My browsers were hijacked by this "Startpage". Follows DDS log:
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.10240.16603 BrowserJavaVersion: 11.73.2
Run by Eduardo at 0:55:07 on 2016-03-11
Microsoft Windows 10 Home Single Language 10.0.10240.0.1252.55.1046.18.8122.4357 [GMT -3:00]
.
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Antivírus e antispyware da McAfee *Enabled/Updated* {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Antivírus e antispyware da McAfee *Enabled/Updated* {61FE6F34-F6E4-3642-CFEA-6AD93746FFEB}
FW: McAfee Firewall *Enabled* {E2A40FF5-9AB1-3894-DE05-F89EB212F22D}
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\dwm.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\PROGRA~2\GbPlugin\GbpSv.exe
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
C:\WINDOWS\system32\Hpservice.exe
C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k WbioSvcGroup
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k apphost
C:\WINDOWS\System32\svchost.exe -k utcsvc
C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
C:\Windows\system32\mfevtps.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
C:\Program Files\Apoint2K\HidMonitorSvc.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Program Files (x86)\QNAP\QVR\QVRService.exe
C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\Windows\system32\mfevtps.exe
C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
C:\Program Files\Diebold\Warsaw\core.exe
C:\WINDOWS\system32\WLANExt.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
C:\Program Files\McAfee\MSC\McAPExe.exe
C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
svchost.exe
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Apoint2K\Apoint.exe
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\system32\sihost.exe
C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe
C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe
C:\Program Files (x86)\QNAP\Qfinder\iSCSIAgent.exe
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\PROGRA~2\GbPlugin\GbpSv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Apoint2K\ApMsgFwd.exe
C:\WINDOWS\system32\igfxEM.exe
C:\WINDOWS\system32\igfxHK.exe
C:\Program Files\Apoint2K\HidFind.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Program Files\Hewlett-Packard\SimplePass\opbhobroker.exe
C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
C:\Program Files (x86)\Legendas-3.5\srvlegendas.exe
C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv.exe
C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
C:\Program Files\Common Files\McAfee\CSP\1.8.267.0\McCSPServiceHost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
C:\Program Files\Diebold\Warsaw\core.exe
C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe
C:\Users\Eduardo\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe
C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
C:\Program Files\CCleaner\CCleaner64.exe
C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe
C:\WINDOWS\SysWOW64\DllHost.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\WINDOWS\SysWOW64\cmd.exe
C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
C:\WINDOWS\system32\SettingSyncHost.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\fontdrvhost.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
C:\Program Files\mcafee\VirusScan\mcods.exe
C:\Program Files\Common Files\McAfee\Platform\Core\mchost.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\taskeng.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\WINDOWS\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
BHO: Skype for Business Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll
BHO: Evernote extension: {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll
BHO: McAfee SafeKey Vault: {9DB059B3-DD36-4a55-846C-59BE42A1202A} - C:\Program Files (x86)\SafeKey\LPToolbar.dll
BHO: Skype Click to Call for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
BHO: GbIehObj Class: {C41A1C0E-EA6C-11D4-B1B8-444553540008} - C:\PROGRAM FILES (X86)\GbPlugin\gbiehuni.dll
BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX86\Microsoft Office\Office15\GROOVEEX.DLL
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll
BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
TB: McAfee SafeKey: {61D700C1-7D8D-43c5-9C13-4FF85157CFE6} - C:\Program Files (x86)\SafeKey\LPToolbar.dll
uRun: [Lync] "C:\Program Files\Microsoft Office 15\root\office15\lync.exe" /fromrunkey
uRun: [Power2GoExpress8] "C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe"
uRun: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
uRun: [OneDrive] "C:\Users\Eduardo\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
uRun: [GoogleChromeAutoLaunch_5067CAB4F02DB410F3160A138613072A] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
uRun: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
uRunOnce: [Uninstall C:\Users\Eduardo\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] C:\WINDOWS\System32\cmd.exe /q /c rmdir /s /q "C:\Users\Eduardo\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
uRunOnce: [Uninstall C:\Users\Eduardo\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] C:\WINDOWS\System32\cmd.exe /q /c rmdir /s /q "C:\Users\Eduardo\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64"
uRunOnce: [Uninstall C:\Users\Eduardo\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64] C:\WINDOWS\System32\cmd.exe /q /c rmdir /s /q "C:\Users\Eduardo\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64"
uRunOnce: [Uninstall C:\Users\Eduardo\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64] C:\WINDOWS\System32\cmd.exe /q /c rmdir /s /q "C:\Users\Eduardo\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64"
uRunOnce: [Uninstall C:\Users\Eduardo\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64] C:\WINDOWS\System32\cmd.exe /q /c rmdir /s /q "C:\Users\Eduardo\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64"
uRunOnce: [Uninstall C:\Users\Eduardo\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64] C:\WINDOWS\System32\cmd.exe /q /c rmdir /s /q "C:\Users\Eduardo\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64"
mRun: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
mRun: [HPMessageService] C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
StartupFolder: C:\Users\Eduardo\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\EVERNO~1.LNK - C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\StartUp\INSTAL~1.LNK - C:\Program Files (x86)\Common Files\lpuninstall.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\StartUp\ISCTSY~1.LNK - C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
mPolicies-System: DSCAutomationHostEnabled = dword:2
IE: Capturar esta página - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1
IE: Capturar imagem - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4
IE: Capturar seleção - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3
IE: Capturar URL - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0
IE: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
IE: Formulários de preenchimento do McAfee SafeKey - C:\Users\Eduardo\AppData\LocalLow\safekey\context.html?cmd=fillforms
IE: Nova nota - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html
IE: safekey - C:\Users\Eduardo\AppData\LocalLow\safekey\context.html?cmd=lastpass
IE: SafeKey Fill Forms - C:\Users\Eduardo\AppData\LocalLow\SafeKey\context.html?cmd=fillforms
IE: Se&nd to OneNote - C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX86\Microsoft Office\Office15\ONBttnIE.dll
IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll
IE: {43699cd0-e34f-11de-8a39-0800200c9a66} - {9DB059B3-DD36-4a55-846C-59BE42A1202A} - C:\Program Files (x86)\SafeKey\LPToolbar.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX86\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
IE: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
Trusted Zone: itau.b.br
Trusted Zone: itau.com.br
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{6a174654-e142-4cf2-b6ff-ad0e2244c17e} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{a358134c-9f9f-48c4-93e6-67e501e80c14} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{a358134c-9f9f-48c4-93e6-67e501e80c14}\05F657371646160214C64756E686165737 : DHCPNameServer = 192.168.254.254
TCP: Interfaces\{a358134c-9f9f-48c4-93e6-67e501e80c14}\84162756E6 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{a358134c-9f9f-48c4-93e6-67e501e80c14}\8444E45445 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{a358134c-9f9f-48c4-93e6-67e501e80c14}\94E44554C424251435 : DHCPNameServer = 201.17.0.95 201.17.0.65
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX86\Microsoft Office\Office15\msosb.dll
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
Notify: GbPluginUni - C:\Program Files (x86)\GbPlugin\gbiehUni.dll
SSODL: WebCheck - <orphaned>
SEH: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399008} - C:\PROGRAM FILES (X86)\GbPlugin\gbiehuni.dll
LSA: Security Packages = ""
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.87\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\WINDOWS\System32\windows.storage.dll
x64-BHO: Skype for Business Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\office15\OCHelper.dll
x64-BHO: McAfee SafeKey Vault: {9DB059B3-DD36-4a55-846C-59BE42A1202A} - C:\Program Files (x86)\SafeKey\LPToolbar_x64.dll
x64-BHO: Skype Click to Call for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\office15\GROOVEEX.DLL
x64-BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -
x64-TB: McAfee SafeKey: {61D700C1-7D8D-43c5-9C13-4FF85157CFE6} - C:\Program Files (x86)\SafeKey\LPToolbar_x64.dll
x64-Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
x64-Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
x64-Run: [Diebold - Warsaw] C:\Program Files\Diebold\Warsaw\core.exe
x64-mPolicies-System: DSCAutomationHostEnabled = dword:2
x64-IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIE.dll
x64-IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\office15\OCHelper.dll
x64-IE: {43699cd0-e34f-11de-8a39-0800200c9a66} - {9DB059B3-DD36-4a55-846C-59BE42A1202A} - C:\Program Files (x86)\SafeKey\LPToolbar_x64.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIELinkedNotes.dll
x64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-IE: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\AddNote.html
x64-Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\MSC\McSnIePl64.dll
x64-Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLL
x64-Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\WINDOWS\System32\tbauth.dll
x64-SSODL: WebCheck - <orphaned>
x64-mASetup: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - /UserInstall
x64-mASetup: {89820200-ECBD-11cf-8B85-00AA005B4340} - U
x64-CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\WINDOWS\System32\windows.storage.dll
.
============= SERVICES / DRIVERS ===============
.
