Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Process: svchost.exe (Avast! alert at internet connection) [Closed

Started by clipsdenor , May 29 2015 07:17 PM

avast svchost.exe internet connection malware url:mal infection

This topic is locked

#1
clipsdenor

Posted 29 May 2015 - 07:17 PM

New Member

Member
3 posts

Hi guys,

I'm with some problems

Various avast alert pop up are going on, at startup and everytime an internet connection is made. This has been going on for four days, I think. Today I had like 30 alerts at once!

The alerts are on dll from random websites which I don't remember. And this appear everytime:

Infection: URL:Mal

Process: C:\Windows\System32\svchost.exe

Checking this forum I found this topic which is exactly the same problem that is going on with my pc

http://www.geekstogo...net-connection/

I tried to reply there but I didn't have permission so I took the liberty to download the tool and followed the instructions from zep516.

So here is the FRST.txt content

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27-05-2015 01
Ran by Clidenor (administrator) on CLIDENOR on 30-05-2015 01:57:04
Running from C:\Users\Clidenor\Desktop
Loaded Profiles: UpdatusUser & Clidenor (Available Profiles: UpdatusUser & Clidenor)
Platform: Windows 8.1 Single Language (X64) OS Language: Português (Brasil)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\gbpsv.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
() C:\Program Files\Common Files\VMware\DeviceRedirectionCommon\ftnlsv.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
() C:\Program Files (x86)\VMware\ScannerRedirection\ftscanmgr.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
() C:\Users\Clidenor\AppData\Roaming\82A53890-1430534395-11E3-BE32-F0BF9708EADB\jnsd61E8.tmp
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
(VMware) C:\Program Files (x86)\Common Files\VMware\SerialPortRedirection\Client\vmwsprrdpwks.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRYSVC.EXE
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware Horizon View Client\wsnm\wsnm.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\BCMWLTRY.EXE
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware Horizon View Client\bin\vmware-view-usbd.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SET141F.tmp
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\SUSSoundProxy.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\gbpsv.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleCrashHandler.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.EXE
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Autodesk, Inc.) C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleCrashHandler64.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
(cyberlink) C:\Program Files (x86)\CyberLink\Shared files\brs.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Autodesk Inc.) C:\Users\Clidenor\AppData\Local\Autodesk\.AdskAppManager\R1\AdAppMgr.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\Sony\VAIO Care\VCPerfService.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCWebServer.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Sony) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
() C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
(Avanquest Software) C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
(Spotify Ltd) C:\Users\Clidenor\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
() C:\Program Files\Sony\VAIO Care\listener.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Akamai Technologies, Inc.) C:\Users\Clidenor\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\Clidenor\AppData\Local\Akamai\netsession_win.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Hola Networks Ltd.) C:\Users\Clidenor\AppData\Local\Hola\firefox\app\hola_plugin.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1307720 2013-05-07] (Realtek Semiconductor)
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.exe [10590208 2013-03-14] (Broadcom Corporation)
HKLM\...\Run: [Bluetooth] => C:\Program Files\WIDCOMM\Bluetooth Software\bttray.exe [526704 2012-12-14] (Broadcom Corporation.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [VMware Netlink 3 HV Install Utility] => C:\Program Files\Common Files\VMware\DeviceRedirectionCommon\ftnliu.exe [70328 2015-01-08] ()
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3928264 2015-05-27] (Synaptics Incorporated)
HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [740376 2013-02-06] (Sony Corporation)
HKLM-x32\...\Run: [BDRegion] => C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [181208 2013-03-13] (cyberlink)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [TkBellExe] => C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [295512 2014-09-14] (RealNetworks, Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5223016 2014-11-05] (AVAST Software)
HKLM-x32\...\Run: [gmsd_gb_322] => [X]
HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [493960 2014-12-05] (Autodesk Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
HKLM-x32\...\RunOnce: [20150107] => C:\Program Files\AVAST Software\Avast\setup\emupdate\e413f2d5-0a08-42e9-a2dc-937414667f5d.exe [183232 2015-05-26] (AVAST Software)
Winlogon\Notify\ GbPluginBb: C:\Program Files (x86)\GbPlugin\gbieh.dll [2014-07-31] (Banco do Brasil)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-1880014085-1414669863-2644191059-1001\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2014-10-29] (Microsoft Corporation)
HKU\S-1-5-21-1880014085-1414669863-2644191059-1002\...\Run: [uTorrent] => C:\Users\Clidenor\AppData\Roaming\uTorrent\uTorrent.exe [1694560 2015-05-07] (BitTorrent Inc.)
HKU\S-1-5-21-1880014085-1414669863-2644191059-1002\...\Run: [Akamai NetSession Interface] => C:\Users\Clidenor\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-18] (Akamai Technologies, Inc.)
HKU\S-1-5-21-1880014085-1414669863-2644191059-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31280256 2015-04-17] (Skype Technologies S.A.)
HKU\S-1-5-21-1880014085-1414669863-2644191059-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7063832 2014-11-21] (Piriform Ltd)
HKU\S-1-5-21-1880014085-1414669863-2644191059-1002\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1235336 2014-08-28] (Autodesk, Inc.)
HKU\S-1-5-21-1880014085-1414669863-2644191059-1002\...\Run: [Spotify Web Helper] => C:\Users\Clidenor\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2021944 2015-05-28] (Spotify Ltd)
HKU\S-1-5-21-1880014085-1414669863-2644191059-1002\...\Run: [Spotify] => C:\Users\Clidenor\AppData\Roaming\Spotify\Spotify.exe [7323192 2015-05-28] (Spotify Ltd)
HKU\S-1-5-21-1880014085-1414669863-2644191059-1002\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [455392 2015-04-10] (Sony)
HKU\S-1-5-21-1880014085-1414669863-2644191059-1002\...\RunOnce: [FlashPlayerUpdate] => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_17_0_0_169_Plugin.exe [927920 2015-04-15] (Adobe Systems Incorporated)
HKU\S-1-5-21-1880014085-1414669863-2644191059-1002\...\Policies\Explorer: []
HKU\S-1-5-21-1880014085-1414669863-2644191059-1002\...\MountPoints2: {14271812-028b-11e5-beb2-f0bf9708eadb} - "F:\Startme.exe"
HKU\S-1-5-21-1880014085-1414669863-2644191059-1002\...\MountPoints2: {66dbeb8a-64c7-11e4-be8d-3c77e6e88eae} - "E:\LaunchU3.exe" -a
HKU\S-1-5-18\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1235336 2014-08-28] (Autodesk, Inc.)
HKU\S-1-5-18\...\RunOnce: [Application Restart #0] => C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe [372400 2014-10-29] (Microsoft Corporation)
Startup: C:\Users\Clidenor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\hqghumeaylnlf.lnk [2015-05-01]
ShortcutTarget: hqghumeaylnlf.lnk -> C:\ProgramData\{396e45e6-daba-005e-396e-e45e6dab179b}\hqghumeaylnlf.exe (No File)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2014-11-05] (AVAST Software)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll [2014-02-07] (Autodesk, Inc.)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = https://www.google.c...q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-1880014085-1414669863-2644191059-1002\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
HKU\S-1-5-21-1880014085-1414669863-2644191059-1002\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
HKU\S-1-5-21-1880014085-1414669863-2644191059-1002\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.c...q={searchTerms}
URLSearchHook: [S-1-5-21-1880014085-1414669863-2644191059-1001] ATTENTION ==> Default URLSearchHook is missing
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM -> {2E00D31D-D171-423D-836D-1A4D7EA7F1A9} URL =
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM-x32 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.c...q={searchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.c...q={searchTerms}
SearchScopes: HKU\S-1-5-21-1880014085-1414669863-2644191059-1002 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.c...q={searchTerms}
SearchScopes: HKU\S-1-5-21-1880014085-1414669863-2644191059-1002 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.google.com
SearchScopes: HKU\S-1-5-21-1880014085-1414669863-2644191059-1002 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.c...q={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2013-06-28] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-11-05] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-06-28] (Oracle Corporation)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2013-08-14] (RealDownloader)
BHO-x32: No Name -> {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} -> No File
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-06-28] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-11-05] (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540000} -> C:\Program Files (x86)\GbPlugin\gbieh.dll [2014-07-31] (Banco do Brasil)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-06-28] (Oracle Corporation)
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - C:\Program Files (x86)\GbPlugin\gbieh.dll [1754664 2014-07-31] (Banco do Brasil)
Hosts: Hosts file not detected in the default directory
Tcpip\Parameters: [DhcpNameServer] 77.244.128.44 77.244.128.45
StartMenuInternet: IEXPLORE.EXE - C:\program files (x86)\Internet Explorer\iexplore.exe http://www.google.com

FireFox:
========
FF ProfilePath: C:\Users\Clidenor\AppData\Roaming\Mozilla\Firefox\Profiles\7gf825jw.default-1430540633399
FF NewTab:
FF SelectedSearchEngine: www.google.com
FF Homepage: hxxp://www.google.com/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll [2015-04-15] ()
FF Plugin: @java.com/DTPlugin,version=10.13.2 -> C:\Windows\system32\npDeployJava1.dll [2013-06-28] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.13.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-06-28] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-10] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-15] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-01-23] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-01-23] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.13.2 -> C:\Windows\SysWOW64\npDeployJava1.dll [2013-06-28] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.13.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2013-06-28] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-25] (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=16.0.3.51 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll [2014-09-14] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=16.0.3.51 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll [2014-09-14] (RealPlayer)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll [2013-08-14] (RealDownloader)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1880014085-1414669863-2644191059-1002: @hola.org/vlc,version=1.8.28 -> C:\Users\Clidenor\AppData\Local\Hola\firefox\app\vlc [2015-05-27] ()
FF Plugin HKU\S-1-5-21-1880014085-1414669863-2644191059-1002: gastecnologia.com.br/sf/bb -> C:\Users\Clidenor\AppData\Local\GAS Tecnologia\GBBD\npsf_bb.dll [2014-08-15] (GAS Tecnologia)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\buscape.xml [2015-04-16]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mercadolivre.xml [2015-04-16]
FF Extension: Hola Better Internet - C:\Users\Clidenor\AppData\Roaming\Mozilla\Firefox\Profiles\7gf825jw.default-1430540633399\Extensions\jid1-4P0kohSJxU1qGg@jetpack [2015-05-16]
FF HKLM-x32\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2014-09-14]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-11-05]
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF HKLM-x32\...\Firefox\Extensions: [quick_searchff@gmail.com] - C:\Users\Clidenor\AppData\Roaming\Mozilla\Firefox\Profiles\7gf825jw.default-1430540633399\extensions\quick_searchff@gmail.com
FF HKLM-x32\...\Firefox\Extensions: [sweetsearch@gmail.com] - C:\Users\Clidenor\AppData\Roaming\Mozilla\Firefox\Profiles\7gf825jw.default-1430540633399\extensions\sweetsearch@gmail.com
FF HKU\S-1-5-21-1880014085-1414669863-2644191059-1002\...\Firefox\Extensions: [{87F8774F-B485-47E2-A755-A40A8A5E886C}] - C:\Users\Clidenor\AppData\Local\GAS Tecnologia\GBBD\bb\xpi
FF Extension: GBBD Banco do Brasil - C:\Users\Clidenor\AppData\Local\GAS Tecnologia\GBBD\bb\xpi [2015-01-28]
StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Mozilla Firefox\firefox.exe http://www.google.com

Chrome:
=======
CHR Profile: C:\Users\Clidenor\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Clidenor\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-06-05]
CHR Extension: (Google Drive) - C:\Users\Clidenor\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-06-05]
CHR Extension: (YouTube) - C:\Users\Clidenor\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-06-05]
CHR Extension: (Google Search) - C:\Users\Clidenor\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-06-05]
CHR Extension: (Avast SafePrice) - C:\Users\Clidenor\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2014-11-16]
CHR Extension: (Bookmark Manager) - C:\Users\Clidenor\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-05-01]
CHR Extension: (Avast Online Security) - C:\Users\Clidenor\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-11-05]
CHR Extension: (RealDownloader) - C:\Users\Clidenor\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2014-09-27]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Clidenor\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-05-01]
CHR Extension: (Google Wallet) - C:\Users\Clidenor\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-06-05]
CHR Extension: (Gmail) - C:\Users\Clidenor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-06-05]
CHR HKLM\...\Chrome\Extension: [pfkfdlcdbajamklbneflfbcmfgddmpae] - https://clients2.goo...ice/update2/crx
CHR HKU\S-1-5-21-1880014085-1414669863-2644191059-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [pfkfdlcdbajamklbneflfbcmfgddmpae] - https://clients2.goo...ice/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2014-11-05]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-11-05]
CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-08-14]
CHR HKLM-x32\...\Chrome\Extension: [pfkfdlcdbajamklbneflfbcmfgddmpae] - https://clients2.goo...ice/update2/crx

