Olá!
Estive viajando a trabalho. Desculpe-me pela demora.
Fiz tudo como recomendado mas o dito cujo HPScript não funciona mesmo.
Usei o OTL.
Seguem os resultados:
OTL logfile created on: 22/05/2012 12:55:34 - Run 1
OTL by OldTimer - Version 3.2.43.1 Folder = C:\Users\NEW\Desktop
64bit- Home Basic Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000416 | Country: Brasil | Language: PTB | Date Format: dd/MM/yyyy
3,95 Gb Total Physical Memory | 2,18 Gb Available Physical Memory | 55,31% Memory free
7,89 Gb Paging File | 5,71 Gb Available in Paging File | 72,38% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 421,81 Gb Total Space | 345,45 Gb Free Space | 81,90% Space Free | Partition Type: NTFS
Drive D: | 29,00 Gb Total Space | 26,56 Gb Free Space | 91,60% Space Free | Partition Type: NTFS
Computer Name: NEW-PC | User Name: NEW | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========PRC - File not found --
PRC - [2012/05/22 12:52:14 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\NEW\Desktop\OTL.exe
PRC - [2012/05/09 09:02:12 | 000,214,088 | ---- | M] ( ) -- C:\PROGRA~2\GbPlugin\GbpSv.exe
PRC - [2012/05/09 00:04:54 | 001,240,048 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2012/04/04 15:56:40 | 000,654,408 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2012/04/04 15:56:38 | 000,462,408 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2012/03/22 10:41:42 | 004,494,848 | ---- | M] (Yuna Software) -- C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\Messenger Plus! for Skype.exe
PRC - [2012/03/21 16:57:07 | 000,119,296 | ---- | M] (Yuna Software) -- C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\MsgPlusForSkypeService.exe
PRC - [2012/02/27 14:43:07 | 000,801,792 | ---- | M] (Yuna Software) -- C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe
PRC - [2012/02/03 15:28:56 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
PRC - [2012/02/03 15:28:47 | 000,258,512 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
PRC - [2012/02/03 15:28:47 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
PRC - [2012/01/03 10:10:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011/11/25 18:48:07 | 000,329,056 | ---- | M] (Lenovo) -- C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
PRC - [2011/10/01 08:30:22 | 000,219,496 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
PRC - [2011/10/01 08:30:18 | 000,508,776 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
PRC - [2011/08/05 12:08:08 | 000,368,544 | ---- | M] (Banco Bradesco S.A.) -- C:\Program Files (x86)\Scpad\scpVista.exe
PRC - [2011/02/18 05:20:54 | 000,013,336 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2011/02/18 05:20:50 | 000,283,160 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
PRC - [2011/01/28 20:29:36 | 000,136,488 | ---- | M] (CyberLink) -- C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
PRC - [2010/12/20 23:30:38 | 002,656,280 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
PRC - [2010/12/20 23:30:36 | 000,325,656 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2010/12/14 15:04:58 | 000,013,600 | ---- | M] (Broadcom Corporation.) -- C:\Arquivos de Programas\Lenovo\Bluetooth Software\BluetoothHeadsetProxy.exe
PRC - [2010/02/28 02:33:14 | 000,077,664 | ---- | M] () -- C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe
PRC - [2010/02/02 21:08:56 | 000,087,336 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
PRC - [2010/01/15 09:49:20 | 000,255,536 | ---- | M] (McAfee, Inc.) -- C:\Program Files (x86)\McAfee Security Scan\2.0.181\SSScheduler.exe
========== Modules (No Company Name) ==========MOD - [2012/05/14 14:53:02 | 000,014,336 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\9c5c9e0b5972a39696939f7009df4a08\IAStorCommon.ni.dll
MOD - [2012/05/14 14:53:01 | 000,475,648 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\03fce51509ae357bf00a2dfb4ad19950\IAStorUtil.ni.dll
MOD - [2012/05/14 14:13:04 | 000,771,584 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\03dee80574f4ec770b6f77ca030ded6c\System.Runtime.Remoting.ni.dll
MOD - [2012/05/14 14:12:36 | 012,433,408 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\90555968565afd59bce4b0974e9903bd\System.Windows.Forms.ni.dll
MOD - [2012/05/14 14:12:29 | 001,590,784 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\69f6e582cb79f107c61308b468c1a215\System.Drawing.ni.dll
MOD - [2012/05/14 14:12:15 | 003,347,968 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\46fce56db7685a586d3eeb7c373e3c1c\WindowsBase.ni.dll
MOD - [2012/05/14 14:12:09 | 005,452,800 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\ba3d70b651454c7d49b407b93663bfed\System.Xml.ni.dll
MOD - [2012/05/14 14:12:06 | 000,971,264 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cfa9c506bfb9254c89dace7b83bc9f9d\System.Configuration.ni.dll
MOD - [2012/05/14 14:12:05 | 007,967,232 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System\ce9ff6baf9053ed2ed673d948179195c\System.ni.dll
MOD - [2012/05/14 14:11:59 | 011,492,864 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\acfc1391e45fedd2a359778ea57d914c\mscorlib.ni.dll
MOD - [2012/05/09 00:04:52 | 000,441,840 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\19.0.1084.46\ppGoogleNaClPluginChrome.dll
MOD - [2012/05/09 00:04:51 | 003,921,904 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\19.0.1084.46\pdf.dll
MOD - [2012/05/09 00:03:36 | 000,553,456 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\19.0.1084.46\libglesv2.dll
MOD - [2012/05/09 00:03:35 | 000,117,744 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\19.0.1084.46\libegl.dll
MOD - [2012/05/09 00:03:25 | 000,134,656 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\19.0.1084.46\avutil-51.dll
MOD - [2012/05/09 00:03:24 | 000,250,368 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\19.0.1084.46\avformat-54.dll
MOD - [2012/05/09 00:03:23 | 002,375,680 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\19.0.1084.46\avcodec-54.dll
MOD - [2012/05/08 23:09:13 | 008,743,584 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\19.0.1084.46\gcswf32.dll
MOD - [2012/05/08 23:09:13 | 008,743,584 | ---- | M] () -- C:\PROGRA~2\Google\Chrome\APPLIC~1\190108~1.46\gcswf32.dll
MOD - [2012/03/18 11:10:52 | 008,499,712 | ---- | M] () -- C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\QtGui4.dll
MOD - [2012/03/18 11:07:57 | 002,347,520 | ---- | M] () -- C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\QtCore4.dll
MOD - [2012/03/18 11:07:57 | 000,200,704 | ---- | M] () -- C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\imageformats\qjpeg4.dll
MOD - [2012/03/18 11:07:55 | 000,863,744 | ---- | M] () -- C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\QtNetwork4.dll
MOD - [2012/03/18 11:07:54 | 000,026,624 | ---- | M] () -- C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\imageformats\qgif4.dll
MOD - [2012/01/15 16:50:08 | 000,370,688 | ---- | M] () -- C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\libsndfile.dll
MOD - [2012/01/15 16:50:00 | 000,390,656 | ---- | M] () -- C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\lame_enc.dll
MOD - [2011/11/25 18:48:07 | 000,013,664 | ---- | M] () -- C:\Program Files (x86)\Lenovo\VeriFace\ChooseLang.dll