R0 iaStorA;iaStorA;C:\WINDOWS\System32\drivers\iaStorA.sys [2013-11-8 1455552]
R0 mfehidk;McAfee Inc. mfehidk;C:\WINDOWS\System32\drivers\mfehidk.sys [2014-10-1 846080]
R0 mfewfpk;McAfee Inc. mfewfpk;C:\WINDOWS\System32\drivers\mfewfpk.sys [2014-10-1 245096]
R0 WindowsTrustedRT;Windows Trusted Execution Environment Class Extension;C:\WINDOWS\System32\drivers\WindowsTrustedRT.sys [2015-7-10 106520]
R0 WindowsTrustedRTProxy;Microsoft Windows Trusted Runtime Secure Service;C:\WINDOWS\System32\drivers\WindowsTrustedRTProxy.sys [2015-7-10 17944]
R0 Wof;Windows Overlay File System Filter Driver;C:\WINDOWS\System32\drivers\wof.sys [2015-8-23 200528]
R1 ahcache;Application Compatibility Cache;C:\WINDOWS\System32\drivers\ahcache.sys [2015-7-10 215552]
R1 CLVirtualDrive;CLVirtualDrive;C:\WINDOWS\System32\drivers\CLVirtualDrive.sys [2015-4-14 91912]
R1 FileCrypt;FileCrypt;C:\WINDOWS\System32\drivers\filecrypt.sys [2015-7-10 83968]
R1 GpuEnergyDrv;GPU Energy Driver;C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-12-12 8192]
R1 legendasdrv;legendasdrv;C:\WINDOWS\System32\drivers\legendasdrv.sys [2016-1-16 59120]
R2 ApHidMonitorService;Alps HID Monitor Service;C:\Program Files\Apoint2K\HidMonitorSvc.exe [2015-8-7 104824]
R2 c2cautoupdatesvc;Skype Click to Call Updater;C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2016-1-8 1433216]
R2 c2cpnrsvc;Skype Click to Call PNR Service;C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2016-1-8 1773696]
R2 ClickToRunSvc;Serviço Clique para Executar do Microsoft Office;C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe [2014-12-20 2809072]
R2 COMLegService;COM+ Leg Service;C:\Program Files (x86)\Legendas-3.5\srvlegendas.exe [2016-1-16 1863408]
R2 CoreMessagingRegistrar;CoreMessaging;C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork [2015-7-10 39856]
R2 DiagTrack;Serviço de Rastreamento de Diagnóstico;C:\WINDOWS\System32\svchost.exe -k utcsvc [2015-7-10 39856]
R2 ESRV_SVC_WILLAMETTE;Energy Server Service WILLAMETTE;C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [2015-11-23 414360]
R2 GamesAppIntegrationService;GamesAppIntegrationService;C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2014-1-27 227904]
R2 GbpSv;Gbp Service;C:\PROGRA~2\GbPlugin\GbpSv.exe [2015-1-30 546104]
R2 HomeNetSvc;McAfee Home Network;C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2014-12-20 453520]
R2 hpsrv;HP Service;C:\WINDOWS\System32\hpservice.exe [2015-6-29 54448]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service;C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2015-7-26 25800]
R2 HPWMISVC;HPWMISVC;C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [2015-9-3 606224]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2015-6-23 18856]
R2 ibtsiva;Intel Bluetooth Service;C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe [2015-7-31 150256]
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service;C:\WINDOWS\System32\igfxCUIService.exe [2015-7-18 350312]
R2 ISCTAgent;Intel(R) Smart Connect Technology Agent;C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [2013-12-4 200168]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2015-7-6 223008]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe [2016-3-7 163592]
R2 McAPExe;McAfee AP Service;C:\Program Files\mcafee\MSC\McAPExe.exe [2014-12-20 863448]
R2 McBootDelayStartSvc;McAfee Boot Delay Start Service;C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2014-12-20 453520]
R2 mccspsvc;McAfee CSP Service;C:\Program Files\Common Files\mcafee\CSP\1.8.267.0\McCSPServiceHost.exe [2016-2-23 1696712]
R2 McMPFSvc;McAfee Personal Firewall Service;C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2014-12-20 453520]
R2 McNaiAnn;McAfee VirusScan Announcer;C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2014-12-20 453520]
R2 mcpltsvc;McAfee Platform Services;C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2014-12-20 453520]
R2 McProxy;McAfee Proxy Service;C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2014-12-20 453520]
R2 mfemms;McAfee Service Controller;C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe [2015-1-24 380896]
R2 mfevtp;McAfee Validation Trust Protection Service;C:\WINDOWS\System32\mfevtps.exe [2014-12-20 275368]
R2 PEFService;Intel Security PEF Service;C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [2016-2-21 902112]
R2 QVRService;QVRService;C:\Program Files (x86)\QNAP\QVR\QVRService.exe [2015-12-27 73728]
R2 RtkAudioService;Realtek Audio Service;C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2015-6-24 294616]
R2 storqosflt;Driver do Filtro QoS de Armazenamento;C:\WINDOWS\System32\drivers\storqosflt.sys [2015-7-10 61952]
R2 tiledatamodelsvc;Servidor de modelo de Dados de Bloco;C:\WINDOWS\System32\svchost.exe -k appmodel [2015-7-10 39856]
R2 UserManager;Gerenciador de Usuários;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-7-10 39856]
R2 Warsaw Technology;Warsaw Technology;C:\Program Files\Diebold\Warsaw\core.exe [2015-9-22 858424]
R2 WdNisDrv;Driver do Sistema de Inspeção de Rede do Windows Defender;C:\WINDOWS\System32\drivers\WdNisDrv.sys [2015-7-10 119648]
R2 ZeroConfigService;Intel(R) PROSet/Wireless Zero Configuration Service;C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2015-7-9 3831712]
R3 BthLEEnum;Driver de Baixa Energia do Bluetooth;C:\WINDOWS\System32\drivers\BthLEEnum.sys [2015-7-10 237568]
R3 cfwids;McAfee Inc. cfwids;C:\WINDOWS\System32\drivers\cfwids.sys [2014-10-1 79248]
R3 ClipSVC;Serviço de Licenças de Cliente (ClipSVC);C:\WINDOWS\System32\svchost.exe -k wsappx [2015-7-10 39856]
R3 clwvd;CyberLink WebCam Virtual Driver;C:\WINDOWS\System32\drivers\clwvd.sys [2015-4-28 41704]
R3 ibtusb;Intel(R) Wireless Bluetooth(R);C:\WINDOWS\System32\drivers\ibtusb.sys [2015-7-31 259312]
R3 ikbevent;Intel Upper keyboard Class Filter Driver;C:\WINDOWS\System32\drivers\ikbevent.sys [2013-8-13 21408]
R3 imsevent;Intel Upper Mouse Class Filter Driver;C:\WINDOWS\System32\drivers\imsevent.sys [2013-8-13 21920]
R3 INETMON;INETMON;C:\WINDOWS\System32\drivers\INETMON.sys [2014-9-30 29088]
R3 ISCT;Intel(R) Smart Connect Technology Device Driver;C:\WINDOWS\System32\drivers\ISCTD64.sys [2013-8-13 46568]
R3 iwdbus;IWD Bus Enumerator;C:\WINDOWS\System32\drivers\iwdbus.sys [2014-3-25 27032]
R3 lfsvc;Serviço de Geolocalização;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-7-10 39856]
R3 LicenseManager;Serviço de Gerenciador de Licença do Windows;C:\WINDOWS\System32\svchost.exe -k LocalService [2015-7-10 39856]
R3 mfeaack;McAfee Inc. mfeaack;C:\WINDOWS\System32\drivers\mfeaack.sys [2014-12-19 419624]
R3 mfeavfk;McAfee Inc. mfeavfk;C:\WINDOWS\System32\drivers\mfeavfk.sys [2014-10-1 351144]
R3 mfefire;McAfee Firewall Core Service;C:\Program Files\Common Files\mcafee\SystemCore\mfefire.exe [2014-12-20 234192]
R3 mfefirek;McAfee Inc. mfefirek;C:\WINDOWS\System32\drivers\mfefirek.sys [2014-10-1 496368]
R3 mfencbdc;McAfee Inc. mfencbdc;C:\WINDOWS\System32\drivers\mfencbdc.sys [2015-11-20 539496]
R3 mfesapsn;McAfee Process Start Notification Service;C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [2016-3-7 36968]
R3 NcbService;Agente de Conexão de Rede;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-7-10 39856]
R3 NdisVirtualBus;Enumerador de Adaptador de Rede Virtual Microsoft;C:\WINDOWS\System32\drivers\NdisVirtualBus.sys [2015-7-10 20992]
R3 NETwNb64;___ Driver do adaptador Intel(R) Wireless para Windows 8.1 64 bits;C:\WINDOWS\System32\drivers\Netwbw02.sys [2015-4-16 4043544]
R3 rt640x64;Realtek RT640 NT Driver;C:\WINDOWS\System32\drivers\rt640x64.sys [2015-10-12 886528]
R3 semav6msr64;semav6msr64;C:\WINDOWS\System32\drivers\semav6msr64.sys [2015-11-23 21984]
R3 StateRepository;Serviço de Repositório de Estado;C:\WINDOWS\System32\svchost.exe -k appmodel [2015-7-10 39856]
R3 WirelessButtonDriver;HP Wireless Button Driver Service;C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [2015-6-23 30384]
R4 WinDivert1.1;WinDivert1.1;C:\Program Files\Diebold\Warsaw\WinDivert64.sys [2015-9-22 38104]
S0 mfeelamk;McAfee Inc. mfeelamk;C:\WINDOWS\System32\drivers\mfeelamk.sys [2014-10-1 83096]
S2 dmwappushservice;dmwappushsvc;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-7-10 39856]
S2 DoSvc;Otimização de Entrega;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-7-10 39856]
S2 MapsBroker;Gerenciador de Mapas Baixados;C:\WINDOWS\System32\svchost.exe -k NetworkService [2015-7-10 39856]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-7-9 327296]
S2 SystemUsageReportSvc_WILLAMETTE;Intel(R) System Usage Report Service SystemUsageReportSvc_WILLAMETTE;C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe [2015-9-14 112792]
S3 ADP80XX;ADP80XX;C:\WINDOWS\System32\drivers\adp80xx.sys [2015-7-10 1135456]
S3 AJRouter;Serviço de Roteador AllJoyn;C:\WINDOWS\System32\svchost.exe -k LocalService [2015-7-10 39856]
S3 AppReadiness;Preparação de Aplicativos;C:\WINDOWS\System32\svchost.exe -k AppReadiness [2015-7-10 39856]
S3 AppXSvc;Serviço de Implantação AppX (AppXSVC);C:\WINDOWS\System32\svchost.exe -k wsappx [2015-7-10 39856]
S3 bcmfn2;bcmfn2 Service;C:\WINDOWS\System32\drivers\bcmfn2.sys [2015-7-10 17624]
S3 BthHFSrv;Serviço Mãos Livres Bluetooth;C:\WINDOWS\System32\svchost.exe -k LocalServiceAndNoImpersonation [2015-7-10 39856]
S3 buttonconverter;Serviço para dispositivos de Controle de Dispositivo Portátil;C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-1 36352]
S3 CapImg;Driver HID para tela touch CapImg;C:\WINDOWS\System32\drivers\capimg.sys [2015-7-10 116736]
