 80 52 D3 BA CE 01  [binary data]
IE - HKU\S-1-5-21-2987511519-2633101970-1212776175-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-2987511519-2633101970-1212776175-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
IE - HKU\S-1-5-21-2987511519-2633101970-1212776175-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)



========== Chrome  ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\30.0.1599.69\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\30.0.1599.69\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\30.0.1599.69\pdf.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll
CHR - Extension: QuickShare Widget = C:\Users\eliass\AppData\Local\Google\Chrome\User Data\Default\Extensions\amfclgbdpgndipgoegfpkkgobahigbcl\1.4_0\
CHR - Extension: Google Docs = C:\Users\eliass\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Google Drive = C:\Users\eliass\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\eliass\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Pesquisa do Google = C:\Users\eliass\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: SoundFrost = C:\Users\eliass\AppData\Local\Google\Chrome\User Data\Default\Extensions\epmacgekaillabiljokcfdjifdeiejfi\3.6.2_0\
CHR - Extension: Chrome In-App Payments service = C:\Users\eliass\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0\
CHR - Extension: keepvid.com = C:\Users\eliass\AppData\Local\Google\Chrome\User Data\Default\Extensions\oipolchnclfaogmpaomopjibifaabgif\2.0.0.0_0\
CHR - Extension: MyPrintScreen = C:\Users\eliass\AppData\Local\Google\Chrome\User Data\Default\Extensions\phbdoklmoijgoildghakacmipacllokm\2.0.0.0_0\
CHR - Extension: Gmail = C:\Users\eliass\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2013/10/10 09:00:06 | 000,000,822 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (keepvid.com) - {49ed9900-38cd-453c-bba7-3f2613317f5a} - C:\Users\eliass\AppData\Local\keepvid.dll (keepvid.com Company)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Arquivos de Programas\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Arquivos de Programas\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (GbIehObj Class) - {C41A1C0E-EA6C-11D4-B1B8-444553540008} - C:\Arquivos de Programas\GbPlugin\gbiehuni.dll (Banco Itaú Unibanco)
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [BCSSync] C:\Program Files\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe (Intel Corporation)
O4 - HKLM..\Run: [keepvid] C:\Users\eliass\AppData\Local\keepvid.com.exe (keepvid.com Company)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Windows\System32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [QuickSet] C:\Arquivos de Programas\Dell\QuickSet\quickset.exe (Dell Inc.)
O4 - HKLM..\Run: [VDownloader] C:\Program Files\VDownloader\VDownloader.exe (Vitzo)
O4 - HKU\S-1-5-21-2987511519-2633101970-1212776175-1000..\Run: [Browser Infrastructure Helper] C:\Users\eliass\AppData\Local\Smartbar\Application\QuickShare.exe (Smartbar)
O4 - HKU\S-1-5-21-2987511519-2633101970-1212776175-1000..\Run: [CashPartners] C:\Users\eliass\AppData\Local\aHaskZ3\CashPartners.exe (CashPartners Company)
O4 - HKU\S-1-5-21-2987511519-2633101970-1212776175-1000..\Run: [DAEMON Tools Pro Agent] C:\Program Files\DAEMON Tools Pro\DTAgent.exe (Disc Soft Ltd)
O4 - HKU\S-1-5-21-2987511519-2633101970-1212776175-1000..\Run: [DellSystemDetect] C:\Users\eliass\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell\Dell System Detect.appref-ms ()
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\S-1-5-21-2987511519-2633101970-1212776175-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: &Enviar para o OneNote - C:\Arquivos de Programas\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O8 - Extra context menu item: E&xportar para o Microsoft Excel - C:\Arquivos de Programas\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Arquivos de Programas\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Enviar para o OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Arquivos de Programas\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: &Anotações Vinculadas do OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Arquivos de Programas\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Anotações Vinculadas do OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Arquivos de Programas\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Program Files\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Program Files\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Program Files\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Program Files\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Program Files\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\Program Files\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-2987511519-2633101970-1212776175-1000\..Trusted Domains: dell.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-2987511519-2633101970-1212776175-1000\..Trusted Domains: itau.com.br ([bankline] https in Trusted sites)