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [599944 2014-12-05] (Autodesk Inc.)
R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [31192 2014-02-07] (Autodesk, Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-11-05] (AVAST Software)
S2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2252504 2013-09-04] (Broadcom Corporation.)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
S2 CLKMSVC10_9EC60124; C:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe [247768 2013-02-01] (CyberLink)
R2 DiagTrack; C:\Windows\system32\diagtrack.dll [1429504 2015-03-05] (Microsoft Corporation)
R2 ftnlsv3hv; C:\Program Files\Common Files\VMware\DeviceRedirectionCommon\ftnlsv.exe [206008 2015-01-08] ()
R2 ftscanmgr; C:\Program Files (x86)\VMware\ScannerRedirection\ftscanmgr.exe [3645624 2015-01-08] ()
R2 GbpSv; C:\Program Files (x86)\GbPlugin\gbpsv.exe [565560 2015-01-20] (GAS Tecnologia)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation)
R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [129824 2013-01-23] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [166688 2013-01-23] (Intel Corporation)
S3 NetworkSupport; C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [639584 2013-02-05] (Sony Corporation)
R2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [483864 2013-02-06] (Sony Corporation)
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
R2 riqeneho; C:\Users\Clidenor\AppData\Roaming\82A53890-1430534395-11E3-BE32-F0BF9708EADB\jnsd61E8.tmp [198656 2015-05-29] () [File not signed]
R2 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [156672 2012-08-06] () [File not signed]
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [972000 2013-01-06] (Sony Corporation)
R2 vmware-view-usbd; C:\Program Files (x86)\VMware\VMware Horizon View Client\bin\vmware-view-usbd.exe [2030808 2015-01-21] (VMware, Inc.)
R2 vmwsprrdpwks; C:\Program Files (x86)\Common Files\VMware\SerialPortRedirection\Client\vmwsprrdpwks.exe [225464 2014-12-19] (VMware)
R3 VUAgent; C:\Program Files\Sony\VAIO Update\vuagent.exe [1642544 2014-02-28] (Sony Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
R2 wltrysvc; C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\bcmwltry.exe [6070272 2013-03-14] (Broadcom Corporation) [File not signed]
R2 wsnm; C:\Program Files (x86)\VMware\VMware Horizon View Client\wsnm\wsnm.exe [530648 2015-02-11] (VMware, Inc.)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-11-05] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2014-11-05] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-11-05] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-11-05] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2014-11-30] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2014-11-05] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2014-11-05] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2014-11-05] ()
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-09-04] (Broadcom Corporation.)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [6971056 2013-03-14] (Broadcom Corporation)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-09-24] (Microsoft Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
S3 ggsomc; C:\Windows\System32\drivers\ggsomc.sys [30424 2015-05-28] (Sony Mobile Communications)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [28400 2013-03-14] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-05-27] (Synaptics Incorporated)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
R3 WUDFWpdComp; C:\Windows\system32\DRIVERS\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)
S1 cherimoya; system32\drivers\cherimoya.sys [X]
S1 innfd_1_10_0_14; system32\drivers\innfd_1_10_0_14.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-05-30 01:57 - 2015-05-30 01:57 - 00032778 _____ () C:\Users\Clidenor\Desktop\FRST.txt
2015-05-29 06:28 - 2015-05-30 01:57 - 00000000 ____D () C:\FRST
2015-05-29 05:20 - 2015-05-29 05:20 - 02108928 _____ (Farbar) C:\Users\Clidenor\Desktop\FRST64.exe
2015-05-29 04:13 - 2015-05-29 04:36 - 00000000 ____D () C:\Users\Todos os Usuários\Spybot - Search & Destroy
2015-05-29 04:13 - 2015-05-29 04:36 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2015-05-29 04:13 - 2015-05-29 04:35 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2015-05-29 04:13 - 2015-05-29 04:13 - 00001407 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2015-05-29 04:13 - 2015-05-29 04:13 - 00001395 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2015-05-29 04:13 - 2015-05-29 04:13 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Safer-Networking
2015-05-29 04:13 - 2015-05-29 04:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2015-05-29 04:13 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\WINDOWS\system32\sdnclean64.exe
2015-05-29 04:10 - 2015-05-29 06:55 - 00000683 _____ () C:\Users\Clidenor\Desktop\gênero.txt
2015-05-29 04:06 - 2015-05-29 04:07 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\Clidenor\Downloads\spybot-2-4.exe
2015-05-28 18:47 - 2015-05-28 18:47 - 00030424 _____ (Sony Mobile Communications) C:\WINDOWS\system32\Drivers\ggsomc.sys
2015-05-28 18:47 - 2015-05-28 18:47 - 00016088 _____ (Sony Mobile Communications) C:\WINDOWS\system32\Drivers\ggflt.sys
2015-05-28 18:47 - 2015-05-28 18:47 - 00000000 ____D () C:\Users\Todos os Usuários\Sony Mobile
2015-05-28 18:47 - 2015-05-28 18:47 - 00000000 ____D () C:\ProgramData\Sony Mobile
2015-05-28 18:47 - 2015-05-28 18:47 - 00000000 ____D () C:\Program Files (x86)\Sony Mobile
2015-05-28 18:43 - 2015-05-28 18:44 - 00128830 _____ () C:\WINDOWS\DPINST.LOG
2015-05-28 18:43 - 2015-05-28 18:43 - 00002118 _____ () C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk
2015-05-28 18:41 - 2015-05-28 18:41 - 28684424 _____ (Sony Mobile Communications ) C:\Users\Clidenor\Downloads\Sony PC Companion_Web.exe
2015-05-28 17:44 - 2015-05-28 18:38 - 00000000 ____D () C:\Users\Clidenor\Desktop\celular
2015-05-28 13:38 - 2015-05-29 03:56 - 00000000 ____D () C:\Program Files (x86)\WinZipper
2015-05-27 21:36 - 2015-05-27 21:36 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2015-05-27 21:36 - 2015-05-27 21:36 - 00000000 ____D () C:\Users\Todos os Usuários\Synaptics
2015-05-27 21:36 - 2015-05-27 21:36 - 00000000 ____D () C:\ProgramData\Synaptics
2015-05-27 21:34 - 2015-05-28 18:38 - 00003832 _____ () C:\WINDOWS\setupact.log
2015-05-27 21:34 - 2015-05-27 21:36 - 00000000 ____D () C:\WINDOWS\LastGood
2015-05-27 21:34 - 2015-05-27 21:34 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2015-05-27 21:34 - 2015-05-27 21:34 - 00000000 _____ () C:\WINDOWS\setuperr.log
2015-05-27 11:13 - 2015-05-27 11:13 - 01804696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2015-05-27 11:13 - 2015-05-27 11:13 - 00626888 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynTP.sys
2015-05-27 11:13 - 2015-05-27 11:13 - 00419528 _____ (Synaptics Incorporated) C:\WINDOWS\SysWOW64\SynCom.dll
2015-05-27 11:13 - 2015-05-27 11:13 - 00267976 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SETDECD.tmp
2015-05-27 11:13 - 2015-05-27 11:13 - 00249032 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo27.dll
2015-05-27 11:13 - 2015-05-27 11:13 - 00042696 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys
2015-05-26 17:29 - 2015-05-27 00:50 - 1550814116 _____ () C:\Users\Clidenor\Downloads\RuPauls.Drag.Race.S07E13.Countdown.To.The.Crown.1080p.WEB-DL.AAC2.0.H264-fabutrash.mp4
2015-05-20 03:40 - 2015-05-20 03:40 - 00000000 ____D () C:\Users\Clidenor\Desktop\Pokémon
2015-05-20 03:00 - 2015-05-20 04:21 - 00000000 ____D () C:\Users\Clidenor\Desktop\Anglia Ruskin University
2015-05-19 23:31 - 2015-05-20 03:22 - 1620932778 _____ () C:\Users\Clidenor\Downloads\RuPauls.Drag.Race.S07E12.And.The.Rest.Is.Drag.1080p.WEB-DL.AAC2.0.H264-fabutrash.mp4
2015-05-19 16:12 - 2015-05-19 16:39 - 1114376229 ____R () C:\Users\Clidenor\Downloads\RuPauls.Drag.Race.S07E103.Meet.The.Queens.1080p.WEB-DL.AAC2.0.H264-fabutrash.mp4
2015-05-19 16:11 - 2015-05-19 16:49 - 816384346 _____ () C:\Users\Clidenor\Downloads\RuPauls.Drag.Race.S07E101.15.Fan.Favorite.Queens.Of.All.Time.1080p.WEB-DL.AAC2.0.H264-fabutrash.mp4
2015-05-19 16:11 - 2015-05-19 16:14 - 161726555 _____ () C:\Users\Clidenor\Downloads\RuPauls.Drag.Race.S07E102.The.Ru-les.1080p.WEB-DL.AAC2.0.H264-fabutrash.mp4
2015-05-19 16:10 - 2015-05-19 16:21 - 870123475 _____ () C:\Users\Clidenor\Downloads\RuPauls.Drag.Race.S07E12.And.The.Rest.Is.Drag.Untucked.1080p.WEB-DL.AAC2.0.H264-fabutrash.mp4
2015-05-17 04:47 - 2015-05-28 13:40 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-05-16 20:58 - 2015-05-05 18:59 - 00792568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-05-16 20:58 - 2015-05-05 18:59 - 00178168 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-05-16 15:55 - 2015-05-16 15:56 - 00000000 ____D () C:\Users\Clidenor\Downloads\Hola
2015-05-16 15:55 - 2015-05-16 15:55 - 00000000 ____D () C:\Users\Clidenor\AppData\Local\Hola
2015-05-13 17:47 - 2015-04-30 21:35 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 17:47 - 2015-04-30 21:35 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 01:23 - 2015-04-01 23:22 - 02985984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2015-05-13 01:23 - 2015-04-01 23:20 - 04417536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2015-05-13 01:23 - 2015-04-01 04:45 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2015-05-13 01:23 - 2015-04-01 03:31 - 01207296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2015-05-13 01:23 - 2015-03-20 02:56 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2015-05-13 01:23 - 2015-03-17 18:26 - 00467776 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-05-13 01:23 - 2015-03-13 03:02 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2015-05-13 01:23 - 2015-03-13 02:11 - 02162176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2015-05-13 01:23 - 2015-03-13 01:39 - 01812992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2015-05-13 01:23 - 2015-03-09 03:02 - 00057856 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2015-05-13 01:23 - 2015-03-06 03:47 - 01696256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2015-05-13 01:23 - 2015-03-04 02:32 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2015-05-13 01:23 - 2015-03-04 02:12 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2015-05-13 01:23 - 2015-01-30 01:53 - 02819584 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2015-05-13 01:23 - 2014-11-14 07:58 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsDatabase.dll
2015-05-13 01:22 - 2015-04-24 22:32 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2015-05-13 01:22 - 2015-04-10 01:34 - 02256896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-05-13 01:22 - 2015-04-10 01:11 - 01943040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-05-13 01:22 - 2015-04-03 01:35 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2015-05-13 01:22 - 2015-04-03 01:14 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2015-05-13 01:22 - 2015-03-13 05:03 - 00239424 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2015-05-13 01:22 - 2015-03-13 05:03 - 00154432 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2015-05-13 01:22 - 2015-03-13 01:29 - 00410017 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2015-05-13 01:22 - 2015-03-11 02:49 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdbinst.exe
2015-05-13 01:22 - 2015-03-11 02:09 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdbinst.exe
2015-05-13 01:22 - 2015-03-06 04:08 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2015-05-13 01:22 - 2015-03-06 03:43 - 01969664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll
2015-05-13 01:22 - 2015-03-05 00:09 - 01429504 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-05-13 01:22 - 2015-02-18 00:19 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2015-05-13 00:40 - 2015-03-30 06:47 - 00561928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-05-13 00:40 - 2015-03-27 04:27 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2015-05-13 00:40 - 2015-03-27 03:50 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2015-05-13 00:40 - 2015-03-27 03:48 - 01441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-05-13 00:39 - 2015-05-01 00:05 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2015-05-13 00:39 - 2015-04-30 23:48 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2015-05-13 00:39 - 2015-04-21 18:14 - 24971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-05-13 00:39 - 2015-04-21 17:50 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-05-13 00:39 - 2015-04-21 17:50 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2015-05-13 00:39 - 2015-04-21 17:49 - 02885120 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-05-13 00:39 - 2015-04-21 17:37 - 00633856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2015-05-13 00:39 - 2015-04-21 17:35 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-05-13 00:39 - 2015-04-21 17:31 - 06025728 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-05-13 00:39 - 2015-04-21 17:24 - 19691008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-05-13 00:39 - 2015-04-21 17:13 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2015-05-13 00:39 - 2015-04-21 17:11 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-05-13 00:39 - 2015-04-21 17:09 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2015-05-13 00:39 - 2015-04-21 17:08 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-05-13 00:39 - 2015-04-21 17:07 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2015-05-13 00:39 - 2015-04-21 17:05 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2015-05-13 00:39 - 2015-04-21 17:04 - 02278400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-05-13 00:39 - 2015-04-21 16:59 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-05-13 00:39 - 2015-04-21 16:58 - 00664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-05-13 00:39 - 2015-04-21 16:52 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-05-13 00:39 - 2015-04-21 16:49 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-05-13 00:39 - 2015-04-21 16:49 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-05-13 00:39 - 2015-04-21 16:49 - 00374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-05-13 00:39 - 2015-04-21 16:46 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-05-13 00:39 - 2015-04-21 16:40 - 14401536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-05-13 00:39 - 2015-04-21 16:38 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2015-05-13 00:39 - 2015-04-21 16:37 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-05-13 00:39 - 2015-04-21 16:36 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2015-05-13 00:39 - 2015-04-21 16:32 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-05-13 00:39 - 2015-04-21 16:31 - 04305920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-05-13 00:39 - 2015-04-21 16:28 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-05-13 00:39 - 2015-04-21 16:27 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-05-13 00:39 - 2015-04-21 16:26 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-05-13 00:39 - 2015-04-21 16:26 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-05-13 00:39 - 2015-04-21 16:25 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-05-13 00:39 - 2015-04-21 16:17 - 12828672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-05-13 00:39 - 2015-04-21 16:15 - 01547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-05-13 00:39 - 2015-04-21 16:03 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-05-13 00:39 - 2015-04-21 16:02 - 01882112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-05-13 00:39 - 2015-04-21 15:58 - 01310208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-05-13 00:39 - 2015-04-21 15:56 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-05-13 00:39 - 2015-04-13 23:48 - 04180480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-05-13 00:39 - 2015-04-10 02:00 - 01996800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-05-13 00:39 - 2015-04-10 01:50 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-05-13 00:39 - 2015-04-10 01:26 - 01560576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-05-13 00:39 - 2015-04-08 23:55 - 00410128 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2015-05-12 18:52 - 2015-05-12 23:26 - 976654119 _____ () C:\Users\Clidenor\Downloads\RuPauls.Drag.Race.S07E11.Hello.Kitty.Girls.Untucked.1080p.WEB-DL.AAC2.0.H264-fabutrash.mp4
2015-05-12 18:51 - 2015-05-13 05:33 - 1550058058 _____ () C:\Users\Clidenor\Downloads\RuPauls.Drag.Race.S07E11.Hello.Kitty.Girls.1080p.WEB-DL.AAC2.0.H264-fabutrash.mp4
2015-05-06 04:51 - 2015-05-06 05:02 - 1260666529 _____ () C:\Users\Clidenor\Downloads\Alumni [Falcon Studios] 2013.mp4
2015-05-06 00:38 - 2015-05-06 02:36 - 374936225 _____ () C:\Users\Clidenor\Downloads\RuPauls.Drag.Race.Untucked.S07E10.720p.mp4
2015-05-05 19:23 - 2015-05-06 03:03 - 1612022156 _____ () C:\Users\Clidenor\Downloads\RuPauls.Drag.Race.S07E10.Prancing.Queens.1080p.WEB-DL.AAC2.0.H264-fabutrash.mp4
2015-05-04 21:57 - 2015-05-29 00:11 - 00000000 ____D () C:\Users\Clidenor\AppData\Local\Spotify
2015-05-04 21:57 - 2015-05-04 21:57 - 00001828 _____ () C:\Users\Clidenor\Desktop\Spotify.lnk
2015-05-04 21:57 - 2015-05-04 21:57 - 00001814 _____ () C:\Users\Clidenor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2015-05-04 21:55 - 2015-05-28 23:31 - 00000000 ____D () C:\Users\Clidenor\AppData\Roaming\Spotify
2015-05-04 21:55 - 2015-05-04 21:55 - 00155296 _____ (Spotify Ltd) C:\Users\Clidenor\Downloads\SpotifySetup.exe
2015-05-02 21:24 - 2015-05-02 21:24 - 00164256 _____ () C:\Users\Clidenor\AppData\Local\GDIPFONTCACHEV1.DAT
2015-05-02 21:09 - 2015-05-02 21:48 - 00002019 _____ () C:\Users\Public\Desktop\Autodesk 360.lnk
2015-05-02 21:01 - 2015-05-02 21:01 - 00002114 _____ () C:\Users\Public\Desktop\AutoCAD 2015 - English.lnk
2015-05-02 21:01 - 2015-05-02 21:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoCAD 2015 - English
2015-05-02 20:45 - 2015-05-02 20:45 - 00000000 ____D () C:\Users\Public\Documents\Autodesk
2015-05-02 20:33 - 2015-05-02 20:33 - 00000000 ____D () C:\Program Files (x86)\Autodesk
2015-05-02 20:30 - 2015-05-02 20:30 - 14934512 _____ () C:\Users\Clidenor\Downloads\AutoCAD_2015_English_Win_32_64bit_Trial_wi_en-us_Setup.exe
2015-05-02 20:30 - 2015-05-02 20:30 - 00337808 _____ (Autodesk Inc.) C:\Users\Clidenor\Downloads\AutoCAD_2015_English_Win_32_64bit_Trial_wi_en-us_Setup_webinstall.exe
2015-05-02 20:10 - 2015-05-02 20:10 - 00001991 _____ () C:\Users\Public\Desktop\Revit 2015.lnk
2015-05-02 20:10 - 2015-05-02 20:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revit 2015
2015-05-02 19:50 - 2015-05-02 20:33 - 00000000 ____D () C:\Users\Todos os Usuários\Package Cache
2015-05-02 19:50 - 2015-05-02 20:33 - 00000000 ____D () C:\ProgramData\Package Cache
2015-05-02 19:38 - 2015-05-02 19:38 - 00000000 ____D () C:\Revit SDK 2015
2015-05-02 19:36 - 2015-05-02 19:36 - 00001100 _____ () C:\Users\Public\Desktop\LMTOOLS Utility.lnk
2015-05-02 19:36 - 2015-05-02 19:36 - 00000000 ____D () C:\Program Files\Autodesk Network License Manager
2015-05-02 19:32 - 2015-05-02 19:32 - 00337808 _____ (Autodesk Inc.) C:\Users\Clidenor\Downloads\Autodesk_Revit_2015_English_Win_64bit_R2_wi_en-US_Setup_webinstall(1).exe
2015-05-02 19:29 - 2015-05-23 19:49 - 00003316 _____ () C:\WINDOWS\System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-1880014085-1414669863-2644191059-1002
2015-05-02 19:28 - 2015-05-23 19:49 - 00003368 _____ () C:\WINDOWS\System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-1880014085-1414669863-2644191059-1002
2015-05-02 17:37 - 2015-05-02 21:09 - 00000000 ____D () C:\Program Files\Autodesk
2015-05-02 17:19 - 2015-05-05 20:06 - 00000000 ____D () C:\Users\Clidenor\AppData\Roaming\Autodesk
2015-05-02 17:18 - 2015-05-02 20:30 - 00000000 ____D () C:\Autodesk
2015-05-02 17:18 - 2015-05-02 19:49 - 09642336 _____ () C:\Users\Clidenor\Downloads\Autodesk_Revit_2015_English_Win_64bit_R2_wi_en-US_Setup.exe
2015-05-02 17:18 - 2015-05-02 17:18 - 00337808 _____ (Autodesk Inc.) C:\Users\Clidenor\Downloads\Autodesk_Revit_2015_English_Win_64bit_R2_wi_en-US_Setup_webinstall.exe
2015-05-02 15:36 - 2015-05-02 15:36 - 00000000 ____D () C:\Users\Clidenor\AppData\Local\Skype
2015-05-02 04:47 - 2015-05-02 04:47 - 00000834 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-05-02 04:47 - 2015-05-02 04:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-05-02 04:47 - 2015-05-02 04:47 - 00000000 ____D () C:\Program Files\CCleaner
2015-05-02 04:46 - 2015-05-02 04:46 - 05162080 _____ (Piriform Ltd) C:\Users\Clidenor\Downloads\594-ccsetup500.exe
2015-05-02 04:45 - 2015-05-02 04:45 - 00690872 _____ (Installer Internet ) C:\Users\Clidenor\Downloads\ccleaner-32-bits.exe
2015-05-02 03:56 - 2015-05-02 03:56 - 00000000 ____D () C:\Users\Todos os Usuários\ee9cd9a700001956
2015-05-02 03:56 - 2015-05-02 03:56 - 00000000 ____D () C:\ProgramData\ee9cd9a700001956
2015-05-02 03:55 - 2015-05-02 03:55 - 00000000 ____D () C:\Program Files (x86)\predm
2015-05-02 03:53 - 2015-05-02 03:53 - 00613255 _____ (CMI Limited) C:\Users\Clidenor\AppData\Local\nsnCFB1.tmp
2015-05-02 03:53 - 2015-05-02 03:53 - 00000000 __SHD () C:\Users\Clidenor\AppData\Roaming\AnyProtectEx
2015-05-02 03:39 - 2015-05-04 04:47 - 00000000 ____D () C:\Users\Clidenor\AppData\Roaming\82A53890-1430534395-11E3-BE32-F0BF9708EADB
2015-05-02 02:39 - 2015-05-02 03:00 - 00290304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\subinacl.exe
2015-05-02 02:39 - 2015-05-02 02:39 - 00000000 ____D () C:\Program Files\Adware-Removal-Tool
2015-05-02 02:20 - 2015-05-02 02:20 - 00753184 _____ () C:\Users\Clidenor\Downloads\Adware-Removal-Tool-v3.9.1.exe
2015-05-02 01:43 - 2015-05-29 04:45 - 00001219 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-05-02 01:43 - 2015-05-29 04:44 - 00001207 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-05-02 01:43 - 2015-05-17 21:23 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-05-01 23:29 - 2015-05-01 23:29 - 40826320 _____ () C:\Users\Clidenor\Downloads\mozilla-firefox-37-0-2-32-bits [1].exe
2015-05-01 23:28 - 2015-05-01 23:28 - 00690872 _____ (Installer Internet ) C:\Users\Clidenor\Downloads\mozilla-firefox-37-0-2-32-bits.exe
2015-05-01 23:07 - 2015-05-01 23:07 - 00000000 ____D () C:\Users\Todos os Usuários\5904ebb8000076e5
2015-05-01 23:07 - 2015-05-01 23:07 - 00000000 ____D () C:\ProgramData\5904ebb8000076e5
2015-05-01 23:06 - 2015-05-02 21:56 - 00000000 ____D () C:\Users\Clidenor\AppData\Roaming\Skype
2015-05-01 23:06 - 2015-05-01 23:06 - 00000000 ___RD () C:\Program Files (x86)\Skype
2015-05-01 23:06 - 2015-05-01 23:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-05-01 23:05 - 2015-05-01 23:06 - 00000000 ____D () C:\Users\Todos os Usuários\Skype
2015-05-01 23:05 - 2015-05-01 23:06 - 00000000 ____D () C:\ProgramData\Skype
2015-05-01 23:05 - 2015-05-01 23:05 - 00000000 ____D () C:\Users\Todos os Usuários\IHProtectUpDate
2015-05-01 23:05 - 2015-05-01 23:05 - 00000000 ____D () C:\ProgramData\IHProtectUpDate
2015-05-01 23:04 - 2015-05-29 04:18 - 00000000 ____D () C:\Users\Todos os Usuários\WindowsMangerProtect
2015-05-01 23:04 - 2015-05-29 04:18 - 00000000 ____D () C:\ProgramData\WindowsMangerProtect
2015-05-01 23:04 - 2015-05-29 04:18 - 00000000 ____D () C:\Program Files (x86)\XTab
2015-05-01 23:04 - 2015-05-02 03:36 - 00000000 ____D () C:\Users\Todos os Usuários\{9698972b-121c-6375-9698-8972b1215cac}
2015-05-01 23:04 - 2015-05-02 03:36 - 00000000 ____D () C:\ProgramData\{9698972b-121c-6375-9698-8972b1215cac}
2015-05-01 22:18 - 2015-05-16 20:49 - 00002407 _____ () C:\Users\Clidenor\Desktop\AGORA.txt