MOD - [2011/09/13 21:27:53 | 000,032,768 | ---- | M] () -- C:\windows\assembly\GAC_MSIL\System.Runtime.Remoting.resources\2.0.0.0_pt-BR_b77a5c561934e089\System.Runtime.Remoting.resources.dll
MOD - [2010/11/12 21:33:11 | 000,303,104 | ---- | M] () -- C:\windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_pt-BR_b77a5c561934e089\mscorlib.resources.dll
MOD - [2010/02/28 02:33:14 | 000,077,664 | ---- | M] () -- C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe
========== Win32 Services (SafeList) ==========SRV - [2012/05/09 09:02:12 | 000,214,088 | ---- | M] ( ) [Auto | Running] -- C:\PROGRA~2\GbPlugin\GbpSv.exe -- (GbpSv)
SRV - [2012/05/05 14:04:24 | 000,257,696 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/04/04 15:56:40 | 000,654,408 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012/03/21 16:57:07 | 000,119,296 | ---- | M] (Yuna Software) [Auto | Running] -- C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\MsgPlusForSkypeService.exe -- (MsgPlusService)
SRV - [2012/02/03 15:28:56 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2012/02/03 15:28:47 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2012/01/31 14:09:34 | 000,158,856 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/01/03 10:10:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011/10/01 08:30:22 | 000,219,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe -- (sftvsa)
SRV - [2011/10/01 08:30:18 | 000,508,776 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe -- (sftlist)
SRV - [2011/08/05 12:08:08 | 000,368,544 | ---- | M] (Banco Bradesco S.A.) [Auto | Running] -- C:\Program Files (x86)\Scpad\scpVista.exe -- (scpVista)
SRV - [2011/03/28 20:11:06 | 002,292,096 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Arquivos de Programas\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE -- (wlidsvc)
SRV - [2011/02/18 05:20:54 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc) Intel®
SRV - [2010/12/20 23:30:38 | 002,656,280 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS) Intel®
SRV - [2010/12/20 23:30:36 | 000,325,656 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS) Intel®
SRV - [2010/12/14 15:04:56 | 000,953,632 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Arquivos de Programas\Lenovo\Bluetooth Software\btwdins.exe -- (btwdins)
SRV - [2010/09/22 15:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Arquivos de Programas\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV - [2010/03/18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/01/15 09:49:20 | 000,227,232 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe -- (McComponentHostService)
SRV - [2010/01/09 21:34:24 | 004,925,184 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Arquivos de Programas\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE -- (osppsvc)
SRV - [2009/06/10 18:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
========== Driver Services (SafeList) ==========DRV:
64bit: - [2012/04/04 15:56:40 | 000,024,904 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:
64bit: - [2012/03/01 03:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:
64bit: - [2012/02/03 15:29:11 | 000,132,320 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avipbb.sys -- (avipbb)
DRV:
64bit: - [2012/02/03 15:29:11 | 000,097,312 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\avgntflt.sys -- (avgntflt)
DRV:
64bit: - [2012/02/03 15:29:11 | 000,027,760 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avkmgr.sys -- (avkmgr)
DRV:
64bit: - [2011/11/25 18:57:30 | 000,039,008 | ---- | M] (Lenovo.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\LhdX64.sys -- (LHDmgr)
DRV:
64bit: - [2011/11/25 18:57:28 | 000,029,792 | ---- | M] (Lenovo Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AcpiVpc.sys -- (ACPIVPC)
DRV:
64bit: - [2011/11/25 18:54:56 | 000,057,952 | ---- | M] (Lenovo) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\fbfmon.sys -- (fbfmon)
DRV:
64bit: - [2011/11/25 18:54:56 | 000,013,408 | ---- | M] (Lenovo) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BPntDrv.sys -- (BPntDrv)
DRV:
64bit: - [2011/10/01 08:30:22 | 000,022,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftvollh.sys -- (Sftvol)
DRV:
64bit: - [2011/10/01 08:30:18 | 000,268,648 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftplaylh.sys -- (Sftplay)
DRV:
64bit: - [2011/10/01 08:30:18 | 000,025,960 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftredirlh.sys -- (Sftredir)
DRV:
64bit: - [2011/10/01 08:30:10 | 000,764,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftfslh.sys -- (Sftfs)
DRV:
64bit: - [2011/09/13 21:41:29 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:
64bit: - [2011/09/13 21:41:29 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:
64bit: - [2011/08/31 18:53:22 | 012,306,848 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:
64bit: - [2011/04/07 22:59:58 | 001,430,576 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:
64bit: - [2011/02/18 05:11:54 | 000,439,320 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:
64bit: - [2011/02/14 01:43:00 | 001,581,184 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CHDRT64.sys -- (CnxtHdAudService)
DRV:
64bit: - [2011/01/28 20:29:58 | 000,031,088 | ---- | M] (CyberLink Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\clwvd.sys -- (clwvd)
DRV:
64bit: - [2010/12/15 00:13:32 | 000,349,224 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwampfl.sys -- (BTWAMPFL)
DRV:
64bit: - [2010/12/15 00:13:10 | 000,039,464 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwl2cap.sys -- (btwl2cap)
DRV:
64bit: - [2010/12/15 00:13:10 | 000,021,416 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwrchid.sys -- (btwrchid)
DRV:
64bit: - [2010/12/15 00:13:08 | 000,138,280 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwavdt.sys -- (btwavdt)
DRV:
64bit: - [2010/12/15 00:13:08 | 000,106,536 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwaudio.sys -- (btwaudio)
DRV:
64bit: - [2010/11/21 00:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:
64bit: - [2010/11/21 00:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:
64bit: - [2010/11/21 00:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:
64bit: - [2010/10/21 03:57:30 | 000,076,912 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1C62x64.sys -- (L1C)
DRV:
64bit: - [2010/10/19 21:34:26 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64) Intel®
DRV:
64bit: - [2010/10/14 14:28:16 | 000,317,440 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud) Áudio do vídeo Intel®
DRV:
64bit: - [2010/09/30 05:45:22 | 000,299,520 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rtsuvstor.sys -- (RSUSBVSTOR)
DRV:
64bit: - [2010/09/01 03:14:00 | 001,091,584 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\netr28x.sys -- (netr28x)
DRV:
64bit: - [2010/03/15 06:41:14 | 001,800,576 | ---- | M] (Sonix Technology Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\snp2uvc.sys -- (SNP2UVC) USB2.0 PC Camera (SNP2UVC)
DRV:
64bit: - [2009/07/21 11:20:06 | 000,121,840 | ---- | M] (CyberLink) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wsvd.sys -- (wsvd)
DRV:
64bit: - [2009/07/13 22:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:
64bit: - [2009/07/13 22:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:
64bit: - [2009/07/13 22:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:
64bit: - [2009/06/10 17:35:42 | 000,187,392 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:
64bit: - [2009/06/10 17:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:
64bit: - [2009/06/10 17:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:
64bit: - [2009/06/10 17:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:
64bit: - [2009/06/10 17:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2012/04/05 09:34:04 | 000,046,408 | ---- | M] (GAS Tecnologia) [Kernel | Boot | Stopped] -- C:\Windows\SysWOW64\drivers\gbpkm.sys -- (GbpKm)
DRV - [2009/07/13 22:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
========== Standard Registry (SafeList) ==================== Internet Explorer ==========IE:
64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages =
http://www.lenovo.com/ [binary data]
IE:
64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://lenovo.msn.comIE:
64bit: - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE:
64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://www.bing.com/...rc=IE-SearchBoxIE:
64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" =
http://www.google.co...g}&sourceid=ie7IE:
64bit: - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2414}: "URL" =
http://dts.search-re...q={searchTerms}IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages =
http://www.lenovo.com/ [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://lenovo.msn.comIE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://www.bing.com/...rc=IE-SearchBoxIE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" =
http://www.google.co...g}&sourceid=ie7IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2414}: "URL" =
http://dts.search-re...q={searchTerms}IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://www.google.co...=LENN&bmod=LENNIE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages =
http://www.lenovo.com/ [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://www.google.com/IE - HKCU\..\URLSearchHook: {e0301295-ab3e-4af3-979f-3d453c5f9f48} - No CLSID value found
IE - HKCU\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://www.bing.com/...rc=IE-SearchBoxIE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" =
http://www.google.co...z=1I7LENN_pt-BRIE - HKCU\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" =
http://isearch.avg.c...sa&d=2012-04-08 18:03:06&v=10.2.0.3&sap=dsp&q={searchTerms}
IE - HKCU\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2414}: "URL" =
http://dts.search-re...q={searchTerms}IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
[2012/04/26 03:12:22 | 000,000,000 | ---D | M] (No name found) -- C:\Users\NEW\AppData\Roaming\mozilla\Firefox\extensions
[2012/04/26 03:12:22 | 000,000,000 | ---D | M] (uTorrentBar_PT Community Toolbar) -- C:\Users\NEW\AppData\Roaming\mozilla\Firefox\extensions\{e0301295-ab3e-4af3-979f-3d453c5f9f48}
========== Chrome ==========CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\19.0.1084.46\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\19.0.1084.46\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\19.0.1084.46\gcswf32.dll
CHR - plugin: Shockwave Flash (Disabled) = C:\Users\NEW\AppData\Local\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll
CHR - plugin: Skype Toolbars (Enabled) = C:\Users\NEW\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.9.0.9216_0\npSkypeChromePlugin.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll
CHR - Extension: +OneFB: Plus One Button for Facebook = C:\Users\NEW\AppData\Local\Google\Chrome\User Data\Default\Extensions\filcdchddjiekgohoaojfoofhbfbamig\1.0.1_0\
CHR - Extension: Facebook Chat Notification = C:\Users\NEW\AppData\Local\Google\Chrome\User Data\Default\Extensions\ggekjaligipajhljkbemifjgmlpcfkao\2.27_0\
CHR - Extension: Dolce&Gabbana = C:\Users\NEW\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpfbmpaebheclpaopjodkelcihldloih\2_0\
CHR - Extension: persona/ your Facebook, Twitter & RSS reader = C:\Users\NEW\AppData\Local\Google\Chrome\User Data\Default\Extensions\iehdddmijbgofffjjmhkodckmnombhmf\1.0.1_0\
CHR - Extension: Glitterboo = C:\Users\NEW\AppData\Local\Google\Chrome\User Data\Default\Extensions\ikkpgihagilojnkmkkfcbhlainmnkicp\1.1.4_0\
CHR - Extension: Translate your facebook and twitter feeds = C:\Users\NEW\AppData\Local\Google\Chrome\User Data\Default\Extensions\jokbbgpcdefclinabjchnaihfanhchkn\2.0.0.411_0\
CHR - Extension: Decodificar ou reverter links = C:\Users\NEW\AppData\Local\Google\Chrome\User Data\Default\Extensions\knidennbiioljeelcbojomofhgaepipb\1.0.15_0\
CHR - Extension: Skype Click to Call = C:\Users\NEW\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.9.0.9216_0\
CHR - Extension: Sticky Notes = C:\Users\NEW\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmfklpmdfldnnjbkdmamhokiphfkfieg\1.8_0\
CHR - Extension: FB-Fotos Ferramentas = C:\Users\NEW\AppData\Local\Google\Chrome\User Data\Default\Extensions\oobpcfgopolgpiocbncmojjggahmmckb\1.0.1.1_0\
O1 HOSTS File: ([2012/03/04 13:31:43 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:
64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Arquivos de Programas\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
O2:
64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2 - BHO: (ssh2 Class) - {2E3C3651-B19C-4DD9-A979-901EC3E930AF} - C:\Program Files (x86)\Scpad\scpsssh2.dll (Banco Bradesco S.A.)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (GbIehObj Class) - {C41A1C0E-EA6C-11D4-B1B8-444553540000} - C:\PROGRAM FILES (X86)\GBPLUGIN\gbieh.dll (Banco do Brasil)
O2 - BHO: (GretechBHO Class) - {F0181C6E-9218-4792-9F3C-E8DF52B2F1AC} - C:\Program Files (x86)\GRETECH\GomPicker\GomPickerBHO.dll (Gretech Corporation)
O3:
64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:
64bit: - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3:
64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3:
64bit: - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O4:
64bit: - HKLM..\Run: [Energy Management] C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe (Lenovo (Beijing) Limited)
O4:
64bit: - HKLM..\Run: [EnergyUtility] C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe (Lenovo(beijing) Limited)
O4:
64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:
64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:
64bit: - HKLM..\Run: [Lenovo EE Boot Optimizer] C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe (Lenovo)
O4:
64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [MessengerPlusForSkypeService] C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\MsgPlusForSkypeService.exe (Yuna Software)
O4 - HKLM..\Run: [PlusService] C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe (Yuna Software)
O4 - HKLM..\Run: [RemoteControl10] C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdateP2GShortCut] C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [VeriFaceManager] C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe (Lenovo)
O4 - HKLM..\Run: [YouCam Mirage] C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe (CyberLink)
O4 - HKLM..\Run: [YouCam Tray] C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe (CyberLink Corp.)