O15 - HKU\S-1-5-21-2987511519-2633101970-1212776175-1000\..Trusted Domains: itau.com.br ([guardiao] https in Trusted sites)
O15 - HKU\S-1-5-21-2987511519-2633101970-1212776175-1000\..Trusted Domains: itau.com.br ([www] http in Trusted sites)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C2C93A08-87D1-4F03-BD27-BF6C7B35979A}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\belarc {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Arquivos de Programas\Belarc\BelarcAdvisor\System\BAVoilaX.dll (Belarc, Inc.)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Arquivos de Programas\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Arquivos de Programas\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Arquivos de Programas\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (c:\progra~2\wincert\win32c~1.dll) -  File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - Winlogon\Notify\ GbPluginUni: DllName - (C:\Program Files\GbPlugin\gbiehUni.dll) - C:\Arquivos de Programas\GbPlugin\gbiehuni.dll (Banco Itaú Unibanco)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O27 - HKLM IFEO\bitguard.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation)
O27 - HKLM IFEO\bprotect.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation)
O27 - HKLM IFEO\browsemngr.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation)
O27 - HKLM IFEO\browserdefender.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation)
O27 - HKLM IFEO\browsermngr.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation)
O27 - HKLM IFEO\browserprotect.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation)
O27 - HKLM IFEO\bundlesweetimsetup.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation)
O27 - HKLM IFEO\cltmngsvc.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation)
O27 - HKLM IFEO\delta babylon.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation)
O27 - HKLM IFEO\delta tb.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation)
O27 - HKLM IFEO\delta2.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation)
O27 - HKLM IFEO\deltainstaller.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation)
O27 - HKLM IFEO\deltasetup.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation)
O27 - HKLM IFEO\deltatb.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation)
O27 - HKLM IFEO\deltatb_2501-c733154b.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation)
O27 - HKLM IFEO\iminentsetup.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation)
O27 - HKLM IFEO\rjatydimofu.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation)
O27 - HKLM IFEO\sweetimsetup.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation)
O27 - HKLM IFEO\tbdelta.exetoolbar783881609.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Arquivos de Programas\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {E37CB5F0-51F5-4395-A808-5FA49E399008} - C:\Arquivos de Programas\GbPlugin\gbiehuni.dll (Banco Itaú Unibanco)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 18:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2009/06/10 18:42:20 | 000,000,024 | ---- | M] () - D:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2012/07/26 06:21:20 | 000,000,043 | R--- | M] () - G:\autorun.inf -- [ UDF ]
O33 - MountPoints2\{3bc7c54a-26b9-11e3-a03f-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{3bc7c54a-26b9-11e3-a03f-806e6f6e6963}\Shell\AutoRun\command - "" = E:\autoRcd.exe
O33 - MountPoints2\{b540ef4f-2846-11e3-863c-a41731fed5f6}\Shell - "" = AutoRun
O33 - MountPoints2\{b540ef4f-2846-11e3-863c-a41731fed5f6}\Shell\AutoRun\command - "" = G:\setup.exe -- [2012/07/26 06:21:20 | 000,079,304 | R--- | M] (Microsoft Corporation)
O33 - MountPoints2\{d8747c4d-2726-11e3-93b0-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{d8747c4d-2726-11e3-93b0-806e6f6e6963}\Shell\AutoRun\command - "" = E:\setup.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O36 - AppCertDlls: x64 - (c:\program files\movies toolbar\safetynut\x64\safetycrt.dll) -  File not found
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/10/14 12:08:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2013/10/14 12:08:34 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2013/10/13 22:51:46 | 000,056,320 | ---- | C] (Khronos Group) -- C:\Windows\System32\OpenCL.DLL