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-05-30 01:40 - 2014-12-05 06:47 - 00003954 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{4E2994E8-66F9-41C5-A364-FBB3DF1AD3EC}
2015-05-30 01:36 - 2014-06-05 20:26 - 00000000 ____D () C:\Users\Clidenor\AppData\Local\Akamai
2015-05-30 01:18 - 2014-06-06 05:59 - 00000902 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-05-30 01:11 - 2014-06-05 16:36 - 00001094 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-05-30 01:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-05-29 06:26 - 2014-06-05 15:34 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1880014085-1414669863-2644191059-1002
2015-05-29 06:18 - 2014-06-26 16:08 - 00000000 ____D () C:\Users\Clidenor\AppData\Roaming\vlc
2015-05-29 04:40 - 2014-11-05 09:22 - 00001422 _____ () C:\Users\Clidenor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-05-28 19:23 - 2014-11-05 08:46 - 01171292 _____ () C:\WINDOWS\WindowsUpdate.log
2015-05-28 19:18 - 2014-07-24 20:15 - 00000000 ____D () C:\Users\Clidenor\Desktop\EPCS
2015-05-28 18:43 - 2013-06-28 20:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2015-05-28 18:42 - 2013-06-28 20:24 - 00000000 ____D () C:\Users\Todos os Usuários\Sony
2015-05-28 18:42 - 2013-06-28 20:24 - 00000000 ____D () C:\ProgramData\Sony
2015-05-28 18:42 - 2013-06-28 19:42 - 00000000 ____D () C:\Program Files (x86)\Sony
2015-05-28 18:42 - 2013-06-28 19:25 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-05-28 17:37 - 2014-09-24 15:04 - 01797166 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-05-28 17:37 - 2014-09-24 14:19 - 00774900 _____ () C:\WINDOWS\system32\prfh0416.dat
2015-05-28 17:37 - 2014-09-24 14:19 - 00158494 _____ () C:\WINDOWS\system32\prfc0416.dat
2015-05-27 11:13 - 2013-03-14 22:11 - 00764104 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynCOM.dll
2015-05-27 05:50 - 2014-06-05 16:55 - 00000000 ____D () C:\Users\Clidenor\AppData\Roaming\uTorrent
2015-05-26 21:18 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2015-05-25 15:35 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2015-05-22 20:42 - 2012-07-26 08:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2015-05-22 20:40 - 2015-04-14 06:56 - 00000000 ___SD () C:\WINDOWS\SysWOW64\GWX
2015-05-22 20:40 - 2015-04-14 06:56 - 00000000 ___SD () C:\WINDOWS\system32\GWX
2015-05-19 22:02 - 2015-04-23 20:25 - 00000511 _____ () C:\Users\Clidenor\Desktop\passagem.txt
2015-05-18 07:11 - 2014-06-05 16:36 - 00001090 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-05-17 21:29 - 2014-11-05 09:26 - 00000000 ____D () C:\Users\Clidenor\OneDrive
2015-05-17 21:24 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-05-17 14:25 - 2014-11-05 09:32 - 00004182 _____ () C:\WINDOWS\System32\Tasks\avast! Emergency Update
2015-05-17 14:22 - 2014-11-05 08:54 - 00000000 ____D () C:\Users\Clidenor
2015-05-16 23:20 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2015-05-16 20:55 - 2014-06-24 18:32 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2015-05-16 20:55 - 2014-06-24 18:32 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2015-05-16 20:55 - 2013-08-22 15:44 - 05211336 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-05-16 20:53 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2015-05-16 20:51 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel
2015-05-16 20:51 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\system32\AdvancedInstallers
2015-05-16 07:06 - 2014-06-05 16:36 - 00004066 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-05-16 07:06 - 2014-06-05 16:36 - 00003830 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-05-13 17:52 - 2014-06-07 03:59 - 00000000 ____D () C:\Users\Todos os Usuários\Microsoft Help
2015-05-13 17:52 - 2014-06-07 03:59 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-05-13 17:46 - 2014-06-07 18:31 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-05-13 17:36 - 2014-06-07 18:31 - 140425016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-05-13 17:30 - 2014-06-24 18:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-05-13 17:25 - 2014-09-24 14:40 - 00000000 ____D () C:\Program Files\Windows Journal
2015-05-13 05:34 - 2013-06-28 20:18 - 00002457 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-05-09 23:39 - 2014-11-19 01:22 - 00000000 ____D () C:\Users\Clidenor\Desktop\eu e prika - imprimir
2015-05-06 07:17 - 2014-06-07 03:59 - 00000000 ____D () C:\Users\Clidenor\AppData\Local\Microsoft Help
2015-05-04 23:15 - 2015-04-19 18:19 - 00000000 ____D () C:\Users\Clidenor\AppData\Roaming\VMware
2015-05-02 21:48 - 2014-06-05 20:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
2015-05-02 21:22 - 2014-06-05 20:26 - 00000000 ____D () C:\Users\Todos os Usuários\Autodesk
2015-05-02 21:22 - 2014-06-05 20:26 - 00000000 ____D () C:\ProgramData\Autodesk
2015-05-02 21:18 - 2014-06-05 20:38 - 00000000 ____D () C:\Users\Clidenor\AppData\Local\Autodesk
2015-05-02 20:59 - 2014-06-05 20:35 - 00000000 ____D () C:\Program Files\Common Files\Autodesk Shared
2015-05-02 06:46 - 2014-12-15 18:54 - 00000000 ____D () C:\WINDOWS\Minidump
2015-05-02 06:46 - 2014-11-05 11:43 - 00000000 ___DC () C:\WINDOWS\Panther
2015-05-02 06:35 - 2014-09-14 22:10 - 00000000 ____D () C:\Program Files (x86)\WSE_Astromenda
2015-05-02 04:02 - 2015-01-28 19:19 - 00000000 ____D () C:\Program Files (x86)\GbPlugin
2015-05-02 03:33 - 2015-01-28 19:19 - 00000000 ____D () C:\Users\Todos os Usuários\GbPlugin
2015-05-02 03:33 - 2015-01-28 19:19 - 00000000 ____D () C:\ProgramData\GbPlugin
2015-05-02 00:10 - 2014-09-14 23:10 - 00000164 _____ () C:\Users\Clidenor\AppData\Roaming\WB.CFG
2015-05-01 22:53 - 2014-06-05 20:40 - 00000000 ____D () C:\Users\Clidenor\Documents\Autodesk Application Manager