O4 - Startup: C:\Users\NEW\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\tcbhn.lnk = File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8:
64bit: - Extra context menu item: Enviar imagem para Dispositivo &Bluetooth... - C:\Arquivos de Programas\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm ()
O8:
64bit: - Extra context menu item: Enviar página para Dispositivo &Bluetooth ... - C:\Arquivos de Programas\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O8 - Extra context menu item: Enviar imagem para Dispositivo &Bluetooth... - C:\Arquivos de Programas\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Enviar página para Dispositivo &Bluetooth ... - C:\Arquivos de Programas\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O9:
64bit: - Extra Button: @C:\Program Files\Lenovo\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Arquivos de Programas\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O9:
64bit: - Extra 'Tools' menuitem : @C:\Program Files\Lenovo\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Arquivos de Programas\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Enviar para Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Arquivos de Programas\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Enviar para Dispositivo &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Arquivos de Programas\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O10:
64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Arquivos de Programas\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10:
64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000009 [] - C:\Arquivos de Programas\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O13
64bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: bancobrasil.com.br ([www] * in Trusted sites)
O15 - HKCU\..Trusted Domains: bancobrasil.com.br ([www14] * in Trusted sites)
O15 - HKCU\..Trusted Domains: bancobrasil.com.br ([www2] * in Trusted sites)
O15 - HKCU\..Trusted Domains: bb.com.br ([www] * in Trusted sites)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 189.5.192.42 189.5.192.47
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E2A8BDC8-06DC-4432-B963-2DEB7BBED3AA}: DhcpNameServer = 189.5.192.42 189.5.192.47
O18:
64bit: - Protocol\Handler\livecall - No CLSID value found
O18:
64bit: - Protocol\Handler\msnim - No CLSID value found
O18:
64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:
64bit: - Protocol\Handler\skype-ie-addon-data - No CLSID value found
O18:
64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:
64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - AppInit_DLLs: (C:\PROGRA~2\SEARCH~1\Datamngr\datamngr.dll) - File not found
O20:
64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20:
64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:
64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:
64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:
64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\windows\SysNative\igfxdev.dll (Intel Corporation)
O20 - Winlogon\Notify\ GbPluginBb: DllName - (C:\Program Files (x86)\GbPlugin\gbieh.dll) - C:\Program Files (x86)\GbPlugin\gbieh.dll (Banco do Brasil)
O21:
64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: CompIBBrd - {A3717295-941D-416F-9384-ED1736729F1C} - C:\Program Files (x86)\Scpad\scpLIB.dll (Banco Bradesco S.A.)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {E37CB5F0-51F5-4395-A808-5FA49E399F83} - C:\PROGRAM FILES (X86)\GBPLUGIN\gbieh.dll (Banco do Brasil)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:
64bit: - HKLM\..comfile [open] -- "%1" %*
O35:
64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:
64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:
64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
========== Files/Folders - Created Within 30 Days ==========[2012/05/22 12:52:17 | 000,595,968 | ---- | C] (OldTimer Tools) -- C:\Users\NEW\Desktop\OTL.exe
[2012/05/21 14:22:28 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{77503ECD-97B3-4C53-A76F-B1DA2C5DDBB2}
[2012/05/21 14:22:17 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{46A44A06-B6C3-4280-BCA7-4A8D4ED269FE}
[2012/05/20 19:33:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
[2012/05/20 19:33:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ZHPDiag
[2012/05/20 19:32:38 | 004,678,493 | ---- | C] (Nicolas Coolman ) -- C:\Users\NEW\Desktop\ZHPDiag2.exe
[2012/05/20 13:33:31 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{912206CF-21B5-44F8-9C9F-0DCFC3A12CFA}
[2012/05/20 13:32:59 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{02F771B6-9722-484C-A471-3583F48659F8}
[2012/05/18 20:51:41 | 000,000,000 | ---D | C] -- C:\ZHP
[2012/05/14 20:03:21 | 000,301,624 | ---- | C] (Softonic) -- C:\Users\NEW\Desktop\SoftonicDownloader_para_adwcleaner.exe
[2012/05/14 17:27:30 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Roaming\Malwarebytes
[2012/05/14 17:27:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012/05/14 17:27:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2012/05/14 17:27:25 | 000,024,904 | ---- | C] (Malwarebytes Corporation) -- C:\windows\SysNative\drivers\mbam.sys
[2012/05/14 17:27:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2012/05/14 16:29:00 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Program Files (x86)\HijackThis.exe
[2012/05/14 16:25:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2012/05/14 16:25:31 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2012/05/14 16:24:53 | 002,722,832 | ---- | C] (Piriform Ltd) -- C:\Program Files (x86)\ccsetup318_slim.exe
[2012/05/12 17:16:33 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{6FAEB583-35A2-45AB-BC7E-4F298FB765A7}
[2012/05/11 11:49:47 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{0A685A1D-9961-4B78-8D5D-D3BC2450163A}
[2012/05/11 11:49:36 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{9BFB7960-1A4F-45C6-9A8B-9B383841ABDD}
[2012/05/10 22:05:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Scpad
[2012/05/08 12:06:40 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{29518184-ADAA-41D5-B053-235E4F8569CB}