S3 CDPSvc;CDPSvc;C:\WINDOWS\System32\svchost.exe -k LocalService [2015-7-10 39856]
S3 DcpSvc;DataCollectionPublishingService;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-7-10 39856]
S3 DevQueryBroker;Agente de Descoberta em Segundo Plano de DevQuery;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-7-10 39856]
S3 diagnosticshub.standardcollector.service;Serviço Coletor de Padrões de Hub de Diagnóstico da Microsoft (R);C:\WINDOWS\System32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-7-10 27136]
S3 DmEnrollmentSvc;Serviço de Registro de Gerenciamento de Dispositivos;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-7-10 39856]
S3 DsSvc;Serviço de Compartilhamento de Dados;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-7-10 39856]
S3 embeddedmode;embeddedmode;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-7-10 39856]
S3 EntAppSvc;Enterprise App Management Service;C:\WINDOWS\System32\svchost.exe -k appmodel [2015-7-10 39856]
S3 fcvsc;fcvsc;C:\WINDOWS\System32\drivers\fcvsc.sys [2015-7-10 31232]
S3 GamesAppService;GamesAppService;C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 genericusbfn;Classe de Função USB Genérica;C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-7-10 20992]
S3 hidinterrupt;Driver Comum para Botões HID implementado com interrupções;C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-7-10 50016]
S3 HipShieldK;McAfee Inc. HipShieldK;C:\WINDOWS\System32\drivers\HipShieldK.sys [2015-6-19 207208]
S3 iaLPSSi_GPIO;Driver de Controlador Intel(R) Serial IO GPIO;C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [2015-7-10 38128]
S3 iaLPSSi_I2C;Intel(R) Serial IO I2C Controller Driver;C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [2015-7-10 122608]
S3 iaStorAV;Controlador SATA RAID Intel(R) para Windows;C:\WINDOWS\System32\drivers\iaStorAV.sys [2015-7-10 673120]
S3 ibbus;Mellanox InfiniBand Bus/AL (Filter Driver);C:\WINDOWS\System32\drivers\ibbus.sys [2015-7-10 424800]
S3 icssvc;Serviço de Hotspot Móvel do Windows;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2015-7-10 39856]
S3 IEEtwCollectorService;Serviço Coletor ETW do Internet Explorer;C:\WINDOWS\System32\ieetwcollector.exe [2015-7-10 115200]
S3 intaud_WaveExtensible;Intel WiDi Audio Device;C:\WINDOWS\System32\drivers\intelaud.sys [2014-3-1 38296]
S3 IntcDAud;Áudio Intel(R) para telas;C:\WINDOWS\System32\drivers\IntcDAud.sys [2015-11-4 473864]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2015-5-22 881152]
S3 intelpep;Driver Intel(R) Power Engine Plug-in;C:\WINDOWS\System32\drivers\intelpep.sys [2015-7-10 43872]
S3 IoQos;IoQos;C:\WINDOWS\System32\drivers\ioqos.sys [2015-7-10 26624]
S3 LSI_SAS2i;LSI_SAS2i;C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-7-10 104800]
S3 LSI_SAS3i;LSI_SAS3i;C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-7-10 99168]
S3 mfencrk;McAfee Inc. mfencrk;C:\WINDOWS\System32\drivers\mfencrk.sys [2015-11-20 109480]
S3 mlx4_bus;Mellanox ConnectX Bus Enumerator;C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-7-10 705376]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2015-7-9 268192]
S3 ndfltr;Serviço NetworkDirect;C:\WINDOWS\System32\drivers\ndfltr.sys [2015-7-10 76128]
S3 NetSetupSvc;Serviço de Configuração de Rede;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-7-10 39856]
S3 netvsc;netvsc;C:\WINDOWS\System32\drivers\netvsc.sys [2015-7-10 94720]
S3 NgcCtnrSvc;Contêiner do Microsoft Passport;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2015-7-10 39856]
S3 NgcSvc;Microsoft Passport;C:\WINDOWS\System32\lsass.exe [2015-7-10 56344]
S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\microsoft shared\Source Engine\OSE.EXE [2014-12-13 178760]
S3 percsas2i;percsas2i;C:\WINDOWS\System32\drivers\percsas2i.sys [2015-7-10 58208]
S3 percsas3i;percsas3i;C:\WINDOWS\System32\drivers\percsas3i.sys [2015-7-10 58720]
S3 ReFSv1;ReFSv1;C:\WINDOWS\System32\drivers\refsv1.sys [2015-8-23 934752]
S3 RetailDemo;Serviço de Demonstração de Revenda;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-7-10 39856]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\WINDOWS\System32\drivers\RtsUStor.sys [2014-9-30 271064]
S3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader;C:\WINDOWS\System32\drivers\RtsUVStor.sys [2014-9-30 331992]
S3 RTL8168;Realtek 8168 NT Driver;C:\WINDOWS\System32\drivers\Rt630x64.sys [2015-1-3 871640]
S3 RTSPER;Realtek PCIE Card Reader - PER;C:\WINDOWS\System32\drivers\RtsPer.sys [2014-9-30 466136]
S3 ScDeviceEnum;Serviço de Enumeração de Dispositivo de Cartão Inteligente;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-7-10 39856]
S3 SensorDataService;Serviço de Dados de Sensor;C:\WINDOWS\System32\SensorDataService.exe [2015-8-23 1031680]
S3 SensorService;Serviço de Sensor;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-7-10 39856]
S3 SerCx2;Serial UART Support Library;C:\WINDOWS\System32\drivers\SerCx2.sys [2015-7-10 155488]
S3 smphost;SMP de Espaços de Armazenamento da Microsoft;C:\WINDOWS\System32\svchost.exe -k smphost [2015-7-10 39856]
S3 SmsRouter;Serviço de Roteador SMS do Microsoft Windows;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-7-10 39856]
S3 stornvme;Driver Microsoft Padrão NVM Express;C:\WINDOWS\System32\drivers\stornvme.sys [2015-8-23 80720]
S3 storufs;Driver UFS (Universal Flash Storage) Microsoft;C:\WINDOWS\System32\drivers\storufs.sys [2015-7-10 40288]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension;C:\WINDOWS\System32\drivers\UcmCx.sys [2015-7-10 61952]
S3 UcmUcsi;Cliente de UCSI do Gerenciador do conector USB;C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-8-23 46080]
S3 UdeCx;USB Device Emulation Support Library;C:\WINDOWS\System32\drivers\Udecx.sys [2015-7-10 44032]
S3 UEFI;Driver UEFI da Microsoft;C:\WINDOWS\System32\drivers\uefi.sys [2015-7-10 28512]
S3 Ufx01000;USB Function Class Extension;C:\WINDOWS\System32\drivers\ufx01000.sys [2015-7-10 245088]
S3 UfxChipidea;Controlador USB Chipidea;C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-7-10 94048]
S3 ufxsynopsys;Controlador USB Synopsys;C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-7-10 127840]
S3 UrsChipidea;Driver Chipidea USB Role-Switch;C:\WINDOWS\System32\drivers\urschipidea.sys [2015-7-10 28512]
S3 UrsCx01000;USB Role-Switch Support Library;C:\WINDOWS\System32\drivers\urscx01000.sys [2015-7-10 57696]
S3 UrsSynopsys;Driver Synopsys USB Role-Switch;C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-7-10 27488]
S3 USER_ESRV_SVC_WILLAMETTE;User Energy Server Service WILLAMETTE;C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [2015-11-23 414360]
S3 UsoSvc;Atualizar Serviço Orchestrator;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-7-10 39856]
S3 vhf;Driver de VHF (Estrutura HID Virtual);C:\WINDOWS\System32\drivers\vhf.sys [2015-7-10 31744]
S3 vmicguestinterface;Interface de Serviço de Convidado do Hyper-V;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-7-10 39856]
S3 vmicvmsession;Serviço de Sessão VM do Hyper-V;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-7-10 39856]
S3 w3logsvc;Serviço de Log W3C;C:\WINDOWS\System32\svchost.exe -k apphost [2015-7-10 39856]
S3 WalletService;WalletService;C:\WINDOWS\System32\svchost.exe -k appmodel [2015-7-10 39856]
S3 wdiwifi;WDI Driver Framework;C:\WINDOWS\System32\drivers\WdiWiFi.sys [2015-8-23 685568]
S3 WdNisSvc;Serviço de Inspeção de Rede do Windows Defender;C:\Program Files\Windows Defender\NisSrv.exe [2015-7-10 362928]
S3 WEPHOSTSVC;Serviço de Host do Provedor de Criptografia do Windows;C:\WINDOWS\System32\svchost.exe -k WepHostSvcGroup [2015-7-10 39856]
S3 WinMad;Serviço WinMad;C:\WINDOWS\System32\drivers\winmad.sys [2015-7-10 26976]
S3 WinVerbs;Serviço WinVerbs;C:\WINDOWS\System32\drivers\winverbs.sys [2015-7-10 59232]
S3 workfolderssvc;Pastas de Trabalho;C:\WINDOWS\System32\svchost.exe -k LocalService [2015-7-10 39856]
S3 WpnService;Serviço de Notificação por Push do Windows;C:\WINDOWS\System32\svchost.exe -k wswpnservice [2015-7-10 39856]
S3 WUDFWpdMtp;WUDFWpdMtp;C:\WINDOWS\System32\drivers\WUDFRd.sys [2015-7-10 214016]
S3 XblAuthManager;Gerenciador de Autenticação Xbox Live;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-7-10 39856]
S3 XblGameSave;Salvar Jogos no Xbox Live;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-7-10 39856]
S3 xboxgip;Xbox Game Input Protocol Driver;C:\WINDOWS\System32\drivers\xboxgip.sys [2015-7-10 222720]
S3 XboxNetApiSvc;Serviço de Rede Xbox Live;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-7-10 39856]
S3 xinputhid;XINPUT HID Filter Driver;C:\WINDOWS\System32\drivers\xinputhid.sys [2015-7-10 25600]
.
=============== File Associations ===============
.
FileExt: .txt: txtfile=C:\WINDOWS\System32\NOTEPAD.EXE %1 [UserChoice]
.
=============== Created Last 30 ================
.
2016-03-11 03:50:17 16148 ----a-w- C:\WINDOWS\System32\EDU14-V065BR_Eduardo_HistoryPrediction.bin
2016-03-11 02:36:02 -------- d-----w- C:\Program Files (x86)\AdwCleaner
2016-03-10 23:28:58 -------- d--h--w- C:\OneDriveTemp
2016-02-21 21:10:34 -------- d-----w- C:\Users\Eduardo\AppData\Roaming\VioDecoder
2016-02-21 21:10:26 -------- d-----w- C:\Users\Eduardo\AppData\Roaming\VioSources
2016-02-21 20:08:15 -------- d-----w- C:\Program Files (x86)\WinSCP
2016-02-21 18:55:57 -------- d-----w- C:\ProgramData\Intel Security
2016-02-21 18:53:11 -------- d-----w- C:\Program Files\Common Files\Intel Security
.
==================== Find3M ====================
.