==================== Files in the root of some directories =======

2015-01-28 19:18 - 2015-01-28 19:18 - 0018378 _____ () C:\Users\Clidenor\AppData\Roaming\unins000.dat
2015-01-28 19:18 - 2015-01-28 19:18 - 0815314 _____ () C:\Users\Clidenor\AppData\Roaming\unins000.exe
2014-09-14 23:10 - 2015-05-02 00:10 - 0000164 _____ () C:\Users\Clidenor\AppData\Roaming\WB.CFG
2014-12-02 01:10 - 2014-12-17 05:10 - 0000010 _____ () C:\Users\Clidenor\AppData\Local\DSI.DAT
2014-12-17 05:10 - 2014-12-17 05:10 - 0022528 _____ () C:\Users\Clidenor\AppData\Local\dsisetup1233987962.exe
2014-12-02 01:10 - 2014-12-02 01:10 - 0022528 _____ () C:\Users\Clidenor\AppData\Local\dsisetup1799752962.exe
2015-05-02 03:53 - 2015-05-02 03:53 - 0613255 _____ (CMI Limited) C:\Users\Clidenor\AppData\Local\nsnCFB1.tmp
2014-06-05 20:37 - 2014-06-05 20:37 - 0000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-05-26 19:21

==================== End of log ============================

And here is the Addition content

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-05-2015 01
Ran by Clidenor at 2015-05-30 01:58:06
Running from C:\Users\Clidenor\Desktop
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrador (S-1-5-21-1880014085-1414669863-2644191059-500 - Administrator - Disabled)
Clidenor (S-1-5-21-1880014085-1414669863-2644191059-1002 - Administrator - Enabled) => C:\Users\Clidenor
Convidado (S-1-5-21-1880014085-1414669863-2644191059-501 - Limited - Disabled)
UpdatusUser (S-1-5-21-1880014085-1414669863-2644191059-1001 - Limited - Enabled) => C:\Users\UpdatusUser

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-1880014085-1414669863-2644191059-1002\...\uTorrent) (Version: 3.4.3.40298 - BitTorrent Inc.)
ACID Music Studio 9.0 (HKLM-x32\...\{78EB80B0-18A0-11E2-9761-F04DA23A5C58}) (Version: 9.0.35 - Sony)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Premiere Pro CS6 (HKLM-x32\...\{7176B973-6011-43C1-AEBC-2D73FE7C6982}) (Version: 6.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.11) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKU\S-1-5-21-1880014085-1414669863-2644191059-1002\...\Akamai) (Version: - Akamai Technologies, Inc)
Aplicativos da Autodesk em destaque (HKLM-x32\...\{EDDEE94B-214D-4B07-9727-A3E46F3E379A}) (Version: 1.2.0 - Autodesk)
ArtRage Studio (HKLM-x32\...\{5A9FE63F-F201-4D55-9F5F-06DDB239AC4F}) (Version: 3.5.5 - Ambient Design)
AutoCAD 2015 - English (Version: 20.0.141.0 - Autodesk) Hidden
AutoCAD 2015 - English (Version: 20.0.51.0 - Autodesk) Hidden
AutoCAD 2015 Language Pack - English (Version: 20.0.51.0 - Autodesk) Hidden
Autodesk 360 (HKLM\...\{556966D9-F7F6-421B-9707-D07901604DDF}) (Version: 5.2.3.1000 - Autodesk)
Autodesk App Manager (HKLM-x32\...\{C8125548-F2D5-4059-823F-1F3C5BBD9F19}) (Version: 1.2.0 - Autodesk)
Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 4.0.69.0 - Autodesk)
Autodesk AutoCAD 2015 - English (HKLM\...\AutoCAD 2015 - English) (Version: 20.0.141.0 - Autodesk)
Autodesk AutoCAD Performance Feedback Tool Version 1.2.2 (HKLM-x32\...\{85735431-6CD3-4B16-BEC8-95332034E53B}) (Version: 1.2.2.0 - Autodesk)
Autodesk BIM 360 Glue AutoCAD 2015 Add-in 64 bit (HKLM\...\{9D589081-AFC2-4932-9071-AC585AC1EA83}) (Version: 3.32.3004 - Autodesk)
Autodesk BIM 360 Revit 2015 Add-in 64 bit (HKLM\...\{37E1C3A1-7DBF-4250-9314-46167B68383D}) (Version: 3.32.3357 - Autodesk)
Autodesk CAD Manager Tools (HKLM\...\{5783F2D7-0111-0409-0110-0060B0CE6BBA}) (Version: 16.0.0.65 - Autodesk)
Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.2.0.0 - Autodesk)
Autodesk Content Service (x32 Version: 3.2.0.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (x32 Version: 3.2.0.0 - Autodesk) Hidden
Autodesk Material Library 2015 (HKLM-x32\...\{427F733F-4D6C-45BC-9324-EB743104C321}) (Version: 5.2.8.100 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2015 (HKLM-x32\...\{ABE2F70B-8D94-44E9-AA04-F0DB35063D62}) (Version: 5.2.8.100 - Autodesk)
Autodesk Material Library Low Resolution Image Library 2015 (HKLM-x32\...\{4FBC9635-AC56-4378-8FDE-C4D3ED072681}) (Version: 5.2.8.100 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2015 (HKLM-x32\...\{9F6466D9-6EFC-4A10-B931-C72D1A3F1763}) (Version: 5.2.8.100 - Autodesk)
Autodesk Network License Manager (HKLM\...\{4BE91685-1632-47FC-B563-A8A542C6664C}) (Version: 11.12.0 - Autodesk)
Autodesk Revit 2015 (HKLM\...\Autodesk Revit 2015) (Version: 15.0.207.0 - Autodesk)
Autodesk Revit Content Libraries 2015 (HKLM\...\Autodesk Revit Content Libraries 2015) (Version: 15.0.207.0 - Autodesk)
Autodesk Workflows 2015 (HKLM\...\{A90DD6F8-60D2-4803-AFF6-796400E73E1B}) (Version: 5.2.14.100 - Autodesk, Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.0.2206 - AVAST Software)
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
Broadcom Wireless Utility (HKLM\...\{4CDA59B9-7AD3-4283-9F5C-BC469FF975B6}) (Version: 6.30.59.125 - Broadcom Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.00 - Piriform)
CDisplay 1.8 (HKLM-x32\...\CDisplay_is1) (Version: - dvd8n)
Configurações do servidor de mídia VAIO (HKLM\...\{62A172B2-550E-499D-9A82-5190D18390AA}) (Version: 1.1.0.02220 - Sony Corporation)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.2529 - CyberLink Corp.)
CyberLink PowerDVD (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.0.6201.52 - CyberLink Corp.)
Diagnóstico da ventoinha da CPU do VAIO (HKLM-x32\...\{BCE6E3D7-B565-4E1B-AC77-F780666A35FB}) (Version: 1.2.0.03050 - Sony Corporation)
DVD Architect Studio 5.0 (HKLM-x32\...\{42C509F1-C451-11E1-AEC9-F04DA23A5C58}) (Version: 5.0.161 - Sony)
ESDL (x32 Version: 1.0.0 - Sony Corporation) Hidden
FARO LS 1.1.501.0 (64bit) (HKLM-x32\...\{8A470330-70B2-49AD-86AF-79885EF9898A}) (Version: 5.1.0.30630 - FARO Scanner Production)
FDUx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
Ferramenta de Restauração de Dados VAIO (HKLM-x32\...\{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}) (Version: 1.11.0.13250 - Sony Corporation)
Google Earth Pro (HKLM-x32\...\{44FC61F0-2F8A-11E3-8CAE-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google SketchUp Pro 8 (HKLM-x32\...\{E0A160F1-127B-43AC-AF96-EBB6319B01C7}) (Version: 3.0.4811 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
Importação do SketchUp (HKLM-x32\...\{C403E867-FCF1-432B-BCC1-8FFD40A10A6E}) (Version: 1.2.0 - Autodesk)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1281 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3958 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.6.0.1030 - Intel Corporation)
Intel® SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Java 7 Update 13 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417013FF}) (Version: 7.0.130 - Oracle)
Java 7 Update 13 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217013FF}) (Version: 7.0.130 - Oracle)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Módulo de Segurança - Banco do Brasil (HKLM-x32\...\{36386dc9-8543-4b12-ae6b-220fd52f19f3}_is1) (Version: 3.11.0.1 - )
Movie Studio Platinum 12.0 (64-bit) (HKLM\...\{1C8AC59F-6464-11E2-A0C0-F04DA23A5C58}) (Version: 12.0.756 - Sony)
Mozilla Firefox 38.0.1 (x86 pt-BR) (HKLM-x32\...\Mozilla Firefox 38.0.1 (x86 pt-BR)) (Version: 38.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 37.0.2 - Mozilla)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
NVIDIA Driver de gráficos 311.46 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 311.46 - NVIDIA Corporation)
NVIDIA Software do sistema PhysX 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation)
Pacote de Idiomas do Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - Português (Brasil) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PTB) (Version: 10.0.50903 - Microsoft Corporation)
Painel de controle da NVIDIA 311.46 (Version: 311.46 - NVIDIA Corporation) Hidden
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
PlayMemories Home (HKLM-x32\...\{1E5C7043-09C5-4974-A69F-A5271FD82BBC}) (Version: 7.0.02.14060 - Sony Corporation)
Plugin de Diagnóstico de Hardware VAIO Care (HKLM-x32\...\{EC153498-00E1-4C9C-89BE-81527C6750BE}) (Version: 4.8.0.13250 - Sony Corporation)
RealDownloader (x32 Version: 1.3.3 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer (HKLM-x32\...\RealPlayer 16.0) (Version: 16.0.3 - RealNetworks)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.10.1226.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6895 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{0D61A55C-3ADC-409F-BF5B-A1766D1F5944}) (Version: 6.2.9200.28135 - Realtek Semiconductor Corp.)
RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden
Restore (x32 Version: 1.0.0 - Sony Corporation) Hidden
Revit 2015 (Version: 15.0.207.0 - Autodesk) Hidden
Revit 2015 Language Pack - English (Version: 15.0.207.0 - Autodesk) Hidden
Revit Content Libraries 2015 (Version: 15.0.207.0 - Autodesk) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Skype™ 7.4 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.4.102 - Skype Technologies S.A.)
Software Intel® PROSet/Wireless NFC (HKLM\...\Software Intel® PROSet/Wireless NFC) (Version: 1.0.1.003 - Intel Corporation)
Software Intel® PROSet/Wireless NFC (Version: 1.0.1.003 - Intel Corporation) Hidden
Sony Mobile Update Engine (HKLM-x32\...\Update Engine) (Version: 2.15.7.201505261442 - Sony Mobile Communications Inc.)
Sony PC Companion 2.10.259 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.259 - Sony)
Sound Forge Audio Studio 10.0 (HKLM-x32\...\{7A263871-BEEC-11E1-AC53-F04DA23A5C58}) (Version: 10.0.178 - Sony)
Spotify (HKU\S-1-5-21-1880014085-1414669863-2644191059-1002\...\Spotify) (Version: 1.0.6.80.g2a801a53 - Spotify AB)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
SSLx64 (Version: 1.0.0 - Sony Corporation ) Hidden
SSLx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
Suporte de Transferência VAIO (HKLM-x32\...\{5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF}) (Version: 1.9.0.11060 - Sony Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.5.0 - Synaptics Incorporated)
VAIO - Xperia Link (HKLM-x32\...\{D91558BF-D1F3-411F-AEFE-8774CB406512}) (Version: 1.2.0.02040 - Sony Corporation)
VAIO BIOS Data Transfer Utility (x32 Version: 1.0.0.02050 - Sony Corporation) Hidden
VAIO Care (HKLM\...\{EC635BC0-0D7C-4CA2-9B87-2A330C298CB2}) (Version: 8.2.0.15030 - Sony Corporation)
VAIO Control Center (HKLM-x32\...\{8E797841-A110-41FD-B17A-3ABC0641187A}) (Version: 6.2.1.03250 - Sony Corporation)
VAIO Easy Connect (x32 Version: 8.2.0.14170 - Sony Corporation) Hidden
VAIO Gesture Control (HKLM-x32\...\{692955F2-DE9F-4078-8FAA-858D6F3A1776}) (Version: 2.2.0.01230 - Sony Corporation)
VAIO Gesture Control (x32 Version: 2.2.0.01230 - Sony Corporation) Hidden
VAIO Image Optimizer (HKLM-x32\...\InstallShield_{5597C927-029A-46A7-A0C0-8DABD9891A50}) (Version: 3.1.00.14260 - Sony Corporation)
VAIO Image Optimizer (x32 Version: 3.1.00.14260 - Sony Corporation) Hidden
VAIO Improvement (HKLM-x32\...\{3A26D9BD-0F73-432D-B522-2BA18138F7EF}) (Version: 2.2.0.01240 - Sony Corporation)
VAIO Movie Creator (HKLM-x32\...\InstallShield_{C2CC5822-32E6-4D21-88EA-DE8CED09EE2F}) (Version: 4.1.01.15140 - Sony Corporation)
VAIO Movie Creator (x32 Version: 4.1.01.15140 - Sony Corporation) Hidden
VAIO Sample Music (HKLM-x32\...\{FBEE3D44-0933-4B84-BB6A-49957F89187F}) (Version: 1.0.0.03051 - Sony Corporation)
VAIO Update (HKLM-x32\...\{9FF95DA2-7DA1-4228-93B7-DED7EC02B6B2}) (Version: 7.0.1.02280 - Sony Corporation)
VCCx64 (Version: 1.0.0 - Sony Corporation) Hidden
VCCx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VHD (x32 Version: 1.0.0 - Sony Corporation) Hidden
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{6DA2B636-698A-3294-BF4A-B5E11B238CDD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{8CCEA24C-51AE-3B71-9092-7D0C44DDA2DF}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{C3A57BB3-9AA6-3F6F-9395-6C062BDD5FC4}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{F6F09DD8-F39B-3A16-ADB9-C9E6B56903F9}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{04B34E21-5BEE-3D2B-8D3D-E3E80D253F64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{14866AAD-1F23-39AC-A62B-7091ED1ADE64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{4B90093A-5D9C-3956-8ABB-95848BE6EFAD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{B42E259C-E4D4-37F1-A1B2-EB9C4FC5A04D}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
VIx64 (Version: 1.0.0 - Sony Corporation) Hidden
VIx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
VMware Horizon Client (HKLM\...\{4CE5CE6C-14DA-41E7-8728-07C95F3CBC59}) (Version: 3.3.0.25749 - VMware, Inc.)
VPMx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VSSTx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VSSTx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VU5x64 (Version: 1.1.0 - Sony Corporation ) Hidden
VU5x86 (x32 Version: 1.1.0 - Sony Corporation ) Hidden
VWSTx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
WIDCOMM Bluetooth Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.4900 - Broadcom Corporation)
WinRAR 5.01 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
XperiaLinkx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1880014085-1414669863-2644191059-1002_Classes\CLSID\{0783EB25-59F8-4F02-B6B0-F1D4349F0000}\InprocServer32 -> C:\Users\Clidenor\AppData\Local\GAS Tecnologia\GBBD\npsf_bb_64.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-1880014085-1414669863-2644191059-1002_Classes\CLSID\{0783EB25-59F8-4F02-B6B1-F1D4349F0000}\InprocServer32 -> C:\Users\Clidenor\AppData\Local\GAS Tecnologia\GBBD\npsf_bb_64.dll (GAS Tecnologia)
CustomCLSID: HKU\S-1-5-21-1880014085-1414669863-2644191059-1002_Classes\CLSID\{0B628DE4-07AD-4284-81CA-5B439F67C5E6}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2015\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1880014085-1414669863-2644191059-1002_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2015\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1880014085-1414669863-2644191059-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-1880014085-1414669863-2644191059-1002_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2015\en-US\acadficn.dll (Autodesk, Inc.)