[2012/05/08 12:06:24 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{4E59B947-33B3-48DD-91B7-6DE449270BD3}
[2012/05/07 22:49:44 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{B60EC536-5EA3-4208-AB49-217B697BC583}
[2012/05/07 13:43:49 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dispositivos Bluetooth
[2012/05/07 10:49:08 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{511CCCC8-5EBE-4777-BE7E-C7420D21E752}
[2012/05/07 10:48:46 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{9AC21FF6-2140-4E05-B7E5-A09B8BF4CB1A}
[2012/05/06 10:08:47 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{71BBF01D-48B4-475E-B8D1-59C162A1B3A6}
[2012/05/05 14:36:19 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{812FEFE3-4FCD-4AA7-BD84-E2EE93CCC6BC}
[2012/05/05 14:36:00 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{6375DBCC-A818-41E5-86F8-0C7A8E5B1772}
[2012/05/02 23:32:40 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{72229371-7B37-4DD1-A3C0-E84D5FEBB633}
[2012/05/02 23:32:28 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{BB247921-3D93-4AC7-91CA-76EDF512E5EC}
[2012/05/02 13:05:49 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\AVG Secure Search
[2012/05/02 13:05:44 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG Secure Search
[2012/05/02 13:05:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\AVG Secure Search
[2012/05/02 13:05:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AVG Secure Search
[2012/05/02 11:09:05 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{01DA4977-E7B5-4298-8917-E68D88C8FCD9}
[2012/05/02 11:08:53 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{42F3D739-A100-4869-935A-3762543FF887}
[2012/05/02 00:11:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Legendas-1.8
[2012/05/01 21:08:36 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{2FCD5EA4-9158-4F5D-9503-988052028D21}
[2012/05/01 21:08:24 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{5F7911EF-2BF7-4FF7-9CF8-7BD76702FC79}
[2012/04/30 17:03:51 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{7EBAAA04-3BA2-4873-A4A8-7B90DA8F5639}
[2012/04/30 17:03:35 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{C8AF3B9C-4244-41B8-BA44-4F416C0E0F31}
[2012/04/29 22:48:46 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{F7C11F2D-398C-469C-B597-D8BBE7A5D83F}
[2012/04/29 22:48:26 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{B6AAF93D-D6C8-4B3F-960E-8EC8162D7875}
[2012/04/29 16:59:56 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{17BFBBB6-88B6-4BCE-8B21-9E22A3AEF1C4}
[2012/04/28 22:01:15 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{2E1C2AA2-D029-46DA-87B4-A88B17675F95}
[2012/04/28 22:00:52 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{1D937EE1-28B0-440E-98B6-FCC331B270F9}
[2012/04/28 08:01:21 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{506C2332-AC46-476F-A811-4A8946947E2E}
[2012/04/28 08:01:10 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{EF4E84E3-9EF6-4055-8F19-378A9A795CC7}
[2012/04/27 16:41:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\uTorrent
[2012/04/27 16:39:24 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Roaming\uTorrent
[2012/04/26 19:48:21 | 000,000,000 | ---D | C] -- C:\Users\NEW\Documents\IMPORTAÇÃO
[2012/04/26 03:17:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Legendas-1.7
[2012/04/26 03:12:23 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\CRE
[2012/04/26 03:12:22 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Roaming\Mozilla
[2012/04/24 13:22:37 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{AFB1DE6F-4E52-45C4-9CAC-70D688ADAD6E}
[2012/04/24 01:22:12 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{68E06A4E-F6C3-4F2E-A82F-08C6F77DE732}
[2012/04/24 01:22:00 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{6EDDA843-0DD3-4E84-AC69-1699E52643A8}
[2012/04/23 11:56:02 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{42FFF0A4-3102-45FE-91E2-ABE10EFB14DF}
[2012/04/23 11:55:40 | 000,000,000 | ---D | C] -- C:\Users\NEW\AppData\Local\{DC6BFA16-158F-49E2-8E9E-FC1F38B7751B}
[2012/04/17 02:41:03 | 000,082,816 | ---- | C] (VSO Software) -- C:\Users\NEW\AppData\Roaming\pcouffin.sys
[2012/04/07 23:39:29 | 000,516,136 | ---- | C] (Bandoo Media Inc) -- C:\Program Files (x86)\iLividSetupV1.exe
[2012/04/03 19:17:57 | 000,742,264 | ---- | C] (BitTorrent, Inc.) -- C:\Program Files (x86)\uTorrent.exe
[2012/03/19 18:58:06 | 001,013,664 | ---- | C] (Yuna Software) -- C:\Program Files (x86)\Setup-SkypePlus-775.exe
[2012/02/15 18:42:24 | 002,805,760 | ---- | C] (
http://www.emule-project.net) -- C:\Program Files (x86)\emule.exe
[2012/02/08 10:46:15 | 001,151,376 | ---- | C] (Yuna Software) -- C:\Program Files (x86)\Setup-MsgPlus-511.exe
[2012/02/04 09:25:05 | 000,943,752 | ---- | C] (Skype Technologies S.A.) -- C:\Program Files (x86)\SkypeSetup.exe
========== Files - Modified Within 30 Days ==========[2012/05/31 17:22:32 | 002,309,910 | ---- | M] () -- C:\Users\NEW\Documents\IMGP1314.JPG
[2012/05/31 17:11:22 | 002,374,022 | ---- | M] () -- C:\Users\NEW\Documents\IMGP1312.JPG
[2012/05/31 16:36:24 | 002,544,388 | ---- | M] () -- C:\Users\NEW\Documents\IMGP1288.JPG
[2012/05/31 16:35:26 | 002,496,160 | ---- | M] () -- C:\Users\NEW\Documents\IMGP1284.JPG
[2012/05/31 16:31:54 | 002,384,504 | ---- | M] () -- C:\Users\NEW\Documents\IMGP1272.JPG
[2012/05/31 16:19:22 | 002,245,331 | ---- | M] () -- C:\Users\NEW\Documents\IMGP1257.JPG
[2012/05/31 16:11:14 | 002,485,523 | ---- | M] () -- C:\Users\NEW\Documents\IMGP1252.JPG
[2012/05/31 16:07:54 | 002,433,188 | ---- | M] () -- C:\Users\NEW\Documents\IMGP1242.JPG
[2012/05/31 16:07:24 | 002,454,666 | ---- | M] () -- C:\Users\NEW\Documents\IMGP1239.JPG
[2012/05/31 16:05:32 | 002,487,565 | ---- | M] () -- C:\Users\NEW\Documents\IMGP1234.JPG
[2012/05/31 15:59:52 | 002,358,394 | ---- | M] () -- C:\Users\NEW\Documents\IMGP1231.JPG
[2012/05/30 17:26:58 | 002,481,515 | ---- | M] () -- C:\Users\NEW\Documents\IMGP1163.JPG