2016-03-11 03:13:53 180 ----a-w- C:\WINDOWS\System32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-03-08 07:10:49 829944 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerApp.exe
2016-03-08 07:10:49 176632 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl
2016-02-23 22:47:44 97888 ----a-w- C:\WINDOWS\SysWow64\WindowsAccessBridge-32.dll
2016-02-23 14:53:02 1314496 ----a-w- C:\WINDOWS\System32\ole32.dll
2016-02-23 14:52:33 858408 ----a-w- C:\WINDOWS\System32\winresume.exe
2016-02-23 14:51:55 633184 ----a-w- C:\WINDOWS\System32\drivers\fvevol.sys
2016-02-23 14:51:12 146784 ----a-w- C:\WINDOWS\System32\wermgr.exe
2016-02-23 14:50:06 630160 ----a-w- C:\WINDOWS\System32\wer.dll
2016-02-23 14:48:14 1294352 ----a-w- C:\WINDOWS\System32\winload.efi
2016-02-23 14:48:14 1123952 ----a-w- C:\WINDOWS\System32\winload.exe
2016-02-23 14:48:04 8022368 ----a-w- C:\WINDOWS\System32\ntoskrnl.exe
2016-02-23 14:41:49 299600 ----a-w- C:\WINDOWS\System32\WMASF.DLL
2016-02-23 14:41:30 1150816 ----a-w- C:\WINDOWS\System32\aeinv.dll
2016-02-23 14:41:26 78040 ----a-w- C:\WINDOWS\System32\wkscli.dll
2016-02-23 14:40:19 110584 ----a-w- C:\WINDOWS\System32\srvcli.dll
2016-02-23 14:38:33 272752 ----a-w- C:\WINDOWS\System32\sqmapi.dll
2016-02-23 14:11:35 658784 ----a-w- C:\WINDOWS\System32\NetSetupEngine.dll
2016-02-23 14:11:33 103776 ----a-w- C:\WINDOWS\System32\NetSetupApi.dll
2016-02-23 14:11:28 781984 ----a-w- C:\WINDOWS\System32\mfds.dll
2016-02-23 13:39:08 607416 ----a-w- C:\WINDOWS\System32\fontdrvhost.exe
2016-02-23 13:30:25 1643872 ----a-w- C:\WINDOWS\System32\diagtrack.dll
2016-02-23 13:25:34 1085632 ----a-w- C:\WINDOWS\System32\appraiser.dll
2016-02-23 13:23:13 952968 ----a-w- C:\WINDOWS\SysWow64\ole32.dll
2016-02-23 13:21:24 141152 ----a-w- C:\WINDOWS\SysWow64\wermgr.exe
2016-02-23 13:21:12 529456 ----a-w- C:\WINDOWS\SysWow64\wer.dll
2016-02-23 13:11:43 249976 ----a-w- C:\WINDOWS\SysWow64\WMASF.DLL
2016-02-23 13:11:32 55808 ----a-w- C:\WINDOWS\SysWow64\wkscli.dll
2016-02-23 13:11:22 73360 ----a-w- C:\WINDOWS\SysWow64\srvcli.dll
2016-02-23 13:09:21 229352 ----a-w- C:\WINDOWS\SysWow64\sqmapi.dll
2016-02-23 12:58:43 150528 ----a-w- C:\WINDOWS\System32\MusNotification.exe
2016-02-23 12:50:52 75264 ----a-w- C:\WINDOWS\System32\NetCfgNotifyObjectHost.exe
2016-02-23 12:50:33 395264 ----a-w- C:\WINDOWS\System32\NetSetupShim.dll
2016-02-23 12:42:29 78176 ----a-w- C:\WINDOWS\SysWow64\NetSetupApi.dll
2016-02-23 12:42:23 467296 ----a-w- C:\WINDOWS\SysWow64\NetSetupEngine.dll
2016-02-23 12:42:22 658536 ----a-w- C:\WINDOWS\SysWow64\mfds.dll
2016-02-23 12:35:42 365568 ----a-w- C:\WINDOWS\System32\atmfd.dll
2016-02-23 12:20:19 138240 ----a-w- C:\WINDOWS\System32\drivers\dfsc.sys
2016-02-23 12:17:15 333312 ----a-w- C:\WINDOWS\System32\MusUpdateHandlers.dll
2016-02-23 12:15:18 539728 ----a-w- C:\WINDOWS\SysWow64\fontdrvhost.exe
2016-02-23 11:59:59 319488 ----a-w- C:\WINDOWS\System32\NetworkBindingEngineMigPlugin.dll
2016-02-23 11:59:39 104960 ----a-w- C:\WINDOWS\System32\drivers\rasl2tp.sys
2016-02-23 11:57:12 189952 ----a-w- C:\WINDOWS\System32\NetSetupSvc.dll
2016-02-23 11:45:30 6788608 ----a-w- C:\WINDOWS\System32\Windows.Data.Pdf.dll
2016-02-23 11:42:58 91648 ----a-w- C:\WINDOWS\System32\asycfilt.dll
2016-02-23 11:42:15 771072 ----a-w- C:\WINDOWS\System32\Chakradiag.dll
2016-02-23 11:38:59 2663424 ----a-w- C:\WINDOWS\System32\Windows.UI.Logon.dll
2016-02-23 11:37:26 57344 ----a-w- C:\WINDOWS\SysWow64\NetCfgNotifyObjectHost.exe
2016-02-23 11:36:53 281600 ----a-w- C:\WINDOWS\SysWow64\NetSetupShim.dll
2016-02-23 11:25:46 303104 ----a-w- C:\WINDOWS\SysWow64\atmfd.dll
2016-02-23 11:18:10 31232 ----a-w- C:\WINDOWS\System32\seclogon.dll
2016-02-23 11:17:37 133120 ----a-w- C:\WINDOWS\System32\browser.dll
2016-02-23 11:17:35 58368 ----a-w- C:\WINDOWS\System32\browcli.dll
2016-02-23 11:14:19 841728 ----a-w- C:\WINDOWS\System32\win32spl.dll
2016-02-23 11:08:34 81920 ----a-w- C:\WINDOWS\System32\AppxSysprep.dll
2016-02-23 11:04:29 225792 ----a-w- C:\WINDOWS\System32\wsqmcons.exe
2016-02-23 11:03:40 45568 ----a-w- C:\WINDOWS\System32\atmlib.dll
2016-02-23 11:03:16 450560 ----a-w- C:\WINDOWS\System32\werui.dll
2016-02-23 11:02:08 3587584 ----a-w- C:\WINDOWS\System32\win32kfull.sys
2016-02-23 10:51:35 915456 ----a-w- C:\WINDOWS\System32\configurationclient.dll
2016-02-23 10:51:16 678912 ----a-w- C:\WINDOWS\System32\scapi.dll
2016-02-23 10:48:55 5157376 ----a-w- C:\WINDOWS\SysWow64\Windows.Data.Pdf.dll
2016-02-23 10:48:13 21859840 ----a-w- C:\WINDOWS\System32\edgehtml.dll
2016-02-23 10:46:15 400384 ----a-w- C:\WINDOWS\System32\sharemediacpl.dll
2016-02-23 10:45:40 88576 ----a-w- C:\WINDOWS\SysWow64\olepro32.dll
2016-02-23 10:45:35 78848 ----a-w- C:\WINDOWS\SysWow64\asycfilt.dll
2016-02-23 10:45:01 574464 ----a-w- C:\WINDOWS\SysWow64\Chakradiag.dll
2016-02-23 10:45:01 1844736 ----a-w- C:\WINDOWS\System32\WMPDMC.exe
2016-02-23 10:44:25 1821696 ----a-w- C:\WINDOWS\SysWow64\Windows.UI.Logon.dll
2016-02-23 10:38:27 7524864 ----a-w- C:\WINDOWS\System32\Chakra.dll
2016-02-23 10:29:30 43520 ----a-w- C:\WINDOWS\SysWow64\browcli.dll
2016-02-23 10:17:52 37376 ----a-w- C:\WINDOWS\SysWow64\atmlib.dll
2016-02-23 10:17:48 393728 ----a-w- C:\WINDOWS\SysWow64\werui.dll
2016-02-23 10:03:40 1495040 ----a-w- C:\WINDOWS\SysWow64\WMPDMC.exe
2016-02-23 10:00:49 5457408 ----a-w- C:\WINDOWS\SysWow64\Chakra.dll
2016-02-23 09:58:49 18800640 ----a-w- C:\WINDOWS\SysWow64\edgehtml.dll
2016-01-31 06:25:57 1248896 ----a-w- C:\WINDOWS\System32\WinTypes.dll
2016-01-31 06:25:52 1951872 ----a-w- C:\WINDOWS\System32\KernelBase.dll
2016-01-31 06:24:08 1824880 ----a-w- C:\WINDOWS\System32\ntdll.dll
2016-01-31 06:23:57 2601160 ----a-w- C:\WINDOWS\System32\combase.dll
2016-01-31 06:23:50 1420392 ----a-w- C:\WINDOWS\System32\msctf.dll
2016-01-31 06:06:45 809336 ----a-w- C:\WINDOWS\SysWow64\WinTypes.dll
2016-01-31 06:06:37 1535032 ----a-w- C:\WINDOWS\SysWow64\ntdll.dll
2016-01-31 06:06:37 1531368 ----a-w- C:\WINDOWS\SysWow64\KernelBase.dll
2016-01-31 06:04:30 1180696 ----a-w- C:\WINDOWS\SysWow64\msctf.dll
2016-01-31 06:04:27 1811360 ----a-w- C:\WINDOWS\SysWow64\combase.dll
2016-01-31 05:34:34 88064 ----a-w- C:\WINDOWS\System32\ngckeyenum.dll
2016-01-31 05:33:38 57856 ----a-w- C:\WINDOWS\System32\IoTAssignedAccessLockFramework.dll
2016-01-31 05:29:56 141312 ----a-w- C:\WINDOWS\System32\rasman.dll
2016-01-31 05:29:36 11557888 ----a-w- C:\WINDOWS\System32\twinui.dll
2016-01-31 05:26:49 3793408 ----a-w- C:\WINDOWS\System32\rdpcorets.dll
2016-01-31 05:25:35 143872 ----a-w- C:\WINDOWS\System32\drivers\mrxdav.sys
2016-01-31 05:25:13 366592 ----a-w- C:\WINDOWS\System32\wuuhext.dll
2016-01-31 05:23:37 79360 ----a-w- C:\WINDOWS\System32\rdpudd.dll
2016-01-31 05:20:04 2849792 ----a-w- C:\WINDOWS\System32\wininet.dll
2016-01-31 05:19:51 237056 ----a-w- C:\WINDOWS\System32\NetworkDesktopSettings.dll
2016-01-31 05:19:47 46592 ----a-w- C:\WINDOWS\SysWow64\IoTAssignedAccessLockFramework.dll
2016-01-31 05:18:35 147456 ----a-w- C:\WINDOWS\System32\mtxoci.dll
2016-01-31 05:17:47 109056 ----a-w- C:\WINDOWS\System32\hlink.dll
2016-01-31 05:16:37 950272 ----a-w- C:\WINDOWS\System32\kerberos.dll
.