==================== Restore Points =========================

21-05-2015 18:13:51 Ponto de Verificação Agendado
27-05-2015 21:31:18 Windows Update

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {01707824-4AF5-4819-9F4B-D4202F515E48} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {0A78A08E-D90F-4EA7-A9C1-FE2500CB1F8B} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Daily => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2013-02-02] (Sony Corporation)
Task: {0B171A85-B82C-4551-A833-955B38CC3C46} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {18ADCD71-989C-4A02-887A-34536054DD1D} - System32\Tasks\Sony Corporation\VAIO Care\VCCheckIolo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2013-02-26] (Sony Corporation)
Task: {1FC18F4A-FEA3-4DF9-819D-C786F913DABB} - System32\Tasks\Sony Corporation\VAIO Care\VAIO Care => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2013-02-26] (Sony Corporation)
Task: {2A2A2F5B-3336-431F-9FB1-1D2B9E3E9DA7} - System32\Tasks\Sony Corporation\VAIO Care\GetPOTInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2013-02-26] (Sony Corporation)
Task: {2D56392F-8046-4484-B969-1D6CE20C86B3} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-1880014085-1414669863-2644191059-1002 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {381CE10F-51DE-4787-9EFA-A89E877D46F7} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-1880014085-1414669863-2644191059-1002 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {4616C9B3-B79E-4729-8E53-73B660AEF278} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-05] (Google Inc.)
Task: {4852B316-7C0C-4CCD-80CE-910CED2D0077} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1880014085-1414669863-2644191059-1002 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {5367202D-4095-4340-941A-BF29285AAB39} - System32\Tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterUser => C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe [2013-02-20] (Sony Corporation)
Task: {5A863820-FFFE-4201-98C6-C903140C523C} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [2014-02-28] (Sony Corporation)
Task: {61DF8DEB-22DA-4DE1-9BC1-967243A53A0E} - System32\Tasks\Sony Corporation\VAIO Care\VCMetrics => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2013-02-26] (Sony Corporation)
Task: {6418A49A-2CA3-4B0F-8566-4101252DBE7D} - System32\Tasks\Sony Corporation\VAIO Care\CheckSystemInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2013-02-26] (Sony Corporation)
Task: {64428D44-E064-44B3-9056-0CB0C7A7AB54} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Month => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2013-02-02] (Sony Corporation)
Task: {69B0AEFD-6235-4E4D-8EFF-392158380BC9} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair => C:\Program Files\Sony\VAIO Update\VUSR.exe [2014-03-01] (Sony Corporation)
Task: {6A3D6168-8CDB-4196-935D-E65214BEE5B1} - System32\Tasks\Sony Corporation\VAIO Care\CRMReminder => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2013-02-26] (Sony Corporation)
Task: {76F2158D-913F-4FD3-842C-782CD92E41A6} - System32\Tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterSystem => C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe [2013-02-20] (Sony Corporation)
Task: {78D947D5-CF01-45FC-92CC-D6C38F3F6239} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation)
Task: {7B233BDB-CBAB-473B-B1E6-1C4026398F9C} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1880014085-1414669863-2644191059-1002 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {7D12E17C-5E3C-439F-930E-E1022F27B976} - System32\Tasks\Sony Corporation\VAIO Gesture Control\VCGULogonTask => C:\Program Files (x86)\Sony\VAIO Camera Gesture Utility\VCGU.exe [2013-01-23] (Sony Corporation)
Task: {82BD8EA5-652D-432A-83E7-AEB83C37C9B2} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2012-07-24] (CyberLink Corp.)
Task: {83447ECF-0206-440F-8101-E09DA5C6988E} - System32\Tasks\Sony Corporation\VAIO Care\VCOneClick => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2013-02-26] (Sony Corporation)
Task: {8B2FE5E8-A780-457D-8523-136235796AA3} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-15] (Adobe Systems Incorporated)
Task: {9597727D-38E0-415C-9DE3-5EBA33D75194} - System32\Tasks\Sony Corporation\VAIO Care\UploadPOT => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2013-02-26] (Sony Corporation)
Task: {9EFE9974-C6C1-4299-BBA9-F9C0F4E1D23C} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-05-13] (Microsoft Corporation)
Task: {AAF5CEFD-4FCB-4447-9B05-AF62EE0D22CE} - System32\Tasks\Sony Corporation\VAIO Control Center\NetworkSetting\NetworkSetting Logon Start => C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient
Task: {AB7DD74F-73E8-446B-A1DD-2EF7477211E8} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-05-06] (Microsoft Corporation)
Task: {B747CB69-12B8-4EFD-8EC8-673833A36586} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-05] (Google Inc.)
Task: {B84BDBD3-B144-47FC-9F29-082807FC2E0E} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {CD3102BD-193F-44CA-9E1A-52B6FF5994A4} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-1880014085-1414669863-2644191059-1002 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe [2013-08-14] (RealNetworks, Inc.)
Task: {DF595C72-1A47-4034-824C-CB4F13DA5B4E} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-11-05] (AVAST Software)
Task: {E76EFC24-4B03-4C8F-BA22-1DB6A0C53DA7} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.)
Task: {ED43C226-7818-4F6E-9312-54C50014D405} - System32\Tasks\Sony Corporation\VAIO Care\VCRLog => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2013-02-26] (Sony Corporation)
Task: {ED9CDEEE-33A9-4243-BADB-8E291F2A5E46} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementUploader => C:\Program Files\Sony\VAIO Improvement\viuploader.exe [2013-01-24] (Sony Corporation)
Task: {F060320D-182D-4A55-BD44-ACBC38043F05} - System32\Tasks\Sony Corporation\VAIO Care\VCSelfHeal => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2013-02-26] (Sony Corporation)
Task: {F3D9C57A-69E6-43D9-A03A-98D4034D4145} - System32\Tasks\Sony Corporation\VAIO Hardware Diagnostics\VHDInformationCheck => C:\Program Files (x86)\Sony\VAIO Recovery\plugins\InformationCheck.exe [2013-01-25] (Sony Corporation)
Task: {FD081D48-EB7A-4AB0-B031-047AEE4EA049} - System32\Tasks\Sony Corporation\Xperia Link\Xperia Link Logon Start => C:\Program Files (x86)\Sony\Xperia Link\Xperia Link.exe [2013-02-05] (Sony Corporation)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2013-09-05 03:36 - 2013-09-05 03:36 - 00013088 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2012-12-14 18:27 - 2012-12-14 18:27 - 00049520 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btwleapi.dll
2015-01-08 12:52 - 2015-01-08 12:52 - 00206008 _____ () C:\Program Files\Common Files\VMware\DeviceRedirectionCommon\ftnlsv.exe
2015-01-08 12:58 - 2015-01-08 12:58 - 03645624 _____ () C:\Program Files (x86)\VMware\ScannerRedirection\ftscanmgr.exe
2013-08-14 15:19 - 2013-08-14 15:19 - 00039056 _____ () C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
2015-05-02 03:40 - 2015-05-29 05:48 - 00198656 _____ () C:\Users\Clidenor\AppData\Roaming\82A53890-1430534395-11E3-BE32-F0BF9708EADB\jnsd61E8.tmp
2013-09-05 00:17 - 2013-09-05 00:17 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2014-05-01 20:05 - 2014-05-01 20:05 - 00232328 _____ () C:\Program Files\Autodesk\Autodesk Sync\qjson_Ad_0.dll
2014-05-01 20:05 - 2014-05-01 20:05 - 00048520 _____ () C:\Program Files\Autodesk\Autodesk Sync\QtSolutions_MFCMigrationFramework_Ad_2.dll
2014-05-01 20:05 - 2014-05-01 20:05 - 00059784 _____ () C:\Program Files\Autodesk\Autodesk Sync\qoauth_Ad_1.dll
2014-05-01 20:05 - 2014-05-01 20:05 - 00922504 _____ () C:\Program Files\Autodesk\Autodesk Sync\qca_Ad_2.dll
2012-08-06 17:27 - 2012-08-06 17:27 - 00156672 _____ () C:\Program Files\Sony\VAIO Care\VCPerfService.exe
2014-11-22 01:03 - 2014-11-22 01:03 - 00057344 _____ () C:\Program Files\CCleaner\lang\lang-1046.dll
2015-05-28 18:42 - 2014-06-23 09:07 - 00113376 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
2012-08-06 17:27 - 2012-08-06 17:27 - 00062464 _____ () C:\Program Files\Sony\VAIO Care\listener.exe
2015-05-17 19:36 - 2015-05-17 19:36 - 02929664 _____ () C:\Program Files\AVAST Software\Avast\defs\15051701\algo.dll
2015-05-29 19:38 - 2015-05-29 19:38 - 02950656 _____ () C:\Program Files\AVAST Software\Avast\defs\15052901\algo.dll
2015-05-02 20:28 - 2014-12-05 03:27 - 00055688 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\QtSolutions_Service-head.dll
2015-05-02 20:28 - 2014-12-05 03:27 - 00104328 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\qjson0.dll
2015-01-08 12:47 - 2015-01-08 12:47 - 00225464 _____ () C:\Program Files (x86)\Common Files\VMware\DeviceRedirectionCommon\ftnlapi.dll
2014-11-05 09:32 - 2014-11-05 09:32 - 38561576 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-05-17 21:28 - 2014-12-05 03:27 - 00104328 _____ () C:\Users\Clidenor\AppData\Local\Autodesk\.AdskAppManager\R1\qjson0.dll
2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2013-06-28 19:25 - 2013-01-23 10:26 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll
2015-05-28 18:42 - 2012-04-30 11:57 - 00039936 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\TMonitorAPI.dll
2015-05-28 18:42 - 2014-12-04 15:18 - 00241152 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\MExplorer.dll
2011-07-07 14:54 - 2011-07-07 14:54 - 00233984 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\Report.dll
2015-05-28 18:42 - 2013-05-20 12:58 - 00620718 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\sqlite3.dll
2015-05-28 18:42 - 2010-01-11 16:44 - 00053248 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\VObject.dll
2015-04-10 11:26 - 2015-04-10 11:26 - 00669696 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\PhoneUpdate.dll
2015-03-23 19:19 - 2015-03-23 19:19 - 02620416 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\libxt.dll
2015-05-29 04:13 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2015-05-29 04:13 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2015-05-29 04:13 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2015-05-29 04:13 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Program Files (x86)\GbPlugin:IncompleteStartProcessProtection.cnt
AlternateDataStreams: C:\Users\Clidenor\OneDrive:ms-properties