[2012/05/30 17:20:38 | 002,135,936 | ---- | M] () -- C:\Users\NEW\Documents\IMGP1160.JPG
[2012/05/30 17:18:36 | 002,195,681 | ---- | M] () -- C:\Users\NEW\Documents\IMGP1158.JPG
[2012/05/30 16:58:06 | 001,916,343 | ---- | M] () -- C:\Users\NEW\Documents\IMGP1154.JPG
[2012/05/30 15:55:10 | 002,533,913 | ---- | M] () -- C:\Users\NEW\Documents\IMGP1119.JPG
[2012/05/29 21:09:58 | 002,351,544 | ---- | M] () -- C:\Users\NEW\Documents\IMGP1101.JPG
[2012/05/29 21:08:36 | 002,212,644 | ---- | M] () -- C:\Users\NEW\Documents\IMGP1098.JPG
[2012/05/29 19:29:34 | 002,455,806 | ---- | M] () -- C:\Users\NEW\Documents\IMGP1083.JPG
[2012/05/29 18:33:10 | 002,400,787 | ---- | M] () -- C:\Users\NEW\Documents\IMGP1082.JPG
[2012/05/29 16:39:24 | 002,354,775 | ---- | M] () -- C:\Users\NEW\Documents\IMGP1025.JPG
[2012/05/29 16:39:16 | 002,356,356 | ---- | M] () -- C:\Users\NEW\Documents\IMGP1024.JPG
[2012/05/29 16:27:32 | 002,379,142 | ---- | M] () -- C:\Users\NEW\Documents\IMGP1012.JPG
[2012/05/22 12:52:14 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\NEW\Desktop\OTL.exe
[2012/05/22 12:49:35 | 001,518,776 | ---- | M] () -- C:\windows\SysNative\PerfStringBackup.INI
[2012/05/22 12:49:35 | 000,664,482 | ---- | M] () -- C:\windows\SysNative\prfh0416.dat
[2012/05/22 12:49:35 | 000,616,686 | ---- | M] () -- C:\windows\SysNative\perfh009.dat
[2012/05/22 12:49:35 | 000,128,514 | ---- | M] () -- C:\windows\SysNative\prfc0416.dat
[2012/05/22 12:49:35 | 000,106,808 | ---- | M] () -- C:\windows\SysNative\perfc009.dat
[2012/05/22 12:48:00 | 000,001,082 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/05/22 12:48:00 | 000,000,902 | ---- | M] () -- C:\windows\tasks\Adobe Flash Player Updater.job
[2012/05/22 12:47:38 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2012/05/22 01:22:20 | 000,021,072 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/05/22 01:22:20 | 000,021,072 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/05/22 01:14:59 | 000,119,029 | ---- | M] () -- C:\windows\SysNative\fastboot.set
[2012/05/22 01:14:20 | 000,001,078 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/05/22 01:14:03 | 3177,074,688 | -HS- | M] () -- C:\hiberfil.sys
[2012/05/20 19:33:09 | 000,000,998 | ---- | M] () -- C:\Users\Public\Desktop\MBRCheck.lnk
[2012/05/20 19:33:09 | 000,000,991 | ---- | M] () -- C:\Users\Public\Desktop\ZHPDiag.lnk
[2012/05/20 19:33:09 | 000,000,986 | ---- | M] () -- C:\Users\Public\Desktop\ZHPFix.lnk
[2012/05/20 19:32:46 | 004,678,493 | ---- | M] (Nicolas Coolman ) -- C:\Users\NEW\Desktop\ZHPDiag2.exe
[2012/05/17 22:52:36 | 000,000,294 | ---- | M] () -- C:\Users\NEW\Documents\cc_20120517_225232.reg
[2012/05/16 11:43:14 | 000,023,528 | ---- | M] () -- C:\Users\NEW\Documents\cc_20120516_114305.reg
[2012/05/15 12:47:03 | 000,002,092 | ---- | M] () -- C:\Users\NEW\Desktop\Perfil de Avira Free antivírus Verificar Rootkits e malware ativo.LNK
[2012/05/15 12:25:23 | 000,580,883 | ---- | M] () -- C:\Users\NEW\Desktop\adwcleaner.exe
[2012/05/14 20:03:21 | 000,301,624 | ---- | M] (Softonic) -- C:\Users\NEW\Desktop\SoftonicDownloader_para_adwcleaner.exe
[2012/05/14 16:29:16 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Program Files (x86)\HijackThis.exe
[2012/05/14 16:24:53 | 002,722,832 | ---- | M] (Piriform Ltd) -- C:\Program Files (x86)\ccsetup318_slim.exe
[2012/05/14 14:05:45 | 000,282,928 | ---- | M] () -- C:\windows\SysNative\FNTCACHE.DAT
[2012/05/03 15:56:03 | 001,049,045 | ---- | M] () -- C:\Users\NEW\Documents\Como Limpar seu Nome do SPC e Serasa.zip
[2012/04/30 19:31:08 | 002,334,589 | ---- | M] () -- C:\Users\NEW\Documents\IMGP1155.JPG
[2012/04/23 22:25:49 | 000,091,165 | ---- | M] () -- C:\Users\NEW\Documents\Fatura Net.pdf
========== Files Created - No Company Name ==========[2012/05/20 19:33:09 | 000,000,998 | ---- | C] () -- C:\Users\Public\Desktop\MBRCheck.lnk
[2012/05/20 19:33:09 | 000,000,991 | ---- | C] () -- C:\Users\Public\Desktop\ZHPDiag.lnk
[2012/05/20 19:33:09 | 000,000,986 | ---- | C] () -- C:\Users\Public\Desktop\ZHPFix.lnk
[2012/05/17 22:52:34 | 000,000,294 | ---- | C] () -- C:\Users\NEW\Documents\cc_20120517_225232.reg
[2012/05/16 11:43:11 | 000,023,528 | ---- | C] () -- C:\Users\NEW\Documents\cc_20120516_114305.reg
[2012/05/15 12:47:03 | 000,002,092 | ---- | C] () -- C:\Users\NEW\Desktop\Perfil de Avira Free antivírus Verificar Rootkits e malware ativo.LNK
[2012/05/15 12:25:18 | 000,580,883 | ---- | C] () -- C:\Users\NEW\Desktop\adwcleaner.exe
[2012/05/05 18:54:13 | 002,384,504 | ---- | C] () -- C:\Users\NEW\Documents\IMGP1272.JPG
[2012/05/05 18:54:12 | 002,245,331 | ---- | C] () -- C:\Users\NEW\Documents\IMGP1257.JPG
[2012/05/05 18:54:11 | 002,485,523 | ---- | C] () -- C:\Users\NEW\Documents\IMGP1252.JPG
[2012/05/05 18:54:09 | 002,433,188 | ---- | C] () -- C:\Users\NEW\Documents\IMGP1242.JPG
[2012/05/05 18:54:08 | 002,454,666 | ---- | C] () -- C:\Users\NEW\Documents\IMGP1239.JPG
[2012/05/05 18:54:07 | 002,487,565 | ---- | C] () -- C:\Users\NEW\Documents\IMGP1234.JPG
[2012/05/05 18:54:07 | 002,358,394 | ---- | C] () -- C:\Users\NEW\Documents\IMGP1231.JPG
[2012/05/05 18:53:46 | 002,544,388 | ---- | C] () -- C:\Users\NEW\Documents\IMGP1288.JPG
[2012/05/05 18:53:46 | 002,496,160 | ---- | C] () -- C:\Users\NEW\Documents\IMGP1284.JPG
[2012/05/05 18:53:46 | 002,374,022 | ---- | C] () -- C:\Users\NEW\Documents\IMGP1312.JPG
[2012/05/05 18:53:46 | 002,309,910 | ---- | C] () -- C:\Users\NEW\Documents\IMGP1314.JPG
[2012/05/03 15:56:05 | 001,049,045 | ---- | C] () -- C:\Users\NEW\Documents\Como Limpar seu Nome do SPC e Serasa.zip
[2012/04/30 19:37:57 | 002,481,515 | ---- | C] () -- C:\Users\NEW\Documents\IMGP1163.JPG
[2012/04/30 19:37:57 | 002,334,589 | ---- | C] () -- C:\Users\NEW\Documents\IMGP1155.JPG
[2012/04/30 19:37:57 | 002,195,681 | ---- | C] () -- C:\Users\NEW\Documents\IMGP1158.JPG
[2012/04/30 19:37:57 | 002,135,936 | ---- | C] () -- C:\Users\NEW\Documents\IMGP1160.JPG
[2012/04/30 19:37:57 | 001,916,343 | ---- | C] () -- C:\Users\NEW\Documents\IMGP1154.JPG
[2012/04/30 19:37:56 | 002,533,913 | ---- | C] () -- C:\Users\NEW\Documents\IMGP1119.JPG