[2013/10/13 20:40:03 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Roaming\Dell
[2013/10/13 20:39:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
[2013/10/13 20:39:54 | 000,000,000 | ---D | C] -- C:\ProgramData\PCDr
[2013/10/13 20:39:54 | 000,000,000 | ---D | C] -- C:\ProgramData\PC-Doctor for Windows
[2013/10/13 20:39:54 | 000,000,000 | ---D | C] -- C:\Program Files\Dell Support Center
[2013/10/13 20:39:36 | 000,000,000 | ---D | C] -- C:\Program Files\My Dell
[2013/10/13 20:34:42 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Roaming\PCDr
[2013/10/13 20:34:33 | 000,000,000 | ---D | C] -- C:\temp
[2013/10/13 19:55:37 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
[2013/10/13 19:52:52 | 000,100,968 | ---- | C] (Realtek Semiconductor Corporation) -- C:\Windows\System32\RTNUninst32.dll
[2013/10/13 19:52:52 | 000,080,488 | ---- | C] (Realtek Semiconductor Corporation) -- C:\Windows\System32\RtNicProp32.dll
[2013/10/13 19:51:30 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2013/10/13 18:37:06 | 000,000,000 | ---D | C] -- C:\Program Files\Belarc
[2013/10/13 18:30:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ferramenta de diagnóstico de modem
[2013/10/13 18:30:47 | 000,000,000 | ---D | C] -- C:\Program Files\Modem Diagnostic Tool
[2013/10/13 18:30:03 | 000,000,000 | ---D | C] -- C:\Program Files\NetWaiting
[2013/10/13 18:29:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetWaiting
[2013/10/13 18:29:33 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Local\BVRP Software
[2013/10/13 15:50:14 | 000,000,000 | -H-D | C] -- C:\$WINDOWS.~BT
[2013/10/12 15:48:07 | 000,000,000 | ---D | C] -- C:\Users\eliass\FrostWire
[2013/10/12 15:48:07 | 000,000,000 | ---D | C] -- C:\Users\eliass\.frostwire5
[2013/10/12 15:47:51 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FrostWire 5
[2013/10/12 15:47:36 | 000,000,000 | ---D | C] -- C:\Program Files\FrostWire 5
[2013/10/12 14:14:56 | 000,000,000 | ---D | C] -- C:\Users\eliass\Desktop\My Shared Folder
[2013/10/12 14:10:54 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Local\Ares
[2013/10/12 13:08:23 | 000,000,000 | ---D | C] -- C:\Program Files\VS Revo Group
[2013/10/12 13:08:23 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
[2013/10/12 13:04:47 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Roaming\iSafe
[2013/10/12 12:58:31 | 000,000,000 | ---D | C] -- C:\ProgramData\BrowserProtect
[2013/10/12 12:58:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Browser Manager
[2013/10/12 12:58:31 | 000,000,000 | ---D | C] -- C:\ProgramData\BitGuard
[2013/10/12 12:26:31 | 000,000,000 | ---D | C] -- C:\Users\eliass\Documents\Optimizer Pro
[2013/10/12 12:26:15 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2013/10/12 12:25:54 | 000,089,088 | ---- | C] (keepvid.com Company) -- C:\Users\eliass\AppData\Local\keepvid.dll
[2013/10/12 12:25:50 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Local\aHaskZ3
[2013/10/12 12:25:49 | 008,581,632 | ---- | C] (Digia Plc and/or its subsidiary(-ies)) -- C:\Users\eliass\AppData\Local\QtGui4.dll
[2013/10/12 12:25:49 | 002,598,912 | ---- | C] (Digia Plc and/or its subsidiary(-ies)) -- C:\Users\eliass\AppData\Local\QtCore4.dll
[2013/10/12 12:25:49 | 001,122,304 | ---- | C] (The OpenSSL Project, [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] -- C:\Users\eliass\AppData\Local\libeay32.dll
[2013/10/12 12:25:49 | 001,120,256 | ---- | C] (keepvid.com Company) -- C:\Users\eliass\AppData\Local\keepvid.com.exe
[2013/10/12 12:25:49 | 001,053,696 | ---- | C] (Digia Plc and/or its subsidiary(-ies)) -- C:\Users\eliass\AppData\Local\QtNetwork4.dll
[2013/10/12 12:25:49 | 000,773,968 | ---- | C] (Microsoft Corporation) -- C:\Users\eliass\AppData\Local\msvcr100.dll
[2013/10/12 12:25:49 | 000,421,200 | ---- | C] (Microsoft Corporation) -- C:\Users\eliass\AppData\Local\msvcp100.dll
[2013/10/12 12:25:49 | 000,274,432 | ---- | C] (The OpenSSL Project, [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] -- C:\Users\eliass\AppData\Local\ssleay32.dll
[2013/10/12 12:20:53 | 000,000,000 | ---D | C] -- C:\Program Files\Optimizer Pro
[2013/10/12 12:19:08 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Roaming\Baidu Security
[2013/10/12 12:19:06 | 000,094,016 | ---- | C] (Baidu, Inc.) -- C:\Windows\System32\drivers\BprotectEx.sys
[2013/10/12 12:18:57 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Baidu Security
[2013/10/12 12:18:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Baidu Security
[2013/10/12 12:05:54 | 000,000,000 | ---D | C] -- C:\Users\eliass\Local Settings
[2013/10/12 12:05:16 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Local\Smartbar