==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-1880014085-1414669863-2644191059-1002\...\bancobrasil.com.br -> www.bancobrasil.com.br
IE trusted site: HKU\S-1-5-21-1880014085-1414669863-2644191059-1002\...\bb.com.br -> hxxps://seg.bb.com.br

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1880014085-1414669863-2644191059-1001\Control Panel\Desktop\\Wallpaper ->
HKU\S-1-5-21-1880014085-1414669863-2644191059-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Clidenor\AppData\Roaming\Microsoft\Windows Photo Viewer\Papel de Parede do Visualizador de Fotos do Windows.jpg
DNS Servers: 77.244.128.44 - 77.244.128.45

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run32: => "SmartWeb"
HKU\S-1-5-21-1880014085-1414669863-2644191059-1002\...\StartupApproved\StartupFolder: => "hqghumeaylnlf.lnk"
HKU\S-1-5-21-1880014085-1414669863-2644191059-1002\...\StartupApproved\StartupFolder: => "SmartWeb.lnk"
HKU\S-1-5-21-1880014085-1414669863-2644191059-1002\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-1880014085-1414669863-2644191059-1002\...\StartupApproved\Run: => "Skype"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [UDP Query User{332A232F-409B-4547-AC4A-EA0B73471778}C:\users\clidenor\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\clidenor\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{7DF22C19-81C5-4C8D-AC4C-2088B09FB71C}C:\users\clidenor\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\clidenor\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{9E7ED19C-63F3-4B46-A5A6-F66845349DD9}C:\program files (x86)\google\google sketchup 8\sketchup.exe] => (Allow) C:\program files (x86)\google\google sketchup 8\sketchup.exe
FirewallRules: [TCP Query User{6A2611A3-3B1C-491D-A90B-5B1333ED7F1D}C:\program files (x86)\google\google sketchup 8\sketchup.exe] => (Allow) C:\program files (x86)\google\google sketchup 8\sketchup.exe
FirewallRules: [UDP Query User{68679E1D-D5BD-430A-83F6-598CC5D4DCD2}C:\users\clidenor\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\clidenor\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{BB3D6F28-5F90-46BA-B2C5-AA96653989B1}C:\users\clidenor\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\clidenor\appdata\local\akamai\netsession_win.exe
FirewallRules: [{F31BD948-FC15-4BA6-B649-77E8A4061FBE}] => (Allow) C:\Users\Clidenor\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{C6541016-5BB7-4119-A7FE-793ABC6894B6}] => (Allow) C:\Users\Clidenor\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{414826CE-670C-4E9B-A168-0AE53CF7409C}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD9\PowerDVD9.EXE
FirewallRules: [{D0085081-96B0-47F7-8515-B3EBCD3EBF11}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{C956EDB2-29D3-4A5D-BDBC-88AD3947D2B7}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{5935DB99-9D51-49A2-8052-618616DE32CF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{08C6624A-7418-4080-BE25-620579F87A9F}] => (Allow) C:\Program Files (x86)\VMware\VMware Horizon View Client\vmware-remotemks.exe
FirewallRules: [{104B76AB-F41E-4FE4-8BAA-7A18F48DB114}] => (Allow) C:\Program Files (x86)\VMware\VMware Horizon View Client\vmware-remotemks.exe
FirewallRules: [{6C99D6C3-EDDE-4CF7-8E46-FDB0C29C3D4B}] => (Allow) C:\Program Files (x86)\VMware\VMware Horizon View Client\vmware-remotemks.exe
FirewallRules: [{0673B607-82AD-495C-9160-37840941474D}] => (Allow) C:\Program Files (x86)\VMware\VMware Horizon View Client\vmware-remotemks.exe
FirewallRules: [{DF005E42-5BC0-493D-BAA9-CD8A012A920C}] => (Allow) C:\Program Files (x86)\VMware\VMware Horizon View Client\vmware-remotemks.exe
FirewallRules: [{6F430228-AC29-409C-8F2F-F1B03266F34F}] => (Allow) C:\Program Files (x86)\VMware\VMware Horizon View Client\vmware-remotemks.exe
FirewallRules: [{4645D957-488B-42F7-BA4B-6F26E5E83048}] => (Allow) C:\Program Files (x86)\VMware\VMware Horizon View Client\vmware-view.exe
FirewallRules: [{A9466398-B5CD-469D-8D65-D279FBEE8229}] => (Allow) C:\Program Files (x86)\VMware\VMware Horizon View Client\vmware-view.exe
FirewallRules: [{5B006242-CD89-44C6-BE08-73B31309324C}] => (Allow) C:\Program Files (x86)\VMware\VMware Horizon View Client\vmware-view.exe
FirewallRules: [{41B2E50F-D246-4812-A5AF-5650DF2FBB5E}] => (Allow) C:\Program Files (x86)\VMware\VMware Horizon View Client\vmware-view.exe
FirewallRules: [{93065034-22D5-4B92-81A3-E39C6FDFE01D}] => (Allow) C:\Program Files (x86)\VMware\VMware Horizon View Client\vmware-view.exe
FirewallRules: [{E1C225CE-AC02-40DA-BA84-4E7D1C76A76E}] => (Allow) C:\Program Files (x86)\VMware\VMware Horizon View Client\vmware-view.exe
FirewallRules: [{0FA4DAD4-34C8-4EF1-B051-D2D3F9BF80E2}] => (Allow) LPort=50248
FirewallRules: [TCP Query User{74BA2F46-30CF-48E5-B5B0-224B71F6FDF1}C:\users\clidenor\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\clidenor\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{17635594-847B-435E-8A7B-4D27BE213E2E}C:\users\clidenor\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\clidenor\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{A0C230BC-E400-4CB1-959E-7FBC751A2EF6}C:\users\clidenor\appdata\local\hola\firefox\app\hola_plugin.exe] => (Allow) C:\users\clidenor\appdata\local\hola\firefox\app\hola_plugin.exe
FirewallRules: [UDP Query User{0EEAE622-04B1-4218-9D24-F9161F43551A}C:\users\clidenor\appdata\local\hola\firefox\app\hola_plugin.exe] => (Allow) C:\users\clidenor\appdata\local\hola\firefox\app\hola_plugin.exe
FirewallRules: [{B5993795-63E8-4FA1-B8CD-D740AF6A3F57}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{2AD6D60F-6D19-4F7D-82F2-D2B02DA6374B}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (05/30/2015 01:36:57 AM) (Source: MsiInstaller) (EventID: 11310) (User: CLIDENOR)
Description: Produto: Akamai NetSession Interface -- Erro 1310. Erro ao se gravar no arquivo: C:\Users\Clidenor\AppData\Local\Akamai\admintool.exe. Erro do sistema 0. Verifique se você tem acesso a essa pasta.

Error: (05/30/2015 01:36:35 AM) (Source: MsiInstaller) (EventID: 11310) (User: CLIDENOR)
Description: Produto: Akamai NetSession Interface -- Erro 1310. Erro ao se gravar no arquivo: C:\Users\Clidenor\AppData\Local\Akamai\admintool.exe. Erro do sistema 0. Verifique se você tem acesso a essa pasta.

Error: (05/29/2015 08:44:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nome do aplicativo com falha: WSCommCntr4.exe, versão: 4.0.3.0, carimbo de data/hora: 0x52e23951
Nome do módulo com falha: ntdll.dll, versão: 6.3.9600.17736, carimbo de data/hora: 0x550f4336
Código de exceção: 0xc0000005
Deslocamento da falha: 0x000000000003d85e
ID do processo com falha: 0x3f64
Hora de início do aplicativo com falha: 0xWSCommCntr4.exe0
Caminho do aplicativo com falha: WSCommCntr4.exe1
Caminho do módulo com falha: WSCommCntr4.exe2
ID do Relatório: WSCommCntr4.exe3
Nome completo do pacote com falha: WSCommCntr4.exe4
ID do aplicativo relativo ao pacote com falha: WSCommCntr4.exe5

Error: (05/29/2015 08:41:40 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "FARO.LS,processorArchitecture="x86",publicKeyToken="1d23f5635ba800ab",type="win32",version="1.1.408.2"1".
Assembly dependente FARO.LS,processorArchitecture="x86",publicKeyToken="1d23f5635ba800ab",type="win32",version="1.1.408.2" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.

Error: (05/29/2015 08:39:58 PM) (Source: MsiInstaller) (EventID: 11310) (User: CLIDENOR)
Description: Produto: Akamai NetSession Interface -- Erro 1310. Erro ao se gravar no arquivo: C:\Users\Clidenor\AppData\Local\Akamai\admintool.exe. Erro do sistema 0. Verifique se você tem acesso a essa pasta.

Error: (05/29/2015 08:39:30 PM) (Source: MsiInstaller) (EventID: 11310) (User: CLIDENOR)
Description: Produto: Akamai NetSession Interface -- Erro 1310. Erro ao se gravar no arquivo: C:\Users\Clidenor\AppData\Local\Akamai\admintool.exe. Erro do sistema 0. Verifique se você tem acesso a essa pasta.

Error: (05/29/2015 08:37:39 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Falha na geração de contexto de ativação para "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"1".
Assembly dependente rpshellextension.1.0,language="*",type="win32",version="1.0.0.0" não pôde ser localizado.
Use o arquivo sxstrace.exe para obter um diagnóstico detalhado.

Error: (05/29/2015 05:44:37 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa LiveComm.exe versão 17.5.9600.20856 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.

ID do Processo: 5768

Hora de Início: 01d099c96e73e9b5

Hora de Término: 4294967295

Caminho do Aplicativo: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.exe

ID do Relatório: 64e01e5d-05bd-11e5-beb2-f0bf9708eadb

Nome completo do pacote com falha: microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe

ID do aplicativo relativo ao pacote com falha: ppleae38af2e007f4358a809ac99a64a67c1

Error: (05/29/2015 05:26:36 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: O programa LiveComm.exe versão 17.5.9600.20856 parou de interagir com o Windows e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique o histórico de problemas no painel de controle da Central de Ações.