[2012/04/29 17:19:26 | 002,379,142 | ---- | C] () -- C:\Users\NEW\Documents\IMGP1012.JPG
[2012/04/29 17:19:26 | 002,356,356 | ---- | C] () -- C:\Users\NEW\Documents\IMGP1024.JPG
[2012/04/29 17:19:26 | 002,354,775 | ---- | C] () -- C:\Users\NEW\Documents\IMGP1025.JPG
[2012/04/29 17:19:18 | 002,455,806 | ---- | C] () -- C:\Users\NEW\Documents\IMGP1083.JPG
[2012/04/29 17:19:18 | 002,400,787 | ---- | C] () -- C:\Users\NEW\Documents\IMGP1082.JPG
[2012/04/29 17:19:18 | 002,351,544 | ---- | C] () -- C:\Users\NEW\Documents\IMGP1101.JPG
[2012/04/29 17:19:18 | 002,212,644 | ---- | C] () -- C:\Users\NEW\Documents\IMGP1098.JPG
[2012/04/23 22:25:51 | 000,091,165 | ---- | C] () -- C:\Users\NEW\Documents\Fatura Net.pdf
[2012/04/17 02:41:03 | 000,099,384 | ---- | C] () -- C:\Users\NEW\AppData\Roaming\inst.exe
[2012/04/17 02:41:03 | 000,007,859 | ---- | C] () -- C:\Users\NEW\AppData\Roaming\pcouffin.cat
[2012/04/17 02:41:03 | 000,001,167 | ---- | C] () -- C:\Users\NEW\AppData\Roaming\pcouffin.inf
[2012/04/16 23:05:12 | 000,001,057 | ---- | C] () -- C:\Users\NEW\AppData\Roaming\vso_ts_preview.xml
[2012/04/07 19:09:00 | 087,589,872 | ---- | C] () -- C:\Program Files (x86)\avira_free_antivirus_ptbr.exe
[2012/03/07 22:23:06 | 001,534,674 | ---- | C] () -- C:\windows\SysWow64\PerfStringBackup.INI
[2012/03/04 13:35:30 | 000,000,000 | -H-- | C] () -- C:\ProgramData\gpc.stb
[2012/02/29 19:37:02 | 000,000,000 | -H-- | C] () -- C:\ProgramData\gpc.stu
[2012/02/29 02:06:03 | 003,389,035 | ---- | C] () -- C:\Program Files (x86)\eMule0.50a-Installer.exe
[2012/02/15 18:32:38 | 003,301,033 | ---- | C] () -- C:\Program Files (x86)\winrar-x64-410br.exe
[2012/02/08 11:23:56 | 000,175,616 | ---- | C] () -- C:\windows\SysWow64\unrar.dll
[2012/02/08 11:19:08 | 004,085,599 | ---- | C] () -- C:\Program Files (x86)\Water-1.0.0.plsk
[2011/11/25 19:03:00 | 000,000,512 | ---- | C] () -- C:\windows\previous.bin
[2011/11/25 19:03:00 | 000,000,512 | ---- | C] () -- C:\windows\current.bin
[2011/11/25 18:48:10 | 002,086,240 | ---- | C] () -- C:\windows\SysWow64\LenovoVeriface.Interface.dll
[2011/11/25 18:48:10 | 001,500,512 | ---- | C] () -- C:\windows\SysWow64\Apblend.dll
[2011/11/25 18:48:10 | 001,171,456 | ---- | C] () -- C:\windows\SysWow64\PicNotify.dll
[2011/11/25 18:48:10 | 000,472,416 | ---- | C] () -- C:\windows\SysWow64\Lenovo.VerifaceStub.dll
[2011/11/25 18:48:05 | 001,044,480 | ---- | C] () -- C:\windows\SysWow64\3DImageRenderer.dll
[2011/11/25 18:37:33 | 000,015,497 | ---- | C] () -- C:\windows\snp2uvc.ini
[2011/11/25 18:32:34 | 000,066,856 | ---- | C] () -- C:\windows\SysWow64\SynTPEnhPS.dll
[2011/11/25 18:20:21 | 000,963,116 | ---- | C] () -- C:\windows\SysWow64\igkrng600.bin
[2011/11/25 18:20:19 | 000,145,804 | ---- | C] () -- C:\windows\SysWow64\igcompkrng600.bin
[2011/08/31 18:51:16 | 000,216,000 | ---- | C] () -- C:\windows\SysWow64\igfcg600m.bin
[2011/08/31 18:46:00 | 000,056,832 | ---- | C] () -- C:\windows\SysWow64\igdde32.dll
[2011/08/31 18:26:20 | 013,903,872 | ---- | C] () -- C:\windows\SysWow64\ig4icd32.dll
========== LOP Check ==========[2012/04/09 14:24:41 | 000,000,000 | ---D | M] -- C:\Users\NEW\AppData\Roaming\BSplayer
[2012/04/09 13:41:19 | 000,000,000 | ---D | M] -- C:\Users\NEW\AppData\Roaming\BSplayer Pro
[2012/04/16 23:56:58 | 000,000,000 | ---D | M] -- C:\Users\NEW\AppData\Roaming\FreeVideoConverter
[2012/04/21 02:55:04 | 000,000,000 | ---D | M] -- C:\Users\NEW\AppData\Roaming\Lenovo
[2012/05/08 18:02:33 | 000,000,000 | ---D | M] -- C:\Users\NEW\AppData\Roaming\SoftGrid Client
[2012/03/07 22:24:07 | 000,000,000 | ---D | M] -- C:\Users\NEW\AppData\Roaming\TP
[2012/05/16 11:49:07 | 000,000,000 | ---D | M] -- C:\Users\NEW\AppData\Roaming\uTorrent
[2012/05/16 11:49:08 | 000,000,000 | ---D | M] -- C:\Users\NEW\AppData\Roaming\Vso
[2012/02/08 22:55:32 | 000,000,000 | ---D | M] -- C:\Users\NEW\AppData\Roaming\Windows Live Writer
[2012/03/30 12:28:40 | 000,032,538 | ---- | M] () -- C:\windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==================== Alternate Data Streams ==========@Alternate Data Stream - 208 bytes -> C:\windows\SysWow64\drivers:GbpKmAp.lst
< End of report >
--------------------------------------------------------------------------------------------------------------------------------
OTL Extras logfile created on: 22/05/2012 12:55:34 - Run 1
OTL by OldTimer - Version 3.2.43.1 Folder = C:\Users\NEW\Desktop
64bit- Home Basic Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000416 | Country: Brasil | Language: PTB | Date Format: dd/MM/yyyy
3,95 Gb Total Physical Memory | 2,18 Gb Available Physical Memory | 55,31% Memory free
7,89 Gb Paging File | 5,71 Gb Available in Paging File | 72,38% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 421,81 Gb Total Space | 345,45 Gb Free Space | 81,90% Space Free | Partition Type: NTFS
Drive D: | 29,00 Gb Total Space | 26,56 Gb Free Space | 91,60% Space Free | Partition Type: NTFS
Computer Name: NEW-PC | User Name: NEW | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==================== File Associations ==========64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
.url[@ = InternetShortcut] -- C:\windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
========== Shell Spawning ==========64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==================== Vista Active Open Ports Exception List ==========[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0DE46F89-A943-45D0-ABD2-C0C4DCDCD626}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{A3CC0F9F-5ED4-47E3-AD0A-B03B76C2E15C}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
========== Vista Active Application Exception List ==========[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{1AECC9AA-6523-43B7-9FCF-C6C5015AE36A}" = dir=in | app=c:\program files (x86)\windows live\mesh\moe.exe |
"{4D6C7B6D-C29A-4193-8145-737C21B31E1C}" = protocol=17 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"{59985E5F-2060-48E7-BF37-9B700DA04BB4}" = protocol=6 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"{79FD8737-B29B-4234-A53B-059821E2D8B3}" = dir=in | app=c:\program files (x86)\lenovo\powerdvd10\powerdvd10.exe |