[2013/10/12 12:01:51 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Roaming\UpdaterEX
[2013/10/10 12:33:17 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Roaming\TuneUp Software
[2013/10/10 12:33:10 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software
[2013/10/10 12:33:07 | 000,000,000 | -HSD | C] -- C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
[2013/10/10 12:33:07 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
[2013/10/10 12:29:50 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Roaming\VDownloader
[2013/10/10 12:29:42 | 000,000,000 | ---D | C] -- C:\Program Files\WinPcap
[2013/10/10 12:29:42 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Local\VDownloader
[2013/10/10 12:29:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VDownloader
[2013/10/10 12:29:39 | 000,000,000 | ---D | C] -- C:\Program Files\VDownloader
[2013/10/10 12:29:39 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Roaming\OpenCandy
[2013/10/10 12:29:19 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Local\Programs
[2013/10/10 09:32:18 | 000,000,000 | ---D | C] -- C:\Users\eliass\Documents\vanera
[2013/10/10 09:32:12 | 000,000,000 | ---D | C] -- C:\Users\eliass\Documents\vaneira 2
[2013/10/10 09:32:03 | 000,000,000 | ---D | C] -- C:\Users\eliass\Documents\sertanejo universitario 2
[2013/10/10 09:31:52 | 000,000,000 | ---D | C] -- C:\Users\eliass\Documents\sertanejo
[2013/10/10 09:31:48 | 000,000,000 | ---D | C] -- C:\Users\eliass\Documents\black
[2013/10/10 09:31:22 | 000,000,000 | ---D | C] -- C:\Users\eliass\Documents\variadas
[2013/10/09 12:10:14 | 000,031,088 | ---- | C] (GbPlugin NDIS Device Driver) -- C:\Windows\System32\drivers\GbpNdisrd.sys
[2013/10/09 12:09:50 | 000,046,392 | ---- | C] (GAS Tecnologia) -- C:\Windows\System32\drivers\gbpkm.sys
[2013/10/09 12:09:43 | 000,000,000 | ---D | C] -- C:\ProgramData\GAS Tecnologia
[2013/10/09 12:09:38 | 000,000,000 | ---D | C] -- C:\ProgramData\GbPlugin
[2013/10/09 12:09:38 | 000,000,000 | ---D | C] -- C:\Program Files\GbPlugin
[2013/10/09 11:41:45 | 000,295,424 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2013/10/09 11:41:45 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2013/10/03 13:21:47 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Local\Adobe
[2013/10/03 13:11:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2013/10/03 13:11:32 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2013/10/03 13:11:32 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2013/10/03 13:04:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
[2013/10/03 13:04:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2013/10/03 13:03:35 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Synchronization Services
[2013/10/03 13:03:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2013/10/03 13:03:22 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2013/10/03 13:03:22 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2013/10/03 13:03:22 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Sync Framework
[2013/10/03 13:03:22 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2013/10/03 13:02:37 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio 8
[2013/10/03 13:02:04 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Analysis Services
[2013/10/03 13:01:39 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Local\Microsoft Help
[2013/10/03 13:01:31 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2013/10/03 13:01:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2013/10/03 13:01:15 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2013/09/29 22:01:56 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Roaming\Skype
[2013/09/29 22:01:49 | 000,000,000 | R--D | C] -- C:\Program Files\Skype
[2013/09/29 22:01:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2013/09/29 22:01:49 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2013/09/29 22:01:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2013/09/28 13:18:27 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Roaming\Avira
[2013/09/28 13:14:57 | 000,066,144 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\Windows\System32\drivers\avnetflt.sys
[2013/09/28 13:12:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
[2013/09/28 13:12:22 | 000,028,520 | ---- | C] (Avira GmbH) -- C:\Windows\System32\drivers\ssmdrv.sys
[2013/09/28 13:12:21 | 000,136,672 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\Windows\System32\drivers\avipbb.sys
[2013/09/28 13:12:21 | 000,088,840 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\Windows\System32\drivers\avgntflt.sys