ID do Processo: 4e04

Hora de Início: 01d099c59ae10c76

Hora de Término: 4294967295

Caminho do Aplicativo: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.exe

ID do Relatório: e1b25570-05ba-11e5-beb2-f0bf9708eadb

Nome completo do pacote com falha: microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe

ID do aplicativo relativo ao pacote com falha: ppleae38af2e007f4358a809ac99a64a67c1

Error: (05/29/2015 04:23:42 AM) (Source: MsiInstaller) (EventID: 11310) (User: CLIDENOR)
Description: Produto: Akamai NetSession Interface -- Erro 1310. Erro ao se gravar no arquivo: C:\Users\Clidenor\AppData\Local\Akamai\admintool.exe. Erro do sistema 0. Verifique se você tem acesso a essa pasta.

System errors:
=============
Error: (05/30/2015 01:53:27 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: AUTORIDADE NT)
Description: Ocorreu um erro ao tentar ler o arquivo de hosts locais.

Error: (05/30/2015 01:53:01 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: AUTORIDADE NT)
Description: Ocorreu um erro ao tentar ler o arquivo de hosts locais.

Error: (05/30/2015 00:45:06 AM) (Source: Tcpip) (EventID: 4199) (User: )
Description: O sistema detectou um conflito de endereço entre o endereço IP 0.0.0.0 e o sistema
que possui o endereço de hardware de rede 50-87-89-BD-7E-12. Como resultado desse conflito, as operações de rede nesse sistema podem ser
interrompidas.

Error: (05/29/2015 04:18:41 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: O serviço WindowsMangerProtect Service foi encerrado inesperadamente. Isso aconteceu 1 vez(es).

Error: (05/29/2015 03:56:17 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: O serviço WinZiper service foi encerrado inesperadamente. Isso aconteceu 1 vez(es).

Error: (05/29/2015 03:28:33 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: AUTORIDADE NT)
Description: Ocorreu um erro ao tentar ler o arquivo de hosts locais.

Error: (05/29/2015 03:28:32 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: AUTORIDADE NT)
Description: Ocorreu um erro ao tentar ler o arquivo de hosts locais.

Error: (05/29/2015 03:28:27 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: AUTORIDADE NT)
Description: Ocorreu um erro ao tentar ler o arquivo de hosts locais.

Error: (05/29/2015 00:07:31 AM) (Source: Tcpip) (EventID: 4199) (User: )
Description: O sistema detectou um conflito de endereço entre o endereço IP 2a01:388:270:150::1:120 e o sistema
que possui o endereço de hardware de rede C0-18-85-50-CB-B5. Como resultado desse conflito, as operações de rede nesse sistema podem ser
interrompidas.

Error: (05/28/2015 11:10:52 PM) (Source: Tcpip) (EventID: 4199) (User: )
Description: O sistema detectou um conflito de endereço entre o endereço IP 2a01:388:270:150::1:116 e o sistema
que possui o endereço de hardware de rede 24-0A-64-CA-0B-07. Como resultado desse conflito, as operações de rede nesse sistema podem ser
interrompidas.

Microsoft Office:
=========================
Error: (05/30/2015 01:36:57 AM) (Source: MsiInstaller) (EventID: 11310) (User: CLIDENOR)
Description: Produto: Akamai NetSession Interface -- Erro 1310. Erro ao se gravar no arquivo: C:\Users\Clidenor\AppData\Local\Akamai\admintool.exe. Erro do sistema 0. Verifique se você tem acesso a essa pasta.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (05/30/2015 01:36:35 AM) (Source: MsiInstaller) (EventID: 11310) (User: CLIDENOR)
Description: Produto: Akamai NetSession Interface -- Erro 1310. Erro ao se gravar no arquivo: C:\Users\Clidenor\AppData\Local\Akamai\admintool.exe. Erro do sistema 0. Verifique se você tem acesso a essa pasta.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (05/29/2015 08:44:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: WSCommCntr4.exe4.0.3.052e23951ntdll.dll6.3.9600.17736550f4336c0000005000000000003d85e3f6401d09a47ee0cb1e7C:\Program Files\Common Files\Autodesk Shared\WSCommCntr4\Lib\WSCommCntr4.exeC:\WINDOWS\SYSTEM32\ntdll.dll2ebdc1bc-063b-11e5-beb2-f0bf9708eadb

Error: (05/29/2015 08:41:40 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: FARO.LS,processorArchitecture="x86",publicKeyToken="1d23f5635ba800ab",type="win32",version="1.1.408.2"C:\Program Files\Autodesk\Revit 2015\FaroImporter.exe

Error: (05/29/2015 08:39:58 PM) (Source: MsiInstaller) (EventID: 11310) (User: CLIDENOR)
Description: Produto: Akamai NetSession Interface -- Erro 1310. Erro ao se gravar no arquivo: C:\Users\Clidenor\AppData\Local\Akamai\admintool.exe. Erro do sistema 0. Verifique se você tem acesso a essa pasta.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (05/29/2015 08:39:30 PM) (Source: MsiInstaller) (EventID: 11310) (User: CLIDENOR)
Description: Produto: Akamai NetSession Interface -- Erro 1310. Erro ao se gravar no arquivo: C:\Users\Clidenor\AppData\Local\Akamai\admintool.exe. Erro do sistema 0. Verifique se você tem acesso a essa pasta.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (05/29/2015 08:37:39 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"C:\Windows\Installer\{C8E8D2E3-EF6A-4B1D-A09E-7B27EBE2F3CE}\recordingmanager.exe

Error: (05/29/2015 05:44:37 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.20856576801d099c96e73e9b54294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.exe64e01e5d-05bd-11e5-beb2-f0bf9708eadbmicrosoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (05/29/2015 05:26:36 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.208564e0401d099c59ae10c764294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.exee1b25570-05ba-11e5-beb2-f0bf9708eadbmicrosoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (05/29/2015 04:23:42 AM) (Source: MsiInstaller) (EventID: 11310) (User: CLIDENOR)
Description: Produto: Akamai NetSession Interface -- Erro 1310. Erro ao se gravar no arquivo: C:\Users\Clidenor\AppData\Local\Akamai\admintool.exe. Erro do sistema 0. Verifique se você tem acesso a essa pasta.(NULL)(NULL)(NULL)(NULL)(NULL)

==================== Memory info ===========================

Processor: Intel® Core™ i7-3537U CPU @ 2.00GHz
Percentage of memory in use: 29%
Total physical RAM: 8070.8 MB
Available physical RAM: 5658.77 MB
Total Pagefile: 10374.8 MB
Available Pagefile: 6302.82 MB
Total Virtual: 131072 MB
Available Virtual: 131071.85 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:898.49 GB) (Free:428.14 GB) NTFS
Drive e: () (Removable) (Total:1.85 GB) (Free:0.66 GB) FAT

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: E7D956B3)

Partition: GPT Partition Type.

========================================================
Disk: 1 (Size: 1.9 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.

==================== End of log ============================

Please can someone help me out with this? I would be forever grateful.

Thank you!!

#2
Essexboy

Posted 30 May 2015 - 04:54 AM

GeekU Moderator

Retired Staff
69,964 posts

Could you let me know if this stops the alerts

CAUTION : This fix is only valid for this specific machine, using it on another may break your computer

Open notepad and copy/paste the text in the quotebox below into it:

CreateRestorePoint:
HKU\S-1-5-18\...\RunOnce: [Application Restart #0] => C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe [372400 2014-10-29] (Microsoft Corporation)
Startup: C:\Users\Clidenor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\hqghumeaylnlf.lnk [2015-05-01]
ShortcutTarget: hqghumeaylnlf.lnk -> C:\ProgramData\{396e45e6-daba-005e-396e-e45e6dab179b}\hqghumeaylnlf.exe (No File)
BHO-x32: No Name -> {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} -> No File
2015-05-28 13:38 - 2015-05-29 03:56 - 00000000 ____D () C:\Program Files (x86)\WinZipper
2015-05-02 03:56 - 2015-05-02 03:56 - 00000000 ____D () C:\Users\Todos os Usuários\ee9cd9a700001956
2015-05-02 03:56 - 2015-05-02 03:56 - 00000000 ____D () C:\ProgramData\ee9cd9a700001956
2015-05-02 03:55 - 2015-05-02 03:55 - 00000000 ____D () C:\Program Files (x86)\predm
2015-05-01 23:07 - 2015-05-01 23:07 - 00000000 ____D () C:\Users\Todos os Usuários\5904ebb8000076e5
2015-05-01 23:07 - 2015-05-01 23:07 - 00000000 ____D () C:\ProgramData\5904ebb8000076e5
2015-05-01 23:05 - 2015-05-01 23:05 - 00000000 ____D () C:\Users\Todos os Usuários\IHProtectUpDate
2015-05-01 23:05 - 2015-05-01 23:05 - 00000000 ____D () C:\ProgramData\IHProtectUpDate
2015-05-01 23:04 - 2015-05-29 04:18 - 00000000 ____D () C:\Users\Todos os Usuários\WindowsMangerProtect
2015-05-01 23:04 - 2015-05-29 04:18 - 00000000 ____D () C:\ProgramData\WindowsMangerProtect
2015-05-01 23:04 - 2015-05-29 04:18 - 00000000 ____D () C:\Program Files (x86)\XTab
2015-05-01 23:04 - 2015-05-02 03:36 - 00000000 ____D () C:\Users\Todos os Usuários\{9698972b-121c-6375-9698-8972b1215cac}
2015-05-01 23:04 - 2015-05-02 03:36 - 00000000 ____D () C:\ProgramData\{9698972b-121c-6375-9698-8972b1215cac}
2014-12-17 05:10 - 2014-12-17 05:10 - 0022528 _____ () C:\Users\Clidenor\AppData\Local\dsisetup1233987962.exe
2014-12-02 01:10 - 2014-12-02 01:10 - 0022528 _____ () C:\Users\Clidenor\AppData\Local\dsisetup1799752962.exe
C:\ProgramData\{396e45e6-daba-005e-396e-e45e6dab179b}
Reg: reg delete HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f
Reg: reg add HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f
RemoveProxy:
EmptyTemp:
CMD: bitsadmin /reset /allusers

Save this as fixlist.txt, in the same location as FRST.exe

Run FRST and press Fix
On completion a log will be generated please post that

THEN

Please download AdwCleaner by Xplode onto your desktop.

Close all open programs and internet browsers.
Double click on AdwCleaner.exe to run the tool.
Click on Scan.
After the scan is complete click on "Clean"
Confirm each time with Ok.
Your computer will be rebooted automatically. A text file will open after the restart.
Please post the content of that logfile with your next answer.
You can find the logfile at C:\AdwCleaner[S0].txt as well.

#3
clipsdenor

Posted 30 May 2015 - 11:33 AM

New Member

Topic Starter
Member
3 posts

Hey, Essexboy!

Here is the fixlog

Fix result of Farbar Recovery Scan Tool (x64) Version: 27-05-2015 01
Ran by Clidenor at 2015-05-30 17:47:33 Run:1
Running from C:\Users\Clidenor\Desktop
Loaded Profiles: UpdatusUser & Clidenor (Available Profiles: UpdatusUser & Clidenor)
Boot Mode: Normal
==============================================

fixlist content:
*****************
CreateRestorePoint:
HKU\S-1-5-18\...\RunOnce: [Application Restart #0] => C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe [372400 2014-10-29] (Microsoft Corporation)
Startup: C:\Users\Clidenor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\hqghumeaylnlf.lnk [2015-05-01]
ShortcutTarget: hqghumeaylnlf.lnk -> C:\ProgramData\{396e45e6-daba-005e-396e-e45e6dab179b}\hqghumeaylnlf.exe (No File)
BHO-x32: No Name -> {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} -> No File
2015-05-28 13:38 - 2015-05-29 03:56 - 00000000 ____D () C:\Program Files (x86)\WinZipper
2015-05-02 03:56 - 2015-05-02 03:56 - 00000000 ____D () C:\Users\Todos os Usuários\ee9cd9a700001956
2015-05-02 03:56 - 2015-05-02 03:56 - 00000000 ____D () C:\ProgramData\ee9cd9a700001956
2015-05-02 03:55 - 2015-05-02 03:55 - 00000000 ____D () C:\Program Files (x86)\predm
2015-05-01 23:07 - 2015-05-01 23:07 - 00000000 ____D () C:\Users\Todos os Usuários\5904ebb8000076e5
2015-05-01 23:07 - 2015-05-01 23:07 - 00000000 ____D () C:\ProgramData\5904ebb8000076e5
2015-05-01 23:05 - 2015-05-01 23:05 - 00000000 ____D () C:\Users\Todos os Usuários\IHProtectUpDate
2015-05-01 23:05 - 2015-05-01 23:05 - 00000000 ____D () C:\ProgramData\IHProtectUpDate
2015-05-01 23:04 - 2015-05-29 04:18 - 00000000 ____D () C:\Users\Todos os Usuários\WindowsMangerProtect
2015-05-01 23:04 - 2015-05-29 04:18 - 00000000 ____D () C:\ProgramData\WindowsMangerProtect
2015-05-01 23:04 - 2015-05-29 04:18 - 00000000 ____D () C:\Program Files (x86)\XTab
2015-05-01 23:04 - 2015-05-02 03:36 - 00000000 ____D () C:\Users\Todos os Usuários\{9698972b-121c-6375-9698-8972b1215cac}
2015-05-01 23:04 - 2015-05-02 03:36 - 00000000 ____D () C:\ProgramData\{9698972b-121c-6375-9698-8972b1215cac}
2014-12-17 05:10 - 2014-12-17 05:10 - 0022528 _____ () C:\Users\Clidenor\AppData\Local\dsisetup1233987962.exe
2014-12-02 01:10 - 2014-12-02 01:10 - 0022528 _____ () C:\Users\Clidenor\AppData\Local\dsisetup1799752962.exe
C:\ProgramData\{396e45e6-daba-005e-396e-e45e6dab179b}
Reg: reg delete HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f
Reg: reg add HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f
RemoveProxy:
EmptyTemp:
CMD: bitsadmin /reset /allusers
*****************