============= FINISH: 0:55:59,34 ===============
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.10240.16603 BrowserJavaVersion: 11.73.2
Run by Eduardo at 0:55:07 on 2016-03-11
Microsoft Windows 10 Home Single Language 10.0.10240.0.1252.55.1046.18.8122.4357 [GMT -3:00]
.
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Antivírus e antispyware da McAfee *Enabled/Updated* {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Antivírus e antispyware da McAfee *Enabled/Updated* {61FE6F34-F6E4-3642-CFEA-6AD93746FFEB}
FW: McAfee Firewall *Enabled* {E2A40FF5-9AB1-3894-DE05-F89EB212F22D}
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\dwm.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\PROGRA~2\GbPlugin\GbpSv.exe
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
C:\WINDOWS\system32\Hpservice.exe
C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k WbioSvcGroup
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k apphost
C:\WINDOWS\System32\svchost.exe -k utcsvc
C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
C:\Windows\system32\mfevtps.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
C:\Program Files\Apoint2K\HidMonitorSvc.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Program Files (x86)\QNAP\QVR\QVRService.exe
C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\Windows\system32\mfevtps.exe
C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
C:\Program Files\Diebold\Warsaw\core.exe
C:\WINDOWS\system32\WLANExt.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
C:\Program Files\McAfee\MSC\McAPExe.exe
C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
svchost.exe
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Apoint2K\Apoint.exe
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\system32\sihost.exe
C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe
C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe
C:\Program Files (x86)\QNAP\Qfinder\iSCSIAgent.exe
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\PROGRA~2\GbPlugin\GbpSv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Apoint2K\ApMsgFwd.exe
C:\WINDOWS\system32\igfxEM.exe
C:\WINDOWS\system32\igfxHK.exe
C:\Program Files\Apoint2K\HidFind.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Program Files\Hewlett-Packard\SimplePass\opbhobroker.exe
C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
C:\Program Files (x86)\Legendas-3.5\srvlegendas.exe
C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv.exe
C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
C:\Program Files\Common Files\McAfee\CSP\1.8.267.0\McCSPServiceHost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
C:\Program Files\Diebold\Warsaw\core.exe
C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe
C:\Users\Eduardo\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe
C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
C:\Program Files\CCleaner\CCleaner64.exe
C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe
C:\WINDOWS\SysWOW64\DllHost.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\WINDOWS\SysWOW64\cmd.exe
C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
C:\WINDOWS\system32\SettingSyncHost.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\fontdrvhost.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
C:\Program Files\mcafee\VirusScan\mcods.exe
C:\Program Files\Common Files\McAfee\Platform\Core\mchost.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\taskeng.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\WINDOWS\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
BHO: Skype for Business Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll
BHO: Evernote extension: {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll
BHO: McAfee SafeKey Vault: {9DB059B3-DD36-4a55-846C-59BE42A1202A} - C:\Program Files (x86)\SafeKey\LPToolbar.dll
BHO: Skype Click to Call for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
BHO: GbIehObj Class: {C41A1C0E-EA6C-11D4-B1B8-444553540008} - C:\PROGRAM FILES (X86)\GbPlugin\gbiehuni.dll
BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX86\Microsoft Office\Office15\GROOVEEX.DLL
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll
BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
TB: McAfee SafeKey: {61D700C1-7D8D-43c5-9C13-4FF85157CFE6} - C:\Program Files (x86)\SafeKey\LPToolbar.dll
uRun: [Lync] "C:\Program Files\Microsoft Office 15\root\office15\lync.exe" /fromrunkey
uRun: [Power2GoExpress8] "C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe"
uRun: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
uRun: [OneDrive] "C:\Users\Eduardo\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
uRun: [GoogleChromeAutoLaunch_5067CAB4F02DB410F3160A138613072A] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
uRun: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
uRunOnce: [Uninstall C:\Users\Eduardo\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] C:\WINDOWS\System32\cmd.exe /q /c rmdir /s /q "C:\Users\Eduardo\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
uRunOnce: [Uninstall C:\Users\Eduardo\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] C:\WINDOWS\System32\cmd.exe /q /c rmdir /s /q "C:\Users\Eduardo\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64"
uRunOnce: [Uninstall C:\Users\Eduardo\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64] C:\WINDOWS\System32\cmd.exe /q /c rmdir /s /q "C:\Users\Eduardo\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64"
uRunOnce: [Uninstall C:\Users\Eduardo\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64] C:\WINDOWS\System32\cmd.exe /q /c rmdir /s /q "C:\Users\Eduardo\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64"
uRunOnce: [Uninstall C:\Users\Eduardo\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64] C:\WINDOWS\System32\cmd.exe /q /c rmdir /s /q "C:\Users\Eduardo\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64"
uRunOnce: [Uninstall C:\Users\Eduardo\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64] C:\WINDOWS\System32\cmd.exe /q /c rmdir /s /q "C:\Users\Eduardo\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64"
mRun: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
mRun: [HPMessageService] C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
StartupFolder: C:\Users\Eduardo\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\EVERNO~1.LNK - C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\StartUp\INSTAL~1.LNK - C:\Program Files (x86)\Common Files\lpuninstall.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\StartUp\ISCTSY~1.LNK - C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
mPolicies-System: DSCAutomationHostEnabled = dword:2
IE: Capturar esta página - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1
IE: Capturar imagem - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4
IE: Capturar seleção - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3
IE: Capturar URL - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0
IE: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
IE: Formulários de preenchimento do McAfee SafeKey - C:\Users\Eduardo\AppData\LocalLow\safekey\context.html?cmd=fillforms
IE: Nova nota - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html
IE: safekey - C:\Users\Eduardo\AppData\LocalLow\safekey\context.html?cmd=lastpass
IE: SafeKey Fill Forms - C:\Users\Eduardo\AppData\LocalLow\SafeKey\context.html?cmd=fillforms
IE: Se&nd to OneNote - C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX86\Microsoft Office\Office15\ONBttnIE.dll
IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll
IE: {43699cd0-e34f-11de-8a39-0800200c9a66} - {9DB059B3-DD36-4a55-846C-59BE42A1202A} - C:\Program Files (x86)\SafeKey\LPToolbar.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX86\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
IE: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
Trusted Zone: itau.b.br
Trusted Zone: itau.com.br
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{6a174654-e142-4cf2-b6ff-ad0e2244c17e} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{a358134c-9f9f-48c4-93e6-67e501e80c14} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{a358134c-9f9f-48c4-93e6-67e501e80c14}\05F657371646160214C64756E686165737 : DHCPNameServer = 192.168.254.254
TCP: Interfaces\{a358134c-9f9f-48c4-93e6-67e501e80c14}\84162756E6 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{a358134c-9f9f-48c4-93e6-67e501e80c14}\8444E45445 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{a358134c-9f9f-48c4-93e6-67e501e80c14}\94E44554C424251435 : DHCPNameServer = 201.17.0.95 201.17.0.65
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX86\Microsoft Office\Office15\msosb.dll
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
Notify: GbPluginUni - C:\Program Files (x86)\GbPlugin\gbiehUni.dll
SSODL: WebCheck - <orphaned>
SEH: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399008} - C:\PROGRAM FILES (X86)\GbPlugin\gbiehuni.dll
LSA: Security Packages = ""
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.87\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\WINDOWS\System32\windows.storage.dll
x64-BHO: Skype for Business Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\office15\OCHelper.dll
x64-BHO: McAfee SafeKey Vault: {9DB059B3-DD36-4a55-846C-59BE42A1202A} - C:\Program Files (x86)\SafeKey\LPToolbar_x64.dll
x64-BHO: Skype Click to Call for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\office15\GROOVEEX.DLL
x64-BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -
x64-TB: McAfee SafeKey: {61D700C1-7D8D-43c5-9C13-4FF85157CFE6} - C:\Program Files (x86)\SafeKey\LPToolbar_x64.dll
x64-Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
x64-Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
x64-Run: [Diebold - Warsaw] C:\Program Files\Diebold\Warsaw\core.exe
x64-mPolicies-System: DSCAutomationHostEnabled = dword:2
x64-IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIE.dll
x64-IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\office15\OCHelper.dll
x64-IE: {43699cd0-e34f-11de-8a39-0800200c9a66} - {9DB059B3-DD36-4a55-846C-59BE42A1202A} - C:\Program Files (x86)\SafeKey\LPToolbar_x64.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIELinkedNotes.dll
x64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-IE: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\AddNote.html
x64-Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\MSC\McSnIePl64.dll
x64-Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLL
x64-Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\WINDOWS\System32\tbauth.dll
x64-SSODL: WebCheck - <orphaned>
x64-mASetup: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - /UserInstall
x64-mASetup: {89820200-ECBD-11cf-8B85-00AA005B4340} - U
x64-CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\WINDOWS\System32\windows.storage.dll
.
============= SERVICES / DRIVERS ===============
.