"{9FF77663-2E52-4F32-9E4C-1DAD251903E7}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A45AEBCC-FA5E-4B17-A889-7CE39EAF4841}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{DA3A0340-EB55-4DE3-9E00-BC2F8CF70A6F}" = dir=in | app=c:\program files (x86)\lenovo\powerdvd10\powerdvd cinema\powerdvdcinema10.exe |
"{E403F08D-C3AC-4B57-A011-52431CD461A9}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"TCP Query User{517EEB25-4D8E-44C5-9C8F-1CF0B450F93C}C:\program files (x86)\emule\emule.exe" = protocol=6 | dir=in | app=c:\program files (x86)\emule\emule.exe |
"UDP Query User{F80B6717-BD7C-4573-B780-E8E6E0659693}C:\program files (x86)\emule\emule.exe" = protocol=17 | dir=in | app=c:\program files (x86)\emule\emule.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{027E5FAB-1476-4C59-AAB4-32EF28520399}" = Windows Live Language Selector
"{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}" = Windows Live ID Sign-in Assistant
"{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}" = Lenovo Bluetooth with Enhanced Data Rate Software
"{46F4D124-20E5-4D12-BE52-EC177A7A4B42}" = Lenovo OneKey Recovery
"{90140000-006D-0416-1000-0000000FF1CE}" = Microsoft Office com Clique para Executar 2010
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{A508D5A2-3AC1-4594-A718-A663D6D3CF11}" = Windows Live Remote Service Resources
"{B7693CDE-074B-301C-9584-FC4343696C8B}" = Microsoft .NET Framework 4 Client Profile PTB Language Pack
"{CFF3C688-2198-4BC3-A399-598226949C39}" = Windows Live Remote Client Resources
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DF6D988A-EEA0-4277-AAB8-158E086E439B}" = Windows Live Remote Client
"{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}" = Windows Live Remote Service
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX 64-bit
"CCleaner" = CCleaner
"CNXT_AUDIO_HDA" = Conexant HD Audio
"EA12B1FB53CE4E387C31A85236C41EF559B5E392" = Pacote de Driver do Windows - Lenovo (ACPIVPC) System (12/02/2010 6.1.0.1)
"Lenovo EE Boot Optimizer" = Lenovo EE Boot Optimizer
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile PTB Language Pack" = Pacote de Idiomas do Microsoft .NET Framework 4 Client Profile - Português (Brasil)
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"WinRAR archiver" = WinRAR 4.10 (64-bit)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = Lenovo YouCam
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1F52D966-AA82-418D-86F1-4BEAD37E7A94}_is1" = Legendas 1.7
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{28ABE740-47F3-441B-9437-852F6A64EFF8}" = Lenovo_Wireless_Driver
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{39B3184E-0BFB-40FA-ADDC-E7E2D535CDA9}" = Controle ActiveX do Windows Live Mesh para Conexões Remotas
"{39DB07EE-5FEA-4DDC-9D34-778A7797C4AE}" = Messenger Plus! Community Smartbar
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel® Rapid Storage Technology
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
"{43B43577-2514-4CE0-B14A-7E85C17C0453}" = Windows Live Essentials
"{4664ED39-C80A-48F7-93CD-EBDCAFAB6CC5}" = Windows Live Writer Resources
"{62BBB2F0-E220-4821-A564-730807D2C34D}" = Realtek USB 2.0 Reader Driver
"{644063FA-ABA3-42AC-A8AC-3EDC0706018B}" = Windows Live Mesh
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel® Management Engine Components
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{90140011-0066-0416-0000-0000000FF1CE}" = Microsoft Office Starter 2010 - Português (Brasil)
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office 2010
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9DA3F03B-2CEE-4344-838E-117861E61FAF}" = Windows Live Mail
"{A199DB88-E22D-4CE7-90AC-B8BE396D7BF4}" = Windows Live Movie Maker
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AC76BA86-7AD7-1046-7B44-AA1000000001}" = Adobe Reader X (10.1.3) - Português
"{AD40A06A-77AB-4E2E-B2AA-FDE106A9977A}" = Lenovo EasyCamera
"{B33B61FE-701F-425F-98AB-2B85725CBF68}" = Windows Live Photo Common
"{B3BE54A4-8DFE-4593-8E66-56AB7133B812}" = Windows Live Writer
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{C9E1343D-E21E-4508-A1BE-04A089EC137D}" = Windows Live Messenger
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D0956C11-0F60-43FE-99AD-524E833471BB}" = Energy Management
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}" = Lenovo PowerDVD 10
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{DF71ABBB-B834-41C0-BB58-80B0545D754C}" = Windows Live UX Platform Language Pack
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.8
"{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}" = Guia de Usuário
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel® Processor Graphics
"{F7A46527-DF1F-4B0F-9637-98547E189442}" = Windows Live Galeria de Fotos
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel® Control Center
"Avira AntiVir Desktop" = Avira Free antivírus
"CoreAAC" = CoreAAC
"eMule" = eMule
"GOM Picker" = GOM PICKER
"GOM Player" = GOM Player
"GOM Video Converter" = GOM Video Converter
"Google Chrome" = Google Chrome
"InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = Lenovo YouCam
"InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}" = Lenovo OneKey Recovery
"InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}" = Energy Management
"InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}" = Lenovo PowerDVD 10
"InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}" = UserGuide
"KLiteCodecPack_is1" = K-Lite Codec Pack 8.6.0 (Full)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware versão 1.61.0.1400
"McAfee Security Scan" = McAfee Security Scan Plus
"Messenger Plus!" = Messenger Plus! 5
"Messenger Plus! for Skype" = Messenger Plus! for Skype
"MPEG2 Codec(libmpeg2/mad)" = MPEG2 Codec(libmpeg2/mad)
"Office14.Click2Run" = Microsoft Office com Clique para Executar 2010
"uTorrent" = µTorrent
"VeriFace" = VeriFace
"WinLiveSuite" = Windows Live Essentials
"ZHPDiag_is1" = ZHPDiag 1.31
========== Last 10 Event Log Errors ==========Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!
< End of report >