[2013/09/28 13:12:21 | 000,037,352 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\Windows\System32\drivers\avkmgr.sys
[2013/09/28 13:12:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Avira
[2013/09/28 13:12:21 | 000,000,000 | ---D | C] -- C:\Program Files\Avira
[2013/09/28 12:37:50 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Roaming\Adobe
[2013/09/28 11:30:40 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\DAEMON Tools Images
[2013/09/28 11:27:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Pro
[2013/09/28 11:26:34 | 000,242,240 | ---- | C] (DT Soft Ltd) -- C:\Windows\System32\drivers\dtsoftbus01.sys
[2013/09/28 11:26:31 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Roaming\DAEMON Tools Pro
[2013/09/28 11:26:29 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Pro
[2013/09/28 11:25:59 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Pro
[2013/09/28 11:25:53 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Roaming\Baidu
[2013/09/28 11:25:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Baidu
[2013/09/28 11:25:48 | 000,000,000 | ---D | C] -- C:\Program Files\Baidu Security
[2013/09/27 18:29:19 | 000,000,000 | R--D | C] -- C:\Users\eliass\Documents\Notes
[2013/09/27 18:24:05 | 000,000,000 | ---D | C] -- C:\Windows\System32\Wat
[2013/09/27 18:14:04 | 000,000,000 | ---D | C] -- C:\Windows\CheckSur
[2013/09/27 10:36:10 | 000,364,544 | ---- | C] (Pegasus Imaging Corp.) -- C:\Windows\System32\TwnLib4.dll
[2013/09/27 10:36:10 | 000,106,496 | ---- | C] (Pegasus Software) -- C:\Windows\System32\TwnLib20.dll
[2013/09/27 10:36:06 | 001,568,768 | ---- | C] (Pegasus Imaging Corp.) -- C:\Windows\System32\ImagX7.dll
[2013/09/27 10:36:06 | 000,476,320 | ---- | C] (Pegasus Imaging Corp.) -- C:\Windows\System32\ImagXpr7.dll
[2013/09/27 10:36:06 | 000,471,040 | ---- | C] (Pegasus Imaging Corp.) -- C:\Windows\System32\ImagXRA7.dll
[2013/09/27 10:36:06 | 000,262,144 | ---- | C] (Pegasus Imaging Corp.) -- C:\Windows\System32\ImagXR7.dll
[2013/09/27 10:36:05 | 000,155,648 | ---- | C] (Ahead Software Gmbh) -- C:\Windows\System32\NeroCheck.exe
[2013/09/27 10:36:03 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Ahead
[2013/09/27 10:36:02 | 000,000,000 | ---D | C] -- C:\Program Files\Ahead
[2013/09/27 02:05:30 | 000,000,000 | ---D | C] -- C:\Users\eliass\Documents\Circuitos Elétricos
[2013/09/27 02:05:17 | 000,000,000 | ---D | C] -- C:\Users\eliass\Documents\CARLOS PEREIRA
[2013/09/27 02:05:06 | 000,000,000 | ---D | C] -- C:\Users\eliass\Documents\ultrason
[2013/09/27 02:03:53 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool
[2013/09/27 01:27:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2013/09/27 01:24:46 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2013/09/27 01:24:41 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Local\Google
[2013/09/27 01:24:27 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Local\Apps
[2013/09/27 01:24:26 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Local\Deployment
[2013/09/27 00:45:11 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Intel Corporation
[2013/09/27 00:44:54 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Roaming\Intel Corporation
[2013/09/26 13:09:44 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
[2013/09/26 13:09:32 | 000,000,000 | ---D | C] -- C:\Intel
[2013/09/26 13:09:31 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
[2013/09/26 13:09:31 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Roaming\InstallShield
[2013/09/26 13:09:04 | 000,000,000 | ---D | C] -- C:\Program Files\Cisco
[2013/09/26 13:09:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Atheros Smart Net
[2013/09/26 13:09:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HotSpot
[2013/09/26 13:08:39 | 002,236,928 | ---- | C] (Atheros Communications, Inc.) -- C:\Windows\System32\drivers\athr.sys
[2013/09/26 13:08:39 | 002,236,928 | ---- | C] (Atheros Communications, Inc.) -- C:\Windows\System32\athr.sys
[2013/09/26 13:08:39 | 000,397,312 | ---- | C] (Atheros) -- C:\Windows\System32\athihvs.dll
[2013/09/26 13:08:39 | 000,061,440 | ---- | C] (Atheros) -- C:\Windows\System32\athihvui.dll
[2013/09/26 13:08:39 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2013/09/26 13:08:39 | 000,000,000 | ---D | C] -- C:\Windows\System32\nn-NO
[2013/09/26 13:08:39 | 000,000,000 | ---D | C] -- C:\Program Files\Dell Wireless
[2013/09/26 13:07:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Dell
[2013/09/26 13:07:05 | 000,000,000 | ---D | C] -- C:\Dell
[2013/09/26 13:03:21 | 000,000,000 | ---D | C] -- C:\Windows\System32\vmm32
[2013/09/26 13:03:21 | 000,000,000 | ---D | C] -- C:\Program Files\Dell