R0 iaStorA;iaStorA;C:\WINDOWS\System32\drivers\iaStorA.sys [2013-11-8 1455552]
R0 mfehidk;McAfee Inc. mfehidk;C:\WINDOWS\System32\drivers\mfehidk.sys [2014-10-1 846080]
R0 mfewfpk;McAfee Inc. mfewfpk;C:\WINDOWS\System32\drivers\mfewfpk.sys [2014-10-1 245096]
R0 WindowsTrustedRT;Windows Trusted Execution Environment Class Extension;C:\WINDOWS\System32\drivers\WindowsTrustedRT.sys [2015-7-10 106520]
R0 WindowsTrustedRTProxy;Microsoft Windows Trusted Runtime Secure Service;C:\WINDOWS\System32\drivers\WindowsTrustedRTProxy.sys [2015-7-10 17944]
R0 Wof;Windows Overlay File System Filter Driver;C:\WINDOWS\System32\drivers\wof.sys [2015-8-23 200528]
R1 ahcache;Application Compatibility Cache;C:\WINDOWS\System32\drivers\ahcache.sys [2015-7-10 215552]
R1 CLVirtualDrive;CLVirtualDrive;C:\WINDOWS\System32\drivers\CLVirtualDrive.sys [2015-4-14 91912]
R1 FileCrypt;FileCrypt;C:\WINDOWS\System32\drivers\filecrypt.sys [2015-7-10 83968]
R1 GpuEnergyDrv;GPU Energy Driver;C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-12-12 8192]
R1 legendasdrv;legendasdrv;C:\WINDOWS\System32\drivers\legendasdrv.sys [2016-1-16 59120]
R2 ApHidMonitorService;Alps HID Monitor Service;C:\Program Files\Apoint2K\HidMonitorSvc.exe [2015-8-7 104824]
R2 c2cautoupdatesvc;Skype Click to Call Updater;C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2016-1-8 1433216]
R2 c2cpnrsvc;Skype Click to Call PNR Service;C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2016-1-8 1773696]
R2 ClickToRunSvc;Serviço Clique para Executar do Microsoft Office;C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe [2014-12-20 2809072]
R2 COMLegService;COM+ Leg Service;C:\Program Files (x86)\Legendas-3.5\srvlegendas.exe [2016-1-16 1863408]
R2 CoreMessagingRegistrar;CoreMessaging;C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork [2015-7-10 39856]
R2 DiagTrack;Serviço de Rastreamento de Diagnóstico;C:\WINDOWS\System32\svchost.exe -k utcsvc [2015-7-10 39856]
R2 ESRV_SVC_WILLAMETTE;Energy Server Service WILLAMETTE;C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [2015-11-23 414360]
R2 GamesAppIntegrationService;GamesAppIntegrationService;C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2014-1-27 227904]
R2 GbpSv;Gbp Service;C:\PROGRA~2\GbPlugin\GbpSv.exe [2015-1-30 546104]
R2 HomeNetSvc;McAfee Home Network;C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2014-12-20 453520]
R2 hpsrv;HP Service;C:\WINDOWS\System32\hpservice.exe [2015-6-29 54448]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service;C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2015-7-26 25800]
R2 HPWMISVC;HPWMISVC;C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [2015-9-3 606224]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2015-6-23 18856]
R2 ibtsiva;Intel Bluetooth Service;C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe [2015-7-31 150256]
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service;C:\WINDOWS\System32\igfxCUIService.exe [2015-7-18 350312]
R2 ISCTAgent;Intel(R) Smart Connect Technology Agent;C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [2013-12-4 200168]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2015-7-6 223008]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe [2016-3-7 163592]
R2 McAPExe;McAfee AP Service;C:\Program Files\mcafee\MSC\McAPExe.exe [2014-12-20 863448]
R2 McBootDelayStartSvc;McAfee Boot Delay Start Service;C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2014-12-20 453520]
R2 mccspsvc;McAfee CSP Service;C:\Program Files\Common Files\mcafee\CSP\1.8.267.0\McCSPServiceHost.exe [2016-2-23 1696712]
R2 McMPFSvc;McAfee Personal Firewall Service;C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2014-12-20 453520]
R2 McNaiAnn;McAfee VirusScan Announcer;C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2014-12-20 453520]
R2 mcpltsvc;McAfee Platform Services;C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2014-12-20 453520]
R2 McProxy;McAfee Proxy Service;C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2014-12-20 453520]
R2 mfemms;McAfee Service Controller;C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe [2015-1-24 380896]
R2 mfevtp;McAfee Validation Trust Protection Service;C:\WINDOWS\System32\mfevtps.exe [2014-12-20 275368]
R2 PEFService;Intel Security PEF Service;C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [2016-2-21 902112]
R2 QVRService;QVRService;C:\Program Files (x86)\QNAP\QVR\QVRService.exe [2015-12-27 73728]
R2 RtkAudioService;Realtek Audio Service;C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2015-6-24 294616]
R2 storqosflt;Driver do Filtro QoS de Armazenamento;C:\WINDOWS\System32\drivers\storqosflt.sys [2015-7-10 61952]
R2 tiledatamodelsvc;Servidor de modelo de Dados de Bloco;C:\WINDOWS\System32\svchost.exe -k appmodel [2015-7-10 39856]
R2 UserManager;Gerenciador de Usuários;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-7-10 39856]
R2 Warsaw Technology;Warsaw Technology;C:\Program Files\Diebold\Warsaw\core.exe [2015-9-22 858424]
R2 WdNisDrv;Driver do Sistema de Inspeção de Rede do Windows Defender;C:\WINDOWS\System32\drivers\WdNisDrv.sys [2015-7-10 119648]
R2 ZeroConfigService;Intel(R) PROSet/Wireless Zero Configuration Service;C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2015-7-9 3831712]
R3 BthLEEnum;Driver de Baixa Energia do Bluetooth;C:\WINDOWS\System32\drivers\BthLEEnum.sys [2015-7-10 237568]
R3 cfwids;McAfee Inc. cfwids;C:\WINDOWS\System32\drivers\cfwids.sys [2014-10-1 79248]
R3 ClipSVC;Serviço de Licenças de Cliente (ClipSVC);C:\WINDOWS\System32\svchost.exe -k wsappx [2015-7-10 39856]
R3 clwvd;CyberLink WebCam Virtual Driver;C:\WINDOWS\System32\drivers\clwvd.sys [2015-4-28 41704]
R3 ibtusb;Intel(R) Wireless Bluetooth(R);C:\WINDOWS\System32\drivers\ibtusb.sys [2015-7-31 259312]
R3 ikbevent;Intel Upper keyboard Class Filter Driver;C:\WINDOWS\System32\drivers\ikbevent.sys [2013-8-13 21408]
R3 imsevent;Intel Upper Mouse Class Filter Driver;C:\WINDOWS\System32\drivers\imsevent.sys [2013-8-13 21920]
R3 INETMON;INETMON;C:\WINDOWS\System32\drivers\INETMON.sys [2014-9-30 29088]
R3 ISCT;Intel(R) Smart Connect Technology Device Driver;C:\WINDOWS\System32\drivers\ISCTD64.sys [2013-8-13 46568]
R3 iwdbus;IWD Bus Enumerator;C:\WINDOWS\System32\drivers\iwdbus.sys [2014-3-25 27032]
R3 lfsvc;Serviço de Geolocalização;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-7-10 39856]
R3 LicenseManager;Serviço de Gerenciador de Licença do Windows;C:\WINDOWS\System32\svchost.exe -k LocalService [2015-7-10 39856]
R3 mfeaack;McAfee Inc. mfeaack;C:\WINDOWS\System32\drivers\mfeaack.sys [2014-12-19 419624]
R3 mfeavfk;McAfee Inc. mfeavfk;C:\WINDOWS\System32\drivers\mfeavfk.sys [2014-10-1 351144]
R3 mfefire;McAfee Firewall Core Service;C:\Program Files\Common Files\mcafee\SystemCore\mfefire.exe [2014-12-20 234192]
R3 mfefirek;McAfee Inc. mfefirek;C:\WINDOWS\System32\drivers\mfefirek.sys [2014-10-1 496368]
R3 mfencbdc;McAfee Inc. mfencbdc;C:\WINDOWS\System32\drivers\mfencbdc.sys [2015-11-20 539496]
R3 mfesapsn;McAfee Process Start Notification Service;C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [2016-3-7 36968]
R3 NcbService;Agente de Conexão de Rede;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-7-10 39856]
R3 NdisVirtualBus;Enumerador de Adaptador de Rede Virtual Microsoft;C:\WINDOWS\System32\drivers\NdisVirtualBus.sys [2015-7-10 20992]
R3 NETwNb64;___ Driver do adaptador Intel(R) Wireless para Windows 8.1 64 bits;C:\WINDOWS\System32\drivers\Netwbw02.sys [2015-4-16 4043544]
R3 rt640x64;Realtek RT640 NT Driver;C:\WINDOWS\System32\drivers\rt640x64.sys [2015-10-12 886528]
R3 semav6msr64;semav6msr64;C:\WINDOWS\System32\drivers\semav6msr64.sys [2015-11-23 21984]
R3 StateRepository;Serviço de Repositório de Estado;C:\WINDOWS\System32\svchost.exe -k appmodel [2015-7-10 39856]
R3 WirelessButtonDriver;HP Wireless Button Driver Service;C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [2015-6-23 30384]
R4 WinDivert1.1;WinDivert1.1;C:\Program Files\Diebold\Warsaw\WinDivert64.sys [2015-9-22 38104]
S0 mfeelamk;McAfee Inc. mfeelamk;C:\WINDOWS\System32\drivers\mfeelamk.sys [2014-10-1 83096]
S2 dmwappushservice;dmwappushsvc;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-7-10 39856]
S2 DoSvc;Otimização de Entrega;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-7-10 39856]
S2 MapsBroker;Gerenciador de Mapas Baixados;C:\WINDOWS\System32\svchost.exe -k NetworkService [2015-7-10 39856]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-7-9 327296]
S2 SystemUsageReportSvc_WILLAMETTE;Intel(R) System Usage Report Service SystemUsageReportSvc_WILLAMETTE;C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe [2015-9-14 112792]
S3 ADP80XX;ADP80XX;C:\WINDOWS\System32\drivers\adp80xx.sys [2015-7-10 1135456]
S3 AJRouter;Serviço de Roteador AllJoyn;C:\WINDOWS\System32\svchost.exe -k LocalService [2015-7-10 39856]
S3 AppReadiness;Preparação de Aplicativos;C:\WINDOWS\System32\svchost.exe -k AppReadiness [2015-7-10 39856]
S3 AppXSvc;Serviço de Implantação AppX (AppXSVC);C:\WINDOWS\System32\svchost.exe -k wsappx [2015-7-10 39856]
S3 bcmfn2;bcmfn2 Service;C:\WINDOWS\System32\drivers\bcmfn2.sys [2015-7-10 17624]
S3 BthHFSrv;Serviço Mãos Livres Bluetooth;C:\WINDOWS\System32\svchost.exe -k LocalServiceAndNoImpersonation [2015-7-10 39856]
S3 buttonconverter;Serviço para dispositivos de Controle de Dispositivo Portátil;C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-1 36352]
S3 CapImg;Driver HID para tela touch CapImg;C:\WINDOWS\System32\drivers\capimg.sys [2015-7-10 116736]