Restore point was successfully created.
HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Application Restart #0 => value Removed successfully
C:\Users\Clidenor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\hqghumeaylnlf.lnk => Moved successfully.
C:\ProgramData\{396e45e6-daba-005e-396e-e45e6dab179b}\hqghumeaylnlf.exe not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}" => key Removed successfully
HKCR\Wow6432Node\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} => key not found.
C:\Program Files (x86)\WinZipper => Moved successfully.
C:\Users\Todos os Usuários\ee9cd9a700001956 => Moved successfully.
"C:\ProgramData\ee9cd9a700001956" => File/Folder not found.
C:\Program Files (x86)\predm => Moved successfully.
C:\Users\Todos os Usuários\5904ebb8000076e5 => Moved successfully.
"C:\ProgramData\5904ebb8000076e5" => File/Folder not found.
C:\Users\Todos os Usuários\IHProtectUpDate => Moved successfully.
"C:\ProgramData\IHProtectUpDate" => File/Folder not found.
C:\Users\Todos os Usuários\WindowsMangerProtect => Moved successfully.
"C:\ProgramData\WindowsMangerProtect" => File/Folder not found.
C:\Program Files (x86)\XTab => Moved successfully.
C:\Users\Todos os Usuários\{9698972b-121c-6375-9698-8972b1215cac} => Moved successfully.
"C:\ProgramData\{9698972b-121c-6375-9698-8972b1215cac}" => File/Folder not found.
C:\Users\Clidenor\AppData\Local\dsisetup1233987962.exe => Moved successfully.
C:\Users\Clidenor\AppData\Local\dsisetup1799752962.exe => Moved successfully.
"C:\ProgramData\{396e45e6-daba-005e-396e-e45e6dab179b}" => File/Folder not found.

========= reg delete HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f =========

A opera‡Æo foi conclu¡da com ˆxito.

========= End of Reg: =========

========= reg add HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f =========

A opera‡Æo foi conclu¡da com ˆxito.

========= End of Reg: =========

========= RemoveProxy: =========

HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value Removed successfully
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value Removed successfully
HKU\S-1-5-21-1880014085-1414669863-2644191059-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value Removed successfully
HKU\S-1-5-21-1880014085-1414669863-2644191059-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value Removed successfully

========= End of RemoveProxy: =========

========= bitsadmin /reset /allusers =========

BITSADMIN version 3.0 [ 7.7.9600 ]
BITS administration utility.
© Copyright 2000-2006 Microsoft Corp.

BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.

{1D08D956-5411-4691-9070-9778C5FCC012} canceled.
{184C41A2-B9D0-4CE5-B9B5-DA41CE4846BA} canceled.
{071FBA14-250B-4CA5-9348-4A03F319728F} canceled.
{4312D497-6C81-400F-B971-3E32F97D6821} canceled.
{2C27883E-5D80-4FBA-A177-D88C1EE81E19} canceled.
{55CBC1E6-ADDF-46D0-B4B0-25479E8640DB} canceled.
6 out of 6 jobs canceled.

========= End of CMD: =========

EmptyTemp: => Removed 382.8 MB temporary data.

The system needed a reboot.

==== End of Fixlog 17:52:16 ====

and here is the adwcleaner logfile

# AdwCleaner v4.205 - Relatório criado 30/05/2015 às 18:19:09
# Atualizado 21/05/2015 por Xplode
# Base de dados : 2015-05-25.3 [Servidor]
# Sistema operacional : Windows 8.1 Single Language (x64)
# Usuário : Clidenor - CLIDENOR
# Executando de : C:\Users\Clidenor\Downloads\AdwCleaner.exe
# Opção : Limpar

***** [ Serviços ] *****

[#] Serviço Excluído : cherimoya
[#] Serviço Excluído : innfd_1_10_0_14

***** [ Arquivos / Pastas ] *****

Pasta Excluído : C:\ProgramData\apn
Pasta Excluído : C:\Program Files (x86)\wse_astromenda
Pasta Excluído : C:\Users\Clidenor\AppData\Local\Hola
Pasta Excluído : C:\Users\Clidenor\AppData\LocalLow\{D2020D47-707D-4E26-B4D9-739C4F4C2E9A}
Pasta Excluído : C:\Users\Clidenor\AppData\Roaming\AnyProtectEx
Pasta Excluído : C:\Users\Clidenor\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
[/!\] Não Excluído ( Junção ) : C:\Users\Clidenor\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck

***** [ Tarefas agendadas ] *****

***** [ Atalhos ] *****

Atalho Desinfectado : C:\Users\Clidenor\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk

***** [ Registro ] *****

Valor Apagado : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [sweetsearch@gmail.com]
Valor Apagado : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [quick_searchff@gmail.com]
Chave Apagado : HKLM\SOFTWARE\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
Chave Apagado : HKCU\Software\Google\Chrome\Extensions\pfkfdlcdbajamklbneflfbcmfgddmpae
Chave Apagado : HKLM\SOFTWARE\Google\Chrome\Extensions\pfkfdlcdbajamklbneflfbcmfgddmpae
Chave Apagado : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\pfkfdlcdbajamklbneflfbcmfgddmpae
Chave Apagado : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Chave Apagado : HKCU\Software\Mozilla\Extends
Chave Apagado : HKLM\SOFTWARE\8f15ca3f-7fa0-1ce2-fd92-e61b58b0e84e
Chave Apagado : HKLM\SOFTWARE\Classes\AppID\{9CB2CD61-FFA0-406C-9D2D-8FDE6F4A4D8A}
Chave Apagado : HKLM\SOFTWARE\Classes\AppID\{425F4ABF-B8E4-402D-9E49-06E494EB8DBF}
Chave Apagado : HKLM\SOFTWARE\Classes\Interface\{7D86A08B-0A8F-4BE0-B693-F05E6947E780}
Chave Apagado : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Chave Apagado : HKLM\SOFTWARE\Classes\Interface\{A9582D7B-F24A-441D-9D26-450D58F3CD17}
Chave Apagado : HKLM\SOFTWARE\Classes\Interface\{EE0D8859-2ED4-4B0D-9812-16865B9AFD65}
Chave Apagado : HKLM\SOFTWARE\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}
Chave Apagado : HKLM\SOFTWARE\Classes\TypeLib\{B5C4833B-847B-49CD-8EBE-CDD9B43C882F}
Chave Apagado : HKLM\SOFTWARE\Classes\TypeLib\{14EF423E-3EE8-44AE-9337-07AC3F27B744}
Chave Apagado : [x64] HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Chave Apagado : [x64] HKLM\SOFTWARE\Classes\Interface\{A9582D7B-F24A-441D-9D26-450D58F3CD17}
Chave Apagado : [x64] HKLM\SOFTWARE\Classes\Interface\{EE0D8859-2ED4-4B0D-9812-16865B9AFD65}
Chave Apagado : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2E00D31D-D171-423D-836D-1A4D7EA7F1A9}
Chave Apagado : HKCU\Software\AnyProtect
Chave Apagado : HKCU\Software\BRS
Chave Apagado : HKCU\Software\InstallCore
Chave Apagado : HKCU\Software\Optimizer Pro
Chave Apagado : HKCU\Software\simplytech
Chave Apagado : HKCU\Software\TutoTag
Chave Apagado : HKCU\Software\WSE_Astromenda
Chave Apagado : HKCU\Software\TNT2
Chave Apagado : HKCU\Software\Super Optimizer
Chave Apagado : HKCU\Software\{4E7638A1-6962-4e44-A6B9-F40E84FD6D09}
Chave Apagado : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Chave Apagado : HKCU\Software\AppDataLow\Software\SmartWeb
Chave Apagado : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Chave Apagado : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Chave Apagado : HKLM\SOFTWARE\delta-homesSoftware
Chave Apagado : HKLM\SOFTWARE\hdcode
Chave Apagado : HKLM\SOFTWARE\InstallCore
Chave Apagado : HKLM\SOFTWARE\SupDp
Chave Apagado : HKLM\SOFTWARE\supWindowsMangerProtect
Chave Apagado : HKLM\SOFTWARE\Tutorials
Chave Apagado : HKLM\SOFTWARE\V9
Chave Apagado : HKLM\SOFTWARE\winzipersvc
Chave Apagado : HKLM\SOFTWARE\mystartsearchSoftware
Chave Apagado : HKLM\SOFTWARE\IHProtect
Chave Apagado : HKLM\SOFTWARE\FFPluginHp
Chave Apagado : HKU\.DEFAULT\Software\{4E7638A1-6962-4e44-A6B9-F40E84FD6D09}
Chave Apagado : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
Chave Apagado : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar
Chave Apagado : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\WajIntEnhance
Chave Apagado : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Vosteran.com
Chave Apagado : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey
Chave Apagado : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
Chave Apagado : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar
Chave Apagado : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VOPackage
Chave Apagado : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WajIntEnhance
Chave Apagado : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Vosteran.com
Chave Apagado : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Linkey
Chave Apagado : [x64] HKLM\SOFTWARE\WebBar
Dados Apagado : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - <local>

***** [ Navegadores ] *****

-\\ Internet Explorer v11.0.9600.17416

-\\ Mozilla Firefox v38.0.1 (x86 pt-BR)

[7gf825jw.default-1430540633399\prefs.js] - Linha Apagado : user_pref("extensions.quick_start.enable_search1", false);
[7gf825jw.default-1430540633399\prefs.js] - Linha Apagado : user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false);

-\\ Google Chrome v

[C:\Users\Clidenor\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Apagado [Search Provider] : hxxp://br.ask.com/web?q={searchTerms}
[C:\Users\Clidenor\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Apagado [Search Provider] : hxxp://astromenda.com/results.php?f=4&q={searchTerms}&a=ast_bxi01_14_37_ff&cd=2XzuyEtN2Y1L1Qzu0FtD0B0FzyyBtDzz0E0A0D0B0E0FtC0FtN0D0Tzu0SzyzzzztN1L2XzutAtFtBtFtCtFyDtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2SyC0Ezy0FzzyByEzztG0D0AyE0DtGtByDtCtCtGtBtB0B0DtGyByEzy0B0CyDzzyC0F0AtAyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2StCyDzytAzyyBtD0EtG0DtA0F0EtGyE0Dzy0AtG0AyDyB0BtGyDyBtD0ByB0AzztBtAyEtBzy2Q&cr=1447720694&ir=
[C:\Users\Clidenor\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Apagado [Search Provider] : hxxp://www.mystartsearch.com/web/?type=dspp&ts=1430517889&from=slbnew&uid=HGSTXHTS541010A9E680_130405JB10001MK3L1WPX&q={searchTerms}

*************************

AdwCleaner[R0].txt - [7832 bytes] - [30/05/2015 18:15:50]
AdwCleaner[S0].txt - [6927 bytes] - [30/05/2015 18:19:09]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [6986 bytes] ##########

I think it worked flawlessly since no alert appeared so far

So thanks a lot!!!

#4
Essexboy

Posted 30 May 2015 - 11:37 AM

GeekU Moderator

Retired Staff
69,964 posts

How is the computer behaving now ?

#5
Essexboy

Posted 03 June 2015 - 07:50 AM

GeekU Moderator

Retired Staff
69,964 posts

Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.

Back to Virus, Spyware, Malware Removal · Next Unread Topic →

Also tagged with one or more of these keywords: avast, svchost.exe, internet connection, malware, url:mal, infection

Hardware → Smartphones and Tablets → Samsung personal smartphones - hacking Started by Cremebrulee54 , 26 Jan 2025 malware, hacking	0 replies 3,508 views	Cremebrulee54 26 Jan 2025
Security → Virus, Spyware, Malware Removal → personal laptop showing unauthorized activity [Solved] Started by Cremebrulee54 , 21 Jan 2025 Malware, Spy 1 2	Hot 29 replies 6,192 views	DR M 15 Feb 2025
Security → Virus, Spyware, Malware Removal → Lingering Windows Script Host errors [Closed] Started by LegionXIX , 21 Aug 2024 malware, wscript	3 replies 4,097 views	DR M 25 Aug 2024
Security → Virus, Spyware, Malware Removal → Possible Malware infection - help request [Solved] Started by Maffu , 07 May 2023 malware, advapi and 1 more... 1 2 3 4	Hot 51 replies 17,780 views	DR M 26 Jun 2023
Security → Virus, Spyware, Malware Removal → Help getting started checking laptop for malware [Solved] Started by triedeverything , 12 Apr 2023 help, malware, spyware 1 2	Hot 19 replies 10,345 views	DR M 16 Apr 2023