[2013/09/26 13:02:52 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2013/09/26 12:02:29 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Local\Diagnostics
[2013/09/26 11:45:10 | 000,000,000 | R--D | C] -- C:\Users\eliass\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2013/09/26 11:45:10 | 000,000,000 | R--D | C] -- C:\Users\eliass\Searches
[2013/09/26 11:45:10 | 000,000,000 | R--D | C] -- C:\Users\eliass\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2013/09/26 11:45:01 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Roaming\Identities
[2013/09/26 11:45:00 | 000,000,000 | R--D | C] -- C:\Users\eliass\Contacts
[2013/09/26 11:44:53 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Local\VirtualStore
[2013/09/26 11:44:52 | 000,000,000 | --SD | C] -- C:\Users\eliass\AppData\Roaming\Microsoft
[2013/09/26 11:44:52 | 000,000,000 | R--D | C] -- C:\Users\eliass\Videos
[2013/09/26 11:44:52 | 000,000,000 | R--D | C] -- C:\Users\eliass\Saved Games
[2013/09/26 11:44:52 | 000,000,000 | R--D | C] -- C:\Users\eliass\Pictures
[2013/09/26 11:44:52 | 000,000,000 | R--D | C] -- C:\Users\eliass\Music
[2013/09/26 11:44:52 | 000,000,000 | R--D | C] -- C:\Users\eliass\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2013/09/26 11:44:52 | 000,000,000 | R--D | C] -- C:\Users\eliass\Links
[2013/09/26 11:44:52 | 000,000,000 | R--D | C] -- C:\Users\eliass\Favorites
[2013/09/26 11:44:52 | 000,000,000 | R--D | C] -- C:\Users\eliass\Downloads
[2013/09/26 11:44:52 | 000,000,000 | R--D | C] -- C:\Users\eliass\Documents
[2013/09/26 11:44:52 | 000,000,000 | R--D | C] -- C:\Users\eliass\Desktop
[2013/09/26 11:44:52 | 000,000,000 | R--D | C] -- C:\Users\eliass\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2013/09/26 11:44:52 | 000,000,000 | -HSD | C] -- C:\Users\eliass\AppData\Local\Temporary Internet Files
[2013/09/26 11:44:52 | 000,000,000 | -HSD | C] -- C:\Users\eliass\SendTo
[2013/09/26 11:44:52 | 000,000,000 | -HSD | C] -- C:\Users\eliass\Recent
[2013/09/26 11:44:52 | 000,000,000 | -HSD | C] -- C:\Users\eliass\Modelos
[2013/09/26 11:44:52 | 000,000,000 | -HSD | C] -- C:\Users\eliass\Documents\Minhas músicas
[2013/09/26 11:44:52 | 000,000,000 | -HSD | C] -- C:\Users\eliass\Documents\Minhas imagens
[2013/09/26 11:44:52 | 000,000,000 | -HSD | C] -- C:\Users\eliass\Documents\Meus vídeos
[2013/09/26 11:44:52 | 000,000,000 | -HSD | C] -- C:\Users\eliass\Meus documentos
[2013/09/26 11:44:52 | 000,000,000 | -HSD | C] -- C:\Users\eliass\Menu Iniciar
[2013/09/26 11:44:52 | 000,000,000 | -HSD | C] -- C:\Users\eliass\AppData\Local\Histórico
[2013/09/26 11:44:52 | 000,000,000 | -HSD | C] -- C:\Users\eliass\Dados de aplicativos
[2013/09/26 11:44:52 | 000,000,000 | -HSD | C] -- C:\Users\eliass\AppData\Local\Dados de aplicativos
[2013/09/26 11:44:52 | 000,000,000 | -HSD | C] -- C:\Users\eliass\Cookies
[2013/09/26 11:44:52 | 000,000,000 | -HSD | C] -- C:\Users\eliass\Configurações locais
[2013/09/26 11:44:52 | 000,000,000 | -HSD | C] -- C:\Users\eliass\Ambiente de rede
[2013/09/26 11:44:52 | 000,000,000 | -HSD | C] -- C:\Users\eliass\Ambiente de impressão
[2013/09/26 11:44:52 | 000,000,000 | -H-D | C] -- C:\Users\eliass\AppData
[2013/09/26 11:44:52 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Local\Temp
[2013/09/26 11:44:52 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Local\Microsoft
[2013/09/26 11:44:52 | 000,000,000 | ---D | C] -- C:\Users\eliass\AppData\Roaming\Media Center Programs
[2013/09/26 11:44:42 | 000,000,000 | -HSD | C] -- C:\Program Files\Common Files\Sistema
[2013/09/26 11:44:42 | 000,000,000 | -HSD | C] -- C:\Recovery
[2013/09/26 11:44:42 | 000,000,000 | -HSD | C] -- C:\ProgramData\Modelos
[2013/09/26 11:44:42 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Minhas músicas
[2013/09/26 11:44:42 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Minhas imagens
[2013/09/26 11:44:42 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Meus vídeos
[2013/09/26 11:44:42 | 000,000,000 | -HSD | C] -- C:\ProgramData\Menu Iniciar
[2013/09/26 11:44:42 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favoritos
[2013/09/26 11:44:42 | 000,000,000 | -HSD | C] -- C:\ProgramData\Documentos
[2013/09/26 11:44:42 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dados de aplicativos
[2013/09/26 11:44:42 | 000,000,000 | -HSD | C] -- C:\Arquivos de Programas
[2013/09/26 11:44:42 | 000,000,000 | -HSD | C] -- C:\Program Files\Arquivos Comuns
[2013/09/26 11:41:14 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2013/09/26 11:39:05 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2013/09/26 11:38:04 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2013/09/26 11:37:38 | 000,000,000 | ---D | C] -- C:\Windows\Panther