S3 CDPSvc;CDPSvc;C:\WINDOWS\System32\svchost.exe -k LocalService [2015-7-10 39856]
S3 DcpSvc;DataCollectionPublishingService;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-7-10 39856]
S3 DevQueryBroker;Agente de Descoberta em Segundo Plano de DevQuery;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-7-10 39856]
S3 diagnosticshub.standardcollector.service;Serviço Coletor de Padrões de Hub de Diagnóstico da Microsoft (R);C:\WINDOWS\System32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-7-10 27136]
S3 DmEnrollmentSvc;Serviço de Registro de Gerenciamento de Dispositivos;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-7-10 39856]
S3 DsSvc;Serviço de Compartilhamento de Dados;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-7-10 39856]
S3 embeddedmode;embeddedmode;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-7-10 39856]
S3 EntAppSvc;Enterprise App Management Service;C:\WINDOWS\System32\svchost.exe -k appmodel [2015-7-10 39856]
S3 fcvsc;fcvsc;C:\WINDOWS\System32\drivers\fcvsc.sys [2015-7-10 31232]
S3 GamesAppService;GamesAppService;C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 genericusbfn;Classe de Função USB Genérica;C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-7-10 20992]
S3 hidinterrupt;Driver Comum para Botões HID implementado com interrupções;C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-7-10 50016]
S3 HipShieldK;McAfee Inc. HipShieldK;C:\WINDOWS\System32\drivers\HipShieldK.sys [2015-6-19 207208]
S3 iaLPSSi_GPIO;Driver de Controlador Intel(R) Serial IO GPIO;C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [2015-7-10 38128]
S3 iaLPSSi_I2C;Intel(R) Serial IO I2C Controller Driver;C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [2015-7-10 122608]
S3 iaStorAV;Controlador SATA RAID Intel(R) para Windows;C:\WINDOWS\System32\drivers\iaStorAV.sys [2015-7-10 673120]
S3 ibbus;Mellanox InfiniBand Bus/AL (Filter Driver);C:\WINDOWS\System32\drivers\ibbus.sys [2015-7-10 424800]
S3 icssvc;Serviço de Hotspot Móvel do Windows;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2015-7-10 39856]
S3 IEEtwCollectorService;Serviço Coletor ETW do Internet Explorer;C:\WINDOWS\System32\ieetwcollector.exe [2015-7-10 115200]
S3 intaud_WaveExtensible;Intel WiDi Audio Device;C:\WINDOWS\System32\drivers\intelaud.sys [2014-3-1 38296]
S3 IntcDAud;Áudio Intel(R) para telas;C:\WINDOWS\System32\drivers\IntcDAud.sys [2015-11-4 473864]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2015-5-22 881152]
S3 intelpep;Driver Intel(R) Power Engine Plug-in;C:\WINDOWS\System32\drivers\intelpep.sys [2015-7-10 43872]
S3 IoQos;IoQos;C:\WINDOWS\System32\drivers\ioqos.sys [2015-7-10 26624]
S3 LSI_SAS2i;LSI_SAS2i;C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-7-10 104800]
S3 LSI_SAS3i;LSI_SAS3i;C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-7-10 99168]
S3 mfencrk;McAfee Inc. mfencrk;C:\WINDOWS\System32\drivers\mfencrk.sys [2015-11-20 109480]
S3 mlx4_bus;Mellanox ConnectX Bus Enumerator;C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-7-10 705376]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2015-7-9 268192]
S3 ndfltr;Serviço NetworkDirect;C:\WINDOWS\System32\drivers\ndfltr.sys [2015-7-10 76128]
S3 NetSetupSvc;Serviço de Configuração de Rede;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-7-10 39856]
S3 netvsc;netvsc;C:\WINDOWS\System32\drivers\netvsc.sys [2015-7-10 94720]
S3 NgcCtnrSvc;Contêiner do Microsoft Passport;C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted [2015-7-10 39856]
S3 NgcSvc;Microsoft Passport;C:\WINDOWS\System32\lsass.exe [2015-7-10 56344]
S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\microsoft shared\Source Engine\OSE.EXE [2014-12-13 178760]
S3 percsas2i;percsas2i;C:\WINDOWS\System32\drivers\percsas2i.sys [2015-7-10 58208]
S3 percsas3i;percsas3i;C:\WINDOWS\System32\drivers\percsas3i.sys [2015-7-10 58720]
S3 ReFSv1;ReFSv1;C:\WINDOWS\System32\drivers\refsv1.sys [2015-8-23 934752]
S3 RetailDemo;Serviço de Demonstração de Revenda;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-7-10 39856]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\WINDOWS\System32\drivers\RtsUStor.sys [2014-9-30 271064]
S3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader;C:\WINDOWS\System32\drivers\RtsUVStor.sys [2014-9-30 331992]
S3 RTL8168;Realtek 8168 NT Driver;C:\WINDOWS\System32\drivers\Rt630x64.sys [2015-1-3 871640]
S3 RTSPER;Realtek PCIE Card Reader - PER;C:\WINDOWS\System32\drivers\RtsPer.sys [2014-9-30 466136]
S3 ScDeviceEnum;Serviço de Enumeração de Dispositivo de Cartão Inteligente;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-7-10 39856]
S3 SensorDataService;Serviço de Dados de Sensor;C:\WINDOWS\System32\SensorDataService.exe [2015-8-23 1031680]
S3 SensorService;Serviço de Sensor;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-7-10 39856]
S3 SerCx2;Serial UART Support Library;C:\WINDOWS\System32\drivers\SerCx2.sys [2015-7-10 155488]
S3 smphost;SMP de Espaços de Armazenamento da Microsoft;C:\WINDOWS\System32\svchost.exe -k smphost [2015-7-10 39856]
S3 SmsRouter;Serviço de Roteador SMS do Microsoft Windows;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-7-10 39856]
S3 stornvme;Driver Microsoft Padrão NVM Express;C:\WINDOWS\System32\drivers\stornvme.sys [2015-8-23 80720]
S3 storufs;Driver UFS (Universal Flash Storage) Microsoft;C:\WINDOWS\System32\drivers\storufs.sys [2015-7-10 40288]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension;C:\WINDOWS\System32\drivers\UcmCx.sys [2015-7-10 61952]
S3 UcmUcsi;Cliente de UCSI do Gerenciador do conector USB;C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-8-23 46080]
S3 UdeCx;USB Device Emulation Support Library;C:\WINDOWS\System32\drivers\Udecx.sys [2015-7-10 44032]
S3 UEFI;Driver UEFI da Microsoft;C:\WINDOWS\System32\drivers\uefi.sys [2015-7-10 28512]
S3 Ufx01000;USB Function Class Extension;C:\WINDOWS\System32\drivers\ufx01000.sys [2015-7-10 245088]
S3 UfxChipidea;Controlador USB Chipidea;C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-7-10 94048]
S3 ufxsynopsys;Controlador USB Synopsys;C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-7-10 127840]
S3 UrsChipidea;Driver Chipidea USB Role-Switch;C:\WINDOWS\System32\drivers\urschipidea.sys [2015-7-10 28512]
S3 UrsCx01000;USB Role-Switch Support Library;C:\WINDOWS\System32\drivers\urscx01000.sys [2015-7-10 57696]
S3 UrsSynopsys;Driver Synopsys USB Role-Switch;C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-7-10 27488]
S3 USER_ESRV_SVC_WILLAMETTE;User Energy Server Service WILLAMETTE;C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [2015-11-23 414360]
S3 UsoSvc;Atualizar Serviço Orchestrator;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-7-10 39856]
S3 vhf;Driver de VHF (Estrutura HID Virtual);C:\WINDOWS\System32\drivers\vhf.sys [2015-7-10 31744]
S3 vmicguestinterface;Interface de Serviço de Convidado do Hyper-V;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-7-10 39856]
S3 vmicvmsession;Serviço de Sessão VM do Hyper-V;C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted [2015-7-10 39856]
S3 w3logsvc;Serviço de Log W3C;C:\WINDOWS\System32\svchost.exe -k apphost [2015-7-10 39856]
S3 WalletService;WalletService;C:\WINDOWS\System32\svchost.exe -k appmodel [2015-7-10 39856]
S3 wdiwifi;WDI Driver Framework;C:\WINDOWS\System32\drivers\WdiWiFi.sys [2015-8-23 685568]
S3 WdNisSvc;Serviço de Inspeção de Rede do Windows Defender;C:\Program Files\Windows Defender\NisSrv.exe [2015-7-10 362928]
S3 WEPHOSTSVC;Serviço de Host do Provedor de Criptografia do Windows;C:\WINDOWS\System32\svchost.exe -k WepHostSvcGroup [2015-7-10 39856]
S3 WinMad;Serviço WinMad;C:\WINDOWS\System32\drivers\winmad.sys [2015-7-10 26976]
S3 WinVerbs;Serviço WinVerbs;C:\WINDOWS\System32\drivers\winverbs.sys [2015-7-10 59232]
S3 workfolderssvc;Pastas de Trabalho;C:\WINDOWS\System32\svchost.exe -k LocalService [2015-7-10 39856]
S3 WpnService;Serviço de Notificação por Push do Windows;C:\WINDOWS\System32\svchost.exe -k wswpnservice [2015-7-10 39856]
S3 WUDFWpdMtp;WUDFWpdMtp;C:\WINDOWS\System32\drivers\WUDFRd.sys [2015-7-10 214016]
S3 XblAuthManager;Gerenciador de Autenticação Xbox Live;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-7-10 39856]
S3 XblGameSave;Salvar Jogos no Xbox Live;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-7-10 39856]
S3 xboxgip;Xbox Game Input Protocol Driver;C:\WINDOWS\System32\drivers\xboxgip.sys [2015-7-10 222720]
S3 XboxNetApiSvc;Serviço de Rede Xbox Live;C:\WINDOWS\System32\svchost.exe -k netsvcs [2015-7-10 39856]
S3 xinputhid;XINPUT HID Filter Driver;C:\WINDOWS\System32\drivers\xinputhid.sys [2015-7-10 25600]
.
=============== File Associations ===============
.
FileExt: .txt: txtfile=C:\WINDOWS\System32\NOTEPAD.EXE %1 [UserChoice]
.
=============== Created Last 30 ================
.
2016-03-11 03:50:17 16148 ----a-w- C:\WINDOWS\System32\EDU14-V065BR_Eduardo_HistoryPrediction.bin
2016-03-11 02:36:02 -------- d-----w- C:\Program Files (x86)\AdwCleaner
2016-03-10 23:28:58 -------- d--h--w- C:\OneDriveTemp
2016-02-21 21:10:34 -------- d-----w- C:\Users\Eduardo\AppData\Roaming\VioDecoder
2016-02-21 21:10:26 -------- d-----w- C:\Users\Eduardo\AppData\Roaming\VioSources
2016-02-21 20:08:15 -------- d-----w- C:\Program Files (x86)\WinSCP
2016-02-21 18:55:57 -------- d-----w- C:\ProgramData\Intel Security
2016-02-21 18:53:11 -------- d-----w- C:\Program Files\Common Files\Intel Security
.
==================== Find3M ====================
.