========== Files - Modified Within 30 Days ==========

[2013/10/15 01:09:11 | 000,000,296 | ---- | M] () -- C:\Windows\tasks\UpdaterEX.job
[2013/10/15 00:53:31 | 000,001,052 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/10/15 00:53:18 | 000,031,088 | ---- | M] (GbPlugin NDIS Device Driver) -- C:\Windows\System32\drivers\GbpNdisrd.sys
[2013/10/15 00:53:16 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/10/15 00:53:06 | 2720,333,824 | -HS- | M] () -- C:\hiberfil.sys
[2013/10/14 21:58:30 | 000,021,584 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/10/14 21:58:29 | 000,021,584 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/10/14 21:35:53 | 000,001,056 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/10/14 15:56:52 | 000,409,248 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2013/10/14 13:21:18 | 000,001,373 | ---- | M] () -- C:\Users\eliass\Desktop\OTL - Atalho.lnk
[2013/10/14 12:08:35 | 000,000,969 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2013/10/13 18:37:06 | 000,002,070 | ---- | M] () -- C:\Users\Public\Desktop\Belarc Advisor.lnk
[2013/10/13 17:00:32 | 000,663,804 | ---- | M] () -- C:\Windows\System32\prfh0416.dat
[2013/10/13 17:00:32 | 000,616,008 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013/10/13 17:00:32 | 000,128,094 | ---- | M] () -- C:\Windows\System32\prfc0416.dat
[2013/10/13 17:00:32 | 000,106,388 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2013/10/13 16:00:42 | 000,001,908 | ---- | M] () -- C:\Windows\diagwrn.xml
[2013/10/13 16:00:42 | 000,001,908 | ---- | M] () -- C:\Windows\diagerr.xml
[2013/10/12 15:47:52 | 000,001,193 | ---- | M] () -- C:\Users\eliass\Desktop\FrostWire 5.6.5.lnk
[2013/10/12 14:12:34 | 000,984,196 | ---- | M] () -- C:\Users\eliass\AppData\Local\helper.dat
[2013/10/12 14:12:34 | 000,089,088 | ---- | M] (keepvid.com Company) -- C:\Users\eliass\AppData\Local\keepvid.dll
[2013/10/12 14:12:34 | 000,000,470 | RHS- | M] () -- C:\Users\eliass\ntuser.pol
[2013/10/03 13:21:40 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2013/10/03 13:10:17 | 000,077,824 | ---- | M] () -- C:\Windows\KMService.exe
[2013/10/03 13:10:17 | 000,008,192 | ---- | M] () -- C:\Windows\System32\srvany.exe
[2013/10/03 02:29:59 | 000,009,488 | ---- | M] () -- C:\Users\eliass\Documents\Z7napdk.jpg
[2013/09/29 22:01:49 | 000,002,505 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2013/09/28 13:14:49 | 000,066,144 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Windows\System32\drivers\avnetflt.sys
[2013/09/28 12:26:37 | 000,000,019 | ---- | M] () -- C:\Rebuilder.ini
[2013/09/28 11:26:34 | 000,242,240 | ---- | M] (DT Soft Ltd) -- C:\Windows\System32\drivers\dtsoftbus01.sys
[2013/09/28 11:12:22 | 000,025,185 | ---- | M] () -- C:\Windows\System32\ieuinit.inf
[2013/09/26 11:42:42 | 000,051,938 | ---- | M] () -- C:\Windows\System32\license.rtf
[2013/09/26 11:40:52 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf

========== Files Created - No Company Name ==========

[2013/10/14 15:56:25 | 000,409,248 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2013/10/14 13:21:18 | 000,001,373 | ---- | C] () -- C:\Users\eliass\Desktop\OTL - Atalho.lnk
[2013/10/14 12:08:35 | 000,000,969 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2013/10/13 18:37:06 | 000,002,082 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belarc Advisor.lnk
[2013/10/13 18:37:06 | 000,002,070 | ---- | C] () -- C:\Users\Public\Desktop\Belarc Advisor.lnk
[2013/10/13 15:50:11 | 000,001,908 | ---- | C] () -- C:\Windows\diagwrn.xml
[2013/10/13 15:50:11 | 000,001,908 | ---- | C] () -- C:\Windows\diagerr.xml
[2013/10/12 15:47:52 | 000,001,193 | ---- | C] () -- C:\Users\eliass\Desktop\FrostWire 5.6.5.lnk
[2013/10/12 12:25:54 | 000,984,196 | ---- | C] () -- C:\Users\eliass\AppData\Local\helper.dat
[2013/10/12 12:25:49 | 000,108,032 | ---- | C] () -- C:\Users\eliass\AppData\Local\ContentAgent.exe
[2013/10/12 12:02:51 | 000,000,470 | RHS- | C] () -- C:\Users\eliass\ntuser.pol
[2013/10/12 12:01:52 | 000,000,296 | ---- | C] () -- C:\Windows\tasks\UpdaterEX.job
[2013/10/10 12:29:41 | 000,444,283 | ---- | C] () -- C:\Program Files\Common Files\WinPcapNmap.exe
[2013/10/03 13:21:40 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2013/10/03 13:13:14 | 000,077,824 | ---- | C] () -- C:\Windows\KMService.exe
[2013/10/03 13:13:14 | 000,008,192 | ---- | C] () -- C:\Windows\System32\srvany.exe
[2013/10/03 13:11:48 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk
[2013/10/03 02:29:59 | 000,009,488 | ---- | C] () -- C:\Users\eliass\Documents\Z7napdk.jpg
[2013/09/29 22:01:49 | 000,002,505 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2013/09/28 12:26:37 | 000,000,019 | ---- | C] () -- C:\Rebuilder.ini
[2013/09/28 11:12:22 | 000,025,185 | ---- | C] () -- C:\Windows\System32\ieuinit.inf
[2013/09/27 17:58:45 | 000,000,003 | ---- | C] () -- C:\Windows\System32\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2013/09/27 17:58:12 | 000,000,003 | ---- | C] () -- C:\Windows\System32\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2013/09/27 01:24:47 | 000,001,056 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/09/27 01:24:47 | 000,001,052 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/09/26 13:08:39 | 000,018,332 | ---- | C] () -- C:\Windows\System32\netathr.inf
[2013/09/26 13:08:39 | 000,008,314 | ---- | C] () -- C:\Windows\System32\athrext.cat
[2013/09/26 11:45:10 | 000,001,393 | ---- | C] () -- C:\Users\eliass\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2013/09/26 11:42:34 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2013/09/26 11:42:33 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2013/09/26 11:40:52 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2013/09/26 11:38:04 | 2720,333,824 | -HS- | C] () -- C:\hiberfil.sys
[2012/12/14 02:02:22 | 000,754,652 | ---- | C] () -- C:\Windows\System32\igcodeckrng700.bin
[2012/12/14 02:02:20 | 000,094,208 | ---- | C] () -- C:\Windows\System32\IccLibDll.dll
[2012/12/14 02:02:20 | 000,064,512 | ---- | C] () -- C:\Windows\System32\igdde32.dll
[2012/12/14 02:02:20 | 000,009,728 | ---- | C] ( ) -- C:\Windows\System32\IGFXDEVLib.dll
[2012/12/14 02:02:20 | 000,000,268 | ---- | C] () -- C:\Windows\System32\GfxUI.exe.config
[2012/12/14 02:02:18 | 000,598,384 | ---- | C] () -- C:\Windows\System32\igvpkrng700.bin