2016-03-11 03:13:53 180 ----a-w- C:\WINDOWS\System32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-03-08 07:10:49 829944 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerApp.exe
2016-03-08 07:10:49 176632 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl
2016-02-23 22:47:44 97888 ----a-w- C:\WINDOWS\SysWow64\WindowsAccessBridge-32.dll
2016-02-23 14:53:02 1314496 ----a-w- C:\WINDOWS\System32\ole32.dll
2016-02-23 14:52:33 858408 ----a-w- C:\WINDOWS\System32\winresume.exe
2016-02-23 14:51:55 633184 ----a-w- C:\WINDOWS\System32\drivers\fvevol.sys
2016-02-23 14:51:12 146784 ----a-w- C:\WINDOWS\System32\wermgr.exe
2016-02-23 14:50:06 630160 ----a-w- C:\WINDOWS\System32\wer.dll
2016-02-23 14:48:14 1294352 ----a-w- C:\WINDOWS\System32\winload.efi
2016-02-23 14:48:14 1123952 ----a-w- C:\WINDOWS\System32\winload.exe
2016-02-23 14:48:04 8022368 ----a-w- C:\WINDOWS\System32\ntoskrnl.exe
2016-02-23 14:41:49 299600 ----a-w- C:\WINDOWS\System32\WMASF.DLL
2016-02-23 14:41:30 1150816 ----a-w- C:\WINDOWS\System32\aeinv.dll
2016-02-23 14:41:26 78040 ----a-w- C:\WINDOWS\System32\wkscli.dll
2016-02-23 14:40:19 110584 ----a-w- C:\WINDOWS\System32\srvcli.dll
2016-02-23 14:38:33 272752 ----a-w- C:\WINDOWS\System32\sqmapi.dll
2016-02-23 14:11:35 658784 ----a-w- C:\WINDOWS\System32\NetSetupEngine.dll
2016-02-23 14:11:33 103776 ----a-w- C:\WINDOWS\System32\NetSetupApi.dll
2016-02-23 14:11:28 781984 ----a-w- C:\WINDOWS\System32\mfds.dll
2016-02-23 13:39:08 607416 ----a-w- C:\WINDOWS\System32\fontdrvhost.exe
2016-02-23 13:30:25 1643872 ----a-w- C:\WINDOWS\System32\diagtrack.dll
2016-02-23 13:25:34 1085632 ----a-w- C:\WINDOWS\System32\appraiser.dll
2016-02-23 13:23:13 952968 ----a-w- C:\WINDOWS\SysWow64\ole32.dll
2016-02-23 13:21:24 141152 ----a-w- C:\WINDOWS\SysWow64\wermgr.exe
2016-02-23 13:21:12 529456 ----a-w- C:\WINDOWS\SysWow64\wer.dll
2016-02-23 13:11:43 249976 ----a-w- C:\WINDOWS\SysWow64\WMASF.DLL
2016-02-23 13:11:32 55808 ----a-w- C:\WINDOWS\SysWow64\wkscli.dll
2016-02-23 13:11:22 73360 ----a-w- C:\WINDOWS\SysWow64\srvcli.dll
2016-02-23 13:09:21 229352 ----a-w- C:\WINDOWS\SysWow64\sqmapi.dll
2016-02-23 12:58:43 150528 ----a-w- C:\WINDOWS\System32\MusNotification.exe
2016-02-23 12:50:52 75264 ----a-w- C:\WINDOWS\System32\NetCfgNotifyObjectHost.exe
2016-02-23 12:50:33 395264 ----a-w- C:\WINDOWS\System32\NetSetupShim.dll
2016-02-23 12:42:29 78176 ----a-w- C:\WINDOWS\SysWow64\NetSetupApi.dll
2016-02-23 12:42:23 467296 ----a-w- C:\WINDOWS\SysWow64\NetSetupEngine.dll
2016-02-23 12:42:22 658536 ----a-w- C:\WINDOWS\SysWow64\mfds.dll
2016-02-23 12:35:42 365568 ----a-w- C:\WINDOWS\System32\atmfd.dll
2016-02-23 12:20:19 138240 ----a-w- C:\WINDOWS\System32\drivers\dfsc.sys
2016-02-23 12:17:15 333312 ----a-w- C:\WINDOWS\System32\MusUpdateHandlers.dll
2016-02-23 12:15:18 539728 ----a-w- C:\WINDOWS\SysWow64\fontdrvhost.exe
2016-02-23 11:59:59 319488 ----a-w- C:\WINDOWS\System32\NetworkBindingEngineMigPlugin.dll
2016-02-23 11:59:39 104960 ----a-w- C:\WINDOWS\System32\drivers\rasl2tp.sys
2016-02-23 11:57:12 189952 ----a-w- C:\WINDOWS\System32\NetSetupSvc.dll
2016-02-23 11:45:30 6788608 ----a-w- C:\WINDOWS\System32\Windows.Data.Pdf.dll
2016-02-23 11:42:58 91648 ----a-w- C:\WINDOWS\System32\asycfilt.dll
2016-02-23 11:42:15 771072 ----a-w- C:\WINDOWS\System32\Chakradiag.dll
2016-02-23 11:38:59 2663424 ----a-w- C:\WINDOWS\System32\Windows.UI.Logon.dll
2016-02-23 11:37:26 57344 ----a-w- C:\WINDOWS\SysWow64\NetCfgNotifyObjectHost.exe
2016-02-23 11:36:53 281600 ----a-w- C:\WINDOWS\SysWow64\NetSetupShim.dll
2016-02-23 11:25:46 303104 ----a-w- C:\WINDOWS\SysWow64\atmfd.dll
2016-02-23 11:18:10 31232 ----a-w- C:\WINDOWS\System32\seclogon.dll
2016-02-23 11:17:37 133120 ----a-w- C:\WINDOWS\System32\browser.dll
2016-02-23 11:17:35 58368 ----a-w- C:\WINDOWS\System32\browcli.dll
2016-02-23 11:14:19 841728 ----a-w- C:\WINDOWS\System32\win32spl.dll
2016-02-23 11:08:34 81920 ----a-w- C:\WINDOWS\System32\AppxSysprep.dll
2016-02-23 11:04:29 225792 ----a-w- C:\WINDOWS\System32\wsqmcons.exe
2016-02-23 11:03:40 45568 ----a-w- C:\WINDOWS\System32\atmlib.dll
2016-02-23 11:03:16 450560 ----a-w- C:\WINDOWS\System32\werui.dll
2016-02-23 11:02:08 3587584 ----a-w- C:\WINDOWS\System32\win32kfull.sys
2016-02-23 10:51:35 915456 ----a-w- C:\WINDOWS\System32\configurationclient.dll
2016-02-23 10:51:16 678912 ----a-w- C:\WINDOWS\System32\scapi.dll
2016-02-23 10:48:55 5157376 ----a-w- C:\WINDOWS\SysWow64\Windows.Data.Pdf.dll
2016-02-23 10:48:13 21859840 ----a-w- C:\WINDOWS\System32\edgehtml.dll
2016-02-23 10:46:15 400384 ----a-w- C:\WINDOWS\System32\sharemediacpl.dll
2016-02-23 10:45:40 88576 ----a-w- C:\WINDOWS\SysWow64\olepro32.dll
2016-02-23 10:45:35 78848 ----a-w- C:\WINDOWS\SysWow64\asycfilt.dll
2016-02-23 10:45:01 574464 ----a-w- C:\WINDOWS\SysWow64\Chakradiag.dll
2016-02-23 10:45:01 1844736 ----a-w- C:\WINDOWS\System32\WMPDMC.exe
2016-02-23 10:44:25 1821696 ----a-w- C:\WINDOWS\SysWow64\Windows.UI.Logon.dll
2016-02-23 10:38:27 7524864 ----a-w- C:\WINDOWS\System32\Chakra.dll
2016-02-23 10:29:30 43520 ----a-w- C:\WINDOWS\SysWow64\browcli.dll
2016-02-23 10:17:52 37376 ----a-w- C:\WINDOWS\SysWow64\atmlib.dll
2016-02-23 10:17:48 393728 ----a-w- C:\WINDOWS\SysWow64\werui.dll
2016-02-23 10:03:40 1495040 ----a-w- C:\WINDOWS\SysWow64\WMPDMC.exe
2016-02-23 10:00:49 5457408 ----a-w- C:\WINDOWS\SysWow64\Chakra.dll
2016-02-23 09:58:49 18800640 ----a-w- C:\WINDOWS\SysWow64\edgehtml.dll
2016-01-31 06:25:57 1248896 ----a-w- C:\WINDOWS\System32\WinTypes.dll
2016-01-31 06:25:52 1951872 ----a-w- C:\WINDOWS\System32\KernelBase.dll
2016-01-31 06:24:08 1824880 ----a-w- C:\WINDOWS\System32\ntdll.dll
2016-01-31 06:23:57 2601160 ----a-w- C:\WINDOWS\System32\combase.dll
2016-01-31 06:23:50 1420392 ----a-w- C:\WINDOWS\System32\msctf.dll
2016-01-31 06:06:45 809336 ----a-w- C:\WINDOWS\SysWow64\WinTypes.dll
2016-01-31 06:06:37 1535032 ----a-w- C:\WINDOWS\SysWow64\ntdll.dll
2016-01-31 06:06:37 1531368 ----a-w- C:\WINDOWS\SysWow64\KernelBase.dll
2016-01-31 06:04:30 1180696 ----a-w- C:\WINDOWS\SysWow64\msctf.dll
2016-01-31 06:04:27 1811360 ----a-w- C:\WINDOWS\SysWow64\combase.dll
2016-01-31 05:34:34 88064 ----a-w- C:\WINDOWS\System32\ngckeyenum.dll
2016-01-31 05:33:38 57856 ----a-w- C:\WINDOWS\System32\IoTAssignedAccessLockFramework.dll
2016-01-31 05:29:56 141312 ----a-w- C:\WINDOWS\System32\rasman.dll
2016-01-31 05:29:36 11557888 ----a-w- C:\WINDOWS\System32\twinui.dll
2016-01-31 05:26:49 3793408 ----a-w- C:\WINDOWS\System32\rdpcorets.dll
2016-01-31 05:25:35 143872 ----a-w- C:\WINDOWS\System32\drivers\mrxdav.sys
2016-01-31 05:25:13 366592 ----a-w- C:\WINDOWS\System32\wuuhext.dll
2016-01-31 05:23:37 79360 ----a-w- C:\WINDOWS\System32\rdpudd.dll
2016-01-31 05:20:04 2849792 ----a-w- C:\WINDOWS\System32\wininet.dll
2016-01-31 05:19:51 237056 ----a-w- C:\WINDOWS\System32\NetworkDesktopSettings.dll
2016-01-31 05:19:47 46592 ----a-w- C:\WINDOWS\SysWow64\IoTAssignedAccessLockFramework.dll
2016-01-31 05:18:35 147456 ----a-w- C:\WINDOWS\System32\mtxoci.dll
2016-01-31 05:17:47 109056 ----a-w- C:\WINDOWS\System32\hlink.dll
2016-01-31 05:16:37 950272 ----a-w- C:\WINDOWS\System32\kerberos.dll
.
============= FINISH: 0:55:59,34 ===============