========== ZeroAccess Check ==========

[2009/07/14 01:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/07/25 22:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2011/01/16 20:55:03 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/13 22:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== Alternate Data Streams ==========

@Alternate Data Stream - 212 bytes -> C:\Windows\System32\drivers:GbpKmAp.lst
@Alternate Data Stream - 2 bytes -> C:\Windows\System32:1A1DDA49_Uni.gbp

< End of report >
santoselias
santoselias
Iniciante
Iniciante

Mensagens : 1
Reputação : 0
Data de inscrição : 14/10/2013

Ir para o topo Ir para baixo

Remover Shetef solutions Empty Re: Remover Shetef solutions

Mensagem por Wings [In Memoriam] Ter 15 Out 2013, 07:51

Olá santoselias

Remover Shetef solutions 772309 Baixe o [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] (...de Xplode) e salve-o no Desktop (Área de Trabalho)

*Salve qualquer trabalho aberto e feche o seu navegador

*Execute-o, clique [Examinar] e aguarde o término

*Clique [Limpar] e aguarde o término

*Caso seja solicitada a reinicialização do PC, clique [OK] para reiniciar.

*Cole o relatório C:\AdwCleaner\AdwCleaner[S0].txt


Remover Shetef solutions 772309 Baixe o [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] (...de Oleg N. Scherbakov) e salve-o no Desktop (Área de Trabalho)

*Feche o seu navegador (Firefox, IE, Google Chrome)

*Clique com o botão direito do mouse no JRT e selecione [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

*Tecle [ENTER]

*Durante o scan os ícones do Desktop desaparecerão temporariamente

*Ao surgir a mensagem The scan completed succesfully, feche a janela e cole o relatório JRT.txt localizado no Desktop
Wings [In Memoriam]
Wings [In Memoriam]
Moderador
Moderador

Mensagens : 1080
Reputação : 282
Data de inscrição : 19/08/2013
Localização : Rio de Janeiro - RJ

http://www.hardware.com.br

Ir para o topo Ir para baixo

Remover Shetef solutions Empty Re: Remover Shetef solutions

Mensagem por Wings [In Memoriam] Qua 30 Out 2013, 00:04

TÓPICO ARQUIVADO

Como o(a) autor(a) não respondeu ao tópico por mais de 15 dias, o mesmo foi arquivado.

Caso o(a) autor(a) do tópico necessite, o mesmo será reaberto, para isso deverá entrar em contato com um dos membros da [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] solicitando a reabertura.
Wings [In Memoriam]
Wings [In Memoriam]
Moderador
Moderador

Mensagens : 1080
Reputação : 282
Data de inscrição : 19/08/2013
Localização : Rio de Janeiro - RJ

http://www.hardware.com.br

Ir para o topo Ir para baixo

Remover Shetef solutions Empty Re: Remover Shetef solutions

Mensagem por Conteúdo patrocinado


Conteúdo patrocinado


Ir para o topo Ir para baixo

Ir para o topo

- Tópicos semelhantes

Fórum PC Brasil :: Segurança da Informação :: Tópicos Arquivados

 
Permissões neste sub-fórum
Não podes responder a tópicos